AWS Cloud Architecture - D319 PA and Section Assessments Study Material With 100% accurate solutions

An enterprise wants to build an application for selling concert tickets, with a web layer and an application layer. Which Amazon service should be used so ticket orders are not lost if the application layer fails?

SQS

3 multiple choice options

To comply with its disaster recovery requirements, an enterprise is required to store copies of all data in a specific Amazon S3 bucket in an additional Region. How should this requirement be fulfilled?

Enable versioning for the source bucket and configure Cross-Region Replication

3 multiple choice options

An application is deployed in the us-west-1 and eu-west-1 Regions, and the users should be sent to the Region with the fastest response for them, regardless of their location. The solution must minimize administrative effort. Which routing policy should be used?

Latency

3 multiple choice options

A notification is sent to an Amazon SQS queue when an object is uploaded to an Amazon S3 bucket. An Amazon ECS cluster processes messages from the queue. The required queue size fluctuates based on the number of incoming messages and the processing speed. The company needs to design a scaling strategy for auto scaling that will minimize the queue size. Which metric should be used for auto scaling to minimize the queue size?

Amazon SQS messages

3 multiple choice options

A company hosts a website from two EC2 instances. Users access the website through an Elastic Load Balancer (ELB). The company needs to ensure the website is highly available if one or more of the EC2 instances are unavailable. Which solution should this company use?

Configure the ELB to implement Auto Scaling based on health checks

3 multiple choice options

A company plans to migrate a legacy application to EC2 with no modifications to the application. The company hopes to add modern cloud features to immediately respond to changing needs. Which cloud feature will achieve this goal?

Auto scaling

3 multiple choice options

A company plans to migrate a legacy application to EC2 with no modifications to the application. The application has regular seasonal increases in demand, and it must automatically adapt to these needs.

Which scaling option should be included in the migration?

Scheduled

3 multiple choice options

A company plans to migrate a legacy application to Amazon EC2 with no modifications to the application. The application constantly changes demands with no patterns, and it must automatically adapt to these needs.

Which scaling option should be included in the migration?

Dynamic

3 multiple choice options

A company plans to migrate a legacy application to Amazon EC2 with no modifications to the application. Once the application has completed a trial in the cloud, the company needs to use machine learning algorithms to adapt the application to changing demands.

Which scaling option should be used?

Predictive

3 multiple choice options

A web application uses a web server with a separate database server. The database provides results to the web server. Users report long delays in receiving their results. Logs reveal that the CPU utilization metric for the web server consistently reaches 100%. Performance metrics for the database are nominal.

How can the response time be improved?

By scaling the web server layer through the addition of web servers

3 multiple choice options

An administrator is concerned that a consumer may fail and not receive every message immediately. The administrator chooses to use Amazon Simple Queue Service (Amazon SQS) to ensure the consumer will be able to receive all the messages.

Which mechanism does Amazon SQS use to allow the consumer to receive a queued message after the consumer is restored?

Pull

3 multiple choice options

How should an administrator recover queued messages from Amazon Simple Queue Service (Amazon SQS) if the consumer fails?

Pull the queue after the application is restored

3 multiple choice options

An application has the following storage requirements:

- Information is stored in multiple tables on a single server.

- Master records can be linked to zero or more child records by using shared keys.

- The solution must support up to 15 additional replicas.

Which solution should be used?

Amazon Aurora

3 multiple choice options

A Linux application needs to use a shared file system. Which solution should be used?

Amazon EFS

3 multiple choice options

A company has data stored on premises and needs to identify a solution that stores snapshots of the local data in AWS. Which solution should be used?

Stored Volume Gateway

3 multiple choice options

How should end-to-end confidentiality be achieved for data stored in an Amazon S3 bucket?

By setting default encryption and a policy to enforce HTTPS connections on the bucket

3 multiple choice options

A client plans to use the internet to copy a large amount of data from an on-premises Network File System (NFS) store to Amazon S3. Which service will transfer the data in the shortest time?

Amazon Web Services DataSync

3 multiple choice options

A client has an existing on-premises tape backup application and wants to back up the on-premises data directly to Amazon S3 buckets for long-term storage. Which service should be used to transfer on-premises backups to Amazon S3 buckets?

AWS Storage Gateway

3 multiple choice options

Which type of instance provides the necessary resources to process machine learning applications at the highest speed?

Accelerated computing

3 multiple choice options

Which type of instance can process and analyze large amounts of unstructured data while minimizing page swapping of data to and from a disk?

Memory optimized

3 multiple choice options

Which type of instance provides the necessary resources to host a website with the minimum cost?

