0% found this document useful (0 votes)

297 views578 pages

AWS Certified Cloud Practitioner Exam

The document provides a free, expert-verified, and customizable online summary service. Users can view summaries in 3 sentences or less that highlight the key information from documents they submit. The service aims to extract and present the most important elements and essential details in a concise format.

Uploaded by

pdvprasad.trainer

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

297 views578 pages

AWS Certified Cloud Practitioner Exam

Uploaded by

pdvprasad.trainer

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 578

- Expert Verified, Online, Free.

 Custom View Settings

Topic 1 - Single Topic

Question #1 Topic 1

A company is planning to run a global marketing application in the AWS Cloud. The application will feature videos that can be viewed by users.
The company must ensure that all users can view these videos with low latency.
Which AWS service should the company use to meet this requirement?

A. AWS Auto Scaling

B. Amazon Kinesis Video Streams

C. Elastic Load Balancing

D. Amazon CloudFront

Correct Answer: D

Community vote distribution

D (100%)

  Proctored_Expert Highly Voted  7 months, 2 weeks ago

Selected Answer: D
The best option for the company to ensure that users can view videos with low latency would be to use Amazon CloudFront. CloudFront is
a content delivery network (CDN) that speeds up the delivery of static and dynamic web content, such as HTML, CSS, JavaScript, and
images, as well as videos.
upvoted 24 times

  azuredeveloper007 Highly Voted  2 months, 1 week ago

I have cleared the exam, if anyone need paid pdf, then send me an email on azuredeveloper007@gmail.com
upvoted 9 times

  lmperez Most Recent  2 weeks, 1 day ago

Selected Answer: D
CloudFront is a content delivery network (CDN) that speeds up the delivery of static and dynamic web content, such as HTML, CSS,
JavaScript, and images, as well as videos.
upvoted 1 times

  lmperez 2 weeks, 1 day ago

D. Amazon CloudFront
upvoted 1 times

  Aditya83 2 weeks, 6 days ago

D CloudFront
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: D
Amazon CloudFront is a content delivery network (CDN) offered by AWS that helps deliver content, including videos, with low latency and
high transfer speeds.

CloudFront has a vast network of edge locations located globally, which reduces the distance between users and the content they are
trying to access. When a user requests a video, CloudFront delivers it from the edge location nearest to the user, resulting in reduced
latency.
upvoted 1 times

  manojkarkera 3 weeks, 4 days ago

Selected Answer: D
Amazon CloudFront is a content delivery network (CDN) service provided by AWS. It is designed to deliver content with low latency and
high transfer speeds to users worldwide. By caching and distributing content across a global network of edge locations, CloudFront can
ensure that videos and other static or dynamic content are delivered with minimal delay. It improves the user experience by reducing
latency and improving overall performance.
upvoted 1 times

  oguzbeliren 4 weeks ago

Amazon CloudFront provides you a simple API that distributes content with low latency and high data transfer rates by serving requests
using a network of edge location around the world.
upvoted 2 times
  markquest 4 weeks ago
Amazon CloudFront provides you a simple API that distributes content with low latency and high data transfer rates by serving requests
using a network of edge location around the world.
upvoted 1 times

  applemans 4 weeks ago

D.cloud front
upvoted 1 times

  Somay11 1 month ago

CloudFront is a content delivery network (CDN) that speeds up the delivery of static and dynamic web content, as well as videos.
upvoted 2 times

  Pepeti 1 month, 1 week ago

D cloud front
upvoted 1 times

  abeeb_ 1 month, 1 week ago

To meet this requirement, the company should use Amazon CloudFront, which is an AWS service designed to improve the delivery of
content to users with low latency and high data transfer speeds. CloudFront is a content delivery network (CDN) service that caches the
company's videos in edge locations around the world. When a user requests to view a video, CloudFront automatically delivers the video
from the edge location closest to the user, reducing the latency and improving the overall viewing experience.
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: D
D. Amazon CloudFront.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. Amazon CloudFront.
upvoted 1 times

  dsosarios 1 month, 2 weeks ago

Selected Answer: D
upvoted 1 times

  KeChanCuu 1 month, 4 weeks ago

D. Amazon CloudFront
upvoted 1 times
Question #2 Topic 1

Which pillar of the AWS Well-Architected Framework refers to the ability of a system to recover from infrastructure or service disruptions and
dynamically acquire computing resources to meet demand?

A. Security

B. Reliability

C. Performance efficiency

D. Cost optimization

Correct Answer: B

Community vote distribution

B (98%)

  jackmuihk Highly Voted  11 months, 1 week ago

Selected Answer: B
B. Reliability

The reliability pillar focuses on workloads performing their intended functions and how to recover quickly from failure to meet demands.
Key topics include distributed system design, recovery planning, and adapting to changing requirements.

https://aws.amazon.com/architecture/well-architected/
upvoted 16 times

  jackmuihk 11 months, 1 week ago

If you are considering C.Performance Efficiency, here's the explanation:

The performance efficiency pillar focuses on structured and streamlined allocation of IT and computing resources. Key topics include
selecting resource types and sizes optimized for workload requirements, monitoring performance, and maintaining efficiency as
business needs evolve.

https://aws.amazon.com/architecture/well-architected/
upvoted 4 times

  Wizprince Most Recent  2 weeks, 4 days ago

Selected Answer: B
Reliability
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: B
Amazon CloudFront is a content delivery network (CDN) offered by AWS that helps deliver content, including videos, with low latency and
high transfer speeds.

  manojkarkera 3 weeks, 4 days ago

Selected Answer: B
The Reliability pillar focuses on designing systems that can tolerate failures and remain operational even in the face of disruptions. It
includes strategies for fault tolerance, high availability, disaster recovery, and the ability to scale resources dynamically.
upvoted 1 times

  oguzbeliren 4 weeks ago

The AWS Well-Architected Framework consists of five pillar;
1- Operational Excellence
2- Security
3- Reliability
4- Performance Efficiency
5- Cost Optimization
upvoted 1 times

  Sreenidhi_Palimar 3 days, 1 hour ago

As per AWS I can see there are total of Six pillars for AWS Well-Architected Framework
1-Operational Excellence
2-Security
3-Cost Optimization
4-Reliability
5-Performance Efficiency
6-Sustainability
upvoted 1 times
  Somay11 1 month ago
Reliability
upvoted 1 times

  asm84 1 month, 1 week ago

The answer is B: Reliability because it discuss the recovery of the workloads
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
Reliability
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
Reliability
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Reliability
upvoted 1 times

  dsosarios 1 month, 2 weeks ago

Selected Answer: B
upvoted 1 times

  KeChanCuu 1 month, 4 weeks ago

B. Reliability
upvoted 1 times

  GorioDeCavite 2 months ago

B. Reliability
upvoted 1 times

  solvewithdata 2 months, 2 weeks ago

Selected Answer: B
reliability is key when there's even a small chance of failures
upvoted 1 times

  Marcelo_Costa 3 months, 1 week ago

Selected Answer: C
B. Reliability
upvoted 1 times

  sikavi 3 months, 4 weeks ago

Option B Reliability
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: B
The pillar of the AWS Well-Architected Framework that refers to the ability of a system to recover from infrastructure or service disruptions
and dynamically acquire computing resources to meet demand
upvoted 1 times
Question #3 Topic 1

Which of the following are benefits of migrating to the AWS Cloud? (Choose two.)

A. Operational resilience

B. Discounts for products on Amazon.com

C. Business agility

D. Business excellence

E. Increased staff retention

Correct Answer: AC

Community vote distribution

AC (95%) 3%

  Kayode Highly Voted  11 months ago

Selected Answer: AC
Ref: https://www.easydeploy.io/blog/benefits-of-aws-migration/
upvoted 10 times

  Proctored_Expert Highly Voted  7 months, 2 weeks ago

Selected Answer: AC
There are several benefits to migrating to the AWS Cloud, including:

A. Operational resilience: The AWS Cloud is designed to be highly available and scalable, which can help organizations improve their
operational resilience and reduce the impact of failures or disruptions.

C. Business agility: Migrating to the AWS Cloud can help organizations to increase their business agility by allowing them to quickly and
easily deploy new applications and services, scale their infrastructure up or down as needed, and experiment with new technologies.
upvoted 7 times

  man5484 Most Recent  3 weeks, 4 days ago

Selected Answer: AC
A. Operational resilience: By moving to the AWS Cloud, organizations can leverage AWS's robust infrastructure and global presence to
enhance operational resilience. AWS provides redundant systems, data backups, and disaster recovery options, reducing the risk of
service interruptions and ensuring business continuity.

C. Business agility: AWS enables organizations to quickly and easily provision computing resources as needed, allowing for scalability and
flexibility. This agility allows businesses to respond faster to market changes, experiment with new ideas, and launch products or services
more rapidly.
upvoted 1 times

  manojkarkera 3 weeks, 4 days ago

  brobeans 3 weeks, 6 days ago

A, C are the answers
upvoted 1 times

  Myru 1 month ago

Why not Business Reliance?
upvoted 1 times

  Somay11 1 month ago

Operational Resilience

Business Agility
upvoted 1 times

  ares1027 1 month, 1 week ago

A and C
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: AC
A. Operational resilience
C. Business agility
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Operational resilience
C. Business agility
upvoted 1 times

  dsosarios 1 month, 2 weeks ago

Selected Answer: AC
upvoted 1 times

  KeChanCuu 1 month, 4 weeks ago

I think correct answers is A C
upvoted 1 times

  GorioDeCavite 2 months ago

A. Operational resilience
C. Business agility
upvoted 1 times

  Vijay431 4 months, 2 weeks ago

Selected Answer: AC
Option AC
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: AD
A and C
upvoted 1 times

  neredynerd 5 months ago

Selected Answer: AC
The answer is A&C
upvoted 1 times

  aosman30 5 months ago

Selected Answer: C
c people
upvoted 1 times
Question #4 Topic 1

A company is planning to replace its physical on-premises compute servers with AWS serverless compute services. The company wants to be able
to take advantage of advanced technologies quickly after the migration.
Which pillar of the AWS Well-Architected Framework does this plan represent?

A. Security

B. Performance efficiency

C. Operational excellence

D. Reliability

Correct Answer: B

Community vote distribution

B (83%) C (17%)

  sruet Highly Voted  8 months, 2 weeks ago

Selected Answer: B
Performance efficiency: The performance efficiency pillar focuses on the efficient use of computing resources to meet requirements, and
how to maintain efficiency as demand changes and technologies evolve.

Operational Excellence: The operational excellence pillar includes how your organization supports your business objectives, your ability to
run workloads effectively, gain insight into their operations, and to continuously improve supporting processes and procedures to deliver
business value.

I understand why you could think it is C, but I believe the correct answer is B (key part: as demand changes and technologies evolve)
upvoted 29 times

  MottaM Highly Voted  8 months ago

Reference: https://aws.amazon.com/blogs/apn/the-6-pillars-of-the-aws-well-architected-framework/

My answer would be B because of the following reason:

In the official documentation, for the design principle of pillar "Operational Efficiency" we don't see the work serverless computing
mentioned as below:
Design Principles
There are five design principles for operational excellence in the cloud:

Perform operations as code

Make frequent, small, reversible changes
Refine operations procedures frequently
Anticipate failure
Learn from all operational failures

but we could see the "serverless computing" mentioned in pillar "Performance Efficiency"

Design Principles
There are five design principles for performance efficiency in the cloud:

Democratize advanced technologies

Go global in minutes
#####Use serverless architectures#####
Experiment more often
Consider mechanical sympathy
upvoted 13 times

  Corridon Most Recent  3 days, 9 hours ago

Selected Answer: B
Answer is definitely B. If you look at the design principles for each pillar only Performance Efficiency has the following. Key phrase is
serverless computing services.

Go global in minutes: Deploying your workload in multiple AWS Regions around the world permits you to provide lower latency and a
better experience for your customers at minimal cost.

Use serverless architectures: Serverless architectures remove the need for you to run and maintain physical servers for traditional
compute activities. For example, serverless storage services can act as static websites (removing the need for web servers) and event
services can host code. This removes the operational burden of managing physical servers, and can lower transactional costs because
managed services operate at cloud scale.
upvoted 1 times

  manojkarkera 3 weeks, 4 days ago

Selected Answer: C
Replacing physical on-premises compute servers with AWS serverless compute services is a move towards operational excellence because
it will allow the company to:

Scale workloads up or down as needed. This will help the company to save money on compute resources when they are not needed, and
to ensure that they have enough resources to handle spikes in demand.
Take advantage of advanced technologies quickly. AWS serverless compute services are constantly being updated with new features and
capabilities. By moving to serverless, the company will be able to take advantage of these new features as soon as they are available.
Improve operational efficiency. Serverless compute services are designed to be easy to use and manage. This will help the company to
reduce the amount of time and effort that is required to manage their infrastructure.
upvoted 1 times

  augu2255 1 month ago

option C
upvoted 1 times

  Somay11 1 month ago

Performance efficiency
upvoted 2 times

  ares1027 1 month, 1 week ago

Answer: B. I agree with 'sruet', operative phrase is: "as demand changes and technologies evolve"
upvoted 2 times

  asm84 1 month, 1 week ago

I guess this represents the performance efficiency, the need to use pre-configured services makes us more efficient then concentrating on
the infrastructure configuration. So i guess B is the right answer.
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Performance efficiency
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

B. Performance efficiency
upvoted 2 times

  KeChanCuu 1 month, 4 weeks ago

B. Performance efficiency
upvoted 2 times

  louisvuitton12 2 months ago

After Investigation: Option B is correct.
https://docs.aws.amazon.com/wellarchitected/latest/framework/perf-dp.html
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: B
The plan to replace physical on-premises compute servers with AWS serverless compute services, with a focus on taking advantage of
advanced technologies quickly after the migration, represents the Performance Efficiency pillar of the AWS Well-Architected Framework.

The Performance Efficiency pillar of the AWS Well-Architected Framework focuses on using computing resources efficiently to meet
system requirements and to maintain that efficiency as demand changes and technologies evolve. By adopting serverless compute
services, the company can take advantage of advanced technologies like auto-scaling, pay-per-use pricing models, and managed services,
which can help improve the efficiency and performance of their applications.
upvoted 2 times

  bigtimeAKHIR1 3 months, 1 week ago

Selected Answer: B
https://aws.amazon.com/blogs/apn/the-6-pillars-of-the-aws-well-architected-framework/
upvoted 2 times

  Chelogoi 3 months, 2 weeks ago

B, the company wants to take advantage of the cloud performance.
upvoted 2 times

  Vijay431 4 months, 2 weeks ago

Selected Answer: B
Option B
upvoted 2 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: C
C, but Im̀ not sure, C, second option
upvoted 1 times
Question #5 Topic 1

A large company has multiple departments. Each department has its own AWS account. Each department has purchased Amazon EC2 Reserved
Instances.
Some departments do not use all the Reserved Instances that they purchased, and other departments need more Reserved Instances than they
purchased.
The company needs to manage the AWS accounts for all the departments so that the departments can share the Reserved Instances.
Which AWS service or tool should the company use to meet these requirements?

A. AWS Systems Manager

B. Cost Explorer

C. AWS Trusted Advisor

D. AWS Organizations

Correct Answer: B
Reference:
https://aws.amazon.com/ru/organizations/

Community vote distribution

D (95%) 3%

  Aidee Highly Voted  9 months, 2 weeks ago

I'm seriously concerned about the integrity of the answers said to be correct
upvoted 33 times

  0x0045 3 months ago

But don't you feel like you are learning more on some of these topics by reading and reviewing the discussions around the "incorrect"
answers? I am treating the more like a flashcard discussion versus just a dump of questions. I know i have learned some things I was
missing based on the controversial answer discussions.

I take the exam tomorrow and will see if this test set, along with the basic AWS training, are enough.

I'll let everyone know

upvoted 7 times

  HamzaMomin 1 month ago

Did you pass the exam?
upvoted 1 times

  AbdulMalik_Y 2 months, 1 week ago

please share your experience if you took the exam. and what do you recommend?
upvoted 1 times

  kcsharma 2 months, 2 weeks ago

hi whats the correct answer?
upvoted 1 times

  RachnaArun Highly Voted  9 months, 4 weeks ago

AWS organization manages and optimises costs across AWS accounts and resources using the tool "Cost Explorer"
As the question is which tool to be used, answer is Cost explorer
upvoted 21 times

  Yeti420 2 months ago

Question said service or tool. Based on all the discussion here, organizations is the best answer here given it’s a service.
upvoted 3 times

  Quibble 1 month, 2 weeks ago

Cost Explorer cannot be used to share EC2 instances unlike AWS Organisations, therefore the answer is D. AWS Organisations.
upvoted 5 times

  Luqheltod 3 months, 2 weeks ago

Stoop please
upvoted 1 times

  Emanv Most Recent  3 days, 16 hours ago

AWS Organizations is a service that allows you to centrally manage and govern multiple AWS accounts within your organization. It
provides a way to organize these accounts into a hierarchy and apply policies across the accounts, making it easier to manage the AWS
environment for multiple departments.

With AWS Organizations, you can create a "Consolidated Billing" family, which allows you to consolidate billing for all the linked accounts.
This enables the company to pool the Reserved Instances from multiple departments and efficiently utilize them across the organization.

By sharing Reserved Instances through AWS Organizations, departments that do not fully utilize their Reserved Instances can allocate
those resources to other departments that need more Reserved Instances, optimizing the use of these cost-saving commitments.
upvoted 1 times
  yokitoki 4 days, 9 hours ago
I am pretty certain it is AWS Organizations, but selecting Cost Explorer can confuse many. I take my Exam on Tuesday, so we shall see.
upvoted 1 times

  lmperez 2 weeks, 1 day ago

Selected Answer: D
AWS Organizations
upvoted 2 times

  parvezm2023 3 weeks, 3 days ago

Selected Answer: D
Its asking for a tool to be used to organize to use and optimize unused reserved instances.
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: D
AWS Organizations is a service that helps centrally manage and govern multiple AWS accounts. It provides features and tools to simplify
the administration, billing, and resource sharing across accounts.

Using AWS Organizations, the company can create an organization with multiple member accounts for each department. The organization
can then establish a consolidated payment method, making it easier to manage and pay for the AWS services used by each department.
upvoted 3 times

  manojkarkera 3 weeks, 4 days ago

Selected Answer: D
To manage the AWS accounts for multiple departments and allow them to share Reserved Instances, the company should use AWS
Organizations (option D).

AWS Organizations is a service that helps centrally manage and govern multiple AWS accounts. It provides features and tools to simplify
the administration, billing, and resource sharing across accounts.

With AWS Organizations, the company can also create a Reserved Instance Sharing group. This allows departments with unused Reserved
Instances to share them with other departments that need additional capacity. By enabling Reserved Instance Sharing, the company can
optimize the usage of Reserved Instances across the organization and reduce costs.
upvoted 3 times

  Santi_EFE 4 weeks ago

You need to use AWS Resource Access Manager, which is a part of AWS Organizations. So D is the correct answer.
Link to documentation: https://docs.aws.amazon.com/ram/latest/userguide/what-is.html
upvoted 1 times

  dbwhddn10 1 month ago

Selected Answer: D
No doubts
upvoted 1 times

  harberdy 1 month ago

The correct answer is D. AWS Organizations.By using AWS Organizations, the company can also implement service control policies (SCPs)
to enforce resource sharing and usage policies across the organization. This way, departments that have excess Reserved Instances can
allocate them to departments that need additional capacity.
upvoted 1 times

  ElPatodba 1 month ago

Selected Answer: D
No doubts
upvoted 1 times

  Somay11 1 month ago

Cost exploer
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: D
D. AWS Organizations
upvoted 2 times
  Pepeti 1 month, 2 weeks ago
Selected Answer: B
Cost Explorer
upvoted 1 times

  SrCe 1 month, 2 weeks ago

Selected Answer: D
The correct answer in this scenario would be D. AWS Organizations.
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

Manager
B. AWS Organizations
C. AWS Resource Access Manager
D. AWS Trusted AdvisorB. AWS Organizations is the correct answer. It allows the company to consolidate multiple AWS accounts into an
organization that can be centrally managed. Within this organization, the company can use AWS Resource Access Manager to share
resources such as EC2 Reserved Instances between different departments. AWS Systems Manager and Trusted Advisor are not specifically
designed for this type of resource sharing and do not provide the necessary functionality.
upvoted 1 times
Question #6 Topic 1

Which component of the AWS global infrastructure is made up of one or more discrete data centers that have redundant power, networking, and
connectivity?

A. AWS Region

B. Availability Zone

C. Edge location

D. AWS Outposts

Correct Answer: B

Community vote distribution

B (94%) 6%

  man5484 3 weeks, 4 days ago

An Availability Zone (AZ) is a physically separate data center within an AWS Region (option A). Each Availability Zone has its own power
source, networking infrastructure, and connectivity. They are designed to be isolated from failures in other Availability Zones within the
same Region.

The purpose of Availability Zones is to provide fault tolerance and high availability for applications and services hosted in the AWS cloud.
By deploying resources across multiple Availability Zones, organizations can ensure that their systems remain operational even if an
individual Availability Zone experiences an outage.
upvoted 1 times

  manojkarkera 3 weeks, 4 days ago

Selected Answer: B
An Availability Zone (AZ) is a physically separate data center within an AWS Region. Each Availability Zone has its own power source,
networking infrastructure, and connectivity. They are designed to be isolated from failures in other Availability Zones within the same
Region.

  Somay11 1 month ago

Availability zones
upvoted 1 times

  ares1027 1 month, 1 week ago

Answer B: In fact, each zone is backed by one or more physical data centers, with the largest backed by five. While a single availability
zone can span multiple data centers, no two zones share a data center.
upvoted 1 times

  Ayush134 1 month, 2 weeks ago

Selected Answer: B
Availability zone
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Availability Zone
upvoted 1 times

  GorioDeCavite 2 months ago

Availability Zones
upvoted 1 times

  AbdulMalik_Y 2 months, 1 week ago

Selected Answer: B
B is right
upvoted 1 times

  AbdulMalik_Y 2 months, 1 week ago

Selected Answer: A
Answer is A.. Hint: "one or more discrete data centers that have redundant power, networking, and connectivity" (means AWS Region), for
those who voted B, how can an AZ be one or more data centers, while itself is a data center.
upvoted 1 times

  AbdulMalik_Y 2 months, 1 week ago

sorry changed to B , after reading this:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/global-infrastructure.html
:)
upvoted 4 times

  Guru4Cloud 4 months ago

Selected Answer: B
B: Availability Zones are distinct locations within an AWS Region that are engineered to be isolated from failures in other Availability Zon
upvoted 2 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: B
The component of the AWS global infrastructure that is made up of one or more discrete data centers that have redundant power,
networking, and connectivity is B. Availability Zone.

An Availability Zone is a separate data center within a region that has independent power, cooling, and networking, which are connected
to other Availability Zones through high-bandwidth, low-latency links. By using multiple Availability Zones, customers can design and
operate applications and services that are highly available, fault-tolerant, and scalable.
upvoted 3 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: B
B. Availability Zone
upvoted 1 times

  MTezioff 4 months, 4 weeks ago

Selected Answer: B
B: Availability Zones are distinct locations within an AWS Region that are engineered to be isolated from failures in other Availability
Zones.
upvoted 1 times

  GCipry3 5 months ago

Selected Answer: B
An Availability Zone (AZ) is one or more discrete data centers with redundant power, networking, and connectivity in an AWS Region.
upvoted 1 times

  Ikki77 5 months, 1 week ago

Selected Answer: B
An Availability Zone (AZ) is one or more discrete data centers with redundant power, networking, and connectivity in an AWS Region.
https://aws.amazon.com/about-aws/global-infrastructure/regions_az/?nc1=h_ls
upvoted 1 times

  Ikki77 5 months, 1 week ago

*B*
An Availability Zone (AZ) is one or more discrete data centers with redundant power, networking, and connectivity in an AWS Region.
https://aws.amazon.com/about-aws/global-infrastructure/regions_az/?nc1=h_ls
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is B
upvoted 1 times
Question #7 Topic 1

Which duties are the responsibility of a company that is using AWS Lambda? (Choose two.)

A. Security inside of code

B. Selection of CPU resources

C. Patching of operating system

D. Writing and updating of code

E. Security of underlying infrastructure

Correct Answer: AD

Community vote distribution

AD (88%) 8%

  cyndd Highly Voted  10 months, 4 weeks ago

Selected Answer: AD
Lambda runs your code on high availability compute infrastructure and performs all the administration of your compute resources. This
includes server and operating system maintenance, capacity provisioning and automatic scaling, code and security patch deployment, and
code monitoring and logging. All you need to do is supply the code. Ref:https://aws.amazon.com/lambda/features/
upvoted 8 times

  man5484 Most Recent  3 weeks, 4 days ago

Selected Answer: AD
A. Security inside of code: It is the company's responsibility to ensure the security of the code running within the Lambda functions. This
includes implementing proper security measures, such as input validation, encryption, and access controls, to protect the code and the
data it processes.

D. Writing and updating of code: The company is responsible for developing and maintaining the code that runs within the Lambda
functions. This involves writing the code, testing it, and making any necessary updates or modifications over time.
upvoted 1 times

  manojkarkera 3 weeks, 4 days ago

Selected Answer: BD
Writing and updating code: The company is responsible for writing and updating the code that runs on AWS Lambda. This code must be
secure and must be updated as needed to fix bugs and security vulnerabilities.
Security inside of code: The company is responsible for ensuring that the code that runs on AWS Lambda is secure. This includes using
secure coding practices and avoiding known security vulnerabilities.
upvoted 1 times

  manojkarkera 3 weeks, 4 days ago

Sorry, its A & D.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: AD
A. Security inside of code
D. Writing and updating of code
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Security inside of code
D. Writing and updating of code
upvoted 1 times

  ImpactTek 1 month, 3 weeks ago

We may even consider B if we count the fact that it's the company responsibility to choose the AMI of which each have a distinct CPU ect.
upvoted 1 times

  GorioDeCavite 2 months ago

correct answer is A and D
upvoted 1 times

  Anjani_Pathak 4 months, 3 weeks ago

D. Writing and updating of code
upvoted 1 times
  elidiojose 4 months, 3 weeks ago
Selected Answer: D
D. Writing ans updating code
upvoted 1 times

  MTezioff 4 months, 4 weeks ago

Selected Answer: AD
AWS Lambda is an event-driven, serverless computing platform provided by Amazon as a part of Amazon Web Services. Hence need to
focus on code only
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is A and D
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is A and B
upvoted 1 times

  halahlou 5 months, 2 weeks ago

The shared responsibility model state that a client is responsible of what it can control, since in Lambda we can only upload a code and the
underlying configurations are handeled by AWS then the client is responsible for the security of the code as well as updating the code
upvoted 1 times

  Chilex 5 months, 3 weeks ago

Answer is A & D.
Amazon Lamda is a serverless service so all you need to focus on is updating and managing the security of your code.
Run code without thinking about servers. Pay only for the compute time you consume
upvoted 1 times

  abhishek97s 6 months ago

Selected Answer: AD
A & D is answer
upvoted 1 times

  vishal_gugale 6 months, 1 week ago

answer A & D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 1 times
Question #8 Topic 1

Which AWS services or features provide disaster recovery solutions for Amazon EC2 instances? (Choose two.)

A. 2¡‫ ׀•׀‬Reserved Instances

B. EC2 Amazon Machine Images (AMIs)

C. Amazon Elastic Block Store (Amazon EBS) snapshots

D. AWS Shield

E. Amazon GuardDuty

Correct Answer: BC

Community vote distribution

BC (100%)

  jlima2k Highly Voted  10 months, 4 weeks ago

https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-the-cloud.html
You can back up Amazon EC2 instances used by your workload as Amazon Machine Images (AMIs). The AMI is created from snapshots of
your instance's root volume and any other EBS volumes attached to your instance. You can use this AMI to launch a restored version of
the EC2 instance
upvoted 16 times

  Proctored_Expert Highly Voted  7 months, 2 weeks ago

Selected Answer: BC
The AWS services or features that provide disaster recovery solutions for Amazon EC2 instances are:

C. Amazon Elastic Block Store (Amazon EBS) snapshots: Amazon EBS is a block storage service for use with Amazon EC2 instances. EBS
snapshots are point-in-time copies of an EBS volume that can be used to create a new volume or restore an existing volume. EBS
snapshots can be used to recover data in the event of an instance failure, or to create a new instance in a different region or Availability
Zone.

B. Amazon Machine Images (AMIs): An AMI is a pre-configured virtual machine image that contains the operating system, application
software, and any other required components needed to launch an instance. AMIs can be used to create new instances in the same or a
different region, which can be useful for disaster recovery purposes.
upvoted 6 times

  Zapara Most Recent  1 day, 21 hours ago

Selected Answer: BC
B&C are correct answers
upvoted 1 times

  lmperez 2 weeks, 1 day ago

Selected Answer: BC
https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-the-cloud.html
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: BC
B. EC2 Amazon Machine Images (AMIs): AMIs are snapshots of EC2 instances that capture the entire state of the instance, including the
operating system, applications, and data. By creating regular AMIs, companies can use them to launch replacement instances in case of a
disaster or failure. AMIs serve as a foundation for disaster recovery solutions.

C. Amazon Elastic Block Store (Amazon EBS) snapshots: Amazon EBS allows the creation of snapshots, which are point-in-time copies of
EBS volumes. By taking regular snapshots of EBS volumes attached to EC2 instances, companies can create backups that can be used to
restore data or launch new instances in the event of a disaster. Snapshots are stored durably and can be easily restored when needed.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. Amazon Elastic Block Store (Amazon EBS) snapshots
E. Amazon GuardDuty.
upvoted 1 times

  GorioDeCavite 2 months ago

B. Amazon Machine Images (AMIs)
C. Amazon Elastic Block Store (Amazon EBS) snapshots
upvoted 2 times

  Ananya2001 4 months, 1 week ago

Selected Answer: BC
AMI can help us to launch another instance with the same configurations. It uses the snapshot of root volume of the instance and other
EBS volumes to create machine images.
upvoted 4 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: BC
B and C. AMI and snapshot.
upvoted 2 times

  MTezioff 4 months, 4 weeks ago

Selected Answer: BC
B&C are correct answers
upvoted 2 times

  Abzstar 5 months, 2 weeks ago

correct answer is B and c
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BC
BC is the answer.
upvoted 1 times

  FiraDev 6 months, 2 weeks ago

Selected Answer: BC
B and C
upvoted 1 times

  Tanmay_17 7 months, 2 weeks ago

EC2 Amazon Machine Images (AMIs) And Amazon Elastic Block Store (Amazon EBS) snapshots
upvoted 2 times

  DST_Justin 7 months, 3 weeks ago

Selected Answer: BC
B and C
upvoted 2 times

  arisyuli 7 months, 3 weeks ago

B and C
upvoted 1 times

  Amandine 8 months, 2 weeks ago

B and C
upvoted 1 times
Question #9 Topic 1

A company is migrating to the AWS Cloud instead of running its infrastructure on premises.
Which of the following are advantages of this migration? (Choose two.)

A. Elimination of the need to perform security auditing

B. Increased global reach and agility

C. Ability to deploy globally in minutes

D. Elimination of the cost of IT staff members

E. Redundancy by default for all compute services

Correct Answer: BD

Community vote distribution

BC (91%) 7%

  ivancitomolina Highly Voted  7 months, 3 weeks ago

The six advantages of cloud computing are:
• Trade upfront expense for variable expense.
• Benefit from massive economies of scale.
• Stop guessing capacity.
• Increase speed and agility. Yes B
• Stop spending money running and maintaining data centers.
• Go global in minutes. YES C
upvoted 46 times

  sriAWSome Highly Voted  10 months, 2 weeks ago

Additional reference to support the answers B, C.
Refer to: https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 17 times

  ElSanti82 Most Recent  2 days, 8 hours ago

Selected Answer: BC
B&C.
D. Elimination of the cost of IT staff members.
Moving to AWS does not equal getting off IT staff.
upvoted 1 times

  DilhanRK 3 days, 18 hours ago

Selected Answer: BC
As per AWS AWS Whitepaper (https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html)
Six advantages of cloud computing
are:
1. Trade fixed expense for variable expense
2. Benefit from massive economies of scale
3. Stop guessing capacity
4. Increase speed and agility (This is B)
5. Stop spending money running and maintaining data centers (This could be D but not exactly)
6. Go global in minutes (This is C)
So the answer should be B & C. Not sure how they decided the answer is B & D.
upvoted 1 times

  Feroz_Raza 1 week ago

Selected Answer: BC
YEs BC
upvoted 1 times

  BigCatG 1 week, 2 days ago

Selected Answer: BC
B&C. D is wrong -- you can reduce but can't eliminate all ops costs
upvoted 1 times

  santu83 1 week, 5 days ago

answer B and C
upvoted 1 times

  lmperez 2 weeks, 1 day ago

Selected Answer: BC
answers B and C.
upvoted 1 times

  sssssdssds 3 weeks ago

Selected Answer: BC
bc...............................
upvoted 1 times

  Pantheon 3 weeks, 1 day ago

Although you move to aws, the benifit you would have with IT members is their increased productivity. The don't have to spend time
deploying nor maintaining/backup.
upvoted 1 times

  aditya1811 3 weeks, 2 days ago

Selected Answer: BC
Please correct the answer to BC.
upvoted 1 times

  0x6a 4 weeks, 1 day ago

Selected Answer: BC
D is wrong
upvoted 1 times

  tuan_nn 1 month ago

Selected Answer: BC
B and C
upvoted 2 times

  jaiyeville 1 month ago

Selected Answer: BC
You are not promised reduced IT personnel costs
upvoted 2 times

  lz18 1 month ago

D is a wrong answer
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: BC
B. Increased global reach and agility
C. Ability to deploy globally in minutes
upvoted 2 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: BC
B and C
upvoted 1 times
Question #10 Topic 1

A user is comparing purchase options for an application that runs on Amazon EC2 and Amazon RDS. The application cannot sustain any
interruption. The application experiences a predictable amount of usage, including some seasonal spikes that last only a few weeks at a time. It is
not possible to modify the application.
Which purchase option meets these requirements MOST cost-effectively?

A. Review the AWS Marketplace and buy Partial Upfront Reserved Instances to cover the predicted and seasonal load.

B. Buy Reserved Instances for the predicted amount of usage throughout the year. Allow any seasonal usage to run on Spot Instances.

C. Buy Reserved Instances for the predicted amount of usage throughout the year. Allow any seasonal usage to run at an On-Demand rate.

D. Buy Reserved Instances to cover all potential usage that results from the seasonal usage.

Correct Answer: B

Community vote distribution

C (97%)

  Iragmt Highly Voted  10 months, 1 week ago

Selected Answer: C
Who's providing the "correct" answer here? Answers should all be reviewed, you're confusing the examinees. C should be the answer.
upvoted 71 times

  mono1 6 months, 3 weeks ago

exactly. dont go with this "correct" answer. I failed in my exam after following this answers.
upvoted 13 times

  mhd1999 3 months, 2 weeks ago

in exam, How many percent of the same question?
upvoted 5 times

  khensi Highly Voted  9 months, 2 weeks ago

C is the correct answer, the question explicitly mentioned that "The application cannot sustain any interruption" of which Spot Instances
are ideal for workloads with flexible start and end times, or that can withstand interruptions. Ideally we want pricing that doesn't allow
interruption in this case it will be On-Demand.
upvoted 38 times

  mikegilkim Most Recent  1 day, 19 hours ago

Selected Answer: C
Answer is C
upvoted 1 times

  Zapara 1 day, 21 hours ago

IDK.
- Reserved Instances (RIs) - application experiences a predictable amount of usage, purchasing RI would be cost-effective.
- Spot Instances offer the lowest pricing among. If a Spot Instance is terminated, the application can automatically failover to On-Demand
instances without interruption.
upvoted 1 times

  jabadrian 2 days, 7 hours ago

Selected Answer: C
"The application cannot sustain any interruption" this is very clear, cant be B
upvoted 2 times

  yokitoki 4 days, 9 hours ago

I dont think im going to keep using this it is confusing me and might mess me up on the Exam. There needs to be a professional
answering the questions.
upvoted 1 times

  BigCatG 1 week, 2 days ago

Selected Answer: C
can't be interrupted -- so spot instance is not helpful here
upvoted 1 times

  santu83 1 week, 5 days ago

Answer is C
"The application cannot sustain any interruption" of which Spot Instances are ideal for workloads with flexible start and end times, or that
can withstand interruptions.
upvoted 1 times
  lmperez 2 weeks, 1 day ago
Selected Answer: C
C is the correct answer
upvoted 1 times

  Steve9911 3 weeks, 2 days ago

Correct answer is B.

The reserved instances already are going to be used throughout the predicted amount of usage. Only the seasonal spikes is going to be
run on the spot instances, as in they're traffic spikes they have flexible start and end times.

Paying on demand for those spikes incur in a higher price for on demand is more expensive than Spot.
upvoted 3 times

  parvezm2023 3 weeks, 3 days ago

Selected Answer: C
no doubt C is the answer. B cannot be the answer because the question clearly states that the application cannot have any interruptions
and the whole premise of using spot instances is that, it should be sued when the application can sustain interruptions. Hence B is an
Incorrect answer.
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: C
Option C, buying Reserved Instances for the predicted amount of usage throughout the year and allowing any seasonal usage to run at an
On-Demand rate, provides a balance between cost optimization and ensuring uninterrupted service. By using Reserved Instances for the
predictable usage and leveraging On-Demand instances for seasonal spikes, the user can avoid overprovisioning while still having the
required capacity during peak periods. This approach allows for cost-effective utilization of resources while meeting the application's
requirement of no interruptions.
upvoted 1 times

  tuan_nn 1 month ago

Selected Answer: C
Choose C
upvoted 1 times

  dbwhddn10 1 month ago

Selected Answer: C
C. is correct
upvoted 1 times

  itmonkey1 1 month ago

the correct answer is C.
For reference: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-spot-instances.html
upvoted 1 times

  Pepeti 1 month, 1 week ago

resposta C , pois NAO pode ter falhas
upvoted 2 times

  kk9550 1 month, 1 week ago

Selected Answer: A
A - "Review the AWS Marketplace and buy Partial Upfront Reserved Instances to cover the predicted and seasonal load."
i think this should be the most cost effcient option since reserved instances are cheaper than on-demand,
you might not find what you need in the marketplace and then fallback to C - On demand instances but still, why is A incorrect?
upvoted 1 times
Question #11 Topic 1

A company wants to review its monthly costs of using Amazon EC2 and Amazon RDS for the past year.
Which AWS service or tool provides this information?

A. AWS Trusted Advisor

B. Cost Explorer

C. Amazon Forecast

D. Amazon CloudWatch

Correct Answer: B

Community vote distribution

B (100%)

  blackcomb Highly Voted  11 months ago

After you enable Cost Explorer, AWS prepares the data about your costs for the current month and the last 12 months, and then calculates
the forecast for the next 12 months. The current month's data is available for viewing in about 24 hours. The rest of your data takes a few
days longer. Cost Explorer updates your cost data at least once every 24 hours.
upvoted 23 times

  man5484 Most Recent  3 weeks, 4 days ago

Selected Answer: B
Cost Explorer is a powerful AWS tool that allows users to analyze and visualize their AWS costs and usage over time. It provides various
features to understand, explore, and manage costs effectively.

With Cost Explorer, users can view their monthly costs and usage for specific AWS services, including Amazon EC2 and Amazon RDS. It
offers pre-built reports, customizable filters, and visualizations to help analyze spending patterns, identify cost drivers, and track expenses
over time.
upvoted 3 times

  Th3Pr0fe33or 4 weeks, 1 day ago

B. Cost Explorer
upvoted 1 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: B
B Should be correct
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Cost Explorer
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Cost Explorer
upvoted 1 times

  GorioDeCavite 2 months ago

Cloud Watch
upvoted 1 times

  huanghaiyao 3 months, 1 week ago

Selected Answer: B
review in the title,so the best answer is b.
answer c is for forecast
upvoted 1 times

  fczanardo 3 months, 3 weeks ago

Selected Answer: B
B - Cost explorer is the best option and only the correct one.
upvoted 2 times

  Guru4Cloud 4 months ago

Selected Answer: B
C - Cost Explorer, AWS prepares the data about your costs for the current month and the last 12 months, and then calculates the forecast
for the next 12 months. The current month's data is available for viewing in about 24 hours. The rest of your data takes a few days longer.
Cost Explorer updates your cost data at least once every 24 hours.
upvoted 2 times
  elidiojose 4 months, 3 weeks ago
Selected Answer: B
B. Cost Explorer
upvoted 1 times

  Gndavi 4 months, 4 weeks ago

Selected Answer: B
Correct answer is B.
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is B
upvoted 1 times

  davidspp 5 months, 2 weeks ago

Selected Answer: B
Cost Explorer
upvoted 1 times

  Cloud_Explorer 5 months, 4 weeks ago

Selected Answer: B
Correct answer is B.
Cost explorer can show pricing data for the past 12 months.
upvoted 1 times

  Devjjwal 6 months, 2 weeks ago

Selected Answer: B
Cost Explorer- View your past present & future from this
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times
Question #12 Topic 1

A company wants to migrate a critical application to AWS. The application has a short runtime. The application is invoked by changes in data or by
shifts in system state. The company needs a compute solution that maximizes operational efficiency and minimizes the cost of running the
application.
Which AWS solution should the company use to meet these requirements?

A. Amazon EC2 On-Demand Instances

B. AWS Lambda

C. Amazon EC2 Reserved Instances

D. Amazon EC2 Spot Instances

Correct Answer: B

Community vote distribution

B (100%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: B
From: https://aws.amazon.com/lambda/

1. Run code without provisioning or managing infrastructure. Simply write and upload code as a .zip file or container image.

2. Automatically respond to code execution requests at any scale, from a dozen events per day to hundreds of thousands per second.

3. Save costs by paying only for the compute time you use—by per-millisecond—instead of provisioning infrastructure upfront for peak
capacity.
upvoted 20 times

  Julio_P Highly Voted  10 months, 4 weeks ago

Selected Answer: B
There are many clues in the question that points to AWS Lambda definition.
upvoted 8 times

  niyocodes Most Recent  1 month ago

Selected Answer: B
AWS Lambda is best for event-driven apps.
upvoted 1 times

  Somay11 1 month ago

Aws Lambda
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. AWS Lambda
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. AWS Lambda
upvoted 1 times

  GorioDeCavite 2 months ago

A. Amazon EC2 On-Demand Instances
upvoted 2 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: B
Since the application has a short runtime and is invoked by changes in data or system state, AWS Lambda would be an ideal solution to
meet these requirements. AWS Lambda is a highly scalable and cost-effective solution that allows users to pay only for the compute time
they consume, without the need to provision or manage servers. This maximizes operational efficiency and minimizes costs, as users only
pay for the actual compute time used by the application.
upvoted 2 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: B
B. AWS Lambda
upvoted 1 times
  kumaran1000001 5 months ago
The question leads to a Compute solution that can be invoked by some events serverless. The short runtime nature of the application
zeros in on the AWS Lambda Service. Since Lambda is a serverless solution, the operational efficiency will also be maximized

All other solutions are EC2-based and would cost more than the Lambda solution.

So, B is the answer

upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is B
upvoted 1 times

  Cloud_Explorer 5 months, 4 weeks ago

Selected Answer: B
This is a typical use case for Lambda - short runtime, invoked by changes in data or system state.
upvoted 1 times

  rsuyon 6 months ago

B is the answer. The key is in these words: "The application is invoked by changes in data or by shifts in system state." AWS Lambda can
be invoked when something occurs.
upvoted 2 times

  shogan 6 months, 1 week ago

Selected Answer: B
AWS Lambda supports function packaging and deployment as container images, making it easy for customers to build Lambda-based
applications using familiar container image tooling, workflows, and dependencies. Customers also benefit from Lambda’s operational
simplicity, automatic scaling with sub-second startup times, high availability, pay-for-use billing model, and native integrations with over
200 AWS services and software-as-a service (SaaS) applications.
upvoted 2 times

  Cloud_Curious 6 months, 1 week ago

It should be A. In question it is niether mentioned Server less nor mentioned function as a service.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

B is the answer.
upvoted 1 times

  MFay 7 months, 1 week ago

Selected Answer: B
it’s B
upvoted 1 times
Question #13 Topic 1

Which AWS service or feature allows users to connect with and deploy AWS services programmatically?

A. AWS Management Console

B. AWS Cloud9

C. AWS CodePipeline

D. AWS software development kits (SDKs)

Correct Answer: D

Community vote distribution

D (89%) 11%

  realist66666 Highly Voted  7 months, 2 weeks ago

Elimination Approach... ;)
A. AWS Management Console --> not possible
B. AWS Cloud9 --> use IDE
C. AWS CodePipeline --> is CICD
D. AWS software development kits (SDKs) --> :)
upvoted 22 times

  AbdulMalik_Y Highly Voted  2 months, 1 week ago

Selected Answer: D
Hint: Programmatically, use SDK
upvoted 6 times

  man5484 Most Recent  3 weeks, 4 days ago

Selected Answer: D
AWS software development kits (SDKs) provide developers with the necessary tools and libraries to interact with AWS services
programmatically. SDKs are available for various programming languages, such as Python, Java, .NET, Ruby, and more. They offer APIs
and helper functions that simplify the integration and interaction with AWS services.

Using the AWS SDKs, developers can write code to authenticate with AWS, make API calls, manage resources, and deploy and configure
AWS services. This enables programmatically automating tasks, provisioning resources, managing infrastructure, and interacting with
AWS services without the need for manual intervention.
upvoted 3 times

  Gokulkarthik 4 weeks, 1 day ago

why not codepipeline?
upvoted 1 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: D
AWS software development kits (SDKs)
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: D
D. AWS software development kits (SDKs)
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

D. AWS software development kits (SDKs).
upvoted 1 times

  GorioDeCavite 2 months ago

C. AWS CodePipeline
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: D
programmatically so choose d
upvoted 1 times

  huanghaiyao 3 months, 1 week ago

programmatically so answer is d
upvoted 1 times
  Guru4Cloud 4 months ago
Selected Answer: D
Elimination Approach... ;)
A. AWS Management Console --> not possible
B. AWS Cloud9 --> use IDE
C. AWS CodePipeline --> is CICD
D. AWS software development kits (SDKs) --> Correct answer is
upvoted 1 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: D
AWS SDKs allow users to programmatically interact with AWS services, such as Amazon S3, EC2, RDS, and Lambda, by providing a set of
APIs and libraries that allow developers to build and deploy applications quickly and efficiently. Using AWS SDKs, developers can easily
integrate AWS services into their existing applications or build new applications that leverage the power of AWS services.
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: D
D. AWS SDK.
upvoted 1 times

  kumaran1000001 5 months ago

AWS SDK is not really a service but rather a set of tools provided by AWS to interact with AWS Services programmatically. So the question
is slightly misleading.

However, from the answer choices, the right choice is still D.

upvoted 1 times

  GCipry3 5 months ago

Selected Answer: D
The correct answer is D. AWS software development kits (SDKs) allow users to connect with and deploy AWS services programmatically,
using programming languages such as Java, Python, .NET, and more. The AWS SDKs provide APIs that abstract low-level interactions with
the services and allow developers to manage AWS services and resources from within their own applications. The AWS SDKs are available
for multiple programming languages and platforms.

