Which of the following statements are false when it comes to AWS DataSync

No comments about this test.

True or False: Access Control Lists can be used to make entire buckets (like one hosting an S3 website) public. True False.
True or False: Both you and a friend can have an S3 bucket called 'mytestbucket'. True False.
True or False: S3 can be used to host a dynamic website, like one that runs on a LAMP stack. True False.
Which of the following data archival services is extremely inexpensive and has configurable retrieval times, from minutes to hours? S3 standard S3 standard IA S3 Glacier Amazon S3 Reduced Redundancy Storage (RRS) S3 One Zone IA.
There are at least ___ Availability Zones per AWS Region. 3 2 5 1.
True or False: A CloudFront Origin can be an S3 bucket, an EC2 instance, an Elastic Load Balancer, or an AWS Elemental MediaPackage endpoint. True False.
Which of the following are steps you should take in securing your AWS account? Activate Multifactor Authentication (MFA) on your root account. Use Groups to assign permissions to IAM users. Use your AWS account root user access keys. Create individual IAM users.
Which of the following are types of cloud computing deployments? Private Cloud Mixed Cloud Hybrid Cloud Public Cloud.
Regions, Availability Zones and Edge Locations are important components of the AWS Global Cloud Infrastructure. Which of the following shows the correct order of Regions, Availability Zones and Edge Locations, listed from greatest number to least number of occurrences? Number of Edge Locations is greater than the Number of Availability Zones. The number of Availability Zones are greater than the Number of Regions Number of Availability Zones is greater than the Number of Edge Locations. The Number of Edge locations is greater than the Number of Regions Number of Availability Zones is greater than the Number of Regions. The Number of Regions is greater than the Number of Edge Locations.
True or False: S3 is object storage suitable for the storage of 'flat' files like Word documents, photos, etc. True False.
Which of the following best describes EBS? A managed database service A NoSQL database service A virtual hard-disk in the cloud A bitcoin-mining service.
IAM policies are written using ____. XML JSON SGML SAML.
True or False: There are more AWS Regions than there are Availability Zones. True False.
Which of the following is the JSON document used to grant permissions to users, groups, and roles? Paradigm Passbook Protocol Policy.
True or False: As a general rule, AWS recommends that you use S3 access control lists (ACLs) for access control. True False.
Which of the following AWS Support levels offers the assistance of a Technical Account Manager? Elite Developer Business Enterprise.
Which of the following best describes Availability Zones? Two zones containing compute resources that are designed to automatically maintain synchronized copies of each other's data. A Content Delivery Network used to deliver content to users. Restricted areas designed specifically for the creation of Virtual Private Clouds. An Availability Zone (AZ) is one or more discrete data centers with redundant power, networking, and connectivity in an AWS Region.
Which of the following Route 53 policies allow you to a) route data to a second resource if the first is unhealthy, and b) route data to resources that have better performance? Geoproximity Routing and Geolocation Routing Geolocation Routing and Latency-based Routing Failover Routing and Latency-based Routing Failover Routing and Simple Routing.
Which of the below does S3 Transfer Acceleration use to get your data into AWS quicker? AWS Regions Edge Locations VPC´s Availability Zones.
Which of the following best describes an AWS Region? A physical location with multiple, isolated, and physically separate AZ's within a geographic area. A collection of databases that can only be accessed from a specific geographic region. A console that gives you a quick, global picture of your cloud computing environment. A collection of data centers that is spread evenly around a specific continent.
Which of the following EC2 options is best for long-term workloads with predictable usage patterns? Spot instances Reserved instances On-Demand instances Dedicated Host.
True or False: Objects stored in S3 are stored in a single, central location within AWS. True False.
Which of the following are advantages of cloud computing? The capital expenditure (CapEx) funding model Elasticity - you need not worry about capacity Variable expense Increased speed and agility The ability to 'go global' in minutes.
Which of the following AWS Support levels offers 24x7 technical support via phone or chat? Business Developer Basic Individual.
Which of the following are characteristics of cloud computing? Services are delivered over the Internet Pay-as-you-go pricing Cloud charges are capital expenditures On-demand delivery.
In which of the following is CloudFront content cached? Data Center Availability Zone Region Edge Location.
Which of the following are Support Levels offered by AWS? Developer Start-up Basic Individual Business.
Amazon Lightsail is an example of which of the following? Platform as a Service Functions as a Service Infrastructure as a Service Software as a Service.
True or False: A distribution is a link between an origin server and a domain name, which CloudFront uses to identify the object you have stored in your origin server. True False.
True or False: Identity Access Management (IAM) is a Regional service. True False.
Which of the following are valid access types for an IAM user? Security Group access via the AWS command line Emergency access via Identity Access Management (IAM) Programmatic access via the command line Using the AWS Software Developers Kit AWS Management Console access.
Which of the following EC2 instance types will realize a savings over time in exchange for a contracted term-of-service? Discount instances Reserved instances On-demand instances Spot instances.
Which of the following support plans features a < 4-hour response time in the event of an impaired production system? Business Developer Basic Individual.
Which of the following AWS Support Plans provide Enhanced Technical Support ONLY during business hours via email? Developer Business Basic Enterprise.
Which of the following are valid EC2 pricing options? Reserved Enterprise Stop On-demand.
True or False: With Consolidated Billing, the Paying Account can make changes to any of the resources owned by a Linked Account. True False.
By default, what is the maximum number of Linked Accounts per Paying Account under Consolidated Billing? 50 20 35.
Choose the features of Consolidated Billing. Charging is based per VPC A single bill is issued containing the charges for all AWS Accounts Multiple standalone accounts are combined and may reduce your overall bill Account charges can be tracked individually.
