Docsity
Docsity

Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity


Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan


Guidelines and tips
Guidelines and tips

AWS Cloud Certification exam-with 100% verified solutions-2024-2025 .docx, Exams of Advanced Education

AWS Cloud Certification exam-with 100% verified solutions-2024-2025 .docx

Typology: Exams

2023/2024

Available from 07/26/2024

studyguru
studyguru 🇺🇸

4.2

(5)

1.7K documents

1 / 17

Toggle sidebar

Related documents


Partial preview of the text

Download AWS Cloud Certification exam-with 100% verified solutions-2024-2025 .docx and more Exams Advanced Education in PDF only on Docsity!

AWS Cloud Certification exam-with 100%

verified solutions-2024-202 5

What is an availability zone composed of? 1 or more DCs in a location What are the three fundamentals of pricing in AWS? Computer, storage and outbound data transfer Which of the following services is global in scope? IAM, EC2, RDS, Lambda IAM (Identity Access Management) Which pricing model is highly flexible with no long-term commitments or upfront payments? a. Dedicated instances, b. spot instances, c. on-demand d. reservations On-Demand What is an AWS Region composed of? Two or more availability zones Which of the following is an advantage of Cloud Computing? a. trade capital expense for variable expense b. trade operational expense for variable expense c. go global in days d. outsourced all application development a. trade capital expense for variable expense Which AWS policy defines the prohibited uses of the AWS Cloud? a. AWS End User Policy b. AWS Cloud Policy c. AWS Acceptable Practices Policy d. AWS acceptable use policy d. AWS Acceptable Use Policy Which of the following is NOT a cloud service model? a. Infrastructure as a Service (IaaS) b. Platform as a Service (PaaS) c. Software as a Service (SaaS) d. Computing as a Service (CaaS) d. Computing as a Service (CaaS) An Access key ID and secret access key is associated with which IAM entity? a. User b. Group c. Role d. Policy a. User What is the main credential for an AWS root account? a. Administrator b. Root

c. The email address used to create the account d. The account number b. The email address used to create the account What does an ARN stand for? (Review) a. Amazon Region Number b. Amazon Region Name c. Amazon Resource Number d. Amazon Resource Name c. Amazon Region Name Which principle should be used when assigning permissions to users or groups? a. Most privilege b. Least privilege c. Nesting d. Most restrictive b. Least privilege Which IAM entity can be used to delegate permissions? (Review) a. User b. Group c. Role d. Policy c. Role How can you add an extra level of security to your root account? a. By adding an access key ID and secret access key b. By adding multi-factor authentication (MFA) c. By setting a strong password d. By deleting the root account b. By adding multi-factor authentication (MFA) Which of the following is NOT and IAM security best practice? a. Use groups to assign permissions to IAM users b. Configure a strong password policy for users c. Grant most privilege d. Rotate credentials regularly c. Grant most privilege By default, users are created with what permissions? a. Full permissions b. No permissions c. Minimal permissions d. No access to the AWS management console b. No permissions What is a benefit of Amazon EC2 compared to traditional servers? a. You can specialized hardware b. You have more control over the operating system c. You can scale elastically within minutes d. You can get more compute power in the cloud c. You can scale elastically within minutes

How can you run commands on an Amazon EC2 instance at launch time? a. With metadata b. With user data c. With a container d. With a snapshot b. With user data Which service allows you to run Docker containers on AWS? a. Amazon EC b. AWS Lambda c. Amazon ECS d. Amazon EBS c. Amazon ECS Which service is good for running compute workloads for people who don't have technical expertise with AWS? a. Amazon ECS b. Amazon EC c. Amazon LightSail d. AWS Lambda c. Amazon LightSail A company is looking for a computing solution that gives them control over the operating system and instance type. They're looking for a service that only charges for what they use. Which of the following would you recommend they use? a. Amazon Fargate b. Docker Container Image c. EC d. Lambda c. EC What is a defining feature of microservice applications? a. Being tightly connected b. Being loosely coupled c. Their user interface, business logic, and data access layer are combined into a single platform d. Server-based computing b. Being loosely coupled Amazon S3 is an example of what type of storage system a. Object b. Block c. File d. Hybrid a. Object With Amazon S3, objects are stored in which type of root-level container? a. A folder b. A file-system c. A bucket d. A region c. A bucket Amazon Elastic Block Store (EBS) volumes are stored within which construct? (Review) a. A region b. An edge location

