AWS Certified Cloud Practitioner — Practice Questions Part 1
Below is the list of few practice questions for AWS Certified Cloud Practitioner. All questions have answers and detailed explanation with references. Follow us to stay updated with new questions:
Under the shared responsibility model, which of the following is the customer responsible for?
1) Ensuring that firmware is updated on hardware devices.
2) Ensuring that disk drives are wiped after use.
3) Ensuring that data is encrypted at rest.
4) Ensuring that network cables are category six or higher.
Answer:
3) Ensuring that data is encrypted at rest.
Explanation:
“Data configuration (i.e. encrypting data at rest and in transit) is the responsibility of the customer”
According to the Shared Responsibility Model, AWS is responsible for the underlying integrity and security of AWS physical resources, but not the integrity of the data and configurations added by customers.
Reference:
Which allows companies to track and categorize spending on a detailed level?
1) Cost allocation tags
2) Consolidated billing
3) AWS Budgets
4) AWS Marketplace
Answer:
1) Cost allocation tags
Explanation:
“After you activate cost allocation tags, AWS uses the cost allocation tags to organize your resource costs on your cost allocation report, to make it easier for you to categorize and track your AWS costs”
Reference:
Stores objects, provides real-time access to those objects, and offers versioning and lifecycle capabilities:
1) Amazon Glacier
2) AWS Storage Gateway
3) Amazon S3
4) Amazon EBS
Answer:
3) Amazon S3
Explanation:
Compared to block storage, object storage is much newer. With object storage, data is bundled with customizable metadata tags and a unique identifier to form objects. The metadata tags are a key advantage with object storage — they allow for much better identification and classification of data.
Example of object storage: Amazon S3
Versioning in Amazon S3 is a means of keeping multiple variants of an object in the same bucket. You can use the S3 Versioning feature to preserve, retrieve, and restore every version of every object stored in your buckets. With versioning, you can recover more easily from both unintended user actions and application failures. After versioning is enabled for a bucket, if Amazon S3 receives multiple write requests for the same object simultaneously, it stores all of those objects.
Answer is NOT EBS because that stores blocks, not objects
Block storage is the oldest and simplest form of data storage. Block storage stores data in fixed-sized chunks called — you guessed it — ‘blocks’. By itself, a block typically only houses a portion of the data.
What AWS team assists customers with accelerating cloud adoption through paid engagements in any of several specialty practice areas?
1) AWS EnterpriseSupport
2) AWS Solutions Architects
3) AWS Professional Services
4) AWS Account Managers
Answer:
3) AWS Professional Services
Explanation:
“The AWS Professional Services organization is a global team of experts that can help you realize your desired business outcomes when using the AWS Cloud. We work together with your team and your chosen member of the AWS Partner Network (APN) to execute your enterprise cloud computing initiatives.
Our team provides assistance through a collection of offerings which help you achieve specific outcomes related to enterprise cloud adoption. We also deliver focused guidance through our global specialty practices, which cover a variety of solutions, technologies, and industries. In addition to working alongside our customers, we share our experience through tech talk webinars, White Papers, and blog posts that are available to anyone. “
Reference:
A customer would like to design and build a new workload on AWS Cloud, but does not have the AWS-related software technical expertise in-house. Which of the following AWS programs can a customer take advantage of to achieve that outcome?
1) AWS Partner Network Technology Partners
2) AWS Marketplace
3) AWS Partner Network Consulting Partners
4) AWS Service Catalogue
Answer:
3) AWS Partner Network Consulting Partners
Explanation:
“APN Consulting Partners are professional services firms that help customers of all types and sizes design, architect, build, migrate, and manage their workloads and applications on AWS, accelerating their journey to the cloud.”
Explanation Of The Other Incorrect Options:
— APN Technology Partners provide specific solutions such as SAP, Tableau, and Info. The question says that the company lacks of cloud expertise and the support APN Tech Partners can make is limited. APN Consulting Partners can give wider range of support in that they can provide architecturing, implementation, and so on…
Reference:
https://www.apn-portal.com/knowledgebase/articles/FAQ/What-Are-the-Partner-Types-of-APN
Distributing workloads across multiple Availability Zones supports which cloud architecture design principle?
1) Implement automation.
2) Design for agility
3) Design for failure.
4) Implement elasticity.
Answer:
3) Design for failure
Explanation:
Using multiple-AZs removes single points of failure, which is part of design for failure (part of ‘Reliability Design Principles and Best Practices’)
Each Availability Zone is engineered to be independent of failures in other Availability Zones.
An example of an implementation designed for failure:
A fleet of application servers can be distributed across multiple Availability Zones and be attached to ELB.
When the EC2 instances of a particular Availability Zone fail their health checks, ELB stops sending traffic to those nodes.
In addition, AWS Auto Scaling ensures that the correct number of EC2 instances are available to run your application, launching and terminating instances based on demand and defined by your scaling policies.
Reference:
Which AWS services can host a Microsoft SQL Server database? (choose two)
1) Amazon EC2
2) Amazon Relational Database Service (Amazon RDS)
3) Amazon Aurora
4) Amazon Redshift
5) Amazon S3
Answer:
1) Amazon EC2
2) Amazon Relational Database Service (Amazon RDS)
Explanation:
EC2 can run any database
RDS can use Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle Database, and Microsoft SQL Server. No, Aurora has only Mysql not ms sql
— INCORRECT ANSWERS —
Aurora only supports MySql and PostgreSQL
Reference:
Which of the following inspects AWS environments to find opportunities that can save money for users and also improve system performance?
1) AWS Cost Explorer
2) AWS Trusted Advisor
3) Consolidated billing
4) Detailed billing
Answer:
2) AWS Trusted Advisor
Explanation:
“AWS Trusted Advisor is an application that draws upon best practices learned from AWS’ aggregated operational history of serving hundreds of thousands of AWS customers. A trusted Advisor inspects your AWS environment and makes recommendations for saving money, improving system performance, or closing security gaps.”
