Which of the following would help the customer to delve deeply into the

Amazon EC2 billing activity for the last month?

A. Amazon EC2 dashboard
B. AWS Cost and Usage reports check_circle
C. AWS Trusted Advisor dashboard
D. AWS Cloud Trail logs stored in Amazon Simple Storage Service (Amazon S3)

Answer Description
Explanation

The AWS Cost & Usage Report gives you the ability to delve deeply into your AWS
cost and usage data, understand how you are using your AWS implementation, and
identify opportunities for optimization. https://aws.amazon.com/aws-cost-
management/aws-cost-and-usage-reporting/
A user is trying to save some cost on the AWS services. Which of the below
mentioned options will not help him save cost?
A. Delete the unutilized EBS volumes once the instance is terminated
B. Delete the AutoScaling launch configuration after the instances are
terminated check_circle
C. Release the elastic IP if not required once the instance is terminated
D. Delete the AWS ELB after the instances are terminated

Answer Description
Explanation

AWS bills the user on a as pay as you go model. AWS will charge the user once the
AWS resource is allocated. Even though the user is not using the resource, AWS will
charge if it is in service or allocated. Thus, it is advised that once the user's work is
completed he should: Terminate the EC2 instance Delete the EBS volumes Release
the unutilized Elastic IPs Delete ELB The AutoScaling launch configuration does not
cost the user. Thus, it will not make any difference to the cost whether it is deleted or
not.
What would we get from having AWS Cloud services accessible through an API?
A. Cloud resources can be managed programmatically check_circle
B. AWS infrastructure use will always be cost-optimized
C. All application testing is managed by AWS.
D. Customer –owned, on –premises infrastructure becomes programmable.

Answer Description
Explanation
The Application Programming Interface allows developers to easily work with the
various AWS resources programmatically.
You want to use MySQL compatible relational database that can provide the
highest performance. Which AWS service should you use?
A. AWS DynamoDB
B. AWS RDS
C. AWS Aurora check_circle
D. AWS SimpleDB

Answer Description
Explanation

Amazon Aurora is a MySQL and PostgreSQL compatible relational database engine

that combines the speed and availability of high-end commercial databases with the
simplicity and cost-effectiveness of open source databases. Amazon Aurora provides
up to five times better performance than MySQL with the security, availability, and
reliability of a commercial database at one tenth the cost. Reference:
https://d1.awsstatic.com/whitepapers/aws-overview.pdf
If you have data that is not frequently accessed. which of the following would
be the most efficient way to store them in AWS?
A. Use Amazon Storage Gateway
B. Use Amazon Glacier check_circle
C. Use Amazon EBS
D. Use Amazon S3

Answer Description
Explanation

Amazon Glacier is a secure, durable, and extremely low-cost cloud storage service for
data archiving and long-term backup. It is designed to deliver 99.999999999%
durability, and provides comprehensive security and compliance capabilities that can
help meet even the most stringent regulatory requirements.
https://aws.amazon.com/glacier/
Once again your customers are concerned about the security of their sensitive
data and with their latest enquiry ask about what happens to old storage
devices on AWS. What would be the best answer to this question?
A. AWS reformats the disks and uses them again.
B. AWS uses the techniques detailed in DoD 5220.22-M to destroy data as part of
the decommissioning process. check_circle
C. AWS uses their own proprietary software to destroy data as part of the
decommissioning process.
 D. AWS uses a 3rd party security organization to destroy data as part of the
decommissioning process.

Answer Description
Explanation

When a storage device has reached the end of its useful life, AWS procedures include
a decommissioning process that is designed to prevent customer data from being
exposed to unauthorized indMduals. AWS uses the techniques detailed in DoD
5220.22-M ("National| Industrial Security Program Operating ManuaI ") or NIST 800-
88 ("GuideIines for Media Sanitization") to destroy data as part of the
decommissioning process. All decommissioned magnetic storage devices are
degaussed and physically destroyed in accordance with industry-standard practices.
Reference: http://d0.awsstatic.com/whitepapers/Security/AWS%20Security
%20Whitepaper.pdf

Which of the following services would help reducing the complexity and time in
planning your application migration to the AWS cloud?

