Scribd Logo
Upload

Welcome to Scribd!

  • AWS Ujian

    Uploaded by

    Mr. Joker
    23 views9 pages
    aws

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    aws

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    23 views9 pages

    AWS Ujian

    Uploaded by

    Mr. Joker
    aws

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 9

    Which of the following statements for VPC are true? D.

    You can create many subnets in a VPC,


    though fewer is recommended to limit complexity

    Where does AWS launch EC2 instances? B. Availability Zones.

    The IT security department has now mandated to periodically check vulnerability of EC2 instance.
    Which option would help fulfill this requirement? C. Amazon Inspector
    A company is running dynamic website that handle traffic spikes when launching its products. The
    website is interactive, offering personalized content to each visitor based on location, purchase
    history, and the current commercial airing. Which architecture will configure Auto Scaling to scale
    out to respond to spikes of demand, while minimizing costs during quiet periods? C. Use CloudFrond
    and Amazing S3 to store static content. Configure Auto Scaling to scale out as traffic increases.
    Configure the launch configuration to start new instances from a preconfigured AMI with metadata
    passed in at launch

    Which additional layer of security can you deploy at the subnet level? C. Network ACL

    Which of the following are the best practices when designing cloud based systems? D. Cost efficient
    but non-redundant component
    You created a VPC using the Classless Inter-Domain Routing (CIDR) block 10.0.0.0/24. You must
    connect to this VPC from your internal network, but the IP addresses in use on your internal network
    overlap with the CIDR. Which option addresses this problem? B. Change the VPC's CIDR.

    You have a Web application hosted in an EC2 Instance that needs to send notifications based on
    events. Which of the below services can assist in sending notifications? B. Amazon Simple
    Notification Service (SNS)

    If you wanted to take a backup of an EBS Volume, what would you do? C. Create an EBS snapshot.

    Which of the following options of Amazon RDS allows for AWS to failover to a secondary database in
    case the primary one fails? D. Multi-AZ Deployment
    Which of the following can be used to spin up EC2 instances on the AWS Cloud? C. Amazon Machine
    Image

    There is a requirement to host EC2 Instances in the AWS Cloud, wherein the utilization is for a
    duration of more than 3 years. Which of the following would you utilize to ensure costs are
    minimized? A. Reserved instances

    Your company handles a crucial ecommerce application. This applications needs to have an uptime
    of at least 99.5%. There is a decision to move the application to the AWS Cloud. Which of the
    following deployment strategies can help build a robust architecture for such an application? B.
    Deploying the application across multiple Regions

    Which of the following options is true regarding the vulnerability and security assessment on AWS
    resources? C. Vulnerability and security assessment can be conducted on specified AWS resources
    When designing a system, you use the principle of “design for failure and nothing will fail”. Which of
    the following services/features of AWS cannot assist in supporting this design principal? D. Reserved
    instances

    Which statement is accurate about AWS Budgets and Cost Explorer? A. AWS Budgets uses the cost
    visualizations provided by AWS Cost Explorer to show the status of preset budgets and to provide
    forecasts of estimated costs.

    Which of the following is a benefit of running an application across two Availability Zones? D. It
    increases the availability of an application compared to running in a single Availability Zone
    Your company has a set of Instances in a subnet in a VPC. These set of Instances host a web-based
    application. There are a number of similar types of requests coming from an IP address of
    52.67.89.10. Your IT Security department has requested that all subsequent traffic from this IP
    address is blocked. How can you achieve this? C. Create an Inbound Rule for the NACL which will
    deny traffic coming from 52.67.89.10/32

    A start-up organisation would like to instantaneously deploy a complex web and mobile application
    development environment, complete with the necessary resources and peripheral assets. How can
    this be achieved efficiently? C. Using AWS Quick Starts to identify and provision the appropriate AWS
    CloudFormation templates

    Which AWS service gives the user the ability to group AWS resources across different AWS Regions
    by application and then collectively view their operational data for monitoring purposes? A. Systems
    Manager? A. Systems Manager
    Can you use a username and password to authenticate in AWS CLI?

    Can IAM user view billing information in aws console? D. Create AWS Support ticket to enable the
    feature

    Can you delete S3 bucket when there are one or more object inside the bucket? A. Yes by default

    Can you restore deleted EBS volume without EBS snapshot? B. No


    A disaster recovery strategy on AWS should be based on launching infrastructure in a separate?
    B. Region

    As per the AWS Acceptable Use Policy, penetration testing of EC2 instances: C. Can be performed by
    the customer, provided they work with the list of services mentioned by AWS.

    The Trusted Advisor service provides insight regarding which five categories of an AWS account? C.
    Performance, cost optimization, security, fault tolerance, and service limits

    What instance type are designed to deliver fast performance for workloads that process large data
    sets in memory? C. Memory Optimized
    What instance type are designed to deliver fast performance for workloads that process large data
    sets in memory? C. Memory Optimized

    AWS Support which of the following methods to add security to identity and access Management
    (IAM) users? D. Using Multi-Factor Authentication (MFA) and enforcing password strength and
    expiration

    What best describes the "Principal of Least Privilege"? Choose the correct answer from the
    options given below? Users should be granted permission to access only resources they need to
    do their assigned job

    Which of the following is an accurate statement regarding AWS resource tags? B. Within resource
    tags, every defined key must have a value.

    Which AWS services can be used to store files? B. Amazon EC2 Instance Store

    A company is planning on transferring a large amount of data into S3. Since they want to start using
    the data storage on AWS, they are planning on transferring an initial amount of around 100 TB of
    data into S3. Which of the following would be the deal way to transfer this amount of data? A. Use
    AWS Snowball device.

    You might also like