AWS Certified Cloud Practitioner

73%

Question 161

Which AWS service or tool should a company use to centrally request and track service limit increases?
(Understanding of the core AWS services)

AWS Config

Service Quotas

AWS Service Catalog

AWS Budgets

Check the answer and show the description

Question 162

Which documentation does AWS Artifact provide?

(Understanding of the core AWS services)

Amazon EC2 terms and conditions

AWS ISO certifications

A history of a company's AWS spending

A list of previous-generation Amazon EC2 instance types

Check the answer and show the description

Answer is AWS ISO certifications

AWS Artifact is a web service that enables you to download AWS security and compliance documents such as ISO certifications
and SOC reports. User Guide. Describes key concepts of AWS Artifact and provides instructions for using the features of AWS
Artifact.

Reference:
https://docs.aws.amazon.com/artifact/latest/ug/what-is-aws-artifact.html

Question 163

A company needs to simultaneously process hundreds of requests from different users.

Which combination of AWS services should the company use to build an operationally efficient solution?
(Understanding of the core AWS services)

Amazon Simple Queue Service (Amazon SQS) and AWS Lambda

 AWS Data Pipeline and Amazon EC2

Amazon Kinesis and Amazon Athena

AWS Amplify and AWS AppSync

Check the answer and show the description

Answer is Amazon Simple Queue Service (Amazon SQS) and AWS Lambda

Amazon SQS – Standard Queue

• Scales from 1 message per second to 10,000s per second
• No limit to how many messages can be in the queue

Question 164

A company needs to establish a connection between two VPCs. The VPCs are located in two different AWS Regions. The company wants
to use the existing infrastructure of the VPCs for this connection.

Which AWS service or feature can be used to establish this connection?

(Understanding of the core AWS services)

AWS Client VPN

VPC peering

AWS Direct Connect

VPC endpoints

Check the answer and show the description

Answer is VPC peering

A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them using
private IPv4 addresses or IPv6 addresses.

Reference:
https://docs.aws.amazon.com/vpc/latest/peering/what-is-vpc-peering.html

Question 165

What are some advantages of using Amazon EC2 instances to host applications in the AWS Cloud instead of on premises? (Choose two.)
(Understanding of the core AWS services)

EC2 includes operating system patch management.

EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM).

EC2 has a 100% service level agreement (SLA).

 EC2 has a flexible, pay-as-you-go pricing model.

EC2 has automatic storage cost optimization.

Check the answer and show the description

Answers are;
B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM).
D. EC2 has a flexible, pay-as-you-go pricing model. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity
and Access Management (IAM).

EC2 doesn't have any storage cost optimization options, only S3 has.

Reference:
https://aws.amazon.com/s3/cost-optimization/

Question 166

Which AWS service will help protect applications running on AWS from DDoS attacks?
(Understanding of the core AWS services)

Amazon GuardDuty

AWS WAF

AWS Shield

Amazon Inspector

Check the answer and show the description

Answer is AWS Shield

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.

Reference:
https://aws.amazon.com/shield/?nc1=h_ls&whats-new-cards.sort-by=item.additionalFields.postDateTime&whats-new-cards.sort-
order=desc

Question 167

Which AWS service or feature acts as a firewall for Amazon EC2 instances?
(Understanding of the core AWS services)

Network ACL

Elastic network interface

Amazon VPC
 Security group

Check the answer and show the description

Answer is Security group

A security group is a virtual firewall that controls inbound and outbound traffic for an Amazon EC2 instance.

Reference:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-security-groups.html

Question 168

A company that has multiple business units wants to centrally manage and govern its AWS Cloud environments. The company wants to
automate the creation of AWS accounts, apply service control policies (SCPs), and simplify billing processes.

Which AWS service or tool should the company use to meet these requirements?
(Understanding of the core AWS services)

AWS Organizations

Cost Explorer

AWS Budgets

AWS Trusted Advisor

Check the answer and show the description

Answer is AWS Organizations

1. centrally manage and govern its AWS Cloud environment

2 . automate the creation of AWS accounts
3. apply service control policies (SCPs)
4. simplify billing processes.

Question 169

A company is launching an application in the AWS Cloud. The application will use Amazon S3 storage. A large team of researchers will
have shared access to the data. The company must be able to recover data that is accidentally overwritten or deleted.

Which S3 feature should the company turn on to meet this requirement?

(Understanding of the core AWS services)

Server access logging

S3 Versioning

S3 Lifecycle rules

Encryption in transit and at rest

 Check the answer and show the description

Answer is S3 Versioning

Reference:
https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html

Question 170

A manufacturing company has a critical application that runs at a remote site that has a slow internet connection. The company wants to
migrate the workload to AWS. The application is sensitive to latency and interruptions in connectivity. The company wants a solution
that can host this application with minimum latency.

Which AWS service or feature should the company use to meet these requirements?

(Understanding of the core AWS services)

Use AWS Service Catalog to identify a list of on-premises resources that can be migrated.

Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.

Use an Amazon CloudFront distribution and configure it to accelerate content delivery close to the on-premises resources.

Set up an AWS Direct Connect connection between the on-premises data center and AWS.

Use Amazon CloudFront to restrict access to static web content provided through the on-premises web servers.

Check the answer and show the description

Answer is Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.

AWS outposts is for on-premises. Local zones is for reducing latency near the customer site.

Outpost for hybrid environment ,AWS Outposts is a family of fully managed solutions delivering AWS infrastructure and services to
virtually any on-premises or edge location for a truly consistent hybrid experience. Outposts solutions allow you to extend and run
native AWS services on premises, and is available in a variety of form factors, from 1U and 2U Outposts servers to 42U Outposts
racks, and multiple rack deployments.,also not part of study guide.

Reference:
https://aws.amazon.com/pt/about-aws/global-infrastructure/localzones/

Previous Question Next Question

Quick access to all questions in this exam

1-10 11-20 21-30 31-40 41-50 51-60 61-70 71-80 81-90 91-100 101-110 111-120 121-130 131-140 141-150 151-160

161-170 171-180 181-190 191-200 201-210 211-220 221-230 231-240

© 2017-2022 Pass n Exam, Inc. · Privacy · Terms Back to top