Option A, AWS Management Console is a web-based graphical user interface (GUI) that allows users to access and manage AWS services
using a web browser.

Option B, AWS Cloud9 is an integrated development environment (IDE) that provides a cloud-based environment for writing, running, and
debugging code.

Option C, AWS CodePipeline is a continuous integration and delivery service that allows users to automate the building, testing, and
deployment of applications to AWS services.
upvoted 4 times

  et_learner 4 months, 4 weeks ago

ChatGPT
upvoted 2 times

  Abzstar 5 months, 2 weeks ago

correct answer is D
upvoted 1 times

  konieczny69 6 months, 1 week ago

D is correct
upvoted 2 times
Question #14 Topic 1

A company plans to create a data lake that uses Amazon S3.

Which factor will have the MOST effect on cost?

A. The selection of S3 storage tiers

B. Charges to transfer existing data into Amazon S3

C. The addition of S3 bucket policies

D. S3 ingest fees for each request

Correct Answer: A

Community vote distribution

A (98%)

  Eagle01 Highly Voted  8 months, 3 weeks ago

Selected Answer: A
I don’t know why some people are considering “Charges to Transfer existing Data into Amazon S3” if AWS charges nothing to “Data
transferred IN from Internet”.
See Prices calculations of AWS S3 on https://aws.amazon.com/s3/pricing/
upvoted 16 times

  Avi_best Most Recent  1 week, 4 days ago

Selected Answer: A
Obviously it's tiers
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: A
Amazon S3 offers different storage tiers with varying costs, and the selection of the storage tier will heavily impact the overall cost of the
data lake.
upvoted 1 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: A
A. The selection of S3 storage tiers
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: A
A. The selection of S3 storage tiers
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

A. The selection of S3 storage tiers
upvoted 1 times

  Rashya 1 month, 3 weeks ago

Selected Answer: A
S3 storage tiers
upvoted 1 times

  GorioDeCavite 2 months ago

A. The selection of S3 storage tiers
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: A
The storage class used in Amazon S3 can certainly have an impact on the cost of a data lake, as different storage classes have different
pricing tiers. For example, using the Glacier storage class for infrequently accessed data can be much cheaper than using the Standard
storage class for frequently accessed data. However, in most cases, the amount of data stored will have a larger impact on the overall cost
than the storage class used. This is because storage usage is generally the primary driver of cost in an S3-based data lake, regardless of
the storage class. Therefore, it is important to carefully monitor and manage the amount of data being stored in the S3 bucket to keep
costs under control.
upvoted 1 times
  Guru4Cloud 4 months ago
Selected Answer: A
A
Refer to: https://aws.amazon.com/s3/storage-
classes/#:~:text=The%20S3%20storage%20classes%20include,frequently%20accessed%20data%2C%20S3%20Glacier
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: A
A. Store tier.
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is A
upvoted 1 times

  Patil111 6 months ago

Vote A
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  Tanmay_17 7 months, 2 weeks ago

The selection of S3 storage tiers
upvoted 2 times

  Cricca1862 8 months, 2 weeks ago

Selected Answer: A
it's clearly A
upvoted 1 times

  Amandine 8 months, 2 weeks ago

I go with A
upvoted 1 times
Question #15 Topic 1

A company is launching an ecommerce application that must always be available. The application will run on Amazon EC2 instances continuously
for the next
12 months.
What is the MOST cost-effective instance purchasing option that meets these requirements?

A. Spot Instances

B. Savings Plans

C. Dedicated Hosts

D. On-Demand Instances

Correct Answer: B

Community vote distribution

B (98%)

  real111 Highly Voted  10 months, 3 weeks ago

Selected Answer: B
Amazon EC2 Savings Plans enable you to reduce your compute costs by committing to a consistent amount of compute usage for a 1-year
or 3-year term. This results in savings of up to 72% over On-Demand Instance costs. Any usage up to the commitment is charged at the
discounted Savings Plan rate (for example, $10 an hour). Any usage beyond the commitment is charged at regular On-Demand Instance
rates.
upvoted 24 times

  BigCatG Most Recent  1 week, 2 days ago

Selected Answer: B
saving plans -- the absence of "reserved instances" in options makes this choice an easy one.
upvoted 2 times

  ykbaoom 1 week, 3 days ago

what the difference between Saving and Reserved ?
upvoted 1 times

  mart213 2 weeks, 4 days ago

D. Las instancias bajo demanda son la opción más rentable para ejecutar una aplicación nueva de la cual no conocemos sus
requerimientos en el futuro.
upvoted 1 times

  Gulsah 2 weeks, 4 days ago

Selected Answer: D
If it was ÀWS Partner Network (APN)`B could be another correct answer. There is no service or feature named as ÀWS Consulting Partners`
so I would not select B.

ÀWS Managed Services`is the answer and it helps the companies with the migration.

https://aws.amazon.com/managed-services/
upvoted 1 times

  cliff_tang 3 weeks ago

correct answer
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: B
Savings Plans are a flexible and cost-effective pricing model offered by AWS. By purchasing Savings Plans, the company can commit to a
specific amount of compute usage (measured in dollars per hour) over a one- or three-year term. This allows them to receive significant
discounts on their EC2 instance usage compared to On-Demand Instances.
Savings Plans provide flexibility in terms of instance type, family, region, and operating system. They apply to EC2 usage regardless of
instance size or availability zone, giving the company the freedom to choose the instances that best meet their application requirements.
upvoted 1 times

  niyocodes 1 month ago

Selected Answer: B
I looked for Reserved Instances. Among the options, the Saving Plans makes the most sense.
upvoted 1 times
  NickNameAlwaysTakenFFS 1 month, 2 weeks ago
Selected Answer: B
B. Savings Plans
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Savings Plans
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. On-Demand Instances. On-Demand Instances are the most cost-effective option for running an application continuously for a year as
there are no upfront costs and no long-term commitments.
upvoted 2 times

  GorioDeCavite 2 months ago

Savings Plan
upvoted 2 times

  Quibble 3 weeks, 4 days ago

Lisa needs braces
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: B
B. Saving plans
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: B
B. Saving plans
upvoted 1 times

  wolfey 5 months ago

The best answer for this question is not even listed. Reserved Instances should be one of the choices. They provide large discounts for
instances that are running continuously for one year.
upvoted 4 times

  pilato 6 months ago

Savings Plan is cheaper but the question said always available, I thought savings plan are not always available.
upvoted 1 times

  Patil111 6 months ago

Answer is savings plan
upvoted 1 times
Question #16 Topic 1

Which AWS service or feature can a company use to determine which business unit is using specific AWS resources?

A. Cost allocation tags

B. Key pairs

C. Amazon Inspector

D. AWS Trusted Advisor

Correct Answer: A

Community vote distribution

A (100%)

  FleurJ Highly Voted  7 months ago

Selected Answer: A
Cost allocation tags
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/cost-alloc-tags.html
upvoted 7 times

  BigCatG Most Recent  1 week, 2 days ago

Selected Answer: A
all other options are easy to eliminate
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: A
Cost allocation tags are a mechanism provided by AWS to assign metadata to AWS resources for cost tracking and categorization
purposes. By applying cost allocation tags to resources, companies can associate custom metadata to identify and categorize resources
based on different criteria, such as business unit, department, project, or application.

When using cost allocation tags, companies can track and analyze their AWS costs based on the assigned tags. This allows them to
determine the cost distribution among different business units or any other relevant categorization. Cost allocation tags provide granular
visibility into resource usage and expenditure, enabling accurate cost attribution and analysis.
upvoted 4 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: A
Cost allocation tags
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: A
A. Cost allocation tags
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Cost allocation tags
upvoted 1 times

  GorioDeCavite 2 months ago

Cost allocation tags
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: A
A. Cost allocations tags.
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is A
upvoted 1 times

  Onyejicash 5 months, 3 weeks ago

Selected Answer: A
A tag is a label given to aws resources , each have key and values, each resources and key must be unique and each key have only one
value .
upvoted 2 times
  shogan 6 months, 1 week ago
Selected Answer: A
You can use tags to organize your resources, and cost allocation tags to track your AWS costs on a detailed level. After you activate cost
allocation tags, AWS uses the cost allocation tags to organize your resource costs on your cost allocation report, to make it easier for you
to categorize and track your AWS costs.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  Tanmay_17 7 months, 2 weeks ago

Cost allocation tags
upvoted 1 times

  amishomu 8 months ago

Selected Answer: A
Answer is 'A'
upvoted 1 times

  ExamGuruBhai 8 months ago

Vote A
upvoted 1 times

  Amandine 8 months, 2 weeks ago

I go with A
upvoted 2 times

  JYKL88 8 months, 3 weeks ago

Selected Answer: A
answer: A
upvoted 1 times
Question #17 Topic 1

A company wants to migrate its workloads to AWS, but it lacks expertise in AWS Cloud computing.
Which AWS service or feature will help the company with its migration?

A. AWS Trusted Advisor

B. AWS Consulting Partners

C. AWS Artifacts

D. AWS Managed Services

Correct Answer: D

Community vote distribution

B (60%) D (39%)

  manolin Highly Voted  10 months, 3 weeks ago

Answer is D: Consulting Partners is not a AWS service, it is a collaboration of third parties
upvoted 51 times

  pedrolaez 1 week, 1 day ago

AWS Managed Services is more of a post-migration service that manages AWS operations for you; it's not really intended to assist with
the migration itself.
upvoted 1 times

  rajpint 8 months, 3 weeks ago

D definitely can't be answer as managed service like lamda etc has nothing to do with migration.
upvoted 4 times

  youssefrm 8 months, 1 week ago

you still need expertise to use managed services ?
upvoted 1 times

  N9 8 months ago
APN Consulting partners

An APN Consulting Partner helps an AWS customer implement and manage an AWS cloud deployment. These types of partners
include system integrators, managed services providers, and other consultancies and agencies. An APN Technology Partner
provides software tools and services that are hosted on or integrated with AWS.
upvoted 10 times

  Ricx24 Highly Voted  9 months, 2 weeks ago

Selected Answer: B
AWS Partner Network (APN) Consulting Partners help customers design, architect, build,
migrate, and manage workloads and applications on Amazon Web Services.

https://d1.awsstatic.com/partner-network/APN_Consulting-Benefits_Brochure-Digital.pdf
upvoted 34 times

  BigCatG 1 week, 2 days ago

it is not a AWS service
upvoted 1 times

  jabadrian 2 days, 7 hours ago

or feature, which APN is
upvoted 1 times

  Zapara Most Recent  1 day, 19 hours ago

Selected Answer: D
Not B
AMS is an enterprise service that provides ongoing management of your AWS infrastructure.
https://docs.aws.amazon.com/managedservices/latest/userguide/what-is-ams.html
But AWS Partner Network it's community

The AWS Partner Network (APN) is a global community of partners that leverages programs, expertise, and resources to build, market,
and sell customer offerings.
upvoted 1 times

  jabadrian 2 days, 7 hours ago

Selected Answer: B
i made other exams and i'm sure it is B. cause not necesary you need a services, in this case this is a feature that AWS offers.
upvoted 1 times

  ramps_08 3 days, 5 hours ago

Selected Answer: D
I think the answer is D.
1. AWS Managed Service (AMS) is the name of services provided by AWS. Consulting Partners can be considered as service providers, but
they are not the name of AWS service or feature.
2. AMS, according to the service website, "helps you adopt AWS at scale and operate more efficiently and securely"
(https://aws.amazon.com/managed-services/). It is, in fact, heavly focused on operation stage rather than migration. However, in the
same website, the AMS diagram also includes migration stage, as a part of the "enable/sustain build or migrate/operate" cycle.
upvoted 1 times

  kartinja 1 week, 2 days ago

Selected Answer: B
Managed services has nothing to do with the answer.
upvoted 1 times

  sri073 1 week, 6 days ago

Selected Answer: D
managed service
upvoted 1 times

  Gulsah 2 weeks, 4 days ago

If it was ÀWS Partner Network (APN)`B could be another correct answer. There is no service or feature named as ÀWS Consulting Partners`
so I do not select B.

ÀWS Managed Services`is the answer and it helps the companies with the migration.

https://aws.amazon.com/managed-services/
upvoted 1 times

  Gulsah 2 weeks, 4 days ago

https://aws.amazon.com/managed-services/
upvoted 1 times

  u_ways 2 weeks, 5 days ago

Selected Answer: B
https://partners.amazonaws.com/
upvoted 1 times

  DanielHawes 2 weeks, 6 days ago

Selected Answer: B
Definitely B
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: B
AWS Consulting Partners are professional service firms that specialize in helping customers design, architect, migrate, and manage their
workloads on AWS. They have expertise and experience in AWS Cloud computing and can provide guidance, best practices, and hands-on
assistance throughout the migration process.

By engaging an AWS Consulting Partner, the company can benefit from their knowledge and experience to plan and execute a successful
migration strategy. Consulting Partners can help assess the existing infrastructure, design an architecture optimized for AWS, perform the
migration, and provide ongoing support and management.

AWS Consulting Partners are part of the AWS Partner Network (APN), and they undergo certification and validation processes to
demonstrate their expertise and capabilities in AWS services and solutions. The APN includes a range of consulting partners, system
integrators, and managed service providers with various specialties and industry focus.
upvoted 1 times

  7Rishi 3 weeks, 5 days ago

Answer is AWS Managed Services

Consulting Partners is not a AWS service, it is a collaboration of third parties.

AWS Managed Services (AMS) helps you adopt AWS at scale and operate more efficiently and securely.

Reference:
https://aws.amazon.com/managed-services/
upvoted 3 times

  dbwhddn10 1 month ago

Selected Answer: B
B. because of "migration" word.
upvoted 1 times
  harberdy 1 month ago
B. AWS Consulting Partners.AWS Consulting Partners are professional service firms that have undergone rigorous training and
certification processes to provide expert guidance and support for AWS cloud migrations. These partners have extensive experience in
planning, executing, and managing cloud migrations for various organizations.
upvoted 1 times

  SayanKundu 1 month ago

AWS Managed Service (AMS) helps to handle routine maintenance. AWS consulting partners are more focused on providing support
during migrating to AWS. Hence B.
upvoted 1 times

  EscobarL24 1 month ago

Answer is D: AWS Managed Services

Consulting Partners is not a AWS service, it is a collaboration of third parties.

AWS Managed Services (AMS) helps you adopt AWS at scale and operate more efficiently and securely.

Reference:
https://aws.amazon.com/managed-services/
upvoted 2 times
Question #18 Topic 1

Which AWS service or tool should a company use to centrally request and track service limit increases?

A. AWS Config

B. Service Quotas

C. AWS Service Catalog

D. AWS Budgets

Correct Answer: B

Community vote distribution

B (98%)

  30Miles Highly Voted  11 months, 1 week ago

Selected Answer: B
https://aws.amazon.com/about-aws/whats-new/2021/04/service-quotas-available-aws-govcloud-us-regions/
upvoted 10 times

  SmartLearner Highly Voted  9 months ago

Selected Answer: B
https://aws.amazon.com/about-aws/whats-new/2021/04/service-quotas-available-aws-govcloud-us-regions/
You can now use Service Quotas in AWS GovCloud (US) Regions to view and manage your service quotas at scale as your AWS workloads
grow.
upvoted 7 times

  man5484 Most Recent  3 weeks, 4 days ago

Selected Answer: B
Service Quotas is an AWS service that allows users to view, manage, and request increases in service limits for various AWS services.
Service limits are predefined limits set by AWS on the usage of specific resources or services within an AWS account.

By using Service Quotas, a company can centrally manage its service limits and request increases when needed. It provides visibility into
the current limits, usage, and available quota for each service. The service includes an interface to submit requests for limit increases,
track the status of the requests, and receive notifications on updates.
upvoted 4 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: B
B. Service Quotas
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Service Quotas
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Service Quotas
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Service Quotas
upvoted 1 times

  jvuoso 2 months ago

Selected Answer: B
B. Service Quotas are specifically thought for this use case
upvoted 1 times

  GorioDeCavite 2 months ago

B. Service Quotas
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: B
It is B
The AWS Service Quotas service can be used by companies to centrally request and track service limit increases for their AWS accounts.
AWS Service Quotas enables you to view and manage your AWS service quotas in a single location, monitor usage, and request increases
for those quotas.
upvoted 3 times
  kpatole 4 months ago
B is the Answer
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: D
D. AWS Budgets.
upvoted 1 times

  Onyejicash 5 months, 3 weeks ago

Selected Answer: B
Service Quotas enables you to manage your AWS service quotas from one central location
upvoted 1 times

  Saif93 6 months, 2 weeks ago

B is the answer.
upvoted 1 times

  Tanmay_17 7 months, 2 weeks ago

Service Quotas
upvoted 1 times

  N9 8 months ago
Selected Answer: B
https://docs.aws.amazon.com/general/latest/gr/aws_service_limits.html
upvoted 2 times

  Amandine 8 months, 2 weeks ago

I go with C
upvoted 1 times
Question #19 Topic 1

Which documentation does AWS Artifact provide?

A. Amazon EC2 terms and conditions

B. AWS ISO certifications

C. A history of a company's AWS spending

D. A list of previous-generation Amazon EC2 instance types

Correct Answer: B

Community vote distribution

B (93%) 7%

  Nucleric Highly Voted  10 months, 4 weeks ago

According to AWS:
What is an AWS artifact?
AWS Artifact is a web service that enables you to download AWS security and compliance documents such as ISO certifications and SOC
reports. User Guide. Describes key concepts of AWS Artifact and provides instructions for using the features of AWS Artifact.
upvoted 15 times

  man5484 Most Recent  3 weeks, 4 days ago

Selected Answer: B
AWS Artifact provides access to various compliance-related documents, including AWS ISO certifications. ISO certifications are
international standards that define best practices for information security management systems.

Through AWS Artifact, customers can access AWS's ISO certifications, such as ISO 27001, which specifies requirements for establishing,
implementing, maintaining, and continuously improving an information security management system within the context of AWS services.
upvoted 2 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: B
B. AWS ISO certification
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. AWS ISO certifications
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. AWS ISO certifications
upvoted 1 times

  GorioDeCavite 2 months ago

B. AWS ISO certifications
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: B
B. ISO Certifications.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  nesreenmhd123 7 months, 2 weeks ago

B is correct
upvoted 1 times

  Agil09 8 months ago

Selected Answer: B
ISO key word
upvoted 1 times
  JYKL88 8 months, 3 weeks ago
Selected Answer: B
vote B
upvoted 1 times

  Subash_Vk 8 months, 3 weeks ago

Selected Answer: B
Answer is B
upvoted 2 times

  ferrari_ 8 months, 3 weeks ago

correct answer is B. AWS ISO certifications.
upvoted 2 times

  Jhoy 8 months, 3 weeks ago

B. AWS Artifact provides on-demand downloads of AWS security and compliance documents, such as AWS ISO certifications, Payment Card
Industry (PCI), and Service Organization Control (SOC) reports.
upvoted 2 times

  Kantene 9 months, 1 week ago

Selected Answer: B
Vote B
upvoted 2 times

  newme 9 months, 3 weeks ago

Selected Answer: B
https://docs.aws.amazon.com/artifact/latest/ug/what-is-aws-artifact.html
upvoted 2 times

  samurosales 10 months, 3 weeks ago

Selected Answer: B
https://docs.aws.amazon.com/artifact/latest/ug/what-is-aws-artifact.html
seems like B its the correct answer
upvoted 1 times
Question #20 Topic 1

Which task requires using AWS account root user credentials?

A. Viewing billing information

B. Changing the AWS Support plan

C. Starting and stopping Amazon EC2 instances

D. Opening an AWS Support case

Correct Answer: B

Community vote distribution

B (61%) A (39%)

  Kantene Highly Voted  9 months, 1 week ago

Selected Answer: B
Vote for B
https://aws.amazon.com/premiumsupport/knowledge-center/change-support-plan/?nc1=h_ls
upvoted 6 times

  Quibble 1 month, 2 weeks ago

Your source says: "Use your AWS Identity and Access Management (IAM) user credentials with access permissions for AWS Support
plans."

This suggests that the correct answer is not B.

upvoted 3 times

  MrChandon Most Recent  1 week, 1 day ago

Selected Answer: A
Correct answer is A.

https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/control-access-billing.html#ControllingAccessWebsite-Activate
upvoted 1 times

  jabadrian 2 days, 7 hours ago

you can make a test for, create a user and give admin permissions and add access to billing features. the user will access with any
problem to the billing
upvoted 1 times

  MrChandon 1 week, 1 day ago

By default, IAM users and roles within an AWS account can't access the Billing console pages. This is true even if the IAM user or role
has IAM policies that grant access to certain Billing features. The AWS account root user can allow IAM users and roles access to Billing
console pages by using the Activate IAM access setting.
upvoted 1 times

  Chenbooo 2 weeks ago

Correct answer is B.
I Personally added the feature to view my billing information with the IAM user, you just need to enable this feature and you can see you
billing information.
but to change the support plan, for this you have to be Root.
upvoted 2 times

  BigDataBB 2 weeks, 6 days ago

Selected Answer: A
as wrote @hyper573
upvoted 1 times

  man5484 3 weeks, 4 days ago

Selected Answer: B
Changing the AWS Support plan, which includes upgrading or downgrading the level of support, typically requires the privileges
associated with the AWS account root user. The root user has full access and permissions to manage all aspects of the AWS account,
including billing and support-related configurations.
upvoted 1 times

  OlhaT 3 weeks, 5 days ago

B is the correct answer.
Proof: Check AWS Cloud Practitioner Essentials "User permissions and access" lesson in the Security module
https://explore.skillbuilder.aws/learn/course/134/play/62437/aws-cloud-practitioner-essentials;lp=82
upvoted 1 times
  Gokulkarthik 4 weeks ago
Selected Answer: A
i think A.
upvoted 1 times

  ElPatodba 1 month ago

Selected Answer: B
Agree B
upvoted 1 times

  kaps57 1 month, 1 week ago

Selected Answer: A
https://docs.aws.amazon.com/accounts/latest/reference/root-user-tasks.html
upvoted 1 times

  ares1027 1 month, 1 week ago

Answer is B
You can use the AWS Support Plans console to change your support plan for your AWS account. To change your support plan, you must
have AWS Identity and Access Management (IAM) permissions or sign in to your account as a root user.
https://docs.aws.amazon.com/awssupport/latest/user/changing-support-plans.html
upvoted 2 times

  LadyRose 1 month, 1 week ago

Selected Answer: A
refer this https://docs.aws.amazon.com/accounts/latest/reference/root-user-tasks.html
upvoted 1 times

  NickNameAlwaysTakenFFS 1 month, 2 weeks ago

Selected Answer: A
answer is A
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Changing the AWS Support plan
upvoted 1 times

  Quibble 1 month, 2 weeks ago

Selected Answer: A
The answer is A as stated explicitly by Amazon: https://docs.aws.amazon.com/managedservices/latest/userguide/how-when-to-use-
root.html

"The root user is the superuser within your AWS account. AMS monitors root usage. We recommend that you use root only for the few
tasks that require it, for example: changing your account settings, activating AWS Identity and Access Management (IAM) access to billing
and cost management, changing your root password, and enabling multi-factor authentication (MFA)."
upvoted 3 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Changing the AWS Support plan
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Viewing billing information.
upvoted 1 times

  GorioDeCavite 2 months ago

B. Changing the AWS Support plan
upvoted 1 times
Question #21 Topic 1

A company needs to simultaneously process hundreds of requests from different users.

Which combination of AWS services should the company use to build an operationally efficient solution?

A. Amazon Simple Queue Service (Amazon SQS) and AWS Lambda

B. AWS Data Pipeline and Amazon EC2

C. Amazon Kinesis and Amazon Athena

D. AWS Amplify and AWS AppSync

Correct Answer: B

Community vote distribution

A (96%) 4%

  Jaccky Highly Voted  11 months ago

Why there're so much controversial questions
upvoted 46 times

  aniketshaw29 1 week, 6 days ago

is isn't that the point of an exam
upvoted 1 times

  AnnieApples Highly Voted  11 months ago

Selected Answer: A
Data pipeline is not relevant for this question - it moves data between AWS compute / storage services and on prem data.
upvoted 19 times

  CarolinaSF Most Recent  3 days, 13 hours ago

Selected Answer: A
Letra A
upvoted 1 times

  santu83 1 week, 5 days ago

Answer A
upvoted 1 times

  nawasjuhi 1 week, 5 days ago

Selected Answer: B
Answer is B
upvoted 1 times

  chelosip 3 weeks, 1 day ago

Answer is B
AWS Data Pipeline, you can regularly access your data where it’s stored, transform and process it at scale, and efficiently transfer the
results to AWS services such as Amazon S3, Amazon RDS, Amazon DynamoDB, and Amazon EMR.

AWS Data Pipeline helps you easily create complex data processing workloads that are fault tolerant, repeatable, and highly available
ref: https://aws.amazon.com/datapipeline/
upvoted 2 times

  man5484 3 weeks, 3 days ago

Selected Answer: A
The combination of SQS and Lambda offers several benefits:
Scalability: SQS allows for handling a large number of requests, while Lambda automatically scales the processing capacity based on the
incoming workload.
Reliability: SQS ensures reliable message delivery, and Lambda functions are designed to be stateless and fault-tolerant.
Decoupling: The decoupling of services through SQS enables loose coupling, allowing components to evolve independently and scale
separately.
upvoted 3 times

  augu2255 3 weeks, 6 days ago

OPTION A
upvoted 1 times

  Tachy0n 4 weeks ago

Selected Answer: A
A.
upvoted 1 times
  cqrm3n 4 weeks ago
Amazon SQS is a fully managed message queuing service that decouples the sending and receiving of messages, allowing for
asynchronous communication between components. It can handle a large number of requests and offers features like message durability
and automatic scaling.

AWS Lambda is a serverless compute service that allows you to run code without provisioning or managing servers. It can be triggered by
events, such as messages in an Amazon SQS queue, and execute functions in response. Lambda scales automatically based on the
incoming request rate, ensuring efficient processing of multiple requests.

By combining Amazon SQS and AWS Lambda, the company can achieve asynchronous message processing, reliable message delivery, and
automatic scaling to handle the high volume of requests from different users efficiently.
upvoted 3 times

  sOI852POL 1 month, 1 week ago

Selected Answer: A
Correct answer is A.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: A
A. Amazon Simple Queue Service (Amazon SQS) and AWS Lambda
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: A
A. Amazon Simple Queue Service (Amazon SQS) and AWS Lambda
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Amazon Simple Queue Service (Amazon SQS) and AWS Lambda
upvoted 1 times

  LittleGray 1 month, 2 weeks ago

Selected Answer: A
A, because SQS is great for handling simultaneous requests
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

The answer is A
upvoted 1 times

  adrianap93 1 month, 4 weeks ago

Selected Answer: B
Should be B
upvoted 1 times
Question #22 Topic 1

What is the scope of a VPC within the AWS network?

A. A VPC can span all Availability Zones globally.

B. A VPC must span at least two subnets in each AWS Region.

C. A VPC must span at least two edge locations in each AWS Region.

D. A VPC can span all Availability Zones within an AWS Region.

Correct Answer: D

Community vote distribution

D (94%) 6%

  hviana Highly Voted  11 months ago

Correct answer D
* A VPC is a logically isolated piece of AWS cloud dedicated to your company. This means, you can run applications on overly provisioned,
highly available, and redundant infrastructure setup and it is managed by AWS. All the complexity of setting up a data center with cables,
server racks, hardware, power supply, etc. all are managed by AWS.
* A VPC belongs to a region.
* A VPC spans all availability zones.
* You can have multiple VPCs per region.
* VPC contains one or more subnets.
* A Subnet is tied to a single availability zone.
* EC2 instances launch into subnets.
upvoted 60 times

  man5484 Most Recent  3 weeks, 3 days ago

Selected Answer: D
A VPC is a logically isolated section of the AWS cloud where users can launch resources such as Amazon EC2 instances, Amazon RDS
databases, and other AWS services. It provides control over networking aspects, including IP addressing, subnets, routing tables, and
network gateways.

When creating a VPC, users can choose the AWS Region where it will reside. Within that Region, a VPC can span multiple Availability Zones.
Availability Zones are separate data centers within a given Region, each with redundant power, networking, and connectivity. By spanning
multiple Availability Zones, a VPC can provide high availability and fault tolerance for resources deployed within it.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: D
D. A VPC can span all Availability Zones within an AWS Region.
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: D
D. A VPC can span all Availability Zones within an AWS Region.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. A VPC can span all Availability Zones within an AWS Region.
upvoted 1 times

  imourada 1 month, 3 weeks ago

Selected Answer: D
D it the right one.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

D. VPC can span all Availability Zones within an AWS Region
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: D
Uma VPC pode ser configurada para ter um ou mais subnets (sub-redes) em diferentes zonas de disponibilidade, para garantir alta
disponibilidade e tolerância a falhas.
upvoted 2 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: B
B. Two subnets.
upvoted 1 times

  asju 4 months, 4 weeks ago

Ans D ; The VPC can span multiple availability zones,
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is D
upvoted 1 times

  Patil111 6 months ago

VPC is a regional offering So answer is D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  Biotech 6 months, 3 weeks ago

Selected Answer: D
VPC belongs to a region and within a region we can have multiple VPCs
upvoted 3 times

  Muhamad_Nady 6 months, 4 weeks ago

Vote for D
upvoted 1 times

  atulsinghh 7 months, 1 week ago

Selected Answer: D
correct answer is D
upvoted 1 times

  Amandine 8 months, 2 weeks ago

vote for D
upvoted 2 times
Question #23 Topic 1

Which of the following are components of an AWS Site-to-Site VPN connection? (Choose two.)

A. AWS Storage Gateway

B. Virtual private gateway

C. NAT gateway

D. Customer gateway

E. Internet gateway

Correct Answer: BD

Community vote distribution

BD (100%)

  real111 Highly Voted  10 months, 3 weeks ago

Selected Answer: BD
The VPC has an attached virtual private gateway, and your on-premises (remote) network includes a customer gateway device, which you
must configure to enable the Site-to-Site VPN connection. You set up the routing so that any traffic from the VPC bound for your network
is routed to the virtual private gateway.
upvoted 33 times

  kumaran1000001 Highly Voted  5 months ago

AWS Storage Gateway - it’s a hybrid cloud storage solution - not A

Virtual Private Gateway - It’s the AWS side of a VPN connection

NAT Gateway is used for the private subnet to connect to internet - not C

customer gateway is the customer side of a VPN connection

IGW is not site-to-site, it’s for providing internet access - not E

So B and D is the answers

upvoted 18 times

  man5484 Most Recent  3 weeks, 3 days ago

Selected Answer: BD
B. Virtual private gateway: A virtual private gateway is the AWS side of the VPN connection. It serves as the entry point for traffic from the
customer network into the AWS network.

D. Customer gateway: A customer gateway is the customer's side of the VPN connection. It represents the physical device or software
application located in the customer's on-premises network.
upvoted 3 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: BD
B. Virtual private gateway
D. Customer gateway
upvoted 1 times

  oguzbeliren 4 weeks ago

You basically route the inbound traffic of your VPC to Virtual Private Network.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Virtual private gateway
D. Customer gateway
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

B. Virtual private gateway
D. Customer gateway
upvoted 1 times

  Praveenl 4 months ago

B and D
upvoted 1 times
  elidiojose 4 months, 3 weeks ago
Selected Answer: BD
B. and D.
upvoted 2 times

  wabosi 5 months, 1 week ago

Selected Answer: BD
to me is BD
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is BD
upvoted 2 times

  henryvex 6 months, 1 week ago

Selected Answer: BD
B. Virtual private gateway
D. Customer gateway

An AWS Site-to-Site VPN connection is a way to securely connect your on-premises network to your VPC and leverage the resources in your
VPC. The components of an AWS Site-to-Site VPN connection are:

B. Virtual private gateway: A virtual private gateway is the Amazon VPC side of a VPN connection. It acts as the termination point for VPN
connections.

D. Customer gateway: A customer gateway is the on-premises side of a VPN connection. It is a physical or software appliance that is
connected to your on-premises network and is responsible for establishing the VPN connection to your VPC.

A. AWS Storage Gateway, C. NAT gateway, and E. Internet gateway are not components of an AWS Site-to-Site VPN connection. They are
different AWS services that provide different functionality.
upvoted 5 times

  Devjjwal 6 months, 2 weeks ago

B&D
Customer Gateway - Customer side
Virtual Private Gateway - AWS Side
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BD
BD is the answer.
upvoted 2 times

  Proctored_Expert 7 months, 2 weeks ago

Selected Answer: BD
The components of an AWS Site-to-Site VPN connection are:

D. Customer gateway: The customer gateway is a physical or software appliance that is owned by the customer and connected to the
customer's on-premises network. It serves as the entry point for the VPN connection and is responsible for terminating the VPN
connection and forwarding traffic between the on-premises network and the AWS Virtual Private Cloud (VPC).

B. Virtual private gateway: The virtual private gateway is a VPC component that serves as the entry point for VPN connections to the VPC.
It is responsible for routing traffic between the VPC and the customer gateway.
upvoted 5 times

  VSINHA9 7 months, 3 weeks ago

Answer is B & D
Below link is for diagram for better understanding
https://docs.aws.amazon.com/vpn/latest/s2svpn/Examples.html
upvoted 2 times

  cvoiceip 8 months ago

Answer is B) & D)
upvoted 1 times

  JYKL88 8 months, 3 weeks ago

Selected Answer: BD
VPN and customer gateway
upvoted 2 times
Question #24 Topic 1

A company needs to establish a connection between two VPCs. The VPCs are located in two different AWS Regions. The company wants to use
the existing infrastructure of the VPCs for this connection.
Which AWS service or feature can be used to establish this connection?

A. AWS Client VPN

B. VPC peering

C. AWS Direct Connect

D. VPC endpoints

Correct Answer: B
Reference:
https://docs.aws.amazon.com/vpc/latest/peering/what-is-vpc-peering.html

Community vote distribution

B (93%) 4%

  arisyuli Highly Voted  7 months, 3 weeks ago

vote for C , While VPC peering can be used to establish a connection between two VPCs, it has some limitations that make it less suitable
for this scenario. VPC peering is only available for VPCs that are located in the same AWS Region, so it cannot be used to establish a
connection between VPCs in different Regions. Additionally, VPC peering does not support transitive peering relationships, so it cannot be
used to connect more than two VPCs in a chain. In contrast, AWS Direct Connect can be used to establish a dedicated network connection
between VPCs in different Regions, and it supports multiple VPCs in a chain. This makes it a better fit for the scenario described in the
question.
upvoted 10 times

  khatudham 6 months ago

you are wrong. VPC peering allows connection between two VPCs in different region.
upvoted 10 times

  asaziz 5 months, 3 weeks ago

Yes exactly. Inter-Region VPC Peering is mentioned in documentation: https://docs.aws.amazon.com/vpc/latest/peering/what-is-
vpc-peering.html#:~:text=The%20VPCs%20can,of%20physical%20hardware
upvoted 6 times

  sharpi 1 month ago

I can confirm in June 2023, Inter region VPC Peering is possible. For AWS Direct Connect, its main selling point is to connect your on-
premise infrastructure. Transit gateway and virtual private gateway are more of an extra feature in my opinion.
upvoted 3 times

  sohrab Most Recent  2 weeks ago

VPC peering is incorrect because it connects VPCs within the same region. the AWS Direct Connect can be used for multiple VPCs within
the same AWS region or across different regions (using AWS Direct Connect Gateway). Also, it connects vpc with on-premises data centers.
correct: C
Incorrect: B
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: B
VPC peering is a networking connection between two VPCs that routes traffic between them using private IPv4 or IPv6 addresses. This is
the most cost-effective way to connect two VPCs in different Regions.
AWS Direct Connect is a dedicated network connection between your on-premises network and AWS. It is a good choice for connecting
two VPCs in different Regions, but it is more expensive than VPC peering.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

B. VPC peering
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. VPC peering
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. VPC peering
upvoted 1 times
  GorioDeCavite 1 month, 4 weeks ago
B. VPC peering
upvoted 1 times

  McLobster 2 months ago

Selected Answer: B
Answer is B, VPC peering.
https://docs.aws.amazon.com/vpc/latest/peering/what-is-vpc-peering.html

You can create a VPC peering connection between your own VPCs, or with a VPC in another AWS account. The VPCs can be in different
Regions (also known as an inter-Region VPC peering connection).
upvoted 1 times

  Gb007 2 months, 3 weeks ago

You can create a VPC peering connection between your own VPCs, or with a VPC in another AWS account. The VPCs can be in different
Regions. AWS uses the existing infrastructure of a VPC to create a VPC peering connection. Answer = Peering
upvoted 1 times

  try1260 3 months, 2 weeks ago

Selected Answer: B
D is not right because d need to establish a new connection between aws and the own datacenter
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Correct answer - B - Here is why
B. VPC peering can be used to establish a connection between two VPCs located in different AWS Regions while using their existing
infrastructure. VPC peering allows traffic to flow between the two VPCs privately using AWS' network. This can be useful for scenarios
where there is a need to transfer data between VPCs in different regions without exposing the data to the public internet.
upvoted 2 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: D
D. VPC Endpoints.
upvoted 1 times

  kumaran1000001 5 months ago

A. AWS Client VPC: the connection between client and AWS., not A

B. VPC Peering:

C. AWS Direct Connect: again connection between the client and AWS using the dedicated connection. not C

D. VPC Endpoint: the connection between VPC and a supported AWS Service. Not D

So the answer should be B

upvoted 4 times

  MillyRok 5 months ago

B, "You can create a VPC peering connection between your own VPCs, with a VPC in another AWS account, or with a VPC in a different AWS
Region."
upvoted 2 times

  Abzstar 5 months, 2 weeks ago

correct answer is B
upvoted 1 times

  asaziz 5 months, 3 weeks ago

Selected Answer: B
Inter-Region VPC Peering is mentioned in documentation:
https://docs.aws.amazon.com/vpc/latest/peering/what-is-vpc-peering.html#:~:text=The%20VPCs%20can,of%20physical%20hardware
upvoted 2 times

  SrSousa 6 months ago

B) VPC peering
Why?? You can peer any two VPCs in different Region

It's simple
Documentation: https://docs.aws.amazon.com/devicefarm/latest/developerguide/amazon-vpc-cross-region.html
upvoted 1 times
Question #25 Topic 1

According to the AWS shared responsibility model, what responsibility does a customer have when using Amazon RDS to host a database?

A. Manage connections to the database

B. Install Microsoft SQL Server

C. Design encryption-at-rest strategies

D. Apply minor database patches

Correct Answer: A

Community vote distribution

A (71%) C (28%)

  vadiminski_a Highly Voted  9 months, 2 weeks ago

Selected Answer: A
Not C because:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.Encryption.html
upvoted 28 times

  SO_CH Highly Voted  1 month, 3 weeks ago

Not C : Design encryption-at-rest strategies:
Amazon RDS offers encryption-at-rest for database storage by default. It handles the encryption of data on disk and manages the
associated keys. As a customer, you can enable encryption when creating an Amazon RDS instance, but you don't need to design the
encryption strategy yourself.
upvoted 12 times

  khanda Most Recent  3 weeks, 3 days ago

Selected Answer: A
You do not design the encryption strategy but enable it during provisioning as an option. Correct answer it then A.
upvoted 3 times

  man5484 3 weeks, 3 days ago

Selected Answer: C
The AWS shared responsibility model outlines the division of responsibilities between AWS and the customer in the context of security and
compliance. AWS takes care of the security of the cloud infrastructure, while the customer is responsible for managing the security of their
applications and data.

When using Amazon RDS, AWS manages the underlying infrastructure, including hardware, networking, and database software patching
for the managed database service. However, the customer is responsible for implementing encryption-at-rest strategies to protect the
data stored within the RDS instance.
Option A, managing connections to the database, is typically handled by the application or the customer's responsibility outside of the
database service itself.
upvoted 1 times

  7Rishi 3 weeks, 5 days ago

Answer is Manage connections to the database

Amazon RDS encrypts your databases using keys you manage with the AWS Key Management Service (KMS). On a database instance
running with Amazon RDS encryption, data stored at rest in the underlying storage is encrypted, as are its automated backups, read
replicas, and snapshots. Amazon RDS encryption uses the industry standard AES-256 encryption algorithm to encrypt your data on the
server that hosts your Amazon RDS instance.

Designing an encryption strategy means building the strategy from scratch (including choosing the best-fit encryption algorithm for that
strategy), as mentioned before, selecting a one is different from design/create a new one.

Reference:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.Encryption.html
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

they don't manage the connection we do. they only provide storage but by providing security to the data at rest I think it's C: Design
encryption-at-rest strategies
upvoted 1 times

  ElPatodba 1 month ago

Selected Answer: C
Despite that, I am very agree with A too, I will pick up C. Tricky question
upvoted 1 times
  ElPatodba 1 month ago
Selected Answer: A
I am 100% with A.
upvoted 1 times

  LadyRose 1 month, 1 week ago

Selected Answer: A
Its definatly A
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: A
A. Manage connections to the database.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Manage connections to the database.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

Should A
upvoted 1 times

  arnabsarkar2601 2 months ago

Selected Answer: C
According to Chatgpt it is C

C. Design encryption-at-rest strategies.

While Amazon RDS manages the underlying infrastructure and operational tasks such as hardware provisioning, database software
installation, and backups, the customer is responsible for designing and implementing encryption-at-rest strategies to protect the data
stored in the database. This includes choosing and configuring the appropriate encryption options provided by Amazon RDS, such as
encrypting the database storage using AWS Key Management Service (KMS) or using Transparent Data Encryption (TDE) for specific
database engines.
upvoted 2 times

  davemark 2 months ago

Manage connections to the database
ExxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxE
upvoted 1 times

  rachmatthidayat 2 months, 1 week ago

It's C. The encryption design strategy is not part of AWS scope, its customer responsiblity. For the shared responsibility model, encryption
strategy is on Customer layer, not AWS. The encryption for RDS is not default setting by the way, the customer need to configure it
manually based on their design strategy.

Reference:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.Encryption.html#:~:text=To%20encrypt%20a%20new%20DB%20in
stance%2C%20choose%20Enable%20encryption%20on%20the%20Amazon%20RDS%20console.%20For%20information%20on%20creating
%20a%20DB%20instance%2C%20see%20Creating%20an%20Amazon%20RDS%20DB%20instance.
upvoted 2 times

  Bindox 3 months ago

Selected Answer: A
A is in the cloud, C is of the cloud. Customer is responsible for in the cloud.
upvoted 2 times

  ImqQT 3 months ago

Selected Answer: C
Customers are responsible for managing their data (including encryption options), classifying their assets, and using IAM tools to apply
the appropriate permissions.
upvoted 1 times
Question #26 Topic 1

What are some advantages of using Amazon EC2 instances to host applications in the AWS Cloud instead of on premises? (Choose two.)

A. EC2 includes operating system patch management.

B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM).

C. EC2 has a 100% service level agreement (SLA).

D. EC2 has a flexible, pay-as-you-go pricing model.

E. EC2 has automatic storage cost optimization.

Correct Answer: DE

Community vote distribution

BD (77%) DE (22%)

  jr_2022 Highly Voted  11 months, 1 week ago

I think it should be B and D. Based on https://www.amazonaws.cn/en/ec2/
upvoted 28 times

  highlightfilm 11 months, 1 week ago

B technically isn’t an advantage. You can implement Audit logging (Win Event Viewer etc.), Identity and Access Management on prem
(Active Directory) and also on-prem networks are already behind a firewall protecting from public internet traffic which VPC offers but
in the cloud. C and D are the right answers imo
upvoted 3 times

  tinyfoot 10 months, 3 weeks ago

C isn't true. The only AWS service with a 100% uptime SLA is route 53. EC2 is around 99.99% to 99.5%.
https://aws.amazon.com/compute/sla/

I do think that native integrations between EC2 and the various AWS services like cloudtrail/VPC/IAM is an advantage over on-prem
solutions which tend to be more piecemeal. While I agree that VPC and IAM there may be equivalent to on-prem solutions, you
cannot track API calls on your on-prem like you would via CloudTrail.

As for Option E of automatic cost optimization for storage cost. I do not believe that instance store scales up (vertical scaling)
automatically. ASGs only spin up more instances of the same type. EBS does not scale and you pay for what is provisioned whether
you use or not.
upvoted 15 times

  anagy11 Highly Voted  10 months, 2 weeks ago

Selected Answer: BD
BD as EC2 doesn't have any storage cost optimization options, only S3 has:
https://aws.amazon.com/s3/cost-optimization/
upvoted 15 times

  Shane77 Most Recent  1 week, 2 days ago

BD is the correct answer!
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: DE
https://aws.amazon.com/ec2/instance-types/
D. Pay-as-you-go.
E. Storage optimized.
upvoted 1 times

  Zapara 1 day, 18 hours ago

Storage optimized => YES
BUT in question
automatic storage COST optimization
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: BD
B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM): Amazon EC2 seamlessly integrates
with other AWS services like Amazon VPC for networking, AWS CloudTrail for auditing and monitoring, and IAM for access control and
security management. This integration enhances the overall functionality and security of the application infrastructure.

D. EC2 has a flexible, pay-as-you-go pricing model: Amazon EC2 offers a flexible pricing model based on usage. Users can choose from a
variety of instance types and sizes, paying only for the resources consumed on an hourly or per-second basis. This pay-as-you-go model
eliminates the need for upfront infrastructure investment and allows for cost optimization by scaling resources up or down based on
application demands.
upvoted 2 times
  Tachy0n 4 weeks ago
Selected Answer: BD
EC2 does not have automatic storage cost optimization. It is up to the user to manage and optimize storage costs for EC2 instances.
upvoted 1 times

  sai_varma 4 weeks, 1 day ago

I think it should be A and D
upvoted 3 times

  harberdy 1 month ago

B&D is the answer. (E) EC2 has automatic storage cost optimization: EC2 does not provide automatic storage cost optimization. Storage
costs are separate and need to be managed and optimized independently of EC2 instances.
upvoted 1 times

  kk9550 1 month, 1 week ago

Selected Answer: BD
"EC2 has automatic storage cost optimization" This statement is not accurate. EC2 provides storage options such as Amazon EBS (Elastic
Block Store) and instance store, but it does not have automatic storage cost optimization. It is up to the user to monitor and manage their
storage usage and costs.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: BD
B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM).
D. EC2 has a flexible, pay-as-you-go pricing model.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM).
D. EC2 has a flexible, pay-as-you-go pricing model.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

I think its D and E
upvoted 2 times

  adrianap93 1 month, 4 weeks ago

Selected Answer: BD
Should be BD
upvoted 1 times

  amelgr 2 months ago

B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM).
D. EC2 has a flexible, pay-as-you-go pricing model.
upvoted 1 times

  vickyb22 2 months, 2 weeks ago

Selected Answer: BD
E. EC2 has automatic storage cost optimization.
With Amazon EC2, you have control over your storage options, including Amazon EBS (Elastic Block Store), which provides durable block-
level storage for your instances. You can choose the storage type and size that best suits your application's requirements, and EC2
provides features such as Elastic Volumes and Elastic Snapshots for managing and optimizing storage costs automatically.

