AWS CLOUD PRACTIONER EXAM

Q1: Which AWS service helps identify malicious or unauthorized activities in AWS accounts and workloads?

a. - Amazon Rekognition b. - AWS Trusted Advisor c. - Amazon GuardDuty d. - Amazon CloudWatch

Q2: Under the AWS shared responsibility model, the security and patching of the guest operating system is the responsibility of:

a. - AWS Support b. - the customer c. - AWS Systems Manager d. - AWS Config

Q3: What is one of the core principles to follow when designing a highly available application in the AWS Cloud?

a. - Design using a serverless architecture b. - Assume that all components within an application can fail c. - Design AWS Auto Scaling into every application d. - Design all components using open-source code

Q4: Which AWS service will help users determine if an application running on an Amazon EC2 instance has sufficient CPU capacity?

a. - Amazon CloudWatch b. - AWS Config c. - AWS CloudTrail d. - Amazon Inspector

Q5: Which AWS Cloud best practice uses the elasticity and agility of cloud computing?

a. - Provision capacity based on past usage and theoretical peaks b. - Dynamically and predictively scale to meet usage demands c. - Build the application and infrastructure in a data center that grants physical access d. - Break apart the application into loosely coupled components

Q6: A web application is hosted on AWS using an Elastic Load Balancer, multiple Amazon EC2 instances, and Amazon RDS.
Which security measures fall under the responsibility of AWS? (Choose two.)

a. - Running a virus scan on EC2 instances b. - Protecting against IP spoofing and packet sniffing c. - Installing the latest security patches on the RDS instance d. - Encrypting communication between the EC2 instances and the Elastic Load Balancer

Q7: Which AWS feature or service can be used to capture information about incoming and outgoing traffic in an AWS VPC infrastructure?

a. - AWS Config b. - VPC Flow Logs c. - AWS Trusted Advisor d. - AWS CloudTrail

Q8: Which AWS services may be scaled using AWS Auto Scaling? (Choose two.)

a. - Amazon EC2 b. - Amazon DynamoDB c. - Amazon S3 d. - Amazon Route 53

Q9: A Cloud Practitioner identifies a billing issue after examining the AWS Cost and Usage report in the AWS Management Console.
Which action can be taken to resolve this?

a. - Open a detailed case related to billing and submit it to AWS Support for help. b. - Upload data describing the issue to a new object in a private Amazon S3 bucket. c. - Create a pricing application and deploy it to a right-sized Amazon EC2 instance for more information. d. - Proceed with creating a new dashboard in Amazon QuickSight.

Q10: Which AWS service makes it easy to create and manage AWS users and groups, and provide them with secure access to AWS resources at no charge?

a. - AWS Direct Connect b. - Amazon Connect c. - AWS Identity and Access Management (IAM) d. - AWS Firewall Manager

Q11: The ability to horizontally scale Amazon EC2 instances based on demand is an example of which concept in the AWS Cloud value proposition?

a. - Economy of scale b. - Elasticity c. - High availability d. - Agility

Q12: What does the AWS Simple Monthly Calculator do?

a. - Compares on-premises costs to colocation environments b. - Estimates monthly billing based on projected usage c. - Estimates power consumption at existing data centers d. - Estimates CPU utilization

Q13: Which method helps to optimize costs of users moving to the AWS Cloud?

a. - Paying only for what is used b. - Purchasing hardware before it is needed c. - Manually provisioning cloud resources d. - Purchasing for the maximum possible load

Q14: Which AWS service provides on-demand of AWS security and compliance documentation?

a. - AWS Directory Service b. - AWS Artifact c. - AWS Trusted Advisor d. - Amazon Inspector

Q15: An application runs on multiple Amazon EC2 instances that access a shared file system simultaneously.
Which AWS storage service should be used?

a. - Amazon EBS b. - Amazon EFS c. - Amazon S3 d. - AWS Artifact

Q16: Which Amazon EC2 pricing model should be used to comply with per-core software license requirements?

a. - Dedicated Hosts b. - On-Demand Instances c. - Spot Instances d. - Reserved Instances

Q17: Which tasks are the customer's responsibility in the AWS shared responsibility model? (Choose two.)

a. - Infrastructure facilities access management b. - Cloud infrastructure hardware lifecycle management c. - Configuration management of user's applications d. - Networking infrastructure protection

Q18: Under the AWS shared responsibility model, which of the following is a customer responsibility?