Which two of the following options best describe a Resource Group? A resource group is a collection of resources that are deployed in the same AWS Region, and that match the criteria specified in the group's query. A resource group is a collection of resources that share one or more tags. A resource group is a collection of resources of the same type (EC2, S3, etc.) that are deployed in the same Availability Zone. A resource group is a collection of resources of the same type (EC2, S3, etc.) that share one or more tags or portions of tags.
Which of the following components are billed for Amazon RDS instances? Data transfer incurred in replicating data between your primary and standby, in a Multi-AZ DB instance deployment I/O requests for Amazon RDS magnetic storage Standby time DB instance hours Storage.
Which of the following AWS services are free to use? EBS S3 EC2 Auto-scalling Elastic Beanstalk RDS VPC Route 53 CloudFormation IAM.
True or False: The Standard version of AWS Shield offers automated application (layer 7) traffic monitoring. True False.
Which of the following AWS services can help you assess the fault-tolerance of your AWS environment? AWS Trusted Advisor AWS WAF AWS Shield AWS Inspector.
The AWS Web Application Firewall can operate up to what layer of the OSI model? 6 7 4.
True or False: Security in the cloud is the responsibility of AWS. True False.
True or False: It's safer to use Access Keys than it is to use IAM roles. True False.
Which of the following services will help you optimize your entire AWS environment in real time following AWS best practices? AWS Trusted Advisor AWS Shield AWS WAF AWS Inspector.
Which of the following is AWS' managed DDoS protection service? AWS Shield AWS WAF Access Control List Security Groups.
Which of the following Compliance certifications attests to the security of the AWS platform regarding credit card transactions? SOC 1 ISO 27001 SOC 2 PCI DSS Level 1.
You need to use an AWS service to assess the security and compliance of your EC2 instances. Which of the following services should you use? AWS Inspector AWS WAF AWS Trusted Advisor AWS Shield.
Which of the following Compliance guarantees attests to the fact that the AWS Platform has met the standard required for the secure storage of medical records in the US? FERPA HIPAA GLBA PCI DSS HITECH.
Which of the following are AWS compute services? Amazon Elastic Block Store (EBS) Amazon Elastic Compute Cloud (EC2) AWS Lambda Amazon Simple Notification Service (SNS).
You have a mission-critical application which must be globally available at all times. Which deployment strategy should you follow? Deploy to all Availability Zones in your home region. Multi-VPC in two AWS Regions Multi-Region Multi-Availability Zone.
Which of the following are good cloud design principles? Disposable resources Assume everything will fail Infrastructure as code Scalability Treat your servers like pets, not cattle.
Which of the following is AWS' Data Warehousing service? S3 Big Data Elastic Map Reduce Redshift Snowball.
Which of the following AWS services should you use to migrate an existing database to AWS? Route53 SNS Storage Gateway DMS.
You have a project that will require 90 hours of computing time. There is no deadline, and the work can be stopped and restarted without adverse effect. Which of the following computing options offers the most cost-effective solution? Spot instances On-demand instances Reserved instances ECS instances.
Which AWS service is specifically designed to assist you in processing large data sets? EMR ElastiCache EC2 AWS Big Data Processing.
Which of the following support services do all accounts receive as standard? Enhanced Technical Support Billing support 24/7 support via phone and chat Technical Account Manager.
What is an AWS region? A region is a collection of Edge Locations available in specific countries. A region is a subset of AWS technologies. For example, the Compute region consists of EC2, ECS, Lambda, etc. A region is an independent data center, located in different countries around the globe. A region is a geographical area divided into Availability Zones. Each region contains at least two Availability Zones.
Regions, Availability Zones and Edge Locations are important components of the AWS Global Cloud Infrastructure. Which of the following shows the correct order of Regions, Availability Zones and Edge Locations, listed from greatest number to least number of occurrences? Edge Locations, Availability Zones, Regions Availability Zones, Regions, Edge Locations Regions, Availability Zones, Edge Locations.
Which of the following AWS services should you use if you'd like to be notified when you have crossed a billing threshold? AWS Budgets AWS Costs and Usage Reports Trusted Advisor CloudWatch.
Which online tool can inspect your AWS environment and make recommendations for saving money, improving system performance, or closing security gaps? Trusted Advisor CloudTrail Service Catalog Config Rules.
Which of the following AWS services can assist you with cost optimization? AWS Trusted Advisor AWS Inspector AWS Shield AWS WAF.
Under the Shared Responsibility model, for which of the following does AWS not assume responsibility? Hypervisors Networking Physical Security of AWS Facilities Customer Data.
Which of the following is not a feature of AWS Organizations? Granular configuration of Security Groups within a VPC Grouping all of your AWS accounts into organizational Units (OUs) as part of a hierarchy AWS accounts which are members of an Organization can have the benefit of Consolidated Billing Hierarchical based control over groups of IAM users and roles, within multiple Accounts.
Which of the following support plans features unlimited (customer-side) contacts and unlimited support cases? Business Developer Basic Enterprise.
Your Development team uses 4 on-demand EC2 instances, while your QA team has 5 reserved instances, with 3 currently in use. All Dev and QA instances are the same type, and are launched in the same AZ. Assuming all AWS accounts are under a single AWS Organization, how will the Development team's instances be billed? The Dev team will be billed for two instances at on-demand prices and two instances at the reserved instance price. All the Dev team's instances will be billed at the on-demand rate. All the Dev instances will be billed at the reserved instance rate. The pricing for the reserved instances will shift from QA to Dev.
You need to host a file in a location that's publicly accessible from anywhere in the world. Which AWS service would best meet that need? RDS EC2 S3 EBS.