General purpose

3 multiple choice options

A company is worried about the scalability of its EC2 solution. The company has calculated the expected usage and wants to start with the number of instances that should be able to handle the workload. Which capacity setting should the company choose for the Auto Scaling group?

Desired

3 multiple choice options

Which solution is used with Amazon ECS to run containers without managing servers or clusters of EC2 instances?

Fargate

3 multiple choice options

An application allows users from around the world to upload content to an Amazon S3 bucket. Which Amazon S3 feature minimizes upload times and costs?

Transfer Acceleration

3 multiple choice options

Which type of volume should be used for an EC2 root with minimum latency?

Instance store

3 multiple choice options

Which solution should be used to store application content that is accessed concurrently by a fleet of Amazon EC2-based Linux hosts?

Amazon EFS

3 multiple choice options

A company is planning to move its on-premises Windows domain servers to the cloud. As part of this move, the company needs a storage solution that can host shared file systems for its Windows hosts. The file sharing will be done using Server Message Block (SMB) and needs to support file system access control lists (ACLs), shadow copies, and user quotas.

Which storage solution supports these requirements?

Amazon FSx

3 multiple choice options

A client has an on-premises data center and wants to establish a network link to an Amazon Virtual Private Cloud (VPC). The solution must ensure the maximum throughput and minimum latency. Which service provides these capabilities?

AWS Direct Connect

3 multiple choice options

A client has an on-premises data center and needs to transfer large data sets to AWS over the network without affecting the internet bandwidth available for its on-premises workloads. Which service provides these capabilities?

AWS Direct Connect

3 multiple choice options

A company needs to connect its VPC to the EC2 API. Which solution meets this requirement at the lowest cost and with the least configuration?

Interface endpoint

3 multiple choice options

Data for an application is served from a single Amazon S3 bucket. Customers around the world upload data to the bucket. Which Amazon S3 feature will reduce latency?

Transfer Acceleration

3 multiple choice options

Which database solution allows the failover priority of each read replica to be configured?

Amazon Aurora

3 multiple choice options

Which database scaling solution supports high-availability replication?

Amazon ElastiCache for Redis

3 multiple choice options

A company has a multi-tier application that is very read intensive at the database layer. The company is looking to implement a caching strategy for the data, and its security department requires it to be encrypted. Which solution fits this requirement?

Amazon ElastiCache for Redis

3 multiple choice options

An administrator needs a relational database that can support online analytical processing (OLAP) and provide fast performance despite many concurrent queries. Which solution should this administrator choose?

Amazon Redshift

3 multiple choice options

An organization has signed up for an AWS account.

Which action should be performed to ensure the account is secured and used according to the principle of least privilege?

Delete the root access keys and secret

3 multiple choice options

A company needs to configure an EC2 instance for delegate access to a DynamoDB table.

Which policy should this company use?

Permissions

3 multiple choice options

An application running in an EC2 instance needs to access an Amazon S3 bucket with temporary credentials generated by AWS Security Token Service (AWS STS). Credentials cannot be stored in the EC2 instance.

Which principal type should the client use to configure the application access to the Amazon S3 bucket?

IAM role

3 multiple choice options

What is used in the IAM policy evaluation logic?

An explicit allow in a resource-based policy overrides an implicit deny.

3 multiple choice options

A client has an Amazon Virtual Private Cloud (VPC) containing 10 Amazon EC2 instances. The client plans to develop an application that will call Amazon EC2 API from the EC2 instances. Which service should this client use to implement a private connectivity for the Amazon EC2 API calls from the VPC?

Interface endpoint

3 multiple choice options

A company is building a new application, and as part of this new application, the company will provision a multi-tiered EC2 infrastructure across multiple Availability Zones and subnets. They will have an application server tier, a web server tier, and a database tier. For their network security, the company is looking for a solution that will enable them to create the rules once per tier type and apply the rules to all created instances. They also want the solution to filter traffic between the instances in the same tier. Which solution fits these requirements?

Security group

3 multiple choice options

An engineer designs a network that must have 512 IP addresses available for use by the client.

What is the smallest Classless Inter-Domain Routing (CIDR) block that meets the requirement?

CIDR Total IP Addresses

21 2,048

22 1,024

23 512

24 256

22

3 multiple choice options

An architect wants to allow EC2 instances to have access to the internet for downloading patches. The instances use IPv4 and should be placed in a private subnet. The route table associated with the private subnet has an entry with the destination 0.0.0.0/0.

What should be the target for the 0.0.0.0/0 destination in the route table?