c. A snapshot d. An availability zone d. An availability zone Which storage service can be used on-premise to access cloud storage? (Review) a. Amazon S3 Glacier b. Amazon Storage Block c. AWS Storage Gateway d. AWS Hybrid Service c. AWS Storage Gateway With default settings, what will happen to a root EBS volume when the Amazon EC instance is terminated? a. It will be deleted b. It will be retained c. A snapshot will be retained d. An AMI will be created a. It will be deleted Which Amazon Machine Image can be used to mount an Amazon Elastic File System (EFS) file system? a. Microsoft Windows Server 2019 with Containers b. Microsoft Windows Server 2016 Core c. Amazon Linux 2 AMI d. All of the above c. Amazon Linux 2 AMI Which storage device is physically attached to the Amazon EC2 host servers? (Review) a. Amazon Elastic Block Store (EBS) volume b. Amazon Machine Image (AMI) c. Instance Store volume d. Elastic Network Adapter c. Instance Store volume Which Amazon S3 storage class is used for archiving data for long term retention? a. S3 Standard b. S3 Intelligent tiering c. S3 One Zone-IA d. S3 Glacier Deep Archive d. S3 Glacier Deep Archive Which storage service is used by Amazon EC2 instances for the root volume? (Review) a. Amazon Simple Storage Service (S3) b. Amazon Elastic File System (EFS) c. Amazon Elastic Block Store (EBS) d. Amazon Storage Gateway c. Amazon Elastic Block Store (EBS) How can a company enable elasticity for an application running on Amazon EC2? a. By using Amazon EC2 Auto Scaling b. By using Elastic Load Balancing c. By configuring multi-AZ d. By enabling failover in Amazon EC a. By using Amazon EC2 Auto Scaling

Which type of Elastic Load Balancer can direct traffic based on the domain name? (Review) a. Classic Load Balancer b. Network Load Balancer c. Application Load Balancer d. Amazon EC2 Load Balancer c. Application Load Balancer How does Amazon EC2 Auto Scaling assist with Cost-effectiveness? a. By choosing the most cost-effective instance type b. By balancing load between instances evenly c. By launching and terminating instances as demand changes d. By automating application failover c. By launching and terminating instances as demand changes How does Elastic Load Balancing (ELB) assist with fault tolerance? (Review) a. By distributing connections to multiple back-end instances b. By directing traffic according to latency c. By caching content closer to users d. By automatically launching instances d. By automatically launching instances Which if the following statements is INCORRECT about Elastic Load Balancing? a. ELB can distribute connections across availability zones b. ELS can be internet facing c. ELB enables high availability and fault tolerance d. ELB can distribute connections across regions d. ELB can distribute connections across regions What does Elastic Load Balancing use to ensure instances are available? a. EC2 Status Checks b. CloudWatch Metrics c. Scaling Plans d. Health Checks d. Health Checks Which type of Elastic Load Balancer routes connections based on IP protocol data at layer 4 only? a. Classic Load Balancer b. Network Load Balancer c. Application Load Balancer b. Network Load Balancer What type of template is used by Amazon EC2 Auto Scaling to define instance family, AMI key pair, and security groups? (Review) a. Scaling Plan b. Launch Configuration c. Scaling Policy d. Auto Scaling Group b. Launch Configuration Which services does Amazon Route 53 provide? a. Domain registration, DNS, firewall protection b. Health checking, DNS, domain registration c. Health Checking, DNS, IP routing d. Domain registration, DNS, content distribution b. Health checking, DNS, domain registration