Which AWS service allows you to run code without having to worry about provisioning any underlying resources (such as virtual machines, databases etc.) Lambda EC2 Container Service Dynamo DB EC2.
Which AWS service acts as a file system mount on S3? Amazon S3 File Gateway Amazon Elastic File System Amazon Elastic Block Store.
True or false: With AWS Organizations, there are two available feature sets. You may choose to use the consolidated billing features only, or use all of the available features. True False.
Which of the following is AWS' managed database service that is up to 5X faster than a traditional MySQL database. Aurora DynamoDB PostgreSQL MariaDB.
Under the AWS shared responsibility model, what are the customer´s responsibilities? Physical and environmental security. Physical network devices including firewalls. Storage device decommissioning. Security of data in transit. Data integrity authentication.
Which of the following is a principle of good AWS Cloud architecture design? Implement single points of failure Implement loose coupling Implement monolithic design Implement vertical scaling.
A company stores copies of backups on Amazon S3 and requires rapid access but low resiliency. Which storage class is optimized for these requirements? Amazon S3 Standard Amazon S3 Glacier Deep Archive Amazon S3 One Zone-Infrequent Access Amazon S3 Glacier.
Which AWS service can be used to generate encryption keys that can be used to encrypt data? Amazon Macie AWS Certificate Manager AWS Key Management Service (AWS KMS) AWS Secrets Manager AWS CloudHSM .
Which of the following are accurate descriptions of AWS IAM users and groups? Groups can be nested and can contain other groups A user can be a member of multiple groups Groups can contain users only and cannot be nested A user can only be a member of a single group at one a time All new users are automatically added to a default group.
Which benefit of the AWS Cloud eliminates the need for users to try estimating future infrastructure usage? Easy global deployments Security of the AWS Cloud Elasticity of the AWS Cloud Economies of scale.
A company plans to deploy a global commercial application on Amazon EC2 instances. The deployment solution be designed with the highest redundancy and fault tolerance. Based on this situation, how should the EC2 instances be deployed? In a single Availability Zone in one AWS Region In a single Availability Zone in two AWS Region Across multiple Availability Zones in one AWS Region Across multiple Availability Zones in two AWS Regions.
Which AWS services can be used to connect the AWS Cloud and on-premises resources? AWS Managed VPN Amazon Connect Amazon CloudHSM AWS Direct Connect AWS Managed Services.
Which AWS service can you use to install a third-party database? Amazon RDS Amazon DynamoDB Amazon EC2 Amazon EMR.
Which service can you use to provision a preconfigured server with little to no AWS experience? Amazon Elastic Beanstalk AWS Lambda Amazon EC2 Amazon LightSail.
Which service allows you to automatically expand and shrink your application in response to demand? AWS ElastiCache Amazon Elastic Load Balancing Amazon EC2 Auto Scaling Amazon DynamoDB.
What method can you use to take a backup of an Amazon EC2 instance using AWS tools? Take full and incremental file-level backups using the backup console. Take application-consistent backups using the EC2 API. Use Cross Region Replication (CRR) to copy the instance to another region. Take a snapshot to capture the point-in-time state of the instance.
When instantiating compute resources, what are two techniques for using automated, repeatable processes that are fast and avoid human error? Snapshotting Bootstrapping Fault tolerance Infrastructure as code Performance monitoring.
Which feature of AWS allows you to deploy a new application for which the requirements may change over time? Elasticity Fault tolerance Disposable resources High availability.
Which feature of Amazon Rekognition can assist with saving time? Identification of objects in images and videos Identification of the languages of text in a document Adds automatic speech recognitions (ASR) to applications Provides on-demand access to compliance-related-information.
Which AWS Service can be used to process a large amount of data using the Hadoop framework? Amazon Athena Amazon Kinesis AWS Glue Amazon EMR.
A company would like to maximize their potential volume and reserved instance discounts across multiple accounts and also apply service control policies on member accounts. Which service or tool can they use to gain these benefits? AWS Budgets AWS Cost Explorer AWS IAM AWS Organizations.
What are two ways that moving to an AWS cloud can benefit an organization? Switch to a CAPEX model Increase speed and agility Stop guessing about capacity Depreciate assets over a longer timeframe Gain greater control of data center security.
Which AWS service can an organization use to automate operational tasks on EC2 instances using existing Chef cookbooks? AWS OpsWorks AWS Service Catalog AWS Config AWS CodeDeploy.
Which of the following statements is correct in relation to consolidated billing? Paying accounts are independent and cannot access resources of other accounts Used to consolidate billing across organizations One bill is provided per AWS organization Volume pricing discounts cannot be applied to resources Only available to Enterprise customers.
Which pricing model should you use for EC2 instances that will be used in a lab environment for several hours on a weekend and must run uninterrupted? On-demand Reserved Spot Dedicated Instance.
Which AWS service can be used to convert video and audio files from their source format into versions that will playback on devices like smartphones, tablets and PC? Elastic Transcoder Elastic Beanstalk Elastic Load Balancer Auto Scaling.
Which service can be used to help you to migrate databases to AWS quickly and securely? AWS Key Management Service (KMS) AWS Server Management Service (SMS) AWS Database Migration Service (DMS) AWS DataSync.
Which AWS Service is used to enable multi-factor authentication? Amazon STS AWS IAM Amazon EC2 AWS KMS.
What benefits are provided by Amazon CloudFront? Allows you to register domain names Built-in Distributed Denial of Service (DDoS) attack protection Used to enable private subnet instances to access the Internet Content is cached at Edge Locations for fast distribution to customers Provides a worldwide distributed DNS service.
Which AWS support plan should you use if you need a response time of < 15 minutes for a business-critical system failure? Basic Developer Business Enterprise.