THATS WHY B & D

upvoted 1 times

  pedrolaez 2 months, 2 weeks ago

Selected Answer: BD
B and D because it's the way.
upvoted 2 times

  Marcelo_Costa 2 months, 3 weeks ago

Selected Answer: BD
The advantages of using Amazon EC2 instances to host applications in the AWS Cloud instead of on premises are:

B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM), which makes it easier to configure
and manage resources in the cloud.
D. EC2 has a flexible, pay-as-you-go pricing model that allows customers to pay only for what they use, which can result in cost savings
compared to on-premises infrastructure.
Option A is incorrect because while EC2 provides options for automating operating system patch management, it is not included by
default. Option C is incorrect because EC2 does not have a 100% service level agreement (SLA); the SLA varies depending on the type of
EC2 instance used. Option E is incorrect because EC2 does not have automatic storage cost optimization; customers need to manage and
optimize their own storage usage.
upvoted 2 times
Question #27 Topic 1

A user needs to determine whether an Amazon EC2 instance's security groups were modified in the last month.
How can the user see if a change was made?

A. Use Amazon EC2 to see if the security group was changed.

B. Use AWS Identity and Access Management (IAM) to see which user or role changed the security group.

C. Use AWS CloudTrail to see if the security group was changed.

D. Use Amazon CloudWatch to see if the security group was changed.

Correct Answer: C

Community vote distribution

C (97%)

  41km Highly Voted  11 months ago

Selected Answer: C
CloudTrail is the correct answer:
https://aws.amazon.com/cloudtrail/features/
"CloudTrail records user activity and API calls across AWS services as events. CloudTrail events help you answer the questions of "who did
what, where, and when?""
upvoted 13 times

  amitpandharikar Most Recent  1 week, 1 day ago

Selected Answer: C
NAAAAA
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: C
AWS CloudTrail is a service that provides a detailed audit trail of events and actions taken within an AWS account. It captures and logs API
activity, including changes made to resources like security groups. By enabling CloudTrail and reviewing its logs, the user can track and
identify any modifications made to the EC2 instance's security groups.

CloudTrail records information such as the identity of the user or role making the changes, the time of the change, and the details of the
modification. This allows users to gain visibility into the actions performed on their resources and supports security analysis, resource
change tracking, and compliance auditing.
upvoted 2 times

  STOPITALREADY 4 weeks, 1 day ago

C. Use AWS CloudTrail
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: C
C. Use AWS CloudTrail to see if the security group was changed.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. Use AWS CloudTrail to see if the security group was changed.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

i think its C
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: C
Todo rastreamento de atividades dos usuários pode ser feito pelo CloudTrail.
upvoted 1 times

  Rama_K 3 months, 4 weeks ago

C AWS cloud trail
upvoted 1 times

  Guru4Cloud 4 months ago

  Amycert 5 months, 1 week ago

Selected Answer: C
aws cloudtrail
upvoted 1 times

  Cloudalina 5 months, 1 week ago

C. Use AWS CloudTrail to see if the security group was changed.

AWS CloudTrail provides a history of events for an AWS account, including API calls made to EC2 and changes made to security groups. By
using CloudTrail, the user can determine whether a change was made to the security groups of an EC2 instance in the last month.
CloudTrail logs can be searched and filtered to identify security group-related events, including changes to the rules, additions or removal
of security groups, and modifications to existing security groups.

Option A is not the recommended way to see if the security group was changed, as EC2 provides limited access to its own logs and events.

Option B is not directly relevant, as IAM is not used to track changes to security groups.

Option D is also not the recommended way to see if the security group was changed, as CloudWatch is primarily used for monitoring and
alerting on performance metrics, rather than tracking configuration changes.
upvoted 4 times

  wabosi 5 months, 1 week ago

Selected Answer: C
I vote for C
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is C
upvoted 1 times

  Goutambag 6 months ago

Should be option B
AWS Identity and Access Management (IAM)
upvoted 2 times

  shwetakpl 3 days, 7 hours ago

Incorrect
upvoted 1 times

  Amycert 5 months, 1 week ago

not at all, IAM is for access permissions
upvoted 1 times

  akbiyik 6 months, 1 week ago

Selected Answer: C
Log File Integrity Validation
upvoted 1 times
Question #28 Topic 1

Which AWS service will help protect applications running on AWS from DDoS attacks?

A. Amazon GuardDuty

B. AWS WAF

C. AWS Shield

D. Amazon Inspector

Correct Answer: C

Community vote distribution

C (95%) 5%

  JYKL88 Highly Voted  8 months, 3 weeks ago

Selected Answer: C
shield is the answer to DDoS
if you see DDoS, choose shield
upvoted 13 times

  man5484 Most Recent  3 weeks, 3 days ago

Selected Answer: C
Automatic protection: AWS Shield provides automatic protection for all AWS customers against common and most frequently observed
DDoS attacks, without the need for any additional setup.
DDoS response team: AWS Shield has a dedicated DDoS Response Team (DRT) available 24/7 to monitor and mitigate DDoS attacks,
providing expertise and support during an attack.

Scalability: AWS Shield is designed to scale and handle high-volume DDoS attacks, leveraging AWS's global network infrastructure.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

Selected Answer: C
C. AWS Shield
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: C
C. AWS Shield
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. AWS Shield
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

i think its A
upvoted 1 times

  shwetakpl 3 days, 7 hours ago

Incorrect
upvoted 1 times

  subhaMish 2 months, 2 weeks ago

C- AWS Shield
upvoted 1 times

  Max143 4 months, 2 weeks ago

In the exam on 17/03/2023
upvoted 4 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: C
C. AWS Shield
upvoted 1 times

  wabosi 5 months, 1 week ago

Selected Answer: C
I vote for C
upvoted 1 times
  Abzstar 5 months, 2 weeks ago
correct answer is C
upvoted 1 times

  nour 5 months, 2 weeks ago

Selected Answer: C
You can use AWS WAF, AWS Shield, and AWS Firewall Manager together to create a comprehensive security solution.
Use AWS WAF to monitor requests that are forwarded to your web applications and control access to your content.
Use AWS Shield to help protect against DDoS attacks.
Use AWS Firewall Manager to set up your firewall rules and apply the rules automatically across accounts and resources, even as new
resources are added.
upvoted 4 times

  Patil111 6 months ago

AWS Shield standard and shield advanced protect from DDO's attacks.
upvoted 1 times

  konieczny69 6 months, 1 week ago

Selected Answer: C
https://aws.amazon.com/shield/
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Kantene 9 months, 1 week ago

Vote for C. Shield or Shield Advanced
upvoted 2 times

  ccpmad 9 months, 1 week ago

Selected Answer: C
c shield, firewall is to protect from web app attacks
upvoted 2 times
Question #29 Topic 1

Which AWS service or feature acts as a firewall for Amazon EC2 instances?

A. Network ACL

B. Elastic network interface

C. Amazon VPC

D. Security group

Correct Answer: D

Community vote distribution

D (100%)

  JYKL88 Highly Voted  8 months, 3 weeks ago

Selected Answer: D
Security group - at instance level
NACL - subnet level
upvoted 17 times

  osho_garg Most Recent  2 weeks ago

D. Security Group
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: D
A security group acts as a virtual firewall for an Amazon EC2 instance. It controls inbound and outbound traffic at the instance level and
provides a set of rules (security group rules) that determine what traffic is allowed to reach the EC2 instance and what traffic is allowed to
leave from it.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

Selected Answer: D
D. Security group.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: D
D. Security group.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. Security group.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

i think its D
upvoted 1 times

  subhaMish 2 months, 2 weeks ago

D - Security group
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: D
D. Security Group.
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times
  parku 8 months, 1 week ago
Selected Answer: D
https://www.knowledgehut.com/tutorials/aws/nacl-vs-security-groups
upvoted 2 times

  amd112b 9 months ago

Selected Answer: D
Security Group
upvoted 1 times

  Kantene 9 months, 1 week ago

Selected Answer: D
Vote for D
A security group is a virtual firewall that controls inbound and outbound traffic for an Amazon EC2 instance.
upvoted 1 times

  vichu0308 10 months, 2 weeks ago

NACL are virtual firewall for subnets whereas Security groups are virtual firewall for ec2 instances. So its D
upvoted 4 times

  sumanshu 10 months, 3 weeks ago

Vote for D
upvoted 1 times

  Julio_P 10 months, 4 weeks ago

Selected Answer: D
D is correct in that case
upvoted 1 times
Question #30 Topic 1

How does the AWS Cloud pricing model differ from the traditional on-premises storage pricing model?

A. AWS resources do not incur costs

B. There are no infrastructure operating costs

C. There are no upfront cost commitments

D. There are no software licensing costs

Correct Answer: B

Community vote distribution

C (57%) B (43%)

  41km Highly Voted  11 months ago

Selected Answer: B
I believe B is correct, because in AWS you pay for stroage, compute, etc. You don't pay for infra ops directly. On the other hand you can
make commitments with saving plans or reserved instances.
upvoted 40 times

  SmartLearner 9 months ago

Best answer is C.
upvoted 11 times

  Blimpy 8 months, 3 weeks ago

Yes answer is C bcs the question is specific to Storage.. there are no upfront commitments (savings plan etc apply to ec2 instances
only)
upvoted 12 times

  Richard_S 4 months ago

It's a nasty question but I think this answer highlights the key word "storage" .. yes, you can get an EC2 reserved instance and
pay it all upfront. But not for Storage. I think answer B is a distractor and attempting to infer it's about CAPEX.
upvoted 4 times

  amd112b 9 months ago

I Agree
upvoted 2 times

  Nucleric 10 months, 3 weeks ago

I think you are right
upvoted 1 times

  oab720 Highly Voted  11 months ago

Selected Answer: C
C. No upfront cost as you don't have to acquire hardware. I disagree with B being correct because you indirectly pay infra ops for the
compute services you use albeit through AWS.
upvoted 29 times

  Gulsah Most Recent  2 weeks, 3 days ago

Selected Answer: C
https://aws.amazon.com/pricing/?aws-products-pricing
AWS offers you a pay-as-you-go approach for pricing for the vast majority of our cloud services. With AWS you pay only for the individual
services you need, for as long as you use them, and without requiring long-term contracts or complex licensing.
upvoted 1 times

  Gulsah 1 week, 2 days ago

AWS Cloud pricing model for s̀torage`
upvoted 1 times

  u_ways 2 weeks, 4 days ago

Selected Answer: C
No upfront costs as AWS business model is OpEx, not CapEx.
upvoted 2 times

  man5484 3 weeks, 3 days ago

Selected Answer: C
There are no upfront cost commitments: With traditional on-premises storage, businesses often need to make significant upfront
investments in hardware, software licenses, and infrastructure. In contrast, AWS Cloud allows users to pay for the resources they consume
on a pay-as-you-go basis without any upfront cost commitments. This allows for greater flexibility and cost optimization as businesses can
scale resources up or down based on their needs.
upvoted 2 times
  7Rishi 3 weeks, 5 days ago
Answer is There are no upfront cost commitments

No upfront or capital expenditure. But On premise or AWS will have operational expenditure (OpEx), and the same is managed/covered by
the fees you pay for AWS.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

Selected Answer: C
C. There are no upfront cost commitments
upvoted 1 times

  Oripresa 1 month ago

Selected Answer: C
el coste por infraestructura lo tienes, pero no el desembolso inicial
upvoted 1 times

  ElPatodba 1 month ago

Selected Answer: C
B is also a very good answer, I believe that BC are correct.
upvoted 1 times

  harberdy 1 month ago

C is the correct answer. It Cant be B (Infrastructure operating costs) because While the AWS Cloud eliminates the need for managing
physical infrastructure, there are still operating costs associated with running and managing the virtual infrastructure on AWS. These
costs include the usage-based charges for compute resources, storage, data transfer, and other services.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: C
No upfront costs: With AWS, there are no upfront costs or long-term commitments required. You can start using AWS services without any
initial investment. In the on-premises model, you typically need to purchase hardware, software licenses, and maintenance contracts
upfront.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. There are no upfront cost commitments.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

I think its B
upvoted 1 times

  louisvuitton12 2 months ago

Selected Answer: C
C
While the other options in the question (A, B, and D) also highlight differences between AWS Cloud and traditional on-premises storage
pricing, they are not as distinctive or comprehensive as the absence of upfront cost commitments. AWS resources do incur costs (option
A), although the costs are based on actual usage. Infrastructure operating costs (option B) can be reduced in AWS compared to on-
premises storage, but they are not entirely eliminated. Similarly, while AWS eliminates the need for some software licensing costs (option
D), there may still be licensing costs associated with specific software or services used in the AWS environment.
upvoted 2 times

  davemark 2 months ago

C: There are no upfront cost commitments
ExxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxE
upvoted 1 times

  Oripresa 2 months, 1 week ago

Selected Answer: B
hay costes iniciales por eso la respuesta es la b. no hay costes de infraestructura
upvoted 1 times

  subhaMish 2 months, 2 weeks ago

C , I beilieve as there is no upfront cost.
upvoted 1 times
Question #31 Topic 1

A company has a single Amazon EC2 instance. The company wants to adopt a highly available architecture.
What can the company do to meet this requirement?

A. Scale vertically to a larger EC2 instance size.

B. Scale horizontally across multiple Availability Zones.

C. Purchase an EC2 Dedicated Instance.

D. Change the EC2 instance family to a compute optimized instance.

Correct Answer: B

Community vote distribution

B (100%)

  Avi_best 3 days, 22 hours ago

There are two types of Scaling :
Vertical & Horizontal

Vertical -: Means increasing the configuration of the same existing machine

Horizontal -: Adding additional instances to share the work load, so answer her should be "B"
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: B
Scaling horizontally across multiple Availability Zones allows for redundancy and fault tolerance. By deploying the EC2 instance in multiple
Availability Zones, the company ensures that if one Availability Zone experiences an outage or failure, the application can continue
running in another Availability Zone without interruption.
upvoted 1 times

  Mayor075 1 month, 2 weeks ago

Please there is something I don't understand . is it possible to put one EC2 instance in a multiple availability? putting just one instance in
us.west 1A and us west 1b . you can only scale one instance vertically by increasing the size of the Ec2 instance .
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
B. Scale horizontally across multiple Availability Zones.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Scale horizontally across multiple Availability Zones.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

I THINK ITS A
upvoted 1 times

  potoki 2 months ago

Selected Answer: B
SCALLING HORIZONTALLY ACCROSS MULTIPLE AZs IS CORRECT
upvoted 1 times

  lwf2 2 months, 1 week ago

Argh, got tripped up and answered Dedicated. B is right.
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: B
Se estamos falando de disponibilidade, está relacionado a Zonas de Disponibilidade.
upvoted 1 times

  folksong 3 months, 3 weeks ago

Selected Answer: B
B - scale horizontally
upvoted 1 times
  elidiojose 4 months, 3 weeks ago
Selected Answer: B
B. Scale horizontaly.
upvoted 1 times

  kumaran1000001 4 months, 4 weeks ago

A - vertical scaling will still have a single point failure

B - Scale Horizontally across multiple AZs is the right solution

C - A dedicated instance will not solve HA but might help to address compliance issues.

D - Compute-optimized storage will perform better but will not solve HA

So B.
upvoted 3 times

  Abzstar 5 months, 2 weeks ago

correct answer is b
upvoted 1 times

  Devjjwal 6 months, 2 weeks ago

Selected Answer: B
Highly availablme means one down, other is there .. hence B
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  stanvv 6 months, 3 weeks ago

Selected Answer: B
highly available = horizontal scale
upvoted 2 times

  Dkab 7 months, 3 weeks ago

Vote B
upvoted 1 times
Question #32 Topic 1

A company's on-premises application deployment cycle was 3-4 weeks. After migrating to the AWS Cloud, the company can deploy the application
in 2-3 days.
Which benefit has this company experienced by moving to the AWS Cloud?

A. Elasticity

B. Flexibility

C. Agility

D. Resilience

Correct Answer: A

Community vote distribution

C (98%)

  still_someone_else Highly Voted  11 months, 1 week ago

I'm pretty sure it should be Agility
upvoted 54 times

  AlaN652 Highly Voted  9 months, 3 weeks ago

Selected Answer: C
Answer is C. This is the definition of agility as per AWS : Increase speed and agility – In a cloud computing environment, new IT resources
are only a click away, which means that you reduce the time to make those resources available to your developers from weeks to just
minutes. This results in a dramatic increase in agility for the organization, since the cost and time it takes to experiment and develop is
significantly lower.
upvoted 28 times

  Avi_best Most Recent  3 days, 22 hours ago

Out of many possible correct options, the option- Aglility is the first & foremost thing which is very relevant, so "C"
upvoted 1 times

  Tarasharma 1 week, 5 days ago

m confused with answers. The page says A and many say C ... I hope I pass the exam
upvoted 1 times

  Gaston_vargas 1 week ago

Aprobaste?
upvoted 1 times

  r_vasu 2 weeks, 6 days ago

Selected Answer: C
It has to be agility. elasticity refers to the ability of an application or infrastructure to automatically scale resources up or down based on
demand while agility refers to the ability of an organization to quickly and easily adapt
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: C
Agility refers to the ability to quickly and easily adapt to changes, innovate, and respond to customer needs. By migrating to the AWS
Cloud, the company has gained the ability to deploy their application much faster, significantly reducing the time it takes to bring new
features, updates, or fixes to their customers.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

Selected Answer: C
C:Agility
upvoted 1 times

  MIGUE27 1 month ago

agilidade
upvoted 2 times

  yogi_1610 1 month, 1 week ago

Selected Answer: C
It should be C, meaning of agility itself is the power of moving quickly and easily;
upvoted 2 times
  Vijaykpm 1 month, 1 week ago
Selected Answer: C
Agility definitely!
upvoted 1 times

  caffein 1 month, 1 week ago

C
From AWS:
https://repost.aws/questions/QU89MN7WVwTcCsNELreRby8A/agility-or-elasticity
upvoted 1 times

  kk9550 1 month, 1 week ago

Agility
upvoted 1 times

  bgcodes 1 month, 2 weeks ago

Selected Answer: C
Elasticity refers to the ability to dynamically scale resources up or down based on demand. While elasticity is a key characteristic of the
AWS Cloud, the given scenario specifically highlights the reduction in deployment time, not scaling.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: C
Agility: The company can quickly respond to business needs and deploy applications faster, allowing for faster time-to-market for new
features, updates, or bug fixes. This increased agility enables the company to stay competitive in a rapidly changing market.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. Agility
upvoted 1 times

  lordnightslash 1 month, 4 weeks ago

Selected Answer: A
has to be a
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

I THINK ITS A
upvoted 1 times
Question #33 Topic 1

Which of the following are included in AWS Enterprise Support? (Choose two.)

A. AWS technical account manager (TAM)

B. AWS partner-led support

C. AWS Professional Services

D. Support of third-party software integration to AWS

E. 5-minute response time for critical issues

Correct Answer: AD

Community vote distribution

AD (83%) Other

  danielolasupo02 Highly Voted  6 months ago

Correct Answer is A&D, hope this picture summary helps --> https://i.ytimg.com/vi/0LQcq_zyNmg/maxresdefault.jpg
upvoted 28 times

  SrSousa 6 months ago

1 image, all answers solved.
upvoted 6 times

  kumaran1000001 Highly Voted  4 months, 4 weeks ago

A. TAM is included
B. offered by AWS partners, not by AWS. So, Not B
C. It's a consulting service from AWS. Not C.
D. support of 3rd-party software is the responsibility of customers or 3rd parties.
E. is included.
A & E are the answers.
upvoted 9 times

  Kea_Noku 4 months, 2 weeks ago

E can't be correct. Response time is 15 mins. I think the answer is A&D. With Enterprise, you get 3rd-party software support.
https://aws.amazon.com/premiumsupport/plans/
upvoted 5 times

  DominusUser Most Recent  2 weeks, 4 days ago

Selected Answer: AD
With Enterprise level support you get:
Third-party software support for guidance, configuration, and troubleshooting of AWS interoperability with many common OSs, platforms,
and app stack components.

You will also get access to a Technical Account Manager (TAM) who will provide consultative architectural and operational guidance
delivered in the context of your apps and use-cases to help you achieve the greatest value from AWS.
upvoted 2 times

  Gulsah 2 weeks, 4 days ago

Selected Answer: AE
D can`t be. AWS support covers AWS services and infrastructure only.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

https://aws.amazon.com/premiumsupport/plans/enterprise/
Changing my response, AD is correct, AE is incorrect.
If it was 15-minute, the correct answer would be ADE.
upvoted 1 times

  khanda 3 weeks, 3 days ago

Selected Answer: AD
Business/Mission-critical system down: < 15 minutes --- not 5min. So A and D are correct.
upvoted 2 times

  man5484 3 weeks, 3 days ago

Selected Answer: AD
A. AWS technical account manager (TAM): AWS Enterprise Support provides access to a dedicated technical account manager (TAM) who
acts as a single point of contact for the customer. The TAM helps with operational and technical guidance, architectural reviews, and
ongoing support to ensure the customer's success on AWS.

D. Support of third-party software integration to AWS: AWS Enterprise Support includes support for integrating third-party software with
AWS services. This support helps customers with troubleshooting, guidance, and best practices for integrating and optimizing their
applications and software on the AWS platform.
upvoted 2 times
  LadyRose 1 month, 1 week ago
Selected Answer: AD
E is wrong because response time is 15 mins
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: AD
https://aws.amazon.com/premiumsupport/plans/enterprise/
Answer Is A & D
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

A. AWS technical account manager (TAM)
E. 5-minute response time for critical issues.
upvoted 1 times

  SO_CH 1 month, 3 weeks ago

E option is absulately wrong. Answer is A and D. A is obvious why. For option D is Third-party software support is available only to AWS
Support customers enrolled for Business or Enterprise Support.
https://aws.amazon.com/premiumsupport/third-party-
applications/#:~:text=Third%2Dparty%20software%20support%20is,for%20Business%20or%20Enterprise%20Support.
upvoted 1 times

  lwf2 2 months, 1 week ago

Selected Answer: AD
E (5 minute response) isn't right, per: https://aws.amazon.com/premiumsupport/plans/
General guidance: < 24 hours
System impaired: < 12 hours
Production system impaired: < 4 hours
Production system down: < 1 hour
Business/Mission-critical system down: < 15 minutes
upvoted 3 times

  roberjunquera 2 months, 3 weeks ago

Selected Answer: AE
A. AWS technical account manager (TAM)
E. 5-minute response time for critical issues

Explanation:

AWS Enterprise Support includes a dedicated technical account manager (TAM) and a 5-minute response time for critical issues. It also
includes support of third-party software integration to AWS. AWS Professional Services and partner-led support are not included in AWS
Enterprise Support.
upvoted 1 times

  dacintoZ 3 months, 1 week ago

The correct options are A and D. Support for third party software is included in the Enterprise Support plan. See
https://aws.amazon.com/premiumsupport/plans/enterprise/
upvoted 1 times

  Andres98 3 months, 1 week ago

Selected Answer: AD
The minimum response time in the Enterprise plan is 15 minutes.
upvoted 2 times

  Sajjan81 3 months, 2 weeks ago

https://aws.amazon.com/premiumsupport/plans/enterprise/
Answer Is A & D
upvoted 2 times

  RS16 3 months, 2 weeks ago

A & E correct ans
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: AE
Here is the explanation
The two options included in AWS Enterprise Support are:
A. AWS technical account manager (TAM)
E. 5-minute response time for critical issues

Option B (AWS partner-led support) is not included in AWS Enterprise Support.

Option C (AWS Professional Services) is a separate offering from AWS Support.
Option D (Support of third-party software integration to AWS) is not specifically mentioned as part of AWS Enterprise Support.
upvoted 1 times

  Guru4Cloud 4 months ago

See the https://i.ytimg.com/vi/0LQcq_zyNmg/maxresdefault.jpg - that our friend danielolasupo02 provide
upvoted 1 times
Question #34 Topic 1

A global media company uses AWS Organizations to manage multiple AWS accounts.
Which AWS service or feature can the company use to limit the access to AWS services for member accounts?

A. AWS Identity and Access Management (IAM)

B. Service control policies (SCPs)

C. Organizational units (OUs)

D. Access control lists (ACLs)

Correct Answer: C

Community vote distribution

B (85%) Other

  Prates_BR Highly Voted  11 months, 1 week ago

A, come on admin, check this questions again!
upvoted 40 times

  pedrolaez 1 week ago

SCPs are the best choice for this situation as they allow control over access to multiple AWS accounts within an AWS organization, while
IAM is used to manage access to a single AWS account.
upvoted 1 times

  Guru4Cloud 4 months ago

Prates_BR - Should do more reading

he correct answer is B. Service control policies (SCPs).

AWS Organizations helps to manage multiple AWS accounts in a centralized manner. SCPs are a feature of AWS Organizations that
allow an organization to set rules that govern the use of AWS services across all accounts in the organization. SCPs can be used to
restrict the use of specific AWS services or to impose additional conditions or requirements on the use of those services. SCPs are
applied at the organizational unit (OU) level, so organizations can create different policies for different groups of accounts within their
AWS Organization.

AWS Identity and Access Management (IAM) is a service that enables you to manage access to AWS services and resources securely.
IAM is used to create and manage users, groups, and permissions. It can be used in conjunction with SCPs to further restrict access to
AWS services
upvoted 5 times

  sophire 7 months ago

It is limiting services to member accounts from AWS Organizations. SCP is used for limiting access for any number of member
accounts.

Answer is B
upvoted 6 times

  Shaychay Highly Voted  10 months ago

Selected Answer: B
n AWS Organizations, you can centrally control permissions for the accounts in your organization by using service control policies (SCPs).
SCPs enable you to place restrictions on the AWS services, resources, and individual API actions that users and roles in each account can
access.
upvoted 28 times

  lizano_ Most Recent  3 days, 3 hours ago

B - https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html
upvoted 1 times

  DominusUser 2 weeks, 4 days ago

Selected Answer: B
Service control policies (SCPs) are a type of organization policy that you can use to manage permissions in your organization. SCPs offer
central control over the maximum available permissions for all accounts in your organization. SCPs help you to ensure your accounts stay
within your organization’s access control guidelines.
upvoted 1 times

  khanda 3 weeks, 3 days ago

Selected Answer: B
SCPs help you to ensure your accounts stay within your organization’s access control guidelines.
upvoted 1 times
  man5484 3 weeks, 3 days ago
Selected Answer: B
Service control policies (SCPs) are a feature of AWS Organizations that allow administrators to set fine-grained permissions at the
organizational level. SCPs help centrally manage and control the maximum permissions available to member accounts within the
organization.

By defining SCPs, the company can limit access to specific AWS services for member accounts. SCPs can be used to allow or deny
permissions for services, actions, or resources at the organizational level. This provides a centralized way to enforce security and
compliance policies across the entire organization.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

Selected Answer: B
B. Service control policies (SCPs).
upvoted 1 times

  MSFonly 1 month ago

Selected Answer: B
Selectwe B
upvoted 1 times

  jbkrishna 1 month ago

access in AWS organizations is controlled using Service control policies ( SCP) - Answer is B
upvoted 1 times

  ElPatodba 1 month ago

Selected Answer: A
I am sticky with A
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. Service control policies (SCPs)
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: B
Here's how the company can use SCPs to limit access to AWS services:

Create a Service Control Policy: The company can define a custom SCP using the AWS Identity and Access Management (IAM) policy
language. The policy can specify the services or actions that are allowed or denied for member accounts.

Attach the SCP to OUs or accounts: The created SCP can be attached to specific OUs or individual accounts within the AWS Organizations
hierarchy. When an SCP is attached to an OU, it automatically applies to all accounts within that OU, including any existing or future
accounts. Alternatively, SCPs can be attached directly to individual accounts.

Control access permissions: The SCP defines the permissions for the member accounts. It can limit access to specific AWS services or
actions by using allow or deny statements. By default, new member accounts inherit the permissions defined by the organization's root
SCP, and additional SCPs can be layered to further refine access control.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Service control policies (SCPs)
upvoted 1 times

  Yasser001 2 months, 3 weeks ago

The correct answer is B. Service control policies (SCPs).

The global media company can use Service Control Policies (SCPs) to limit access to AWS services for member accounts within their AWS
Organization. SCPs allow the company to set permission guardrails at the organization level to control which AWS services and features
can be accessed by member accounts. SCPs provide a way to centrally manage permissions and restrict the maximum available
permissions for the member accounts within the organization.

AWS Identity and Access Management (IAM) is used to manage user access to AWS resources and is typically used at the account level.
Organizational Units (OUs) are used to group and organize member accounts within an organization, and Access Control Lists (ACLs) are
used to control access to network resources. However, neither IAM, OUs, nor ACLs provide the ability to limit access to AWS services at the
organization level like SCPs.
upvoted 1 times

  AliAhmedFathi 3 months, 1 week ago

Selected Answer: B
Option B, Service control policies (SCPs), are a feature of AWS Organizations that allow an organization to set fine-grained permissions for
member accounts.
upvoted 1 times
  EmmrE 3 months, 2 weeks ago
it is not A, it is B. Because iam is for users of a aws account, not aws accounts itself within aws organization. For the aws accounts within
an aws organization, it is B
upvoted 2 times

  Guru4Cloud 4 months ago

Selected Answer: B
The AWS service or feature that the company can use to limit access to AWS services for member accounts is B. Service control policies
(SCPs).

Service control policies (SCPs) are a type of organization policy that allow an AWS account administrator to set permissions that specify
which AWS services and features can be used by member accounts within an organization. SCPs can be used to restrict access to specific
services or features at the organizational unit (OU) or account level. By using SCPs, the global media company can restrict the usage of
AWS services and features that are not required for its member accounts.
upvoted 1 times
Question #35 Topic 1

A company wants to limit its employees' AWS access to a portfolio of predefined AWS resources.
Which AWS solution should the company use to meet this requirement?

A. AWS Config

B. AWS software development kits (SDKs)

C. AWS Service Catalog

D. AWS AppSync

Correct Answer: C

Community vote distribution

C (100%)

  Sib777 Highly Voted  11 months ago

C.
What is the use of service catalog in AWS?
AWS Service Catalog allows organizations to create and manage catalogs of IT services that are approved for use on AWS. These IT
services can include everything from virtual machine images, servers, software, and databases to complete multi-tier application
architectures.
upvoted 24 times

  man5484 Most Recent  3 weeks, 3 days ago

Selected Answer: C
AWS Service Catalog is a service that allows organizations to create and manage catalogs of IT services, including AWS resources, that are
approved for use within the organization. It enables administrators to curate a set of predefined resources and configurations that meet
the organization's security, compliance, and operational standards.

By using AWS Service Catalog, the company can define a portfolio of approved AWS resources, such as EC2 instances, RDS databases, or
S3 buckets, along with their specific configurations and policies. Employees can then discover and launch these predefined resources from
the Service Catalog, ensuring that they are accessing only the authorized resources.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

Selected Answer: C
C. AWS Service Catalog
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: C
C. AWS Service Catalog
AWS Service catalog is kind of predefined(by admin) CloudFormation template.
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

C. AWS Service Catalog
upvoted 2 times

  Cloudy6 2 months, 3 weeks ago

Selected Answer: C
AWS Service catalog is kind of predefined(by admin) CloudFormation template.
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: C
C. AWS Service catalog.
upvoted 1 times

  Abzstar 5 months, 2 weeks ago

correct answer is C
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 2 times
  Habidamson 8 months, 2 weeks ago
The answer is C
upvoted 4 times

  JA2018 9 months, 1 week ago

Selected Answer: C
From: https://aws.amazon.com/servicecatalog/

Apply access controls

Scale and control permissions so you can manage resource access in multi-account AWS environments.

How it works
AWS Service Catalog lets you centrally manage deployed IT services, applications, resources, and metadata to achieve consistent
governance of your infrastructure as code (IaC) templates. With AWS Service Catalog, you can meet your compliance requirements while
making sure your customers can quickly deploy the approved IT services they need.
upvoted 4 times

  EazElr 9 months, 1 week ago

Selected Answer: C
"Portfolio" is the key work here.
upvoted 3 times

  Kantene 9 months, 1 week ago

Selected Answer: C
Vote for C
upvoted 2 times

  Pamban 9 months, 3 weeks ago

Selected Answer: C
Correct answer
upvoted 1 times

  alveswlm 10 months, 2 weeks ago

C is correct.
https://docs.aws.amazon.com/servicecatalog/latest/adminguide/what-is_concepts.html
Scroll the page until "Portfolios".
upvoted 3 times

  sumanshu 10 months, 3 weeks ago

Vote for C (Using elimination method)
upvoted 1 times

  Esward 11 months ago

C is correct answer
https://docs.aws.amazon.com/servicecatalog/latest/adminguide/what-is_concepts.html
upvoted 2 times
Question #36 Topic 1

An online company was running a workload on premises and was struggling to launch new products and features. After migrating the workload to
AWS, the company can quickly launch products and features and can scale its infrastructure as required.
Which AWS Cloud value proposition does this scenario describe?

A. Business agility

B. High availability

C. Security

D. Centralized auditing

Correct Answer: A

Community vote distribution

A (100%)

  JA2018 Highly Voted  8 months, 2 weeks ago

Selected Answer: A
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
Increase speed and agility – In a cloud computing environment, new IT resources are only a click away, which means that you reduce the
time to make those resources available to your developers from weeks to just minutes. This results in a dramatic increase in agility for the
organization, since the cost and time it takes to experiment and develop is significantly lower.
upvoted 6 times

  man5484 Most Recent  3 weeks, 3 days ago

Selected Answer: A
Business agility refers to the ability of a company to quickly and easily adapt to changes, innovate, and respond to customer needs. In the
given scenario, the company was struggling to launch new products and features while running their workload on premises.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: A
A. Business agility
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Business agility
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: A
The scenario describes the AWS Cloud value proposition of "Business Agility."

By migrating the workload to AWS, the company is able to quickly launch new products and features, indicating that they are able to
innovate and respond to changing market conditions faster than before. Additionally, the ability to scale infrastructure as required allows
the company to adjust to changing demand for their products or services. This agility is a key benefit of cloud computing and one of the
primary reasons that many companies choose to migrate to AWS
upvoted 1 times

  iLefty 4 months, 1 week ago

Selected Answer: A
this is Agility
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: A
A. Bussiness Agility.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  Habidamson 8 months, 2 weeks ago

The answer is A
upvoted 1 times
  Aakuu 8 months, 3 weeks ago
A with no doubt!
upvoted 3 times

  Kantene 9 months, 1 week ago

Selected Answer: A
Vote for A
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

ANSWER IS A
upvoted 2 times

  sumanshu 10 months, 3 weeks ago

Vote for A
upvoted 1 times

  fross 11 months, 1 week ago

Selected Answer: A
A, agility
upvoted 2 times
Question #37 Topic 1

Which of the following are advantages of the AWS Cloud? (Choose two.)

A. AWS management of user-owned infrastructure

B. Ability to quickly change required capacity

C. High economies of scale

D. Increased deployment time to market

E. Increased fixed expenses

Correct Answer: BC

Community vote distribution

BC (90%) 5%

  Testeurtest Highly Voted  8 months, 1 week ago

Selected Answer: BC
In the 6 advantages of Cloud :
C. Economy at scale: You profit of massive aggregation of resources consumed by all customers on the AWS platform
B. Rapidity and Agility.
upvoted 9 times

  sumanshu Highly Voted  10 months, 3 weeks ago

Vote for B & C

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 6 times

  man5484 Most Recent  3 weeks, 3 days ago

Selected Answer: BC
B. Ability to quickly change required capacity: With the AWS Cloud, users can easily scale their infrastructure up or down based on
demand. This flexibility allows for rapid adjustment of resources to match application needs, enabling cost optimization and efficient
resource utilization.

C. High economies of scale: AWS operates at a large scale, serving millions of customers globally. This scale allows AWS to achieve cost
efficiencies and pass on the benefits to customers. By leveraging AWS services, users can access enterprise-grade infrastructure and
services without the need for significant upfront investment in hardware or infrastructure.
upvoted 1 times

  STOPITALREADY 4 weeks, 1 day ago

Selected Answer: BC
B. Ability to quickly change required capacity Most Voted
C. High economies of scale
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: BC
B. Ability to quickly change required capacity Most Voted
C. High economies of scale
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Ability to quickly change required capacity
D. Increased deployment time to market
upvoted 2 times

  iLefty 4 months, 1 week ago

Selected Answer: BC
B & C is the answer
upvoted 1 times

  hvil28 4 months, 3 weeks ago

Selected Answer: BC
B and D
upvoted 1 times
  elidiojose 4 months, 3 weeks ago
Selected Answer: BD
B and D.
upvoted 1 times

  Zuit 4 months, 3 weeks ago

"increased" time to market -> should be decreased, so it is not D
upvoted 3 times

  kumaran1000001 4 months, 4 weeks ago

A - no because AWS does not manage user-owned infra

B-

C-

D - in fact opposite of this. decreased time of deployment

E - with AWS's pay-as-you-go model, no capital (fixed) expenses. Only operational expenses

B & C are answers

upvoted 3 times

  RiaanMO 5 months, 2 weeks ago

B and C are the most obvious answers
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BC
BC is the answer.
upvoted 1 times

  das19 7 months, 1 week ago

only C
upvoted 1 times

  N9 8 months ago
A is not true for guest OS on EC2
upvoted 1 times

  atfde 8 months, 1 week ago

Selected Answer: BC
AWS is typically not dealing with *user-owned* infra
upvoted 2 times

  dark_cherrymon 8 months, 1 week ago

Selected Answer: AB
A&B ------------
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

BC is correct
upvoted 2 times
Question #38 Topic 1

AWS has the ability to achieve lower pay-as-you-go pricing by aggregating usage across hundreds of thousands of users.
This describes which advantage of the AWS Cloud?

A. Launch globally in minutes

B. Increase speed and agility

C. High economies of scale

D. No guessing about compute capacity

Correct Answer: C

Community vote distribution

C (100%)

  vedhirve 1 week, 1 day ago

Selected Answer: C
High Economies of scale
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: C
High economies of scale refer to the cost efficiencies gained by AWS due to its large customer base and global infrastructure. By serving
millions of customers worldwide and aggregating usage across these customers, AWS can optimize its costs and pass on the benefits of
these efficiencies to customers in the form of lower pricing.

This advantage allows AWS to provide cost-effective services and resources to users, enabling them to benefit from enterprise-grade
infrastructure without the need for significant upfront investment. Customers can access a wide range of services and pay only for the
resources they consume, resulting in cost savings and increased value.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: C
C. High economies of scale
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. High economies of scale
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: C
pay as you go by aggregating the usage of many users, we are talking about economies of scale
upvoted 2 times

  AWSOXY 4 months ago

High scale economy
upvoted 2 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: C
C. High scale economy
upvoted 2 times

  kumaran1000001 4 months, 4 weeks ago

A - no. this relates AWS’s global infra that lets customers to quickly launch apps

B - no. relates to flexible and scalable computing resources

C-

D - no. relates to on-demand computing resources

C is the answer
upvoted 2 times

  getsood 5 months, 1 week ago

C High economy of scale
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  vikskapoor 7 months, 1 week ago

Selected Answer: C
C is the answer
upvoted 1 times

  atulsinghh 7 months, 1 week ago

Selected Answer: C
C is the answer
upvoted 1 times

  Habidamson 8 months, 2 weeks ago

The is C
upvoted 1 times

  Kantene 9 months, 1 week ago

Selected Answer: C
Vote for C
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

C is answer
upvoted 1 times

  Akinola1 10 months ago

C is Correct
upvoted 1 times

  jacksk 10 months, 2 weeks ago

Selected Answer: C
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 2 times
Question #39 Topic 1

A company has a database server that is always running. The company hosts the server on Amazon EC2 instances. The instance sizes are
suitable for the workload. The workload will run for 1 year.
Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?

A. Standard Reserved Instances

B. On-Demand Instances

C. Spot Instances

D. Convertible Reserved Instances

Correct Answer: A

Community vote distribution

A (100%)

  man5484 3 weeks, 3 days ago

Selected Answer: A
Standard Reserved Instances provide a significant cost-saving opportunity for long-term, steady-state workloads. By purchasing Reserved
Instances, the company commits to a specific instance configuration, including instance type, region, and term (1 year in this case). This
commitment allows the company to benefit from a lower hourly rate compared to On-Demand Instances.

Since the workload is expected to run continuously for a year, the company can confidently make the upfront payment and reserve the
instances for that duration. This provides cost predictability and significant savings compared to using On-Demand Instances throughout
the year.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: A
A. Standard Reserved Instances
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. Spot Instances
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: A
key word ,1 year, database so i choose A
upvoted 3 times

  elidiojose 4 months, 3 weeks ago

C. Spot instance.
upvoted 1 times

  kumaran1000001 4 months, 4 weeks ago

A-

B - no. not cost effective in this case

C - no. not suitable for running databases in prod

D - no. CRI allows customers to change instance type AZs, etc. and have lower discount rate than SRI

A is the answer
upvoted 2 times

  WaitForOso 4 months, 4 weeks ago

A is the answer
upvoted 1 times

  teokd 6 months, 2 weeks ago

Answer is A, BUT the reason you have chosen On-Demand may be that it runs for 1 year. However, Std Reserved Instance offers savings
up to 75% off On-Demand -- cheapest and most economical option.
upvoted 4 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  Habidamson 8 months, 2 weeks ago

The answer is A
upvoted 1 times

  Grey654Gandalf 8 months, 3 weeks ago

Selected Answer: A
Standard Most cost effective for suitable workload
upvoted 2 times

  Popular 9 months ago

Vote for B
upvoted 1 times

  Kantene 9 months, 1 week ago

Selected Answer: A
Vote for A
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

A is correct
upvoted 1 times

  sumanshu 10 months, 3 weeks ago

Vote for A
upvoted 1 times

  LisaLC917 11 months ago

Selected Answer: A
https://aws.amazon.com/ec2/pricing/reserved-instances/
upvoted 3 times

  Esward 11 months ago

A is correct
upvoted 1 times
Question #40 Topic 1

A company is developing a mobile app that needs a high-performance NoSQL database.

Which AWS services could the company use for this database? (Choose two.)

A. Amazon Aurora

B. Amazon RDS

C. Amazon Redshift

D. Amazon DocumentDB (with MongoDB compatibility)

E. Amazon DynamoDB

Correct Answer: BE

Community vote distribution

DE (99%)

  jr_2022 Highly Voted  11 months, 1 week ago

Answer should be D & E, because RDS is a SQL based DB. Dynamo DB and Document DB are the only No-SQL options.
upvoted 80 times

  Nucleric 10 months, 3 weeks ago

You are right.
upvoted 3 times

  fross 11 months, 1 week ago

Agree, RDS is SQL based.
upvoted 4 times

  Achebz Highly Voted  8 months, 4 weeks ago

This admin is nuts, rds is clearly sql
upvoted 13 times

  danielolasupo02 6 months, 1 week ago

calm down, he's only doing he's best to help us...he isn't chatgpt that knows everything
upvoted 14 times

  Vaqar Most Recent  11 hours, 12 minutes ago

Admin must correct the mistake to avoid confusion/ misguidance
upvoted 1 times

  Pranava_GCP 1 day ago

Selected Answer: DE
D. Amazon DocumentDB (with MongoDB compatibility)
E. Amazon DynamoDB
upvoted 1 times

  BigCatG 1 week, 2 days ago

Selected Answer: DE
NoSQL = DynamoDB & DocumentDB (MongoDB)
upvoted 1 times

  Tarasharma 1 week, 5 days ago

should I follow admin answer or the discussion answer...I say its DE
upvoted 1 times

  Hayden001 2 weeks, 1 day ago

The answer is D & E
upvoted 1 times

  man5484 3 weeks, 3 days ago

Selected Answer: DE
D. Amazon DocumentDB (with MongoDB compatibility): Amazon DocumentDB is a fully managed, highly scalable, and highly available
document database service that is compatible with MongoDB. It is designed to provide high performance and durability for NoSQL
workloads. The company can leverage the familiar MongoDB API and ecosystem while benefiting from the scalability and managed nature
of Amazon DocumentDB.

E. Amazon DynamoDB: Amazon DynamoDB is a fully managed NoSQL database service that offers fast and predictable performance at
any scale. It provides low-latency access to data and automatically scales to handle millions of requests per second. DynamoDB is suitable
for high-performance, low-latency applications and can handle demanding workloads with ease.
upvoted 1 times
  STOPITALREADY 4 weeks ago
Selected Answer: DE
D & E are correct answer
upvoted 2 times

  hariraj58 1 month ago

D & E are correct answer as they are no-SQL database
upvoted 1 times

  kk9550 1 month, 1 week ago

Selected Answer: DE
RDS is for relationals databases (sql)
upvoted 2 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: DE
D. Amazon DocumentDB (with MongoDB compatibility) Most Voted
E. Amazon DynamoDB
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

D. Amazon DocumentDB (with MongoDB compatibility)
E. Amazon DynamoDB
upvoted 1 times

  fathyrashad77 2 months, 3 weeks ago

Selected Answer: DE
Answer should be D & E, because RDS is a SQL based DB. Dynamo DB and Document DB are the only No-SQL options.
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: DE
rds is not a no-sql ,so i choose DE
upvoted 1 times

  nixonlaw 3 months ago

Selected Answer: DE
Definitely, it's D,E. because company need NoSQL database, RDS is a relational SQL DB.
upvoted 1 times

  huanghaiyao 3 months, 1 week ago

Selected Answer: DE
i think D E is right
upvoted 1 times
Question #41 Topic 1

Which tasks are the responsibility of AWS, according to the AWS shared responsibility model? (Choose two.)

A. Patch the Amazon EC2 guest operating system.

B. Upgrade the firmware of the network infrastructure.

C. Apply password rotation for IAM users.

D. Maintain the physical security of edge locations.

E. Maintain least privilege access to the root user account.

Correct Answer: BD

Community vote distribution

BD (94%) 6%

  Pranava_GCP 1 day ago

Selected Answer: BD
B. Upgrade the firmware of the network infrastructure.
D. Maintain the physical security of edge locations.
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: BD
B. Upgrade the firmware of the network infrastructure: AWS is responsible for managing and maintaining the underlying network
infrastructure, including upgrading the firmware of their network devices and equipment.

D. Maintain the physical security of edge locations: AWS is responsible for the physical security of its global infrastructure, which includes
the security and protection of edge locations.
upvoted 1 times

  STOPITALREADY 4 weeks ago

Selected Answer: BD
B and D
upvoted 1 times

  thiagonhs 1 month ago

Selected Answer: BD
B and D
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: BD
B. Upgrade the firmware of the network infrastructure. Most Voted
D. Maintain the physical security of edge locations.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. Patch the Amazon EC2 guest operating system.
D. Maintain the physical security of edge locations.
upvoted 1 times

  tiger3 1 month, 3 weeks ago

A and B . D is physical
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

I THINK A AND B IS THE ANSWER
upvoted 2 times

  julianorr 2 months, 3 weeks ago

Selected Answer: BC
B and D
upvoted 1 times

  Max143 4 months, 2 weeks ago

In the exam on 17/03/2023
upvoted 2 times

  Guru4Cloud 4 months ago

did you get it right?
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: BD
B and D.
upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A - no. customers

B-

C - no. customers

D-

E - no. customers

B&D
upvoted 1 times

  Algol 5 months, 3 weeks ago

Selected Answer: BD
The ret of the answers are the responsibility of the user
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BD
BD is the answer.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: BD
As shown in https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 4 times

  Kantene 9 months, 1 week ago

Selected Answer: BD
Vote for B and D
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

BD is correct
upvoted 1 times
Question #42 Topic 1

Which of the following are features of network ACLs as they are used in the AWS Cloud? (Choose two.)