NAT gateway

3 multiple choice options

An organization suspects attacks targeting its web server EC2 instances in a specific subnet and wants to block requests being sent to the 143.38.54/24 range. A custom network ACL is created and associated with this subnet.

Which outbound rule or rules should be added to the network ACL to fulfill the requirement?

An ALLOW outbound rule with source 0.0.0.0/0 and a DENY outbound rule with destination 143.38.54/24

3 multiple choice options

Which IAM policy is applied directly to a user to control their permissions?

Identity-based

An organization wants to host the master keys used by Oracle Transparent Data Encryption (TDE) in AWS. Which type of customer-managed keys in Key Management Service (KMS) should be used?

Symmetric keys with custom key store

3 multiple choice options

An organization is evaluating the options to protect data in the cloud and has the following requirements:

- Cryptographic secrets need to be hosted in a single-tenant service.

- The organization needs to manage the root of trust.

What should this organization use store to the secrets?

AWS CloudHSM cluster

3 multiple choice options

Which solution provides a customer-managed root of trust?

AWS CloudHSM

3 multiple choice options

A company plans to host a public website in AWS. Users will access the website using SSL/TLS. The company requires the ability to delete keys if they are compromised. Which key solution should this company use?

Customer-managed asymmetric key

3 multiple choice options

A company is building a high-performance computing (HPC) clustered workload on AWS using EC2 instances and is looking for a fully managed, shared storage solution for this workload. Once the HPC portion of the data processing is complete, the company would like to serve the resulting data directly on the internet. Which Amazon service would be the most cost-effective solution for these requirements?

FSx for Lustre

3 multiple choice options

Which Amazon storage class monitors data usage and moves data to the most cost-effective location?

S3 Intelligent-Tiering

3 multiple choice options

Which tool reduces time and costs by allowing a customer to automate the creation and track the changes of entire resource environments?

CloudFormation

3 multiple choice options

An organization needs a low-cost system to host its website. Which elastic compute configuration meets the requirement at the least cost?

A general purpose instance with a hard disk drive

3 multiple choice options

A development team needs a system to run recurring benchmark tests for an artificial intelligence application. To remove variability from one test to the other, the storage will be reinitialized for each test. Which elastic compute configuration meets the requirements while minimizing cost and administration time?

An accelerated computing instance with an instance store

3 multiple choice options

A client wants to use a managed service to replace an EC2 instance that currently hosts a shared big data analytics store, accessible via the NFS protocol. The managed service must provide read-after-write consistency and low latency for read and write operations. Which Amazon service should this client choose?

EFS

3 multiple choice options

A client wants to use a managed service to replace an EC2 instance that currently hosts a Windows Server file server, with shares accessible via the SMB protocol. The managed service must provide support for Active Directory and Distributed File System. Which Amazon service should this client choose?

FSx

3 multiple choice options

When users consume data from an Amazon S3 bucket, a company wants to reduce transfer costs by enforcing that the content is delivered using CloudFront. Which feature should be configured?

Origin access identity

3 multiple choice options

A company needs to store backup data in Amazon S3. There are no restrictions on where the data can be stored geographically. The company wants to find the lowest cost for storage and transfers. Which boundary should this company consider comparing storage fees at?

Region

3 multiple choice options

A client wants to implement redundant network access to EC2 instances with automatic failover in case the existing AWS Direct Connect connection fails. The solution must minimize cost. Which network access option should this client use?

Site-to-Site VPN

3 multiple choice options

A client has 100 on-premises locations in the northwestern United States. Each location has network access to the same Amazon VPCs in the US West AWS Region via Internet Protocol Security (IPSec) tunnels. The client plans to create 500 Amazon VPCs in the same Region. The client needs to ensure all Amazon VPCs will be accessible from each of its on-premises locations. The solution must minimize cost of on-premises infrastructure. Which additional network access method should this client include in the solution?

AWS Transit Gateway

3 multiple choice options

What is the primary reason for implementing AWS Local Zones?

Latency

3 multiple choice options

Which pillar of AWS Well-Architected Framework addresses the ability to run and monitor systems?

Operational Excellence

3 multiple choice options

Which practice represents an anti-pattern that should be avoided when building solutions on AWS?

Reactive scaling

3 multiple choice options

Which Amazon S3 storage class has the lowest storage cost and provides the ability to retrieve data within five minutes?

Glacier

3 multiple choice options

Which option should be used for moving exabytes of data to AWS?

AWS Snowmobile

3 multiple choice options

What does the letter d in the m5d.large of an EC2 instance type designate?

The use of solid state drive for the root EBS volume

3 multiple choice options

Which EC2 storage option provides a persistent disk for a root volume?