Which feature can you use to grant read/write access to an Amazon S3 Bucket? IAM Role IAM Policy IAM Group IAM User.
How can an organization compare the cost of running applications in an on-premises or colocation environment against the AWS cloud? AWS Budgets AWS Simple Monthly Calculator TCO Calculator AWS Cost Explorer.
Which statement below is incorrect in relation to Network ACLs? They operate at the Availability Zone Level They support allow and deny rules They are stateless They process rules in order.
Which statement below is incorrect in relation to Security Groups? They operate at the instance level They support allow rules only They are stateless They evaluate all rules before making a decision.
Which of the following are features of Amazon CloudWatch? (Select two) It is used to gain system-wide visibility into resource utilization It records an account activity and service events from most AWS services It is used for auditing of API calls It can be accessed via API, command-line interface, AWS SDKs, and the AWS Management Console It provides visibility into user activity by recording actions taken on your account.
What architectural best practice aims to reduce the interdependencies between services? Services, Not Servers Removing Single Points of Failure Automation Loose Coupling.
Which service allows you to run code as functions without needing to provision or manage servers? Amazon EC2 AWS CodeDeploy AWS Lambda Amazon EKS.
What benefits does Amazon EC2 provide overusing non-cloud servers? (Select two) Complete control of the hypervisor layer Elastic web-scale computing Inexpensive Fault tolerance High-availability with an SLA of 99.999%.
What is the most cost-effective EC2 pricing option to use for a non-critical overnight workload? On Demand Spot Reserved Instance Dedicated Host .
What is the most cost-effective support plan that should be selected to provide at least a 1-hour response time for a production system failure? Basic Developer Business Enterprise.
Under the shared responsibility model, what are examples of shared controls? (Select two) Patch management Storage system patching Physical and environmental Configuration management Service and communications protection.
Which service can be used for building and integrating loosely-coupled, distributed applications? Amazon EBS Amazon SNS Amazon EFS Amazon RDS.
For which services does Amazon not charge customers? (Select two) Amazon VPC Amazon EBS Amazon CloudFormation Amazon S3 Amazon SNS.
What can you use to quickly connect your office securely to your Amazon VPC? Route Table Internet Gateway Direct Connect AWS Managed VPN.
Which storage service allows you to connect multiple EC2 instances concurrently using file-level protocols? Amazon S3 Amazon EBS Amazon EFS Amazon Glacier.
Which service records API activity on your account and delivers log files to an Amazon S3 bucket? Amazon CloudWatch Amazon S3 Event Notifications AWS CloudTrail Amazon CloudWatch Logs.
Which AWS storage technology can be considered a “virtual hard disk in the cloud”? Amazon Elastic File Storage (EFS) filesystem Amazon Elastic Block Storage (EBS) volume Amazon S3 object Amazon Glacier archive.
A company plans to create a hybrid cloud architecture. What technology will allow them to create a hybrid cloud? VPC Peering Internet Gateway AWS Direct Connect Elastic Network Interface.
What is the scope of a VPC within a region? Spans all Availability Zones within the region Spans all Availability Zones globally At least 2 subnets per region At least 2 data centers per region.
What advantages do you get from using the AWS Cloud? (Select two) Trade Capital expense for variable expense Stop guessing about capacity Increased capital expenditure Gain greater control of the infrastructure layer Comply with all local security compliance programs.
Which tool enables you to visualize your usage patterns over time and to identify your underlying cost drivers? AWS Simple Monthly Calculator Total Cost of Ownership (TCO) Calculator AWS Cost Explorer AWS Budgets.
Which service supports the resolution of public domain names to IP addresses or AWS resources? Amazon Route 53 Amazon CloudFront Amazon SNS Hosted Zones.
Which types of pricing policies does AWS offer? (Select Two) Pay-as-you-go Enterprise license agreement (ELA) Non-peak hour discounts Global usage discounts Save when you reserve.
The AWS identity and Access Management (IAM) service can be used to manage which objects? (Select two) Security groups Access policies Roles Network ACLs Key pairs.
Under the AWS shared responsibility model what is the customer responsible for? Physical security of the data center Replacement and disposal of disk drives Configuration of security groups Patch management of infrastructure Encryption of customer data.
Which of the statements below is accurate regarding Amazon S3 buckets? (Select two) Bucket names must be unique regionally Buckets are replicated globally Bucket names must be unique globally Buckets are region-specific Buckets can contain other buckets.
What considerations are there when choosing which region to use? (Select two) Data sovereignty Available storage capacity Latency Pricing in local currency Available compute capacity.
Which service can be used to track the CPU usage of an EC2 instance? Amazon CloudTrail Amazon CloudFront Amazon CloudFormation Amazon CloudWatch.
Which AWS service allows you to connect to storage from on-premise servers using standard file protocols? Amazon S3 Amazon EBS Amazon Glacier Amazon EFS.
The AWS global infrastructure is composed of? (Select two) Regions Clusters Fault Zones Availability Zones.
Which items can be configured from within the VPC management console? Subnets Regions Load Balancing Auto Scaling Security Groups.
What advantages does deploying Amazon CloudFront provide? (Select two) A private network link to the AWS Cloud Reduced latency Automated deployment of resources Improved performance for end users Provides serverless compute services.
What is an availability zone composed of? One or more regions One or more data centers in a location A collection of edge locations A collection of VPCs.
Which AWS service is primarily used for software version control? AWS CodeCommit AWS CodeStar AWS Cloud9 AWS CodeDeploy.
Which services can be used for asynchronous integration between application components? (Select two) Amazon SQS AWS Step Functions Amazon EC2 Auto Scaling AWS CloudFormation AWS Route 53.