In Amazon Route 53, what is the name for the configuration item that holds a collection of records belonging to a domain? (Review) a. DNS record b. Alias c. Hosted zone d. Routing policy c. Hosted zone An application needs to send SMS text messages to customers to notify them of product updates. Which service can be used? a. AWS Step Functions b. Amazon Simple Queue Service c. Amazon Simple Notification Service d. AWS Lambda c. Amazon Simple Notification Service A company needs to orchestrate several batch processes on AWS. Which serverless service can assist? (Review) a. Amazon Simple Workflow Service b. Amazon Simple Queue Service c. Amazon EventBridge d. AWS Step Functions d. AWS Step Functions How can a company decouple an application which uses a message-oriented API to communicate data between application components? a. Create and Amazon SQS queue b. Create an Amazon SNS topic c. Create an AWS Step Functions state machine d. Create an Amazon VPC route table a. Create and Amazon SQS queue How can an application be configured to send a notification to multiple Amazon SQS queues? a. Use a FIFO queue b. Use an Amazon SNS topic c. Create an AWS Step Functions state machine b. Use an Amazon SNS topic Which of the following is NOT a benefit of AWS Lambda? a. No servers to manage b. Pay only when your code is running c. Continuous Scaling d. Multiple instance types to choose from d. Multiple instance types to choose from What is a defining feature of serverless technology? a. High availability b. Can be very cheap c. Automatic scaling d. No instances to manage d. No instances to manage Which of the following is a benefit of Lambda? a. Makes coordinating the components of a distributed application easy b. Instantaneous, push-based delivery

c. Reliable highly scalable, hosted queueing d. No servers to manage d. No servers to manage Which application service is best suited for "Human-enabled" workflows? a. Amazon MQ b. Amazon SQS c. Amazon SWF d. AWS Lambda c. Amazon SWF Which service makes it easier to build event-driven applications? a. Amazon EventBridge b. Amazon SQS c. Amazon SWF d. EC a. Amazon EventBridge What is the scope of an Amazon VPC? a. A data center b. A region c. An availability zone d. A subnet b. A region Which type of firewall operates at the instance level? (Review) a. A security group b. A network access control list (NACL) c. A route table d. A NAT Gateway a. A security group How can an organization create a private hybrid cloud connection between their on- premise data center and the AWS Cloud a. AWS managed VPN b. VPN CloudHub c. Software VPN d. AWS Direct Connect d. AWS Direct Connect Which type of public IP address is retained when the instance is stopped? a. Public IP address b. Private IP address c. Elastic IP address d. Local IP address c. Elastic IP address Which AWS-managed network service can be used to enable internet connectivity for EC2 instances in private subnets? (Review) a. NAT instance b. NAT gateway c. Internet gateway d. Network ACL b. NAT gateway A company needs a network connection to the AWS cloud with predictable performance. What should they use? a. AWS Managed VPN

b. AWS Direct Connect c. VPN CloudHub d. VPC Peering b. AWS Direct Connect What type of information does VPC peering use to route traffic from one VPC to another? a. Security groups b. Public IP addresses c. ARN (Amazon Resource Name) d. Private IP addresses d. Private IP addresses Amazon Relational Database Service (RDS) is an example of what type of database? a. Online transaction processing (OLTP) b. Online analytics processing (OLAP) c. No-SQL d. Data warehouse a. Online transaction processing (OLTP) Which AWS database service offers seamless horizontal scaling? a. Amazon RDS b. Amazon RedShift c. Amazon DynamoDB d. Database on Amazon EC c. Amazon DynamoDB How can fault tolerance be added to an Amazon RDS database? a. Using read replicas b. Using multi-AZ c. Using Global Replicas d. Using EBS snapshots b. Using multi-AZ How can an organization enable microsecond latency for a DynamoDB database? a. Using Amazon ElastiCache b. Using DynamoDB Auto Scaling c. Using Read Replicas d. Using DynamoDB Accelerator (DAX) d. Using DynamoDB Accelerator (DAX) Which AWS database service is a relational, data warehouse? (Review) a. Amazon RedShift b. Amazon RDS Aurora c. Amazon DynamoDB d. Amazon ElastiCache a. Amazon RedShift Why might an organization decide to move an on-premise database to Amazon RDS? (Review) a. To reduce operational overhead b. To increase flexibility c. To eliminate the need to patch management d. To benefit from seamless scalability a. To reduce operational overhead