Elastic Block Store

3 multiple choice options

Which EC2 pricing option provides the ability to bid on unused EC2 instances and request spare computing capacity at substantial savings?

Spot instances

3 multiple choice options

Which Amazon offering provides a NoSQL data store that supports multi-master replication with single-digit millisecond response times?

Amazon DynamoDB

Which Amazon offering provides the ability to deploy a managed MySQL instance?

Amazon RDS

3 multiple choice options

An administrator creates a security group with default rules. The administrator associates the security group with an EC2 instance.

What change should the administrator make to the security group to ensure that inbound and outbound network traffic is allowed for the EC2 instance?

Addition of an inbound rule.

3 multiple choice options

What is the minimum number of peering connections required to provide bidirectional connectivity across 6 VPCs? n*(n-1)

30

3 multiple choice options

Which network service should be used to provide access to S3 from a VPC at minimal cost?

Gateway endpoint

3 multiple choice options

Which AWS federation solution involves creating user pools?

Amazon Cognito

3 multiple choice options

What is the least privileged security principal that by default has access to billing information for an individual AWS account?

Which Amazon Route 53 routing policy allows client software to use a cached DNS response to automatically connect to a different IP address if the first IP address becomes unavailable?

Multivalue answer routing

3 multiple choice options

Which method minimizes the impact of reporting workloads on Amazon RDS and minimizes downtime and administrative effort?

Adding read replicas

3 multiple choice options

What is the scope of resources that can be targeted by a single AWS CloudFormation stack?

Region

3 multiple choice options

Where can cached data be stored?

Random access memory (RAM)

3 multiple choice options

How should an administrator configure Time to Live (TTL) in Amazon CloudFront to reduce the load on the origin?

Increase the duration.

3 multiple choice options

What is a characteristic of loosely coupled architecture?

Load balancers distribute the traffic.

3 multiple choice options

How does Amazon Simple Queue Service (SQS) handle messages?

Information is encrypted and stored until it is processed and deleted.

3 multiple choice options

What is one of the tenets that define serverless architecture?

Automatic scaling

3 multiple choice options

An organization uses an application that uses per-socket licensing, and they need full control over the placement of their EC2 instances on underlying hardware. What should they use?

Dedicated hosts

3 multiple choice options

Which EC2 pricing model would you use for a short-term requirement that needs to complete over a weekend?

On-Demand

3 multiple choice options

An organization has launched EC2 instances in private subnets. They need to enable Internet connectivity for the subnets. The service should be highly available and scale automatically. What do they need to configure?

Launch a NAT gateway in a public subnet and add a route in the private subnet route table

2 multiple choice options

Which type of network adapter should be used for High Performance Computing (HPC) uses cases that include tightly coupled applications?

Elastic Fabric Adapter - EFA

2 multiple choice options

What can you use to run a script at startup on an Amazon EC2 Linux instance?

User Data

3 multiple choice options

What do you need to securely connect using SSH to an EC2 instance launched from the Amazon Linux 2 AMI?

a key pair

3 multiple choice options

An Amazon EC2 instance requires a static public IP address. What would you choose?

Elastic

2 multiple choice options

Which type of scaling is provided by Amazon EC2 Auto Scaling?

Horizontal

1 multiple choice option

When using Auto Scaling with Elastic Load Balancing, which type of health checks do AWS recommend you configure?

EC2 Status Checks and ELB Health Checks

2 multiple choice options

Which type of scaling policy should be used to keep the aggregate CPU usage in an ASG at 60%?

Target Tracking

2 multiple choice options

An Architect would like to use an Elastic Load Balancer to forward traffic to different back-end applications for https://dctlabs.com/orders and https://dctlabs.com/account. Which type of ELB should be used?

Which type of ELB is best suited for use cases that require ultra-low latency TCP connections?

Network Load Balancer

2 multiple choice options

Which type of load balancer would be used in front of virtual appliances such as firewalls, IDS/IPS, and deep packet inspection systems?

Gateway Load Balancer

3 multiple choice options

For compliance reasons, an organization needs to retain data for 7 years. If they need to retrieve data, they have 24 hours to do so. Which Amazon S3 storage class is most cost-effective?

S3 Glacier Deep Archive

3 multiple choice options

Which type Amazon storage service uses standards-based REST web interfaces to manage objects?

S3

3 multiple choice options

Which Amazon S3 capability uses Amazon CloudFront and enables fast uploads for objects?

Transfer Acceleration

2 multiple choice options

How can you create a hierarchy that mimics a filesystem in Amazon S3?

Use folders within buckets

3 multiple choice options