How does AWS assist organizations with their capacity requirements? With AWS you only pay for what you use You don’t need to guess your capacity needs You don’t own the infrastructure With AWS you don’t pay for data centers.
What strategy can assist with allocating metadata to AWS resources for cost tracking and visibility? Tagging Labelling Access Control Categorizing.
What is the term for describing the action of automatically running scripts on Amazon EC2 instances when launched to install software? Golden images Bootstrapping Containerization Workflow automation.
Which of the following is a method of backup available in the AWS Cloud? Amazon EBS Snapshots Availability Zones Amazon EFS File Systems Amazon Route 53 Alias Record.
Which AWS dashboard displays relevant and timely information to help users manage events in progress, and provides proactive notifications to help plan for scheduled activities? AWS Service Health Dashboard AWS Personal Health Dashboard AWS Trusted Advisor Dashboard Amazon CloudWatch Dashboard.
A company has an application with users in both Australia and Germany. All the company infrastructure is currently provisioned in the Europe (Frankfurt) Region, and Australian users are experiencing high latency. What should the company do to reduce latency? Implement AWS Direct Connect for users in Australia Provision resources in the Asia Pacific (Sidney) Region in Australia Use AWS Transit Gateway to quickly route users from Australia to the application Launch additional Amazon EC2 instances in Frankfurt to handle the demand.
Which AWS service should a Cloud Practitioner use to automate configuration management using Puppet? AWS Config AWS OpsWorks AWS CloudFormation AWS Systems Manager.
Which AWS service is used to send both text and email messages from distributed applications? Amazon Simple Notification Service (Amazon SNS) Amazon Simple Email Service (Amazon SES) Amazon Simple Workflow Service (Amazon SWF) Amazon Simple Queue Service (Amazon SQS).
Which AWS service or feature allows a company to receive a single monthly AWS bill when using multiple AWS accounts? Consolidated billing Amazon Cloud Directory AWS Cost Explorer AWS Cost and Usage report.
A user needs an automated security assessment report that will identify unintended network access to Amazon EC2 instances and vulnerabilities on those instances. Which AWS service will provide this assessment report? EC2 security groups AWS Config Amazon Macie Amazon Inspector.
Which of the following best describes an Availability Zone in the AWS Cloud? One or more physical data centers A completely isolated geographic location One or more edge locations based around the world A subnet for deploying resources into.
A Company needs a consistent and dedicated connection between AWS resources and an on-premise system. Which AWS service can fulfil this requirement? AWS Direct Connect AWS Managed VPN Amazon Connect AWS DataSync.
Which AWS service helps customers meet corporate, contractual, and regulatory compliance requirements for data security by using dedicated hardware appliances within the AWS Cloud? AWS Secrets Manager AWS CloudHSM AWS Key Management Service (AWS KMS) AWS Directory Service.
What can a Cloud Practitioner use the AWS Total Cost of Ownership (TCO) Calculator for? Generate reports that break down AWS Cloud compute cost by duration, resource, or tags Estimate savings when comparing the AWS Cloud to an on-premises environment Estimate a monthly bill for the AWS Cloud resources that will be used Enable billing alerts to monitor actual AWS costs compared to estimated costs.
An application has highly dynamic usage patterns. Which characteristic of the AWS Cloud make it cost-effective for this type of workload? (Select two). High availability Strict security Elasticity Pay-as-you-go-pricing Reliability.
Which benefits can a company immediately realize using the AWS Cloud? (Select two) Variable expense are replaced with capital expenses Capital expenses are replaced with variable expenses User control of physical infrastructure Increased agility No responsibility for security.
Which of the following should be used to improve the security of access to the AWS Management Console? (Select two) AWS Secrets Manager AWS Certificate Manager AWS Multi-Factor Authentication (AWS MFA) Security group rules Strong password policies.
Which AWS hybrid storage service enables a user’s on-premises applications to seamlessly use AWS Cloud storage? AWS Backup Amazon Connect AWS Direct Connect AWS Storage Gateway.
A user has limited knowledge of AWS services, but wants to quickly deploy a scalable Node.js application in an Amazon VPC. Which service should be used to deploy the application? AWS CloudFormation AWS Elastic Beanstalk Amazon EC2 Amazon LightSail.
How can a security compliance officer retrieve AWS compliance documentation such as a SOC 2 report? Using AWS Artifact Using AWS Trusted Advisor Using AWS Inspector Using the AWS Personal Health Dashboard.
Which items should be included in a TCO analysis comparing on-premise to AWS Cloud? (Select two) Firewall management Application licensing Compute hardware Data center security Operating system patching.
Which of the facts below are accurate in relation to AWS Regions? (Select two) Each region consists of 2 or more availability zones Each region consists of a collection of VPCs Each region is designed to be completely isolated from the other Amazon Regions Regions have direct, low-latency, high throughput, and redundant network connections between each other Regions are Content Delivery Network (CDN) endpoints for CloudFront.
Which service provides visibility into user activity by recording actions taken on your account? Amazon CloudWatch Amazon CloudFormation Amazon CloudTrail Amazon CloudHSM.
Which AWS service can be used to run Docker containers? AWS Lambda Amazon ECR Amazon ECS Amazon AMI.
What is a Resource Group? A collection of resources within a VPC A collection of resources that share one or more tags A collection of services within a category A collection of services within a region.
Which statements are true about Amazon EBS volumes? (Select two) You can attach EBS volumes to multiple instances EBS volumes must be in the same AZ as the instances they are attached to You can attach multiple EBS volumes to an instance EBS volume data is ephemeral and is lost when an instance is stopped EBS volumes are object storage.