How do you increase the capacity of an Amazon RDS database? (Review) a. Scaling horizontally, by adding instances b. Scaling horizontally, by adding RCUs/WCUs c. Scaling vertically, by changing instance type d. Scaling vertically by adding CPUs c. Scaling vertically, by changing instance type Amazon DynamoDB is good for which use case? (Review) a. Structured data, rigid schema b. Unstructured data, flexible schema b. Unstructured data, flexible schema Which service can be used to analyze data on Amazon S3 using serverless SQL queries? (Review) a. Amazon Kinesis b. Amazon Athena c. AWS Glue d. AWS Lambda b. Amazon Athena A company moves data between Amazon S3, RDS, and EMR. Which service can help process and move data between services? a. Amazon Athena b. Amazon QuickSight c. AWS Data Pipeline c. AWS Data Pipeline A company has many manufacturing facilities with sensors that send environmental information. Which service can ingest and process the data? a. Amazon Kinesis b. AWS Glue c. AWS Data Pipeline a. Amazon Kinesis A company needs an interactive dashboard for business intelligence. What should they use? a. Amazon CloudWatch b. AWS CloudTrail c. Amazon QuickSight c. Amazon QuickSight A company wants to improve their RDS performance and decrease latency by using an AWS BD caching service. Which of the following would you recommend they use? a. CloudFront b. DAX c. Elasticache d. AWS Greengrass c. Elasticache A company needs to run ETL jobs on data stored in S3. Which service should they use? a. AWS Glue b. Kinesis Data Streams c. Elasticache d. Amazon Athena a. AWS Glue

A company is looking for a fully managed graph database service on AWS. Which of the following services would you recommend? a. Amazon Aurora b. Amazon DynamoDB c. Amazon Relational Database Service d. Amazon Neptune d. Amazon Neptune AWS Trusted advisor does NOT provide advice on which of the following? a. Cost optimization b. Performance c. Total Cost of Ownership (TCO) d. Security e. Fault Tolerance c. Total Cost of Ownership (TCO) A company wishes to determine if there will be any AWS maintenance that could affect their systems over the next few days. Which service should they check? a. AWS Service Health Dashboard b. AWS Personal Health Dashboard c. AWS Trusted Advisor b. AWS Personal Health Dashboard A company wishes to restrict the applications users can launch to an approved list. Which service should they use? (Review) a. AWS Service Catalog b. AWS Systems Manager c. AWS OpsWorks a. AWS Service Catalog Which of the following is true about AWS Organizations? Using AWS Organizations, you can: (Review) a. Setup governance, compliance, and security guard rails b. Programmatically create new AWS accounts c. Configure IAM roles d. Deploy operating system and software patches automatically b. Programmatically create new AWS accounts In regard to AWS Control Tower, which of the following is NOT true? (Review) a. It simplifies the process of creating multi-account environments b. It manages many AWS resources, including: Amazon EC2, S3, and RDS c. It helps you set up a landing zone d. Uses AWS Organizations to help with ongoing account management and governance b. It manages many AWS resources, including: Amazon EC2, S3, and RDS AWS Systems Manager includes management of all the following components, except: a. Automation b. Patch Manager c. Session Manager d. Service Catalog d. Service Catalog According to the shared responsibility model, who is responsible for operating system patching for Amazon EC2 instances? (Review)

a. AWS b. Customer b. Customer According to the AWS Shared Responsibility model, who is responsible for configuring server-side encryption for Amazon S3? (Review) a. AWS b. Customer b. Customer Which tool can be used to find compliance information that relates to the AWS Cloud Platform? (Review) a. Amazon Inspector b. AWS Trusted Advisor c. AWS Artifact d. AWS Personal Health Dashboard c. AWS Artifact

  1. What is AWS' policy regarding penetration testing? a. You can only perform penetration testing with permission from AWS b. You can perform penetration testing against any service and account c. You can perform penetration testing against selected services without approval d. Penetration testing is not allowed under any circumstance c. You can perform penetration testing against selected services without approval Which service can assist with protecting against common web-based exploits? a. AWS Shield b. AWS Web Application Firewall (WAF) c. Amazon Route 53 d. AWS CloudHSM b. AWS Web Application Firewall (WAF)
  2. Which service is involved with encryption? (Review) a. AWS key management service (KMS) b. AWS WAF c. AWS Shield a. AWS key management service (KMS) In case of account compromise, which of the following actions should you perform? a. Delete all IAM users b. Delete all resources in your account c. Open a support case with AWS d. Immediately close you account c. Open a support case with AWS
  3. According to the AWS Shared responsibility model, who is responsible for data center security? a. AWS b. Customer a. AWS Which service uses a hardware security module to protect encryption keys in the cloud? (Review) a. AWS Key Management System (KMS) b. AWS CloudHSM c. AWS Service Catalog b. AWS CloudHSM

