Amazon Cloud Practitioner Exam

What should you do to increase your root account security?

Enable-Two Factor Authentication

What is an AMI best practice?

Don't use the root user account

What is a proper definition of AMI Roles?

An AMI entity that defines a set of permissiosn for making AWS service requests, that will be used by AWS services

What are AIM Policies?

JSON documents to define USers, Groups, or Role's permissions

Under the shared responsibility model, what is the customer responsible for in IAM?

Assigning users proper IAM Policies

Which principle should you apply regarding IAM Permissions?

Grant least privilege

What is an IAM Security tool?

IAM Credentials report

What is an EC2 purchasing option you should use for an application you plan on running on a server continuously for 1 year?

Reserved Instances

What is an EC2 purchasing option that can provide a larger discount but is no suitable for critical jobs or databases?

Spot Instances

What is a network security tool you can use to control traffic in and out of EC2 instances?

Security Groups

How long can you reserve an EC2 Reserved Instance?

1 or 3 years

Under the Shared Responsibility Model, who is responsible for operating-system patches and updates on EC2 instances?

The customer

A company would like to deploy a high-performance computing (HPC) application on EC2. Which EC2 instance type should it choose?

Compute Optimized

What is an EBS Volume tied to?

An availability zone

What is an EBS Snapshot?

A backup of your EBS Volume at a point in time

Where can you find a third party's AMI so you can use it to launch your EC2 instance?

AWS Marketplace AMIs

Which EC2 Storage would you use to create a shared network file system for your EC2 Instances?

EFS

Which service can be used to automate image management processes?

EC2 Image Builder

Which of the following is a fully managed native Microsoft Windows File System?

FSx

Changing an EC2 Instance Type from a t3a.medium to a t3a.2xlarge is an example of?

Vertical Scaling

Which AWS service offers easy horizontal scaling of compute capacity

ASG

Which Load Balancer is best suited for HTTP/HTTPS load balancing traffic?

Application Load Balancer

What is not a feature of Load Balancers

Back-end autoscaling

Which AWS offered Load Balancer should you use to handle hundreds of thousands of connections with low latency?

Network Load Balancer

What is the main purpose of High Availability in the Cloud?

Application thriving even in case of a disaster

What can you use to handle quickly and automactically changing the load on you r websites and application by adding compute resources?

An auto scaling group

What is not an auto scaling strategy?

Active Scaling

Where are objects stored in Amazon S3?

Buckets

What are S3 objects not composed of?

Access Keys

Which S3 Storage Class is suitable for less frequently accessed data, but with rapid access when needed, while keeping a high durability and allowing an Availability Zone failure?

Amazon S3 standard-infrequent access

Which of the following is an exabytes-scal data moving service in or out of AWS?

Snowmobile

What hybrid AWS service is used to allow on-premises servers to seamlessly use the AWS Cloud at the storage layer?

Storage Gateway

A non-profit organization needs to regularly transfer petabytes of data to the cloud and to have access to local computing capacity. Which service can help with this task?

Snowball Edge - Storage Optimized

Which S3 Class is the most cost-effective for archiving data with no retrieval time requirement?

Amazon Clacier Deep Archive

What can you use to define actions to move S3 objects between different storage classes?

Lifecycle Rules

What AWS service is a petabyte scale data moving service (as a fleet) in or out of AWS with computing capabilities?

Snowball Edge

A research team deployed in a location with low-internet connection would like to move 5 TBs of data to the Cloud. Which service can it use?

Snowcone

What is a proprietary relational database technology from AWS and is cloud-optimized?

Aurora

You would like to set up a NoSQL database that can scale with no downtime and can handle millions of requests per second. Which AWS database is best suited for this work?

DynamoDB

Which AWS database is a data warehouse?

Redshift

How can you create Hadoop clusters to analyze and process a vast amount of data?

EMR

You would like to migrate databases to AWS while still being able to use the database during the migration. What service allows you to do this?

Database Migration Service (DMS)

What is the name of a central repository to store structural and operatinal metadata for data assets in AWS Glue?

Glue Data Catalog

A company would like to set up a managed MongoDB database. Which AWS database is best suited for this task?

DocumentDB

Which AWS service is an immutable ledger database?

QLDB

You want to create a decentralized blockchain on AWS. Which AWS service woud you use?

Managed Blockchain

Which AWS serverless service can use machine learning-powered business intelligence to create interactive dashboards such as business analytics?

QuickSight

What database is a managed service with SQL capability suited for Online Transaction Processing (OLTP)?

RDS

What AWS service is always serverless and has SQL capabilities?

Athena

Which serverless service would you use to prepare data so it can be loaded for analytics?

Glue

What AWS service can create complex grpahs for fraud detection?

Neptune

What exclusivly DynamoDB feature is an in-memory cache that can improve your performance yp to 10x?

DynamoDB Accelerator

How do you get charged in AWS Lambda?

Per calland per duration

How would you best describe "even-0driven" in AWS Lambda?