A. They are stateless.

B. They are stateful.

C. They evaluate all rules before allowing traffic.

D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic.

E. They operate at the instance level.

Correct Answer: AD

Community vote distribution

AD (96%) 2%

  30Miles Highly Voted  11 months ago

Selected Answer: AD
https://docs.aws.amazon.com/vpc/latest/userguide/vpc-network-acls.html

Network ACLs are stateless, which means that responses to allowed inbound traffic are subject to the rules for outbound traffic (and vice
versa).

Rules are evaluated starting with the lowest numbered rule. As soon as a rule matches traffic, it's applied regardless of any higher-
numbered rule that might contradict it.
upvoted 32 times

  Flex1 Highly Voted  11 months ago

Selected Answer: AD
Options A&D . NACL can be understood as the firewall or protection for the subnet. Security group can be understood as a firewall to
protect EC2 instances. These are stateless, meaning any change applied to an incoming rule isn't automatically applied to an outgoing
rule per https://www.knowledgehut.com/tutorials/aws/nacl-vs-security-groups
upvoted 8 times

  man5484 Most Recent  3 weeks, 2 days ago

Selected Answer: AD
A. They are stateless: Network ACLs in AWS are stateless, meaning they do not keep track of the state of a connection. Each incoming and
outgoing packet is evaluated independently based on the rules defined in the ACL.

D. They process rules in order, starting with the lowest numbered rule when deciding whether to allow traffic: Network ACLs evaluate
rules sequentially and process them in order, starting with the lowest numbered rule. Once a matching rule is found, processing stops,
and the decision to allow or deny traffic is made based on that rule. No further rules are evaluated.
upvoted 3 times

  STOPITALREADY 4 weeks ago

Selected Answer: AD
A and D
upvoted 1 times

  thiagonhs 1 month ago

Selected Answer: AD
A and D
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: AD
A. They are stateless.
D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: AD
A. They are stateless. Most Voted
D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic. Most Voted
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. They are stateless.
D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

Options A&D
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: AD
i choose AD
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: AD
The correct answers are A and D.

A) They are stateless: Network ACLs (Access Control Lists) in AWS are stateless. They evaluate each network packet independently and
don't track the state of the traffic flow. Therefore, any changes to the traffic flow require explicit rules for each direction of traffic.

D) They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic: AWS Network ACLs process
the rules in sequential order starting with the lowest numbered rule to the highest numbered rule to decide whether to allow traffic or not
upvoted 3 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: CD
C and D.
upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A-

B - no. SGs are stateful

C - no. they do this in order

D-

E - no. SGs operate at instance level

A&D
upvoted 2 times

  Amycert 5 months, 1 week ago

Selected Answer: AC
A and D, just as regular ACLs
upvoted 1 times

  debabrata6983 6 months, 1 week ago

Selected Answer: AD
Option A&D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 1 times

  Habidamson 8 months, 2 weeks ago

The answer AD
upvoted 1 times
Question #43 Topic 1

A company has designed its AWS Cloud infrastructure to run its workloads effectively. The company also has protocols in place to continuously
improve supporting processes.
Which pillar of the AWS Well-Architected Framework does this scenario represent?

A. Security

B. Performance efficiency

C. Cost optimization

D. Operational excellence

Correct Answer: D

Community vote distribution

D (93%) 7%

  blackcomb Highly Voted  11 months ago

Correct answer is D -
The Operational Excellence pillar includes the ability to support development and run workloads effectively, gain insight into their
operations, and to continuously improve supporting processes and procedures to deliver business value.
upvoted 16 times

  Pranava_GCP Most Recent  1 day ago

Selected Answer: D
D. Operational excellence
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: D
Operational excellence in the AWS Well-Architected Framework refers to the ability to run and monitor systems effectively, continuously
improving processes and procedures. It encompasses designing and managing workloads to achieve business and customer goals
efficiently. It focuses on automating processes, identifying areas for improvement, and making informed decisions based on operational
data and feedback.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: D
D. Operational excellence
upvoted 1 times

  illenium 1 month, 2 weeks ago

I have a quick question.
Can company design AWS Infrastructure??
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: D
D. Operational excellence
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. Operational excellence.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

D. Operational excellence
upvoted 1 times

  Krish_Kaustub 4 months, 3 weeks ago

Selected Answer: D
Operational Excellence - Ability to run and monitor systems to deliver business value and continually improve supporting processes and
procedures
upvoted 1 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: D
Operational excellence pillar focuses on the ability of an organization to run and monitor systems and improve processes to deliver
business value and continually improve support to its customers. This pillar includes the ability to perform operations as code, respond to
events and automate changes, and define standards to successfully manage daily operations. The scenario describes that the company
has protocols in place to continuously improve supporting processes, which aligns with the operational excellence pillar.
upvoted 2 times
  elidiojose 4 months, 3 weeks ago
Selected Answer: B
B. Perfomance eficiency.
upvoted 1 times

  yekmoo 5 months, 2 weeks ago

D - Operational Excellence
upvoted 1 times

  _tanu_02 6 months ago

D is the answer
upvoted 1 times

  Onyejicash 6 months ago

D Operational Excellence related to workloads effectively
upvoted 1 times

  debabrata6983 6 months, 1 week ago

Selected Answer: D
D - Operational Excellence
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  jbwo47 7 months, 1 week ago

D - Operational Excellence
upvoted 1 times
Question #44 Topic 1

Which AWS service or feature can be used to create a private connection between an on-premises workload and an AWS Cloud workload?

A. Amazon Route 53

B. Amazon Macie

C. AWS Direct Connect

D. AWS PrivateLink

Correct Answer: D

Community vote distribution

C (83%) D (17%)

  blackcomb Highly Voted  11 months ago

Selected Answer: C
Correct answer is C- Direct connect is for private dedicated connection between on premise and AWS.
PrivateLink provides direct secure connections from VPCs to other AWS services.
VPC Private Link is a way of making your service available to set of consumers. You can expose a service and the consumers can consume
your service by creating an endpoint for your service.With PrivateLink, endpoints are instead created directly inside of your VPC, using
Elastic Network Interfaces (ENIs) and IP addresses in your VPC's subnets.To use AWS PrivateLink, create a VPC endpoint in your VPC,
specifying the name of the service and a subnet. This creates an elastic network interface in the subnet that serves as an entry point for
traffic destined to the service. The service is now in your VPC, enabling connectivity to AWS services via private IP addresses.
upvoted 59 times

  Guru4Cloud 3 months, 3 weeks ago

AWS PrivateLink provides private connectivity between virtual private clouds (VPCs), supported AWS services, and your on-premises
networks without exposing your traffic to the public internet.
See the link:
https://aws.amazon.com/privatelink/#:~:text=AWS%20PrivateLink%20provides%20private%20connectivity,traffic%20to%20the%20publi
c%20internet.

Image: https://d1.awsstatic.com/products/privatelink/product-page-diagram_AWS-
PrivateLink.fc899b8ebd46fa0b3537d9be5b2e82de328c63b8.png
upvoted 2 times

  morozake 1 day, 22 hours ago

AWS privatelink use case:
- Migrate to a hybrid cloud
Connect on-premises applications and data to SaaS applications hosted on AWS securely and realize a hybrid cloud architecture.
https://aws.amazon.com/privatelink/#:~:text=AWS%20PrivateLink%20provides%20private%20connectivity,traffic%20to%20the%20p
ublic%20internet
upvoted 1 times

  Makku69 8 months, 3 weeks ago

The question didnt mention - DEDICATED connection was a requirement. So Correct answer is D. Secured link is good enough.
upvoted 7 times

  SilverAlpaca 8 months, 1 week ago

I'm confused, can you create a private but not dedicated connection between on-prem and AWS?
upvoted 2 times

  srdvx 6 months, 2 weeks ago

Yes, over VPN connection.
upvoted 1 times

  srdvx 6 months, 2 weeks ago

Direct Connect is is for private dedicated connection between on-premise network and AWS infrastructure, not between workloads
(applications and services). Private Link uses VPC endpoint services to access the service over an Amazon VPC endpoint, rather than
over external network infrastructure.
upvoted 3 times

  Pranava_GCP Most Recent  23 hours, 59 minutes ago

Selected Answer: C
C. AWS Direct Connect
upvoted 1 times

  Soumya198725 3 days, 13 hours ago

Direct connect because its establish connectivity between On premises services with cloud services such as my workloads in VMware
vcenter in one Ompremises DC and S3 in cloud to store multiple objects and take advantage of storage-lifecycle-policy.
upvoted 1 times

  Sara1811 2 weeks, 1 day ago

AWS Private link connects VPCs to AWS Services without exposing traffic to internet correct answer is C.
upvoted 1 times

  tuan_nn 3 weeks, 2 days ago

Selected Answer: C
C is my choice.
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: C
AWS Direct Connect is a network service that establishes a dedicated, private network connection between an organization's on-premises
infrastructure and AWS. It enables secure and reliable communication between the on-premises network and AWS resources without
traversing the public internet.

By using AWS Direct Connect, organizations can establish a private and dedicated network link with high bandwidth and low latency. This
allows for consistent network performance and enhanced security for transmitting data between on-premises workloads and AWS Cloud
workloads.
upvoted 1 times

  Bibs_s 3 weeks, 4 days ago

Selected Answer: C
The correct answer is C
upvoted 1 times

  STOPITALREADY 4 weeks ago

Selected Answer: C
Correct answer is C
upvoted 1 times

  HC89 1 month ago

Selected Answer: C
AWS Direct Connect is a network service that provides a private, dedicated network connection from a customer's on-premises network to
the AWS Cloud. This service bypasses the public Internet, which can reduce network costs, increase bandwidth throughput, and provide a
more consistent network experience than Internet-based connections.

Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service.

Amazon Macie is a security service that uses machine learning to automatically discover, classify, and protect sensitive data.

AWS PrivateLink is a technology designed to access services over AWS Private Network. It does not establish a direct connection between
on-premises workloads and AWS Cloud.
upvoted 1 times

  itmonkey1 1 month ago

Correct answer is C-Direct Connect.
AWS PrivateLink provides a private network connection between VPCs and AWS services, while AWS Direct Connect is a dedicated, private
connection between on-premises infrastructure and an AWS Location.
upvoted 1 times

  kk9550 1 month, 1 week ago

Selected Answer: C
C seems more accurate
upvoted 1 times

  LadyRose 1 month, 1 week ago

Selected Answer: C
Correct answer is C- Direct connect is for private dedicated connection between on premise and AWS.
upvoted 1 times

  muzammil572 1 month, 2 weeks ago

The correct answer is D. AWS PrivateLink.

AWS PrivateLink is a service that enables you to access AWS services in a highly available and scalable manner, securely through a private
connection. It allows you to create private endpoints within your Virtual Private Cloud (VPC) that are accessible from your on-premises
network, establishing a private and direct connection between your on-premises workload and an AWS Cloud workload.
upvoted 1 times

  ESAJRR 1 month, 2 weeks ago

Selected Answer: C
By leveraging AWS Direct Connect, you can establish a private, dedicated, and high-performance connection between your on-premises
workload and your AWS Cloud workload. This enables secure and efficient communication, reduces latency, and provides better network
performance compared to public internet-based connectivity options.

It's important to note that setting up and managing AWS Direct Connect may require coordination with a network service provider or a
Direct Connect partner. They can assist you in the physical connectivity, provisioning, and configuration aspects of the private connection.
upvoted 1 times
  Pilar604 1 month, 2 weeks ago
Selected Answer: C
conexión directa
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. AWS PrivateLink.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

C. AWS Direct Connect
upvoted 1 times
Question #45 Topic 1

A company needs to graphically visualize AWS billing and usage over time. The company also needs information about its AWS monthly costs.
Which AWS Billing and Cost Management tool provides this data in a graphical format?

A. AWS Bills

B. Cost Explorer

C. AWS Cost and Usage Report

D. AWS Budgets

Correct Answer: B

Community vote distribution

B (94%) 3%

  jatric Highly Voted  8 months ago

Selected Answer: B
Both Cost Explorer and Cost and Usage reports are for same purpose. The main difference is Cost Explorer gives graphically
representation. so correct answer is B
upvoted 9 times

  Pranava_GCP Most Recent  23 hours, 58 minutes ago

Selected Answer: B
B. Cost Explorer
upvoted 1 times

  sri073 3 weeks ago

B.cost explorer
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: B
Cost Explorer is a powerful tool within the AWS Billing and Cost Management console that enables users to visualize and analyze their
AWS costs and usage. It provides interactive charts, graphs, and reports that depict spending patterns, usage trends, and cost
breakdowns over time.

With Cost Explorer, users can view their AWS billing and usage data in a graphical format, allowing them to gain insights into their
monthly costs and resource consumption. It offers pre-built reports, customizable filters, and visualizations that help track and analyze
spending across different dimensions like services, regions, tags, and more.
upvoted 1 times

  STOPITALREADY 4 weeks ago

Selected Answer: B
B. Cost Explorer
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Cost Explorer
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

B. Cost Explorer
upvoted 1 times

  yayaayzo 2 months, 2 weeks ago

B COST EXPLORER
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: B
Cost Explorer (B) enables users to visualize and understand their AWS costs and usage trends over time. It also provides information
about the monthly costs of AWS services and allows users to create custom cost reports and budgets. The other options, AWS Bills, AWS
Cost and Usage Report, and AWS Budgets provide different functionalities related to billing and cost management in AWS, but they do not
provide graphical visualization of data.
upvoted 1 times

  elidiojose 4 months, 3 weeks ago

Selected Answer: A
A. AWS Bills.
upvoted 1 times

  Richard_S 4 months ago

I think AWS Bills is a distractor, yes you get a "Bill" that you can access through the Billing Console, but you can't do much with it. It's
implying there is an AWS Bills service, there isn't. If you want a graphical representation then it's Cost Explorer.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  parku 8 months, 1 week ago

Selected Answer: B
for current billing and cost analysis use cost explorer for analyze spendings.
for forecast and predict future spendings use budgets.

https://www.cloudzero.com/blog/aws-budgets-vs-cost-
explorer#:~:text=AWS%20cost%20tool.-,What%20Are%20The%20Differences%20Between%20AWS%20Budgets%20And%20Cost%20Explore
r,costs%20and%20forecast%20future%20spending.
upvoted 4 times

  Morgothz 8 months, 2 weeks ago

Selected Answer: B
based on time always Cost Explorer
upvoted 3 times

  N3ar 8 months, 3 weeks ago

It sounds more like B: Cost Explorer imo since the keyword here is 'billing and usage over time'.
upvoted 2 times

  SmartLearner 9 months ago

Selected Answer: B
https://aws.amazon.com/aws-cost-management/aws-cost-explorer/
AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time.
upvoted 3 times

  Kapello10 9 months ago

The ans is C
https://aws.amazon.com/aws-cost-management/aws-cost-and-usage-reporting/
Create and publish billing reports to break down your cloud costs.
upvoted 1 times

  Max17 9 months, 1 week ago

Selected Answer: C
Graphical reports can be viewed in Cost and Usage Reports with breakdown from a month to an hour. My answer C
upvoted 1 times
Question #46 Topic 1

A company wants to run production workloads on AWS. The company needs concierge service, a designated AWS technical account manager
(TAM), and technical support that is available 24 hours a day, 7 days a week.
Which AWS Support plan will meet these requirements?

A. AWS Basic Support

B. AWS Enterprise Support

C. AWS Business Support

D. AWS Developer Support

Correct Answer: B

Community vote distribution

B (100%)

  Pranava_GCP 23 hours, 57 minutes ago

Selected Answer: B
B. AWS Enterprise Support
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: B
AWS Enterprise Support is the highest level of support offered by AWS and provides access to a range of benefits and services, including a
dedicated technical account manager (TAM). The TAM serves as a single point of contact, providing personalized guidance and assistance
in utilizing AWS services effectively, optimizing workloads, and addressing technical inquiries or issues.

In addition to the TAM, AWS Enterprise Support offers concierge service, which provides assistance with billing and account-related
inquiries, service limit increases, and general operational support.

AWS Enterprise Support also includes 24/7 technical support, ensuring that assistance is available around the clock for critical issues or
emergencies.
upvoted 2 times

  STOPITALREADY 4 weeks ago

Selected Answer: B
B. AWS Enterprise Support
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. AWS Enterprise Support
upvoted 1 times

  LadyRose 1 month, 1 week ago

Selected Answer: B
Keyword Conceirge
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. AWS Enterprise Support
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

B. AWS Enterprise Support
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Taube 7 months, 1 week ago

Selected Answer: B
The AWS technical account manager (TAM) is only available on the Enterprise Plan.
upvoted 4 times
  Max17 9 months, 1 week ago
Selected Answer: B
B is correct answer
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

B is correct
upvoted 1 times

  hiennt 10 months, 1 week ago

Selected Answer: B
Vote for B
upvoted 2 times

  sumanshu 10 months, 3 weeks ago

Vote for B
upvoted 2 times

  elcid32 10 months, 4 weeks ago

Selected Answer: B
The answer is B: https://aws.amazon.com/premiumsupport/plans/enterprise/
upvoted 3 times
Question #47 Topic 1

Which architecture design principle describes the need to isolate failures between dependent components in the AWS Cloud?

A. Use a monolithic design.

B. Design for automation.

C. Design for single points of failure.

D. Loosely couple components.

Correct Answer: D

Community vote distribution

D (100%)

  RICHARDALEX007 Highly Voted  10 months, 3 weeks ago

Loosely coupled is correct. In the cloud practitioner course states that in a microservices approach, application components are loosely
coupled. In this case, if a single component fails, the other components continue to work because they are communicating with each
other. The loose coupling prevents the entire application from failing.
upvoted 19 times

  Pranava_GCP Most Recent  23 hours, 55 minutes ago

Selected Answer: D
D. Loosely couple components.
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: D
Loose coupling is a design principle that emphasizes reducing dependencies between components in a system. In the context of the AWS
Cloud, it means designing systems where components can function independently, with minimal reliance on other components.

By loosely coupling components, failures in one component are isolated and do not propagate to other components. This approach
enhances the overall fault tolerance and resilience of the system. If one component fails, it does not bring down or impact other
components, allowing the system to continue functioning or degrade gracefully.

Loose coupling is achieved by using well-defined interfaces, decoupling communication mechanisms, and employing distributed system
patterns such as message queues, event-driven architectures, and microservices.
upvoted 1 times

  STOPITALREADY 4 weeks ago

Selected Answer: D
D. Loosely couple components.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. Loosely couple components.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

D. Loosely couple components
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: D
D is the answer
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: D
I vote D
upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A - not a well-architected solution

B - addresses IaC and config management tools, etc.

C - design for fault tolerance

D-

D is the answer
upvoted 3 times
  jg_85 5 months, 3 weeks ago
Selected Answer: D
D of course
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  lookup 7 months, 2 weeks ago

Selected Answer: D
D is right
upvoted 1 times

  tonwija 8 months, 1 week ago

Selected Answer: D
ABSOLUTELY D
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

D is correct
upvoted 1 times

  hiennt 10 months, 1 week ago

Selected Answer: D
vote for D
upvoted 1 times

  sumanshu 10 months, 3 weeks ago

Vote for D
upvoted 3 times
Question #48 Topic 1

Which AWS services are managed database services? (Choose two.)

A. Amazon Elastic Block Store (Amazon EBS)

B. Amazon S3

C. Amazon RDS

D. Amazon Elastic File System (Amazon EFS)

E. Amazon DynamoDB

Correct Answer: CE

Community vote distribution

CE (100%)

  Vinod_Varma Highly Voted  10 months ago

A , B & D are Storage Services.. and C & E are Database Services...
upvoted 24 times

  princenuel Highly Voted  7 months, 3 weeks ago

KEYWORD here is DATABASE
upvoted 6 times

  Pranava_GCP Most Recent  23 hours, 54 minutes ago

Selected Answer: CE
C. Amazon RDS
E. Amazon DynamoDB
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: CE
C. Amazon RDS: Amazon RDS (Relational Database Service) is a fully managed database service that supports popular relational database
engines such as MySQL, PostgreSQL, Oracle, SQL Server, and Amazon Aurora. It handles administrative tasks such as database setup,
patching, backups, and automated backups, allowing users to focus on their applications rather than database management.

E. Amazon DynamoDB: Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance
with seamless scalability. It offers automatic scaling, built-in security, and automated backups, making it an ideal choice for applications
that require low-latency data access and flexible scaling.
upvoted 1 times

  STOPITALREADY 4 weeks ago

Selected Answer: CE
C. Amazon RDS
E. Amazon DynamoDB.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. Amazon RDS
E. Amazon DynamoDB.
upvoted 1 times

  GorioDeCavite 1 month, 4 weeks ago

i think C and E
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: CE
Only these two are database services
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: CE
database so i choose CE
upvoted 1 times

  RiaanMO 5 months, 2 weeks ago

C and D= Database
upvoted 1 times

  RiaanMO 5 months, 2 weeks ago

Correction C and E = Database
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: CE
CE is the answer.
upvoted 1 times

  Max17 9 months, 1 week ago

Selected Answer: CE
C and E
upvoted 2 times

  Kantene 9 months, 1 week ago

Selected Answer: CE
Vote for C & E
upvoted 2 times

  ksuccex 9 months, 3 weeks ago

CE is correct
upvoted 1 times

  vikash_0219 10 months, 1 week ago

Except for C & E, none of them is DB services so, the answer is C & E
upvoted 4 times

  sumanshu 10 months, 3 weeks ago

Vote for C & E
upvoted 1 times
Question #49 Topic 1

A company is using the AWS Free Tier for several AWS services for an application.
What will happen if the Free Tier usage period expires or if the application use exceeds the Free Tier usage limits?

A. The company will be charged the standard pay-as-you-go service rates for the usage that exceeds the Free Tier usage.

B. AWS Support will contact the company to set up standard service charges.

C. The company will be charged for the services it consumed during the Free Tier period, plus additional charges for service consumption
after the Free Tier period.

D. The company's AWS account will be frozen and can be restarted after a payment plan is established.

Correct Answer: A

Community vote distribution

A (92%) 4%

  Pranava_GCP 23 hours, 52 minutes ago

Selected Answer: A
A. The company will be charged the standard pay-as-you-go service rates for the usage that exceeds the Free Tier usage.
upvoted 1 times

  STOPITALREADY 3 weeks, 1 day ago

Selected Answer: A
A. The company will be charged the standard pay-as-you-go service rates for the usage that exceeds the Free Tier usage.
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: A
When the Free Tier usage period ends or the application exceeds the Free Tier limits, the company will start incurring charges for the
services used beyond the Free Tier allowances. These charges will be based on the standard pay-as-you-go rates for each AWS service that
is being utilized.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. The company will be charged the standard pay-as-you-go service rates for the usage that exceeds the Free Tier usage.
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: R
A is the answer
upvoted 1 times

  WaitForOso 4 months, 4 weeks ago

A is the answer
upvoted 1 times

  Saddle2DiEast 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: A
Answer is A
upvoted 2 times

  Adirya1 8 months ago

Selected Answer: A
ANSWER IS A
upvoted 3 times
  Cricca1862 8 months, 2 weeks ago
Selected Answer: A
Answer is A, and I don't understand how people can expect to be called by AWS Support...
upvoted 3 times

  ksuccex 9 months, 3 weeks ago

answer is A
upvoted 1 times

  gcerts 10 months ago

Selected Answer: A
Is correct
upvoted 2 times

  macfau 10 months ago

The Answer is A, the company just charge standard pay-as-you-go
upvoted 3 times

  Istiaque 10 months, 1 week ago

answer is A
upvoted 2 times

  real111 10 months, 2 weeks ago

Selected Answer: A
When your free tier expires or if your application use exceeds the free tier limits, you simply pay standard, pay-as-you-go service rates
upvoted 3 times

  Kayode 10 months, 2 weeks ago

Selected Answer: A
https://aws.amazon.com/free/free-tier-faqs/?audit=2019q1
upvoted 3 times
Question #50 Topic 1

A company recently deployed an Amazon RDS instance in its VPC. The company needs to implement a stateful firewall to limit traffic to the private
corporate network.
Which AWS service or feature should the company use to limit network traffic directly to its RDS instance?

A. Network ACLs

B. Security groups

C. AWS WAF

D. Amazon GuardDuty

Correct Answer: C

Community vote distribution

B (96%) 4%

  HaslinaF Highly Voted  9 months, 2 weeks ago

stateless-Netwrok ACL
stateful ; security group
upvoted 42 times

  V_a_r_u_n Highly Voted  7 months, 3 weeks ago

Selected Answer: B
AWS WAF is a web application firewall that lets you monitor the HTTP(S) requests that are forwarded to your protected web application
resources. You can protect the following resource types:
Amazon CloudFront distribution
Amazon API Gateway REST API
Application Load Balancer

AWS AppSync GraphQL API

Amazon Cognito user pool
upvoted 12 times

  Soumya198725 Most Recent  3 days, 13 hours ago

Stateful firewall mentioned means Security group
upvoted 1 times

  Tarasharma 1 week, 5 days ago

wy is the admin gicign wrong answer ?
upvoted 1 times

  Hayden001 2 weeks, 1 day ago

B is correct
upvoted 1 times

  sri073 3 weeks ago

Selected Answer: B
stateful firewall--security group
upvoted 1 times

  tuan_nn 3 weeks, 2 days ago

Selected Answer: B
B is correct
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: B
Security groups are a fundamental feature of AWS that act as stateful firewalls for controlling inbound and outbound traffic at the
instance level. They provide granular control over traffic by allowing or denying specific protocols, ports, and IP ranges.

To limit network traffic to the Amazon RDS instance, the company can configure the associated security group to only allow inbound
connections from the private corporate network. By specifying the appropriate rules, the company can restrict access to the RDS instance
to only the necessary IP addresses or IP ranges.
upvoted 1 times

  gaurav1303 3 weeks, 3 days ago

With AWS WAF, you can create security rules that control bot traffic and block common attack patterns such as SQL injection or cross-site
scripting (XSS).
ITS b
upvoted 1 times

  sivakarthick16 4 weeks ago

Selected Answer: B
To limit network traffic directly to the Amazon RDS instance in the company's VPC, the appropriate AWS service or feature to use is B.
Security groups. AWS WAF (C) is a web application firewall that protects web applications from common web exploits, but it is not directly
related to limiting network traffic to an RDS instance.
upvoted 3 times

  HC89 1 month ago

Selected Answer: B
Security groups act as a stateful firewall for your Amazon RDS instance, allowing you to specify inbound and outbound traffic that is
allowed to reach the instances that are associated with the security group. Because they are stateful, any changes in inbound rules will
automatically reflect in outbound rules.

On the other hand, Network ACLs (NACLs) are stateless and operate at the subnet level. AWS WAF is a web application firewall that helps
protect your web applications or APIs. Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity
and unauthorized behavior.
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. Security groups
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Security groups
upvoted 1 times

  fathyrashad77 2 months, 3 weeks ago

Selected Answer: B
stateless-Netwrok ACL
stateful ; security group
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: B
Os grupos de segurança são firewalls virtuais que controlam o tráfego de entrada e saída para as instâncias da AWS em sua VPC.
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: B
stateful ,so i choose b
upvoted 1 times

  Almuzn 3 months, 1 week ago

B is correct:
a SG is stateful whereas a waf is stateless, since the implemented solution expects a stateful firewall then SG is the appropriate choice.
more info : https://jayendrapatil.com/aws-network-firewall-vs-waf-vs-security-groups-vs-nacls/
upvoted 2 times
Question #51 Topic 1

Which AWS service uses machine learning to help discover, monitor, and protect sensitive data that is stored in Amazon S3 buckets?

A. AWS Shield

B. Amazon Macie

C. AWS Network Firewall

D. Amazon Cognito

Correct Answer: B

Community vote distribution

B (100%)

  SmartLearner Highly Voted  9 months ago

Selected Answer: B
https://aws.amazon.com/macie/

Amazon Macie is a data security and data privacy service that uses machine learning (ML) and pattern matching to discover and protect
your sensitive data.
upvoted 11 times

  man5484 Most Recent  3 weeks, 2 days ago

Selected Answer: B
Amazon Macie is a security service offered by AWS that leverages machine learning algorithms to automatically discover, classify, and
protect sensitive data stored in Amazon S3 buckets. It helps organizations identify and understand the content of their S3 data by
analyzing the data for sensitive information such as personally identifiable information (PII), financial data, and intellectual property.

Macie uses machine learning models to identify and classify data patterns, enabling the detection of sensitive data even if it is stored in an
unstructured format or embedded within larger files. It provides automated alerts and generates reports to assist with data privacy and
compliance efforts.
upvoted 1 times

  misto 1 month ago

Selected Answer: B
B. Macie
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. Amazon Macie
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Amazon Macie
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: B
ML Aws = Macie
upvoted 1 times

  rahul05 3 months, 3 weeks ago

Vote for B
upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A - protect from DDOS

B-

C - managed firewall and provides centralized threat detection

D - for user sign-in (AUTH for web/mobile app)

Answer: B
upvoted 4 times
  Saif93 6 months, 2 weeks ago
Selected Answer: B
B is the answer.
upvoted 1 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: B
Amazon Macie
upvoted 2 times

  tonwija 8 months, 1 week ago

Selected Answer: B
cieeeeeee
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: B
https://aws.amazon.com/macie/
upvoted 2 times

  ksuccex 9 months, 3 weeks ago

macie is d answer,so B is correct
upvoted 2 times

  Istiaque 10 months, 1 week ago

answer is B
upvoted 2 times

  certiflux 10 months, 2 weeks ago

Selected Answer: B
vote for b
upvoted 1 times

  vrusha10 10 months, 2 weeks ago

https://aws.amazon.com/macie/#:~:text=Amazon%20Macie%20is%20a%20fully,your%20sensitive%20data%20in%20AWS.
vote for B
upvoted 2 times

  sumanshu 10 months, 3 weeks ago

Vote for B
upvoted 2 times
Question #52 Topic 1

A company wants to improve the overall availability and performance of its applications that are hosted on AWS.
Which AWS service should the company use?

A. Amazon Connect

B. Amazon Lightsail

C. AWS Global Accelerator

D. AWS Storage Gateway

Correct Answer: C

Community vote distribution

C (91%) 9%

  Cricca1862 Highly Voted  8 months, 2 weeks ago

Selected Answer: C
Global Accelerator improves overall performance and availability. Those who vote B should go check the use cases covered by LightSail
and that it's ONE virtual server, not the best when it comes to availability and performance...
upvoted 11 times

  SeranDevaraju Most Recent  20 hours, 58 minutes ago

C. AWS Global Accelerator
upvoted 1 times

  STOPITALREADY 2 weeks, 3 days ago

Selected Answer: C
C. AWS Global Accelerator
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: C
AWS Global Accelerator is a networking service that helps improve the availability and performance of applications with a global user
base. It provides static IP addresses that act as entry points to your application, routing user traffic to the nearest AWS edge location for
low-latency and high-performance delivery.

By using AWS Global Accelerator, the company can benefit from improved availability and performance by leveraging the global AWS
infrastructure. It intelligently routes traffic across multiple regions and edge locations, allowing users to access applications with reduced
latency and improved response times.
upvoted 1 times

  HC89 1 month ago

Selected Answer: C
AWS Global Accelerator improves the availability and performance of your applications. It uses the highly available and congestion-free
AWS global network to direct internet traffic from your users to your applications on AWS. AWS Global Accelerator routes user traffic to
the AWS endpoint that provides the best performance, which can be the one that is geographically nearest, has the healthiest application
instances, or has the least network congestion. This can result in an overall improvement in the user experience of your applications.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: C
C. AWS Global Accelerator
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. AWS Global Accelerator.
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: C
AWS Global Accelerator is a fully managed, global networking solution that helps improve the performance, availability, and security of
your global application workloads.
upvoted 3 times

  kumaran1000001 4 months, 3 weeks ago

A - Contact Service Center
B - Low-End hosting solution

C - improves the availability and performance

D - Hybrid Storage solution

Answer: C
upvoted 4 times
  DuboisNicolasDuclair 6 months, 1 week ago
Selected Answer: C
B c'est pour déployer les applications lorsqu'on a pas de connaissances sur AWS. la bonne réponse c'est C
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  N3ar 8 months, 3 weeks ago

But they want to 'IMPROVE' their existing application, no? Not building one again. Why not C: Global Accelerator then.
upvoted 1 times

  SmartLearner 8 months, 3 weeks ago

Selected Answer: B
This is tricky but after research B is correct, lightsail.

Amazon's Free Virtual Cloud Server

Get started for free with Amazon Lightsail, a powerful virtual cloud server built for reliability & performance.
upvoted 2 times

  N9 8 months, 1 week ago

Lightsail is good for small businesses and simple websites with cheap pricing. On the other hand, Global Accelerator is for availability
and performance.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

yes for new setup on AWS but NOT for existing setup
upvoted 1 times

  Thaamizh 8 months, 4 weeks ago

Selected Answer: C
Global Accelerator improves overall performance & availability
upvoted 2 times

  SmartLearner 9 months ago

Selected Answer: C
https://aws.amazon.com/global-accelerator/?blogs-global-accelerator.sort-by=item.additionalFields.createdDate&blogs-global-
accelerator.sort-order=desc&aws-global-accelerator-wn.sort-by=item.additionalFields.postDateTime&aws-global-accelerator-wn.sort-
order=desc

AWS Global Accelerator is a networking service that improves the performance of your users’ traffic by up to 60% using Amazon Web
Services’ global network infrastructure. When the internet is congested, AWS Global Accelerator optimizes the path to your application to
keep packet loss, jitter, and latency consistently low.
upvoted 4 times

  kuririkura 9 months ago

Selected Answer: B
B... C is shortest path routing on network, doesn't related to reliability and performance, while
Amazon Lightsail Is a Powerful Virtual Server That Is Built for Reliability & Performance.
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

C is correct
upvoted 1 times
Question #53 Topic 1

Which AWS service or feature identifies whether an Amazon S3 bucket or an IAM role has been shared with an external entity?

A. AWS Service Catalog

B. AWS Systems Manager

C. AWS IAM Access Analyzer

D. AWS Organizations

Correct Answer: C

Community vote distribution

C (100%)

  Tincho13v Highly Voted  11 months ago

Selected Answer: C
Access Analyzer helps you identify the resources in your organization and accounts, such as Amazon S3 buckets or IAM roles, shared with
an external entity. This lets you identify unintended access to your resources and data, which is a security risk.
https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html
upvoted 19 times

  KiwE Highly Voted  6 months, 3 weeks ago

Another thing I've never, ever, seen mentioned anywhere else and would have to guess
upvoted 12 times

  man5484 Most Recent  3 weeks, 2 days ago

Selected Answer: C
AWS IAM Access Analyzer is a service that helps identify and review unintended access to resources in an AWS account. It uses automated
reasoning to analyze resource policies, including S3 bucket policies and IAM roles, to identify any potential external access permissions.

With IAM Access Analyzer, users can quickly identify whether their S3 bucket or IAM role has been shared with external entities such as
other AWS accounts. It provides detailed findings that highlight any potential issues with access permissions and recommends actions to
remediate them.
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: C
C. AWS IAM Access Analyzer
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. AWS IAM Access Analyzer
upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A - management of portfolio of services

b - manage ec2 and on-premise instances

C-

D - manage member accounts

answer: C
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  hiennt 10 months, 1 week ago

Selected Answer: C
Vote C
https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html
upvoted 3 times

  akashman 10 months, 2 weeks ago

https://www.google.com/search?
q=Which+AWS+service+or+feature+identifies+whether+an+Amazon+S3+bucket+or+an+IAM+role+has+been+shared+with+an+external+ent
ity%3F&rlz=1C1GCEU_zh-TWTW1015TW1015&sourceid=chrome&ie=UTF-8
CRRECT ANSWER C
upvoted 1 times

  sumanshu 10 months, 3 weeks ago

Vote for C
upvoted 1 times
Question #54 Topic 1

A company does not want to rely on elaborate forecasting to determine its usage of compute resources. Instead, the company wants to pay only
for the resources that it uses. The company also needs the ability to increase or decrease its resource usage to meet business requirements.
Which pillar of the AWS Well-Architected Framework aligns with these requirements?

A. Operational excellence

B. Security

C. Reliability

D. Cost optimization

Correct Answer: D

Community vote distribution

D (71%) C (29%)

  vedhirve 1 week, 1 day ago

Selected Answer: D
Cost optimizations, as we are talking about reducing the costs.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: D
D. Cost optimization the correct answer.
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: D
Cost optimization in the AWS Well-Architected Framework focuses on designing and implementing systems that enable organizations to
achieve the desired business outcomes while minimizing costs. It emphasizes maximizing the value of IT investments by eliminating
waste, optimizing resource utilization, and choosing the most cost-effective solutions.

In this scenario, the company's goal of paying only for the resources it uses aligns with cost optimization by avoiding unnecessary
expenses. By leveraging AWS services such as pay-as-you-go pricing models, the company can dynamically scale resources up or down
based on business requirements, optimizing costs by aligning them with actual usage.

Additionally, the company's desire to avoid elaborate forecasting aligns with cost optimization as it allows the company to be agile and
responsive to changing needs without the need for long-term commitments or complex capacity planning.
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: D
D. Cost optimization
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

D. Cost optimization.
upvoted 2 times

  ADatt 2 months ago

Cost optimization- D
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

The correct answer is D. Cost optimization.

The AWS Well-Architected Framework is a collection of best practices and guidelines designed to help customers build secure, high-
performing, resilient, and efficient infrastructure for their applications. It consists of five pillars: operational excellence, security, reliability,
performance efficiency, and cost optimization.

The requirements in the question align with the cost optimization pillar of the AWS Well-Architected Framework. The cost optimization
pillar focuses on using AWS resources efficiently and cost-effectively by selecting the right resource types and sizes, leveraging elasticity to
scale resources up and down based on demand, and using automation to optimize resource utilization.

By paying only for the resources that it uses and being able to increase or decrease its resource usage to meet business requirements, the
company is effectively using the cost optimization pillar to optimize its AWS usage.
upvoted 3 times
  Guru4Cloud 4 months ago
Selected Answer: D
The requirements mentioned align with the "Cost Optimization" pillar of the AWS Well-Architected Framework. This pillar focuses on
designing systems that deliver business value at the lowest possible price point, by optimizing costs in multiple dimensions such as
elasticity, expenditure awareness, and resource utilization. By paying only for the resources that it uses and having the ability to increase
or decrease resource usage, the company can achieve cost optimization.
upvoted 2 times

  Vinayhasija 4 months, 3 weeks ago

Selected Answer: D
The pillar of the AWS Well-Architected Framework that aligns with these requirements is D. Cost optimization.

The company's objective is to pay only for the resources it uses, which is a cost optimization strategy. The ability to increase or decrease
its resource usage to meet business requirements is also an essential aspect of cost optimization. The cost optimization pillar is all about
finding ways to optimize costs without sacrificing performance, security, or reliability. By paying only for the resources that are used, the
company can save money and reduce waste.
upvoted 2 times

  et_learner 4 months, 3 weeks ago

Selected Answer: D
Adopt a consumption model: Pay only for the computing resources that you require and increase or decrease usage depending on
business requirements
upvoted 2 times

  kumaran1000001 4 months, 3 weeks ago

A - continuous improvement processes and procedures and systems

B - Securing system and protecting resources

C - Ensuring systems operates reliably

D-

Answer: D
upvoted 1 times

  Metudu 5 months, 1 week ago

According to ChatGPT:
The pillar of the AWS Well-Architected Framework that aligns with the given requirements is "Cost Optimization".

Cost optimization is one of the five pillars of the AWS Well-Architected Framework. It focuses on designing and operating workloads to
deliver business value at the lowest possible price. To achieve this, AWS offers a range of services that allow companies to pay only for the
resources they use, and the ability to increase or decrease resources as needed to meet business requirements.

In this case, the company does not want to rely on elaborate forecasting to determine its usage of compute resources and wants to pay
only for the resources it uses, which aligns with the principles of cost optimization. By leveraging AWS's on-demand and auto-scaling
capabilities, the company can easily adjust its resource usage to meet business requirements while keeping costs under control.
upvoted 2 times

  ptoul74 5 months, 1 week ago

Stop guessing capacity and Scale horizontally to increase aggregate workload availability are two Design principles stressed by the
Reliability Pillar.
Then, correct answer is C.
upvoted 2 times

  wabosi 5 months, 1 week ago

Selected Answer: C
I vote for C
upvoted 1 times

  noahsark 5 months, 1 week ago

Selected Answer: C
Reliability

Stop guessing capacity

https://aws.amazon.com/blogs/apn/the-6-pillars-of-the-aws-well-architected-framework/
upvoted 1 times

  Cloud_Explorer 5 months, 3 weeks ago

Selected Answer: D
Answer is D.
Everything points to a consumption model.
upvoted 1 times

  Akinwaleo 6 months, 1 week ago

Selected Answer: D
company wants to pay only for the resources that it uses
upvoted 1 times
Question #55 Topic 1

A company wants to launch its workload on AWS and requires the system to automatically recover from failure.
Which pillar of the AWS Well-Architected Framework includes this requirement?

A. Cost optimization

B. Operational excellence

C. Performance efficiency

D. Reliability

Correct Answer: D

Community vote distribution

D (100%)

  man5484 3 weeks, 2 days ago

Selected Answer: D
Reliability in the AWS Well-Architected Framework refers to the ability of a system to recover from infrastructure or service disruptions, as
well as to dynamically acquire computing resources to meet demand. It emphasizes designing systems that can automatically handle
failures and continue operating without manual intervention.

In this scenario, the company's requirement for automatic recovery from failure reflects the focus on building a reliable system that can
withstand disruptions and maintain availability. By designing the workload to be resilient and implementing fault-tolerant architectures,
the system can automatically recover and continue functioning even in the event of failures or disruptions.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: D
D. Reliability
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

D. Reliability.
upvoted 1 times

  Justin_ts 2 months, 3 weeks ago

keyword i think here is Recovery. so Reliability
upvoted 1 times

  ese1 4 months, 2 weeks ago

Selected Answer: D
Recovery is the right word referring to reliability
upvoted 1 times

  Akinwaleo 6 months, 1 week ago

Selected Answer: D
Recover is the key word
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.

The reliability pillar includes the ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing
resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues.

https://docs.aws.amazon.com/wellarchitected/latest/high-performance-computing-lens/reliability-pillar.html
upvoted 2 times

  JAMTARA 7 months, 4 weeks ago

ashif says answer is E
upvoted 1 times

  Tally321 7 months, 1 week ago

There is no "E". The only options are A-D.
upvoted 1 times
  JA2018 9 months, 1 week ago
Selected Answer: D
only viable option for this question's context
upvoted 1 times

  MaGarMa 9 months, 3 weeks ago

Selected Answer: D
Answer is D (Refference: https://aws.amazon.com/architecture/well-architected/?nc1=h_ls&wa-lens-whitepapers.sort-
by=item.additionalFields.sortDate&wa-lens-whitepapers.sort-order=desc&wa-guidance-whitepapers.sort-
by=item.additionalFields.sortDate&wa-guidance-whitepapers.sort-order=desc)
upvoted 2 times

  ksuccex 9 months, 3 weeks ago

D IS CORRECT
upvoted 1 times

  sumanshu 10 months, 3 weeks ago

Vote for D
upvoted 2 times

  k_akshay 10 months, 3 weeks ago

Reliability
The Reliability pillar encompasses the ability of a workload to perform its intended function correctly and consistently when it’s expected
to. This includes the ability to operate and test the workload through its total lifecycle. You can find prescriptive guidance on
implementation in the Reliability Pillar whitepaper.

Design Principles
There are five design principles for reliability in the cloud:

Automatically recover from failure

Test recovery procedures
Scale horizontally to increase aggregate workload availability
Stop guessing capacity
Manage change in automation
upvoted 3 times
Question #56 Topic 1

A large enterprise with multiple VPCs in several AWS Regions around the world needs to connect and centrally manage network connectivity
between its VPCs.
Which AWS service or feature meets these requirements?

A. AWS Direct Connect

B. AWS Transit Gateway

C. AWS Site-to-Site VPN

D. VPC endpoints

Correct Answer: B

Community vote distribution

B (100%)

  Salacity Highly Voted  9 months, 2 weeks ago

Selected Answer: B
Answer is B. Keyword here is "centrally". Transit gateway acts as a central hub to connect VPCs.
upvoted 15 times

  Cloud_Explorer Highly Voted  5 months, 3 weeks ago

Selected Answer: B
It's Transit Gateway.
Imo this question is outside the Cloud Practitioner scope, and comes in the 'Network Speciality' context.
upvoted 7 times

  Metudu 5 months, 1 week ago

Transit Gateway was in the scope before but they probably remove it from CCP curriculum later. I'm studying with the exam guide and
for 24.02.2023, transit gateway is not in the scope
upvoted 3 times

  man5484 Most Recent  3 weeks, 2 days ago

Selected Answer: B
AWS Transit Gateway is a fully managed service that simplifies the connectivity and routing between VPCs and on-premises networks. It
acts as a hub that enables inter-VPC communication and connectivity to on-premises data centers or remote networks.

With AWS Transit Gateway, the large enterprise can create a single gateway and establish peering connections with multiple VPCs across
different AWS Regions. This allows for centralized management and control of network traffic between VPCs, simplifying network
architecture and reducing administrative overhead.
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. AWS Transit Gateway
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. AWS Transit Gateway
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: B
AWS Transit Gateway is a service that simplifies network connectivity between VPCs, VPNs, and on-premises networks. It allows the
company to centrally connect to multiple VPCs in different AWS regions using a single gateway, making it easier to manage large-scale
network connectivity.
upvoted 4 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Thaamizh 8 months, 4 weeks ago

Selected Answer: B
Transit gateway acts a 'central hub' for multiple VPC connectivity.
upvoted 4 times
  Kantene 9 months, 1 week ago
Selected Answer: B
Vote for B
upvoted 2 times

  Istiaque 10 months, 1 week ago

answer is B
upvoted 1 times

  music4kris 10 months, 2 weeks ago

Selected Answer: B
https://aws.amazon.com/transit-gateway/?whats-new-cards.sort-by=item.additionalFields.postDateTime&whats-new-cards.sort-
order=desc
upvoted 4 times

  Vanessa41 10 months, 2 weeks ago

Selected Answer: B
However, if you have services in multiple Regions, a Transit Gateway will allow you to access those services with a simpler network
configuration.
upvoted 3 times

  certiflux 10 months, 2 weeks ago

It should be VPC Pairing
https://docs.aws.amazon.com/devicefarm/latest/developerguide/amazon-vpc-cross-region.html
upvoted 2 times

  SDK2021 7 months ago

If you mean VPC Peering then VPC peering has limitations :
-VPC peering does not support transitive peering relationships
-Difficult to manage at scale
upvoted 1 times

  MottaM 10 months, 2 weeks ago

I think the answer should be "C" because of the below reason:
A) AWS Direct connect --> Involves VPC and on premise infra ( So wrong )
B) AWS Transit gateway --> Involves VPC and on premise infra ( so wrong )
D) VPN endpoints ( not relevant )

C) Connects between two VPC ( So i thing this could

be the right one )
upvoted 2 times

  Wachy 8 months, 1 week ago

The question said multiple VPCs, not just two so, we are looking for a hub-like feature. B is the answer.
upvoted 2 times

  AntNest 10 months, 2 weeks ago

AWS Transit Gateway routes all traffic to and from each VPC or VPN, and you have one place to manage and monitor it all.
---quote from "https://aws.amazon.com/transit-gateway/"
upvoted 2 times

  sumanshu 10 months, 3 weeks ago

Vote for B
upvoted 1 times
Question #57 Topic 1

Which AWS service supports the creation of visual reports from AWS Cost and Usage Report data?

