Aws Cloud Practitioner

Front 1

Which offerings represent core AWS services?

Back 1

Compute, Networking, Storage, Database

Front 2

Describe the agility and flexibility value proposition of AWS.

Back 2

-Reducing time & cost of experimentation.

-Getting content as close to the consumer as possible.

-Overcoming geographical limitations.

-Leveraging for rapid deployment, testing, experimentation, and innovation.

Front 3

Describe Cloud Computing

Back 3

The on-demand delivery of compute power, database, storage, applications, and other IT resources through an online provider platform.

Front 4

What is the most important value proposition for most AWS customers?

Back 4

Cost

Front 5

On a scale of 100 to 1000, what score do you need to pass the AWS Cloud Practitioner exam?

Back 5

700

Front 6

What cloud service type offers the basic components for cloud information technology by giving the consumer access to networking infrastructure, virtual or dedicated server computing, and data storage space?

Back 6

Infrastructure as a Service

Front 7

What is the AWS security triad?

Back 7

- Key Management Service (KMS)

- Infrastructure security

- Identity and Access Management (IAM)

Front 8

What is a method for connecting infrastructure and applications between AWS Cloud-based resources and other resources that reside on-site or at a co-location site?

Back 8

Hybrid deployment

Front 9

How does AWS perform verification when setting up a new account?

Back 9

SMS text code

Front 10

What service is most closely aligned to the elasticity value proposition at AWS?

Elastic load balancing

Serverless computing

Auto-scaling

Containers

Back 10

Auto-scaling

Front 11

What is the new name of the traditional AWS TCO Calculator?

AWS Shield

Trusted Advisor

Estimate Exports

AWS Pricing Calculator

Back 11

AWS Pricing Calculator

Front 12

Which of these are a part of the “Pay As You Go” aspect of the AWS pricing model?

1. You will only incur fees for the actual resources and services that your enterprise uses

2. You will only pay for the specific services that you need

3. You reduce risks of over-positioning or missing capacity

4. You can save up to 75% over similar demand by reserving capacity

5. When your enterprise pays a higher upfront fee, you will enjoy a better discount

6. You only pay for the time that you are utilizing services

Back 12

1, 2, 3, 6

You will only incur fees for the actual resources and services that your enterprise uses.

You will only pay for the specific services that you need.

You reduce risks of over-positioning or missing capacity.

You only pay for the time that you are utilizing services.

Front 13

What is deployed the most by organizations on AWS?

Mission-critical workloads

Disaster recovery solutions

Blob storage

Agile developers

Back 13

Mission-critical workloads

Front 14

Which of these is NOT a part of the free-tier model?

12 Months Free

Always free

Basic support plan

Free trials

Back 14

Basic support plan

Front 15

What organization placed AWS in the “Magic Quadrant for Cloud Infrastructure as a Service, Worldwide” Leaders quadrant?

Google

Gartner

IDC

Accenture

Back 15

Gartner

Front 16

What is the new title of the traditional AWS cost calendar?

Savings Plans

Cost and Usage Report

Cost Categories

Cost Explorer

Back 16

Cost Explorer

Front 17

What is the software that produces and manages a virtual infrastructure, allowing multiple operating systems to run and share resources on a single physical machine?

VPC

Container

Virtualizer

Hypervisor

Back 17

Hypervisor

Front 18

Which type of risk treatment is best represented by the hybrid cloud deployment model?

Acceptance

Transference

Reduction

Avoidance

Back 18

Transference

Front 19

Which core service offers Linux virtual machines and applications?

Networking

Storage

Compute

Database

Back 19

Compute

Front 20

Which of these represent the client responsibility in the AWS shared model?

Hypervisor server blades

Content stored on AWS

Client-side encryption

Format and structure of data

The country where the data is stored

Data center security

Back 20

Content stored on AWS

Client-side encryption

Format and structure of data

The country where the data is stored

Front 21

Which of these actions can only be performed by the root account user?

Programmatically access an AWS service

Change from credit card to direct billing

Sign up for GovCloud

Change the root user password

Create an IAM group and users

Change the support plan

Back 21

Change from credit card to direct billing

Sign up for GovCloud

Change the root user password

Change the support plan

Front 22

How does AWS refer to a custom user-defined virtual private cloud?

Template VPC

Non-default VPC

Cloud Formation VPC

Custom VPC

Back 22

Non-default VPC

Front 23

What is a master component for the creation of virtual servers (EC2 instances) in the Amazon Web Services (AWS) environment?

AMI

IAM

AWS

VPC

Back 23

AMI

Front 24

What networking component running on the AWS infrastructure would you deploy to allow instances in a private subnet to connect to the internet or other AWS services, but prevent the internet from initiating a connection with those instances?

NAT gateway

Jump host

Bastion server

Transit gateway

Back 24

NAT gateway

Front 25

What would a Windows instance use to securely connect to an S3 bucket over the AWS global infrastructure?

Site-to-Site VPN

VPC peering

Interface endpoint

Gateway endpoint

Back 25

Gateway endpoint

Front 26

Which of these benefits would apply to PCI-DSS regulations for an AWS customer that deals with credit and bank cards?