A. AWS Migration Planner Service

B. AWS Application Discovery Service

check_circle

C. AWS Snowball Migration Service

D. None of the above

Answer Description
Explanation

AWS Application Discovery Service helps systems integrators quickly and reliably
plan application migration projects by automatically identifying applications running
in on-premises data centers, their associated dependencies, and their performance
profiles. Planning data center migrations can involve thousands of workloads that are
often deeply interdependent. Application discovery and dependency mapping are
important early first steps in the migration process, but these tasks are difficult to
perform at scale due to the lack of automated tools.AWS Application Discovery
Service automatically collects configuration and usage data from servers, storage,
and networking equipment to develop a list of applications, how they perform, and
how they are interdependent. This information is retained in encrypted format in an
AWS Application Discovery Service database, which you can export as a CSV or XML
file into your preferred visualization tool or cloud migration solution to help reduce
the complexity and time in planning your cloud migration.
https://d0.awsstatic.com/whitepapers/aws-overview.pdf
Why would a company decide to use AWS over an on-premises data center?
(Select all that apply)
A. Highly available infrastructure check_circle
B. Elastic resources based on demand check_circle
C. No upfront cost check_circle
D. Cost-effective check_circle

Answer Description
Explanation

All four answers listed are reasons why a company may decide to use AWS over an
on-premises data center.
A company wants to add an extra layer of protection to the current
authentication mechanism of user names and passwords. Which of the
following can be used?
A. Using Password Policies
B. Using a mix of user names
C. Using AWS WAF
D. Using MFA check_circle

Answer Description
Explanation

AWS Multi-Factor Authentication (MFA) is a simple best practice that adds an extra
layer of protection on top of your user name and password. With MFA enabled, when
a user signs in to an AWS website, they will be prompted for their user name and
password (the first factor—what they know), as well as for an authentication code
from their AWS MFA device (the second factor—what they have). Taken together,
these multiple factors provide increased security for your AWS account settings and
resources. https://aws.amazon.com/iam/details/mfa/
What are the benefits of DynamoDB? (Select all that apply)
 A. Supports multiple known NoSQL database engines like MariaDB and Oracle
NoSQL.
B. Automatic scaling of throughput capacity. check_circle
C. Single-digit millisecond latency. check_circle
D. Supports both document and key-value store data models. check_circle

Answer Description
Explanation

DynamoDB does not use/support other NoSQL database engines. You only have
access to use DynamoDB's built-in engine.
A company needs to implement “resource change tracking” using the
API call history. Which AWS service would help the company to achieve this
goal?
A. AWS Config
B. AWS CloudFormation
C. AWS CloudTrail check_circle
D. AWS CloudWatch

Answer Description
Explanation

AWS CloudTrail is a web service that records AWS API calls for your account and
delivers log files to you. The recorded information includes the identity of the API
caller, the time of the API call, the source IP address of the API caller, the request
parameters, and the response elements returned by the AWS service. With
CloudTrail, you can get a history of AWS API calls for your account, including API
calls made using the AWS Management Console, AWS SDKs, command line tools,
and higher-level AWS services (such as AWS CloudFormation). The AWS API call
history produced by CloudTrail enables security analysis, resource change tracking,
and compliance auditing. Reference: https://d1.awsstatic.com/whitepapers/aws-
overview.pdf
Which of the following is a factor in determining the right database technology
for each workload?
A. The number of reads and writes per second. check_circle
B. Latency requirements. check_circle
C. Software bugs.
D. The nature of your queries. check_circle
E. Your team experience. check_circle

Answer Description
Explanation

The following questions can help you take decisions on which solutions to include in
your architecture: ** Is this a read-heavy, write-heavy, or balanced workload? How
many reads and writes per second are you going to need? How will those values
change if the number of users increases? ** How much data will you need to store
and for how long? How quickly do you foresee thiswill grow? Is there an upper limit
in the foreseeablefuture? What is the size of each object (average, min, max)? How
are these objects going to be accessed? ** What are the requirements in terms of
durability of data? Is this data store going to be your “source of truth”? **
What are your latency requirements? How many concurrent users do you need to
support? ** What is your data model and how are you going to query the data? Are
your queries relational in nature (e.g.,JOINs between multiple tables)? Could you
denormalize your schema to create flatter data structures that are easier to scale? **
What kind of functionality do you require? Do you need strong integrity controls or
are you looking for more flexibility (e.g.,schema-less data stores)? Do you require
sophisticated reporting or search capabilities? Are your developers more familiar with
relational databases than NoSQL?
https://d0.awsstatic.com/whitepapers/AWS_Cloud_Best_Practices.pdf
Which of the following should you consider when creating a tagging strategy
for your AWS resources? (Select all that apply)
A. Implementing automated tools to help manage resource tags. check_circle
B. Using as much tags as you can to help filter your resources easily.
C. Ramifications of future changes in business requirements. check_circle
D. Using a standardized, case-sensitive format for tags. check_circle

Answer Description
Explanation

The correct answers are ACD as they were mentioned as a best practices for When
creating a tagging strategy for your AWS resources. however Option B is not correct
as you must reduce the number of tags whenever possible.
https://aws.amazon.com/answers/account-management/aws-tagging-strategies
Which of the below mentioned services is equivalent to hosting virtual servers
on an on-premise location?
A. AWS IAM
B. AWS Server
C. AWS Regions
D. AWS EC2 check_circle

Answer Description
Explanation

Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure,
resizable compute capacity in the cloud. It is designed to make web-scale cloud
computing easier for developers. https://aws.amazon.com/ec2/
Which of the following allows you to have a self-managed database in AWS?
A. Amazon EC2 check_circle
B. AWS DynamoDB
C. Amazon Aurora
D. AWS RDS

Answer Description
Explanation

Self-managed database means you want complete control over the database engine
and the underlying infrastructure. In such a case you need to host the database on
an EC2 Instance. with Amazon Ec2 you have complete control of your instances
including root access and the ability to interact with them as you would any machine.
You can stop any instance while retaining the data on the boot partition, and then
subsequently restart the same instance using web service APIs. Instances can be
rebooted remotely using web service APIs, and you also have access to their console
output. https://aws.amazon.com/ec2/
Amazon SWF is designed to help users___________.
A. Design graphical user interface interactions.
B. Manage user identification and authorization.
C. Store Web content.
D.Coordinate synchronous and asynchronous tasks which are distributed and fault
tolerant. check_circle

Answer Description
Explanation

https://aws.amazon.com/swf/faqs/
Which of the following is a benefit of running an application across two
Availability Zones?
A. Performance is improved over running in a single Availability Zone.
B. It is more secure than running in a single Availability Zone.
C. It increases the availability of an application compared to running in a single
Availability Zone. check_circle
D. It significantly reduces the total cost of ownership versus running in a single
Availability Zone.
Answer Description
Explanation

By deploying your AWS resources to multiple Availability zones , you will avoid
failure . So if one AZ were to go down , the other AZ’s would still be up and
running and hence your application would be more available.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-regions-availability-
zones.html#concepts-regions-availability-zones
Which of the following support plans includes the AWS Support Concierge
Service?
A. Basic
B. Developer
C. Business
D. Enterprise check_circle

Answer Description
Explanation

Only the Enterprise includes the AWS Support Concierge Service.

https://aws.amazon.com/premiumsupport/features/
You want to take a snapshot of an EC2 Instance and create a new instance out
of it. In AWS what is this snapshot equivalent to?
A. ELP Volume
B. EC2 Snapshot
C. AMI check_circle
D. EBS Snapshot

Answer Description
Explanation

An Amazon Machine Image (AMI) provides the information required to launch an

instance, which is a virtual server in the cloud. You specify an AMI when you launch
an instance, and you can launch as many instances from the AMI as you need. You
can also launch instances from as many different AMIs as you need.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AMIs.html
Which of the following AWS services can assist you with cost optimization?
A. AWS Shield
B. AWS Inspector
C. AWS WAF
D. AWS Trusted Advisor check_circle
Answer Description
Explanation

An online resource to help you reduce cost, increase performance, and improve
security by optimizing your AWS environment, Trusted Advisor provides real time
guidance to help you provision your resources following AWS best practices.
https://aws.amazon.com/premiumsupport/trustedadvisor/
You want to migrate your web application to AWS. The data is structured in the
form of “key-value” Which of the following is best suitable to do this
job?
A. Amazon Redshift
B. AWS DynamoDB check_circle
C. AWS RDS
D. AWS Aurora
E. Amazon ElastiCache

Answer Description
Explanation

Amazon DynamoDB is a fast and flexible NoSQL database service for all applications
that need consistent, single-digit millisecond latency at any scale. It is a fully
managed database and supports both document and key-value data models. Its
flexible data model and reliable performance make it a great fit for mobile, web,
gaming, ad-tech, Internet of Things(IoT), and many other applications. Reference:
https://d1.awsstatic.com/whitepapers/aws-overview.pdf
You have been asked to set up a database in AWS that will require frequent and
granular updates. You know that you will require a reasonable amount of
storage space but are not sure of the best option. What is the recommended
storage option when you run a database on an instance with the above criteria?
A. Amazon S3
B. Amazon EBS check_circle
C. AWS Storage Gateway
D. Amazon Glacier

Answer Description
Explanation

Amazon EBS provides durable, block-level storage volumes that you can attach to a
running Amazon EC2 instance. You can use Amazon EBS as a primary storage device
for data that requires frequent and granular updates. For example, Amazon EBS is the
recommended storage option when you run a database on an instance.
An organization is using AWS since a few months. The finance team wants to
visualize the pattern of AWS spending. Which of the below AWS tool will help
for this requirement?
A. AWS Cost Manager
B. AWS Cost Explorer check_circle
C. AWS CloudWatch
D. AWS Consolidated Billing

Answer Description
Explanation

The AWS Billing and Cost Management console includes the Cost Explorer tool for
viewing AWS cost data as a graph. It does not charge extra to user for this service.
With Cost Explorer the user can filter graphs using resource tags or with services in
AWS. If the organization is using Consolidated Billing it helps generate report based
on linked accounts. This will help organization to identify areas that require further
inquiry. The organization can view trends and use that to understand spend and to
predict future costs.
which aws support plan would help provide general guidance when you request
an Architecture Support ?
A. Basic
B. Developer check_circle
C. Business
D. Enterprise

Answer Description
Explanation

https://aws.amazon.com/premiumsupport/compare-plans/
Does AWS CloudFormation support Amazon EC2 tagging?
A. Yes, AWS CloudFormation supports Amazon EC2 tagging check_circle
B. No, CloudFormation doesn't support any tagging
C. No, it doesn't support Amazon EC2 tagging.
D. It depends if the Amazon EC2 tagging has been defined in the template.

