Topic 1: Exam Pool A
Which AWS service or feature is used to Troubleshoot network connectivity issues between Amazon EC2 instances?
A. AWS Certificate Manager (ACM)
B. Internet gateway
C. VPC Flow Logs
D. AWS CloudHSM
A company is designing an identity access management solution for an application. The company wants users to be able to use their social media, email, or online shopping accounts to access the application. Which AWS service provides this functionality?
A. AWS IAM Identity Center (AWS Single Sign-On)
B. AWS Config
C. Amazon Cognito
D. AWS Identity and Access Management (IAM)
Which AWS service should a cloud engineer use to view API calls to AWS services?
A. Amazon CloudWatch
B. AWS CloudTrail
C. AWS Config
D. AWS Artifact
Which of the following is a cloud benefit that AWS offers to its users?
A. The ability to configure AWS data center hypervisors
B. The ability to purchase hardware in advance of increased traffic
C. The ability to deploy to AWS on a global scale
D. Compliance audits for user IT environments
A company hosts an application on an Amazon EC2 instance. The EC2 instance needs to access several AWS resources, including Amazon S3 and Amazon DynamoDB. What is the MOST operationally efficient solution to delegate permissions?
A. Create an IAM role with the required permissions. Attach the role to the EC2 instance.
B. Create an IAM user and use its access key and secret access key in the application.
C. Create an IAM user and use its access key and secret access key to create a CLI profile in the EC2 instance.
D. Create an IAM role with the required permissions. Attach the role to the administrativeIAM user
According to the AWS shared responsibility model, which of the following are AWS responsibilities? (Select TWO.)
A. Network infrastructure and virtualization of infrastructure
B. Security of application data
C. Guest operating systems
D. Physical security of hardware
E. Credentials and policies
Which AWS service or feature offers HTTP attack protection to users running public-facing web applications?
A. Security groups
B. Network ACLs
C. AWS Shield Standard
D. AWS WAF
An ecommerce company has migrated its IT infrastructure from an on-premises data center to the AWS Cloud. Which AWS service is used to track, record, and audit configuration changes made to AWS resources?
A. AWS Shield
B. AWS Config
C. AWS IAM
D. Amazon Inspector
Which AWS service or tool does AWS Control Tower use to create resources?
A. AWS CloudFormation
B. AWS Trusted Advisor
C. AWS Directory Service
D. AWS Cost Explorer
An Availability Zone consists of:
A. one or more data centers in a single location.
B. two or more data centers in multiple locations.
C. one or more physical hosts in a single data center.
D. two or more physical hosts in multiple data centers
Which of the following is an advantage of AWS Cloud computing?
A. Trade security for elasticity.
B. Trade operational excellence for agility.
C. Trade fixed expenses for variable expenses.
D. Trade elasticity for performance.
Which database engine is compatible with Amazon RDS?
A. Apache Cassandra
B. MongoDB
C. Neo4j
D. PostgreSQL
Page 7 out of 69 Pages |
Previous |