CLF-C01 : AWS Certified Cloud Practitioner : Part 05
-
What is Amazon CloudWatch?
- A code repository with customizable build and team commit features.
- A metrics repository with customizable notification thresholds and channels.
- A security configuration repository with threat analytics.
- A rule repository of a web application firewall with automated vulnerability prevention features.
Explanation:
Amazon CloudWatch is basically a metrics repository. An AWS service — such as Amazon EC2 — puts metrics into the repository, and you retrieve statistics based on those metrics. If you put your own custom metrics into the repository, you can retrieve statistics on these metrics as well. -
Which service allows a company with multiple AWS accounts to combine its usage to obtain volume discounts?
- AWS Server Migration Service
- AWS Organizations
- AWS Budgets
- AWS Trusted Advisor
Explanation:
use the consolidated billing feature in AWS Organizations to consolidate billing and payment for multiple AWS accounts or multiple Amazon Internet Services Pvt. Ltd (AISPL) accounts. Every organization in AWS Organizations has a master account that pays the charges of all the member accounts.Consolidated billing has the following benefits:- One bill – You get one bill for multiple accounts.- Easy tracking – You can track the charges across multiple accounts and download the combined cost and usage data.- Combined usage – You can combine the usage across all accounts in the organization to share the volume pricing discounts and Reserved Instance discounts. This can result in a lower charge for your project, department, or company than with individual standalone accounts. For more information, see Volume Discounts.- No extra fee – Consolidated billing is offered at no additional cost. -
Which of the following services could be used to deploy an application to servers running on-premises? (Choose two.)
- AWS Elastic Beanstalk
- AWS OpsWorks
- AWS CodeDeploy
- AWS Batch
- AWS X-Ray
-
Which Amazon EC2 pricing model adjusts based on supply and demand of EC2 instances?
- On-Demand Instances
- Reserved Instances
- Spot Instances
- Convertible Reserved Instances
-
Which design principles for cloud architecture are recommended when re-architecting a large monolithic application? (Choose two.)
- Use manual monitoring.
- Use fixed servers.
- Implement loose coupling.
- Rely on individual components.
- Design for scalability.
Explanation:
Rearchitecting applications involves sweeping change where an old monolithic application is completely revamped according to modern microservices architecture. Using individual components to re-architect a big application is one part of the process. The most important part is to design the application for scalability because the level of investment for a monolithic application can only be justified when resilience and scalability is needed. -
Which is the MINIMUM AWS Support plan that allows for one-hour target response time for support cases?
- Enterprise
- Business
- Developer
- Basic
-
Where can AWS compliance and certification reports be downloaded?
- AWS Artifact
- AWS Concierge
- AWS Certificate Manager
- AWS Trusted Advisor
Explanation:
WS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’s security and compliance reports and select online agreements. The AWS SOC 2 report is particularly helpful for completing questionnaires because it provides a comprehensive description of the implementation and operating effectiveness of AWS security controls. Another useful document is the Executive Briefing within the AWS FedRAMP Partner Package. -
Which AWS service provides a customized view of the health of specific AWS services that power a customer’s workloads running on AWS?
- AWS Service Health Dashboard
- AWS X-Ray
- AWS Personal Health Dashboard
- Amazon CloudWatch
Explanation:
Personal Health Dashboard gives you a personalized view of the status of the AWS services that power your applications, enabling you to quickly see when AWS is experiencing issues that may impact you. For example, in the event of a lost EBS volume associated with one of your EC2 instances, you would gain quick visibility into the status of the specific service you are using, helping save precious time troubleshooting to determine root cause. -
Which of the following is an advantage of consolidated billing on AWS?
- Volume pricing qualification
- Shared access permissions
- Multiple bills per account
- Eliminates the need for tagging
Explanation:
If you have multiple standalone accounts, your charges might decrease if you add the accounts to an organization. AWS combines usage from all accounts in the organization to qualify you for volume pricing discounts. -
Which of the following steps should be taken by a customer when conducting penetration testing on AWS?
- Conduct penetration testing using Amazon Inspector, and then notify AWS support.
- Request and wait for approval from the customer’s internal security team, and then conduct testing.
- Notify AWS support, and then conduct testing immediately.
- Request and wait for approval from AWS support, and then conduct testing.
Explanation:
AWS customers are welcome to carry out security assessments or penetration tests against their AWS infrastructure without prior approval for 8 services. -
Which of the following AWS features enables a user to launch a pre-configured Amazon Elastic Compute Cloud (Amazon EC2) instance?