Answer Description
Explanation
In AWS CloudFormation, Amazon EC2 resources that support the tagging feature can
also be tagged in an AWS template. The tag values can refer to template parameters,
other resource names, resource attribute values (e.g. addresses), or values computed
by simple functions (e.g., a concatenated list of strings). Reference:
http://aws.amazon.com/cloudformation/faqs/
Which of the following AWS services can help you in quick deployment of web
applications developed with different programming languages such as .Net and
Java?
A. AWS Elastic Beanstalk check_circle
B. AWS Elastic Compute Cloud (Amazon EC2)
C. AWS VPC
D. AWS SQS

Answer Description
Explanation

AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web
applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go,
and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS.
https://aws.amazon.com/elasticbeanstalk/
Penetration testing of EC2 instances:
A. Automatically performed by AWS.
B. Periodically performed by AWS.
C. Is prohibited under all circumstances.
D. May be performed by the customer on their own instances with prior authorization
from AWS. check_circle

Answer Description
Explanation

You need to take prior authorization from AWS before doing a penetration test on EC2
Instances. Please refer to the below URL: for more details.
https://aws.amazon.com/security/penetration-testing/
Which of the following is AWS managed database service provides processing
power that is up to 5X faster than a traditional MySQL database?
A. MariaDB
B. PostgreSQL
C. Aurora check_circle
D. DynamoDB

Answer Description
Explanation

Amazon Aurora (Aurora) is a fully managed, MySQL- and PostgreSQL-compatible,

relational database engine. It combines the speed and reliability of high-end
commercial databases with the simplicity and cost-effectiveness of open-source
databases. It delivers up to five times the throughput of MySQL and up to three
times the throughput of PostgreSQL without requiring changes to most of your
existing applications. https://aws.amazon.com/rds/aurora/
Which of the following is AWS's responsibility under the AWS shared responsibility
model?
A. Configuring third-party applications
B. Maintaining physical hardware check_circle
C. Securing application access and data
D. Managing custom Amazon Machine Images (AMIs)

Answer Description
Explanation

https://aws.amazon.com/compliance/shared-responsibility-model/
What is the service provided by AWS that allows developers to easily deploy
and manage applications on the cloud?
A. CloudFormation
B. Elastic Beanstalk check_circle
C. Opswork
D. Container service

Answer Description
Explanation

AWS Elastic Beanstalk makes it even easier for developers to quickly deploy and
manage applications in the AWS Cloud. Developers simply upload their application,
and Elastic Beanstalk automatically handles the deployment details of capacity
provisioning, load balancing, auto-scaling, and application health monitoring.
https://aws.amazon.com/elasticbeanstalk/
A user is planning to create a structured database in the cloud. Which of the
below mentioned AWS offerings help the user achieve the goal?
A. AWS DynamoDB
B. AWS RDS check_circle
C. AWS SimpleDB
D. AWS RSD
Answer Description
Explanation

AWS RDS is a managed database server offered by AWS, which makes it easy to set
up, operate, and scale a relational database or structured data in cloud.
While working with Amazon S3 you found that six of your S3 buckets are
deleted and no one is taking responsibility. You decided to open an
investigation in order to find out who deleted the S3 buckets. Which of the
following may help you in your investigation?
A. Look at the SNS logs.
B. Look at the CloudWatch Logs.
C. Look at the CloudTrail logs. check_circle
D. Look at the S3 logs.

Answer Description
Explanation

AWS CloudTrail can help you track AWS API calls made to S3 and identify who
deleted the S3 buckets. AWS CloudTrail is a web service that records AWS API calls
for your account and delivers log files to you. The recorded information includes the
identity of the API caller, the time of the API call, the source IP address of the API
caller, the request parameters, and the response elements returned by the AWS
service. With CloudTrail, you can get a history of AWS API calls for your account,
including API calls made using the AWS Management Console, AWS SDKs, command
line tools, and higher-level AWS services (such as AWS CloudFormation). The AWS
API call history produced by CloudTrail enables security analysis, resource change
tracking, and compliance auditing. Reference:
https://d1.awsstatic.com/whitepapers/aws-overview.pdf
There are substantial differences between AWS Marketplace and Amazon
DevPay. One of these differences is ………………….
A. When you buy from AWS DevPay directly you will get great offers based on
your usage.
B. Buying from the AWS DevPay is better than the AWS Marketplace especially
when working with Amazon VPC.
C. AWS Marketplace supports EBS-backed software, while DevPay does
not. check_circle
D. AWS Marketplace does not support Reserved and Spot instances while DevPay
does.