a. - Installing security patches for the Xen and KVM hypervisors b. - Installing operating system patches for Amazon DynamoDB c. - Installing operating system security patches for Amazon EC2 database instances d. - Installing operating system security patches for Amazon RDS database instances

Q19: Each department within a company has its own independent AWS account and its own payment method. New company leadership wants to centralize departmental governance and consolidate payments.
How can this be achieved using AWS services or features?

a. - Forward monthly invoices for each account. Then create IAM roles to allow cross-account access. b. - Create a new AWS account. Then configure AWS Organizations and invite all existing accounts to join. c. - Configure AWS Organizations in each of the existing accounts. Then link all accounts together. d. - Use Cost Explorer to combine costs from all accounts. Then replicate IAM policies across accounts.

Q20: Which service can be used to monitor and receive alerts for AWS account root user AWS Management Console sign-in events?

a. - Amazon CloudWatch b. - AWS Config c. - AWS Trusted Advisor d. - AWS IAM

Q21: Which design principle should be considered when architecting in the AWS Cloud?

a. - Think of servers as non-disposable resources b. - Use synchronous integration of services c. - Design loosely coupled components d. - Implement the least permissive rules for security groups

Q22: The AWS Cost Management tools give users the ability to do which of the following? (Choose two.)

a. - Terminate all AWS resources automatically if budget thresholds are exceeded. b. - Break down AWS costs by day, service, and linked AWS account. c. - Create budgets and receive notifications if current of forecasted usage exceeds the budgets. d. - Switch automatically to Reserved Instances or Spot Instances, whichever is most cost-effective.

Q23: A company needs an Amazon S3 bucket that cannot have any public objects due to compliance requirements.
How can this be accomplished?

a. - Enable S3 Block Public Access from the AWS Management Console. b. - Hold a team meeting to discuss the importance if only uploading private S3 objects. c. - Require all S3 objects to be manually approved before uploading. d. - Create a service to monitor all S3 uploads and remove any public uploads.

Q24: An ecommerce company anticipates a huge increase in web traffic for two very popular upcoming shopping holidays.
Which AWS service or feature can be configured to dynamically adjust resources to meet this change in demand?

a. - AWS CloudTrail b. - Amazon EC2 Auto Scaling c. - Amazon Forecast d. - AWS Config

Q25: A company is running an ecommerce application hosted in Europe. To decrease latency for users who access the website from other parts of the world, the company would like to cache frequently accessed static content closer to the users.
Which AWS service will support these requirements?

a. - Amazon ElastiCache b. - Amazon CloudFront c. - Amazon Elastic File System (Amazon EFS) d. - Amazon Elastic Block Store (Amazon EBS)

Q26: A company is hosting a web application in a Docker container on Amazon EC2.
AWS is responsible for which of the following tasks?

a. - Scaling the web application and services developed with Docker b. - Provisioning or scheduling containers to run on clusters and maintain their availability c. - Performing hardware maintenance in the AWS facilities that run the AWS Cloud d. - Managing the guest operating system, including updates and security patches

Q27: The continual reduction of AWS Cloud pricing is due to:

a. - pay-as-you go pricing b. - the AWS global infrastructure c. - economies of scale d. - reserved storage pricing

Q28: A batch workload takes 5 hours to finish on an Amazon EC2 instance. The amount of data to be processed doubles monthly and the processing time is proportional.
What is the best cloud architecture to address this consistently growing demand?

a. - Run the application on a bigger EC2 instance size. b. - Switch to an EC2 instance family that better matches batch requirements. c. - Distribute the application across multiple EC2 instances and run the workload in parallel. d. - Run the application on a bare metal EC2 instance.

Q29: Which actions represent best practices for using AWS IAM? (Choose two.)

a. - Configure a strong password policy b. - Share the security credentials among users of AWS accounts who are in the same Region c. - Use access keys to log in to the AWS Management Console d. - Rotate access keys on a regular basis

Q30: A user needs to generate a report that outlines the status of key security checks in an AWS account. The report must include:
(The status of Amazon S3 bucket permissions, Whether multi-factor authentication is enabled for the AWS account root user, If any security groups are configured to allow unrestricted access.)
Where can all this information be found in one location?

a. - Amazon QuickSight dashboard b. - AWS CloudTrail trails c. - AWS Trusted Advisor report d. - IAM credential report

Q31: Why is it beneficial to use Elastic Load Balancers with applications?

a. - They allow for the conversion from Application Load Balancers to Classic Load Balancers. b. - They are capable of handling constant changes in network traffic patterns. c. - They automatically adjust capacity. d. - They are provided at no charge to users.