- Amazon Elastic Block Store (Amazon EBS)
- Amazon Machine Image
- Amazon EC2 Systems Manager
- Amazon AppStream 2.0
Explanation:
To use Amazon EC2, you simply:- Select a pre-configured, templated Amazon Machine Image (AMI) to get up and running immediately. Or create an AMI containing your applications, libraries, data, and associated configuration settings.
– Configure security and network access on your Amazon EC2 instance.
– Choose which instance type(s) you want, then start, terminate, and monitor as many instances of your AMI as needed, using the web service APIs or the variety of management tools provided.
– Determine whether you want to run in multiple locations, utilize static IP endpoints, or attach persistent block storage to your instances.
– Pay only for the resources that you actually consume, like instance-hours or data transfer. -
How would an AWS customer easily apply common access controls to a large set of users?
- Apply an IAM policy to an IAM group.
- Apply an IAM policy to an IAM role.
- Apply the same IAM policy to all IAM users with access to the same workload.
- Apply an IAM policy to an Amazon Cognito user pool.
Explanation:
Instead of defining permissions for individual IAM users, it’s usually more convenient to create groups that relate to job functions (administrators, developers, accounting, etc.). Next, define the relevant permissions for each group. Finally, assign IAM users to those groups. All the users in an IAM group inherit the permissions assigned to the group. That way, you can make changes for everyone in a group in just one place. As people move around in your company, you can simply change what IAM group their IAM user belongs to. -
What technology enables compute capacity to adjust as loads change?
- Load balancing
- Automatic failover
- Round robin
- Auto Scaling
Explanation:
AWS Auto Scaling monitors your applications and automatically adjusts capacity to maintain steady, predictable performance at the lowest possible cost. Using AWS Auto Scaling, it’s easy to setup application scaling for multiple resources across multiple services in minutes. The service provides a simple, powerful user interface that lets you build scaling plans for resources including Amazon EC2 instances and Spot Fleets, Amazon ECS tasks, Amazon DynamoDB tables and indexes, and Amazon Aurora Replicas. AWS Auto Scaling makes scaling simple with recommendations that allow you to optimize performance, costs, or balance between them. If you’re already using Amazon EC2 Auto Scaling to dynamically scale your Amazon EC2 instances, you can now combine it with AWS Auto Scaling to scale additional resources for other AWS services. With AWS Auto Scaling, your applications always have the right resources at the right time. -
Which AWS services are defined as global instead of regional? (Choose two.)
- Amazon Route 53
- Amazon EC2
- Amazon S3
- Amazon CloudFront
- Amazon DynamoDB
-
Which AWS service would you use to obtain compliance reports and certificates?
- AWS Artifact
- AWS Lambda
- Amazon Inspector
- AWS Certificate Manager
Explanation:
AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’ security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA). -
Under the shared responsibility model, which of the following tasks are the responsibility of the AWS customer? (Choose two.)
- Ensuring that application data is encrypted at rest
- Ensuring that AWS NTP servers are set to the correct time
- Ensuring that users have received security training in the use of AWS services
- Ensuring that access to data centers is restricted
- Ensuring that hardware is disposed of properly
-
Which AWS service can be used to manually launch instances based on resource requirements?
- Amazon EBS
- Amazon S3
- Amazon EC2
- Amazon ECS
-
A company is migrating an application that is running non-interruptible workloads for a three-year time frame.
Which pricing construct would provide the MOST cost-effective solution?
- Amazon EC2 Spot Instances
- Amazon EC2 Dedicated Instances
- Amazon EC2 On-Demand Instances
- Amazon EC2 Reserved Instances
-
The financial benefits of using AWS are: (Choose two.)
- reduced Total Cost of Ownership (TCO).
- increased capital expenditure (capex).
- reduced operational expenditure (opex).
- deferred payment plans for startups.
- business credit lines for stratups.
-
Which AWS Cost Management tool allows you to view the most granular data about your AWS bill?
- AWS Cost Explorer
- AWS Budgets
- AWS Cost and Usage report
- AWS Billing dashboard
Explanation:
The Cost & Usage Report is your one-stop-shop for accessing the most granular data about your AWS costs and usage. You can also load your cost and usage information into Amazon Athena, Amazon Redshift, AWS QuickSight, or a tool of your choice.
Subscribe
0 Comments
Newest