Quick Quiz January 7, 2023 Test ID: 235734453 Question #1 of 65 ‘Question ID: 1455596 You are considering the use of Elastic Load Balancing on your AWS Cloud deployment. What purpose would it serve on the cloud environment? X A) Providing realtime monitoring of applications. YB) Spliting incoming traffic among several instances X ©) Monitoring applications and changing resources based on demand X D) Scaling an in-memory environment in the cloud Question #2 of 65 ‘Question ID: 1455616 You are managing several different AWS environments. Two of your many responsibilities is to make sure that the AWS resources do not exceed their resource limits and at the same time demonstrate AWS best practices. You need a simple way of validating these service level limits to protect your systems so that they continually perform at their highest levels What resource will allow you to accomplish this task? X A) AWS Inspector YB) AWS Trusted Advisor X €) AWS Personal Health Dashboard X D) AWS Config Question #3 of 65 ‘Question ID: 1455619 Which of the following is a key pillar within the AWS framework? X A) Networking YB) Operational ExcellenceX €) Storage X D) Efficiency factors Question #4 of 65 ‘Question ID: 1455481 You work for a company that has several EC2 servers that were built three months ago to support a production application. The plan is to have these production servers running with zero down time. You are planning on upgrading the instance type in about a month, What type of instance should you have purchased during the design of the application for cost-effective increases in instance types? ¥ A) Convertible Reserved Instances X B) On-Demand Instances X €) Spot instances X D) Standard Reserved Instances Question #5 of 65 ‘Question ID: 1455640 Which of these AWS support plans includes access to the Concierge? VY A) Enterprise X B) Business X C) Basic X D) Developer Question #6 of 65 ‘Question ID: 1455590 You are asked by the development team in your company to help them find a way to further optimize their main Web application. For this you need to know key details about requests served by the application. What will you use for this? X A) Global tablesX B) Clouds X ©) Security Hub v D) XRay Question #7 of 65 Question ID: 1455515 What type of abuse is caused when an Amazon EC2 server is not patched and could be infected with a virus, worm, or Trojan horse? YA) Compromised resource X B) False complaints X ©) Secondary abuse X D) Unintentional abuse Question #8 of 65 ‘Question ID: 1455521 ‘What third party encryption software can be used to encrypt data at rest on an Amazon EBS volume for both Linux and Windows operating systems? A) TrueCrypt X B) AWS snapshots X ©) Linux dm-crypt X D) BitLocker Question #9 of 65 ‘Question ID: 1455476 Which option is considered a cost-effective resource discussed in the AWS framework pillar Cost Optimization? X A) Fixed sizing X B) Using Reserved Instances only YC) Appropriate provisioningX D) Limiting regions Question #10 of 65 ‘Question ID; 1455489 What concept is related to increasing data retrieval rates by placing viable data into a static memory buffer for future use? X A) wmic YB) Caching X €) Amazon Kinesis Data Analytics X D) Amazon Network ACL. Question #11 of 65 Question ID; 1455557 What is the main reason for using an Elastic IP address associated with your Virtual Private Cloud account? X A) You can assign an Elastic IP address to all your EC2 instances for easier management of your EC2 infrastructure, X B) You can never deallocate an Elastic IP address because it stays associated with your AWS account for auditing purposes and is considered a static IP address. Y ) You have the ability to move network attributes from one instance to another in ‘one single step. X D) Elastic IP addresses can be used with IPv6 or IPv4 network components. Question #12 of 65 ‘Question ID: 1455649 In the AWS Organizations web service what feature allows the easy tracking of charges across multiple accounts and is offered at no extra cost? ¥ A) Consolidated Billing X B) Volume Discounts X €) Amazon $3 AnalyticsX D) AWS budgets Question #13 of 65 Question ID; 1455599 Which Amazon storage option would be a good solution if you needed storage that offered block-level encryption, high reliability, and is highly available, while using applications that use fine-grained updates to raw unformatted data? X A) Amazon $3 X B) Amazon Glacier ¥ C) Amazon EBS X D) AWS Snowball Question #14 of 65 Question ID; 1455468 What is a required step for you to create a public subnet to use the Intemet? X A) Use a route table rule to send only local traffic to the IGW. X B) Remove an IGW from your Amazon VPC. Y ©) Attach an Internet Gateway (IGW) to your VPC. X D) Call AWS Support to activate this feature. Question #15 of 65 ‘Question ID: 1455465 What type of Amazon VPC endpoint focuses on AWS services related only to DynamoDB and Amazon $3 components? X A) Interface type endpoint X B) Virtual Private Cloud (VPC) X ©) VPC Peering YD) Gateway type endpointQuestion #16 of 