AWS Certified Cloud Practitioner QUIZ SET 4 Author: CloudVikas Published Date: 22 March 2020 1 Comment on AWS Certified Cloud Practitioner QUIZ SET 4 Welcome to AWS Certified Cloud Practitioner QUIZ SET 4. Please enter Email ID to get QUIZ Results. Hope you will enjoy this. Enter your email ID details to get QUIZ Result 1. Although EBS is already a replicated solution, Our company cloudvikas advised us to use a RAID mode that will mirror data and will allow our instance to not be affected if an EBS volume entirely fails. Which RAID mode will be recommend?RAID 1RAID 02. Which of the following will impact the price paid for an EC2 instance? (Choose two) Storage capacity Instance Type The IAM identity that uses the instance3. Which of the following Compliance guarantees attests to the fact that the AWS Platform has met the standard required for the secure storage of medical records in the US?FERPAGLBAHIPAA4. What is the AWS service that provides automated network assessment of your Amazon EC2 instances to check for vulnerabilities?AWS Network Access Control ListsAWS InspectorAmazon Kinesis5. Your teammate plans to run NoSQL database year-round on EC2. Which instance launch mode should you choose?Reserved InstancesRetrieve the instance Metadata from6. Which of the following services will help you optimize your entire AWS environment in real time following AWS best practices?AWS InspectorAWS Trusted AdvisorAWS Shield7. Which of the following option is incorrect regarding AWS EC2?AWS EC2 identities include users, groups and roles. These identities are used to control who can access and use the instances. They don’t have any impact on EC2 pricing.Prices of the Amazon EC2 instances may vary depending on the Region where the instances are provisioned. They do not vary based on which AZ they are hosted within a region.If you provision 2 EC2 instances and they are in the running state you will be charged for every hour they are running until you stop or terminate them. AWS will continue to charge you for the 2 instances whether you are using them or not.8. Which of the following is AWS' managed DDoS protection service?Access Control ListsAWS ShieldSecurity Groups9. Which of the following option is incorrect?A security group acts as a virtual firewall for your instance to control inbound and outbound traffic.A network access control list (ACL) acts as a firewall for controlling traffic in and out of one or more subnets. Therefore if they configured properly, they can protect your instances from DDoS attacks.AWS CloudHSM is a cloud-based hardware security module (HSM) that enables you to easily generate and use your own encryption keys on the AWS Cloud.AWS CloudHSM enables you to manage access to AWS services and resources securely.10. Which of the following AWS services can help you assess the fault-tolerance of your AWS environment?AWS Trusted AdvisorAWS ShieldAWS Inspector11. Using Amazon RDS falls under the shared responsibility model. Which of the following are customer responsibilities? (Choose two) Managing the database settings. Building the relational database schema. Installing the database software.12. You work as an on-premises MySQL DBA. The work of database configuration, backups, patching, and DR can be time-consuming and repetitive. Your company has decided to migrate to the AWS Cloud. Which of the following can help save time on the regular database tasks so you can focus on giving users the fast performance and high availability that they need?Amazon RDSAmazon Redshift13. True or False: It's safer to use Access Keys than it is to use IAM roles.FalseTrue14. Which of the following option is incorrect regarding TCO calculator?The TCO calculator asks for the number of servers that run your databases NOT the number of active databases.The TCO Calculator doesn’t ask for the number of applications migrated to AWS. Also, what really matters is the size of your application and your business.The TCO Calculator doesn’t ask for the number of end users you are currently serving.The TCO calculator is a content delivery network.15. The AWS Web Application Firewall can go down to which of the following OSI layers?67416. Ajit would like to have the same data being accessible as an NFS drive cross AZ on all your EC2 instances. What do you recommend?Mount an EFSEC217. What does S3 stand for?Simple Storage ServiceSimplified Storage ServiceService for Simple Storage18. Which of the following option is incorrect?Amazon Virtual Private Cloud (Amazon VPC) allows you to create a Hardware VPN connection between your corporate data center and your VPC to leverage the AWS Cloud as an extension of your corporate datacenter.AWS Identity and Access Management (IAM) can grant your employees and applications access to the AWS Management Console and AWS service APIs using your existing identity systems.AWS Cloud9 is an AWS cloud IDE for writing, running, and debugging code.AWS Artifact provides on-demand access to AWS’ compliance reports.AWS Identity and Access Management (IAM) is used to track API calls that are taken in AWS.19. Select the services that can be used to build hybrid cloud architectures. (Choose two) AWS Identity and Access Management AWS Cloud9 Amazon Virtual Private Cloud20. Can Spread Placement Groups be deployed across multiple Availability Zones?YesNo21. ###############################Alex has created an application to run his business. Which service would help to support his web application to offload serving static assets and store user uploaded images? Select the best response.Amazon EBSAmazon S3Amazon EC222. In Team A, Many developers are working on two-tier application development. While building that application they have used a MySQL database layer. Which of the following AWS database deployments would provide automated backups to the application?Amazon DocumentDBAmazon Aurora23. In any project, the user assesses the security and compliance of your EC2 instances.You need to use an AWS service to assess the security and compliance of your EC2 instances. Which of the following services should you use?AWS WAFAWS InspectorAWS Shield24. Based on the AWS shared responsibility model, which of the following is the responsibility of AWS? Creating hypervisors. and Hardware maintenance.Installing software on EC2.Monitoring network performance.25. True or False: Security in the cloud is the responsibility of AWS.FalseTrue26. Which of the following is not a benefit of Amazon S3? (Choose TWO) Amazon S3 can be scaled manually to store and retrieve any amount of data from anywhere. Amazon S3 can run any type of application or backend system. Amazon S3 stores any number of objects, but with object size limits.27. An organization runs many systems and uses many AWS products. Which of the following services