How can you apply metadata to an EC2 instance that categorizes it according to its purpose, owner or environment? Labels Tags Hostname Stickers.
What are the benefits of using the AWS Managed Services? (Select two) Alignment with ITIL processes Managed applications so you can focus on infrastructure Baseline integration with ITSM tools Designed for small businesses Support for all AWS services.
To connect an on-premises network to an Amazon VPC using an Amazon Managed VPN connection, which components are required? (Select two) VPC Router Virtual Private Gateway NAT Instance Direct Connect Customer Gateway.
Which services are involved with security? (Select two) AWS CloudHSM AWS DMS AWS KMS AWS SMS Amazon ELB.
Which services are managed at a regional (rather than global) level? (Select two) Amazon CloudFront Amazon Route53 Amazon S3 Amazon EC2 AWS IAM.
What are the names of two types of AWS Storage Gateway? (Select two) S3 Gateway File Gateway Block Gateway Tape Gateway Cached Gateway.
A Cloud Practitioner wants to build an application stack that will be highly elastic. What AWS services can be used that don´t require you to make any capacity decisions upfront? (Select two) AWS Lambda Amazon EC2 Amazon S3 Amazon RDS Amazon DynanmoDB provisioned mode.
Which of the following services does Amazon Route53 provide? (Select two) Domain registration Route tables Domain Name Service (DNS) Auto Scaling Load balancing.
An application stores images which will be retrieved infrequently but must be available for retrieval immediately. Which is the most cost-effective storage option that meets these requirements? Amazon Glacier with expedited retrievals Amazon S3 Standard-Infrequent Access Amazon EFS Amazon S3 Standard .
Which AWS network element allows you to assign a static IPv4 address to an EC2 instance? Public IP Elastic IP Static IP Dynamic IP.
You need to implement a hosted queue for storing messages in transit between applications servers. Which service should you use? Amazon SWF Amazon SNS Amazon SQS Amazon DynamoDB.
Which configuration changes are associated with scaling horizontally? (Select two) Adding additional EC2 instances through Auto Scaling Adding a larger capacity hard drive to a server Changing the DB instance class on an RDS DB Adding additional hard drives to a storage array Changing an EC2 instance to a type that has more CPU and RAM.
Which AWS construct provides you with your own dedicated virtual network in the cloud? Amazon Workspaces Amazon EC2 Amazon IAM Amazon VPC.
What features does Amazon RDS provide to deliver scalability, availability and durability? (Select two) Multi-AZ Read Replicas DB mirroring Clustering Multi-Subnet.
What type of database is fully managed and can be scaled without incurring downtime? Amazon RDS Amazon S3 Amazon DynamoDB Amazon ElastiCache.
A manager needs to keep a check on his AWS spend. How can the manager setup alarm that notify him when his bill reaches a certain amount? Using Amazon CloudWatch Using AWS Trusted Advisor Using AWS CloudTrail By notifying AWS support.
A company is planning to migrate some resources into the cloud. What factors need to be considered when determining the cost of the AWS Cloud? (Select two) The number of VPCs created The number of servers migrated into EC2 The number of IAM users created The amount of egress data per month The amount of ingress data per month.
Which AWS support plans provide support via email, chat, and phone? (Select two) Basic Developer Business Enterprise.
Which AWS service can be used to host a static website? Amazon S3 Amazon EBS AWS CloudFormation Amazon EFS.
Which of the following are AWS recommended best practices in relation to IAM? Assign permission to users Create individual IAM users Embed access keys in application code Enable MFA for all users Grant greatest privilege.
Which of the following security operations tasks must be performed by AWS customers? (Select two) Collecting syslog messages from physical firewalls Issuing data center access keycards Installing security updates on EC2 instances Enabling multi-factor authentication (MFA) for privileged users Installing security updates for server firmware.
An architect wants to find a tool for consistently deploying the same resources through a templated configuration. What AWS service can be used? AWS Elastic Beanstalk AWS CodeBuild AWS CodeDeploy AWS CloudFormation.
Which configuration changes are associated with scaling vertically? Adding additional EC2 instances through Auto Scaling Adding additional hard drives to a storage array Adding a larger capacity hard drive to a server Distributed processing Changing an EC2 instance to a type that has more CPU and RAM.
How can an organization assess applications for vulnerabilities and deviations from best practice? Use AWS Artifact Use AWS Inspector Use AWS Shield Use AWS WAF.
An architect needs to compare the cost of deploying an on-premise web server and an EC2 instance on the AWS cloud. Which tool can be used to assist the architect? AWS Cost Explorer AWS Budgets AWS TCO Calculator AWS Simple Monthly Calculator.
Which of the following are valid types of Reserved Instances? Convertible RI Discounted RI Scheduled RI Long-Term RI Special RI.
At what level is a Network ACL applied? Instance level Region level Availability Zone Level Subnet level.
Which AWS service protects against common exploits that could compromise application availability, compromise security or consume excessive resources? AWS WAF AWS Shield Security Group Network ACL.
Which AWS service provides preconfigured virtual private servers (instances) that include everything required to deploy an application or create a database? AWS CloudFormation Amazon LightSail Amazon ECS AWS Lambda.
A new user is unable to access any AWS services, what is the most likely explanation? The user needs to login with a key pair The services are currently unavailable By default, new users are created without access to any AWS services The default limit for user logons has been reached.
Which of the following compliance programs allows the AWS environment to process, maintain, and store protected health information? ISO 27001 PCI DSS HIPAA SOC I.
You need to ensure you have the right amount of compute available to service demand. Which AWS service can automatically scale the number of EC2 instances for your application? Amazon Elastic Load Balancer Amazon ElastiCache Amazon EC2 Auto Scaling AWS RedShift.