Which service cam be used to find reports on payment card industry (PCI) compliance of the AWS Cloud? (Review) a. AWS Service Catalog b. Amazon Inspector c. AWS Artifact c. AWS Artifact Which service can be used to record information about API activity in your AWS account? a. Amazon CloudWatch b. Amazon CloudTrail b. Amazon CloudTrail Which service can be used for alerting if the CPU is heavily loaded on an EC instance? a. Amazon CloudWatch b. Amazon CloudTrail a. Amazon CloudWatch Does Amazon CloudTrail permanently record all API activity in your account by default? (Review) a. Yes b. No b. No Which architectural benefit of the AWS assists with lowering operational cost? a. Higher-level managed services b. Horizontal scaling c. Loose coupling d. Design for failure a. Higher-level managed services AWS EC2 Auto Scaling provides which type of scaling a. Horizontal b. Vertical a. Horizontal Which type of scaling does an Amazon Read Replica provide> a. Horizontal b. Vertical a. Horizontal Which of the following is a benefit of API-driven services? a. You can programmatically and dynamically launch resources b. You can define services through the AWS management console c. You get greater fault tolerance d. Increased reliability a. You can programmatically and dynamically launch resources Which of the following is an architectural best practice? a. Design for the future b. Design monolithic applications c. Design for failure d. Use close coupling c. Design for failure The best practice "services, not servers" means what? a. You should try to use more services such as managed services and serverless services

b. You should not use servers such as Amazon EC c. Try to only use serverless services a. You should try to use more services such as managed services and serverless services How does DynamoDB scale? (Review) a. Vertically b. Horizontally c. Both vertically and horizontally b. Horizontally Which architecture best practice aims to reduce interdependencies between application components? a. Automation b. Services, not servers c. Removing Single Points of Failure d. Loose Coupling d. Loose Coupling Which of the following is NOT a limitation of scaling vertically? (Review) a. Can reach a limit of maximum instance size b. Often requires manual intervention c. Requires a load balancer for distributing load d. Typically requires downtime c. Requires a load balancer for distributing load Which services can scale horizontally? a. Amazon DynamoDB, Amazon EC2 Auto Scaling, Amazon S b. Amazon Dynamo DB, Amazon EFS, Amazon EC c. Amazon EC2 Auto Scaling, Amazon S3, NAT Instance a. Amazon DynamoDB, Amazon EC2 Auto Scaling, Amazon S If using a well written templates, how can Amazon CloudFormation assist with building secure environments? a. It does not require privileged access b. It ensures consistent builds when building repeatably c. The responsibility is shared with AWS b. It ensures consistent builds when building repeatably Who is responsible or patching networking equipment in AWS? (Review) a. AWS b. The Customer a. AWS Which pricing model is best suited for a batch computing workload that requires significant compute power and can be stopped at any time? a. On-demand instances b. Dedicated instances c. Spot instances d. Reserved instances c. Spot instances Which AWS Services are fee of charge? (Review) a. Amazon EC2 Auto Scaling, CloudFormation, IAM b. Amazon EC2, CloudFormation, IAM c. Consolidated billing, EC2 Auto Scaling, NAT Gateway d. IAM, Amazon S3, outbound transfer a. Amazon EC2 Auto Scaling, CloudFormation, IAM