Answer Description
Explanation

There are substantial differences between AWS Marketplace and Amazon DevPay.
Both help customers buy software that runs on AWS, but AWS Marketplace offers a
more comprehensive experience. For software buyers the key differences are: **AWS
Marketplace offers a more Amazon.com-like shopping experience, simplifying
discovery of available software. **AWS Marketplace products work with other AWS
features such as VPC and can be run on Reserved and Spot instances, in addition to
normal On Demand Instances. **AWS Marketplace supports EBS-backed software,
where DevPay does not Additionally, software providers benefit from AWS
Marketplace’s marketing outreach and ease of discovery.
https://aws.amazon.com/marketplace/help/
Which of the following are two options to pay for the AWS Developer Support
Plan?
A. 4% of monthly AWS usage
B. Greater of $29 check_circle
C. Greater of $39
D. 3% of monthly AWS usage check_circle

Answer Description
Explanation

https://aws.amazon.com/premiumsupport/pricing/
An edge location refers to which Amazon Web Service?
A. An edge location is refered to the network configured within a Zone or Region
B. An edge location is an AWS Region
C. An edge location is the location of the data center used for Amazon
CloudFront. check_circle
D. An edge location is a Zone within an AWS Region

Answer Description
Explanation

Amazon CloudFront is a content distribution network. A content delivery network or

content distribution network (CDN) is a large distributed system of sewers deployed
in multiple data centers across the world. The location of the data center used for
CDN is called edge location. Amazon CloudFront can cache static content at each
edge location. This means that your popular static content (e.g., your site's logo,
navigational images, cascading style sheets, JavaScript code, etc.) will be available at
a nearby edge location for the browsers to download with low latency and improved
performance for viewers. Caching popular static content with Amazon CloudFront
also helps you offload requests for such files from your origin sever -- CloudFront
serves the cached copy when available and only makes a request to your origin
server if the browser's request does not have a copy of the file.
What is a placement group in Amazon EC2?
A. It is a group of EC2 instances within a single Availability Zone. check_circle
B. It the edge location of your web content.
C. It is the AWS region where you run the EC2 instance of your web content.
D. It is a group used to span multiple Availability Zones.

Answer Description
Explanation

A placement group is a logical grouping of instances within a single Availability Zone.

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/placement-
groups.html
You need to set up a security certificate for a client's e-commerce website as it
will use the HTTPS protocol. Which of the below AWS services do you need to
access to manage your SSL server certificate?
A. AWS Directory Service
B. AWS Identity & Access Management check_circle
C. AWS CloudFormation
D. Amazon Route 53

Answer Description
Explanation

AWS Identity and Access Management (IAM) is a web service that enables Amazon
Web Services (AWS) customers to manage users and user permissions in AWS. All
your SSL server certificates are managed by AWS Identity and Access management
(IAM). Reference:
http://docs.aws.amazon.com/IAM/latest/UserGuide/ManagingServerCerts.htm|
What does Amazon Elastic Beanstalk provide?
A. A scalable storage appliance on top of Amazon Web Services.
B. An application container on top of Amazon Web Services. check_circle
C. A service by this name doesn't exist.
D. A scalable cluster of EC2 instances.

Answer Description
Explanation
AWS Elastic Beanstalk makes it even easier for developers to quickly deploy and
manage applications in the AWS Cloud. Developers simply upload their application,
and Elastic Beanstalk automatically handles the deployment details of capacity
provisioning, load balancing, auto-scaling, and application health monitoring.
https://aws.amazon.com/elasticbeanstalk/faqs/
Which of the following AWS services would you use to register a new domain
name in the AWS Platform?
A. Amazon Route 53 check_circle
B. Amazon Cloud Front
C. Elastic Load Balancing
D. Amazon Virtual Private Cloud (Amazon VPC)

Answer Description
Explanation

Route53 allows for registration of new domain names in AWS. Amazon Route 53 is a
highly available and scalable cloud Domain Name System (DNS) web service. It is
designed to give developers and businesses an extremely reliable and cost effective
way to route end users to Internet applications by translating names like
www.example.com into the numeric IP addresses like 192.0.2.1 that computers use to
connect to each other. Amazon Route 53 is fully compliant with IPv6 as well.
https://aws.amazon.com/route53/
Which of the following is NOT a characteristic of Amazon Elastic Compute
Cloud (Amazon EC2)?
A. It can be used to launch as many or as few virtual servers as you need.
B. It increases the need to forecast traffic by providing dynamic IP addresses for
static cloud computing. check_circle
C. It eliminates your need to invest in hardware up front, so you can develop and
deploy applications faster.
D. It offers scalable computing capacity in the Amazon Web Services (AWS) cloud.

