CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
Question 1
Which AWS services can be used to store files? [Choose 2] from below:
A. Amazon CloudWatch
B. Amazon Simple Storage Service (Amazon S3)
C. Amazon Elastic Block Store (Amazon EBS)
D. AWS Config
E. Amazon Athena
Answer: B, C
The AWS documentation mentions the following Amazon S3 is object
storage built to store and
retrieve any amount of data from anywhere -
web sites and mobile apps, corporate applications,
and data from IoT
sensors or devices. It is designed to deliver 99.999999999% durability,
and
stores data for millions of applications used by market leaders in
every industry. For more
information on the Simple Storage Service, go
to URL: https://aws.amazon.com/s3/
Amazon Elastic Block Store (Amazon EBS) provides persistent block
storage volumes
for use with Amazon EC2 instances in the AWS Cloud.
Each Amazon EBS volume is automatically replicated within its
Availability Zone to protect you from component failure, offering high
availability and durability.
For more on Amazon EBS, go to URL:
https://aws.amazon.com/ebs/
Question 2
Which of the following services uses AWS edge locations?
A. Amazon Virtual Private Cloud (Amazon VPC)
B. Amazon CloudFront
C. Amazon Elastic Compute Cloud (Amazon EC2)
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018
CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
D. AWS Storage Gateway
Answer: B
The AWS documentation mentions the following Amazon CloudFront is a
web service that
speeds up distribution of your static and dynamic web
content, such as .html, .css, .js, and
image files, to your users. CloudFront
delivers your content through a worldwide network of
data centers called
edge locations.
For more on Amazon Cloudfront, go to URL:
http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/
Introduction.html
Question 3
Which of the following is a benefit of Amazon Elastic Compute Cloud
(Amazon EC2) over physical servers?
A. Automated backup
B. Paying only for what you use
C. The ability to choose hardware vendors
D. Root/administrator access
Answer: B
One of the advantages of EC2 Instances is the per second billing concept.
This is given in the
AWS documentation also With per-second billing,
you pay for only what you use. It takes cost
of unused minutes and
seconds in an hour off of the bill, so you can focus on improving your
applications instead of maximizing usage to the hour. Especially, if you
manage instances running for irregular periods of time, such as
dev/testing, data processing, analytics, batch processing and gaming
applications, can benefit.
For more on EC2 Pricing, go to URL:
https://aws.amazon.com/ec2/pricing/
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018
CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
Question 4
Which AWS service provides infrastructure security optimization
recommendations?
A. AWS Price List Application Programming Interface (API)
B. Reserved Instances
C. AWS Trusted Advisor
D. Amazon Elastic Compute Cloud (Amazon EC2) Spot Fleet
Answer: C
The AWS documentation mentions the following An online resource to
help you reduce cost,
increase performance, and improve security by
optimizing your AWS environment, Trusted Advisor provides real time
guidance to help you provision your resources following AWS best
practices
For more on the AWS Trusted Advisor, go to URL:
https://aws.amazon.com/premiumsupport/trustedadvisor/
Question 5
Which service allows for the collection and tracking of metrics for AWS
services?
A. Amazon CloudFront
B. Amazon CloudSearch
C. Amazon CloudWatch
D. Amazon Machine Learning (Amazon ML)
Answer: C
The AWS documentation mentions the following Amazon CloudWatch is
a monitoring service
for AWS cloud resources and the applications you
run on AWS. You can use Amazon CloudWatch to collect and track
metrics, collect and monitor log files, set alarms, and automatically
react
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018
CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
to changes in your AWS resources.
For more on AWS CloudWatch, go to URL:
https://aws.amazon.com/cloudwatch/
Question 6
A company needs to know which user was responsible for terminating
several critical Amazon
Elastic Compute Cloud (Amazon EC2) Instances.
Where can the customer find this information?
A. AWS Trusted Advisor
B. Amazon EC2 instance usage report
C. Amazon CloudWatch
D. AWS Cloud Trail logs
Answer: D
Using CloudWatch trail, one can monitor all the API activity conducted
on all AWS services.
The AWS Documentation additionally mentions the
following AWS CloudTrail is a service that
enables governance,
compliance, operational auditing, and risk auditing of your AWS account.
With CloudTrail, you can log, continuously monitor, and retain account
activity related to actions across your AWS infrastructure. CloudTrail
provides event history of your AWS account
activity, including actions
taken through the AWS Management Console, AWS SDKs, command
line tools, and other AWS services. This event history simplifies security
analysis, resource
change tracking, and troubleshooting.
For more on AWS Cloudtrail, go to URL:
https://aws.amazon.com/cloudtrail/
Question 7
Which service should an administrator use to register a new domain name
with AWS?
