Which of the following describes the cloud design principle of scalability? A. The ability to automatically increase available compute resources to meet growing user demand B. The ability to route incoming client requests between multiple application servers C. The ability to segment physical resources into multiple virtual partitions D. The ability to reduce production costs by spreading capital expenses across many accounts.
Which of the following best describes the cloud service model known as infrastructure as a service (IaaS)? A. End user access to software applications delivered over the internet B. Access to a simplified interface through which customers can directly deploy their application code without having to worry about managing the underlying infrastructure C. Customer rental of the use of measured units of a provider’s physical compute, storage, and networking resources D. Abstracted interfaces built to manage clusters of containerized workloads.
How does AWS ensure that no single customer consumes an unsustainable proportion of
available resources? A. AWS allows customers to consume as much as they’re willing to pay for, regardless of general availability. B. AWS imposes default limits on the use of its service resources but allows customers to request higher limits. C. AWS imposes hard default limits on the use of its service resources. D. AWS imposes default limits on the use of its services by Basic account holders; Premium account holders face no limits.
The AWS Free Tier is designed to give new account holders the opportunity to get to know how their services work without necessarily costing any money. How does it work? A. You get service credits that can be used to provision and launch a few typical
workloads. B. You get full free access to a few core AWS services for one month. C. You get low-cost access to many core AWS services for three months. D. You get free lightweight access to many core AWS services for a full 12 months.
AWS customers receive “production system down” support within one hour when they subscribe to which support plan(s)? A. Enterprise. B. Business and Enterprise. C. Developer and Basic. D. All plans get this level of support.
AWS customers get full access to the AWS Trusted Advisor best practice checks when they subscribe to which support plan(s)? A. All plans get this level of support. B. Basic and Business. C. Business and Enterprise. D. Developer, Business, and Enterprise.
The AWS Shared Responsibility Model illustrates how AWS itself (as opposed to its customers) is responsible for which aspects of the cloud environment? A. The redundancy and integrity of customer-added data B. The underlying integrity and security of AWS physical resources C. Data and configurations added by customers D. The operating systems run on EC2 instances.
Which of these is a designation for two or more AWS data centers within a single geographic area? A. Availability Zone B. Region C. Network subnet D. Geo-unit.
How, using security best practices, should your organization’s team members access your AWS account resources? A. Only a single team member should be given any account access. B. Through a jointly shared single account user who’s been given full account-wide permissions. C. Through the use of specially created users, groups, and roles, each given the fewest permissions necessary. D. Ideally, resource access should occur only through the use of access keys.
Which of the following describes a methodology that protects your organization’s data when it’s on-site locally, in transit to AWS, and stored on AWS? A. Client-side encryption B. Server-side encryption C. Cryptographic transformation D. Encryption at rest.
What authentication method will you use to access your AWS resources remotely through the AWS Command Line Interface (CLI)? A. Strong password B. Multifactor authentication C. SSH key pairs D. Access keys.
Which of these is the primary benefit from using resource tags with your AWS assets? A. Tags enable the use of remote administration operations via the AWS CLI. B. Tags make it easier to identify and administrate running resources in a busy AWS account. C. Tags enhance data security throughout your account. D. Some AWS services won’t work without the use of resource tags.
What defines the base operating system and software stack that will be available for a new Elastic Compute Cloud (EC2) instance when it launches? A. The Virtual Private Cloud (VPC) into which you choose to launch your instance. B. The instance type you select. C. The Amazon Machine Image (AMI) you select. D. You don’t need to define the base OS—you can install that once the instance launches.
Which of the following AWS compute services offers an administration experience that most closely resembles the way you would run physical servers in your own local data center? A. Simple Storage Service (S3) B. Elastic Container Service (ECS) C. Elastic Compute Cloud (EC2) D. Lambda.
Which of the following AWS object storage services offers the lowest ongoing charges, but at the cost of some convenience? A. Glacier B. Storage Gateway C. Simple Storage Service (S3) D. Elastic Block Store (EBS).
Which of the following AWS storage services can make the most practical sense for petabyte-sized archives that currently exist in your local data center? A. Saving to a Glacier Vault B. Saving to a Simple Storage Service (S3) bucket C. Saving to an Elastic Block Store (EBS) volume D. Saving to an AWS Snowball device.
Which of the following will provide the most reliable and scalable relational database experience on AWS? A. Relational Database Service (RDS) B. Running a database on an EC2 instance C. DynamoDB D. Redshift.
What’s the best and simplest way to increase reliability of an RDS database instance? A. Increase the available IOPS. B. Choose the Aurora database engine when you configure your instance. C. Enable Multi-AZ. D. Duplicate the database in a second AWS Region.
How does AWS describe an isolated networking environment into which you can launch compute resources while closely controlling network access? A. Security group B. Virtual private cloud (VPC) C. Availability Zone D. Internet gateway.
What service does AWS use to provide a content delivery network (CDN) for its customers? A. VPC peering B. Internet gateway C. Route 53 D. CloudFront.
What is Amazon’s Git-compliant version control service for integrating your source code with AWS resources? A. CodeCommit B. CodeBuild C. CodeDeploy D. Cloud9.
Which AWS service allows you to build a script-like template representing complex resource stacks that can be used to launch precisely defined environments involving the full range of AWS resources? A. LightSail B. EC2 C. CodeDeploy D. CloudFormation.
What is Amazon Athena? A. A service that permits queries against data stored on Amazon S3 B. A service that permits processing and analyzing of real-time video and data streams C. A NoSQL database engine D. A Greece-based Amazon Direct Connect service partner.
What is Amazon Kinesis? A. A service that permits queries against data stored in Amazon S3 B. A service that permits processing and analyzing of real-time video and data streams C. A NoSQL database engine D. A Greece-based Amazon Direct Connect service partner.
What is Amazon Cognito? A. A service that can manage authentication and authorization for your public-facing applications B. A service that automates the administration of authentication secrets used by your AWS resources C. A service that permits processing and analyzing of real-time video and data streams D. A relational database engine.
|