“AWS Trusted Advisor is an online tool that provides you real time guidance to help you provision your resources following AWS best practices. Trusted Advisor checks help optimize your AWS infrastructure, increase security and performance, reduce your overall costs, and monitor service limits. Whether establishing new workflows, developing applications, or as part of ongoing improvement, take advantage of the recommendations provided by Trusted Advisor on a regular basis to help keep your solutions provisioned optimally.”
Reference:
Which AWS characteristics make AWS cost-effective for a workload with dynamic user demand? (Choose two).
1) High availability
2) Shared security model
3) Elasticity
4) Pay-as-you-go pricing
5) Reliability
Answer:
3) Elasticity
4) Pay-as-you-go pricing
Explanation:
6 Advantages of Cloud Computing:
— Trade capital expense for variable expense (Pay-as-you-go model — make payment based on usage only)
— Benefit from massive economies of scale
— Stop guessing about capacity (i.e. elasticity makes it feasible to add/remove required resources as needed)
— Increased speed and agility
— Stop spending money running and maintaining data centers
— Go global in minutes “
Reference:
Which of the following Amazon EC2 pricing models allow customers to use existing server-bound software licenses?
1) Spot Instances
2) Reserved Instances
3) Dedicated Hosts
4) On-Demand Instances
Answer:
3) Dedicated Hosts
Explanation:
“A Dedicated Host is a physical EC2 server dedicated for your use. Dedicated Hosts can help you reduce costs by allowing you to use your existing server-bound software licenses, including Windows Server, SQL Server, and SUSE Linux Enterprise Server (subject to your license terms), and can also help you meet compliance requirements.”
Reference:
What is the benefit of using AWS managed services, such as Amazon ElastiCache and Amazon Relational Database Service (Amazon RDS)?
1) They require the customer to monitor and replace failing instances.
2) They have better performance than customer-managed services.
3) They simplify patching and updating underlying OSs.
4) They do not require the customer to optimize instance type or size selections.
Answer:
3) They simplify patching and updating underlying OSs.
Explanation:
AWS Managed Services takes care of all of your patching and backup activities to help keep your resources current and secure. When updates or patches are released by OS vendors, AWS Managed Services applies them in a timely and consistent manner to minimize the impact on your business
Critical security patches are applied immediately, while others are applied based on the patch schedule you request. Backups of Stacks are automated using Amazon Elastic Block Store (EBS) and RDS snapshots, and can be restored in the event of a failure or outage, ensuring business continuity.”
Reference:
Which service provides a virtually unlimited amount of online, highly durable object storage?
1) Amazon Redshift
2) Amazon Elastic File System (Amazon EFS)
3) Amazon Elastic Container Service (Amazon ECS)
4) Amazon S3
Answer:
4) Amazon S3.
Explanation:
Amazon S3 is object storage built to store and retrieve any amount of data from anywhere on the Internet. It’s a simple storage service that offers an extremely durable, highly available, and infinitely scalable data storage infrastructure at very low costs.
Size limit is for individual item (5 TB) not for the whole S3 capacity, which is unlimited”
Reference:
Which of the following Identity and Access Management (IAM) entities is associated with anaccess key ID and secret access key when using AWS Command Line Interface (AWS CLI)?
1) IAM group
2) IAM user
3) IAM role
4) IAM policy
Answer:
2) IAM User
Explanation:
Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK).”
Incorrect Answers:
— IAM policies don’t have access keys. The only way you will ever get an access key is to create them from an IAM user to use.
Reference:
Which of the following security-related services does AWS offer? (Choose two.)
1) Multi-factor authentication physical tokens
2) AWS Trusted Advisor security checks
3) Data encryption
4) Automated penetration testing
5) Amazon S3 copyrighted content detection
Answer:
2) AWS Trusted Advisor security checks
3) Data encryption
Explanation:
— Trust Advisor gives recommendations on performance, service quotas, cost optimisation, security and fault tolerance
— AWS offers you the ability to add a layer of security to your data at rest in the cloud, providing scalable and efficient encryption features. These include:
— Data at rest encryption capabilities available in most AWS services, such as Amazon EBS, Amazon S3, Amazon RDS, Amazon Redshift, Amazon ElastiCache, AWS Lambda, and Amazon SageMaker
— Flexible key management options, including AWS Key Management Service, that allow you to choose whether to have AWS manage the encryption keys or enable you to keep complete control over your own keys
— Dedicated, hardware-based cryptographic key storage using AWS CloudHSM, allowing you to help satisfy your compliance requirements
— Encrypted message queues for the transmission of sensitive data using server-side encryption (SSE) for Amazon SQS
— APIs for you to integrate encryption and data protection with any of the services you develop or deploy in an AWS environment.”
Incorrect Answers:
1) is incorrect because it uses the word “Physical” which is not correct — you don’t get anything physical delivered to your house with MFA — MFA is purely virtual
Reference:
Which AWS managed service is used to host databases?
1) AWS Batch
2) AWS Artifact
3) AWS Data Pipeline
4) Amazon RDS
Answer:
4) Amazon RDS
Explanation
Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications, so you can give them the fast performance, high availability, security and compatibility they need.
Reference:
Thanks for reading
Hope you find this useful. Let me know your thoughts in the comment section and don’t forget to clap if you found the article helpful. We will be releasing more questions every week. To get notified, follow us on medium.
Get access to 4 practice papers (250+ Questions) on AWS Certified Cloud Practitioner with answers and explanation. These papers will help you in clearing AWS Certification, concepts and in interviews. Please visit below link to access these papers:
