You are configuring the CloudWatch agent to gather application logs on a fleet of EC2 instance.
Which service should you pick to store the configuration of the CWAgent in a way which allows it to
be deployed to other instances in a scalable way? A) Store the CWAgent Configuration on a shared EBS Volume B) Store the CWAgent Configuration in Secrets Manager C) Store the CWAgent Configuration in the SSM Document Store D) Store the CWAgent Configuration in the SSM Parameter Store.
You are running a pilot of the catagram.io application within elastic beanstalk.
You are deploying a new version of the application to test and you have been told that any deployments must occur on NEW infrastructure, existing versions of the application cannot be impacted until a deployment is complete.
What elastic beanstalk deployment methods satisfy this criteria? (Choose all that apply) A) All at once B) Rolling C) Immutable Rolling Deployment D) Immutable E) Rolling with Additional Batch F) Blue/Green .
The catagram.io application is currently using an API Gateway as its endpoint, but several of the methods use a legacy API for functionality, which requires some transformation,
what type of integration is required to make this work correctly ? A) HTTP PROXY B) HTTP C) AWS D) NATIVE .
A fleet of global IOT sensors writes 1337 million items into a DynamoDB table every day.
Processing occurs once every 24 hours and once completed the ITEMS are no longer required.
What’s the MOST efficient way remove the records every day? A) Delete the ITEMS in the table which are no longer required using delete item with a sort key restriction B) Create a new table daily, and delete the entire table once processing has finished C) Query for all items within the time window, save to a view and delete the view D) Use BatchUpdateItem and set expired=true .
The catagram.io application has been modified to allow lambda to be used with he application load balancer which functions as the application entry point.
How should you integrate the lambda function with the application load balancer. A) Add the lambda functions to the existing auto scaling group B) Create ALB trigger to invoke the lambda functions within event bridge. C) Create a target group configured for lambda and set the ALB to route requests to this target group D) add the lambda functions to API Gateway in event source mapping mode. Configure ALB and API Integration.
An application is currently using an SQS queue to decouple two of its major components.
Messages send to the queue are currently averaging about 180KB.
You have been asked if messages of a larger size can be sent to the queue, up to 1MB in size.
What should you answer? (Choose all that apply) A) The max message size is 192KB B) The max message size can be configured on the queue up yo 256MB in size C) Messages up to 256KB can be send via a queue D) Using the extended client library larger messages can be sent to the queue E) Using the extended client library messages larger than 256KB can be offloaded to S3.
You have implemented a serverless application where HTML and JS load from an S3 bucket and connect to an API Gateway endpoint backed by a lambda function which provides serverless compute.
You are unable to access the application because a security error is generated.
Which of the options below is a possible solution ? (Choose one) A) Ensure the IAM Role for the lambda function has permissions allowing it to be invoked from API Gateway. B) Ensure the CORS configuration is correct on the API Gateway C) Ensure the CORS configuration is correct on the S3 Bucket D) Add a resource policy to the S3 bucket allowing it to access API Gateway.
CloudFormation is an infrastructure automation toll available within AWS.
Which of the following services or actions uses CloudFormation to deploy resources (Choose all that apply) A) AWS SAM B) AWS CLI C) Launching EC2 instances D) Elastic Beanstalk E) Step functions .
An application you are developing has an encryption requirement.
You choose to use KMS.
Which of the following are true for KMS and Encryption
(Choose two) A) CMKs can encrypt/decrypt data up to 4KB B) CMKs can encrypt/decrypt data up to 1KB C) DEKs can encrypt/decrypt data up to 1GB D) DEKs can encrypt/decrypt data up to 64KB E) DEKs have no limit on encryption/decryption size F) CMKs have no limit on encryption/decryption
size.
Which type of S3 encryption involves encryption and decryption being performed by the S3 service - but where keys are managed locally by your application. A) SSE-S3 B) SSE-C C) SSE-KMS D) Client-Side Encryption .
You've been asked to implement the new Catagram v2 platform.
It's been architected to use Web Identity Federation, allowing social identities from twitter, facebook and others.
It will support 1,000,000's of users, posting cat pictures constantly and globally.
Each item in the database will be around 20KB in size, and images will be stored on S3.
Data from one user should be isolated from another.
What should you suggest for the database?
(choose one) A) Create a DDB Table and IAM managed policy per user of the application which is created and configured automatically on user signup B) Create a number of shared DDB Tables and a policy which uses variables to allocate specific items in each table to specific social identities C) Use RDS for the database, enable IAM integration. Configure policies on the federated identities which grant access to specific items in the RDS database tables D) Use Aurora Serverless for the database, enable IAM integration and the data API. Configure policies on the federated identities which grant access to specific items in the RDS database tables E) Store the data and images on S3, use S3 Select and fine grained policies to control access.
The catagram enterprise application uses a complex architecture consisting of API Gateway, EC2 instances and Lambda functions.
You need to diagnose some latency based performance issues which your customers are reporting.
Which service should you suggest to assist with this problem solving (choose one) A) VPC Flow Logs B) CloudWatch Logs C) X-Ray D) CloudTrail E) Elasticache .
You have developed a serverless application which is designed to be loaded from an S3 bucket and communicates with an API hosted and managed by API Gateway.
Which two steps are required to allow the application to work without any issues
(choose two) A) Configure CORS on the S3 Bucket B) Configure Static Website Hosting on the S3 Bucket C) Configure Static Website Hosting and policy on the S3 bucket D) Configure CORS on the API Gateway E) Configure an INBOUND role on the SG for the APIGateway allowing the S3 prefix list.
You are looking at implementing automatic deployment of an application as part of a CI/CD process.
The application uses two CloudFormation stacks, one which creates a VPC and associated resources and the other which creates the application resources such as EC2 and RDS.
Ideally many application instances can use the same VPC.
What CloudFormation architecture should you suggest to meet these requirements and adhere to best practice CFN usage. (Choose one) A) Nested Stacks -1 VPC,1 Application B) One stac..VPC+Application C) Two stacks..1 VPC, 1 Application D) Two stacks..cross stack references .
Animals for Life runs a merchandise store.
it runs on EC2 instances, within an ASG behind an ALB.
As an order is placed on the merch store, the application immediately posts order data to an external dropshipper. During a marketing promotion, the number of EC2 instances increased from 5 to 1337
The application continued to work correctly, but the increased request rate overwhelmed the third party dropshipper and resulted in failed orders.
Which two changes could help to resolve this problem? A) Instead of calling the dropshipper API directly - place all orders into an SQS Queue, invoke lambda
from the queue B) Adjust the lambda function concurrency C) Create a lambda function which runs once every 3 hours D) Adjust the max size of the ASG from 1337 to 20 E) Adjust the max size of the ASG from 1337 to 13337 F) Instead of calling the dropshipper API directly - place all orders into an Kinesis stream.
You are noticing that within an auto-scaling-group managing the front-end for a busy application with rapidly changing load levels …
instances are being started and terminated rapidly.
This is causing disruption to the application and excessive costs.
What setting could you change to change this behaviour ? A) Change the desired capacity manually B) Increase the minimum size C) Increase the maximum size D) Decrease the maximum size E) Change the cooldown period .
|
