- ######QUESTION#########
Suppose you have created one template and shared to your team lead. The template you created was written in YAML and it will be reused by many. After your team lead finished reviewing the template, they found a section that was not valid. Which of the following sections was it?
Dependencies
Conditions
Resources
Parameters
Ans: Dependencies
- ######QUESTION#########
In Your project, Your team lead has finished creating a build project in the management console. and a build spec has been defined for the project. After the build is run, CodeBuild fails to pull a Docker image into the build environment. What is the most likely cause?
Missing IAM permissions for the CodeBuild Service
The Docker image is too big
CodeBuild cannot work with custom Docker images
Correct Answer: Missing IAM permissions for the CodeBuild Service
- ######QUESTION#########
Your default region is us-east-1 and your IAM user has permissions to operate commands on services such as EC2, S3, and RDS in any region. You would like to execute a command to stop an EC2 instance in the us-east-2 region. What must you do to achieve this?
You should create a new profile just for that other region
Use boto3 dependency injection
Use the –region parameter
You need the override the default region use aws configure
Correct Answer: Use the –region parameter
#
Alex has created an application to run his business. Which service would help to support his web application to offload serving static assets and store user uploaded images? Select the best response.
Amazon EC2
Amazon S3
Amazon EBS
Correct Answer: Amazon S3
QUESTION
John’s company has configured AWS Organizations to manage multiple AWS accounts. Within each AWS account, there are many CloudFormation scripts running. His manager has requested that each script output the account number of the account the script was created in. Which Pseudo parameter will he use to get this information?
AWS::AccountId
AWS::StackName
Correct Answer: AWS::AccountId
Compute capacity is an important parameter in each cloud-based project. Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers. Which AWS feature should the company use to ensure that their applications are automatically adding/removing compute capacity to closely match the required demand?
AWS Auto Scaling
AWS Budgets
Correct Answer: AWS Auto Scaling
- ######QUESTION#########
An AWS developer in a MNC is developing a highly available web application using DynamoDB for its data access. What is the maximum number of attributes that can be combined in a primary key when the developer create the database?
2
4
3
Correct Answer: 2
- ######QUESTION#########
A mnc company is undergoing a compliance audit by the government. The company has hundreds of IAM users that make API calls but specifically it needs to be determined who is making KMS API calls. Which of the following services should the audit team use?
CloudWatch Alarms
CloudTrail
CloudWatch Metrics
X-Ray
Correct Answer: CloudTrail
You work as an on-premises MySQL DBA. The work of database configuration, backups, patching, and DR can be time-consuming and repetitive. Your company has decided to migrate to the AWS Cloud. Which of the following can help save time on the regular database tasks so you can focus on giving users the fast performance and high availability that they need?
Amazon Redshift
Amazon RDS
Correct Answer: Amazon RDS
AWS encourages its customers to decouple their applications in AWS, what is the main benefit of decoupling?
Reduce inter-dependencies, so failures do not impact other components of the application.
Allows you to deal with your application as a single unit.
Correct Answer: Reduce inter-dependencies, so failures do not impact other components of the application.
- ######QUESTION#########
The lambda function will be invoked via the API Gateway. The API Gateway will need to control access to it. Which of the following mechanisms is not supported for API Gateway?
STS
IAM permissions with sigv4
Lambda Authorizer
Correct Answer: STS
- ######QUESTION#########
You have created one application .You have chosen AWS Elastic Beanstalk to upload your application code and allow it to handle details such as provisioning resources and monitoring. When creating configuration files for AWS Elastic Beanstalk which naming convention should you follow?
.ebextensions_.config
.ebextensions/.config
.config/.ebextensions
Correct Answer: .ebextensions/.config
- ######QUESTION#########
John is a developer writing a CloudFormation template written in YAML. The template will consist of the creation of EC2 instances and one RDS resource. Once all resources are created he would like to output the connection endpoint for the RDS database. Which intrinsic function returns the value needed?
!Ref
!FindInMap
!GetAtt
Correct Answer: !GetAtt
QUESTION
An application is configured for a continuous delivery service using AWS CodePipeline. The stages of a software release have been modeled and the pipeline created will copy files or changes that will be worked on by the actions and stages. Which of the following AWS service will assist in the storage of these files?
EFS
S3
Correct Answer: S3
QUESTION
Thomas is working as a Developer, his has the responsibility of maintaining the infrastructure of the company’s technology. The company is limited in the number of engineers it can hire and need to keep maintenance very low. One of those assets under your maintenance is AWS Lambda functions and he would like to deploy new versions and shift traffic to them. Which AWS service meets his needs?