Which AWS services can be utilized at no cost? Identity and Access Management (IAM) Amazon VPC Amazon S3 Amazon CloudFront Amazon RedShift.
Using AWS terminology, which items can be created in an Amazon S3 bucket? Folders Files Tables Objects Queues.
What are two ways an AWS customer can reduce their monthly spend? Turn off resources that are not being used Use more power efficient instances types Reserve capacity where suitable Be efficient with usage of Security Groups Reduce the amount of data ingress charges.
What are two ways of connecting to an Amazon VPC from an on-premise data center? VPC Peering AWS Direct Connect AWS VPN CloudHub Internet Gateway VPC Router.
Which AWS service provide elastic web-scale cloud computing allowing you to deploy operating system instances? Amazon EBS AWS Lambda Amazon RDS Amazon EC2.
Which AWS service gives you centralized control over the encryption keys used to protect your data? AWS STS AWS KMS AWS DMS Amazon EBS.
Which tool can be used to create and manage a selection of AWS services that are approved for use on AWS? AWS Service Catalog AWS OpsWorks Amazon Cloud Directory AWS Organizations.
Which AWS service can be used to load data from Amazon S3, transform it, and move it another destination? Amazon RedShift Amazon EMR Amazon Kinesis AWS Glue.
Which cloud computing model gives the IT department the highest level of flexibility and management control? Infrastructure as a Service (IaaS) Platform as a Service (PaaS) Software as a Service (SaaS) On-premise cloud.
How should an organization deploy an application running on multiple EC2 instance to ensure that a power failure does not cause an application outage? Launch the EC2 instances in separate regions Launch the EC2 instances into different VPCs Launch the EC2 instances into different Availability Zones Launch the EC2 instances into Edge Locations.
Which of the statements below is correct in relation to Consolidated Billing? You receive one bill per AWS account You receive a single bill for multiple accounts You pay a fee per linked account You can combine usage and share volume pricing discounts You are charged a fee per user.
A company needs protection from distributed denial of services (DDoS) attacks on its website and assistance from AWS experts during such events. Which AWS managed service will meet these requirements? AWS Shield Advanced AWS Firewall Manager AWS Web Application Firewall Amazon GuardDuty.
A Cloud Practitioner needs to rapidly deploy a popular IT solution and start using it immediately. What should the Cloud Practitioner use? AWS Well-Architected Framework documentation Amazon CloudFront AWS Elastic Beanstalk AWS Quick Start reference deployments.
A cloud practitioner needs to decrease application latency and increase performance for globally distributed users. Which services can assist? Amazon ECS Amazon S3 Amazon AppStream 2.0 Amazon ElastiCache Amazon CloudFront.
An application that is deployed across multiple Availability Zones could be described as: Being highly available Having global reach Being secure Having elasticity.
A Cloud Practitioner is developing a disaster recovery plan and intends to replicate data between multiple geographic areas. Which of the following meets these requirements? AWS Accounts AWS Regions Availability Zones Edge locations.
A user deploys an Amazon Aurora database instance in multiple Availability Zones. This strategy involves which pillar of the AWS Well-Architected Framework? Performance efficiency Reliability Cost optimization Security.
Which of the following Amazon EC2 pricing models allows customers to use existing server-bound software licenses? Spot Instances Reserved Instances Dedicated Hosts.
A company has deployed several relational databases on Amazon EC2 instances. Every month, the database software vendor releases new security patches that need to be applied to the database. What is the MOST efficient way to apply the security patches? Connect to each database instance monthly and download and apply the necessary security patches from the vendor Enable automatic patching for the instances using the Amazon RDS console In AWS Config, configure a rule for the instances and the required patch level Use AWS Systems Manager to automate database patching according to a schedule.
Which of the following statements is correct about Amazon S3 cross-region replication? Both source and destination S3 buckets must have versioning disabled The source and destination S3 buckets cannot be in different AWS Regions S3 buckets configured for cross-region replication can be owned by a single AWS account or by different accounts The source S3 bucket owner must have the source and destination AWS Regions disabled for their account.
Which of the following must be used together to gain programmatic access to an AWS account? An access key ID A primary key A secret access key A user ID A secondary key.
Which AWS support plan provides email only support by Cloud Support Associates? Basic Developer Business Enterprise.
Which AWS service can be used to prepare and load data for analytics using an extract, transform and load (ETL) process? AWS Lambda AWS Glue Amazon EMR.
Which of the following are advantage of using the AWS cloud computing over legacy IT? You are able to pass responsibility for the availability of your application to AWS You don’t need to worry about over provisioning as you can elastically scale You don’t need to patch your operating systems You can bring new applications to market faster You can bring services closer to your end users.
Which tools can you use to manage identities in IAM? Amazon CloudWatch API AWS Management Console AWS Command Line Tools EC2 Management Console Amazon Workspace.
Which of the below is an example of optimizing for cost? Choosing the fastest EC2 instance to ensure performance Provision extra capacity to allow for growth Replace an EC2 compute instance with AWS Lambda Deploy resources with AWS CloudFormation.
Which AWS service is part of the suite of “serverless” services and runs code as functions? Amazon ECS Amazon EKS AWS Lambda AWS CodeCommit.
Which service is used for caching data? Amazon Simple Queue Service (SQS) Amazon DynamoDB DAX Amazon Key Management Service (KMS) Amazon Elastic File System (EFS).
Which service allows an organization to bring their own licensing on host hardware that is physically isolated from other AWS accounts? EC2 Dedicated Instances EC2 Spot Instances EC2 Dedicated Hosts EC2 Reserved Instances .