65 Question ID: 1455648 Your boss wants you to run a report where you can see the monthly cost breakdown by AWS Service and potential future costs, Which tool would you use to see this type of report? X A) AWS CloudWatch YB) AWS Cost Explorer X €) AWS Budgets X D) AWS Trusted Advisor Question #17 of 65 ‘Question ID: 1455454 Which aspect of AWS Cloud provides cost benefits to cloud users because a large volume of other cloud users also use the cloud platform? X A) Scalability XB) High Availabilty ¥ ©) Economy of Scale X D) Elasticity Question #18 of 65 ‘Question ID: 1455474 Which AWS framework pillar is focused on supporting compute changes in AWS adaptive technologies as businesses evolve? X A) Cost Optimization YB) Performance Efficiency X ©) Operational Excellence X D) ReliabilityQuestion #19 of 65 ‘Question ID: 1455568 You have moved multiple terabytes worth of unstructured data into the Amazon S3 infrastructure and you are concerned with the durability of the data, What is a key benefit of using Amazon $3 that you should consider? X A) Amazon $3 uses Amazon Kinesis Data Firehose to secure the data at rest. X B) Data is copied directly to the customer's on-premises system after the data is moved to Amazon $3. X ©) Data can be copied to AWS Snowball to increase durabiliy. ¥_D) Data is automatically distributed across three availability zones within a region. Question #20 of 65 ‘Question ID: 1455494 Which of the following statements are FALSE when creating an Amazon $3 bucket? (Choose all that apply.) X A) The bucket name cannot be duplicated between accounts. X B) You cannot use uppercase letters in bucket names. X €) You cannot use underscores in bucket names. YD) The bucket name can be changed after it has been created YE) The bucket name can be duplicated between accounts. Question 1D: 1458520 What Amazon security feature encrypts data at rest using AES-256 and is considered transparent to the end user within the Amazon $3 environment? ¥ A) Encryption server side X B) Versioning XG) Encryption client side X D) ReplicationQuestion #22 of 65 ‘Question ID: 1455635 You are supporting an application that requires that the EC2 instance be shut down after 5:00 PM every day. You want to make sure this is done automatically so you have configured the shutdown processing to use a Lambda function, For some reason, the application binaries are sporadically being corrupted and the corruption is related to the shutdown process, Which of the following components can be used to identify the faulty EC2 instance? X A) Memory utlization YB) Resource tagging X €) CPU utlization X D) Instance metadata Question #23 of 65 Question ID; 1455514 What is the name of a Trojan or worm that has infltrated a fleet of EC2 instances that can be controlled by an external or remote user with malicious intent? X A) Trusted Advisor tool Y B) Botnets X ¢) MFA X D) SPAM Question #24 of 65 ‘Question ID: 1455574 You need to suggest key technologies your company can leverage on its AWS Cloud for its operations. Which of these AWS services can you use for block storage of data? (Choose two.) v A) EBS X B) RDS x ¢) 83 v D) EFS xX &) Ec2Question #25 of 65 ‘Question ID: 1455535 ‘You have created a VPC for your company's AWS deployment. You need to implement a way of controlling incoming and outgoing for your EC2 instance on the VPC. What would you use for this? X A) AWS Marketplace YB) Security groups X ©) NACLs X D) AWS WAF Question #26 of 65 ‘Question ID: 1455491 What is a key capability of an Amazon $3 data lake architecture component? X A) Gives you the ability to implement a single sign-on within the data lake. YB) Utilizes a broad perspective of data science, data analytics, and machine learning in a centralized platform. X ©) Being able to query data in multiple availability zones. X D) Transform raw data into multiple regions for backup purposes. Question #27 of 65 ‘Question ID: 1455563 Which AWS service would you use to improve communication with your users that are located far from your existing AWS Regions? X A) Outposts YB) CloudFront X €) CloudTrail X D) CloudWatchQuestion #28 of 65 ‘Question ID: 1455550 You work for a large hospital as a Sysops administrator. You need to grant an outside user temporary access to an EC2 instance that you created within your VPC environment. You need to restrict access to a specific user, aws user_carl, and then you want to limit their access to AWS Certification Manager (ACM). Which type of policy would best meet this requirement? YA) AWS inline policy X B) AWS bucket policy X C) AWS managed policy X D) AWS IAM user policy Question #29 of 65 ‘Question ID: 1455617 You are supporting a production AWS EC2 instance. You are notified that your AWS instance has a corrupted EBS volume. What AWS resource would graphically identify the issue and allow you to create and configure forward-looking notifications across multiple channels? X A) AWS Config X B) AWS Trusted Advisor X ©) AWS Inspector YD) AWS Personal Health Dashboard Question #30 of 65 ‘Question ID: 1455470 