Answer Description
Explanation

Amazon Elastic Compute Cloud (Amazon EC2) provides scalable computing capacity
in the Amazon Web Services (AWS) cloud. Using Amazon EC2 eliminates your need
to invest in hardware up front, so you can develop and deploy applications faster.
You can use Amazon EC2 to launch as many or as few virtual servers as you need,
configure security and networking, and manage storage. Amazon EC2 enables you to
scale up or down to handle changes in requirements or spikes in popularity, reducing
your need to forecast traffic. Reference:
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/concepts.html
Doodle inc. has a web application, that ultimately stores billions of images and videos
which runs in exabyte, Which of the following AWS services can help them transfer the
data to AWS?
A. Amazon VPC
B. Snowmobile check_circle
C. Snowball
D. S3 enhanced uploader

Answer Description
Explanation

AWS Snowmobile is an Exabyte-scale data transfer service used to move extremely large
amounts of data to AWS. You can transfer up to 100PB per Snowmobile, a 45-foot long
ruggedized shipping container, pulled by a semi-trailer truck. Snowmobile makes it easy to
move massive volumes of data to the cloud, including video libraries, image repositories, or
even a complete data center migration. Transferring data with Snowmobile is more secure,
fast and cost effective. Reference: https://aws.amazon.com/snowmobile/
What is a Security Group?
A. A firewall for inbound traffic, built-in around every Amazon EC2
instance. check_circle
B. A list of users that can access Amazon EC2 instances.
C. An Access Control List (ACL) for AWS resources.
D. None of these.

Answer Description
Explanation

A security group acts as a virtual firewall for your instance to control inbound and
outbound traffic.
http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_SecurityGroups.htm
l
Which of the following are benefits of the AWS's Relational Database Service
(RDS)? Choose the 2 correct answers
A. Automated patches and backups check_circle
B. It allows you to store unstructured data
C. You can resize the capacity accordingly check_circle
D. It allows you to store NoSQL data

Answer Description
Explanation

Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate,
and scale a relational database in the cloud. It provides cost-efficient and resizable
capacity while automating time-consuming administration tasks such as hardware
provisioning, database setup, patching and backups. It frees you to focus on your
applications so you can give them the fast performance, high availability, security and
compatibility they need. https://aws.amazon.com/rds/
A company has a distributed application that periodically processes large
volumes of data across multiple Amazon EC2 Instances. The application is
designed to recover gracefully from Amazon EC2 instance failures. There is a
requirement to accomplish this task in the most cost-effective way. Which of
the following would be most appropriate?
A. Spot Instances check_circle
B. Reserved instances
C. Dedicated instances
D. On-Demand instances

Answer Description
Explanation

When you think of cost effectiveness, you can either have to choose Spot or
Reserved instances. Now when you have a regular processing job, the best is to use
spot instances and since your application is designed recover gracefully from
Amazon EC2 instance failures, then even if you lose the Spot instance , there is no
issue because your application can recover.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-spot-instances.html
Which DNS name can only be resolved within Amazon EC2?
A. Public DNS name
B. Internal DNS name check_circle
C. External DNS name
D. Global DNS name

Answer Description
Explanation

Only Internal DNS name can be resolved within Amazon EC2.

Which service can identify the user that made the API call when an Amazon
Elastic Compute Cloud (Amazon EC2) instance is terminated?
A. Amazon CloudWatch
B. AWS CloudTrail check_circle
 C. AWS X-Ray
D. AWS Identity and Access Management (AWS IAM)

Answer Description
Explanation

http://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-user-
guide.html
What best describes what AWS is?
AWS is a cloud services provider.check_circle
AWS is a hosting services provider.
AWS is a security services provider.
None of the above.

Answer Description
Explanation

AWS : Amazon Web Services offers reliable, scalable, and inexpensive cloud
computing services.
Which of the following can be used to call AWS services from the different
programming languages?
A. AWS CLI
B. AWS Console
C. AWS SDK check_circle
D. AWS IAM

Answer Description
Explanation

The AWS SDK can Simplify using AWS services in your applications with an API
tailored to your programming language or platform. https://aws.amazon.com/tools/
You are planning to offload some of the batch processing workloads on to
AWS. These jobs can be interrupted and resumed at any time. Which of the
following instance types would be the most cost effective to use?
A. On-Demand
B. Spot check_circle
C. Full Upfront Reserved
D. Partial Upfront Reserved