allow them to control how each developer interacts with these products?Network Access Control ListsAWS Identity and Access Management28. Which AWS network feature can establish a private network connection between AWS and your datacenter?AWS Direct ConnectAmazon CloudFrontAWS Snowball29. Which of the following option is incorrect regarding AWS CloudFormation?AWS CloudFormation is a service that can help you optimize your utilization and cost efficiencies when consuming AWS services so you only pay for the resources you actually need. When demand drops, AWS CloudFormation will automatically remove any excess resource capacity so you avoid overspending.AWS CloudFormation is a service that gives developers and businesses an easy way to create a collection of related AWS resources and provision them in an orderly and predictable fashion.Unlike many other services, there is no free tier usage with Route53. You have to pay for Route53 even if it is used with other free-tier services such as Amazon EC2 instances.30. Which of the following can help protect your EC2 instances from DDoS attacks? Network Access Control Lists,Security GroupsCloudHSM31. Which of the following option is correct regarding AWS Direct Connect?AWS Direct Connect is used to establish a dedicated network connection from your premises to AWS. Using AWS Direct Connect, you can establish private connectivity between AWS and your data center, office, or co-location environment, which in many cases can reduce your network costs, increase bandwidth throughput, and provide a more consistent network experience than Internet-based connections.AWS Direct Connect is used to physically migrate petabyte-scale data sets into and out of AWS.AWS Direct Connect is a content delivery network.32. Which of the following AWS Cloud services is designed with native Multi-AZ fault tolerance in mind? (Choose two) Amazon DynamoDB Amazon Simple Storage Service Amazon Virtual Private Cloud33. Which of the following option is correct regarding Amazon S3?Amazon S3 is a compute service.Amazon S3 scales automatically to store and retrieve any amount of data from anywhere.Amazon S3 is an object storage built to store and retrieve any amount of data from anywhere on the Internet. It’s a simple storage service that offers an extremely durable, highly available, and infinitely scalable data storage infrastructure at very low costs.Amazon S3 stores any number of objects, but each object does have a size limitation. Individual Amazon S3 objects can range in size from a minimum of 0 bytes to a maximum of 5 terabytes.34. Consider your project manager don’t want to loose the cache upon termination of your instance. Which storage mechanism do you recommend as a Solution Architect?Instance StoreEC2 Instance35. Which of the following option is incorrect regarding Amazon Inspector?Amazon Inspector can be used to check the network accessibility of your Amazon EC2 instances -at the subnet level- but this is not done automatically.Amazon Inspector allows you to create assessment templates to automate security vulnerability assessments throughout your development and deployment pipelines or for static production systems.Amazon Inspector is an automated security assessment service that helps you test the network accessibility of your Amazon EC2 instances and the security state of your applications running on the instances.36. Which of the following AWS services are free to use? CloudFormation,Auto-scalingCloudFormation,Route53CloudWatch37. What information is required to calculate the Total Cost of Ownership for the AWS Cloud?The number of on-premise virtual machinesThe number of on-premise applications38. What does Amazon Elastic Beanstalk provide?A PaaS solution to automate application deployment.A compute engine for Amazon ECS.A long-term data storage.39. True or False: The Standard version of AWS Shield offers automated application (layer 7) traffic monitoring.FalseTrue40. Which web application firewall that helps protect your web applications or APIs against common web exploits that may affect availability, compromise security, or consume excessive resources?AWS WAFAWS EC241. Which of the following option is incorrect?AWS EC2 is a web service for securely controlling access to AWS services. With IAM, you can centrally manage users, security credentials such as access keys, and permissions that control which AWS resources users and applications can access.Amazon RDS is relational database service.Network Access Control Lists is a VPC feature that allows you to control traffic at the subnet level.Amazon EMR is used to run and Scale Apache Spark, Hadoop, HBase, Presto, Hive, and other Big Data Frameworks.42. Your EC2 instance in us-east-1a is got terminated, and the attached EBS volume is now available. Your teammate tells you he can’t seen to attach it to your instance in us-east-1.What should be reason?EBS volumes are AZ lockedEBS volumes are not AZ locked43. At AWS, AWS Team wants you to be successful. AWS Support plans are designed to give you the right mix of tools and access to expertise so that you can be successful with AWS while optimizing performance, managing risk, and keeping costs under control. Which of the following support plans features a Full set of checks for AWS Trusted Advisor Best Practice Checks? Developer Business Enterprise44. A company created a solution that will help AWS customers improve their architectures on AWS. Which AWS program may support this company?APN Technology PartnersAPN Consulting PartnersAWS Professional Services45. Which of the following Compliance certifications attests to the security of the AWS platform regarding credit card transactions?PCI DSS Level 1ISO 27001SOC 246. Which of the following would help to ensure that the right security settings are put in place? (Choose two) AWS Trusted Advisor Concierge Support Team AWS Inspector47. Your Project Lead would like to leverage EBS volumes in parallel to linearly increase performance while accepting greater failure risks. Which RAID mode helps him in achieving that?RAID 0RAID 148. Spread Placement Groups can be deployed across multiple Availability Zones. Is it true or false?TrueFalse49. An organization has an on-premises application that serves users from all around the world. If instead the application was deployed in AWS, what is the AWS characteristic that could help reduce latency to their users?Global reachFault tolerance50. Compute capacity is an important parameter in each cloud-based project. Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers. Which AWS feature should the company use to ensure that their applications are automatically adding/removing compute capacity to closely match the required demand?AWS BudgetsAWS Auto Scaling Author: CloudVikas
Great Expeince