Which of these are cost-related benefits of using a cloud deployment with AWS? (Choose two.) X A) More Labor Costs X B) No OpEx ¥ ©) Lesser TCO ¥ D) Less Capex X E) More Licensing CostsQuestion #31 of 65 ‘Question ID: 1455457 Your company is considering a migration strategy for moving its operations onto AWS Cloud. You need to move applications to the cloud with minimal changes to the existing applications. Which of these will you use? ¥ A) Rehosting X B) Repurchasing X ) Refactoring X D) Replatforming Question #32 of 65 ‘Question ID: 1455626 As a system operations resource your focus is to make the best decision within the AWS infrastructure. You are tasked with managing AWS resources such as EC2 instance types, geographic regions, VPC management and capacity planning and forecasting Which option is considered a key cost effective resource discussed in the AWS well architected framework pillar Cost optimization? X A) Right size X B) Using Reserved Instances only Y ©) Appropriate provisioning X D) Limiting regions Question #33 of 65 ‘Question ID: 1455629 You are a sysops engineer for a company that manages the distribution of music for a large record label. Music is downloaded all across North America. Certain areas geographically download large amounts of music as compared to other less populated areas. However, you are seeing a trend of customers complaining about the time it takes to download their music. What would be the most cost effective solution? X A) Alias recordYB) Amazon CloudFront X ¢) DNS X D) NAT gateway Question #34 of 65 Question ID: 1455561 Which of these statements correctly defines an Availability Zone? X A) The place where content is cached for providing low latency access for users X B) Allocation that contains AWS compliance reports X €) Aplace that has several locations isolated from each other YD) Anisolated part of the AWS Global Infrastructure Question #35 of 65 ‘Question ID: 1455628 You are working for a large data warehousing company that processes geographic data information. You support a vendor batch processing application that runs on two EC2 instances, The batch process runs for several hours and starts at 6:00 am, 9:00 am and 3:00 pm. The batch process aggregates the data and send it to the frontend application. This application does experience a sporadic increase in resource utilization during these times. What is the most cost effective solution for this application? X A) Dedicated Instances YB) Spot Instances X C) On-premise servers X D) Reserved Instances Question #36 of 65 Question ID: 1455501 You have been working for your company for over a year and you just started building several development EC2 instances. Your security department has asked you to start following AWS best practices as identified by the shared responsibility model.Which of the following is considered the customer's responsibility? X A) Patching the AWS networking infrastructure. XB) Patching the Amazon RDS database version Y ©) Rotating customer access keys for the IAM users. XD) Patching the operating system for an Amazon RDS environment. Question #37 of 65 ‘Question ID: 1455542 What does Amazon recommend for protecting data in transit when you have a concern of accidental information disclosure? X A) TrueCrypt X_B) Encryption server ¥ ©) IPSec ESP XD) Digital signature Question #38 of 65 ‘Question ID: 1455495 Your company is evaluating the security implications of moving its data to AWS Cloud. As per the AWS shared responsibility model, which of these are the responsibility of AWS? (Choose two.) X A) Encryption key of the root account X B) Patching the guest operating system on an EC2 instance X €) Access rights to Amazon $3 objects YD) Security of servers running EC2 instances v_E) Data center security Question #39 of 65 ‘Question ID: 1455459 Your manager wants you to analyze all of the logs from several different applications running within your AWS EC2 infrastructure. Which AWS component would you use for this type of logging functionality?X A) Dynamic scaling YB) CloudWatch Logs agent X €) CloudFormation X D) An HTTPS load balancer Question #40 of 65 ‘Question ID: 1455528 ‘What type of internal Amazon user can be created to mimic a service, application, or person that has access to AWS resources? X A) IAM group X B) Root user ¥ €) IAMuser X D) Federated user Question #41 of 65 ‘Question ID: 1455594 ‘Your company wants to find the right AWS solution for running its Oracle database. It needs a solution that is highly available, fully managed, and automatically replicated. It does not want to have to perform patching ad updates of the Underlying database engine. Which would be the right choice for this requirement? vA) Amazon RDS X B) Amazon EC2 X C) Storage Gateway X D) VMware Cloud on AWS Question #42 of 65 ‘Question ID: 1455630 You are a sysops administrator, and you are in the process of moving several on-premises custom scripts to your AWS C2 environment, These scripts manage several basic tasks that run on a Linux operating system and manage