




























































































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
The IAO Cloud Architect Certificate Exam is aimed at professionals seeking to design and manage cloud infrastructure solutions. The exam covers cloud services, architecture patterns, cloud security, and cloud integration. Candidates will demonstrate their ability to design scalable, secure, and cost-effective cloud solutions that meet business needs. This certification is ideal for cloud architects, IT professionals, and those seeking to specialize in cloud computing architecture and solutions.
Typology: Exams
1 / 128
This page cannot be seen from the preview
Don't miss anything!





























































































Question 1: What characteristic of cloud computing allows resources to be provisioned and released automatically in response to demand? A. Scalability B. Elasticity C. High availability D. Cost optimization Correct: B Explanations: Elasticity refers to the ability of the cloud to automatically scale resources up or down based on real-time demand, whereas scalability often refers to manual planning for growth. Question 2: Which cloud deployment model combines on-premises infrastructure with public cloud services? A. Community cloud B. Private cloud C. Hybrid cloud D. Public cloud Correct: C Explanations: A hybrid cloud integrates private (on-premises) and public
cloud resources, allowing data and applications to be shared between them. Question 3: Which of the following is NOT a standard cloud service model? A. IaaS B. PaaS C. DaaS D. SaaS Correct: C Explanations: The three main service models are Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). DaaS (Desktop as a Service) is less standard. Question 4: What ensures that a cloud service remains accessible even when some components fail? A. Elasticity B. Fault tolerance C. Cost optimization D. Virtualization
Correct: B Explanations: Containers share the host OS kernel, resulting in lower overhead and faster startup compared to VMs. Question 7: Which component directs traffic across multiple servers to improve performance and availability? A. VPN B. Load balancer C. Firewall D. Proxy server Correct: B Explanations: A load balancer distributes incoming network traffic across multiple servers to enhance reliability and scalability. Question 8: In cloud storage, which type stores data as objects within buckets? A. Block storage B. File storage C. Object storage D. Archive storage
Correct: C Explanations: Object storage manages data as objects, each containing the data itself, metadata, and a unique identifier, often in buckets. Question 9: Which network virtualization technology segments a single physical network into multiple logical networks? A. VPN B. VLAN C. CDN D. SDN Correct: B Explanations: A VLAN (Virtual LAN) partitions and isolates traffic within the same physical network infrastructure. Question 10: What cloud design principle focuses on minimizing resource usage and cost? A. Elasticity B. High availability C. Cost optimization D. Fault tolerance
Correct: B Explanations: PaaS supplies developers with a platform—including OS, middleware, and runtime—to build, test, and deploy applications without managing infrastructure. Question 13: What is the purpose of auto-scaling in cloud computing? A. To encrypt data at rest B. To dynamically adjust resource capacity C. To monitor user activity D. To improve DNS resolution Correct: B Explanations: Auto-scaling automatically adds or removes compute resources based on defined metrics to maintain performance and control costs. Question 14: Which principle ensures that cloud services continue operating without interruption during maintenance? A. Scalability B. Elasticity C. High availability
D. Cost optimization Correct: C Explanations: High availability designs duplicate critical components across zones or regions to avoid single points of failure. Question 15: Which cloud framework provides best practices and guidelines for designing secure and reliable cloud architectures? A. TOGAF B. OpenStack C. AWS Well-Architected Framework D. Kubernetes Correct: C Explanations: The AWS Well-Architected Framework offers principles across operational excellence, security, reliability, performance efficiency, and cost optimization. Question 16: Which storage type is optimized for databases requiring frequent read/write operations? A. Object storage B. Archive storage
D. Multi-factor authentication Correct: B Explanations: Hypervisor sandboxing enforces isolation between virtual machines to prevent cross-VM attacks. Question 19: What is the main benefit of using a content delivery network (CDN)? A. Encrypting data B. Accelerating content delivery C. Managing databases D. Creating virtual networks Correct: B Explanations: A CDN caches content at edge locations worldwide to reduce latency and improve user experience. Question 20: Which principle advocates designing cloud services to handle failure gracefully? A. Design for failure B. Cost optimization
C. Elasticity D. Scalability Correct: A Explanations: Designing for failure means anticipating component failures and building redundancy and retries into the architecture. Question 21: In a RESTful API, which HTTP method is typically used to retrieve data? A. POST B. GET C. PUT D. DELETE Correct: B Explanations: GET requests are idempotent and used to fetch resources without modifying server state. Question 22: Which AWS service provides a managed Kubernetes environment? A. AWS Lambda B. Amazon ECS
D. Chef Correct: B Explanations: Terraform uses declarative configuration files to manage and provision infrastructure across multiple providers. Question 25: Which design pattern decouples components by using a mediator to manage communication? A. Circuit breaker B. Strangler C. Publish/subscribe D. Façade Correct: C Explanations: Publish/subscribe uses a messaging system to decouple producers and consumers, improving scalability and resilience. Question 26: What is the purpose of a circuit breaker in microservices architecture? A. To break network connections B. To detect and prevent cascading failures C. To route traffic
D. To load balance requests Correct: B Explanations: A circuit breaker monitors service calls and trips to prevent repeated failed calls, protecting the system from overload. Question 27: Which AWS service offers global DNS management? A. Amazon Route 53 B. AWS IAM C. Amazon CloudWatch D. AWS Shield Correct: A Explanations: Route 53 provides domain registration, DNS routing, and health checks across AWS regions. Question 28: Which storage option is most cost-effective for infrequently accessed archival data? A. SSD-backed block storage B. Standard object storage C. Cold/Archive object storage D. Network file system
Explanations: Identity and Access Management (IAM) services control user identities, roles, and permissions across cloud resources. Question 31: What is the advantage of using managed database services? A. Complete hardware control B. Automated backups and patching C. Manual indexing D. No SLA guarantees Correct: B Explanations: Managed databases provide automated maintenance tasks like backups, patching, and failover to simplify operations. Question 32: Which term describes distributing components across multiple availability zones? A. Geo-redundancy B. Vertical scaling C. High availability D. Serverless Correct: C
Explanations: Deploying across multiple availability zones increases redundancy and resilience, thus enhancing availability. Question 33: Which encryption method secures data in transit? A. AES-256 at rest B. TLS/SSL C. Disk encryption D. Client-side encryption Correct: B Explanations: TLS/SSL encrypts data as it travels between clients and servers, protecting against eavesdropping. Question 34: Which AWS feature helps monitor resource usage and set alarms? A. AWS CloudTrail B. AWS Config C. Amazon CloudWatch D. AWS X-Ray Correct: C
Explanations: Zero trust requires authentication and authorization for every access request, regardless of network location. Question 37: Which AWS service helps protect against DDoS attacks? A. AWS WAF B. Amazon S C. Amazon RDS D. AWS Shield Correct: D Explanations: AWS Shield provides managed DDoS protection for applications running on AWS. Question 38: What is the benefit of using multi-region deployments? A. Lower latency globally and disaster recovery B. Simplified billing C. Single point of failure D. Reduced complexity Correct: A Explanations: Deploying across multiple regions reduces latency for users worldwide and provides geographic redundancy.
Question 39: Which pattern allows gradual replacement of legacy systems with new services? A. Strangler fig B. Ambassador C. Adapter D. Proxy Correct: A Explanations: The strangler fig pattern incrementally replaces parts of a legacy system with new functionality until the old system is retired. Question 40: Which tool provides centralized logging in a cloud environment? A. ELK stack (Elasticsearch, Logstash, Kibana) B. VPC C. S D. IAM Correct: A Explanations: The ELK stack aggregates, stores, and visualizes logs from multiple sources in a centralized manner.