Answer Description
Explanation

Spot Instances are a cost-effective choice if you can be flexible about when your
applications run and if your applications can be interrupted. For example, Spot
Instances are well-suited for data analysis, batch jobs, background processing, and
optional tasks. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-spot-
instances.html
What is the concept of an AWS region?
A. It is a collection of Edge locations
B. It is a collection of Compute capacity
C. It is the same as an Availability zone
D. It is a geographical area divided into Availability Zones check_circle

Answer Description
Explanation

A region is a geographical area divided into Availability Zones. Each region contains
at least two Availability Zones.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-regions-availability-
zones.html
What AWS service must you use if you want to configure an AWS billing alarm?
A. CloudWatch check_circle
B. CloudMonitor
C. Consolidated billing
D. CloudTrail

Answer Description
Explanation

CloudWatch is the AWS service that allows you to collect metrics, and create alarms
based on those metrics. Billing metrics can be tracked in CloudWatch, therefore
billing alarms can be created.
Your company's upper management is getting very nervous about managing
governance, compliance, and risk auditing in AWS. What service should you
enable and inform upper management about?
A. CloudAudit
B. CloudTrail check_circle
C. Cloud Compliance
D. CloudWatch

Answer Description
Explanation

AWS CloudTrail is designed to log all actions taken in your AWS account. This
provides a great resource for governance, compliance, and risk auditing.
Which of the following AWS services could help you in security analysis and
compliance auditing?
A. AWS CloudTrail check_circle
B. AWS Config check_circle
C. AWS Inspector check_circle
D. AWS X-Ray
E. AWS Service Catalog

Answer Description
Explanation

**With CloudTrail, you can get a history of AWS API calls for your account, including
API calls made using the AWS Management Console, AWS SDKs, command line
tools, and higher-level AWS services (such as AWS CloudFormation). The AWS API
call history produced by CloudTrail enables security analysis, resource change
tracking, and compliance auditing. **With AWS Config, you can discover existing and
deleted AWS resources, determine your overall compliance against rules, and dive
into configuration details of a resource at any point in time. These capabilities enable
compliance auditing, security analysis, resource change tracking, and
troubleshooting.** Amazon Inspector provides an engine that analyzes system and
resource configuration and monitors activity to determine what an assessment target
looks like, how it behaves, and its dependent components. The combination of this
telemetry provides a complete picture of the assessment target and its potential
security or compliance issues. Reference: https://d1.awsstatic.com/whitepapers/aws-
overview.pdf
https://docs.aws.amazon.com/inspector/latest/userguide/inspector_introduction.html
Which of the following can be used to increase the fault tolerance of an
application?
A. Deploying resources across multiple edge locations
B. Deploying resources across multiple VPC’s
C. Deploying resources across multiple AWS Accounts
D. Deploying resources across multiple Availability Zones check_circle

Answer Description
Explanation
By deploying your AWS resources to multiple Availability zones , you are designing
with failure in mind. So if one AZ were to go down , the other AZ’s would still be
up and running and hence your application would be more fault tolerant.
Which service enables AWS customers to manage users and permissions in
AWS?
A. AWS Access Control Service (ACS)
B. AWS Identity and Access Management (IAM) check_circle
C. AWS Identity Manager (AIM)
D. None of the above.

Answer Description
Explanation

AWS Identity and Access Management (IAM) is a web service that helps you securely
control access to AWS resources. You use IAM to control who is authenticated
(signed in) and authorized (has permissions) to use resources.
https://aws.amazon.com/iam/details/manage-users/
What is one benefit AND one drawback of buying a reserved EC2 instance?
(Select two)
A. You are locked in to either a one- or three-year pricing
commitment. check_circle
B. Reserved instances are the cheapest option.
C. you got Dedicated instances for free
D. Reserved instances can be purchased as a significant discount over on-demand
instances. check_circle

Answer Description
Explanation

Reserved instances require a one- or three-year purchase term, so you are

committing to paying for that much compute capacity for that full time period.
However, in exchange for the long-term commitment, you will receive a discount (of
up to 75%) over using an on-demand instance (for that same time period).
A user is planning to use AWS Cloudformation. Which of the below mentioned
functionalities does not help him to correctly understand Cloudfromation?
A. Cloudformation follows the DevOps model for the creation of Dev &
Test. check_circle
B. AWS Cloudfromation does not charge the user for its service but only charges
for the AWS resources created with it.
C. Cloudformation works with a wide variety of AWS services, such as EC2, EBS,
VPC, IAM, S3, RDS, ELB, etc.
 D. CloudFormation provides a set of application bootstrapping scripts which
enables the user to install Software.