datawithin a file system, and also execute several unique reports. You are tasked with minimizing costs and also making sure these scripts are highly available. ‘What resource below would you choose to complete this task? X A) AWS CloudFront YB) AWS Lambda X @) Routing policy XD) AWS Direct Connect Question #43 of 65 Question ID; 1455595 You need to select an AWS data storage option for your company, but you are presently unsure of the access patterns of your data objects. Which would be the right storage class you should use? X A) $3 Standard YB) S3 Intelligent-Tiering X €) $3 Glacier X D) $3 One Zone-IA Question #44 of 65 Question ID: 1455633 You have been managing your current production workload with several Reserved Instances for about 9 months. You have been monitoring resources within the Amazon CloudWatch dashboard and notice several progressive increases in overall workload each month. Your goal is to make sure your EC2 infrastructure has enough capacity and overall bandwidth to support these smaller increases in workload What type of instance would meet this requirement? YA) On-Demand Instances X B) Dedicated Hosts X C) Spot instances X D) Reserved InstancesQuestion #45 of 65 ‘Question ID: 1455497 Amazon's shared responsibility model for infrastructure services, including EC2, states that Amazon is responsible for which three security components? X A) Data in transit X B) Credentials YC) Facilities X D) Policies and configuration Y_E) Physical security of hardware YF) Virtualization infrastructure Question #46 of 65 ‘Question ID: 1455600 How would you respond to your boss if he asked you the difference between Amazon Simple Storage Service (Amazon 3) storage and Elastic Block Storage (EBS)? (Choose all that apply.) X A) Amazon $3 will only hold binary-related data. X B) Amazon 3 does not allow versioning X ©) Buckets that are stored within Amazon S3 can be duplicated. X D) Objects can be over 20 terabytes in size in Amazon S3. YE) The objects that are stored within an Amazon $3 bucket hold both metadata and data, YF) Amazon S3 uses buckets to store objects. Question #47 of 65 ‘Question ID: 1455485, As an IT specialist with a cloud background, you are concemed with the overall recoverability of your data within the cloud. What does Amazon S3 offer to alleviate this concem? VA) The S3 infrastructure is considered eventually consistent. XB) Data is stored in silos in another country. X ©) Data within Amazon $3 storage is backed up to tape nightly.X D) Data is replicated to multiple regions within an availability zone. Question #48 of 65 Question ID; 1455536 You need expert guidance on how your company needs to meet security and compliance requirements and implement best practices while making a migration to the AWS Cloud. Which resource would you use to best suit this need? X A) AWS GuardDuty X B) AWS Trusted Advisor X €) AWS Shield YD) AWS Security Competency Partners Question #49 of 65 ‘Question ID; 1455551 You work for a large company that manages electronic patient records. The primary application is configured with a load balancer that is used to evenly distribute the workload between two production EC2 instances. You are tasked with making sure the connection from the client medical facilities and the load balancer is properly secured by using the appropriate SSL security policy. What policy would you choose to accomplish this task? X A) Geolocation routing policy X B) Default security policy X €) Resource-based policy YD) Predefined security policy Question #50 of 65 ‘Question ID: 1455588 ‘You work for a financial services company, and you need to find a way to automatically detect and analyze handwritten notes inside of financial reports. Which AWS service should you use? X A) TranscribeY B) Textract X €) Translate X D) Forecast Question #51 of 65 Question ID: 1455625 ‘You are instructed to create an Amazon RDS database environment, At the same time, you are advised that you need to understand how you are going to be billed based on your research and design of the newly created RDS environment, As of today, your EC2 instance has been connected for 8 hours and 45 minutes, Keep in mind there are no selup fees and no minimums to be concerned with Which billing option specifies how you would be billed? X A) Network time YB) Running time X €) Dynamic scaling X D) Listeners Question #52 of 65 ‘Question ID: 1455539 ‘You work for a company that has several AWS resources which consists of seven Amazon EC2 instances that support several back-end databases. You are under constant pressure from the security department to make sure that these EC2 instances comply with the company's best security practices and stay within the company's strict compliance rules. Which of the following Amazon resources would you use to meet this req} YA) Amazon Inspector X B) Amazon CloudFront X G) Dynamic Scaling X D) AWS System ManagerQuestion #53 of 65 ‘Question ID: 1455578 Which AWS service would you need to use for creating a microservices-based system architecture allowing