Q32: Which AWS service should be used to create a billing alarm?

a. - AWS Trusted Advisor b. - AWS CloudTrail c. - Amazon CloudWatch d. - Amazon QuickSight

Q33: Which AWS service is a managed NoSQL database?

a. - Amazon Redshift b. - Amazon DynamoDB c. - Amazon Aurora d. - Amazon RDS for MariaDB

Q34: Which AWS service enables users to securely connect to AWS resources over the public internet?

a. - Amazon VPC peering b. - AWS Direct Connect c. - AWS VPN d. - Amazon Pinpoint

Q35: Which of the following are benefits of AWS Global Accelerator? (Choose two.)

a. - Reduced cost to run services on AWS b. - Improved availability of applications deployed on AWS c. - Higher durability of data stored on AWS d. - Decreased latency to reach applications deployed on AWS

Q36: Which of the AWS global infrastructure is used to cache copies of content for faster delivery to users across the globe?

a. - AWS Regions b. - Availability Zones c. - Edge locations d. - Data centers

Q37: Using AWS Config to record, audit, and evaluate changes to AWS resources to enable traceability is an example of which AWS Well-Architected Framework pillar?

a. - Security b. - Operational excellence c. - Performance efficiency d. - Cost optimization

Q38: IT systems should be designed to reduce interdependencies, so that a change or failure in one component does not cascade to other components.
This is an example of which principle of cloud architecture design?

a. - Scalability b. - Loose coupling c. - Automation d. - Automatic scaling

Q39: Which AWS service or feature can enhance network security by blocking requests from a particular network for a web application on AWS? (Choose two.)

a. - AWS WAF b. - AWS Trusted Advisor c. - AWS Direct Connect d. - AWS Organizations

Q40: A user who wants to get help with billing and reactivate a suspended account should submit an account and billing request to:

a. - the AWS Support forum b. - AWS Abuse c. - an AWS Solutions Architect d. - AWS Support

Q41: According to the AWS Well-Architected Framework, what change management steps should be taken to achieve reliability in the AWS Cloud? (Choose two.)

a. - Use AWS Config to generate an inventory of AWS resources b. - Use service limits to prevent users from creating or making changes to AWS resources c. - Use AWS CloudTrail to record AWS API calls into an auditable log file d. - Use AWS Certificate Manager to whitelist approved AWS resources and services

Q42: Users are reporting latency when connecting to a website with a global customer base.
Which AWS service will improve the customer experience by reducing latency?

a. - Amazon CloudFront b. - AWS Direct Connect c. - Amazon EC2 Auto Scaling d. - AWS Transit Gateway

Q43: A company wants to try a third-party ecommerce solution before deciding to use it long term.
Which AWS service or tool will support this effort?

a. - AWS Marketplace b. - AWS Partner Network (APN) c. - AWS Managed Services d. - AWS Service Catalog

Q44: Which AWS service can be used to turn text into life-like speech?

a. - Amazon Polly b. - Amazon Transcribe c. - Amazon Rekognition d. - Amazon Lex

Q45: Who is responsible for patching the guest operating system for Amazon RDS?

a. - The AWS Product team b. - The customer Database Administrator c. - Managed partners d. - AWS Support

Q46: A company wants to use an AWS service to monitor the health of application endpoints, with the ability to route traffic to healthy regional endpoints to improve application availability.
Which service will support these requirements?

a. - Amazon Inspector b. - Amazon CloudWatch c. - AWS Global Accelerator d. - Amazon CloudFront

Q47: Which of the following is a component of the AWS Global Infrastructure?

a. - Amazon Alexa b. - AWS Regions c. - Amazon Lightsail d. - AWS Organizations

Q48: What is the benefit of elasticity in the AWS Cloud?

a. - Ensure web traffic is automatically spread across multiple AWS Regions. b. - Minimize storage costs by automatically archiving log data. c. - Enable AWS to automatically select the most cost-effective services. d. - Automatically adjust the required compute capacity to maintain consistent performance.

Q49: Which AWS services can be used to move data from on-premises data centers to AWS? (Choose two.)

a. - AWS Snowball b. - AWS Lambda c. - AWS ElastiCache d. - AWS Database Migration Service (AWS DMS)

Q50: Which tool is used to forecast AWS spending?

a. - AWS Trusted Advisor b. - AWS Organizations c. - Cost Explorer d. - Amazon Inspector