Answer Description
Explanation

AWS Cloudformation is an application management tool which provides application

modeling, deployment, configuration, management and related activities. It supports
a wide variety of AWS services, such as EC2, EBS, AS, ELB, RDS, VPC, etc. It also
provides application bootstrapping scripts which enable the user to install software
packages or create folders. It is free of the cost and only charges the user for the
services created with it. The only challenge is that it does not follow any model, such
as DevOps; instead customers can define templates and use them to provision and
manage the AWS resources in an orderly way.
Which of the following makes it easier for developers to store, manage, and
deploy Docker container images?
A. ECS
B. EBS
C. ECR check_circle
D. EMR

Answer Description
Explanation

Amazon EC2 Container Registry (ECR) is a fully managed Docker container registry
that makes it easy for developers to store, manage, and deploy Docker container
images. Amazon ECR is integrated with Amazon EC2 Container Service (ECS),
simplifying your development to production workflow. Amazon ECR eliminates the
need to operate your own container repositories or worry about scaling the
underlying infrastructure. Amazon ECR hosts your images in a highly available and
scalable architecture, allowing you to reliably deploy containers for your applications.
Integration with AWS Identity and Access Management (IAM) provides resource-level
control of each repository. With Amazon ECR, there are no upfront fees or
commitments. You pay only for the amount of data you store in your repositories
and data transferred to the Internet. Reference:
https://d1.awsstatic.com/whitepapers/aws-overview.pdf
An AWS account wants to be part of the consolidated billing of his organization's payee
account. How can the owner of that account achieve this?
A. The payee account has to request AWS support to link the other accounts with his
account
B. The owner of the linked account should add the payee account to his master account
list from the billing console
 C. The payee account will send a request to the linked account to be a part of consolidated
billing check_circle
D. The owner of the linked account requests the payee account to add his account to
consolidated billing

Answer Description
Explanation

AWS consolidated billing enables the organization to consolidate payments for multiple
Amazon Web Services (AWS) accounts within a single organization by making a single
paying account. To add a particular account (linked) to the master (payee) account, the payee
account has to request the linked account to join consolidated billing. Once the linked
account accepts the request henceforth all charges incurred by the linked account will be paid
by the payee account.
which aws support plan would help provide technical support when needed?
(select all that apply )
A. Basic
B. Developer check_circle
C. Business check_circle
D. Enterprise check_circle

Answer Description
Explanation

https://aws.amazon.com/premiumsupport/compare-plans/

Which of the following provides high availability and durability? (select all that
apply)

A. S3 check_circle
B. EBS check_circle
C. EFS check_circle
D. Aurora check_circle

Answer Description
Explanation

All of them provides high availability and durability. (Note: EBS stands for Amazon
Elastic Block Store, EFS stands for Amazon Elastic File System ). Reference:
https://d1.awsstatic.com/whitepapers/aws-overview.pdf page 11,12,13,14
You want to host a set of servers in AWS using Amazon Ec2 instances for a
short period (3 months). What is the most cost effective option?
A. Spot Instances
B. On-Demand check_circle
C. No Upfront costs Reserved
D. Partial Upfront costs Reserved

Answer Description
Explanation

Since the requirement is just for 3 months, then the best cost effective option is to
use On-Demand Instances. https://aws.amazon.com/ec2/pricing/on-demand/
A user is planning to set up the Multi AZ feature of RDS. Which of the below
mentioned conditions won't take advantage of the Multi AZ feature?
A. Availability zone outage
B. A manual failover of the DB instance using Reboot with failover option
C. Region outage check_circle
D. When the user changes the DB instance's server type

Answer Description
Explanation

Amazon RDS when enabled with Multi AZ will handle failovers automatically. Thus,
the user can resume database operations as quickly as possible without
administrative intervention. The primary DB instance switches over automatically to
the standby replica if any of the following conditions occur: - An Availability Zone
outage - The primary DB instance fails - The DB instance's server type is changed -
The DB instance is undergoing software patching - A manual failover of the DB
instance was initiated using Reboot with failover
A user is launching an EC2 instance in the US East region. Which of the below
mentioned options is recommended by AWS with respect to the selection of
the availability zone?
A. Always select the AZ while launching an instance
B. Always select the US-East-1-a zone for HA
C. Do not select the AZ; instead let AWS select the AZ check_circle
D. The user can never select the availability zone while launching an instance

Answer Description
Explanation
When launching an instance with EC2, AWS recommends not to select the availability
zone (AZ). AWS specifies that the default Availability Zone should be accepted. This is
because it enables AWS to select the best Availability Zone based on the system
health and available capacity. If the user launches additional instances, only then an
Availability Zone should be specified. This is to specify the same or different AZ from
the running instances. Reference:
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-regions-availability-
zones.html
A company is hosting an infrastructure and most of the EC2 instances are
continually utilized throughout the year. Which of the following would be the
most cost effective?
A. Reserved instancescheck_circle
B. Spot instances
C. Regular instances
D. On-demand instances

Answer Description
Explanation

When you have instances that will be used continuously and throughout the year,
the best option is to buy reserved instances. By choosing reserved instances, you are
actually allocated an instance for the entire year or the duration you specify with a
reduced cost