A. Amazon Athena

B. Amazon QuickSight

C. Amazon CloudWatch

D. AWS Organizations

Correct Answer: A

Community vote distribution

B (83%) A (17%)

  Cert_alert Highly Voted  10 months, 2 weeks ago

Quicksight for sure. Check the link below. In addition I did a lab last week doing exactly what this scenario talks about.

https://aws.amazon.com/premiumsupport/knowledge-center/quicksight-cost-usage-report/
upvoted 24 times

  kuririkura 9 months ago

who gonna ask this kind of question during the first deployment? too advanced
upvoted 3 times

  MaGarMa 9 months, 3 weeks ago

Good, this scenario actually answers this question, great contribution
upvoted 2 times

  STOPITALREADY Most Recent  2 weeks, 3 days ago

Selected Answer: B
Athena does the job but for the visual Report you need Quicksight don't we
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: B
Amazon QuickSight is a business intelligence (BI) service that allows users to create interactive visualizations, reports, and dashboards
from various data sources, including AWS services. It provides rich visualization capabilities to analyze and explore data, enabling users to
gain insights and make data-driven decisions.

With Amazon QuickSight, users can connect to their AWS Cost and Usage Report data and create visual reports to analyze and track their
AWS costs. They can build charts, graphs, and other visualizations to understand cost trends, identify cost drivers, and compare spending
across different dimensions such as services, accounts, regions, and more.
upvoted 2 times

  MIGUE27 1 month ago

O serviço da AWS que oferece suporte à criação de relatórios visuais a partir de dados do AWS Cost and Usage Report é o Amazon
QuickSight.
upvoted 1 times

  dbwhddn10 1 month ago

Selected Answer: B
B. 100% check aws youtube
https://www.youtube.com/watch?v=hIr_1VCSdoU
upvoted 1 times

  HC89 1 month ago

Selected Answer: B
Amazon QuickSight is a fast, cloud-powered business intelligence service that makes it easy to deliver insights to everyone in your
organization. It allows you to create and publish interactive dashboards that include ML-powered insights. Your end users can also use
QuickSight to perform ad hoc analysis and get business insights from their dashboards on any device, or embedded into applications,
portals, and websites. In the context of AWS cost management, QuickSight can be used to visualize the data from AWS Cost and Usage
Report for a better understanding of the expenses.
upvoted 1 times

  nawasjuhi 1 month ago

Selected Answer: A
athena is corect answer seems as per ggogle
upvoted 1 times

  ankybag3 3 weeks, 3 days ago

Athena is for visualizing data stored on S3 buckets + capability to query
upvoted 2 times

  ankybag3 3 weeks, 3 days ago

So the answer cannot be A
upvoted 1 times

  MP_Learner 1 month ago

B. Quicksight
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. Amazon QuickSight
upvoted 1 times

  muzammil572 1 month, 2 weeks ago

The correct answer is B. Amazon QuickSight.

Amazon QuickSight is an AWS service that supports the creation of visual reports from AWS Cost and Usage Report data. It allows you to
easily analyze and visualize your cost and usage data using various charts, graphs, and dashboards. With QuickSight, you can gain insights
into your AWS spending patterns and optimize your costs effectively.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. Amazon QuickSight
upvoted 1 times

  julianorr 2 months, 3 weeks ago

Selected Answer: B
The AWS Cost and Usage Report is a service that provides detailed information about AWS costs and usage in CSV format. AWS QuickSight
is a business intelligence tool that lets you create interactive reports and dashboards from this data.
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

The correct answer is B. Amazon QuickSight.

Amazon QuickSight is a business intelligence service that allows users to create and publish interactive dashboards, reports, and
visualizations using AWS data sources. It supports a variety of data sources, including AWS services such as Amazon RDS, Amazon
Redshift, Amazon S3, and AWS Cost and Usage Report.
upvoted 2 times

  nixonlaw 3 months ago

Selected Answer: A
The answer is A,Athena. see https://docs.aws.amazon.com/cur/latest/userguide/cur-query-athena.html
upvoted 1 times

  Apelle 2 months, 3 weeks ago

"Amazon Athena is a serverless query service" a query service not a data visualization tool.
upvoted 5 times

  Jeetesh 1 month, 4 weeks ago

it is referrering to report visualisation like a plain report. Data visualisation is more like a BI tool (Dashboards etc).
upvoted 1 times

  Almuzn 3 months ago

A is correct
aws doc: Amazon Athena is a serverless query service that you can use to analyze the data from your AWS Cost and Usage Reports...
more info: https://docs.aws.amazon.com/cur/latest/userguide/cur-query-athena.html
upvoted 1 times

  RamanKumar 3 months, 1 week ago

Selected Answer: A
https://docs.aws.amazon.com/cur/latest/userguide/cur-query-athena.html
upvoted 1 times

  Junyoungwang 3 months, 1 week ago

I don't like this question. They can just use Cost Explorer instead of all these.
upvoted 2 times
Question #58 Topic 1

Which AWS service should be used to monitor Amazon EC2 instances for CPU and network utilization?

A. Amazon Inspector

B. AWS CloudTrail

C. Amazon CloudWatch

D. AWS Config

Correct Answer: C

Community vote distribution

C (100%)

  Shaychay Highly Voted  10 months ago

Selected Answer: C
Amazon CloudWatch is a web service that enables you to monitor and manage various metrics and configure alarm actions based on data
from those metrics.
CloudWatch uses metrics to represent the data points for your resources. AWS services send metrics to CloudWatch. CloudWatch then
uses these metrics to create graphs automatically that show how performance has changed over time.
upvoted 5 times

  STOPITALREADY Most Recent  2 weeks, 3 days ago

Selected Answer: C
Amazon CloudWatch
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: C
Amazon CloudWatch is a monitoring service provided by AWS that enables users to collect and track metrics, logs, and events from
various AWS resources, including Amazon EC2 instances. With CloudWatch, users can monitor CPU utilization, network utilization, and
other metrics to gain insights into the performance and health of their EC2 instances.

By setting up CloudWatch metrics, users can collect data on CPU usage and network traffic at regular intervals, allowing them to monitor
resource utilization and identify any performance bottlenecks or anomalies. CloudWatch provides real-time monitoring, customizable
dashboards, and the ability to set alarms and receive notifications based on predefined thresholds.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: C
C. Amazon CloudWatch
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

C. Amazon CloudWatch
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  susunz 7 months, 1 week ago

Selected Answer: C
use cloudwatch to monitor CPU etc. And Amazon Inspector is for vulnerability management
upvoted 4 times

  ksuccex 9 months, 3 weeks ago

C is correct
upvoted 2 times

  Istiaque 10 months, 1 week ago

answer is C
upvoted 1 times

  sumanshu 10 months, 3 weeks ago

Vote for C
upvoted 1 times
Question #59 Topic 1

A company is preparing to launch a new web store that is expected to receive high traffic for an upcoming event. The web store runs only on AWS,
and the company has an AWS Enterprise Support plan.
Which AWS resource will provide guidance about how the company should scale its architecture and operational support during the event?

A. AWS Abuse team

B. The designated AWS technical account manager (TAM)

C. AWS infrastructure event management

D. AWS Professional Services

Correct Answer: B

Community vote distribution

C (70%) B (30%)

  dldjven Highly Voted  11 months ago

Selected Answer: C
C
https://aws.amazon.com/premiumsupport/programs/iem/
AWS Infrastructure Event Management (IEM) offers architecture and scaling guidance and operational support during the preparation
and execution of planned events, such as shopping holidays, product launches, and migrations. For these events, AWS Infrastructure
Event Management will help you assess operational readiness, identify and mitigate risks, and execute your event confidently with AWS
experts by your side. The program is included in the Enterprise Support plan and is available to Business Support customers for an
additional fee.
upvoted 36 times

  trong1992 Highly Voted  11 months ago

C is anwser
AWS Infrastructure Event Management (IEM) offers architecture and scaling guidance and operational support during the preparation
and execution of planned events, such as shopping holidays, product launches, and migrations
upvoted 9 times

  vedhirve Most Recent  1 week, 1 day ago

Selected Answer: B
In enterprise plan, TAM will guide on scaling the architecture and operational support.
They are highly skilled professionals, who will collaborate with companys techincal teams.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: C
https://aws.amazon.com/premiumsupport/programs/iem/
Answer is C. AWS Infrastructure Event Management
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: B
As part of the AWS Enterprise Support plan, the company has access to a designated AWS technical account manager (TAM). The TAM
serves as a trusted advisor and provides personalized guidance and assistance to the company in leveraging AWS services effectively.

In this scenario, with the anticipated high traffic for the upcoming event, the TAM can provide guidance on scaling the architecture to
handle the increased load. They can offer recommendations on utilizing AWS services such as Auto Scaling, Elastic Load Balancing, and
caching mechanisms to ensure the web store can handle the expected traffic surge.

Additionally, the TAM can provide operational support, helping the company optimize its AWS resources, troubleshoot any issues, and
ensure the smooth operation of the web store during the event.
upvoted 1 times

  Tachy0n 3 weeks, 6 days ago

Selected Answer: B
AWS infrastructure event management is a service that helps you monitor and respond to infrastructure events. It would not be able to
provide guidance on how to scale the architecture and operational support.
upvoted 3 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS infrastructure event management
upvoted 2 times
  ESAJRR 1 month, 1 week ago
Selected Answer: C
C. AWS infrastructure event management
upvoted 2 times

  Hhllh 1 month, 1 week ago

Selected Answer: B
Included in enterprise plan already
upvoted 1 times

  muzammil572 1 month, 2 weeks ago

The designated AWS technical account manager (TAM) would provide guidance about how the company should scale its architecture and
operational support during the event.

The TAM is an AWS resource that comes with an AWS Enterprise Support plan. They act as a single point of contact within AWS and provide
personalized technical guidance, architectural advice, and best practices to help customers optimize their AWS usage. They can assist in
designing scalable and reliable architectures, identifying potential bottlenecks, and recommending optimizations to handle high traffic
events like the upcoming one for the web store.

Option B: The designated AWS technical account manager (TAM) is the correct answer.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. The designated AWS technical account manager (TAM)
upvoted 1 times

  Zonci 2 months ago

The AWS resource that will provide guidance about how the company should scale its architecture and operational support during the
event is:

B. The designated AWS technical account manager (TAM)

As part of an AWS Enterprise Support plan, customers are assigned a designated Technical Account Manager (TAM) who serves as a
trusted advisor and a single point of contact within AWS. The TAM works closely with the customer to understand their business needs,
provide architectural guidance, and offer proactive recommendations for optimizing their AWS infrastructure.
upvoted 2 times

  AbdulMalik_Y 2 months, 1 week ago

Selected Answer: C
Answer is C
read this
https://aws.amazon.com/premiumsupport/programs/iem/
upvoted 2 times

  yayaayzo 2 months, 2 weeks ago

B. The designated AWS technical account manager (TAM)

In this scenario, the designated AWS technical account manager (TAM) will provide guidance about how the company should scale its
architecture and operational support during the event. A TAM is a resource available to customers with an AWS Enterprise Support plan.
They act as a trusted advisor and provide personalized support and guidance to help customers achieve their business goals and
effectively utilize AWS services.
upvoted 2 times

  rachmatthidayat 2 months, 1 week ago

probably right, since TAM will also help to provide tailored engagements including strategic Business Reviews, Security Improvement
Programs, guided Well-Architected reviews, Cost Optimization workshops, and a range of proactive services. But in term of this
question that specifically mentioning about guidance about how the company should scale its architecture and operational support
during the event, it more closer to the AWS IEM functions offers architecture and scaling guidance and operational support during the
preparation and execution of planned events, such as shopping holidays, product launches, and migrations.

Reference:
https://aws.amazon.com/premiumsupport/programs/iem/
upvoted 1 times

  jahmad0730 2 months, 2 weeks ago

B is the updated answer
upvoted 1 times

  pedrolaez 2 months, 2 weeks ago

Selected Answer: B
Option C (AWS infrastructure event management) refers to AWS handling infrastructure events such as maintenance, updates, or outages.
While AWS infrastructure event management is important, it does not provide specific guidance on scaling architecture and operational
support for the company's web store.
upvoted 1 times
  Yasser001 2 months, 3 weeks ago
The correct answer is B. The designated AWS technical account manager (TAM).

The AWS Enterprise Support plan provides customers with access to an AWS technical account manager (TAM). TAMs are experienced
technical advisors who provide personalized guidance and support to help customers optimize their AWS infrastructure and applications.
They can assist with a range of activities, such as architecture design, cost optimization, performance tuning, and security planning.

In this scenario, the company is preparing to launch a new web store that is expected to receive high traffic for an upcoming event. The
company runs only on AWS, and they have an AWS Enterprise Support plan. In this case, the designated AWS technical account manager
(TAM) would be the best resource to provide guidance about how the company should scale its architecture and operational support
during the event. The TAM can help the company assess their current architecture, identify areas of improvement, and provide
recommendations on how to optimize the infrastructure for the expected traffic.
upvoted 4 times

  rachmatthidayat 2 months, 1 week ago

Reference:
https://aws.amazon.com/premiumsupport/programs/iem/
upvoted 1 times
Question #60 Topic 1

A user wants to deploy a service to the AWS Cloud by using infrastructure-as-code (IaC) principles.
Which AWS service can be used to meet this requirement?

A. AWS Systems Manager

B. AWS CloudFormation

C. AWS CodeCommit

D. AWS Config

Correct Answer: B

Community vote distribution

B (100%)

  Shaychay Highly Voted  10 months ago

Infrastructure as code is the process of provisioning and managing your cloud resources by writing a template file that is both human
readable, and machine consumable. For AWS cloud development the built-in choice for infrastructure as code is AWS CloudFormation.
upvoted 17 times

  Pranava_GCP Most Recent  4 days, 18 hours ago

Selected Answer: B
B. AWS CloudFormation

"AWS CloudFormation is designed to allow resource lifecycles to be managed repeatably, predictable, and safely, while allowing for
automatic rollbacks, automated state management, and management of resources across accounts and regions. "

https://aws.amazon.com/cloudformation/faqs/
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: B
AWS CloudFormation is a service that allows users to define and provision AWS infrastructure resources using a declarative template. It
enables the creation of cloud resources in a consistent and repeatable manner, using infrastructure-as-code principles.

With AWS CloudFormation, users can define their desired infrastructure configuration in a template file written in YAML or JSON format.
This template describes the desired state of the AWS resources, including EC2 instances, load balancers, databases, and more. By
deploying the CloudFormation stack, the infrastructure is automatically provisioned based on the template, ensuring consistency and
reducing manual configuration.

CloudFormation templates can be version-controlled, shared, and reused, making it easier to manage and maintain infrastructure
configurations. They also support advanced features such as parameterization, conditional resource creation, and orchestration of multi-
tier applications.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. AWS CloudFormation
upvoted 1 times

  muzammil572 1 month, 2 weeks ago

A user wants to deploy a service to the AWS Cloud by using infrastructure-as-code (IaC) principles.
Which AWS service can be used to meet this requirement?
A. AWS Systems Manager
B. AWS CloudFormation
C. AWS CodeCommit
D. AWS Config
upvoted 1 times

  muzammil572 1 month, 2 weeks ago

The correct answer is B. AWS CloudFormation.

AWS CloudFormation is a service that allows you to provision and manage AWS resources using infrastructure-as-code (IaC) principles.
It enables you to define your infrastructure and application resources in a template file, which is written in either YAML or JSON format.
This template can be version-controlled, reviewed, and treated as a code artifact.
upvoted 3 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: B
infrastructure-as-code so i choose B
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  AbdelrhmanKamal_ 7 months ago

Selected Answer: B
Sure it's B
upvoted 2 times

  ksuccex 9 months, 3 weeks ago

B is correct
upvoted 1 times

  Istiaque 10 months, 1 week ago

answer is B
upvoted 1 times

  sumanshu 10 months, 3 weeks ago

Vote for B
upvoted 1 times

  samurosales 10 months, 3 weeks ago

Selected Answer: B
b is correct
upvoted 1 times

  manolin 10 months, 3 weeks ago

yes, is B https://docs.aws.amazon.com/whitepapers/latest/introduction-devops-aws/infrastructure-as-code.html; read at the end
upvoted 2 times
Question #61 Topic 1

A company that has multiple business units wants to centrally manage and govern its AWS Cloud environments. The company wants to automate
the creation of
AWS accounts, apply service control policies (SCPs), and simplify billing processes.
Which AWS service or tool should the company use to meet these requirements?

A. AWS Organizations

B. Cost Explorer

C. AWS Budgets

D. AWS Trusted Advisor

Correct Answer: A

Community vote distribution

A (100%)

  JA2018 Highly Voted  8 months, 2 weeks ago

Selected Answer: A
giveaways in question:

1. centrally manage and govern its AWS Cloud environment

2 . automate the creation of AWS accounts

]3. apply service control policies (SCPs)

4. simplify billing processes.

upvoted 6 times

  Pranava_GCP Most Recent  4 days, 17 hours ago

Selected Answer: A
A. AWS Organizations

"AWS Organizations is an account management service that enables you to consolidate multiple AWS accounts into an organization that
you create and centrally manage. AWS Organizations includes account management and consolidated billing capabilities that enable you
to better meet the budgetary, security, and compliance needs of your business. As an administrator of an organization, you can create
accounts in your organization and invite existing accounts to join the organization."

https://docs.aws.amazon.com/organizations/latest/userguide/orgs_introduction.html
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: A
AWS Organizations is a service that helps manage multiple AWS accounts within an organization. It provides centralized management and
governance by allowing the company to create and organize accounts into hierarchies, apply policies, and automate the account creation
process.

With AWS Organizations, the company can set up and manage multiple AWS accounts for its business units. It enables the automation of
account creation through the use of AWS Organizations API or AWS Service Catalog, making it easier to provision new accounts as needed.

Additionally, AWS Organizations allows the application of service control policies (SCPs) at the organization, organizational unit (OU), or
account level. SCPs help establish fine-grained permissions and control over the services and actions that can be performed within the
accounts, ensuring security and governance across the organization.
upvoted 3 times

  ESAJRR 1 month, 1 week ago

Selected Answer: A
A. AWS Organizations
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

A. AWS Organizations
upvoted 1 times

  RiaanMO 5 months, 2 weeks ago

Thanks for the clarification
was a bit lost
upvoted 2 times
  Saif93 6 months, 2 weeks ago
Selected Answer: A
A is the answer.
upvoted 1 times

  ksuccex 9 months, 3 weeks ago

A is d answer
upvoted 2 times

  Istiaque 10 months, 1 week ago

answer is A
upvoted 1 times

  hiennt 10 months, 1 week ago

Selected Answer: A
Vote A
upvoted 1 times

  At0513 10 months, 2 weeks ago

A should be the answer.
upvoted 1 times

  IvanKhru 10 months, 2 weeks ago

AWS Organizations
upvoted 1 times

  sumanshu 10 months, 3 weeks ago

Vote for A
upvoted 1 times
Question #62 Topic 1

Which IT controls do AWS and the customer share, according to the AWS shared responsibility model? (Choose two.)

A. Physical and environmental controls

B. Patch management

C. Cloud awareness and training

D. Zone security

E. Application data encryption

Correct Answer: BC

Community vote distribution

BC (81%) Other

  GV99 Highly Voted  10 months, 3 weeks ago

Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or
perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control
implementation within their use of AWS services. Examples include:

Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for
patching their guest OS and applications.
Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring
their own guest operating systems, databases, and applications.
Awareness & Training - AWS trains AWS employees, but a customer must train their own employees.
upvoted 36 times

  Pranava_GCP Most Recent  4 days, 17 hours ago

Selected Answer: BC
B. Patch management
C. Cloud awareness and training
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: BC
https://aws.amazon.com/compliance/shared-responsibility-model/
Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or
perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control
implementation within their use of AWS services. Examples include:

  man5484 3 weeks, 2 days ago

Selected Answer: AB
A. Physical and environmental controls: AWS is responsible for providing and maintaining the physical infrastructure and environmental
controls of their data centers. This includes measures such as physical access controls, power and cooling, and facility security. However,
customers are responsible for implementing their own physical security measures for their own resources deployed on AWS.

B. Patch management: AWS is responsible for patching and maintaining the underlying infrastructure and host operating systems of their
services. This ensures that the infrastructure is protected from known vulnerabilities. On the other hand, customers are responsible for
patching their own applications, operating systems, and virtual machines (EC2 instances) that they deploy on AWS.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: BC
B. Patch management
C. Cloud awareness and training
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

A. Physical and environmental controls
B. Patch management
upvoted 1 times
  ashknight 1 month, 3 weeks ago
Selected Answer: AB
A,B are the possible correct options
upvoted 1 times

  CHPK7 2 months ago

AB
A. Physical and environmental controls: AWS is responsible for ensuring the security and protection of the physical infrastructure of their
data centers, including measures like access controls, surveillance, and environmental safeguards. However, customers also play a role in
implementing physical and environmental controls within their own premises or within their applications running on AWS.

B. Patch management: AWS is responsible for patching and securing the underlying infrastructure and host operating system. However,
customers are responsible for managing the patches and updates for their own applications, virtual machines, or containers running on
the AWS infrastructure
upvoted 1 times

  satsu88 2 months, 2 weeks ago

This question is confisung. According to the doc, it should be A B C https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 1 times

  gobits 3 months, 2 weeks ago

B and C.

From Amazon's site: https://aws.amazon.com/compliance/shared-responsibility-model/

upvoted 2 times

  Guru4Cloud 4 months ago

Selected Answer: AB
The AWS shared responsibility model specifies that AWS and the customer share the following IT controls:

A. Physical and environmental controls: AWS is responsible for providing and maintaining the physical infrastructure that underlies the
cloud services, such as the data centers, networking, and power and cooling systems. However, customers are responsible for ensuring
the security and compliance of their own physical and environmental controls, such as securing their own facilities, managing access
controls, and monitoring for physical threats.

B. Patch management: AWS is responsible for patching and maintaining the underlying infrastructure of their services, but customers are
responsible for patching and maintaining the operating systems, applications, and other software that they deploy on top of AWS services.
upvoted 1 times

  et_learner 4 months, 3 weeks ago

Selected Answer: BC
https://aws.amazon.com/compliance/shared-responsibility-model
Shared Controls
upvoted 2 times

  kumaran1000001 4 months, 3 weeks ago

A - security of the cloud

B - AWS is responsible for the infrastructure and the customer is responsible for patching OS/platforms/applications

C - This is marketing activities for market share

D - Security of the cloud

E - AWS provides encryption capabilities but the customer is responsible

B and E
upvoted 3 times

  Amycert 5 months ago

Selected Answer: BC
B and C according to aws:
Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or
perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control
implementation within their use of AWS services. Examples include:

  noahsark 5 months, 1 week ago

Selected Answer: BC
Patch management
Cloud awareness and training

https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 1 times
  tahagmail 5 months, 1 week ago
Selected Answer: BD
Vote for B and D
upvoted 1 times

  Cloud_Explorer 5 months, 3 weeks ago

Selected Answer: BC
B & C.
https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 2 times
Question #63 Topic 1

A company is launching an application in the AWS Cloud. The application will use Amazon S3 storage. A large team of researchers will have
shared access to the data. The company must be able to recover data that is accidentally overwritten or deleted.
Which S3 feature should the company turn on to meet this requirement?

A. Server access logging

B. S3 Versioning

C. S3 Lifecycle rules

D. Encryption in transit and at rest

Correct Answer: B

Community vote distribution

B (100%)

  At0513 Highly Voted  10 months, 2 weeks ago

B is the correct answer: https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html
upvoted 8 times

  Pranava_GCP Most Recent  4 days, 17 hours ago

Selected Answer: B
B. S3 Versioning

"Versioning in Amazon S3 is a means of keeping multiple variants of an object in the same bucket. You can use the S3 Versioning feature
to preserve, retrieve, and restore every version of every object stored in your buckets. With versioning you can recover more easily from
both unintended user actions and application failures."

https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html
upvoted 1 times

  man5484 3 weeks, 2 days ago

Selected Answer: B
Amazon S3 Versioning is a feature that enables the storage of multiple versions of an object within an S3 bucket. When versioning is
enabled, each time an object is overwritten or deleted, a new version of the object is created, allowing for easy recovery of previous
versions if needed.

By enabling S3 Versioning, the company ensures that every modification made to an object in the S3 bucket is preserved as a separate
version. This provides an added layer of protection against accidental deletions or overwrites, as previous versions can be restored or
accessed as necessary.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. S3 Versioning
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

B. S3 Versioning allows the company to keep multiple versions of an object in the same bucket.
upvoted 1 times

  shogan 6 months ago

Selected Answer: B
Versioning-enabled buckets can help you recover objects from accidental deletion or overwrite. For example, if you delete an object,
Amazon S3 inserts a delete marker instead of removing the object permanently. The delete marker becomes the current object version. If
you overwrite an object, it results in a new object version in the bucket. You can always restore the previous version.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed
upvoted 2 times
  ksuccex 9 months, 3 weeks ago
B is correct
upvoted 1 times

  Istiaque 10 months, 1 week ago

answer is B
upvoted 1 times

  certiflux 10 months, 2 weeks ago

Selected Answer: B
B seems the logic anwser
upvoted 2 times

  sumanshu 10 months, 3 weeks ago

Vote for B
upvoted 1 times
Question #64 Topic 1

A manufacturing company has a critical application that runs at a remote site that has a slow internet connection. The company wants to migrate
the workload to
AWS. The application is sensitive to latency and interruptions in connectivity. The company wants a solution that can host this application with
minimum latency.
Which AWS service or feature should the company use to meet these requirements?

A. Availability Zones

B. AWS Local Zones

C. AWS Wavelength

D. AWS Outposts

Correct Answer: B

Community vote distribution

D (49%) B (47%) 4%

  Kanyeeeah Highly Voted  10 months, 1 week ago

Selected Answer: D
AWS Outposts is designed for workloads that need to remain on-premises due to latency requirements, where customers want that
workload to run seamlessly with the rest of their other workloads in AWS.

AWS Local Zones are a new type of AWS infrastructure designed to run workloads that require single-digit millisecond latency, like video
rendering and graphics intensive, virtual desktop applications. Not every customer wants to operate their own on-premises data center,
while others may be interested in getting rid of their local data center entirely. Local Zones allow customers to gain all the benefits of
having compute and storage resources closer to end-users, without the need to own and operate their own data center infrastructure.

(D) AWS Outposts would be the best fit here. Since the client is migrating only the workloads on AWS while (B) AWS Local Zone wants to
get rid of hosting its on-prem data center.
upvoted 38 times

  Guru4Cloud 3 months, 4 weeks ago

It is C.
Here's why

AWS Wavelength is designed specifically to reduce the latency between devices and applications hosted on AWS by placing AWS
compute and storage services at the edge of the 5G network. This means that the application can be hosted closer to the user or
device, which reduces the time it takes for data to travel between the application and the user or device. By reducing latency, AWS
Wavelength provides a more responsive user experience for latency-sensitive applications.

In this scenario, the manufacturing company has a critical application that is sensitive to latency and interruptions in connectivity.
Hosting the application on AWS Wavelength would ensure that the application is hosted closer to the user or device, reducing the time
it takes for data to travel between the application and the user or device. This would help to minimize latency and interruptions in
connectivity, which is critical for the performance of the application.
upvoted 5 times

  Mizaan 8 months, 4 weeks ago

I think it is B. Reason is that although outposts would mostly solve it, the text states: "A manufacturing company has a critical
application that runs at a remote site that has a slow internet connection" . The slow internet connection is the problem, doing Outpost
won't fix this. Local Zone will ...
upvoted 27 times

  vipulchoubisa 8 months, 1 week ago

The company wants to migrate the workload to AWS. The application is sensitive to latency and interruptions in connectivity. LOCAL
ZONE DOESN'T EXIT EVERY TIME. OUTPOST HAS CAPABILITY TO MIGRATE WORKLOAD FROM ON-PREM TO AWS
SO ANSWER IS D
upvoted 2 times

  BloodyMery 7 months, 2 weeks ago

where does it say it has to migrate workload from on-prem to aws? Within a local zone it will be already in AWS. Local Zone solves
the issue, AWS outpost solves legal issues of moving data outside of customer perimeter/security, leaving to AWS the duty to
secure it (like public government data moving to a private company data center).
upvoted 2 times

  Venkri02 9 months ago

AWS local zones provide low latency outpost needs high network connection so go with local zones
upvoted 4 times
  Kanyeeeah 10 months, 1 week ago
I am clearing this argument now. Have a good day y'all
upvoted 3 times

  Ragdoll Highly Voted  9 months, 2 weeks ago

Selected Answer: B
"... has a slow internet connection.". The Outpost requires a high-speed internet connection to work. AWS Local Zones is the only viable
option for this scenario.
upvoted 16 times

  AlexA777_ 1 month, 1 week ago

https://www.youtube.com/watch?v=Gfhlxdc4em4
upvoted 2 times

  et_learner 4 months, 3 weeks ago

https://docs.aws.amazon.com/outposts/latest/server-userguide/how-outposts-works.html
so D is correct
upvoted 1 times

  Pranava_GCP Most Recent  4 days, 17 hours ago

Selected Answer: B
B. AWS Local Zones

"Run applications that require single-digit millisecond latency or local data processing by bringing AWS infrastructure closer to your end
users and business centers."

https://aws.amazon.com/about-aws/global-infrastructure/localzones/
upvoted 1 times

  ArunUjj 5 days, 16 hours ago

Selected Answer: B
Local Zone can solve latency problem so it's correct.
Wavelength is for 5G devices and Outpost required on-prem deployment(in question it has mentioned that it is deployed in remote site)
upvoted 1 times

  sri073 1 week, 5 days ago

Selected Answer: D
AWS Outpost
upvoted 1 times

  DominusUser 2 weeks, 2 days ago

Selected Answer: B
Key part here is "The company wants a solution that can host this application with minimum latency" therefore, localzones is the best
option.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: B
Answer is correct. (B)
To meet the requirements of hosting the critical application with minimum latency, the company should use AWS Local Zones. AWS Local
Zones are an extension of an AWS region and are geographically closer to end users compared to the primary AWS region. They are
designed to provide lower latency and higher performance for specific workloads and applications. By deploying the application in an AWS
Local Zone, the company can reduce the latency between the users and the application, as the application will be hosted in a data center
closer to the end users. In this scenario, since the remote site has a slow internet connection, using an AWS Local Zone would allow the
company to benefit from reduced latency while maintaining proximity to their current location. This can result in improved performance
and reduced interruptions in connectivity for the sensitive application. Therefore, the correct answer is B. AWS Local Zones.
upvoted 1 times

  BigDataBB 2 weeks, 5 days ago

The answer is B
https://www.youtube.com/watch?v=Gfhlxdc4em4
upvoted 2 times

  u_ways 2 weeks, 5 days ago

Selected Answer: B
No requirements mentioned for outpost.
upvoted 2 times

  u_ways 2 weeks, 5 days ago

Selected Answer: B
The company asked to migrate the workload to AWS. No where in the question it requested to keep the service in the same remote
location, and there is no legal obligation to keep it on-prem. Therefore, local zones.
upvoted 2 times
  zees3 2 weeks, 6 days ago
Selected Answer: B
Outpost still will suffer from slow internet
upvoted 2 times

  Kan09 1 month ago

SLOW INTERNET CONNECTION = OUTPOSTS
upvoted 1 times

  Kan09 1 month ago

important working: slow internet connection.
This can't work with Local Zones or Wavelenght.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS Local Zones
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. AWS Local Zones
upvoted 2 times

  prashantrao 1 month, 2 weeks ago

AWS Outposts brings AWS infrastructure and services to the customer's on-premises or co-location sites. It allows customers to run AWS
services locally, providing a consistent hybrid experience between their on-premises environment and the AWS Cloud.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
C. AWS Wavelength
upvoted 1 times
Question #65 Topic 1

A company wants to migrate its applications from its on-premises data center to a VPC in the AWS Cloud. These applications will need to access
on-premises resources.
Which actions will meet these requirements? (Choose two.)

A. Use AWS Service Catalog to identify a list of on-premises resources that can be migrated.

B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.

C. Use an Amazon CloudFront distribution and configure it to accelerate content delivery close to the on-premises resources.

D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.

E. Use Amazon CloudFront to restrict access to static web content provided through the on-premises web servers.

Correct Answer: AD

Community vote distribution

BD (88%) 6%

  GonzaloD Highly Voted  11 months ago

Selected Answer: BD
I think B,D makes more sense
upvoted 21 times

  Guru4Cloud 4 months ago

The two actions that will meet the requirements are:

B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
This will allow the applications running in the VPC to securely access on-premises resources through the VPN connection.

D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
AWS Direct Connect provides a dedicated network connection between the on-premises data center and AWS, bypassing the public
internet. This allows for a more reliable and consistent connection between the VPC and the on-premises resources.
upvoted 4 times

  leonardolondono 4 months, 3 weeks ago

Yes it is B and D
upvoted 1 times

  leonardolondono 4 months, 3 weeks ago

Option E is also not relevant to the question as it focuses on restricting access to static web content provided through on-premises web
servers using Amazon CloudFront, but the question is about accessing on-premises resources from the VPC in the AWS Cloud.
upvoted 1 times

  leonardolondono 4 months, 3 weeks ago

  Soumya198725 Most Recent  3 days, 12 hours ago

There are two reliable connections enterprise reliable is AWS VPN & AWS Direct connect
upvoted 1 times

  Pranava_GCP 4 days, 10 hours ago

Selected Answer: BD
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
upvoted 1 times

  Bibs_s 2 weeks, 4 days ago

Selected Answer: BD
It is B and D
upvoted 1 times

  u_ways 2 weeks, 5 days ago

Selected Answer: BD
There is a requirement to have some resources on-prem, therefore, a Direct Connect services is needed.
And based on the AWS Well Architecture framework, we should think about security:

> **Apply security at all layers:** Apply a defence in depth approach with multiple security controls. Apply to all layers (for example, edge
of network, VPC, load balancing, every instance and compute service, operating system, application, and code).

Therefore we should create a VPN connection with our VPC.

Giving us B and D as an answer.

upvoted 1 times
  man5484 3 weeks, 2 days ago
Selected Answer: BD
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
By setting up a VPN (Virtual Private Network) connection, the company can establish a secure and encrypted connection between their on-
premises network and the VPC in the AWS Cloud. This allows the applications running in the VPC to securely access on-premises resources
as if they were on the same local network.

D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
AWS Direct Connect provides a dedicated network connection between the on-premises data center and AWS, bypassing the public
internet. This enables a private and dedicated network connection, with higher bandwidth and lower latency compared to VPN
connections. It allows for reliable and consistent access to on-premises resources from within the VPC.
upvoted 2 times

  HC89 1 month ago

These two options allow for the secure and reliable connection of an on-premises data center with the AWS Cloud. A VPN connection uses
the internet to establish a secure, private network connection, while AWS Direct Connect bypasses the public internet altogether and
provides a dedicated, private connection between the data center and AWS. Both can be used for hybrid cloud scenarios where
applications in the AWS cloud need to communicate with on-premises resources.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: BD
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.close to the on-premises resources.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
upvoted 1 times

  Legendari 1 month, 1 week ago

It has to be B & D tho...Who is in charge of these answers?
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: BC
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
C. Use an Amazon CloudFront distribution and configure it to accelerate content delivery close.
upvoted 1 times

  tester0071 1 month, 3 weeks ago

Selected Answer: BD
can bet on my life with option BD
upvoted 1 times

  bikshu 3 months, 1 week ago

better validate your answers with chatGPT because i have seen there are wrong answers across the dump
upvoted 2 times

  MukundP 3 months, 2 weeks ago

A, D
First you need to identify resources to be migrated
and then use AWS Direct Connect to Connect OnPrem with AWS.
No need to do VPC and VPN settings.
upvoted 2 times

  ShivaTheBoss 5 months ago

Answer is B & D as both the answers support the idea of connecting On premises to AWS
upvoted 1 times

  bismainlearn 5 months, 3 weeks ago

Selected Answer: BD
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC: A VPN (Virtual Private Network)
connection can securely connect the on-premises data center to the VPC and enable access to the applications and services in the VPC, as
well as other on-premises resources.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS: AWS Direct Connect provides a dedicated
network connection from the on-premises data center to AWS. This reduces network latency and provides a more reliable, higher-
bandwidth connection, which is particularly important for applications with large amounts of data or high-throughput requirements.
upvoted 1 times
  malwad 5 months, 3 weeks ago
Selected Answer: BD
Looking at the scenario it seems BD are appropriate
upvoted 1 times

  zailsingh 6 months, 2 weeks ago

It is unclear in the question which two or either two
upvoted 1 times
Question #66 Topic 1

A company wants to use the AWS Cloud to provide secure access to desktop applications that are running in a fully managed environment.
Which AWS service should the company use to meet this requirement?

A. Amazon S3

B. Amazon AppStream 2.0

C. AWS AppSync

D. AWS Outposts

Correct Answer: A

Community vote distribution

B (94%) 6%

  Sib777 Highly Voted  11 months ago

AppStream 2.0 is a fully managed application streaming service that provides users instant access to their desktop applications from
anywhere
upvoted 19 times

  CptFarmer Highly Voted  9 months, 3 weeks ago

Appstream is not listed on the exam guide. I see a lot of questions that are using services that are not on the exam guide. Are they even
relevant?
upvoted 8 times

  ler_mp 3 months, 2 weeks ago

It could also be from older version of the exam
upvoted 1 times

  BloodyMery 7 months, 2 weeks ago

I guess they want to see if you know the rest of answers (that they actually are in the exam guide) are not valid options. It has no sense,
I would write a note in the comment section of the question if this is asked
upvoted 1 times

  chop_z_azur 8 months, 4 weeks ago

Most of them are relevant. In the comment sections of this Exam, people are saying that about 70% is on the exam. Keep that in mind.
upvoted 2 times

  Pranava_GCP Most Recent  4 days, 10 hours ago

Selected Answer: B
B. Amazon AppStream 2.0

"As an application streaming / SaaS conversion service, AppStream 2.0 lets you move your desktop applications to AWS without rewriting
them. It’s easy to install your applications on AppStream 2.0, set launch configurations, and make your applications available to users. "

https://aws.amazon.com/appstream2/faqs/?nc=sn&loc=7
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: B
Amazon AppStream 2.0 is a fully managed application streaming service that allows users to securely stream desktop applications from
the AWS Cloud to any device with an internet connection. With AppStream 2.0, applications run on AWS infrastructure, and users can
access them remotely through streaming protocols.

AppStream 2.0 provides a secure and controlled environment for running desktop applications by ensuring that the application code and
data never leave the AWS infrastructure. Users can access the applications through a web browser or client application on their device,
and all processing happens on the AWS servers, with only the user interface being streamed to the device.
upvoted 1 times

  Somay11 1 month ago

Appstream
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. Amazon AppStream 2.0
upvoted 1 times
  Warsame21 1 month, 2 weeks ago
Selected Answer: B
B. Amazon AppStream 2.0
upvoted 1 times

  nailimvali 2 months, 2 weeks ago

To provide secure access to desktop applications that are running in a fully managed environment in the AWS Cloud, the company should
use Amazon WorkSpaces12. Amazon WorkSpaces is a fully managed desktop computing service in the cloud that allows users to access
their desktop applications from anywhere, using any device1. It provides a secure and scalable solution for desktop virtualization,
enabling organizations to easily provision and manage desktops for their users, without having to invest in infrastructure1.
upvoted 1 times

  nixonlaw 3 months ago

Selected Answer: B
The answer is B. Amazon AppStream 2.0.
upvoted 1 times

  aws2380 3 months, 2 weeks ago

Shoud be : AWS WorkSpace .. (not in option) .. defo not s3
To provide secure access to desktop applications running in a managed environment on AWS, the company should use Amazon
WorkSpaces.

Amazon WorkSpaces is a fully managed desktop computing service in the cloud that allows users to access their desktop applications
from anywhere, using any device. It provides a secure and scalable solution for desktop virtualization, enabling organizations to easily
provision and manage desktops for their users, without having to invest in expensive hardware and infrastructure.

Amazon WorkSpaces provides a range of features for secure access, including multi-factor authentication, network isolation, encryption,
and integration with Active Directory. With Amazon WorkSpaces, the company can provide its users with a secure, high-performance
desktop experience, while also reducing the cost and complexity of managing desktop infrastructure.
upvoted 2 times

  sweetheatmn 6 months, 1 week ago

Selected Answer: B
D. AWS Outposts

AWS Outposts is the service that meets the company's requirement of migrating the workload to AWS while minimizing latency and
maintaining the performance of the application. AWS Outposts is a fully managed service that allows you to run AWS infrastructure and
services on-premises, in your own data center, or at the edge of your network. It is designed to be used in environments where low-
latency, high-throughput, or high-bandwidth applications are critical, and where internet connectivity is limited or unreliable.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  pai_sankya 7 months, 1 week ago

Selected Answer: B
Correct Answer.
upvoted 1 times

  nesreenmhd123 7 months, 2 weeks ago

B is correct!
upvoted 1 times

  jsmith111 7 months, 3 weeks ago

Selected Answer: B
Vote B
upvoted 1 times

  SmartLearner 9 months ago

Selected Answer: B
https://aws.amazon.com/pm/appstream2/?trk=11ff099d-a664-4cc9-bb3f-
ef7173e10b69&sc_channel=ps&s_kwcid=AL!4422!3!593877466233!e!!g!!aws%20appstream&ef_id=Cj0KCQjwk5ibBhDqARIsACzmgLQeX468
vkRfgjdpLagjFH7clBYYketIOiDbBWGSVGCmsvdX_U2Urj4aArQBEALw_wcB:G:s&s_kwcid=AL!4422!3!593877466233!e!!g!!aws%20appstream

Secure, reliable, and scalable access to applications and non-persistent desktops from any location
upvoted 3 times

  Kantene 9 months, 1 week ago

Selected Answer: B
Vote B. It's Amazon AppStream 2.0
upvoted 1 times
Question #67 Topic 1

A company wants to implement threat detection on its AWS infrastructure. However, the company does not want to deploy additional software.
Which AWS service should the company use to meet these requirements?

A. Amazon VPC

B. Amazon EC2

C. Amazon GuardDuty

D. AWS Direct Connect

Correct Answer: C

Community vote distribution

C (100%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: C
from: https://aws.amazon.com/guardduty/

1. Continuously monitor your AWS accounts, instances, container workloads, users, and storage for potential threats.

2. Expose threats quickly using anomaly detection, machine learning, behavioral modeling, and threat intelligence feeds from AWS and
leading third-parties.

3. Mitigate threats early by initiating automated responses.

upvoted 5 times

  Pranava_GCP Most Recent  4 days, 10 hours ago

C. Amazon GuardDuty

"Amazon GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and
delivers detailed security findings for visibility and remediation."

https://aws.amazon.com/guardduty/
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: C
Amazon GuardDuty is a managed threat detection service that continuously monitors and analyzes data from multiple sources, such as
VPC Flow Logs, CloudTrail event logs, and DNS logs. It uses machine learning algorithms and industry-leading threat intelligence to
identify potential malicious activity and unauthorized behavior within an AWS environment.

GuardDuty operates at the account level, analyzing data from various AWS services to detect common attack patterns, including
reconnaissance activities, compromised instances, and data exfiltration attempts. It provides real-time alerts and findings, helping
organizations quickly identify and respond to potential threats.
upvoted 1 times

  ESAJRR 1 month, 1 week ago

Selected Answer: C
C. Amazon GuardDuty
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
C. Amazon GuardDuty
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Kantene 9 months, 1 week ago

Selected Answer: C
Vote for C
upvoted 2 times
  Istiaque 10 months, 1 week ago
answer is C
upvoted 2 times

  sumanshu 10 months, 3 weeks ago

Vote for C
upvoted 1 times

  bilel500 11 months ago

Selected Answer: C
Answer is C.
upvoted 1 times
Question #68 Topic 1

Which AWS service uses edge locations?

A. Amazon Aurora

B. AWS Global Accelerator

C. Amazon Connect

D. AWS Outposts

Correct Answer: B
Reference:
https://aws.amazon.com/global-accelerator/

Community vote distribution

B (90%) 10%

  irap1 Highly Voted  10 months, 2 weeks ago

Vote for B.
AWS Global Accelerator and Amazon CloudFront are separate services that use the AWS global network and its edge locations around the
world
upvoted 14 times

  Pranava_GCP Most Recent  4 days, 10 hours ago

Selected Answer: B
B. AWS Global Accelerator

"AWS Global Accelerator and Amazon CloudFront are separate services that use the AWS global network and its edge locations around the
world. CloudFront improves performance for both cacheable content (such as images and videos) and dynamic content (such as API
acceleration and dynamic site delivery). Global Accelerator improves performance for a wide range of applications over TCP or UDP by
proxying packets at the edge to applications running in one or more AWS Regions. "

https://aws.amazon.com/global-
accelerator/faqs/#:~:text=Q%3A%20How%20is%20AWS%20Global%20Accelerator%20different%20from%20Amazon%20CloudFront%3F
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: B
https://docs.aws.amazon.com/global-accelerator/latest/dg/introduction-how-it-works.html
The AWS service that uses edge locations is B. AWS Global Accelerator is a service that improves the availability and performance of
applications for global users. It utilizes the AWS global network to route traffic through edge locations that are strategically located
around the world. These edge locations act as points of presence (PoPs) and help reduce latency and improve throughput for end users.
When using AWS Global Accelerator, traffic from users is directed to the nearest edge location, which then routes the traffic to the
application endpoint. This helps optimize the delivery of the application's content and improves the user experience. Therefore, the
correct answer is B. AWS Global Accelerator.
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: B
AWS Global Accelerator is a networking service that improves the availability and performance of applications with global users. It uses
the AWS global network infrastructure and leverages edge locations to accelerate the delivery of content and applications.

Edge locations are small, distributed data centers strategically located around the world. They are part of the AWS global network and are
used to cache and deliver content closer to end-users, reducing latency and improving the user experience. These edge locations are
deployed in major cities and regions worldwide.
upvoted 2 times

  HC89 1 month ago

Selected Answer: B
AWS Fargate is a serverless compute engine for containers that works with both Amazon Elastic Container Service (ECS) and Amazon
Elastic Kubernetes Service (EKS). Fargate makes it easy for you to focus on building your applications by removing the need to provision
and manage servers for containerized applications.
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. AWS Global Accelerator
upvoted 2 times
  Warsame21 1 month, 2 weeks ago
Selected Answer: B
B. AWS Global Accelerator
upvoted 2 times

  angelparra 2 months, 3 weeks ago

Amazon CloudFront is the AWS service that uses edge locations.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  MrSaint 8 months ago

https://aws.amazon.com/global-accelerator/faqs/Q: How is AWS Global Accelerator different from Amazon CloudFront?