CodeBuild
CodeDeploy
Correct Answer: CodeDeploy
- ######QUESTION#########
Thomas is working as a developer and he has been asked to create an application that can be deployed across a fleet of EC2 instances. The configuration must allow for full control over the deployment steps using blue-green deployment. Which service will help him achieve that?
CodeDeploy
Elastic Beanstalk
Correct Answer: CodeDeploy
- Alex is using RDS in his project. He has to analyze RDS Billing from the project perspective. Which of the following are criteria affecting his billing for RDS?
Data transfer in and out of your DB instance from or to the internet and other AWS Regions.
Storage capacity that you have provisioned to your DB instance. If you scale your provisioned storage capacity within the month, your bill is pro-rated.
Total number of storage I/O requests that you have made in a billing cycle, for Amazon RDS magnetic storage only.
Clock hours of server time
Standby time
Correct Answer: Data transfer in and out of your DB instance from or to the internet and other AWS Regions..Total number of storage I/O requests that you have made in a billing cycle, for Amazon RDS magnetic storage only..Storage capacity that you have provisioned to your DB instance. If you scale your provisioned storage capacity within the month, your bill is pro-rated..Clock hours of server time
- ######QUESTION#########
Which of the following option is correct?
Amazon EFS is designed to provide performance for a broad spectrum of workloads and applications, including Big Data and analytics, media processing workflows, content management, web serving, and home directories.
A queue that lets you integrate and decouple distributed software systems and components.
AWS Lambda lets you run code without provisioning or managing servers
all of them
Correct Answer: all of them
- At AWS, AWS Team wants you to be successful. AWS Support plans are designed to give you the right mix of tools and access to expertise so that you can be successful with AWS while optimizing performance, managing risk, and keeping costs under control. Which of the following support plans features 7 Core checks for AWS Trusted Advisor Best Practice Checks?
Enterprise
Business
Developer
Correct Answer: Developer
QUESTION
Jack is working in a cloud company has created an online shopping application that runs on EC2 instances behind load balancers. The same web application version is hosted on several EC2 instances and the instances run in an Auto Scaling group. The application uses STS to request credentials but after an hour his application stops working. What is the most likely cause of this?
Application needs to renew the credentials after 1 hour when they expire
The IAM service is experiencing downtime once an hour
Correct Answer: Application needs to renew the credentials after 1 hour when they expire
- Which of the following would help to ensure that the right security settings are put in place? (Choose two) AWS Trusted Advisor
Concierge Support Team
AWS Inspector
Correct Answer: AWS Trusted Advisor.AWS Inspector
- ######QUESTION#########
Jacob is a developer in a manufacturing company that has several servers on-site. The company decides to move new development to the cloud using serverless technology. Jacob decides to use the AWS Serverless Application Model (AWS SAM) and work with an AWS SAM template file to represent your serverless architecture. Which of the following is not a valid serverless resource type?
AWS::Serverless::Api
AWS::Serverless::UserPool
AWS::Serverless::Function
Correct Answer: AWS::Serverless::UserPool
- ######QUESTION#########
George global organization has an infrastructure that is deployed with Cloud Formation. One employee, in us-east-1 has created a stack ‘Application1’ and made an exported output with the name ‘ELBDNName’. Another employee has created a stack for a different application ‘Application2’ in us-east-2 and also exported an output with the name ‘ELBDNName’. The first employee wanted to deploy the Cloud Formation stack ‘Application1’ in us-east-2, but it got an error. What is the cause of the error?
Output Values in CloudFormation must have unique names within a single region
Exported Output Values in CloudFormation must have unique names across all regions
Exported Output Values in CloudFormation must have unique names within a single region
Correct Answer: Exported Output Values in CloudFormation must have unique names within a single region
- One of the most important AWS best practices to follow is the cloud architecture principle of elasticity. How does this principle improve your architecture’s design?
By automatically provisioning the required AWS resources based on changes in demand
By automatically scaling your AWS resources using the Elastic Load Balancer
Correct Answer: By automatically provisioning the required AWS resources based on changes in demand
- ######QUESTION#########
John is a developer writing a CloudFormation template written in YAML. The template will consist of the creation of EC2 instances and one RDS resource. Once all resources are created he would like to output the connection endpoint for the RDS database. Which intrinsic function returns the value needed?
Using pre-signed URL
Using Routing Policy
Correct Answer: Using pre-signed URL
- ######QUESTION#########
Jack is an AWS architect, he is creating an Amazon DynamoDB table that will hold game scores for a Node.Js application and needs to perform many kinds of queries using different attributes as query criteria. Which of the following will help him achieve that?
