Which of the following are Support Levels offered by AWS?

The AWS Support levels are Basic, Developer, Business, and Enterprise.

By default, what is the maximum number of Linked Accounts per Paying Account under
Consolidated Billing?
The default maximum is 20 linked accounts. This soft limit can be increased by contacting AWS.

Which of the following EC2 instance types will realize a savings over time in exchange for a
contracted term-of-service?
EC2 Reserved Instances offer significant discounts for a contracted term-of-service.
Support plan features < 4 hour response time in the event of an impaired productions system
Business

For a fixed monthly rate, you can choose detailed, once-a-minute monitoring of your EC2
instances.
True

Which support level offers a Technical Account Manager (TAM)

Only Enterprise support offers the services of a Technical Account Manage
Only $1/month

Which of the following are payment options for Reserved Instances?

Reserves instances are available with all upfront, partial upfront, or no upfront (AURI, PURI,
and NURI) pricing.
Not an AWS charge
In AWS, data-in is always free-of-charge.
Criteria that affects billing
Clock hours of server time, additional storage, and number of requests are among the criteria
defining charges for RDS.

True or False: Users are responsible for the security of everything above the hypervisor layer.
True
Users are responsible for security in the cloud.

Components of the Security Pillar of the AWS Well-Architected Framework?

IAM, Detective Controls, and Infrastructure protection are components of the Security pillar.

Principles of sound design when it comes to security?

Implement the Principle of Least Privilege
Enable traceability
Apply security at all levels
AWS service can help you assess the fault-tolerance of your AWS environment
AWS Trusted Advisor

True or False: It's safer to use Access Keys than it is to use IAM roles.
False
It's saver to use IAM roles than it is to use Access Keys.

True or False: AWS is responsible for the security of managed Foundation Services, such as
Amazon RDS.
True
AWS is responsible for the security of their Managed Services.

True or False: AWS is responsible for security in the cloud.

False
AWS is responsible for security of the cloud.

True or False: Using IAM Groups is the recommended way to manage IAM users' permissions
by job function.
True
Using IAM Groups is the recommended way to manage IAM users permissions by job function

True or False: It's best practice not to use IAM Roles for applications that run on EC2 instances.
False
Roles should always be used.

True or False: AWS is responsible for security of the cloud.

True
AWS is responsible for security of the cloud.

Which of the following AWS services controls Authentication and Authorization within an AWS
account?
IAM controls Authentication and Authorization within an AWS account.

IAM Policy documents are written in which of the following formats?

IAM Policy documents are JSON documents.

Which of the following services will help you optimize your entire AWS environment in real
time following AWS best practices?
Trusted Advisor helps you optimize your entire AWS environment in real time following AWS
best practices. It helps you optimize cost, fault-tolerance, and more.

Which of the following are components of IAM?

Users, Groups, Roles, and Permissions are integral to IAM.

True or False: You use your Access Key and Secret Access Key to log into the AWS
Management Console.
False
You use a username and password to log into the AWS console.
Which of the following best describes the ability to scale computing resources up or down easily,
while only paying for the resources used?
Elasticity describes the ability to scale computing resources up or down easily, while only paying
for the resources used.

Which of the following are principles of sound design when it comes to performance efficiency?
Of these choices, you should democratize advanced technologies, deploy into multiple Regions,
and use Serverless technologies.

Which of the following are principles of sound cloud design?

Build your systems to be scalable, use disposable resources, reduce infrastructure to code, and,
please, assume EVERYTHING will fail sooner or later.

Which of the following best describes a system that is always available — without the need for
human intervention?
A highly available system is one that is always available — without the need for human
intervention

Which of the following are advantages of cloud computing?

Since you only pay for what you use, and can you pay nothing up-front, cloud computing does
NOT require vast amounts of capital.
Variable Expense
Elasticity
Go global in minutes
Increased speed and agility

Which of the following are geographic areas that host two or more Availability Zones?
A Region is a geographic area that hosts two or more Availability Zones.
Which of the following are characteristics of cloud computing?
Services delivered via internet
Pay-as-you-go pricing
On-demand delivery

Cloud computing is an operating expense, not a capital expenditure. The others characterize
cloud computing.

Which of the following is not part of the AWS Global infrastructure?

Regions, AZs, and Edge Locations are part of the AWS Global Infrastructure.

Under the Shared Responsibility model, for which of the following does AWS not assume
responsibility?
The customer is responsible for her own customer data.

Availability Zones
Availability Zones are distinct locations from within an AWS region that are engineered to be
isolated from failures.
cloud computing deployments
The three types of cloud deployments are Public, Hybrid, and Private (also called 'on-prem').
principles of sound design when it comes to reliability?
he elasticity of cloud computing means that you need never over-provision or manage change at
the resource level.
- Stop guessing about your capacity requirements.
- Scale horizontally

True or False: With AWS Organizations, you can use either just the Consolidated Billing feature,
or all the offered features.
With AWS Organizations, you can use either just the Consolidated Billing feature, or all the
offered features.