A: AWS Global Accelerator and Amazon CloudFront are separate services that use the AWS global network and its edge locations around
the world.
upvoted 4 times

  elbarody 8 months, 2 weeks ago

Selected Answer: D
D Is correct answer
Global accelerator is Not Edg service Its Global
https://aws.amazon.com/edge/services/
upvoted 2 times

  et_learner 4 months, 3 weeks ago

Learn Learn Learn!!!
https://docs.aws.amazon.com/global-accelerator/latest/dg/introduction-how-it-works.html
upvoted 1 times

  BloodyMery 7 months, 2 weeks ago

D. AWS Outposts is a fully managed service that allows you to run compute and storage on-premises, while connecting to the rest of
the AWS services in the cloud. It does not use edge locations.
The correct answer is B, AWS Global Accelerator. AWS Global Accelerator is a service that routes traffic over the AWS global network to
the optimal AWS Region for each user. It uses a network of edge locations around the world to deliver low-latency content to users.
AWS Global Accelerator can be used to improve the performance of applications by routing traffic to the nearest edge location,
reducing the time it takes for content to reach the user.
upvoted 2 times

  SmartLearner 9 months ago

Selected Answer: B
https://aws.amazon.com/global-accelerator/?blogs-global-accelerator.sort-by=item.additionalFields.createdDate&blogs-global-
accelerator.sort-order=desc&aws-global-accelerator-wn.sort-by=item.additionalFields.postDateTime&aws-global-accelerator-wn.sort-
order=desc

Using Global Accelerator, your users' traffic is moved off the internet and onto Amazon’s private global network through 90+ global edge
locations, then directed to your application origins.
upvoted 2 times

  sumanshu 10 months, 3 weeks ago

Vote for B
upvoted 1 times

  Nucleric 10 months, 3 weeks ago

AWS Global Accelerator helps bridge the gap between single and multiple Region deployments by improving the network routing for local
and global user traffic. If traffic to your application’s single Region is left on the public internet, it can be negatively impacted by internet
congestion and local outages. Using Global Accelerator, your users' traffic is moved off the internet and onto Amazon’s private global
network through 90+ global edge locations, then directed to your application origins. AWS Global Accelerator is quick to setup and
increases traffic performance by up to 60%.
upvoted 1 times

  Craig92866 11 months ago

Selected Answer: B
Correct answer is B. An "Edge Location" is an object within the 'AWS Global Infrastructure' framework (regions, availability zones, edge
location). "AWS Global Accelerator" connects directly to edge locations. 'AWS Outposts' are basically physical servers AWS maintains
(physical server and the software it runs). Not other aspects such as power, communications, cooling, physical security, etc...

https://aws.amazon.com/about-aws/global-infrastructure/
upvoted 1 times

  Flex1 11 months ago

Selected Answer: B
Correct answer is B, Global Accelerator.
AWS Global Accelerator allows you to route requests for key resources through Amazon’s global network—even if the request is going
halfway round the world. The request is initially routed to the closest edge location and then travels through Amazon’s network—often
with lower latency and higher throughput than the public internet. https://www.lastweekinaws.com/blog/what-is-an-edge-location-in-
aws-a-simple-explanation/
upvoted 2 times
  learner2023 11 months ago
D is correct answer
upvoted 1 times

  et_learner 4 months, 3 weeks ago

learn learn learn !!!
https://docs.aws.amazon.com/global-accelerator/latest/dg/introduction-how-it-works.html
upvoted 1 times

  Nucleric 10 months, 3 weeks ago

D is not connect..
What is an outpost in AWS?
An Outpost is a pool of AWS compute and storage capacity deployed at a customer site. AWS operates, monitors, and manages this
capacity as part of an AWS Region. You can create subnets on your Outpost and specify them when you create AWS resources such as
EC2 instances, EBS volumes, ECS clusters, and RDS instances.
upvoted 1 times
Question #69 Topic 1

A company needs to install an application in a Docker container.

Which AWS service eliminates the need to provision and manage the container hosts?

A. AWS Fargate

B. Amazon FSx for Windows File Server

C. Amazon Elastic Container Service (Amazon ECS)

D. Amazon EC2

Correct Answer: C

Community vote distribution

A (61%) C (39%)

  Bigbluee Highly Voted  10 months, 1 week ago

Selected Answer: C
The answer is easier than You think.
"Which AWS Service...."

So we are looking for SERVICES in answers.

Is AWS Fargate a service? NO. IT IS AN ENGINE within Elastic Container Service.
And as the name states, ECS is a Service so this is the only possible answer.
C
upvoted 53 times

  pedrolaez 6 days, 19 hours ago

The key to understanding the question is the phrase "eliminates the need to provision and manage the container hosts." While
Amazon Elastic Container Service (ECS) is a highly scalable, high-performance container orchestration service that does support Docker
containers, using ECS by itself doesn't eliminate the need to provision and manage the container hosts -- the underlying EC2 instances
on which the containers run.

If you use ECS without Fargate, you still need to choose and provision the EC2 instances for your clusters, and manage their scaling.

In contrast, if you choose AWS Fargate to run your ECS tasks, AWS manages the underlying EC2 instances for you. You don't need to
provision, patch, monitor, or manage these servers, and you don't need to worry about scaling the underlying infrastructure to meet
your workloads.
upvoted 1 times

  mhpmyt7 1 month ago

I think you are looking at it from the wrong perspective, although I understand that the question is tricky.

Yes, the question did mention "Service" but NOT "Services" AND ALSO, the NEED here is "to INSTALL APPLICATION IN A DOCKER
CONTAINER (The Container should be existing already)".

Amazon Elastic Container Service --> Run highly secure, reliable, and scalable containers.
Launch containers on AWS at scale without worrying about the underlying infrastructure.

AWS Fargate --> Serverless computing for (already running) containers.

Deploy and manage your applications, not infrastructure (containers, ECS).

The answer is clearly NOT C but A (Fargate)

upvoted 5 times

  et_learner 4 months, 3 weeks ago

AWS Fargate is a technology that you can use with Amazon ECS to run containers without having to manage servers or clusters of
Amazon EC2 instances. With Fargate, you no longer have to provision, configure, or scale clusters of virtual machines to run containers.
This removes the need to choose server types, decide when to scale your clusters, or optimize cluster packing.
upvoted 3 times

  Testeurtest 8 months, 1 week ago

yes, but no
ECS : service to build and run Docker containers
Fargate : Serverless version for ECS/EKS. Running ECS or EKS without managing the infrastructure hosting your containers
> so Fargate is ECS eliminating the needs to build and manage
upvoted 19 times

  Bigbluee 6 months, 3 weeks ago

So let's look all together on listed AWS SERVICES.
COPY PASTE FROM AWS CONSOLE

1. Containers
- ECR - Easily store, manage, and deploy container images
- EKS - The most trusted way to run Kubernetes
- Elastic Container Service - Highly secure, reliable, and scalable way to run containers

Does anyone see FARGATE (Answer A) here ? No ?

Does anyone see ECS (Answer C) here? Yes ?

So the answer is obvious.

upvoted 5 times

  abhijitxp 1 month, 2 weeks ago

Please read the question - "Which AWS service eliminates the need to provision and manage the container hosts?"
Does ECS eliminate the need to provision and manage the container hosts? NO.

Answer is clearly A - Fargate. Not sure why is there even a confusion in the first place.
upvoted 1 times

  SmartLearner Highly Voted  9 months ago

Selected Answer: A
https://aws.amazon.com/ecs/
Optimize your time with AWS Fargate serverless compute for containers, which eliminates the need to configure and manage control
plane, nodes, and instances.

https://aws.amazon.com/fargate/
Deploy and manage your applications, not infrastructure. Fargate removes the operational overhead of scaling, patching, securing, and
managing servers.
upvoted 18 times

  Pranava_GCP Most Recent  4 days, 9 hours ago

Selected Answer: C
C. Amazon Elastic Container Service (Amazon ECS)
upvoted 1 times

  Tarasharma 1 week, 1 day ago

AWS Fargate is a technology that you can use with Amazon ECS to run containers without having to manage servers or clusters of Amazon
EC2 instances. With Fargate, you no longer have to provision, configure, or scale clusters of virtual machines to run containers.
so answer is Fargate
upvoted 1 times

  DominusUser 2 weeks, 2 days ago

Selected Answer: C
As explained by @Bigbluee AWS Fargate is a TECHNOLOGY, not a service. ACS is the service that can run the containers.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: A
https://aws.amazon.com/fargate/
The AWS service that eliminates the need to provision and manage the container hosts is A. AWS Fargate. AWS Fargate is a serverless
compute engine for containers that allows you to run containers without the need to manage the underlying infrastructure. With Fargate,
you can focus solely on deploying and scaling your containers without worrying about provisioning or managing the container hosts, such
as EC2 instances. When using AWS Fargate, you define your container configurations and launch them directly, without the need to
manage the underlying infrastructure. Fargate takes care of provisioning the necessary resources, such as CPU and memory, to run your
containers. It automatically scales your container tasks based on demand, ensuring that you have the required resources to run your
application. Therefore, the correct answer is A.
upvoted 1 times

  elsie2023 2 weeks, 4 days ago

Selected Answer: A
https://docs.aws.amazon.com/AmazonECS/latest/userguide/what-is-fargate.html
upvoted 2 times

  man5484 3 weeks, 1 day ago

Selected Answer: A
AWS Fargate is a serverless compute engine for containers. It allows you to run containers without the need to manage the underlying
infrastructure or provision EC2 instances explicitly for running the containers. With Fargate, you can focus solely on deploying and
managing your containers, and AWS takes care of the underlying infrastructure for you.

When using AWS Fargate, you define your containerized application using services such as Amazon Elastic Container Service (ECS) or
Amazon Elastic Kubernetes Service (EKS). You provide the container image, CPU and memory requirements, networking, and other
configuration details. Fargate then handles the provisioning and management of the underlying infrastructure needed to run your
containers, such as the container hosts.
upvoted 2 times
  khanda 3 weeks, 3 days ago
Selected Answer: A
With Fargate, you no longer have to provision, configure, or scale clusters of virtual machines to run containers. This removes the need to
choose server types, decide when to scale your clusters, or optimize cluster packing.
upvoted 2 times

  HC89 1 month ago

Selected Answer: A
AWS Fargate is a serverless compute engine for containers that works with both Amazon Elastic Container Service (ECS) and Amazon
Elastic Kubernetes Service (EKS). Fargate makes it easy for you to focus on building your applications by removing the need to provision
and manage servers for containerized applications.
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: C
C. Amazon Elastic Container Service (Amazon ECS)
upvoted 1 times

  Pepeti 1 month, 1 week ago

O serviço da AWS que elimina a necessidade de provisionar e gerenciar os hosts de contêiner é o Amazon Elastic Container Service (ECS).
O ECS é um serviço de orquestração de contêineres altamente dimensionável e de alto desempenho, projetado para executar aplicativos
em contêineres no ambiente da AWS.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
A. AWS Fargate
upvoted 2 times

  M9201715 1 month, 3 weeks ago

Selected Answer: A
Definitely A - Fargate.

ECS is the orchestration tool for Docker containers, but it needs to run on something. Either EC2 (managed by the customer) or Fargate
(managed by AWS). Since the question asks for a fully-managed solution, the answer is A.
upvoted 3 times

  Oripresa 2 months, 1 week ago

Selected Answer: A
fargate es mas completo que ecs y ademas es non serverles
upvoted 2 times

  rachmatthidayat 2 months, 1 week ago

Selected Answer: C
Amazon ECS eliminates the need for you to install and operate your own container orchestration software, manage and scale a cluster of
virtual machines (VMs), or schedule containers on those VMs.

reference: https://docs.aws.amazon.com/whitepapers/latest/aws-
overview/containers.html#:~:text=Amazon%20ECS%20eliminates%20the%20need%20for%20you%20to%20install%20and%20operate%20y
our%20own%20container%20orchestration%20software%2C%20manage%20and%20scale%20a%20cluster%20of%20virtual%20machines%
20(VMs)%2C%20or%20schedule%20containers%20on%20those%20VMs.
upvoted 1 times

  ayush13 2 months, 3 weeks ago

Selected Answer: A
Fargate chatgpt
upvoted 2 times
Question #70 Topic 1

Which AWS service or feature checks access policies and offers actionable recommendations to help users set secure and functional policies?

A. AWS Systems Manager

B. AWS IAM Access Analyzer

C. AWS Trusted Advisor

D. Amazon GuardDuty

Correct Answer: B

Community vote distribution

B (88%) 13%

  ahmedashraff2000 Highly Voted  3 months, 1 week ago

Selected Answer: B
AWS Systems Manager is a management service that helps you automatically collect software inventory, apply OS patches, create system
images, and configure Windows and Linux operating systems. You can use Systems Manager to manage hybrid environments that include
resources in your on-premises data centers and in the AWS Cloud.

AWS IAM Access Analyzer helps identify resources in your organization and accounts that are shared with an external entity. IAM Access
Analyzer validates IAM policies against policy grammar and best practices. IAM Access Analyzer generates IAM policies based on access
activity in your AWS CloudTrail logs.

AWS Trusted Advisor provides recommendations to help you follow AWS best practices for security, cost optimization, performance
improvement, and fault tolerance.

Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect
your AWS accounts and workloads.
upvoted 8 times

  bilel500 Highly Voted  11 months ago

Selected Answer: B
Answer is B
https://aws.amazon.com/fr/about-aws/whats-new/2021/06/iam-access-analyzer-adds-new-policy-checks-help-validate-conditions-during-
iam-policy-
authoring/#:~:text=AWS%20Identity%20and%20Access%20Management,actionable%20recommendations%20during%20policy%20authori
ng.
upvoted 5 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: B
B. AWS IAM Access Analyzer
upvoted 1 times

  Pranava_GCP 1 week ago

"You can validate your policies using AWS Identity and Access Management Access Analyzer policy checks. You can create or edit a
policy using the AWS CLI, AWS API, or JSON policy editor in the IAM console. IAM Access Analyzer validates your policy against IAM
policy grammar and best practices. You can view policy validation check findings that include security warnings, errors, general
warnings, and suggestions for your policy. "

https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-policy-validation.html
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: B
AWS IAM Access Analyzer is a service that helps analyze resource access policies to identify any potential security risks or policy
misconfigurations. It automatically reviews policies and provides actionable recommendations for securing access to AWS resources.

IAM Access Analyzer uses automated reasoning to analyze policies, including resource-based policies and IAM policies. It checks for any
potential vulnerabilities, unintended access, or over-permissive access permissions that might be present in the policies. It can help
identify issues such as overly permissive access, wildcard permissions, and other security risks.

With IAM Access Analyzer, users can review the policy findings, understand the impact of the identified issues, and take appropriate
actions to correct and secure their access policies. It helps users ensure that their policies align with security best practices and functional
requirements.
upvoted 2 times

  ESAJRR 1 month, 1 week ago

Selected Answer: B
B. AWS IAM Access Analyzer
upvoted 3 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: B
B. AWS IAM Access Analyzer
upvoted 2 times

  Tomoki 1 month, 4 weeks ago

Selected Answer: B
https://docs.aws.amazon.com/ja_jp/IAM/latest/UserGuide/access-analyzer-policy-validation.html
You can find the answer on this webpage.
upvoted 2 times

  Pranava_GCP 1 week ago

https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-policy-validation.html
upvoted 1 times

  lucky231294 3 months ago

Answer: B
Validate the policies you create to ensure that they adhere to the IAM policy language (JSON) and IAM best practices. You can validate
your policies by using IAM Access Analyzer policy validation. IAM Access Analyzer provides more than 100 policy checks and actionable
recommendations to help you author secure and functional policies.
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
upvoted 2 times

  Guru4Cloud 4 months ago

Selected Answer: B
The AWS service that checks access policies and offers actionable recommendations to help users set secure and functional policies is

B. AWS IAM Access Analyzer.

AWS IAM Access Analyzer helps identify any unintended access to AWS resources. It checks policies for resources such as Amazon S3
buckets and IAM roles to ensure that only authorized users and services have access to them. It offers actionable recommendations to
help users set secure and functional policies.
upvoted 2 times

  GILLYR 4 months, 2 weeks ago

C) Trusted Advisor provides recommendations..
upvoted 1 times

  Vinayhasija 4 months, 3 weeks ago

Selected Answer: B
The AWS service that checks access policies and offers actionable recommendations to help users set secure and functional policies is AWS
IAM Access Analyzer.

AWS IAM Access Analyzer helps identify resources that can be accessed publicly or from other accounts and provides actionable
recommendations to help set secure and functional policies. IAM Access Analyzer uses automated reasoning, which applies mathematical
analysis and inference to determine the possible implications of resource policies. IAM Access Analyzer also provides a detailed report that
helps identify which policies need to be updated.
upvoted 2 times

  et_learner 4 months, 3 weeks ago

Selected Answer: B
You can validate your policies using IAM Access Analyzer policy checks. You can create or edit a policy using the AWS CLI, AWS API, or JSON
policy editor in the IAM console. IAM Access Analyzer validates your policy against IAM policy grammar and best practices. You can view
policy validation check findings that include security warnings, errors, general warnings, and suggestions for your policy. These findings
provide actionable recommendations that help you author policies that are functional and conform to security best practices. To learn
more about validating policies using IAM Access Analyzer, see IAM Access Analyzer policy validation.
upvoted 2 times

  jackyisme 4 months, 3 weeks ago

Selected Answer: C
B will not provide recommendations.
So I think answer is C
upvoted 1 times

  et_learner 4 months, 3 weeks ago

You can validate your policies using IAM Access Analyzer policy checks. You can create or edit a policy using the AWS CLI, AWS API, or
JSON policy editor in the IAM console. IAM Access Analyzer validates your policy against IAM policy grammar and best practices. You
can view policy validation check findings that include security warnings, errors, general warnings, and suggestions for your policy.
These findings provide actionable recommendations that help you author policies that are functional and conform to security best
practices. To learn more about validating policies using IAM Access Analyzer, see IAM Access Analyzer policy validation.
upvoted 1 times

  Oyas 4 months, 4 weeks ago

The AWS Trusted Advisor makes recommendations to help you follow AWS best practices. The Trusted Advisor assesses your account
through checks

https://aws.amazon.com/pt/premiumsupport/technology/trusted-advisor/
upvoted 3 times

  noahsark 5 months, 1 week ago

Selected Answer: B
AWS IAM Access Analyzer
https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html
upvoted 2 times

  DFGSDF 5 months, 2 weeks ago

Selected Answer: B
b is the correct answer
upvoted 2 times

  nour 5 months, 2 weeks ago

Selected Answer: B
This link will explain the difference
https://dev.to/sec_maestro/iam-access-analyzer-vs-access-advisor-1f90
I'm going with B
upvoted 2 times
Question #71 Topic 1

A company has a fleet of cargo ships. The cargo ships have sensors that collect data at sea, where there is intermittent or no internet connectivity.
The company needs to collect, format, and process the data at sea and move the data to AWS later.
Which AWS service should the company use to meet these requirements?

A. AWS IoT Core

B. Amazon Lightsail

C. AWS Storage Gateway

D. AWS Snowball Edge

Correct Answer: C

Community vote distribution

D (81%) Other

  samurosales Highly Voted  10 months, 2 weeks ago

Selected Answer: D
AWS Snow Family - The AWS Snow Family is a collection of physical devices that help migrate large amounts of data into and out of the
cloud without depending on networks. This helps you apply the wide variety of AWS services for analytics, file systems, and archives to
your data. You can use AWS Snow Family services for data transfer and occasional pre-processing on location. Some large data transfer
examples include cloud migration, disaster recovery, data center relocation, and/or remote data collection projects. These projects
typically require you to migrate large amounts of data in the shortest, and most cost-effective, amount of time.
upvoted 33 times

  Wangyan 8 months, 3 weeks ago

Cargo ship use case is exactly at https://youtu.be/bxSD1Nha2k8?t=46
upvoted 31 times

  santu83 1 week, 2 days ago

end of discussion
upvoted 1 times

  [Removed] 5 months ago

it has answer as D if you all are wondering.
upvoted 1 times

  Akinwaleo 6 months, 1 week ago

End of Story
upvoted 1 times

  Kanyeeeah 10 months, 1 week ago

Everyone should look at this general description of Snow Family and no needed to dig deeper on Storage Gateway.
upvoted 1 times

  Iragmt Highly Voted  10 months, 1 week ago

Selected Answer: A
Going with A. The main focus of the customer is to collect, format and process the data at the sea. The data transfer will happen AFTER.
"AWS IoT provides a range of services specifically designed to make it easy to collect, store, and analyze device data even in noisy,
unreliable environments." https://aws.amazon.com/iot/solutions/industrial-iot/
upvoted 10 times

  Soumya198725 Most Recent  3 days, 12 hours ago

Option D undoubtedly
upvoted 1 times

  Pranava_GCP 1 week ago

Selected Answer: D
D. AWS Snowball Edge
upvoted 1 times

  DopePop 2 weeks ago

Selected Answer: D
Show Family
upvoted 1 times

  Tarasharma 2 weeks, 3 days ago

How is Storage Gateway
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: D
AWS Snowball Edge is a data transfer device that allows you to collect, process, and transfer large amounts of data between on-premises
environments and AWS. It is designed for scenarios with limited or no internet connectivity.

In the given scenario, the cargo ships can use Snowball Edge devices on board to collect and process the data from the sensors. Snowball
Edge devices have built-in storage and computing capabilities that can be used to transform and format the data while at sea. The data
can be stored on the Snowball Edge devices until the ships reach a location with internet connectivity.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: D
D. AWS Snowball Edge
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: D
D. AWS Snowball Edge.
upvoted 1 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: D
The company can use AWS Snowball Edge to collect, format, and process data at sea and move the data to AWS later. AWS Snowball Edge
is a physical device that can be shipped to the cargo ships and can store up to 80 TB of data. The company can use the Snowball Edge to
collect data, process it, and store it until it can be transported to a location with internet connectivity to upload the data to AWS.
upvoted 1 times

  aws2380 3 months, 1 week ago

To collect, format, and process data at sea where there is intermittent or no internet connectivity, the company should use AWS IoT
Greengrass. AWS IoT Greengrass is a software that extends AWS cloud capabilities to local devices, making it possible to collect, process,
and analyze data closer to its source.

AWS IoT Greengrass allows the company to install a software agent on a device (such as a cargo ship) that can run AWS Lambda functions,
interact with other AWS services, and communicate with other devices on the local network, even when the device is offline or has limited
connectivity. The agent can also perform data processing and filtering locally, reducing the amount of data that needs to be sent to the
cloud.

Answer : A
upvoted 1 times

  akiraaws 4 months ago

The company needs to collect, format, and process the data at sea and move the data to AWS ((LATER)).
Letter D is correct.
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: D
To meet the requirements of collecting, formatting, and processing data at sea with intermittent or no internet connectivity and moving
the data to AWS later, the company should use AWS Snowball Edge
upvoted 1 times

  Vinayhasija 4 months, 3 weeks ago

Selected Answer: D
The AWS service that the company should use to meet these requirements is AWS Snowball Edge.

AWS Snowball Edge is a petabyte-scale data transfer and edge computing device that can be used to move large amounts of data in and
out of AWS, as well as perform local processing and data storage. Snowball Edge can be used in environments where there is intermittent
or no internet connectivity to collect, format, and process data at sea and then move the data to AWS when a connection is available.
upvoted 2 times

  et_learner 4 months, 3 weeks ago

Selected Answer: D
https://docs.aws.amazon.com/snowball/latest/developer-guide/whatisedge.html
Of course D
upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A - IoT Core needs an internet connection

B - a light-weight hosting solution

C - not designed for data collection, processing, and transfer in low-connectivity environments
D - a data transport solution. can collect, process, and designed for situations where there is limited or no internet connectivity

Answer: D
upvoted 2 times
  QueCJ 4 months, 4 weeks ago
Selected Answer: D
Snow family compute optimized solutions facilitates edge computing
upvoted 1 times
Question #72 Topic 1

A retail company needs to build a highly available architecture for a new ecommerce platform. The company is using only AWS services that
replicate data across multiple Availability Zones.
Which AWS services should the company use to meet this requirement? (Choose two.)

A. Amazon EC2

B. Amazon Elastic Block Store (Amazon EBS)

C. Amazon Aurora

D. Amazon DynamoDB

E. Amazon Redshift

Correct Answer: AB
Reference:
https://aws.amazon.com/rds/features/multi-az/#:~:text=Amazon%20Aurora%20further%20extends%20the,ways%2C%20across%20three%
20Availability%20Zones

Community vote distribution

CD (73%) AB (16%) 6%

  LloydA Highly Voted  10 months, 1 week ago

Please can we get Moderator clarification here
upvoted 73 times

  legacy1996 Highly Voted  9 months, 2 weeks ago

The Answer is C & D. Reason being the questions says company is using AWS services that replicate "DATA" across multiple AZs.
Both EC2 and EBS need to have manually triggered replication. Moreover, their purpose isn't DATA replication.
Natively only C & D allow DATA replication in multiple AZs.
upvoted 43 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: CD
C. Amazon Aurora
D. Amazon DynamoDB
upvoted 1 times

  DopePop 2 weeks ago

Selected Answer: CD
Answer: CD
upvoted 3 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: CD
https://aws.amazon.com/rds/aurora/features/#High_Availability_and_Durability
https://aws.amazon.com/dynamodb/features/#Performance_at_scale
C. Amazon Aurora: Amazon Aurora is a relational database service offered by AWS. It is designed to be highly available and durable, with
automatic data replication across multiple Availability Zones. By using Amazon Aurora, the company can ensure that their database
remains highly available even in the event of an Availability Zone failure.
D. Amazon DynamoDB: Amazon DynamoDB is a fully managed NoSQL database service provided by AWS. DynamoDB is built for high
availability and automatically replicates data across multiple Availability Zones within a region. It offers low-latency performance and can
handle high traffic loads, making it suitable for building a highly available architecture for the e-commerce platform.
upvoted 2 times

  elsie2023 2 weeks, 4 days ago

Selected Answer: CD
C and D have automatic replication capabilities.
upvoted 2 times

  u_ways 2 weeks, 5 days ago

Selected Answer: CD
You can also read that Multi-Region Application with AWS Services that support data replication are Amazon Aurora and Amazon
DynamoDB.

See: https://aws.amazon.com/blogs/architecture/creating-a-multi-region-application-with-aws-services-part-2-data-and-replication/
upvoted 2 times
  man5484 3 weeks, 1 day ago
Selected Answer: CD
C. Amazon Aurora: Amazon Aurora is a relational database service that is designed for high availability and durability. It replicates data
across multiple Availability Zones within a region, providing automatic failover and minimizing downtime in the event of an outage.

D. Amazon DynamoDB: Amazon DynamoDB is a NoSQL database service that is designed for high availability and scalability. It
automatically replicates data across multiple Availability Zones within a region, ensuring data durability and enabling continuous
availability.
upvoted 2 times

  HC89 1 month ago

Selected Answer: CD
C. Amazon Aurora
D. Amazon DynamoDB

Amazon Aurora is a relational database service that automatically scales and replicates data across multiple Availability Zones for high
availability and durability.

Amazon DynamoDB is a NoSQL database service that provides consistent performance at any scale and automatically replicates data
across multiple AWS regions and Availability Zones.

While EC2, EBS, and Redshift can be configured to operate across multiple Availability Zones, they don't automatically replicate data across
them, so Aurora and DynamoDB are the most suitable options for this requirement.
upvoted 3 times

  Karann21 1 month, 1 week ago

Selected Answer: CD
C. Amazon Aurora Provide Replication
D. Amazon DynamoDB Also Provide Replication
upvoted 2 times

  Vijaykpm 1 month, 1 week ago

Selected Answer: CD
Amazon Aurora or Amazon DynamoDB are options for a retail company needing to build a highly available architecture for a new
ecommerce platform while using only AWS services that replicate data across multiple Availability Zones. This is because Amazon Aurora
replicates the data with six copies across three Availability Zones while Amazon DynamoDB uses multiple replicas in at least three
Availability Zones.
upvoted 3 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: CD
C. Amazon Aurora
D. Amazon DynamoDB
upvoted 3 times

  babafakruddin 1 month, 4 weeks ago

Selected Answer: CD
The Answer is C & D
upvoted 2 times

  Papu2112 2 months, 3 weeks ago

Selected Answer: CD
Amazon Aurora or Amazon DynamoDB are perfect for a retail company that needs to build a highly available architecture for a new
ecommerce platform while using only AWS services that replicate data across multiple Availability Zones.
upvoted 4 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: CD
The AWS services that replicate data across multiple Availability Zones are Amazon Aurora and Amazon DynamoDB. So, the company
should use Amazon Aurora and Amazon DynamoDB to meet the requirement of a highly available architecture for the new ecommerce
platform.

Amazon Aurora replicates the data with six copies across three Availability Zones, while Amazon DynamoDB uses multiple replicas in at
least three Availability Zones.
upvoted 3 times

  Ahmed_Elmelegy 3 months ago

Selected Answer: CD
EC2 and EBS are zonal resource.
EBS snapshot is regional resource.
They want high availability so these resources can`
t be used.
upvoted 2 times

  aws2380 3 months, 1 week ago

The two AWS services that the company should use to meet the requirement of building a highly available architecture for a new
ecommerce platform are:

C. Amazon Aurora - Amazon Aurora is a relational database service that is designed to be highly available and durable. It replicates data
across multiple Availability Zones in a region, providing automatic failover and minimizing downtime in the event of an Availability Zone
outage.

D. Amazon DynamoDB - Amazon DynamoDB is a fully managed NoSQL database service that is designed for high availability and
scalability. It replicates data across multiple Availability Zones in a region, providing automatic failover and minimal downtime in the event
of an Availability Zone outage.
upvoted 1 times
Question #73 Topic 1

Which characteristic of the AWS Cloud helps users eliminate underutilized CPU capacity?

A. Agility

B. Elasticity

C. Reliability

D. Durability

Correct Answer: B

Community vote distribution

B (100%)

  Craig92866 Highly Voted  10 months, 2 weeks ago

Selected Answer: B
Elasticity and Agility are pretty much the same thing but Elasticity is for resources (like CPU) and Agility is for services (EC2).
upvoted 14 times

  Guru4Cloud 3 months, 1 week ago

Very good, thinking that way
upvoted 1 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: B
B. Elasticity
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: B
Elasticity refers to the ability to dynamically scale computing resources up or down based on demand. In the case of CPU capacity,
elasticity allows users to easily adjust the amount of CPU resources allocated to their applications in response to changing workloads.

With elasticity in the AWS Cloud, users can scale up their CPU capacity during periods of high demand to ensure optimal performance and
responsiveness. Conversely, during periods of low demand, they can scale down the CPU capacity to eliminate underutilized resources
and reduce costs.

By leveraging the elastic nature of the AWS Cloud, users can effectively eliminate underutilized CPU capacity and only pay for the
resources they actually need, optimizing cost-efficiency while maintaining performance.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Elasticity
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: B
B. Elasticity
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: B
The characteristic of the AWS Cloud that helps users eliminate underutilized CPU capacity is B. Elasticity. AWS provides an elastic
infrastructure that allows users to easily scale their computing resources up or down as needed, without having to worry about the
underlying infrastructure. With AWS, users can provision resources to match their current needs and scale automatically to meet their
future demands. This allows users to eliminate underutilized CPU capacity and optimize their resources for cost and performance.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  AJ79 10 months, 2 weeks ago

B, Elasticity helps reduce the instance if underutilised.
upvoted 2 times
  sumanshu 10 months, 2 weeks ago
Vote for B
upvoted 1 times

  bilel500 11 months ago

Selected Answer: B
Answer is B.
upvoted 1 times

  fahim_neo 1 year ago

Selected Answer: B
B is the correct answer
upvoted 1 times
Question #74 Topic 1

Service control policies (SCPs) manage permissions for which of the following?

A. Availability Zones

B. AWS Regions

C. AWS Organizations

D. Edge locations

Correct Answer: C
Reference:
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html

Community vote distribution

C (100%)

  diogooliveirafox Highly Voted  1 year, 8 months ago

Correct answer: C

https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html

"Service control policies (SCPs) are a type of

organization policy

that you can use to manage permissions in your organization. "

upvoted 11 times

  Pranava_GCP Most Recent  6 days, 19 hours ago

Selected Answer: C
C. AWS Organizations

"An AWS Service Control Policy (SCP) is a set of rules you can create to control access to your AWS resources within the AWS accounts in
your AWS Organization."

https://towardsthecloud.com/aws-scp-service-control-
policies#:~:text=An%20AWS%20Service%20Control%20Policy%20(SCP)%20is%20a%20set%20of%20rules%20you%20can%20create%20to%2
0control%20access%20to%20your%20AWS%20resources%20within%20the%20AWS%20accounts%20in%20your%20AWS%20Organization.
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: C
AWS Organizations is a service that allows you to centrally manage and govern multiple AWS accounts within your organization. It
provides features for creating a hierarchical structure of accounts and applying policies across those accounts.

SCPs are used within AWS Organizations to set fine-grained permissions and control access to services and resources within the
organization. SCPs enable you to define and enforce permissions at the root level or at specific organizational units (OUs) within your
organization's hierarchy. They allow you to control what actions can be performed by accounts within the organization, including access
to specific services, regions, or actions.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS Organizations
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
C. AWS Organizations
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  N9 8 months, 1 week ago

Selected Answer: C
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 2 times

  bilel500 11 months ago

Selected Answer: C
Answer is C.
upvoted 1 times

  bilel500 11 months, 2 weeks ago

Selected Answer: C
Answer is C.
upvoted 1 times

  Johnfo2941 1 year ago

Definitivamente la C
upvoted 2 times

  ramireze 1 year, 1 month ago

aws organisations
upvoted 1 times

  BrightHart 1 year, 1 month ago

the are
upvoted 1 times

  Myxa 1 year, 4 months ago

Selected Answer: C
Correct answer: C
upvoted 1 times

  Mano1990 1 year, 5 months ago

c. Aws organisation
upvoted 1 times

  easilo 1 year, 7 months ago

C is correct
upvoted 2 times

  array284 1 year, 9 months ago

It’s Aws organizations 👍
upvoted 2 times
Question #75 Topic 1

Which AWS service can be used to encrypt data at rest?

A. Amazon GuardDuty

B. AWS Shield

C. AWS Security Hub

D. AWS Key Management Service (AWS KMS)

Correct Answer: D
Reference:
https://aws.amazon.com/blogs/security/how-to-protect-data-at-rest-with-amazon-ec2-instance-store-encryption/

Community vote distribution

D (100%)

  Pranava_GCP 6 days, 19 hours ago

Selected Answer: D
D. AWS Key Management Service (AWS KMS)
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: D
AWS Key Management Service (KMS) is a fully managed service that allows you to create and manage encryption keys to protect your
data. It provides a secure and centralized location for generating and controlling the encryption keys used to encrypt and decrypt your
data.

With AWS KMS, you can encrypt your data at rest by using AWS managed keys or by creating and importing your own keys. You can
integrate KMS with various AWS services, such as Amazon S3, Amazon EBS, Amazon RDS, and others, to enable automatic encryption of
data at rest.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. AWS Key Management Service (AWS KMS)
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: D
D. AWS Key Management Service (AWS KMS).
upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A - threat detection service

B - protection against DDOS

C - Centralized view of sec alerts and compliance statuses

D - yes

Answer: D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times
  exclusive 6 months, 4 weeks ago
Selected Answer: D
D. AWS Key Management Service (AWS KMS)

AWS Key Management Service (AWS KMS) is a fully managed service that can be used to encrypt data at rest. It is a secure and scalable
way to manage the encryption keys that are used to encrypt your data, and it provides a range of features and tools to help you manage
and secure your encryption keys.

With AWS KMS, you can create and manage symmetric and asymmetric keys, and use them to encrypt and decrypt data at rest. You can
also use KMS to create and manage custom key policies, and to control access to your keys based on your security and compliance
requirements.

AWS KMS is a flexible and scalable solution that can be used to encrypt data at rest in a variety of scenarios, including data storage, data
backup and recovery, and data archiving. It is a cost-effective way to ensure that your data is secure and compliant, and it is easy to use
and manage.
upvoted 4 times

  JAMTARA 7 months, 4 weeks ago

ASHIF says answer is a b and c
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for D
upvoted 1 times

  Flex1 11 months ago

Selected Answer: D
Answer is D.
Using services like AWS KMS, AWS CloudHSM, and AWS ACM, customers can implement a comprehensive data at rest and data in transit
encryption strategy across their AWS ecosystem to ensure all data of a given classification shares the same security posture.
https://docs.aws.amazon.com/whitepapers/latest/logical-separation/encrypting-data-at-rest-and--in-transit.html
upvoted 3 times

  bilel500 11 months ago

Selected Answer: D
Answer is D.
upvoted 1 times

  Ifebobo3 1 year, 1 month ago

KMS is used to encrypt data at rest not in transit....Should have been certificate manager for TLS and SSL.....
https://docs.aws.amazon.com/whitepapers/latest/logical-separation/encrypting-data-at-rest-and--in-transit.html
upvoted 3 times
Question #76 Topic 1

Which characteristics are advantages of using the AWS Cloud? (Choose two.)

A. A 100% service level agreement (SLA) for all AWS services

B. Compute capacity that is adjusted on demand

C. Availability of AWS Support for code development

D. Enhanced security

E. Increases in cost and complexity

Correct Answer: BD
Reference:
https://intellipaat.com/blog/aws-benefits-and-drawbacks/

Community vote distribution

BD (100%)

  Pranava_GCP 6 days, 19 hours ago

Selected Answer: BD
B. Compute capacity that is adjusted on demand
D. Enhanced security
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: BD
B. Compute capacity that is adjusted on demand: One of the key benefits of the AWS Cloud is its elasticity, allowing users to scale their
compute resources up or down based on demand. This flexibility enables users to optimize resource allocation and only pay for the
resources they actually need.

D. Enhanced security: AWS provides a secure infrastructure and offers a wide range of security services and features to help users protect
their data and applications. These include encryption options, identity and access management controls, network security, monitoring
tools, and compliance certifications. AWS follows security best practices and offers a shared responsibility model, where both AWS and the
customer have responsibilities for security.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: BD
B. Compute capacity that is adjusted on demand
D. Enhanced security
upvoted 1 times

  lucashpunkt 1 month, 1 week ago

Selected Answer: BD
Easy one. B and D.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: BD
B. Compute capacity that is adjusted on demand
D. Enhanced security
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

The advantages of using the AWS Cloud are:

B. Compute capacity that is adjusted on demand: With AWS, users can easily scale up or down the compute capacity as per their business
needs. This provides flexibility and cost savings as users only pay for what they use.

D. Enhanced security: AWS offers a high level of security, compliance, and data protection. AWS has built a wide range of security tools
and services to protect the data, network, and infrastructure of users.

Therefore, options B and D are the correct answers.

upvoted 1 times

  kumaran1000001 4 months, 3 weeks ago

A - no, does not provide 100%, some 9.99s
B - yes

C - no. no code development support

D - yes

E - no. not an advantage

upvoted 1 times
  MehdiMasri 6 months ago
Selected Answer: BD
BD is the answer.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BD
BD is the answer.
upvoted 1 times

  JAMTARA 7 months, 4 weeks ago

ashif says answer is a and e
upvoted 1 times

  Kantene 9 months, 1 week ago

Selected Answer: BD
Vote for B & D
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for B & D
upvoted 1 times

  bilel500 11 months ago

Selected Answer: BD
Answer is B && D.
upvoted 1 times

  ggttsh 1 year, 1 month ago

100%SLA is not possible and it is not 'advantageous' at all, so A is not right.
upvoted 3 times

  coisas123 1 year, 1 month ago

WHY NOT A?
upvoted 1 times

  TheKinja 7 months ago

On-prem architectures can also have 100% SLAs
upvoted 1 times

  N9 8 months, 1 week ago

Its wrong B and D are correct.
upvoted 1 times

  Tonnie85 1 year, 1 month ago

SLA is never 100%
upvoted 6 times
Question #77 Topic 1

A user is storing objects in Amazon S3. The user needs to restrict access to the objects to meet compliance obligations.
What should the user do to meet this requirement?

A. Use AWS Secrets Manager.

B. Tag the objects in the S3 bucket.

C. Use security groups.

D. Use network ACLs.

Correct Answer: D

Community vote distribution

B (76%) D (20%) 3%

  41km Highly Voted  11 months ago

Selected Answer: B
Secrets Manager is for secrets (passwords)
Network ACL is a statekless firewall working on IPs, not users.
Security Groups are stateful firewall, not for user permissions.
In this case I'd say tags:
https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html
"Object tags enable fine-grained access control of permissions. For example, you could grant an IAM user permissions to read-only
objects with specific tags."
upvoted 59 times

  alameen_hameed Highly Voted  4 months, 2 weeks ago

Selected Answer: D
Option A, using AWS Secrets Manager, is not relevant to this requirement as it is a service for storing and retrieving secrets such as
database credentials, API keys, and other sensitive information.

Option B, tagging the objects in the S3 bucket, is also not a suitable option as tagging is used to categorize objects for management
purposes and does not provide access control.

Option C, using security groups, is not applicable to Amazon S3 as it is a network-level security feature that controls inbound and
outbound traffic to and from Amazon EC2 instances.

Option D, using network ACLs, is also not a suitable option for Amazon S3. Network ACLs are used to control traffic at the subnet level and
do not provide access control to individual objects in an S3 bucket.

Therefore, the correct answer is to use Amazon S3 bucket policies or access control lists (ACLs).
upvoted 5 times

  Pranava_GCP Most Recent  6 days, 18 hours ago

Selected Answer: B
B. Tag the objects in the S3 bucket.

"Object tags enable fine-grained access control of permissions. For example, you could grant a user permissions to read-only objects with
specific tags."

https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-
tagging.html#:~:text=Object%20tags%20enable%20fine%2Dgrained%20access%20control%20of%20permissions.%20For%20example%2C
%20you%20could%20grant%20a%20user%20permissions%20to%20read%2Donly%20objects%20with%20specific%20tags.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: B
https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html
To restrict access to objects in Amazon S3 and meet compliance obligations, the user should use option B: Tag the objects in the S3
bucket. Tags in Amazon S3 are key-value pairs that can be assigned to objects. By using tags, the user can implement fine-grained access
control policies based on object metadata. They can create IAM policies that grant or deny access to objects based on the tags assigned to
them. By properly tagging the objects in the S3 bucket and configuring the corresponding IAM policies, the user can control access to the
objects based on compliance requirements, ensuring that only authorized individuals or systems can access them.

Definitely not D, Ǹetwork`ACLs cannot be used. (thats̀ the trick)

upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: B
By tagging the objects in the S3 bucket, the user can assign metadata to the objects based on specific criteria or compliance
requirements. Tags can be used to categorize and label objects, making it easier to manage access control and apply permissions based
on those tags.

With Amazon S3, access control can be achieved through various mechanisms, such as bucket policies, access control lists (ACLs), and IAM
policies. By leveraging object tags, the user can define more granular access control policies using IAM policies and resource-based
policies.

For example, the user can create an IAM policy that allows read access to objects with a specific tag value (e.g., compliance=yes) and deny
access to objects without that tag. This ensures that only authorized users or systems with the appropriate tag can access the objects.
upvoted 2 times
  khanda 3 weeks, 2 days ago
Selected Answer: D
Correct answer is D:
https://repost.aws/knowledge-center/secure-s3-resources
upvoted 1 times

  AB89 3 weeks, 3 days ago

Selected Answer: D
To restrict access to objects stored in Amazon S3, the user should use Access Control Lists (ACLs) or Bucket Policies. Access Control Lists
(ACLs) enable you to manage access to individual objects in an S3 bucket.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: B
B. Tag the objects in the S3 bucket.
upvoted 2 times

  Vijaykpm 1 month, 1 week ago

Selected Answer: B
https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html
upvoted 1 times

  Abdalfatah 1 month, 1 week ago

Selected Answer: B
correct Answer is B ,
for those who are saying D , check the below ,
you can grant permissions only to other AWS accounts; you cannot grant permissions to users in your account. You cannot grant
conditional permissions, nor can you explicitly deny permissions. ACLs are suitable for specific scenarios. For example, if a bucket owner
allows other AWS accounts to upload objects, permissions to these objects can only be managed using object ACL by the AWS account
that owns the object.
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: D
D. Use network ACLs.
upvoted 1 times

  souzacds 2 months ago

Selected Answer: D
Correct answer is D, but it was mistyped, correct would be "Use S3 ACLs". Check below
https://docs.aws.amazon.com/AmazonS3/latest/userguide/acls.html
upvoted 2 times

  Odba19c2021 2 months ago

Selected Answer: B
Object tags enable fine-grained access control for managing permissions. You can grant conditional permissions based on object tags.
upvoted 3 times

  Yasser001 2 months, 3 weeks ago

To restrict access to objects in an Amazon S3 bucket, the user should use S3 bucket policies or access control lists (ACLs). These policies
can be used to define which users or accounts can access specific objects in the bucket. Therefore, the correct answer is not listed.
upvoted 2 times

  Nolos 3 months ago

Selected Answer: B
Terrible answers to a simple question
upvoted 4 times

  Guru4Cloud 4 months ago

Selected Answer: B
Tagging the objects in the S3 bucket can help the user restrict access to the objects by implementing resource-level permissions. The user
can create a policy that allows access to objects only if they have specific tags. This way, the user can ensure that only authorized users
can access the objects that require compliance obligations.
upvoted 4 times
  alameen_hameed 4 months, 2 weeks ago
Selected Answer: D
Option D
upvoted 1 times
Question #78 Topic 1

A company wants to convert video files and audio files from their source format into a format that will play on smartphones, tablets, and web
browsers.
Which AWS service will meet these requirements?

A. Amazon Elastic Transcoder

B. Amazon Comprehend

C. AWS Glue

D. Amazon Rekognition

Correct Answer: A

Community vote distribution

A (100%)

  Craig92866 Highly Voted  10 months, 1 week ago

Lol. My CLF-001 training didn't cover this. Glad this review exists!
upvoted 10 times

  KiwE 6 months, 3 weeks ago

Coming from MS exams - this is all insanity. So many things that are not covered in the Examguide or official course (I've done the path
and two others). What is Amazon doing?
upvoted 3 times

  CptFarmer 9 months, 3 weeks ago

It is also not in the exam-guide. Do we need to know this?
upvoted 2 times

  Nguyen25183 9 months, 1 week ago

surely we do.
upvoted 2 times

  Toni_Dalco 7 months, 2 weeks ago

But It's not correct for us ...
upvoted 1 times

  Pranava_GCP Most Recent  6 days, 18 hours ago

Selected Answer: A
A. Amazon Elastic Transcoder

"Amazon Elastic Transcoder is media transcoding in the cloud. It is designed to be a highly scalable, easy to use and a cost effective way
for developers and businesses to convert (or “transcode”) media files from their source format into versions that will playback on devices
like smartphones, tablets and PCs."

https://aws.amazon.com/elastictranscoder/#:~:text=Amazon%20Elastic%20Transcoder%20is,smartphones%2C%20tablets%20and%20PCs.
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: A
Amazon Elastic Transcoder is a media transcoding service that allows you to convert media files into various formats suitable for different
devices and platforms. It provides a simple and scalable solution for converting audio and video files from their source format to formats
that can be played on smartphones, tablets, web browsers, and other devices.