applications’ components to communicate with each other? X A) EFS vB) Sas x ¢) 83 X D) EBS Question #54 of 65 ‘Question ID: 1458534 ‘What security requirements does Amazon recommend for securing operating systems and applications related to AMIs? X A) Avoid using bastion hosts due to the lack of access control. YB) Verify least privilege checks using the IAM user Access Advisor on all AMIs. X C) Copy the authorized _keys file to a safe location when someone leaves the company or transfers to another department. XD) Enable secret keys and root access keys within each pre-configured AMI bull Question #55 of 65 Question ID: 1455634 You work for a holding company that manages several other companies that support several different industries. You are tasked with setting up AWS accounts for each company within the holdings portfolio. You are also required to manage these accounts from a global perspective and keep up with the billing information related to these new AWS accounts. Which of the following policies would best meet these requirements? YA) Use AWS Organizations X B) Use Consolidated billing X €) Use IAM users XD) Use IAM policiesQuestion #56 of 65 ‘Question ID: 1455502 You are reviewing an AWS document which clearly outlines the roles and responsibilities of a customer and AWS. You want to separate the responsibilities into two categories. Which of the following categories is considered an AWS-only responsibility? X A) Inherited controls X B) Security in the cloud ¥ €) Security of the cloud X D) Patch management Question #57 of 65 ‘Question ID; 1455552 You are tasked with understanding the different sections of an IAM policy. Your boss wants to know what section of an IAM policy manages the behaviors such as allow or deny. What should you tell him? X A) Actions X B) IAM permission boundaries YC) Effects X D) Resources Question #58 of 65 Question ID: 1455573 The company you work for has been using an on-premises 15 TB MySQL database for about two years. Over the past 5 months, data has been constantly increasing at a rate of 800 GB per month. You have been tasked with migrating the data into an AWS cloud solution while also creating a read replica with under a 200 millisecond lag time between the primary and the read replica. Which database solution can you use to meet these requirements? X A) Oracle X B) Microsoft SQL Server X ¢) IBM DB2YD) Amazon Aurora Question #59 of 65 ‘Question ID; 1455503 You have just created an EC2 instance using an AMI that uses a Linux Ubuntu operating system. A security report suggested that the operating system might need to be patched. How would you classify the operating system that needs to be patched, and whose responsibility is it to patch it? X A) AWS-owned operating system, and the customer's responsibility X B) AWS-owned operating system, and Amazon's responsibility X ©) Guest operating system, and Amazon's responsibility YD) Guest operating system, and the customer's responsibility Question #60 of 65 Question ID: 1455646 Your boss tells you to find an inexpensive cloud solution for an EC2 environment that will only be needed for 9 months. ‘What is your best option? X A) Spot Instance X B) Dedicated Instance YC) Partial upfront costs reserved X D) On-Demand Instance Question #61 of 65 Question ID: 1455639 Which two support cases can you create using AWS Support from the AWS Management Console? (Choose two.) YA) Account and billing X B) Change the root account email address X ©) Support plan change X D) Closing your accountYE) Service limit increase Question #62 of 65 ‘Question ID; 1455602 Amazon recommends their Amazon S3 Glacier services for which of the following situations? ¥ A) Data is rarely accessed and data recovery time is around 3-5 hours. XB) Data older than 180 days is automatically removed from the system. X ©) Data is continually accessed and recovery time is less than 10 minutes. X D) Data recovery time is within minutes and data access is frequent. Question #63 of 65 ‘Question ID: 1455636 ‘You work for ABC corporation that is actively using Amazon $3 storage solutions. The company has files that are stored using Amazon S3, but want to save costs because a majority of their files are not be used after 40 days. However, they need the ability to recover files within a few minutes after the request to see a file. Which option below best meets these requirements? VA) Move the data to Amazon S3 Standard using Infrequent Access (A) option after 40 days. X B) Move the objects to Amazon Glacier after 40 days X C) Enable the delete option on each bucket and recover the data as requested. X D) Enable versioning and delete certain files after 40 days. Question #64 of 65 ‘Question ID: 1455548 Which of these is a private cloud deployment? X A) Cloud-based X B) PAYG X ©) Hybrid ¥ D) On-premiseQuestion #65 of 65 ‘Question ID: 1455518 What kind of strategy does Amazon offer for situations regarding accidental deletion within Amazon $3? X A) Digital signatures XB) Backup replication ¥ €) Versioning X D) Application level encryption