Web servers running on Amazon EC2 access a legacy application running in a corporate data center.
What term would describe this model?
Answer : C
Reference:
https://aws.amazon.com/enterprise/hybrid/
What is the benefit of using AWS managed services, such as Amazon ElastiCache and Amazon Relational Database Service (Amazon RDS)?
Answer : C
Which service provides a virtually unlimited amount of online highly durable object storage?
Answer : D
Reference:
https://aws.amazon.com/what-is-cloud-object-storage/
Which of the following Identity and Access Management (IAM) entities is associated with an access key ID and secret access key when using AWS Command
Line Interface (AWS CLI)?
Answer : B
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html
Which of the following security-related services does AWS offer? (Choose two.)
Answer : BC
Reference:
https://aws.amazon.com/security/
Which AWS managed service is used to host databases?
Answer : D
Explanation -
Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.
Reference:
https://aws.amazon.com/rds/?c=db&sec=srv
Which AWS service provides a simple and scalable shared file storage solution for use with Linux-based AWS and on-premises servers?
Answer : D
Explanation:
Amazon Elastic File System (Amazon EFS) provides a simple, scalable, fully managed elastic NFS file system for use with AWS Cloud services and on-premises resources. It is built to scale on demand to petabytes without disrupting applications, growing and shrinking automatically as you add and remove files, eliminating the need to provision and manage capacity to accommodate growth.
Amazon EFS is designed to provide the throughput, IOPS, and low latency needed for Linux workloads. Throughput and IOPS scale as a file system grows and can burst to higher throughput levels for short periods of time to support the unpredictable performance needs of file workloads. For the most demanding workloads, Amazon EFS can support performance over 10 GB/sec and up to 500,000 IOPS.
When architecting cloud applications, which of the following are a key design principle?
Answer : D
Explanation:
Cloud services main proposition is to provide elasticity through horizontal scaling. It"™s already there. As for using largest instance possible, it is not a design principle that helps cloud applications in anyway. Scrum development process is not related to architecting. Therefore, a key principle is to provision your application for on-demand capacity. Peak loads is something that cloud applications experience everyday. Peak load management should be a necessary part of cloud application design principle.
Reference:
https://d1.awsstatic.com/whitepapers/AWS_Cloud_Best_Practices.pdf
Which AWS service should be used for long-term, low-cost storage of data backups?
Answer : B
Explanation -
Amazon S3 Glacier is a secure, durable, and low-cost storage class of S3 for data archiving and long-term backup. Customers can store large or small amounts of data for as little as $0.004 per gigabyte per month. The S3 Glacier storage class is ideal for archives where data is regularly retrieved and some of the data may be needed in minutes.
Amazon RDS is a relational database service that hosts databases. It helps you create and manage databases. Amazon Snowball is a petabyte-scale data transfer service that provides cost efficient data transfer to AWS from tamper proof physical devices. Similarly, Elastic block storage offers persistent block storage volumes for EC2 instances.
Reference:
https://aws.amazon.com/backup-restore/services/
Under the shared responsibility model, which of the following is a shared control between a customer and AWS?
Answer : B
Which AWS service allows companies to connect an Amazon VPC to an on-premises data center?
Answer : D
Explanation:
AWS Direct Connect enables you to securely connect your AWS environment to your on-premises data center or office location over a standard 1 gigabit or 10 gigabit Ethernet fiber-optic connection. AWS Direct Connect offers dedicated high speed, low latency connection, which bypasses internet service providers in your network path. An AWS Direct Connect location provides access to Amazon Web Services in the region it is associated with, as well as access to other US regions. AWS Direct Connect allows you to logically partition the fiber-optic connections into multiple logical connections called Virtual Local Area Networks
(VLAN). You can take advantage of these logical connections to improve security, differentiate traffic, and achieve compliance requirements.
Reference:
https://aws.amazon.com/getting-started/projects/connect-data-center-to-aws/
A company wants to reduce the physical compute footprint that developers use to run code.
Which service would meet that need by enabling serverless architectures?
Answer : B
Explanation:
AWS Lambda is an integral part of coding on AWS. It reduces physical compute footprint by utilizing aws cloud services to run code.
Which AWS service provides alerts when an AWS event may impact a company"™s AWS resources?
Answer : A
Explanation:
AWS Personal Health Dashboard provides alerts and remediation guidance when AWS is experiencing events that may impact you. While the Service Health
Dashboard displays the general status of AWS services, Personal Health Dashboard gives you a personalized view into the performance and availability of the
AWS services underlying your AWS resources.
Reference:
https://aws.amazon.com/premiumsupport/technology/personal-health-dashboard/
Which of the following are categories of AWS Trusted Advisor? (Choose two.)
Answer : AD
Explanation:
Like your customized cloud expert, AWS Trusted Advisor analyzes your AWS environment and provides best practice recommendations in five categories: cost optimization, performance, security, fault tolerance and service limits.
Reference:
https://aws.amazon.com/premiumsupport/technology/trusted-advisor/
Which task is AWS responsible for in the shared responsibility model for security and compliance?
Answer : C
Explanation:
AWS Compliance enables customers to establish and operate in an AWS security control environment
✑ The shared responsibility model is part of AWS Compliance program
✑ The Security of the cloud is managed by Amazon AWS provider
✑ The Security in the cloud is responsibility of the customer
✑ The customer is responsible for their information and data, their secure transmission, integrity, and encryption
✑ Also, the customer is responsible for managing, support, patching and control of the guest operating system and AWS services provided like EC2
✑ AWS customers retain control and ownership of their data
✑ The AWS network provides significant protection against traditional network security issues and the customer can implement further protection
Reference:
https://www.whizlabs.com/blog/aws-security-shared-responsibility/