Create a LSI
Create a GSI
Correct Answer: Create a GSI
- ######QUESTION#########
Suppose your project has developed an application and that application act as a backend and perform (CRUD) operations such as create, read, update and delete as well as inner joins. Which database is best suited for this scenario?
RDS
Redshift
DynamoDB
Correct Answer: RDS
- ######QUESTION#########
John is a AWS soultion architect, his client is migrating an application to the cloud that will handle thousands of requests. The application will need a load balancer and an auto scaling group and must be stateless. Which AWS service will provide an in-memory data store for his application’s session state?
RDS
ElastiCache
DynamoDB
Correct Answer: ElastiCache
- ######QUESTION#########
A AWS Developer at a mnc company is working on a CloudFormation template to set up resources. Which section of a CloudFormation template does not allow for conditions?
Parameters
Outputs
Resources
Correct Answer: Parameters
- ######QUESTION#########
Which of the following option is correct regarding SNS,SQS,SES?
“SNS” : Amazon SNS follows the ‘publish-subscribe’ (pub-sub) messaging paradigm, with notifications being delivered to clients using a ‘push’ mechanism that eliminates the need to periodically check or ‘poll’ for new information and updates.
Amazon SES is an inexpensive way to send and receive emails
SQS is a distributed queuing system. Messages are not pushed to receivers. Receivers have to poll SQS to receive messages
all of them
Correct Answer: all of them
- ######QUESTION#########
An AWS Developer is designing a system where only a single server can be used to run an application. The single server will have multiple containers of a service running. Which services can be used to meet this requirement?
Application Load Balancer + Beanstalk
Application Load Balancer + ECS
Classic Load Balancer + ECS
Correct Answer: Application Load Balancer + ECS
- ######QUESTION#########
Which of the following option is correct?
AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy
-all of them
-AWS Elastic Beanstalk offers hooks but not more control as CodeDeploy
AWS CodeDeploy is a deployment service that automates application deployments to Amazon EC2 instances, on-premises instances, or serverless Lambda functions. AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy.
-CodePipeline automates the build, test, and deploy phases of your release process every time there is a code change
Correct Answer: all of them
- ######QUESTION#########
An MNC organization is investigating an issue where twenty virtual machines were terminated unexpectedly. You have been hired as an independent consultant to find out how this happened. Which AWS service will assist with this task?
CloudTrail
EC2 Logs
CloudWatch
Config
Correct Answer: CloudTrail
A new company is starting to automate the creation of ECS clusters using CloudFormation. The process has worked for a while, but after creating task definitions and assigning roles, developers discover that the tasks for containers are not using the permissions assigned to them. Which ECS config must be set in /etc/ecs/ecs.config to allow ECS tasks to use IAM roles?
ECS_ENABLE_TASK_IAM_ROLE
ECS_ENGINE_AUTH_DATA
Correct Answer: ECS_ENABLE_TASK_IAM_ROLE
- ######QUESTION#########
John is working with a template document written in YAML that represents the architecture of a serverless application. While reading the document he see the first line contains Transform: ‘AWS::Serverless-2016-10-31’. What does the Transform section in the document represent?
It is a SAM template
It is an intrinsic function
Correct Answer: It is a SAM template
- ###############################
Which parameter act as a firewall for associated subnets, controlling both inbound and outbound traffic at the subnet level.
EC2
S3
Network ACLs
Correct Answer: Network ACLs
- ######QUESTION#########
George is a developer for Movie Gallery, a company that just migrated to the cloud. A database must be created using NoSQL technology to hold movies that are listed for public viewing. George taking an important step in designing the database with DynamoDB and need to choose the appropriate partition key. Which of the following unique attributes satisfies this requirement?
movie_id
producer_name
Correct Answer: movie_id
- ######QUESTION#########
John is a developer for a web application written in .NET which uses the AWS SDK. He needs to implement an authentication mechanism that returns a JWT (JSON Web Token). Which AWS service will help him with token handling and validation?
Cognito User Pools
Cognito Identity Pools
Correct Answer: Cognito User Pools
- ######QUESTION#########
Which of the following option is correct?