With Amazon Elastic Transcoder, you can define transcoding presets to specify the desired output formats, codecs, bitrates, resolutions,
and other parameters for the transcoded files. You can also configure the service to automatically generate thumbnails or add
watermarks to the converted media files.

By using Elastic Transcoder, you can easily integrate media transcoding into your workflows and applications, ensuring that your video
and audio content is accessible and playable across a wide range of devices and platforms.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: A
A. Amazon Elastic Transcoder
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
A. Amazon Elastic Transcoder
upvoted 1 times

  angelparra 2 months, 3 weeks ago

To convert video and audio files into a format that will play on smartphones, tablets, and web browsers, the company can use the AWS
Elemental MediaConvert service.

AWS Elemental MediaConvert is a file-based video transcoding service that enables the user to easily create video-on-demand (VOD)
content for broadcast and multiscreen delivery at scale. It can be used to convert audio and video files from their source format into a
format that is optimized for playback on various devices, including smartphones, tablets, and web browsers.

With AWS Elemental MediaConvert, the company can easily create custom transcoding presets that can be used to optimize the video and
audio quality for different devices and network conditions. It also provides advanced features such as closed captions, audio
normalization, and watermarking.
upvoted 1 times

  tamefi5512 5 months ago

Selected Answer: A
https://aws.amazon.com/elastictranscoder/
upvoted 3 times

  shogan 6 months ago

Selected Answer: A
Amazon Elastic Transcoder lets you convert media files that you have stored in Amazon Simple Storage Service (Amazon S3) into media
files in the formats required by consumer playback devices. For example, you can convert large, high-quality digital media files into
formats that users can play back on mobile devices, tablets, web browsers, and connected televisions.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  NJSuper 6 months, 2 weeks ago

ANSWER should be option A
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 2 times

  bilel500 11 months ago

Selected Answer: A
Answer is A.
upvoted 1 times

  30Miles 11 months ago

Selected Answer: A
A: https://docs.aws.amazon.com/elastictranscoder/latest/developerguide/introduction.html
upvoted 4 times
Question #79 Topic 1

Which of the following are benefits of Amazon EC2 Auto Scaling? (Choose two.)

A. Improved health and availability of applications

B. Reduced network latency

C. Optimized performance and costs

D. Automated snapshots of data

E. Cross-Region Replication

Correct Answer: AB

Community vote distribution

AC (100%)

  zoeyaj Highly Voted  11 months, 1 week ago

Should it be A and C?
upvoted 18 times

  Bibs_s Most Recent  4 days, 17 hours ago

Selected Answer: AC
A and C
upvoted 1 times

  Pranava_GCP 6 days, 18 hours ago

Selected Answer: AC
A. Improved health and availability of applications
C. Optimized performance and costs
upvoted 1 times

  elsie2023 2 weeks, 4 days ago

I agree with A and C but could someone explain why not B?
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: AC
A. Improved health and availability of applications: Amazon EC2 Auto Scaling helps ensure the health and availability of applications by
automatically adjusting the number of EC2 instances based on demand. It scales the instances up or down based on predefined scaling
policies, helping to maintain optimal performance and availability.

C. Optimized performance and costs: With Amazon EC2 Auto Scaling, you can set scaling policies to dynamically adjust the number of EC2
instances based on metrics such as CPU utilization, network traffic, or other custom metrics. This allows you to optimize your application's
performance by scaling resources up during high-demand periods and scaling down during low-demand periods, helping to minimize
costs.
Option B, reduced network latency, is not a direct benefit of Amazon EC2 Auto Scaling. While Auto Scaling can help ensure the availability
and performance of applications, it does not directly address network latency.
upvoted 1 times

  ankybag3 3 weeks, 3 days ago

Why not AB ?
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: AC
A. Improved health and availability of applications
C. Optimized performance and costs
upvoted 1 times

  Abdalfatah 1 month, 1 week ago

Selected Answer: AC
Should it be A and C
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: AC
A. Improved health and availability of applications
C. Optimized performance and costs
upvoted 1 times
  adrianap93 1 month, 4 weeks ago
Selected Answer: AC
Should be AC
upvoted 1 times

  Yasser001 2 months, 3 weeks ago

The benefits of Amazon EC2 Auto Scaling are:

A. Improved health and availability of applications

C. Optimized performance and costs

So options A and C are correct.

upvoted 2 times

  jkalandarov 3 months ago

How Auto Scaling improves application health? It checks for application health, but doesn't improve it, doesn't it?
Therefore, AC are right answers.
upvoted 2 times

  wguan99 3 months, 1 week ago

Selected Answer: AC
Should be AC
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: AC
The benefits of Amazon EC2 Auto Scaling are:

A. Improved health and availability of applications

C. Optimized performance and costs

Therefore, the correct options are A and C. EC2 Auto Scaling helps in automatically adjusting the capacity of EC2 instances in response to
changes in demand. This ensures that the application is always available and can handle varying levels of traffic. It also helps in optimizing
the performance and costs by automatically scaling up and down the instances as per the demand, thus avoiding over-provisioning or
under-provisioning of resources. However, EC2 Auto Scaling does not provide automated snapshots of data or cross-region replication.
upvoted 2 times

  Vinayhasija 4 months, 3 weeks ago

Selected Answer: AC
The two benefits of Amazon EC2 Auto Scaling are:

A. Improved health and availability of applications: EC2 Auto Scaling enables you to automatically launch or terminate EC2 instances based
on demand. By automatically scaling your infrastructure in response to changing demand, you can ensure that your applications are
always available and responsive to users.

C. Optimized performance and costs: EC2 Auto Scaling enables you to optimize the performance and costs of your infrastructure by
automatically scaling up or down based on demand. By scaling up during periods of high demand and scaling down during periods of low
demand, you can ensure that you are only paying for the resources you need, while still providing a responsive user experience.

Reduced network latency, automated snapshots of data, and cross-region replication are not benefits of Amazon EC2 Auto Scaling.
upvoted 3 times

  Shogow 4 months, 3 weeks ago

Selected Answer: AC
Scalability has nothing to see with network latency
upvoted 2 times

  QueCJ 4 months, 4 weeks ago

Selected Answer: AC
If you deploy an auto scaling group resources in the same region then latency will be available to users who are not in the same region
upvoted 1 times
Question #80 Topic 1

A company has several departments. Each department has its own AWS accounts for its applications. The company wants all AWS costs on a
single invoice to simplify payment, but the company wants to know the costs that each department is incurring.
Which AWS tool or feature will provide this functionality?

A. AWS Cost and Usage Reports

B. Consolidated billing

C. Savings Plans

D. AWS Budgets

Correct Answer: B

Community vote distribution

B (100%)

  Pranava_GCP 1 week, 2 days ago

Selected Answer: B
B. Consolidated billing
upvoted 1 times

  man5484 3 weeks, 1 day ago

Selected Answer: B
Consolidated billing is a feature of AWS Organizations that allows you to consolidate the billing for multiple AWS accounts under a single
payer account. With consolidated billing, you receive a single invoice for all the accounts linked to the organization.

While the billing is consolidated, you can still view the costs incurred by each individual account or department. AWS provides detailed
cost and usage reports through the AWS Cost and Usage Reports (CUR). These reports can be configured to include cost allocation tags
that you can set up for each account or department. By using cost allocation tags, you can track and analyze costs based on specific tags,
such as department, project, or application.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Consolidated billing
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: B
B. Consolidated billing
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: B
The AWS tool or feature that provides this functionality is B. Consolidated billing.

Consolidated billing enables the company to consolidate payment for multiple AWS accounts or multiple departments into a single
payment, making it easier to track and pay AWS costs. However, each AWS account remains separate, and each department can view its
own usage and cost data
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  exclusive 6 months, 4 weeks ago

Selected Answer: B
B. Consolidated billing

To get all AWS costs on a single invoice while still being able to track the costs that each department is incurring, the company can use
consolidated billing.

Consolidated billing is a feature of AWS Organizations that allows a single AWS account to pay the bills for multiple AWS accounts. This can
be useful for companies that have multiple AWS accounts, as it allows them to see all of their costs on a single invoice, while still being
able to track the costs of each department separately.
upvoted 1 times
  sumanshu 10 months, 2 weeks ago
Vote for B
upvoted 1 times

  bilel500 11 months ago

Selected Answer: B
Answer is B.
upvoted 1 times

  GonzaloD 11 months ago

Selected Answer: B
Think B is correct, it actually merges on one bill itemized per OU
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html
upvoted 4 times

  NawlinsTaz 11 months ago

Selected Answer: B
B is correct. It is asking for a 'functionality' not a 'report'
upvoted 1 times

  seth1721 11 months ago

Shouldn't it be A?
upvoted 4 times

  Craig92866 10 months, 1 week ago

No. 'A' works at the Account layer. A solution that works at the Organization layer is needed so the answer is 'B.'
upvoted 4 times
Question #81 Topic 1

A company runs its workloads on premises. The company wants to forecast the cost of running a large application on AWS.
Which AWS service or tool can the company use to obtain this information?

A. AWS Pricing Calculator

B. AWS Budgets

C. AWS Trusted Advisor

D. Cost Explorer

Correct Answer: D
Reference:
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/ce-forecast.html

Community vote distribution

A (93%) 7%

  SM786 Highly Voted  1 year, 7 months ago

Selected Answer: A
Anticipate / new app = Pricing Calculator
upvoted 26 times

  AJ79 Highly Voted  10 months, 2 weeks ago

Selected Answer: A
Ans is A, Forecast for new service. If it is for existing services, then D
upvoted 20 times

  MaGarMa 9 months, 3 weeks ago

I agree with this
upvoted 4 times

  jabadrian Most Recent  2 days, 1 hour ago

Selected Answer: D
forescasting is Cost Explorer, then D
upvoted 1 times

  Soumya198725 3 days, 11 hours ago

How this will be Option D when it's clearly state to forecast Pricing in AWS .
upvoted 1 times

  santu83 1 week, 1 day ago

New service from on-prem to AWS = Pricing Calculator
Existing service status/utilization = Cost Explorer
Answer A
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: A
A. AWS Pricing Calculator
"AWS Pricing Calculator is a web-based planning tool that you can use to create estimates for your AWS use cases. You can use it to model
your solutions before building them, explore the AWS service price points, and review the calculations behind your estimates. You can use
it to help you plan how you spend, find cost saving opportunities, and make informed decisions when using Amazon Web Services.
AWS Pricing Calculator is useful for those who have never used AWS. It's also useful for those who want to reorganize or expand their
AWS usage. You don't need any experience with the cloud or AWS to use AWS Pricing Calculator."

https://docs.aws.amazon.com/pricing-calculator/latest/userguide/what-is-pricing-calculator.html
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: A
The AWS Pricing Calculator allows users to estimate and forecast the costs of running various AWS services based on different parameters
such as region, instance types, storage, data transfer, and more. It helps users get an understanding of the potential costs involved in
running their workloads on AWS before actually deploying them.
upvoted 1 times

  gissantos 2 weeks, 6 days ago

Selected Answer: A
Ans is A, Forecast for new service. If it is for existing services, then D. The question is no clara.
upvoted 1 times

  Carvar18 3 weeks ago

Forecasting with Cost Explorer
A forecast is a prediction of how much you will use AWS services over the forecast time period that you selected. This forecast is based on
your past usage.
https://docs.aws.amazon.com/cost-management/latest/userguide/ce-forecast.html
upvoted 1 times

  AbbeyCity 3 weeks ago

Selected Answer: A
AWS Pricing Calculator
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: A
The AWS Pricing Calculator is a web-based tool that allows you to estimate the cost of running your workloads on AWS. You can use the
calculator to estimate the cost of individual services or entire applications.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. AWS Pricing Calculator
upvoted 1 times

  Vijaykpm 1 month, 1 week ago

Selected Answer: A
new app still not on AWS = Option A, Pricing Calculator
existing app on AWS = Option D i.e., AWS Cost Explorer
upvoted 1 times

  muzammil572 1 month, 2 weeks ago

To forecast the cost of running a large application on AWS, the company can use the AWS Cost Explorer. The Cost Explorer is a powerful
tool that provides insights into your AWS costs and usage. It allows you to analyze your past spending patterns, forecast future costs, and
identify areas for potential cost optimization.

With the AWS Cost Explorer, you can generate custom reports, view cost and usage data at various levels of granularity (such as by
service, region, or tag), and explore different cost dimensions. It also provides visualization options to help you understand your cost
trends and patterns over time.

By using the AWS Cost Explorer, the company can input its specific workload requirements, estimate the usage of various AWS services,
and obtain a forecasted cost for running the application on AWS.

Therefore, the correct answer is D. Cost Explorer.

upvoted 1 times

  stormy32 3 weeks, 5 days ago

But if the company already runs their workloads on AWS, and that is not the case so the cost explorer will not forecast costs of unused
aws resources.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
A. AWS Pricing Calculator.
upvoted 1 times

  fhernandez 1 month, 3 weeks ago

A is the options
upvoted 1 times

  adrianap93 1 month, 4 weeks ago

Selected Answer: D
Should be D
upvoted 1 times
Question #82 Topic 1

A company wants to eliminate the need to guess infrastructure capacity before deployments. The company also wants to spend its budget on
cloud resources only as the company uses the resources.
Which advantage of the AWS Cloud matches the company's requirements?

A. Reliability

B. Global reach

C. Economies of scale

D. Pay-as-you-go pricing

Correct Answer: D
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html

Community vote distribution

D (88%) 9%

  Pranava_GCP 1 week, 2 days ago

Selected Answer: D
D. Pay-as-you-go pricing
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: D
Pay-as-you-go pricing allows companies to only spend their budget on cloud resources as they use the resources. This eliminates the need
to guess infrastructure capacity before deployments.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Pay-as-you-go pricing
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: D
D. Pay-as-you-go pricing.
upvoted 1 times

  BENNIELONG 3 months, 3 weeks ago

Shouldn't answer be C?
Benefit from massive economies of scale – By using cloud computing, you can achieve a lower variable cost than you can get on your own.
Because usage from hundreds of thousands of customers is aggregated in the cloud, providers such as AWS can achieve higher
economies of scale, which translates into lower pay as-you-go prices.
upvoted 2 times

  Guru4Cloud 4 months ago

Selected Answer: D
The advantage of the AWS Cloud that matches the company's requirements is D. Pay-as-you-go pricing.

Pay-as-you-go pricing allows the company to only pay for the resources they use, without having to guess how much infrastructure
capacity they will need in advance. This means that the company can use cloud resources as needed and can scale up or down depending
on demand, without having to worry about overprovisioning or underprovisionin
upvoted 1 times

  RiaanMO 5 months, 2 weeks ago

The answer is in the question, wants to spend its budget on cloud resources only as the company uses the resources = Pay as you go
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  JAMTARA 7 months, 4 weeks ago

ashif says answer is A please vote
upvoted 1 times
  [Removed] 9 months, 1 week ago
Selected Answer: D
Has to be D
upvoted 2 times

  Craig92866 10 months, 1 week ago

Selected Answer: D
Compared C and D and the answer is D.

C. https://aws.amazon.com/pricing/?aws-products-pricing.sort-by=item.additionalFields.productNameLowercase&aws-products-
pricing.sort-order=asc&awsf.Free%20Tier%20Type=*all&awsf.tech-category=*all
D. https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  certiflux 10 months, 2 weeks ago

Selected Answer: D
D, pay as you go is the direct answer
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for D
upvoted 1 times

  kp_download 10 months, 4 weeks ago

Selected Answer: C
Why is it not C? C includes Pay as you go advantage.
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  LittleSoap 8 months, 1 week ago

Because economies of scale implies that you pay less the more you use in terms of resources, and in that it dosen't answer the
question as well as D - pay as you go pricing
upvoted 2 times

  bilel500 11 months ago

Selected Answer: D
Answer is D.
upvoted 1 times

  rac_sp 11 months, 3 weeks ago

Selected Answer: D
D is the right choice
upvoted 1 times

  bitoyshunfu 11 months, 4 weeks ago

Selected Answer: D
D is the answer
upvoted 2 times
Question #83 Topic 1

Which AWS service supports a hybrid architecture that gives users the ability to extend AWS infrastructure, AWS services, APIs, and tools to data
centers, co- location environments, or on-premises facilities?

A. AWS Snowmobile

B. AWS Local Zones

C. AWS Outposts

D. AWS Fargate

Correct Answer: C
Reference:
https://aws.amazon.com/outposts/

Community vote distribution

C (100%)

  exclusive Highly Voted  6 months, 4 weeks ago

Selected Answer: C
C. AWS Outposts

AWS Outposts is a service that supports a hybrid architecture that gives users the ability to extend AWS infrastructure, AWS services, APIs,
and tools to data centers, co-location environments, or on-premises facilities.
upvoted 9 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: C
C. AWS Outposts
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: C
AWS Outposts is a fully managed service that extends AWS infrastructure, services, APIs, and tools to customer premises. It allows
customers to build and run applications on premises using the same programming interfaces as in AWS Regions, while using local
compute and storage resources for lower latency and local data processing needs.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS Outposts
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
C. AWS Outposts
upvoted 1 times

  Guru4Cloud 4 months ago

C. AWS Outposts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

C is the answer.
upvoted 1 times

  Sreekanth_19 8 months, 3 weeks ago

C is correct
upvoted 1 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: C
C is correct.
AWS Outposts is a family of fully managed solutions delivering AWS infrastructure and services to virtually any on-premises or edge
location for a truly consistent hybrid experience. Outposts solutions allow you to extend and run native AWS services on premises, and is
available in a variety of form factors, from 1U and 2U Outposts servers to 42U Outposts racks, and multiple rack deployments.
Local zone is close.
https://aws.amazon.com/about-aws/global-infrastructure/localzones/
AWS Local Zones are a type of infrastructure deployment that places compute, storage, database, and other select AWS services close to
large population and industry centers.
upvoted 1 times
  Istiaque 10 months, 1 week ago
Answer is C
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 1 times

  bilel500 11 months ago

Selected Answer: C
Answer is C.
upvoted 1 times

  _SHARU_ 1 year, 1 month ago

C ANSWER
AWS Outposts • Hybrid Cloud: businesses that keep an on
- premises infrastructure alongside a cloud
infrastructure
• Therefore, two ways of dealing with IT systems: • One for the AWS cloud (using the AWS console,
CLI, and AWS APIs)
• One for their on
-premises infrastructure
• AWS Outposts are “server racks” that offers the
same AWS infrastructure, services, APIs & tools
to build your own applications on
-premises just as in the cloud
• AWS will setup and manage “Outposts Racks”
within your on
-premises infrastructure and you can start leveraging AWS services on-premises
• You are responsible for the Outposts Rack
physical security
upvoted 2 times

  CaptainRed 1 year, 9 months ago

Ans is C
upvoted 1 times

  wiijwqeif 1 year, 9 months ago

correct
upvoted 2 times
Question #84 Topic 1

A company has a physical tape library to store data backups. The tape library is running out of space. The company needs to extend the tape
library's capacity to the AWS Cloud.
Which AWS service should the company use to meet this requirement?

A. Amazon Elastic Block Store (Amazon EBS)

B. Amazon S3

C. Amazon Elastic File System (Amazon EFS)

D. AWS Storage Gateway

Correct Answer: D

Community vote distribution

D (96%) 4%

  zoeyaj Highly Voted  11 months ago

AWS Storage Gateway is a set of hybrid cloud storage services that provide on-premises access to virtually unlimited cloud storage.
upvoted 15 times

  exclusive Highly Voted  6 months, 4 weeks ago

Selected Answer: D
D. AWS Storage Gateway

AWS Storage Gateway is a service that can be used to extend the tape library's capacity to the AWS Cloud.

AWS Storage Gateway is a hybrid storage service that allows users to connect their on-premises data centers to the AWS Cloud. It provides
a range of storage options, including file-based, block-based, and tape-based storage, which can be used to store data backups and other
types of data.
upvoted 10 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: D
D. AWS Storage Gateway

"AWS Storage Gateway is a set of hybrid cloud storage services that provide on-premises access to virtually unlimited cloud storage."

https://aws.amazon.com/storagegateway/
upvoted 1 times

  gissantos 2 weeks, 6 days ago

Selected Answer: D
For hybrid Cloud
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: D
AWS Storage Gateway is a hybrid storage service that allows you to extend your on-premises storage infrastructure to the AWS Cloud. It
provides three different storage interfaces: File Gateway, Volume Gateway, and Tape Gateway. The Tape Gateway interface allows you to
create virtual tapes in the AWS Cloud that can be used to store backups from your physical tape library.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. AWS Storage Gateway
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: D
D. AWS Storage Gateway.
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: D
The AWS service that can be used to extend the capacity of a physical tape library to the cloud is AWS Storage Gateway.
AWS Storage Gateway is a hybrid storage service that enables on-premises applications to use cloud storage. It provides three types of
storage interfaces, including a tape gateway that enables companies to store backups in Amazon S3 and Amazon S3 Glacier. By using AWS
Storage Gateway, the company can extend the capacity of the tape library to the cloud and leverage the scalability and durability of
Amazon S3 and Amazon S3 Glacier.
upvoted 1 times
  Saif93 6 months, 2 weeks ago
Selected Answer: D
D is the answer.
upvoted 1 times

  Dogmarket 7 months, 1 week ago

Where is S3 Glacier?
upvoted 1 times

  Cricca1862 8 months, 2 weeks ago

Selected Answer: D
D is correct
upvoted 1 times

  [Removed] 9 months, 1 week ago

Selected Answer: D
The key here is how they are actually going to move it
upvoted 1 times

  Salacity 9 months, 2 weeks ago

Selected Answer: D
I believe the Storage Gateway contains S3 storage, but the use case definitely falls in line with Storage Gateway.
upvoted 1 times

  LloydA 10 months, 1 week ago

Selected Answer: B
S3 Glacier Deep Archive : "maintaining data in on-premises tape or archiving data off-site"
upvoted 1 times

  Craig92866 10 months, 1 week ago

Selected Answer: D
S3 Glacier/Glacier Deep Freeze wound be a solid solution, too, since it's meant for archival data. I guess 'S3' didn't mean all of the
solutions that reside in 'S3.'

D will work, too.

upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for D
upvoted 2 times

  bilel500 11 months ago

Selected Answer: D
Answer is D.
upvoted 1 times
Question #85 Topic 1

An online retail company has seasonal sales spikes several times a year, primarily around holidays. Demand is lower at other times. The company
finds it difficult to predict the increasing infrastructure demand for each season.
Which advantages of moving to the AWS Cloud would MOST benefit the company? (Choose two.)

A. Global footprint

B. Elasticity

C. AWS service quotas

D. AWS shared responsibility model

E. Pay-as-you-go pricing

Correct Answer: BE
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html

Community vote distribution

BE (100%)

  Pranava_GCP 1 week, 2 days ago

Selected Answer: BE
B. Elasticity
E. Pay-as-you-go pricing
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: BE
Elasticity allows the company to scale its infrastructure up or down as demand fluctuates. This is important for a company that
experiences seasonal sales spikes, as they can easily increase their capacity during busy periods and then decrease it when demand is
lower.
Pay-as-you-go pricing means that the company only pays for the resources they use. This is beneficial for a company that experiences
unpredictable demand, as they only have to pay for the resources they actually need.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: BE
B. Elasticity
E. Pay-as-you-go pricing
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: BE
B. Elasticity
E. Pay-as-you-go pricing.
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: BE
The advantages of moving to the AWS Cloud that would MOST benefit the company in this scenario are:

B. Elasticity: The company can take advantage of the elasticity of the AWS Cloud to easily scale its infrastructure up or down as demand
fluctuates during the seasonal sales spikes. This can help avoid overprovisioning during low demand periods, which can result in
unnecessary costs.

E. Pay-as-you-go pricing: The company can benefit from the pay-as-you-go pricing model of the AWS Cloud, which allows it to only pay for
the resources it uses. This can help reduce costs during low demand periods and avoid the need to make large upfront investments in
infrastructure that may not be fully utilized.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

BE is the answer.
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is BE
upvoted 2 times
  Craig92866 10 months, 1 week ago
Selected Answer: BE
B & E for the win.
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B & E
upvoted 1 times

  bilel500 11 months ago

Selected Answer: BE
Answer is B && E.
upvoted 1 times

  JeremyIMIM 11 months, 2 weeks ago

Selected Answer: BE
BE for sure
upvoted 1 times

  ducanh301191 1 year, 4 months ago

Selected Answer: BE
B + E are correct
upvoted 1 times

  Myxa 1 year, 4 months ago

Selected Answer: BE
B and E
upvoted 1 times

  MischiShein 1 year, 8 months ago

B y E definitivo
upvoted 3 times

  CaptainRed 1 year, 10 months ago

The ans is B & E
upvoted 2 times
Question #86 Topic 1

Which AWS service can be used to turn text into lifelike speech?

A. Amazon Polly

B. Amazon Kendra

C. Amazon Rekognition

D. Amazon Connect

Correct Answer: A
Reference:
https://aws.amazon.com/polly/#:~:text=Amazon%20Polly%20is%20a%20service,synthesize%20natural%20sounding%20human%20speech

Community vote distribution

A (100%)

  exclusive Highly Voted  6 months, 4 weeks ago

Selected Answer: A
A. Amazon Polly

Amazon Polly is a service that can be used to turn text into lifelike speech. Amazon Polly uses advanced deep learning technologies to
synthesize speech that sounds natural and lifelike, allowing users to convert written content into spoken language.
upvoted 6 times

  SmartLearner Highly Voted  8 months, 4 weeks ago

Why the questions from out of syllabus? Who controls the type of questions?
upvoted 5 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: A
A. Amazon Polly

"Amazon Polly uses deep learning technologies to synthesize natural-sounding human speech, so you can convert articles to speech. With
dozens of lifelike voices across a broad set of languages, use Amazon Polly to build speech-activated applications."

https://aws.amazon.com/polly/#:~:text=Amazon%20Polly%20is%20a%20service,synthesize%20natural%20sounding%20human%20speech
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: A
Amazon Polly is a service that uses deep learning technologies to synthesize speech that sounds like a human voice. It provides dozens of
lifelike voices across a wide variety of languages.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. Amazon Polly
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
A. Amazon Polly
upvoted 1 times

  soshisy 4 months, 3 weeks ago

Nice to have discussion. Not in the coursr but I learned something new.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  N9 8 months, 1 week ago

Selected Answer: A
https://aws.amazon.com/polly/
upvoted 1 times
  JA2018 8 months, 2 weeks ago
Selected Answer: A
not found in the AWS CCP online course & exam prep. LOL
upvoted 1 times

  quixo 9 months, 4 weeks ago

A - Poly
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 1 times

  bilel500 11 months ago

Selected Answer: A
Answer is A.
upvoted 1 times

  fross 11 months ago

Selected Answer: A
A is correct. Directly form AWS White Paper for Services, "Amazon Polly is a service that turns text into lifelike speech."
upvoted 4 times
Question #87 Topic 1

Which AWS service or tool can be used to capture information about inbound and outbound traffic in an Amazon VPC?

A. VPC Flow Logs

B. Amazon Inspector

C. VPC endpoint services

D. NAT gateway

Correct Answer: A

Community vote distribution

A (100%)

  CarrieJ Highly Voted  11 months ago

VPC Flow Logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC.
upvoted 7 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: A
A. VPC Flow Logs

"VPC Flow Logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC.
Flow log data can be published to the following locations: Amazon CloudWatch Logs, Amazon S3, or Amazon Kinesis Data Firehose. After
you create a flow log, you can retrieve and view the flow log records in the log group, bucket, or delivery stream that you configured."

https://docs.aws.amazon.com/vpc/latest/userguide/flow-logs.html
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: A
VPC Flow Logs is a feature of Amazon VPC that allows you to capture information about the network traffic that flows to and from your
VPC. This information can be used to troubleshoot network issues, monitor network usage, and audit network activity.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. VPC Flow Logs
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
A. VPC Flow Logs
upvoted 1 times

  debabrata6983 6 months, 1 week ago

Selected Answer: A
The correct answer is A
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: A
A is correct.
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 1 times

  bilel500 11 months ago

Selected Answer: A
Answer is A.
upvoted 1 times
Question #88 Topic 1

A company wants to ensure that two Amazon EC2 instances are in separate data centers with minimal communication latency between the data
centers.
How can the company meet this requirement?

A. Place the EC2 instances in two separate AWS Regions connected with a VPC peering connection.

B. Place the EC2 instances in two separate Availability Zones within the same AWS Region.

C. Place one EC2 instance on premises and the other in an AWS Region. Then connect them by using an AWS VPN connection.

D. Place both EC2 instances in a placement group for dedicated bandwidth.

Correct Answer: B

Community vote distribution

B (83%) D (17%)

  phony2 Highly Voted  1 year, 10 months ago

answer is B ... this is the definition of Available Zones ... separate data centers with minimal communication latency
upvoted 24 times

  JamPauGalBag Highly Voted  1 year, 6 months ago

Selected Answer: B
the answer is B.

A cluster placement group is a logical grouping of instances within a SINGLE AVAILABILITY ZONE that benefits from low network latency,
high network throughput.

in the question, it said DIFFERENT DATA CENTERS

upvoted 10 times

  Pranava_GCP Most Recent  1 week, 2 days ago

D. Place both EC2 instances in a placement group for dedicated bandwidth.

"You can use placement groups to influence the placement of a group of interdependent instances to meet the needs of your workload.
Depending on the type of workload, you can create a placement group using one of the following placement strategies:
Cluster – packs instances close together inside an Availability Zone. This strategy enables workloads to achieve the low-latency network
performance necessary for tightly-coupled node-to-node communication that is typical of high-performance computing (HPC)
applications."

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/placement-groups.html
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: B
Availability Zones are isolated locations within an AWS Region that are connected by low-latency networks. Placing the EC2 instances in
two separate Availability Zones will ensure that they are in different data centers, while still maintaining low communication latency.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Place the EC2 instances in two separate Availability Zones within the same AWS Region.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: B
B. Place the EC2 instances in two separate Availability Zones within the same AWS Region.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Cricca1862 8 months, 2 weeks ago

Selected Answer: B
question says separate data centers with minimal communication latency: it's B
upvoted 2 times
  anandasa920 8 months, 2 weeks ago
Selected Answer: B
This is correct answer
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Could be D as well...(Not Sure)
upvoted 1 times

  Eky_1 9 months, 1 week ago

Placement groups are rack specific. Meaning all placements whatsoever could be in the same data center.
upvoted 1 times

  pancman 10 months, 3 weeks ago

Selected Answer: B
Obviously B
upvoted 1 times

  Ahmed_Root 10 months, 3 weeks ago

Selected Answer: B
in the same AvZone the latency will be lower. Actually the placement group will be a choice but it did not give the option to differenciate
the datacenter between the EC2 instance.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/placement-groups.html
upvoted 1 times

  dldjven 10 months, 4 weeks ago

Selected Answer: B
B seems to be the best answer even if others might also be correct
upvoted 1 times

  bilel500 11 months ago

Selected Answer: B
Answer is B.
upvoted 2 times

  b4therain 1 year, 3 months ago

Selected Answer: D
Batch Group : Logical group of EC2 instances within a single available zone.
upvoted 2 times

  Cara89 1 year, 3 months ago

Selected Answer: D
lowest possible communication delay, so is D
upvoted 1 times

  T1Heavy 10 months, 3 weeks ago

That is only half of the question.
The most important half is: ensure that two Amazon EC2 instances are in separate data centers
Within one AZ it is POSSIBLE that they are in ONE data center. So it is wrong.
upvoted 2 times

  ob602 1 year, 6 months ago

I believe D is correct.
Placement group where group members are able to communicate with one another in a way that provides low latency and high
throughput.
upvoted 1 times
Question #89 Topic 1

In which situations should a company create an IAM user instead of an IAM role? (Choose two.)

A. When an application that runs on Amazon EC2 instances requires access to other AWS services

B. When the company creates AWS access credentials for individuals

C. When the company creates an application that runs on a mobile phone that makes requests to AWS

D. When the company needs to add users to IAM groups

E. When users are authenticated in the corporate network and want to be able to use AWS without having to sign in a second time

Correct Answer: BD

Community vote distribution

BD (81%) AC (19%)

  sirasdf Highly Voted  6 months, 4 weeks ago

B/D are correct

A - IAM Role
B - IAM User
C - IAM Role
D - IAM User
E - Integrated SSO

Explaination:
There are several situations in which you might want to create an IAM user instead of an IAM role:

When you want to grant access to an individual person, rather than to an AWS resource or service.
When you want to give someone the ability to access the AWS Management Console.
When you want to use multi-factor authentication (MFA) to secure access to your AWS resources.
When you want to give someone the ability to use the AWS API or command line interface (CLI) to access your resources.

On the other hand, there are situations in which you might want to create an IAM role instead of an IAM user:

When you want to grant permissions to an AWS resource or service, rather than to an individual person.
When you want to grant temporary access to your resources.
When you want to grant access to resources in another AWS account.
It's important to carefully consider the specific needs of your use case when deciding whether to create an IAM user or an IAM role.
upvoted 19 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: BD
B. When the company creates AWS access credentials for individuals
D. When the company needs to add users to IAM groups
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: BD
B:- IAM users are designed for individuals who need to access AWS resources. They have long-term credentials that can be used to sign in
to the AWS Management Console or to make requests to AWS services programmatically.
D :- IAM users can be configured to use single sign-on (SSO) with an identity provider (IdP), such as Active Directory or Okta. This allows
users to sign in to the corporate network once, and then they will be automatically authenticated to AWS without having to enter their
credentials again.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: BD
B. When the company creates AWS access credentials for individuals
D. When the company needs to add users to IAM groups
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: BD
B. When the company creates AWS access credentials for individuals
D. When the company needs to add users to IAM groups
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: BD
Option A is incorrect because an IAM role can be used to provide AWS access to an application running on Amazon EC2 instances.

Option C is incorrect because IAM roles can be used to provide access to AWS services for mobile applications through AWS Security Token
Service (STS) APIs.

Option E is also incorrect because IAM roles can be used with identity federation to enable users who are authenticated in the corporate
network to access AWS resources without needing to sign in a second time.
upvoted 1 times

  konieczny69 6 months, 1 week ago

Selected Answer: BD
A is incorrect for obvious reasons.
C is incorrect due to https://docs.aws.amazon.com/rolesanywhere/latest/userguide/introduction.html
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BD
BD is the answer.
upvoted 1 times

  BloodyMery 7 months, 2 weeks ago

why E is not correct?
The correct answers are: B. When the company creates AWS access credentials for individuals and E. When users are authenticated in the
corporate network and want to be able to use AWS without having to sign in a second time.

In situations where users are authenticated in the corporate network and want to be able to use AWS without having to sign in a second
time (option E), it is also appropriate to create an IAM user. This can be done using AWS Single Sign-On (AWS SSO), which allows users to
access AWS accounts and resources by using their corporate credentials.
upvoted 2 times

  JAMTARA 7 months, 4 weeks ago

ashif says answer is a and e and f also
upvoted 1 times

  SilverAlpaca 8 months, 1 week ago

Selected Answer: BD
BD seems correct to me
upvoted 1 times

  DongKG 8 months, 1 week ago

Selected Answer: BD
https://docs.aws.amazon.com/IAM/latest/UserGuide/id.html
upvoted 1 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: AC
Why A and C aren't the correct answer here?

This question is tricky

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_create.html
You can create one or more IAM users in your AWS account. You might create an IAM user when someone joins your team, or when you
create a new application that needs to make API calls to AWS.
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users.html

Users and permissions

By default, a brand new IAM user has no permissions to do anything. The user is not authorized to perform any AWS operations or to
access any AWS resources. An advantage of having individual IAM users is that you can assign permissions individually to each user.
upvoted 3 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: BD
BD seems correct but A is also close.

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users.html

An AWS Identity and Access Management (IAM) user is an entity that you create in AWS to represent the person or application that uses it
to interact with AWS. A user in AWS consists of a name and credentials.
upvoted 3 times

  Istiaque 10 months, 1 week ago

Answer is BD
upvoted 1 times

  Craig92866 10 months, 1 week ago

An IAM User account isn't needed when an Amazon EC2 instances requires access to other AWS services?
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B & D
upvoted 1 times
Question #90 Topic 1

Which AWS services should a company use to read and write data that changes frequently? (Choose two.)

A. Amazon S3 Glacier

B. Amazon RDS

C. AWS Snowball

D. Amazon Redshift

E. Amazon Elastic File System (Amazon EFS)

Correct Answer: BD

Community vote distribution

BE (75%) BD (25%)

  BloodyMery Highly Voted  7 months, 2 weeks ago

The correct answers are: B. Amazon RDS and D. Amazon Redshift.
Amazon S3 Glacier (option A) is a storage service for archiving data that is infrequently accessed and for which retrieval times of several
hours are acceptable. It is not suitable for data that changes frequently. AWS Snowball (option C) is a data transfer service that enables
the transfer of large amounts of data into and out of AWS using physical devices. It is not designed for reading and writing data that
changes frequently. Amazon Elastic File System (Amazon EFS) (option E) is a fully managed file storage service for use with Amazon EC2
instances. It is designed for storing and sharing files, and is not suitable for storing data that changes frequently.
upvoted 15 times

  et_learner 4 months, 2 weeks ago

why change data frequently in data warehouse?
upvoted 3 times

  Cloud_Explorer 5 months, 2 weeks ago

EFS is a block storage like a hard drive and capable of frequent read/write in to the volume.
upvoted 1 times

  Krish_Kaustub 4 months, 3 weeks ago

EBS is block storage
upvoted 1 times

  fluorescentwhite Highly Voted  9 months, 1 week ago

Should be B & E.
Amazon Redshift can be primarily classified under "Big Data as a Service" instead of "Cloud Storage".
upvoted 13 times

  AspiringScriptKiddie 5 months, 1 week ago

yes, but how is that relevant to this question? Big Data, doesn't mean data that changes often...
upvoted 4 times

  u_ways Most Recent  2 weeks, 5 days ago

Selected Answer: BE
It's important to note that Amazon Redshift is a **data warehouse** which means it is not meant to change frequently.
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: BE
Amazon RDS is a fully-managed relational database service that offers a wide range of database engines, including MySQL, PostgreSQL,
Oracle, and SQL Server. RDS is a good choice for read and write data that changes frequently because it provides high availability,
scalability, and performance.
Amazon EFS is a fully-managed file system that provides a simple, scalable, and secure way to share files between Amazon EC2 instances.
EFS is a good choice for read and write data that changes frequently because it provides low latency and high throughput.
upvoted 1 times

  ajchi1980 1 month ago

Selected Answer: BE
B. Amazon RDS (Relational Database Service): Amazon RDS is a fully managed relational database service that provides scalable and
reliable database solutions. It supports popular database engines like MySQL, PostgreSQL, Oracle, and SQL Server. You can perform
frequent read and write operations on the data stored in an Amazon RDS database.

E. Amazon Elastic File System (Amazon EFS): Amazon EFS is a scalable file storage service that provides shared file storage for multiple
Amazon EC2 instances. It is suitable for use cases where multiple instances need concurrent read and write access to the same data.
Amazon EFS allows you to handle data that changes frequently and enables multiple users to access and modify the data simultaneously.
Therefore, the correct choices are B. Amazon RDS and E. Amazon Elastic File System (Amazon EFS).
upvoted 3 times
  ESAJRR 1 month ago
Selected Answer: BE
B. Amazon RDS
E. Amazon Elastic File System (Amazon EFS)
upvoted 2 times

  Vijaykpm 1 month, 1 week ago

Selected Answer: BE
B&E. (Redshift is a DW, hence more likely to be used for read rather than write)
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: BE
B. Amazon RDS
E. Amazon Elastic File System (Amazon EFS).
upvoted 1 times

  ayush13 2 months, 3 weeks ago

Selected Answer: BE
For reading and writing data that changes frequently, a company should use Amazon RDS (B) and Amazon Elastic File System (Amazon
EFS) (E).

Amazon RDS is a managed relational database service that supports multiple database engines, including Amazon Aurora, PostgreSQL,
MySQL, MariaDB, Oracle Database, and SQL Server. It is designed for applications that require frequent updates to the data.

Amazon EFS is a fully managed file system that supports the NFSv4 protocol. It is designed for applications that require shared access to
files and require frequent updates to the data.
upvoted 4 times

  nixonlaw 3 months ago

Selected Answer: BE
B&E, Redshift is DW, so it is more likely to use as read rather than write.
upvoted 1 times

  Ikki77 3 months, 2 weeks ago

Selected Answer: BE
The two AWS services that a company should use to read and write data that changes frequently are:

B. Amazon RDS: Amazon RDS is a managed relational database service that provides a scalable and highly available database platform for
applications. It supports various popular database engines such as MySQL, PostgreSQL, Oracle, and SQL Server, and allows users to easily
create, operate, and scale a relational database in the cloud. Amazon RDS is well-suited for applications that require frequent read and
write operations to the database.

E. Amazon Elastic File System (Amazon EFS): Amazon EFS is a fully managed, scalable, and highly available file storage service for use with
Amazon EC2 instances. It provides a simple, scalable, and reliable way to share data across multiple EC2 instances, and supports multiple
file systems, file locking, and file permissions. Amazon EFS is well-suited for applications that require shared access to frequently changing
data, such as content management systems, web serving, and Big Data applications.
upvoted 2 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: BE
The AWS services that a company should use to read and write data that changes frequently are:
B. Amazon RDS: Amazon Relational Database Service (RDS)
E. Amazon Elastic File System (Amazon EFS)
upvoted 1 times

  alameen_hameed 4 months, 2 weeks ago

Selected Answer: BE
Amazon RDS and Amazon EFS would be the Answer
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: BE
B. Amazon RDS: Amazon RDS is a fully managed relational database service that provides scalable, high-performance, and highly available
databases. It supports several popular database engines such as MySQL, PostgreSQL, Oracle, and SQL Server, and is optimized for
transactional workloads that require frequent reads and writes.

E. Amazon Elastic File System (Amazon EFS): Amazon EFS is a fully managed, scalable, and highly available file storage service that
provides simple and scalable file storage for use with Amazon EC2 instances. It is designed for workloads that require frequent reads and
writes and provides low-latency performance for data-intensive applications.
upvoted 3 times
  et_learner 4 months, 2 weeks ago
Selected Answer: BE
Option A is incorrect because Amazon S3 Glacier is an archival storage service designed for data that is infrequently accessed and for
which retrieval times of several hours are acceptable.

Option C is incorrect because AWS Snowball is a data transfer service that is designed to transfer large amounts of data into and out of
AWS.

Option D is incorrect because Amazon Redshift is a data warehousing service that is designed for large-scale data analytics, and it may not
be the best choice for frequently changing data.
upvoted 3 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: BE
B. Amazon RDS: Amazon RDS is a managed relational database service that makes it easy to set up, operate, and scale a relational
database in the cloud. RDS provides scalable and highly available storage for relational data that changes frequently.

E. Amazon Elastic File System (Amazon EFS): Amazon EFS is a fully managed, scalable, and highly available file storage service that can be
accessed by multiple Amazon EC2 instances and on-premises servers at the same time. EFS provides a common data source that can be
used to share data across multiple instances or servers, making it ideal for scenarios where data changes frequently.
upvoted 2 times

  alvalv2006 4 months, 3 weeks ago

Selected Answer: BD
BD is correct answer, since Redshift is "Best price-performance for cloud data warehousing" (from AWS)
upvoted 1 times

  et_learner 4 months, 2 weeks ago

why change data frequently in data warehouse?
upvoted 3 times
Question #91 Topic 1

Which AWS service is used to provide encryption for Amazon EBS?

A. AWS Certificate Manager

B. AWS Systems Manager

C. AWS KMS

D. AWS Config

Correct Answer: C

Community vote distribution

C (100%)

  stemtem Highly Voted  1 year, 9 months ago

finally a correct answer
upvoted 15 times

  aprendiendo Highly Voted  1 year, 9 months ago

C. AWS KMS
AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control their use across a wide
range of AWS services and in your applications. AWS KMS is a secure and resilient service that uses hardware security modules that have
been validated under FIPS 140-2, or are in the process of being validated, to protect your keys. AWS KMS is integrated with AWS CloudTrail
to provide you with logs of all key usage to help meet your regulatory and compliance needs.
https://aws.amazon.com/kms/?nc1=h_ls
upvoted 12 times

  man5484 Most Recent  3 weeks ago

Selected Answer: C
AWS KMS is a managed service that enables the creation and control of encryption keys for securing data in various AWS services. When
using Amazon EBS, you can encrypt the data at rest by selecting AWS KMS as the key management option.

By utilizing AWS KMS, you can create and manage encryption keys to protect your EBS volumes. This helps ensure that the data stored on
the EBS volumes remains secure and encrypted. AWS KMS integrates seamlessly with Amazon EBS and provides a robust key
management infrastructure.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS KMS
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
C. AWS KMS (Key Management Service) is used to provide encryption for Amazon EBS.
upvoted 1 times

  GonzaloNicolas 1 month, 3 weeks ago

Selected Answer: C
C is the way
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  sirasdf 6 months, 4 weeks ago

C - You can use KMS to create, rotate, and manage the keys that are used to encrypt your EBS data
upvoted 1 times

  N9 8 months, 1 week ago

Selected Answer: C
KSM
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html
upvoted 2 times
  Istiaque 10 months, 1 week ago
Answer is C
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 1 times

  bilel500 11 months ago

Selected Answer: C
Answer is A.
upvoted 1 times

  BillyC 1 year, 8 months ago

C is correct
upvoted 1 times

  RAAAEHL 1 year, 8 months ago

C - Amazon Key Management (KMS)
upvoted 2 times

  LivFar 1 year, 9 months ago

Correct answer: C
The AWS service that is used to provide encryption for Amazon EBS is AWS KMS
upvoted 3 times

  educastle 1 year, 9 months ago

Yes, is KMS
upvoted 5 times

  ben007CasinoRoyal10outof10imdb 1 year, 9 months ago

Very nice
upvoted 3 times
Question #92 Topic 1

Which AWS services make use of global edge locations? (Choose two.)

A. AWS Fargate

B. Amazon CloudFront

C. AWS Global Accelerator

D. AWS Wavelength

E. Amazon VPC

Correct Answer: BC
Reference:
https://www.lastweekinaws.com/blog/what-is-an-edge-location-in-aws-a-simple-explanation/#:~:text=CloudFront%20is%20the%20most%
20commonly,caches%20content%20in%20edge%20locations

Community vote distribution

BC (86%) 14%

  ykbaoom 1 week, 3 days ago

Selected Answer: BD
why not BD? https://docs.aws.amazon.com/whitepapers/latest/security-at-the-edge/appendix-aws-services-for-edge-computing.html
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: BC
B. Amazon CloudFront: Amazon CloudFront is a content delivery network (CDN) service that uses a global network of edge locations to
deliver content to users with low latency and high transfer speeds. The edge locations cache content and serve it from the location closest
to the end users, improving performance and reducing the load on the origin server.