- Scale rapidly and securely

- Lower total cost of ownership

- Adhere to compliance mandates

- Assurance that data is durable and safe

Back 26

- Adhere to compliance mandates

Front 27

Which of the compliance regulations relates to the Americas specifically?

PCI DSS

SOC 1/ISAE 3402

ISO 27001

FedRAMP

Back 27

FedRAMP

Front 28

What is a console-based, on-demand self-service auditing object retrieval service that offers quick and easy access to AWS compliance documentation and agreements?

Back 28

Artifact

Front 29

Which CSA level deals with STAR Self-assessment?

Back 29

STAR Level 1

Front 30

What is a repository of frequently used resources and processes needed to perform compliance responsibilities on AWS?

GuardDuty

Artifact

AWS Inspector

Compliance Solutions Guide

Back 30

Compliance Solutions Guide

Front 31

What is the default password length in AWS IAM?

10

5

6

8

Back 31

8

Front 32

What are IAM policies most often applied to?

Groups

Users

Instances

Subnets

Back 32

Groups

Front 33

How many managed policies can be applied to an entity in AWS?

5

12

10

6

Back 33

10

Front 34

Which of these statements is true regarding an IAM role?

It is an identity that has an assigned permission

It is often assumed by a user or service

It offers a set of permanent credentials

It can be applied to an application

It is often used to give access to identities outside of AWS

It applies long-term credentials like passwords or keys

Back 34

It is an identity that has an assigned permission

It is often assumed by a user or service

It can be applied to an application

It is often used to give access to identities outside of AWS

Front 35

What is a hardened system whose goal is to offer secure access to a private network from an external network like the Internet?

Back 35

Bastion

Front 36

What is the default CLI output format in AWS?

Text

JSON

Table

YAML

Back 36

JSON

Front 37

What AWS service lets you quickly, easily, and securely deploy sign-up and sign-in features to mobile and web apps?

Appstream

Cognito

IAM

SAML

Back 37

Cognito

Front 38

Identify aspects of AWS Cloud Economics.

Back 38

a. Trade capital expense for variable expense

b. Benefit from massive economies of scale

c. Stop guessing capacity

d. Increase speed and agility

e. Improve security

f. Go global in minutes

g. Possibility of reducing costs

Front 39

List the different cloud architecture design principles.

Back 39

a. Scaling

b. Availability

c. Automation

d. Monitoring

e. Security

Front 40

Define the AWS Cloud and its value proposition.

Back 40

Cloud computing is the on-demand delivery of compute power, database storage,applications, and other IT resources through a cloud services platform via the internetwith pay-as-you-go pricing.

Front 41

Define the AWS Shared Responsibility Model.

Back 41

- AWS is responsible for the OF the cloud (datacenters, physical security, hardware networking,etc.)

- Customer is responsible for everything that goes IN the cloud (data, encryption, IAM, software,etc.)

- It is crucially important to understand which components and parts of AWS are yourresponsibility for each service. For example, with EC2 you maintain control over the OS, whereas with RDS, AWS is responsible for the OS. The Shared Responsibility model will showup heavily on the exam. Additional details are available on the AWS website in form of variousdocumentation.

Front 42

Define AWS Cloud security and compliance concepts.

Back 42

1. Concept of least-privilege-access means everyone has the least amount of access needed toperform their roles. Use the IAM service to set up permissions.

2. Always protect external facing resources such as S3 buckets.

3. Use encryption at-rest and in-transit.

Front 43

Identify AWS access management capabilities.

Back 43

1. IAM – Identity and Access Management gives you the ability to define permissions for accessfor users, groups or roles.

2. Can be used in conjunction with on-premises services like Active Directory or cloud-hostedactive-directory

Front 44

Identify the core AWS services.

Back 44

- Compute

- Storage

- Database

- Networking

- Migration

- Management tools

Front 45

What is EC2?

Back 45

EC2 is a web service thatprovides secure, resizable compute capacity in the cloud.

Front 46

What is S3?

Back 46

Amazon Simple Storage Service (Amazon S3) is an object storage servicethat offers industry-leading scalability, data availability, security, andperformance. This means customers of all sizes and industries can use it tostore and protect any amount of data for a range of use cases, such aswebsites, mobile applications, backup and restore, archive, enterpriseapplications, IoT devices, and big data analytics. Amazon S3 provides easy-touse management features so you can organize your data and configure finelytuned access controls to meet your specific business, organizational, andcompliance requirements.

Front 47

True or False?

A Region is a geographically distinct location in the world with multiple Availability zones.

Back 47

True.

Front 48

What is an Availability zone?

Back 48

One or more discrete datacenters.

Front 49

Edge location

Back 49

An edge location is a site that Amazon CloudFront uses to store cached copies of your content closer to your customers for faster delivery.

Front 50

True or False?

Each Region has at least three AZs.

Back 50

False

Front 51

What is the latency between AZs?

Back 51

10ms

Front 52

Which statement best describes an Availability Zone?

a. A geographical area that contains AWS resources

b. A single data center or group of data centers within a Region

c. A data center that an AWS service uses to perform service-specific operations

d. A service that you can use to run AWS infrastructure within your own on-premises data center in a hybrid approach

Back 52

b. A single data center or group of data centers within a Region