“Cognito Sync” – You can use it to synchronize user profile data across mobile devices and the web without requiring your own backend
“API Gateway” – If you are processing tokens server-side and using other programming languages not supported in AWS it may be a good choice other than that go with a service already providing the functionality
all of them
“Cognito Identity Pools” – A way to authorize your users to use the various AWS services vs authorization in your application
“Cognito User Pools” : After successfully authenticating a user, Amazon Cognito issues JSON web tokens (JWT) that you can use to secure and authorize access to your own APIs, or exchange for AWS credentials.
all of them
- ######QUESTION#########
Jack is a aws Developer, he was called to fix an issue with a system that uses SQS. The SQS consumers take an unpredictably long time to process messages and therefore some consumers are receiving duplicate messages from the SQS queue. Which action should be taken to resolve the issue?
Use DeleteMessage at the Consumer Level
Change the VisibilityTimeout of the Queue
Use the ChangeMessageVisibility API at the Consumer Level
Correct Answer: Use the ChangeMessageVisibility API at the Consumer Level
In Team A, Many developers are working on two-tier application development. While building that application they have used a MySQL database layer. Which of the following AWS database deployments would provide automated backups to the application?
Amazon DocumentDB
Amazon Aurora
- ######QUESTION#########
Mobile app users will register and be given permission to access AWS resources. Which technology would you recommend for subscribing users to messages?
Kinesis
SQS
SNS
SES
QUESTION
John runs a SAAS company for the healthcare industry that is used worldwide where users pay a monthly subscription. There have been requests by mobile developers to expose public API’s created with API Gateway. He decides to make the API’s available to mobile developers as product offerings. Which feature will allow him to do that?
CloudTrail
Usage Plans and API Keys
AWS Lambda Custom Authorizers
- At AWS, AWS Team wants you to be successful. AWS Support plans are designed to give you the right mix of tools and access to expertise so that you can be successful with AWS while optimizing performance, managing risk, and keeping costs under control. Which of the following support plans features a Full set of checks for AWS Trusted Advisor Best Practice Checks?
Business
Developer
Enterprise
QUESTION
A mnc company hired an outside cloud consultant to help with redesigning internal systems. The company wants to allow consuming applications to process nearly limitless streams of data in flight. Which solution should the outside consultant recommend?
Kinesis Stream
SQS
SNS
Lambda
Correct Answer: Kinesis Stream
- ######QUESTION#########
How KMS Encryption works?
KMS generates a new CMK for each Encrypt call and encrypts the data with it
KMS stores the CMK, and receives data from the clients, which it encrypts and sends back.
KMS receives CMK from the client at every Encrypt call, and encrypts the data with that
Correct Answer: KMS stores the CMK, and receives data from the clients, which it encrypts and sends back.
QUESTION
The Developer has managed to model all the resources and has executed the pipeline and during the process, the pipeline fails due to an authorization error. Which step should be taken first to solve the issue?
Check changes in CloudTrail
Audit the S3 bucket CORS policy where the artifacts are stored
Check the recent changes in CloudWatch
Check the Service IAM permissions
Correct Answer: Check the Service IAM permissions
- ######QUESTION#########
Which of the following option is correct?
“CodeCommit” – CodeCommit eliminates the need to operate your own source control system or worry about scaling its infrastructure
“CodePipeline” – CodePipeline automates the build, test, and deploy phases of your release process every time there is a code change, based on the release model you define
“CodeBuild” – AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy
all of them
“CodeDeploy” : You can deploy nearly unlimited variety of application content, such as code, serverless AWS Lambda functions, web and configuration files, executables, packages, scripts, multimedia files, and so on.
Correct Answer: all of them
- ######QUESTION#########
A mnc company would like to deploy new application versions with Elastic Beanstalk to EC2 instances. When a deployment is executed some instances should serve requests with the old version of the application, while other instances serve new requests until the deployment is completed. Which deployment meets this requirement without incurring costs?
all at once
rolling
blue/green
immutable
Correct Answer: rolling
- ######QUESTION#########
Consider you are AWS Cloud developer .You have created an AWS CodePipeline pipeline that performs many actions in a specified order. After careful revision of your steps, you determine that some steps need to run at the same time instead of by specified order to speed up your pipeline. What method will achieve this?
Re-design the pipeline to include steps to occur in parallel where possible
Ask for a ‘speed boost’ from the AWS support
Upgrade the AWS CodePipeline instance type
Correct Answer: Re-design the pipeline to include steps to occur in parallel where possible
- ######QUESTION#########
You have developed an application and your Applications running on EC2 instances process messages from an SQS queue but sometimes they experience errors due to messages not being processed. To isolate the messages, which option will help with further debugging?
Increase the VisibilityTimeout
Implement a DLQ
Use DeleteMessage
Correct Answer: Implement a DLQ