You have a mission-critical application which must be globally available at all times. Which
deployment strategy should you follow?
A Multi-Region deployment will best ensure global availability.

Which of the following is correct?

# of Edge Locations > # of Availability Zones > # of Regions

What do Edge Locations do?

Edge Locations host a Content Delivery Network called CloudFront.

Which of the following are characteristics of cloud computing_?

The on-demand delivery via the internet of services with pay-as-you-go pricing characterizes
cloud computing. Services incurred from a cloud services provider are operating expenses, not
capital expenses.

There are at least _______ Availability Zones per AWS Region.

There are at least 2 Availability Zones per AWS Region.

Which of the following is not database service?

Amazon EBS is a storage service.

You need to re-create an EBS volume that you have used previously. How might you go about
doing that?
you should re-create the volume from a snapshot.

For a subnet to be public and send non-local traffic to the Internet Gateway, we must update the
Route Table of the public subnet and attach which of the following to the VPC that contains the
subnet?
an Internet Gateway must be attached to the VPC.

AWS VPC is a component of which of the following overall services categories?

In the AWS Console, VPC is found under both the Networking and Content Delivery services,
and the Compute services categories.
compute services is ideal if you need to run a simple website or a simple e-commerce
application?
Lightsail is ideal for simple websites or a simple e-commerce applications.

True or False: Access Control Lists are used to make entire buckets (like one hosting an S3
website) public.
False
Bucket Policies are used to make entire buckets (like one hosting an S3 website) public.

What happens when an RDS Master database in a Multi-AZ deployment goes down?
RDS automatically fails over to the standby, which is promoted to Master.

True or False: A Distribution is what we call a series of Edge Locations that make up CDN
The collection of a CDN's Edge Locations is called a Distribution.

Amazon Lightsail is an example of which of the following?

Lightsail is AWS' Platform-as-a-Service offering.

You need to store a collection of objects that can also be accessed from a different AWS Region.
Which service should you use to do this?
S3 allows you to access objects from anywhere in the world.

True or False: Auto Scaling allows you to add or remove EC2 instances from your EC2 fleet
based on conditions you specify.
True
Auto Scaling allows you to add or remove EC2 instances based on conditions you specify.

In order to comply with regulatory mandates, some of your data needs to be retained in
perpetuity. Which of the following AWS storage services offers low-cost, long-term data
archival?
Glacier is your best choice for deeply-discounted, long-term object archival.

AWS services is a fast, fully managed data warehouse that makes it simple and cost-effective to
analyze all your data using standard SQL and your existing Business Intelligence tools.
Redshift is AWS' fully-managed data warehouse solution.

True or False: S3 Transfer Acceleration uses AWS' network of Availability Zones to more
quickly get your data into AWS.
False
S3 Transfer Acceleration uses AWS' network of Edge Locations to more quickly get your data
into AWS.
EBS
An EBS volume is best described as a virtual hard-disk in the cloud.

True or False: A CloudFront Origin can be an S3 bucket, an EC2 instance, an Elastic Load
Balancer, or Route 53.
True
A CloudFront Origin can be an S3 bucket, an EC2 instance, an Elastic Load Balancer, or Route
53.

Which of the following are steps you should take in securing your Root AWS account?
The Root account should have MFA enabled; you should always create individual users (the
Root account should never be used for actual work); and roles should be used to grant
permissions to the users you create.

faster delivery of your content to your customers?

Amazon CloudFront is a content delivery network that speeds the delivery of content to your
users.

Regarding Amazon Glacier, what is a Vault?

A Vault is a container for storing Archives.

True or False: If you create a Classic Load Balancer via the AWS Management Console, cross-
Availability Zone load balancing is enabled by default.
Cross-Availability Zone load balancing is enabled by default.

You need to run your code, but you don't want to worry about provisioning or managing servers.
Which of the following AWS services would you choose?
Lambda is a Serverless technology that allows you to run your code without provisioning a
computing infrastructure.

AWS service is specifically designed to assist you in processing large data sets?
Amazon EMR is a web service that makes it easy to process large amounts of data efficiently.

True or False: By default, all data stored in S3 is viewable by the public.

False
By default, all data stored in S3 is NOT viewable by the public. If you want a bucket or object to
be accessible by the public, you must explicitly make it so.

True or False: Private subnets have direct, private access to the Internet FALSE

True or False: You use your Access Key and Secret Access Key to log into the AWS Management Console
FALSE

True or False: There are more Regions than there are Availability Zones TRUE

True or False: Users are responsible for the security of the cloud TRUE

True or False: Access Control Lists are used to make entire buckets (like one hosting an S3 website)
public TRUE
True or False: For IaaS resources, AWS is responsible for the security of everything above the hypervisor
layer TRUE