Which service is used introduce fault tolerance into an application architecture? Amazon CloudFront Amazon ElastiCache Amazon Elastic Load Balancing Amazon DynamoDB.
An Elastic IP Address can be remapped between EC2 instances across which boundaries? Regions Edge Locations Availability Zones DB Subnets .
How can a company protect their Amazon S3 data from a regional disaster? Archive to Amazon Glacier Use Cross-Region Replication (CRR) to copy to another region Use lifecycle actions to move to another S3 storage class Enable Multi-Factor Authentication (MFA) delete.
What offerings are included in the Amazon LightSail products set? Virtual Private Server NoSQL database Managed MySQL database Object storage Serverless functions.
When designing a VPC, what is the purpose of an Internet Gateway? Provides Internet access for EC2 instances in private subnets Enables Internet communications for instances in public subnets It´s a bastion host for inbound management connections It´s used for making VPN connections to a VPC.
Assuming you have configured them correctly, which AWS services can scale automatically without intervention? Amazon RDS Amazon EC2 Amazon S3 Amazon DynamoDB Amazon EBS.
Which of the following descriptions is incorrect in relation to the design of Availability Zones? AZ´s have direct, low-latency, high throughput, and redundant network connections between each other Each AZ is designed as an independent failure zone AZ´s are physically separated within a typical metropolitan region and are located in lower risk flood plains Each subnet in a VPC is mapped to all AZs in the region.
Which AWS components aid in the construction of fault-tolerant applications? (Select two) Elastic IP addresses ARNs AMIs Tags Block device mappings.
What charges are applicable to Amazon S3 Standard storage class? (Select two) Per GB/month storage fee Retrieval fee Minimum capacity charge per object Data ingress Data egress.
Which service can you use to monitor, store and access log files generated by EC2 instances and on-premises servers? AWS CloudTrail AWS OpsWorks Amazon CloudWatch Logs Amazon Kinesis.
To reward customers for using their services, what are two ways AWS reduce prices? (Select two) Volume based discounts when you use more services Reduction in inbound data transfer charges Reduced cost for reserved capacity Discounts for using a wider variety of services Removal of termination fees for customers who spend more.
How can a company connect from their on-premises network to VPCs in multiple regions using private connections? AWS Managed VPN AWS Direct Connect Gateway Amazon CloudFront Inter-Region VPC Peering.
Which DynamoDB feature provides in-memory acceleration to tables that result in significant performance improvements? Amazon ElastiCache Amazon DynamoDB Accelerator (DAX) Amazon EFS Amazon CloudFront.
Which type of Amazon RDS automated backup allows you to restore the database with a granularity of as little as 5 minutes? Snapshot backup Full backup Incremental backup Point-in-time recovery.
A developer needs a way to automatically provision a collection of AWS resources. Which AWS service is primarily used for deploying infrastructure as code? AWS ElasticBeanstalk AWS CloudFormation AWS CodeDeploy Jenkins.
Which AWS IAM best practice recommends applying the minimum permissions necessary to perform a task when creating IAM policies? Create individual IAM users Use roles to delegate permissions Grant least privilege Enable MFA for privileged users.
What are the benefits of using IAM roles for applications that run on EC2 instances? Easier to configure than using storing access keys within the EC2 instance More secure than storing access keys within applications Can apply multiple roles to a single instance It is easier to manage IAM roles Role credentials are permanent.
What is the name of the AWS managed Docker registry service used by the Amazon Elastic Container Service (ECS)? Elastic Container Registry ECS Container Registry Docker Container Registry Docker Image Repository.
Which support plan is the lowest cost option that allows unlimited cases to be open? Basic Developer Business Enterprise.
Which AWS service can be used to send automated notifications to HTTP endpoints? Amazon SQS Amazon SWF Amazon SNS Amazon SES.
What feature of Amazon S3 enables you to set rules to automatically transfer objects between different storage classes at defined time intervals? Elastic Data Management Object Lifecycle Management Auto Lifecycle Scaling S3 Archiving.
What are two benefits of using AWS Lambda? (Select two) No servers to manage Integrated snapshots Continuous scaling (Scale out) Flexible operating system choices Open-source software.
Which AWS services form the app-facing services of the AWS serverless infrastructure? (Select two) AWS Step Functions AWS Lambda Amazon API Gateway Amazon DynamoDB Amazon EFS.
What are two correct statements about AWS Organizations with consolidated billing? (Select two) Multiple bills are provided per organization One bill provided for multiple accounts Linked accounts lose their management independence Volume pricing discounts applied across multiple accounts CloudTrail can be configured per organization.
Which AWS service enables developers and data scientists to build, train, and deploy machine learning models? Amazon Rekognition Amazon Comprehend Amazon SageMaker Amazon MQ.
Which of the following constitute the five pillars for the AWS Well-Architected Framework? (Select two) Operational excellence, security and reliability Operational excellence, elasticity and scalability Cost prioritization, and cost optimization Data consistency, and cost optimization Performance efficiency, and cost optimization.
What is the relationship between subnets and availability zones? You can create one or more subnets within each availability zone Subnets span across multiple availability zones You can create one subnet per availability zone Subnets contain one or more availability zones.
Which service provides alerts and remediation guidance when AWS is experiencing events that may impact you? AWS Trusted Advisor AWS Inspector AWS Personal Health Dashboard AWS Shield.
Which type of EBS volumes can be encrypted? Non-root volumes only Both non-root and root volumes Only non-root volumes created from snapshots Only root volumes can have encryption applied at launch time.

Which statement best describes the AWS DataSync service?

Which service features represent some of the optimizations managed by AWS DataSync?

What is DataSync used for?

Which of the following is an accurate statement regarding AWS resource tags?