A. Amazon Route 5 3
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018
CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
B. Amazon Cloud Front
C. Elastic Load Balancing
D. Amazon Virtual Private Cloud (Amazon VPC)
Answer: A
Route53 allows for registration of new domain names in AWS The AWS
Documentation
additionally mentions the following Amazon Route 5 3 is
a highly available and scalable cloud
Domain Name System (DNS) web
service. It is designed to give developers and businesses an
extremely
reliable and cost effective way to route end users to Internet applications
by translating names like www.example.com into the numeric IP
addresses like 192.0.2.1 that computers
use to connect to each other.
Amazon Route 5 3 is fully compliant with IPv6 as well.
For more on AWS Route53, go to URL: https://aws.amazon.com/route53/
Question 8
What is the value of having AWS Cloud services accessible through an
Application Programming Interface (API)?
A. Cloud resources can be managed programmatically
B. AWS infrastructure use will always be cost-optimized
C. All application testing is managed by AWS.
D. Customer -owned, on -premises infrastructure becomes
programmable.
Answer: A
It allows developers to easily work with the various AWS resources
programmatically.
For more
information on the various programming tools available for
AWS, go to URL:
https://aws.amazon.com/tools/
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018
CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
Question 9
Which of the following examples supports the cloud design principle
“design for failure and
nothing will fail”?
A. Adding an elastic load balancer in front of a single Amazon Elastic
Compute Cloud (Amazon
EC2) instance
B. Creating and deploying the most cost-effective solution
C. Deploying an application in multiple Availability Zones
D. Using Amazon CloudWatch alerts to monitor performance
Answer: C
Each AZ is a set of one or more data centers. By deploying your AWS
resources to multiple Avail-
ability zones, you are designing with failure
with mind. So if one AZ were to go down, the other
AZ's would still be
up and running and hence your application would be more fault tolerant.
For more on AWS Regions and AZ’s, go to URL: http://docs.aw-
s.amazon.com/AmazonRDS/latest/UserGuide/Concepts.RegionsAndAvail
abilityZones.html
Question 10
Which service allows an administrator to create and modify AWS user
permissions?
A. AWS Config
B. AWS Cloud Trail
C. AWS Key Management Service (AWS KMS)
D. AWS Identity and Access Management (IAM)
Answer: D
The AWS documentation mentions the following AWS Identity and
Access Management (IAM)
is a web service that helps you securely
control access to AWS resources. You use IAM to control
who is
authenticated (signed in) and authorized (has permissions) to use
resources.
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018
CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
For more on AWS IAM, go to URL:
http://docs.aws.amazon.com/IAM/latest/UserGuide/introduction.html
Question 11
Which AWS service automates infrastructure provisioning and
administrative tasks for an ana-
lytical data warehouse?
A. Amazon Redshift
B. Amazon DynamoDB
C. Amazon ElastiCache
D. Amazon Aurora
Answer: A
The AWS documentation mentions the following Amazon Redshift is a
fully managed, petabyte scale data warehouse service in the cloud. You
can start with just a few hundred gigabytes
of data and scale to a petabyte
or more. This enables you to use your data to acquire new in-
sights for
your business and customers.
For more on AWS Redshift, go to URL:
http://docs.aws.amazon.com/redshift/latest/mgmt/welcome.html
Question 12
Which of the following is the responsibility of the AWS customer
according to the Shared Security Model?
A. Managing AWS Identity and Access Management (IAM)
B. Securing edge locations
C. Monitoring physical device security
D. Implementing service organization Control (SOC) standards
Answer: A
The responsibility of managing the various permissions of users and the
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018
CONFIDENTIAL: AWS Academy Cloud Foundations - Cloud Practitioner Certification Review Question Set
roles and permission
is with the AWS customer.
For more on AWS Shared Responsibility Model, go to URL:
https://aws.amazon.com/compliance/shared-responsibility-model/
Question 13
Where can a customer go to get more detail about Amazon Elastic
Compute Cloud (Amazon
EC2) billing activity that took place 3 month
ago?
A. Amazon EC2 dashboard
B. AWS Cost and Usage reports
C. AWS Trusted Advisor dashboard
D. AWS Cloud Trail logs stored in Amazon S3
Answer: B
The AWS documentation mentions the following on AWS Cost Reports
Cost Explorer is a free
tool that you can use to view your costs. You can
view data up to the last 13 months, forecast
how much you are likely to
spend for the next three months, and get recommendations for
what
Reserved Instances to purchase
For more on AWS Cost Reports, go to URL:
http://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/cost-
explorer-
what-is.html
Question 14
Who has control of the data in an AWS account?
A. AWS Support Team
B. AWS Account Owner
C. AWS Security Team
D. AWS Technical Account Manager (TAM)
CONFIDENTIAL DO NOT DISTRIBUTE - AWS Academy August 2018