Happens when needed

What AWS service allows you to launch Docker containers in AWS, but requires you to provision and maintain the infrastructure?

ECS

Where should you store your private Docker images so they can be run by ECS or Fargate?

Elastic Container Registry

What is the name of the software development platform that allows you to run applications the same way, regardless of where they are run?

Docker

You would like to launch Docker containers in AWS without worrying about provisioning or managing any infrastructure. The Docker containers will be used to host a heavy workloads to serve different types of requests. Some requests may need up to 30 minutes to be completed. Which AWS service should you use to run Docker containers in a Serverless way and satisfy the requirements?

Fargate

A complete cloud beginner would like to create a simple application with predictable pricing. What service should this person use?

Lightsail

A company needs to run thousands of jobs but would like to NOT manage the compute resources. What service can it use?

Batch

What AWS serverless servicecan be used by developers to create APIs?

API Gateway

What AWS service is reffered to as a Platform as a Service (PaaS)?

Elastic Beanstalk

You need to use Chef or Puppet. Which AWS service should you use?

OpsWorks

What AWS managed service allows you to automate software deployments to a hybrid mix of EC2 Instances and On-premises servers?

CodeDeploy

You need a unified user interface that gives you visibility, control, and patching capabilities for your EC2 Instances on AWS, as well as for servers running in your on-premises data centers. Which service should you use?

Systems Manager

A developer team would like to collaborate on code with versioning support. Which AWS service can help the developers?

CodeCommit

Which serverless service can be used to build code and run tests?

CodeBuild

What AWS service can a devloper use to store code dependencies?

CodeArtifact

A new startup would like an online integrated development environment (IDE) to write, run, and debug code. Which AWS service can help with this task?

Cloud9

What AWS service allows you to deploy Infrastructure as a Code?

CloudFormation

What is called the declaration of the AWS resources that make up a stack?

CloudFormation Templates

A developer would like to deploy infrastructure on AWS but only knows python. What AWS service can assist him?

Cloud Developer Kit (CDK)

Which Route 53 Routing Policies would you use to route traffic to multiple resources in proportions that you specify?

Weighted Routing Policy

What features are available with Route 53?

Domain Registration, DNS, Health Checks, Routing Policy

What does AWS CloudFront use to improve read performance?

Catching Content in Edge Locations

What services does CloudFront integrate to protect against web attacks?

WAF and Shield

Which service can be used to run AWS infrastructure and services on-premises for a hybrid cloud architectures?

Outposts

What AWS service is optimized to deploy ultra-low latency applications to 5G devices?

WaveLength

You need fast, easy, and secure transfers of files over long distances on S3. What service would you use?

S3 Transfer Acceleration

Which principle is mainly applied when using Amazon SQS or Amazon SNS?

Decouple your applications

Which service is a fully managed pub/sub messaging service that makes it easy to set up, operate, and send notifications from the cloud, using a push-based system?

Simple Notification Service (SNS)

Which service allows you to send, store, and recieve messages between software components at any volume, without losing messages or requiring other servies to be available, using a pull-based system?

Simple Queue Servicve (SQS)

A company using Apache ActiveMQ is migrating to the cloud. Which AWS service can it use to easily set up and operate its message brokers in the cloud?

MQ

What service would you use to monitor metrics for services in AWS?

CloudWatch

Which CloudWatch feature would you use to trigger notifications when a metric reaches a threshold you specify?

CloudWatch Alarms

How would you describe Amazon CloudWatch Logs?

A single, hightly scalable service that centralizes the logs from all of your systems, applications, and AWS services that you use

Which service allows you to inspect, audit, and record events and API calls made within your AWS account?

CloudTrail

Which AWS service helps developers analyze and debug production as well as distributed applications?

X-Ray

Which AWS service automatically analyzes code and provides performance recommendations?

CodeGuru

If a resource is deleted in AWS, which service should you use to investigate first?

CloudTrail

Which AWS service provides alerts and remediation guidance when AWS is experiencing events that may impact you?

AWS Health Dasgboard

You need a logically isolated sectino of AWS, where you can launch AWS resources in a private network that you define. What should you use?

A VPC

Your private subnets need to connect to the Internet while still remaining private. Which AWS-managed VPC component allows you to do this?

NAT Gateways

Which type of firewall has both ALLOW and DENY rules and operates at the subnet level?

Network Access Control List (NACL)

A company needs two VPCs to communicate with each other. What can they use?

VPC Peering

You would like to connect hundreds of VPCs and you on-premises data centers together. Which AWS service allows you to link all these together efficiently?

Transit Gateway

Your VPC needs to connect with the Internet. Which VPC component can help?

Internet Gateway

A company needs to have a private, secure, and fast connection between its on-premises data centers and the AWS Cloud. Which connection should they use?

AWS Direct Connect

According to the Shared Responsibility Model, who is responsible for network configuration for EC2 Instances?

The customer

According to the Shared Responsibility Model, who is responsible for protecting hardware?

AWS