With Amazon S3, which of the following are NOT chargeable items? (Review) a. Quantity of data in S3 buckets b. Lifecycle transitions c. Transfer Acceleration d. Inbound data transfer d. Inbound data transfer What is the most cost-effective storage tier for data that is not often accessed, will be retained for 7 years, and needs to be retrievable within 24 hours? (Review) a. Amazon S3 Standard b. Amazon S3 Glacier c. Amazon S3 Standard-Infrequent Access d. Amazon S3 Glacier Deep Archive d. Amazon S3 Glacier Deep Archive What is a key cost advantage of moving to the AWS Cloud? a. Many services are free b. You can provision what you need and scale on demand c. You can deploy services using an API d. You can scale almost limitlessly b. You can provision what you need and scale on demand Which storage classes are available for the Amazon Elastic File System? (Review) a. Standard, Provisioned Throughput b. Standard, Deep Archive c. Standard, Infrequent Access Storage d. Standard, One-Zone IA c. Standard, Infrequent Access Storage With Amazon Virtual Private Cloud (VPC) what must you pay for? a. Internet Gateway b. Route Table c. Security Group d. VPN Connection d. VPN Connection What can you use to assign metadata to AWS resources for cost reporting? a. Labels b. Tags c. ARNs d. Templates b. Tags Which AWS pricing feature can be used to take advantage of volume pricing discounts across multiple accounts? (Review) a. Consolidated Billing b. TCO Calculator c. Enterprise Agreement d. Cost Explorer a. Consolidated Billing What is the best tool for an organization to compare the cost of running on-premise to using the AWS Cloud? a. Cost Explorer b. Simple Monthly Calculator c. TCO Calculator d. Trusted Advisor

c. TCO Calculator Which AWS support plan comes with a Technical Account Manager (TAM)? a. Basic b. Developer c. Business d. Enterprise d. Enterprise Which of the following needs to be considered in a Total Cost of Ownership (TCO) analysis? (Review) a. Data center operations costs b. Application licensing costs c. Company marketing campaign costs a. Data center operations costs Which of the following is NOT a payment option for Amazon EC2 reserved instances? a. No upfront b. All upfront c. All at the end d. Partial upfront c. All at the end Which tool can an IT manager use to forecast costs over the next 3 months? a. AWS Organizations b. AWS TCO Calculator c. AWS Cost Explorer d. Amazon CloudWatch c. AWS Cost Explorer Which service can be used to migrate an on-premise database to Amazon RDS? a. AWS Server Migration Service b. AWS Transfer for SMTP c. Application Discovery Service d. Database Migration Service d. Database Migration Service Which service can be used to migrate exabytes of data into the AWS Cloud? (Review) a. AWS Snowmobile b. AWS Snowball a. AWS Snowmobile Which service can be used to quickly and affordably migrate 50TB of data to Amazon S3 for a company with a slow internet connection? a. Amazon S3 Transfer Acceleration b. Amazon S3 multi-part upload c. AWS Snowball d. AWS Snowmobile c. AWS Snowball How can a company migrate a database from Amazon EC2 to RDS without downtime? (Review) a. Create a RDS read replica and then promote replica to master b. Create a new database from an EBS snapshot c. Migrate using the AWS Database Migration Service (DMS) c. Migrate using the AWS Database Migration Service (DMS)

A company need to migrate several TB of data from an on-premises NAS device to Amazon FSx. Which service can the company use to migrate the data over a VPN connection? (Review) a. AWS Database Migration Service (DMS) b. AWS Snowball Edge c. AWS DataSync d. Amazon S3 Transfer Acceleration c. AWS DataSync A company recorded some support call conversations in mp4 files. How can the company extract the audio into a text document? a. Use Amazon Translate b. Use Amazon Polly c. Use Amazon Transcribe c. Use Amazon Transcribe An application is being built that needs to identify faces in images. Which service can be used? a. AWS Polly b. AWS Lambda c. AWS Rekognition c. AWS Rekognition A company is looking to use machine learning to translate a few documents from English to Chinese. Having learned about machine learning services on AWS, which of the following services would you recommend the company use? (Review) a. Amazon SageMaker b. Amazon Comprehend c. Amazon Lex d. Amazon Translate d. Amazon Translate A company is planning on implementing a chatbot into their web application. Which AWS service would best meet their needs? (Review) a. Amazon Translate b. Amazon Lex c. Amazon Polly d. Amazon Comprehend b. Amazon Lex A company wants to develop their own machine learning application on AWS. Which of the following services would best fit their needs? a. Amazon SageMaker b. CloudFormation c. Systems Manager d. Amazon Lex a. Amazon SageMaker Which of the following services offers text-to-speech (TTS) services? a. Amazon Transcribe b. Amazon Translate c. Amazon Polly d. AWS Rekognition c. Amazon Polly A company is collecting weather data to send to AWS for analytics. Each collection cycle the data doesn't exceed 7TB. Which AWS Snow Family product would you

recommend? (Review) a. AWS Data Sync b. AWS Snowcone c. AWS Snowmobile d. AWS Snowball b. AWS Snowcone