C. AWS Global Accelerator: AWS Global Accelerator is a networking service that utilizes the AWS global network infrastructure to improve
the availability and performance of applications. It uses a network of global edge locations to route user traffic to the nearest edge
location, reducing latency and improving the responsiveness of applications.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: BC
B. Amazon CloudFront
C. AWS Global Accelerator
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

BC sure answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BC
BC is the answer.
upvoted 1 times
  N9 8 months, 1 week ago
Selected Answer: BC
Why C because - https://docs.aws.amazon.com/global-accelerator/latest/dg/introduction-ip-ranges.html
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is BC
upvoted 3 times

  Krebs2022 10 months, 1 week ago

I love Mind Mapping. For me, it is the easiest way to learn a new topic.
Also, I used it for my certification, which helped me get a great score.
If you are trying to study for the certification or need to learn everything around AWS VPC, it should help you too.

https://store.bitslovers.com/p/mindmap-aws-vpc-everything-that-you-need-to-know-about-in-a-single-mindmap/
upvoted 3 times

  Craig92866 10 months, 1 week ago

Selected Answer: BC
This was tricky. Reason why D is not the answer is because D lives within a mobile provider's network and, per AWS's definition, is not
considered a 'Global Edge Location.' -https://aws.amazon.com/cloudfront/features/?p=ugi&l=na&whats-new-cloudfront.sort-
by=item.additionalFields.postDateTime&whats-new-cloudfront.sort-order=desc
upvoted 3 times

  sumanshu 10 months, 2 weeks ago

Vote for B & C
upvoted 1 times

  dldjven 10 months, 4 weeks ago

Selected Answer: BC
b&c
https://aws.amazon.com/global-accelerator/?blogs-global-accelerator.sort-by=item.additionalFields.createdDate&blogs-global-
accelerator.sort-order=desc&aws-global-accelerator-wn.sort-by=item.additionalFields.postDateTime&aws-global-accelerator-wn.sort-
order=desc

  bilel500 11 months ago

Selected Answer: BC
Answer is B && C.
upvoted 2 times

  UC1050 11 months ago

Selected Answer: BD
Its B and D.
https://aws.amazon.com/edge/services/
upvoted 1 times
Question #93 Topic 1

A company is operating several factories where it builds products. The company needs the ability to process data, store data, and run applications
with local system interdependencies that require low latency.
Which AWS service should the company use to meet these requirements?

A. AWS IoT Greengrass

B. AWS Lambda

C. AWS Outposts

D. AWS Snowball Edge

Correct Answer: B

Community vote distribution

C (86%) 12%

  realist66666 Highly Voted  7 months, 2 weeks ago

it says... " ...local system interdependencies that require low latency..."
==> C
upvoted 10 times

  amitpandharikar Most Recent  1 week ago

Selected Answer: C
Naaabj hbhb
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: C
https://d1.awsstatic.com/product-marketing/Outposts/TrulyConsistentHybridCloud.pdf
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: C
C. AWS Outposts: AWS Outposts brings AWS infrastructure and services to a company's on-premises data centers or co-location facilities.
It allows the company to run AWS services locally on Outposts with the same APIs, tools, and hardware as in the AWS Cloud. With AWS
Outposts, the company can process data, store data, and run applications on-premises while still benefiting from the AWS ecosystem and
services.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS Outposts
upvoted 2 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
sure answer c
upvoted 2 times

  GonzaloNicolas 1 month, 3 weeks ago

Lambda? really?
AWS Outposts is the way
upvoted 1 times

  starsea 2 months, 2 weeks ago

I am thinking about D. Since AWS claims "Snowball
Edge Compute Optimized devices provide 52 vCPUs, block and object storage, and an optional GPU for
use cases like advanced machine learning and full motion video analysis in disconnected environments.
You can use these devices for data collection, machine learning and processing, and storage in
environments with intermittent connectivity (like manufacturing, industrial, and transportation) or in
extremely remote locations (like military or maritime operations) before shipping them back to AWS."
upvoted 3 times

  santu83 1 week, 1 day ago

yes but it speaks about low latency so AWS outpost. Snowball Edge is for where you don't have internet connection or low bandwidth.
So Low latency can't be achieved if you dont have good internet connection.
upvoted 1 times
  thinhnp13 3 months, 3 weeks ago
Selected Answer: C
Sure answer is C
upvoted 3 times

  kumaran1000001 4 months, 2 weeks ago

A - edge computing. No

B - Serverless computing. No

C - extend AWS infra to on-premise for a hybrid experience

D - data transfer device

Answer: C
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
The AWS service that the company should use to meet these requirements is C. AWS Outposts.

AWS Outposts is a fully-managed service that extends AWS infrastructure, services, APIs, and tools to virtually any datacenter, co-location
space, or on-premises facility for a truly consistent hybrid experience. With AWS Outposts, the company can run AWS services locally,
including compute, storage, database, and analytics, while seamlessly connecting to AWS services in the cloud.

This means that the company can process data, store data, and run applications with local system interdependencies that require low
latency using AWS Outposts, which is located within their own datacenters or facilities. With AWS Outposts, the company can avoid the
latency and data transfer costs that come with using cloud services located far away from their factories.
upvoted 4 times

  Viral123 5 months ago

Selected Answer: C
Lambda does not offer low latency.
upvoted 3 times

  Saddle2DiEast 6 months, 1 week ago

Selected Answer: C
answer C
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 3 times

  sirasdf 6 months, 4 weeks ago

C - Outposts is designed to provide the same APIs, control plane, and hardware as the AWS cloud, but with the ability to run workloads on-
premises. This can be useful for applications that require low latency or local system interdependencies, as it allows you to keep your data
and applications close to your users and processes.
upvoted 3 times

  susunz 7 months ago

local system
upvoted 2 times

  dark_cherrymon 8 months, 1 week ago

Selected Answer: A
why not A
upvoted 1 times

  BloodyMery 7 months, 2 weeks ago

AWS IoT Greengrass (option A) is a service that enables you to run AWS Lambda functions and keep device data in sync with the cloud,
even when the devices are offline. It is not designed for use cases that require low latency and local system interdependencies.
upvoted 2 times
Question #94 Topic 1

Which of the following is a recommended design principle for AWS Cloud architecture?

A. Design tightly coupled components.

B. Build a single application component that can handle all the application functionality.

C. Make large changes on fewer iterations to reduce chances of failure.

D. Avoid monolithic architecture by segmenting workloads.

Correct Answer: C

Community vote distribution

D (95%) 5%

  Craig92866 Highly Voted  10 months, 1 week ago

You'll laugh when you read question 95. XD It just proved C is not the answer.

95. A company is designing its AWS workloads so that components can be updated regularly and so that changes can be made in small,
reversible increments.
Which pillar of the AWS Well-Architected Framework does this design support?
upvoted 18 times

  Om555 4 months, 3 weeks ago

bro why does this site have all incorrect answers
upvoted 10 times

  Tarasharma 1 week, 5 days ago

M WONDERING
upvoted 1 times

  santu83 1 week, 1 day ago

so that we can discuss here and stay longer than expected.
upvoted 1 times

  davinkeithlewis Highly Voted  11 months, 1 week ago

D is the right answer
upvoted 9 times

  Bibs_s Most Recent  4 days, 8 hours ago

Selected Answer: D
Answer correct is D
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: D
AWS recommends designing applications using a microservices architecture, which involves breaking down large, monolithic applications
into smaller, loosely coupled components called microservices. Each microservice focuses on a specific business capability and can be
developed, deployed, and scaled independently. This approach offers several benefits, including increased flexibility, scalability, and fault
tolerance.
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: D
Sure answer C
upvoted 1 times

  adrianap93 1 month, 4 weeks ago

Selected Answer: D
it should be D
upvoted 1 times

  starsea 2 months, 2 weeks ago

It's definitely D.
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: D
d is right answer
upvoted 1 times
  Guru4Cloud 3 months, 2 weeks ago
Selected Answer: D
Explaination:
The recommended design principle for AWS Cloud architecture is to avoid monolithic architecture by segmenting workloads. Therefore,
the correct answer is D.

By segmenting workloads, you can isolate different parts of your application and make them more modular, which can lead to greater
flexibility, scalability, and fault tolerance. It also allows you to use different technologies and tools for different parts of the application,
which can make it easier to optimize each part for its specific requirements.
upvoted 3 times

  Guru4Cloud 4 months ago

Selected Answer: D
The recommended design principle for AWS Cloud architecture is to avoid monolithic architecture by segmenting workloads.
upvoted 1 times

  harisene 5 months ago

Selected Answer: D
The answer is D
upvoted 1 times

  tahagmail 5 months, 1 week ago

Selected Answer: D
Avoid monolithic architecture by segmenting workloads
upvoted 1 times

  bestedeki 6 months ago

D is the right amswer. loosely coupled architecture
upvoted 1 times

  Onyejicash 6 months ago

C Here are ten design principles that you must consider for your AWS cloud architecture :

Think Adaptive and Elastic

Treat servers as disposable resources instead of fixed components
Automate Automate Automate
Implement loose coupling
Focus on services, not servers
Database is the base of it all
Be sure to remove single points of failure
Optimize for cost
Caching
AWS Cloud Architecture Security

Reference : https://www.botmetric.com/blog/aws-cloud-architecture-design-principles
upvoted 1 times

  Saddle2DiEast 6 months, 1 week ago

Selected Answer: D
D is the answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  Vrush44 7 months, 1 week ago

Selected Answer: D
https://docs.aws.amazon.com/wellarchitected/latest/reliability-pillar/rel_service_architecture_monolith_soa_microservice.html
upvoted 1 times
Question #95 Topic 1

A company is designing its AWS workloads so that components can be updated regularly and so that changes can be made in small, reversible
increments.
Which pillar of the AWS Well-Architected Framework does this design support?

A. Security

B. Performance efficiency

C. Operational excellence

D. Reliability

Correct Answer: B

Community vote distribution

C (97%)

  zoeyaj Highly Voted  11 months, 1 week ago

Selected Answer: C
https://wa.aws.amazon.com/wellarchitected/2020-07-02T19-33-23/wat.pillar.operationalExcellence.en.html
upvoted 30 times

  Nucleric 10 months, 3 weeks ago

this is correct!
upvoted 3 times

  PrasanthVarada Highly Voted  8 months, 3 weeks ago

Answer is C.

There are five design principles for operational excellence in the cloud:
Perform operations as code
Make frequent, small, reversible changes
Refine operations procedures frequently
Anticipate failure
Learn from all operational failures
upvoted 14 times

  man5484 Most Recent  3 weeks ago

Selected Answer: C
The Operational excellence pillar focuses on designing and operating AWS workloads to continuously improve processes, procedures, and
systems. This includes the ability to make changes in a controlled manner, with minimal disruption and the ability to quickly revert
changes if necessary. The use of small, reversible increments allows for easier troubleshooting, rollback, and iterative improvements,
promoting operational excellence.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Operational excellence
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
sure answer c
upvoted 1 times

  fhernandez 1 month, 3 weeks ago

Opcion C, Design workloads to allow components to be updated regularly to increase the flow of beneficial changes into your workload.
Make changes in small increments that can be reversed if they fail to aid in the identification and resolution of issues introduced to your
environment (without affecting customers when possible).
upvoted 1 times

  starsea 2 months, 2 weeks ago

Selected Answer: C
please correct the wrong answer
upvoted 2 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: C
answer is c
upvoted 1 times
  Guru4Cloud 3 months, 4 weeks ago
Selected Answer: C
The design of AWS workloads so that components can be updated regularly and changes can be made in small, reversible increments
supports the Operational Excellence pillar of the AWS Well-Architected Framework
upvoted 1 times

  brianbanda 4 months, 1 week ago

The Operational Excellence pillar of the AWS Well-Architected Framework focuses on the ability to run and monitor systems to deliver
business value, and to continuously improve processes and procedures. One key aspect of operational excellence is the ability to make
small, reversible changes to systems, which allows for quick feedback and iteration. This approach reduces the risk of errors and makes it
easier to recover from issues when they do occur.
upvoted 2 times

  harisene 5 months ago

Selected Answer: C
Answer is C
upvoted 1 times

  tahagmail 5 months, 1 week ago

Selected Answer: C
Make frequent, small, reversible changes
upvoted 1 times

  Rush300990 5 months, 1 week ago

Operational Excellence
https://docs.aws.amazon.com/wellarchitected/latest/operational-excellence-pillar/design-principles.html
upvoted 1 times

  RiaanMO 5 months, 2 weeks ago

How accurate are the questions and answers in the exam
upvoted 1 times

  ngwaambe 5 months, 3 weeks ago

Selected Answer: C
Is the correcr answer
upvoted 1 times

  Onyejicash 6 months ago

B performance efficiency
upvoted 1 times

  konieczny69 6 months, 1 week ago

Selected Answer: C
https://aws.amazon.com/blogs/apn/the-6-pillars-of-the-aws-well-architected-framework/
Make frequent, small, reversible changes
upvoted 1 times
Question #96 Topic 1

Which of the following acts as an instance-level firewall to control inbound and outbound access?

A. Network access control list

B. Security groups

C. AWS Trusted Advisor

D. Virtual private gateways

Correct Answer: B

Community vote distribution

B (88%) 13%

  CarrieJ Highly Voted  11 months ago

Security group Operates at the instance level, while Network ACL Operates at the subnet level.
upvoted 19 times

  FreddyBrainy 8 months, 1 week ago

Thanks for that insight. You helped a lot here. Thanks again
upvoted 2 times

  Craig92866 10 months, 1 week ago

Thanks. I chose Network ACL and I know why that isn't the right answer after reading what you said.
upvoted 2 times

  man5484 Most Recent  3 weeks ago

Selected Answer: B
Security groups in AWS act as an instance-level firewall to control inbound and outbound access to Amazon EC2 instances. They operate at
the instance level and are associated with a specific instance or group of instances. Security groups allow you to define rules that specify
the allowed inbound and outbound traffic based on protocols, ports, and IP addresses. They provide a stateful firewall, meaning that they
track the state of a connection and automatically allow the return traffic for established connections.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Security groups
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: C
sure B
upvoted 1 times

  Rishabh_0108 2 months ago

Selected Answer: B
The answer is B.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  Kays1149 7 months, 2 weeks ago

⚠️NB: les groupes de sécurités peuvent uniquement autoriser mais pas refuser les règles.
upvoted 1 times

  N3ar 8 months, 2 weeks ago

I understand why it's B: Security Group due to the keyword "...as an instance level firewall"

but isn't the question here then a bit unclear since it also says "...to control inbound and outbound access" since the Security Group
doesn't control the outbound?'
upvoted 3 times

  N3ar 8 months, 2 weeks ago

Ah never mind! found it https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html
upvoted 1 times
  Istiaque 10 months, 1 week ago
Answer is B
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  SumanCert 10 months, 3 weeks ago

Selected Answer: B
Security group is correct.
upvoted 1 times

  bilel500 11 months ago

Selected Answer: B
Answer is B.
upvoted 1 times
Question #97 Topic 1

A company has a workload that will run continuously for 1 year. The workload cannot tolerate service interruptions.
Which Amazon EC2 purchasing option will be MOST cost-effective?

A. All Upfront Reserved Instances

B. Partial Upfront Reserved Instances

C. Dedicated Instances

D. On-Demand Instances

Correct Answer: A

Community vote distribution

A (96%) 4%

  GV99 Highly Voted  10 months, 3 weeks ago

Selected Answer: A
With the All Upfront option, you pay for the entire Reserved Instance term with one upfront payment. This option provides you with the
largest discount compared to On-Demand Instance pricing.

https://aws.amazon.com/ec2/pricing/reserved-instances/pricing/
upvoted 13 times

  man5484 Most Recent  3 weeks ago

Selected Answer: A
Reserved Instances offer a significant discount compared to On-Demand Instances. With All Upfront Reserved Instances, you make a one-
time upfront payment for the entire reservation term (1 year in this case), and you receive a discounted hourly rate for the instances. This
payment model provides the highest cost savings over the long term.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. All Upfront Reserved Instances
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
selected A
upvoted 1 times

  konieczny69 6 months, 1 week ago

Selected Answer: A
https://parquantix.com/ri-payment-options/
biggest discount
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  N9 8 months, 1 week ago

Selected Answer: A
https://aws.amazon.com/ec2/pricing/reserved-instances/pricing/
upvoted 1 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: A
A is winner.
upvoted 2 times

  [Removed] 9 months, 1 week ago

Selected Answer: A
All upfront will always be the most cost efficient option
upvoted 2 times
  OLABLACK 9 months, 3 weeks ago
The answer is D
On-Demand is the best choice for this situation as it is the most economical option that will ensure no interruptions
economical option that will ensure no interruptions
https://digitalcloud.training/certification-training/aws-certifiedcloud-
practitioner/aws-billing-and-pricing/
upvoted 1 times

  lwf2 2 months, 1 week ago

This is incorrect, as both On-Demand and Reserved can provide always on capability, but the latter is at far lower cost.
upvoted 1 times

  konieczny69 6 months, 1 week ago

howcome on-demand can be cheaper then reserved?
stop spreading misleaading information
upvoted 2 times

  marcshj 10 months ago

Selected Answer: D
The workload cannot tolerate service interruptions. --> On-Demand
upvoted 1 times

  N9 8 months, 1 week ago

No, You can choose between three payment options when you purchase a Standard or Convertible Reserved Instance. With the All
Upfront option, you pay for the entire Reserved Instance term with one upfront payment. This option provides you with the largest
discount compared to On-Demand Instance pricing.
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is A
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 1 times

  bilel500 11 months ago

Selected Answer: A
Answer is A.
upvoted 1 times
Question #98 Topic 1

Which AWS service helps protect against DDoS attacks?

A. AWS Shield

B. Amazon Inspector

C. Amazon GuardDuty

D. Amazon Detective

Correct Answer: A

Community vote distribution

A (100%)

  30Miles Highly Voted  11 months ago

i like this kind of qustion LOL
upvoted 10 times

  man5484 Most Recent  3 weeks ago

Selected Answer: A
AWS Shield is an AWS service that helps protect against Distributed Denial of Service (DDoS) attacks. It provides protection for AWS
resources such as Amazon EC2 instances, Elastic Load Balancers, and Amazon CloudFront distributions. AWS Shield offers both Standard
and Advanced tiers.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. AWS Shield
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
A. AWS Shield
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

DDOS so it is shield
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: A
AWS Shield
upvoted 1 times

  poiuytrewq123456 4 months, 1 week ago

Selected Answer: A
A - DDos
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - DDoS

B - security assessment service

C - threat detection service

D - investigate the root cause of security issues

Answer: A
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is A
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 1 times

  bilel500 11 months ago

Selected Answer: A
Answer is A.
upvoted 1 times
Question #99 Topic 1

Using AWS Config to record, audit, and evaluate changes to AWS resources to enable traceability is an example of which AWS Well-Architected
Framework pillar?

A. Security

B. Operational excellence

C. Performance efficiency

D. Cost optimization

Correct Answer: A
Reference:
https://d1.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf
(12)

Community vote distribution

A (73%) B (27%)

  JohnO1971 Highly Voted  1 year, 10 months ago

From the Security section of https://d1.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf " • Enable
traceability: Monitor, alert, and audit actions and changes to your environment in real time. Integrate log and metric collection with
systems to automatically
investigate and take action."
upvoted 21 times

  PSL95 Highly Voted  1 year, 10 months ago

A is correct.
upvoted 7 times

  Gulsah Most Recent  2 weeks, 4 days ago

Selected Answer: A
I think the key word is `
traceability`
, therefore the answer must be A.Security.
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: A
Using AWS Config to record, audit, and evaluate changes to AWS resources aligns with the Security pillar of the AWS Well-Architected
Framework. The Security pillar focuses on protecting information, systems, and assets while maintaining data confidentiality, integrity,
and availability.

AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources over time. It records
changes to resource configurations and provides a detailed view of how the configurations are aligned with best practices and desired
configurations. By using AWS Config, you can track and maintain traceability of changes to your resources, helping to enforce security
controls, detect unauthorized changes, and ensure compliance with security requirements.
upvoted 1 times

  khanda 3 weeks ago

Selected Answer: B
Read through https://aws.amazon.com/config/
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. Security
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: A
B. Network ACL
upvoted 1 times

  Warsame21 1 month, 2 weeks ago

Selected Answer: B
B. Operational excellence
upvoted 1 times
  rachmatthidayat 2 months, 1 week ago
Selected Answer: B
It's B. Operational Excellence . If you refer to the AWS_Well_Architected_Framework.pdf its under Security section, when take a closer look
and you will find its talking about one of the seven design principles for security in the cloud, not specifically in the context of the
questions.

The question is specifically mentioning "AWS Config" at the first sentence, take a walk to the AWS Config main page and you will find
some of the related use cases is related with the Operations activities: like continually assess, monitor, and record resource configuration
changes to simplify change management and to simplify operational troubleshooting by correlating configuration changes to particular
events in your account.

Reference:
https://aws.amazon.com/config/
upvoted 1 times

  wuuuu 5 months, 2 weeks ago

In chatgpt, the answer is B. Which is the correct answer, A or B?
upvoted 1 times

  bugalter 5 months, 2 weeks ago

Selected Answer: A
A. Security
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.

https://aws.amazon.com/blogs/apn/the-6-pillars-of-the-aws-well-architected-framework/
upvoted 2 times

  BloodyMery 7 months, 2 weeks ago

it should be B cause it is not talking about finding security holes.
AWS Config is here doing as a monitoring/change traceability tool, so it fits better in Operational Excellence pillar.

https://docs.aws.amazon.com/pdfs/wellarchitected/latest/operational-excellence-pillar/wellarchitected-operational-excellence-pillar.pdf
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is A
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 1 times

  bilel500 11 months ago

Selected Answer: A
Answer is A.
upvoted 1 times

  BillyC 1 year, 8 months ago

A is correct
upvoted 2 times
Question #100 Topic 1

Which AWS tool or feature acts as a VPC firewall at the subnet level?

A. Security group

B. Network ACL

C. Traffic Mirroring

D. Internet gateway

Correct Answer: B

Community vote distribution

B (94%) 6%

  N9 Highly Voted  8 months, 1 week ago

Selected Answer: B
Network ACL >>> Subnet level
Security Groups >>>> Instance level
upvoted 17 times

  man5484 Most Recent  3 weeks ago

Selected Answer: B
A Network ACL is a feature of Amazon Virtual Private Cloud (VPC) that acts as a firewall at the subnet level. It is an optional layer of
security that controls inbound and outbound traffic at the subnet level. A Network ACL operates at the protocol and port level and uses
numbered rules to allow or deny traffic. By default, a Network ACL allows all inbound and outbound traffic.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Network ACL
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

Selected Answer: B
subnet so answer is b,if instance choose C
upvoted 1 times

  huanghaiyao 2 months, 4 weeks ago

i say wrong,if instance choose A
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Kassoum 7 months, 2 weeks ago

The right answer is B
upvoted 1 times

  FR_Wolfman 10 months ago

Selected Answer: B
The security groups is a firewalling solution at instance level. The right answer is B.
upvoted 4 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 3 times

  jcrzj 10 months, 2 weeks ago

Selected Answer: B
The key is SUBNET LEVEL
upvoted 3 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 2 times
  lmbalati 10 months, 3 weeks ago
The answer is B....."A network access control list (ACL) allows or denies specific inbound or outbound traffic at the SUBNET LEVEL"
upvoted 3 times

  seth1721 10 months, 3 weeks ago

Keyword here is subnet, therefore the correct answer is B: Network ACL
upvoted 2 times

  Ahmed_Root 10 months, 3 weeks ago

Selected Answer: B
NACL is at subnet level, security group at the EC2 instance level
upvoted 2 times

  Nucleric 10 months, 3 weeks ago

https://docs.aws.amazon.com/vpc/latest/userguide/vpc-network-acls.html?ref=wellarchitected
upvoted 1 times

  dldjven 10 months, 4 weeks ago

Selected Answer: B
https://docs.aws.amazon.com/vpc/latest/userguide/vpc-network-acls.html
"A network access control list (ACL) allows or denies specific inbound or outbound traffic at the subnet level. "
upvoted 1 times

  bilel500 11 months ago

Selected Answer: B
Answer is B.
upvoted 1 times

  Sib777 11 months ago

Selected Answer: B
At subnet level is Network ACL so B is correct
upvoted 2 times
Question #101 Topic 1

Which AWS service can be used to decouple applications?

A. AWS Config

B. Amazon Simple Queue Service (Amazon SQS)

C. AWS Batch

D. Amazon Simple Email Service (Amazon SES)

Correct Answer: B

Community vote distribution

B (100%)

  30Miles Highly Voted  1 year ago

Selected Answer: B
https://docs.aws.amazon.com/sqs/?id=docs_gateway

Amazon Simple Queue Service (Amazon SQS) is a fully managed message queuing service that makes it easy to decouple and scale
microservices, distributed systems, and serverless applications. Amazon SQS moves data between distributed application components
and helps you decouple these components.
upvoted 11 times

  man5484 Most Recent  3 weeks ago

Selected Answer: B
Amazon Simple Queue Service (Amazon SQS) is an AWS service that can be used to decouple applications. It provides a fully managed
message queuing service that enables applications to communicate asynchronously by sending and receiving messages. It allows
different components of an application to work independently and asynchronously, without directly integrating or depending on each
other.
By using Amazon SQS, applications can send messages to a queue, and other components can retrieve and process those messages at
their own pace. This decouples the components and allows them to scale independently, improving the overall flexibility and fault
tolerance of the application architecture.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Amazon Simple Queue Service (Amazon SQS)
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  certiflux 10 months, 2 weeks ago

Selected Answer: B
A decoupled application architecture allows each component to perform its tasks independently
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 11 months ago

Selected Answer: B
Answer is B.
upvoted 1 times

  adsdadasdad 1 year, 7 months ago

It is B , Only logical choice used with application runtimes
upvoted 2 times
Question #102 Topic 1

Which disaster recovery option is the LEAST expensive?

A. Warm standby

B. Multisite

C. Backup and restore

D. Pilot light

Correct Answer: C

Community vote distribution

C (100%)

  cheuvel Highly Voted  1 year, 3 months ago

Selected Answer: C
C - Nice graph here: https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-
the-cloud.html
upvoted 36 times

  Craig92866 10 months ago

I jumped into the comments to post my graph but yours is much better! Thanks for posting it! Great description of the services on that
site, too.
upvoted 1 times

  Noks7 11 months ago

Thank you.
upvoted 1 times

  N9 Highly Voted  8 months, 1 week ago

Selected Answer: C
Backup and Restore ---- cheapest
Pilot light --- cheap
Warm standby ---- costlier
Multisite ---- costliest
upvoted 5 times

  zees3 Most Recent  2 weeks, 5 days ago

Selected Answer: C
https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-the-cloud.html
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: C
Among the provided options, backup and restore is generally the least expensive disaster recovery option. It involves periodically backing
up data and applications to a separate location or storage, and in the event of a disaster, restoring the backups to resume operations. This
approach typically requires fewer resources and infrastructure compared to other options.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Backup and restore

COOL to HOT
C. Backup and restore - D. Pilot light - A. Warm standby - B. Multisite
https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-the-cloud.html
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Backup and restore
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times
  Agil09 8 months ago
Selected Answer: C
https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-the-cloud.html
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is c
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 1 times

  bilel500 11 months ago

Selected Answer: C
Answer is C.
upvoted 1 times

  asmida 1 year, 4 months ago

Selected Answer: C
the answer is C
upvoted 1 times

  magdoc 1 year, 6 months ago

Selected Answer: C
C. is the correct answer.
upvoted 1 times
Question #103 Topic 1

Which type of AWS storage is ephemeral and is deleted when an Amazon EC2 instance is stopped or terminated?

A. Amazon Elastic Block Store (Amazon EBS)

B. Amazon EC2 instance store

C. Amazon Elastic File System (Amazon EFS)

D. Amazon S3

Correct Answer: B
When you stop or terminate an instance, every block of storage in the instance store is reset. Therefore, your data cannot be accessed through
the instance store of another instance.
Reference:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/InstanceStorage.html

Community vote distribution

B (100%)

  man5484 3 weeks ago

Selected Answer: B
Amazon EC2 instance store provides temporary block-level storage that is directly attached to the Amazon EC2 instance. It is referred to as
"ephemeral" because the data stored in the instance store volumes is not persistent and is deleted when the EC2 instance is stopped or
terminated.

Instance store volumes are physically attached to the host server where the EC2 instance is running. They provide high I/O performance
and low-latency access, making them suitable for applications that require temporary storage, caching, or scratch space. However, it is
important to note that the data stored in instance store volumes cannot be easily recovered once the EC2 instance is stopped or
terminated.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Amazon EC2 instance store
upvoted 1 times

  Artmin 1 month, 4 weeks ago

B is correct.
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: B
Here's why
B. Amazon EC2 instance store.

Amazon EC2 instance store provides temporary block-level storage for Amazon EC2 instances. The data on an instance store volume
persists only during the life of the associated Amazon EC2 instance. If the instance is stopped or terminated, any data on instance store
volumes is lost. In contrast, Amazon Elastic Block Store (Amazon EBS) provides persistent block-level storage volumes for use with
Amazon EC2 instances.
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: B
Should be B
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: B
B is correct
upvoted 2 times

  N9 8 months, 1 week ago

Selected Answer: B
B is the answer
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 11 months ago

Selected Answer: B
Answer is B.
upvoted 1 times
Question #104 Topic 1

Which of the following is a characteristic of the AWS account root user?

A. The root user is the only user that can be configured with multi-factor authentication (MFA).

B. The root user is the only user that can access the AWS Management Console.

C. The root user is the first sign-in identity that is available when an AWS account is created.

D. The root user has a password that cannot be changed.

Correct Answer: B
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html

Community vote distribution

C (100%)

  davinkeithlewis Highly Voted  11 months, 1 week ago

Selected Answer: C
C is the answer
upvoted 9 times

  Th3Pr0fe33or Most Recent  1 week, 3 days ago

Seriously who is marking these answers. The answer is C
upvoted 1 times

  man5484 3 weeks ago

Selected Answer: C
When an AWS account is created, the root user is automatically created as the first sign-in identity for that account. The root user has full
administrative access to all resources and services within the AWS account. However, it is considered a security best practice to not use
the root user for everyday tasks and to create additional IAM (Identity and Access Management) users with appropriate permissions.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: C
C. The root user is the first sign-in identity that is available when an AWS account is created.
upvoted 1 times

  Pilar604 1 month, 2 weeks ago

Selected Answer: C
es la primera identidad
upvoted 1 times

  babafakruddin 1 month, 4 weeks ago

Selected Answer: C
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html
upvoted 1 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: C
When you create an AWS account, the first sign-in identity that is created is the root user. The root user has complete access to all AWS
services and resources in the account, making it a very powerful account. Therefore, it is best practice to create and use individual IAM
(Identity and Access Management) users for day-to-day activities, and only use the root user when absolutely necessary.

The root user is the only user that can perform certain tasks, such as creating and managing IAM users, billing and payment information,
and closing an AWS account. However, the root user is not the only user that can access the AWS Management Console. IAM users with
the appropriate permissions can also access the console.

It is important to secure the root user account with a strong password and enable multi-factor authentication (MFA) to prevent
unauthorized access to the account. Therefore, the root user is not the only user that can be configured with MFA.
upvoted 3 times
  nixonlaw 3 months ago
Selected Answer: C
C. not to mention it.
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
C. The root user is the first sign-in identity that is available when an AWS account is created.

Explanation: The AWS account root user is created automatically when the AWS account is created. This user has full access to all AWS
services and resources in the account. The root user is the first identity that is available to sign in to the AWS account, and it cannot be
deleted. However, it is recommended that the root user not be used for everyday tasks in order to improve security. Multi-factor
authentication (MFA) can be configured for the root user, but it is also recommended to create additional IAM users with appropriate
permissions for daily operations. The root user can access the AWS Management Console, but other IAM users can also be granted access.
The root user's password can be changed for security purposes.
upvoted 1 times

  akiraaws 4 months ago

The question is about a characteristic and not good practices.
Letter C is correct.
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: C
Should be C
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - I have one IAM user, I am able to use MFS

B - My IAM user is able to access the Console

C - This is true

D - I can change my root user password. In fact, recently I had to change due to a policy change in AWS
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
C. The root user is the first sign-in identity that is available when an AWS account is created.

The AWS account root user is the initial user identity created when an AWS account is created. It has complete access and control over all
resources in the AWS account, and it cannot be deleted. However, it is recommended to create IAM (Identity and Access Management)
users and groups and use them instead of the root user to manage AWS resources.

Option A is incorrect because MFA can be enabled for any IAM user, including the root user.

Option B is incorrect because IAM users can also access the AWS Management Console if they have been granted the necessary
permissions.

Option D is incorrect because the root user can change its password just like any other IAM user.
upvoted 1 times

  harisene 5 months ago

Selected Answer: C
C is the answer
upvoted 1 times

  Saneeda 5 months, 2 weeks ago

Normally non-root accounts are lower privileged accounts and would not be able to create accounts with higher privilege. I know there
are smart folks managing content but they allow such answers because their boss told them to.
upvoted 1 times

  bugalter 5 months, 2 weeks ago

Selected Answer: C
C. The root user is the first sign-in identity that is available when an AWS account is created
upvoted 1 times

  bestedeki 6 months ago

Selected Answer: C
C is the answer
upvoted 1 times
Question #105 Topic 1

A company hosts an application on an Amazon EC2 instance. The EC2 instance needs to access several AWS resources, including Amazon S3 and
Amazon
DynamoDB.
What is the MOST operationally efficient solution to delegate permissions?

A. Create an IAM role with the required permissions. Attach the role to the EC2 instance.

B. Create an IAM user and use its access key and secret access key in the application.

C. Create an IAM user and use its access key and secret access key to create a CLI profile in the EC2 instance

D. Create an IAM role with the required permissions. Attach the role to the administrative IAM user.

Correct Answer: A
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html

Community vote distribution

A (88%) 12%

  Gulsah 2 weeks, 3 days ago

Selected Answer: A
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html
upvoted 1 times

  man5484 2 weeks, 6 days ago

Selected Answer: A
When an EC2 instance needs to access AWS resources such as Amazon S3 and Amazon DynamoDB, it is recommended to use IAM roles.
IAM roles are a secure way to grant temporary access to AWS services without the need to manage long-term credentials like access keys
and secret access keys.

By creating an IAM role with the necessary permissions and attaching it to the EC2 instance, the EC2 instance can assume the role and
access the required AWS resources. This approach eliminates the need for managing access keys within the EC2 instance and provides a
more secure and scalable solution.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: A
A. Create an IAM role with the required permissions. Attach the role to the EC2 instance.
upvoted 2 times

  kumaran1000001 4 months, 2 weeks ago

A - more secure and scalable

B - less secure and prone to exposure

C - less secure and prone to exposure

D - against need-basis access policy

upvoted 1 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: A
A. Create an IAM role with the required permissions. Attach the role to the EC2 instance.

This is the most operationally efficient solution to delegate permissions. When an IAM role is attached to an EC2 instance, the instance can
use the permissions associated with the role to access AWS resources, such as Amazon S3 and Amazon DynamoDB, without the need for
an access key and secret access key.

B and C are not the most operationally efficient solutions because they involve creating an IAM user and using access keys, which can be
less secure than using IAM roles, and require more management overhead to rotate access keys.

D is not the most operationally efficient solution because it involves attaching an IAM role to an administrative IAM user, which is not
recommended for security best practices. It is recommended to follow the principle of least privilege and assign permissions only to the
necessary resources and roles.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  Agil09 8 months ago

Selected Answer: A
surely A
upvoted 3 times

  Mizaan 8 months, 4 weeks ago

Selected Answer: D
Surely D, you want them to access multiple resources, not just the EC2 instance ?
upvoted 3 times

  JA2018 8 months, 2 weeks ago

I think the question was specifically referring to the EC2 instance.
upvoted 1 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: A
Instead, you can and should use an IAM role to manage temporary credentials for applications that run on an Amazon EC2 instance. When
you use a role, you don't have to distribute long-term credentials (such as a user name and password or access keys) to an Amazon EC2
instance.
upvoted 3 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: A
A is correct.
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is A
upvoted 1 times

  certiflux 10 months, 2 weeks ago

Selected Answer: A
A: the EC2 instance will have the access without having to configure anything else
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 1 times

  bilel500 11 months ago

Selected Answer: A
Answer is A.
upvoted 2 times
Question #106 Topic 1

Which of the following is a component of the AWS Global Infrastructure?

A. Amazon Alexa

B. AWS Regions

C. Amazon Lightsail

D. AWS Organizations

Correct Answer: B
Reference:
https://aws.amazon.com/about-aws/global-infrastructure/

Community vote distribution

B (100%)

  aboeyunus Highly Voted  1 year, 9 months ago

AWS Global Infrastructure:
- AWS Regions <------ Answer B
- AWS Availability Zones
- AWS Data Centers
- AWS Edge Locations /
Points of Presenc
upvoted 21 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: B
AWS Regions are a component of the AWS Global Infrastructure. AWS Regions are geographic locations around the world where AWS
resources and services are available. Each AWS Region is isolated and independent, consisting of multiple Availability Zones. The AWS
Global Infrastructure is the collective term for the network of AWS Regions and Availability Zones spread across different geographic
locations.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS Regions
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: B
Regions
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: B
B is correct
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 2 times
  BillyC 1 year, 8 months ago
B is correct
upvoted 1 times

  YaoiLova 1 year, 9 months ago

B is correct
upvoted 1 times

  dskim 1 year, 9 months ago

B.....
upvoted 2 times
Question #107 Topic 1

What is the purpose of having an internet gateway within a VPC?

A. To create a VPN connection to the VPC

B. To allow communication between the VPC and the internet

C. To impose bandwidth constraints on internet traffic

D. To load balance traffic from the internet across Amazon EC2 instances

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 6 days ago

Selected Answer: B
An internet gateway is a horizontally scaled, redundant, and highly available VPC component that enables communication between
instances within a VPC and the internet. It acts as a gateway for inbound and outbound internet traffic, allowing resources within the VPC
to access the internet and enabling the internet to communicate with resources within the VPC.

The internet gateway provides a way for instances within the VPC to send and receive traffic directly to and from the internet without
requiring network address translation (NAT). It serves as a bridge between the VPC and the public internet, allowing resources within the
VPC to have public IP addresses and be accessible from the internet.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. To allow communication between the VPC and the internet
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: B
Internet Gateway
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: B
B is correct
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 1 times

  Tofi_Write 1 year, 3 months ago

Selected Answer: B
B, VPC by default is private. by introducing Internet gateway the VPC will be able to communicate with the internet nd vice versa
upvoted 3 times

  lolouis 1 year, 9 months ago

B, An internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between your
VPC and the internet.
https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Internet_Gateway.html
upvoted 3 times
  marcelitahoyos8 1 year, 9 months ago
B itś the correct answer for me
upvoted 1 times

  erezs135 1 year, 10 months ago

B is correct
upvoted 1 times
Question #108 Topic 1

Which AWS service allows users to download security and compliance reports about the AWS infrastructure on demand?

A. Amazon GuardDuty

B. AWS Security Hub

C. AWS Artifact

D. AWS Shield

Correct Answer: C

Community vote distribution

C (100%)

  marcelitahoyos8 Highly Voted  1 year, 10 months ago

C-Artifact is correct
upvoted 11 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: C
AWS Artifact is the AWS service that allows users to download security and compliance reports about the AWS infrastructure on demand. It
provides access to various types of reports, including compliance reports (such as SOC reports, ISO certifications, and PCI DSS reports), as
well as AWS service-specific documents like AWS Terms of Service and Data Processing Addendums.

AWS Artifact centralizes the distribution of these reports, making them easily accessible to customers who require evidence of AWS
compliance with various industry standards and regulations. Users can access AWS Artifact through the AWS Management Console to
search for and download the desired reports.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS Artifact
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: C
Artifact
upvoted 1 times

  MehdiMasri 5 months, 3 weeks ago

Selected Answer: C
Artifact is correct
upvoted 1 times

  sushovan94 6 months, 2 weeks ago

Selected Answer: C
Answer would be C
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  DST_Justin 6 months, 3 weeks ago

Selected Answer: C
What is an AWS artifact?
AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to
security and compliance reports from AWS and ISVs who sell their products on AWS Marketplace.
https://aws.amazon.com/artifact/
upvoted 3 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: C
C is correct
upvoted 1 times
  Aliciuzza 8 months ago
c is correct
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is C
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: C
Answer is C.
upvoted 1 times

  BillyC 1 year, 8 months ago

C is correct
upvoted 1 times

  RaulDuke 1 year, 9 months ago

I agree it's C.
upvoted 2 times
Question #109 Topic 1

A pharmaceutical company operates its infrastructure in a single AWS Region. The company has thousands of VPCs in a various AWS accounts
that it wants to interconnect.
Which AWS service or feature should the company use to help simplify management and reduce operational costs?

A. VPC endpoint

B. AWS Direct Connect

C. AWS Transit Gateway

D. VPC peering

Correct Answer: D
Reference:
https://d1.awsstatic.com/whitepapers/building-a-scalable-and-secure-multi-vpc-aws-network-infrastructure.pdf
(9)

Community vote distribution

C (84%) D (16%)

  bratpyt Highly Voted  1 year, 10 months ago

The answer is C - TransitGateway. The more complicated topology is the more likely TransitGateway will be the answer.
upvoted 28 times

  bratpyt 1 year, 10 months ago

Moreover, VPC peering is not transitive, so you would need to set it up (1000*999)/2 times to interconnect every.
upvoted 10 times

  timHAG 10 months, 3 weeks ago

can VPC peering work across different account? can this be the keyword for going Transit, as the VPC peering will not work in the
first place.?
upvoted 1 times

  software_dev_delivery 5 months, 3 weeks ago

You can peer with a virtual private cloud (VPC) in another AWS account by using AWS::EC2::VPCPeeringConnection.
upvoted 1 times

  Brant Highly Voted  1 year, 9 months ago

C is correct.
https://aws.amazon.com/transit-gateway/?whats-new-cards.sort-by=item.additionalFields.postDateTime&whats-new-cards.sort-
order=desc
AWS Transit Gateway connects VPCs and on-premises networks through a central hub. This simplifies your network and puts an end to
complex peering relationships. It acts as a cloud router – each new connection is only made once.
upvoted 10 times

  Soumya198725 Most Recent  3 days, 11 hours ago

In question the below easily indicate the answer as Option C
"The company has thousands of VPCs in a various AWS accounts that it wants to interconnect."
upvoted 1 times

  man5484 2 weeks, 6 days ago

Selected Answer: C
AWS Transit Gateway is the AWS service that can help simplify the management and reduce operational costs of interconnecting multiple
VPCs (Virtual Private Clouds) spread across various AWS accounts in a single AWS Region.

AWS Transit Gateway acts as a hub that allows for the centralization of network traffic between VPCs and on-premises networks. With AWS
Transit Gateway, the pharmaceutical company can establish a single connection to the transit gateway and use it to efficiently route traffic
between all the interconnected VPCs.

By using AWS Transit Gateway, the company can simplify its network architecture, reduce the number of VPN connections or Direct
Connect links required, and manage its network routing policies in a centralized manner. This simplification and consolidation of network
connectivity can lead to operational cost savings and improved management efficiency.
upvoted 1 times

  SayanKundu 1 month ago

Selected Answer: C
Why Transit Gateway: AWS Transit Gateway connects VPCs and on-premises networks through a central hub.
Why Not peering: Peering works for a small number of VPCs. Mainly if two VPCs. connecting peer-to-peer connection across multiple VPCs
create a complex infrastructure which is difficult to manage and control.
upvoted 1 times

  SayanKundu 1 month ago

Sorry
Peer-to-peer -> Point-to-point connection
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS Transit Gateway
upvoted 1 times

  Vijaykpm 1 month, 1 week ago

Selected Answer: C
AWS Transit Gateway provides a hub and spoke design for connecting VPCs and on-premises networks as a fully managed service without
requiring you to provision virtual appliances like the Cisco CSRs. No VPN overlay is required, and AWS manages high availability and
scalability. Transit Gateway enables customers to connect thousands of VPCs. You can attach all your hybrid connectivity (VPN and Direct
Connect connections) to a single Transit Gateway— consolidating and controlling your organization's entire AWS routing configuration in
one place (Figure 4). Transit Gateway controls how traffic is routed among all the connected spoke networks using route tables. This hub
and spoke model simplifies management and reduces operational costs because VPCs only connect to the Transit Gateway to gain access
to the connected networks.
upvoted 1 times

  starsea 2 months, 2 weeks ago

Selected Answer: C
AWS Transit Gateway is a service that enables customers to connect their Amazon Virtual Private Clouds (VPCs) and their on-premises
networks to a single gateway. As you grow the number of workloads running on AWS, you need to be able to scale your networks across
multiple accounts and Amazon VPCs to keep up with the growth. Today, you can connect pairs of Amazon VPCs using peering. However,
managing point-to-point connectivity across many Amazon VPCs, without the ability to centrally manage the connectivity policies, can be
operationally costly and cumbersome. For on-premises connectivity, you need to attach your AWS VPN to each individual Amazon VPC.
This solution can be time consuming to build and hard to manage when the number of VPCs grows into the hundreds.
upvoted 1 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: C
To interconnect thousands of VPCs in different AWS accounts in a single AWS Region and simplify management and reduce operational
costs, the pharmaceutical company should use AWS Transit Gateway. AWS Transit Gateway is a service that enables customers to connect
thousands of VPCs, on-premises networks, and remote networks using a hub-and-spoke model. With AWS Transit Gateway, the company
can centrally manage network routing, monitor network health, and apply network policies across all the VPCs. It also helps to reduce
operational costs and complexity by reducing the number of VPN connections, network appliances, and connections to on-premises
infrastructure.
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: C
C. AWS Transit Gateway.

AWS Transit Gateway is a service that enables customers to connect their VPCs and on-premises networks to a single gateway, making it
easier to manage connectivity across their entire infrastructure. It simplifies network architecture by allowing customers to build a hub-
and-spoke model where VPCs can communicate with each other through a central hub, rather than through multiple VPC peering
connections.

With AWS Transit Gateway, the pharmaceutical company can manage thousands of VPCs across multiple accounts as a single logical unit.
It simplifies the management of network connectivity and reduces operational costs by eliminating the need for multiple VPC peering
connections, VPN connections, and NAT gateways.
upvoted 1 times

  Vishal_Gupta 4 months, 1 week ago

Keywork is thousands of VPCs. Scaling is as below:

Scale
VPC Peering: Up to 125 active Peers/VPC.
Transit Gateway: Up to 5,000 Attachments per Region.
upvoted 4 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
C. AWS Transit Gateway

The AWS Transit Gateway is a fully managed service that allows customers to connect thousands of VPCs, AWS accounts, and on-premises
networks together using a single gateway. It simplifies the management and reduces operational costs by providing a centralized hub
that can be used to manage connectivity between the different networks.

VPC endpoints allow for private communication between VPCs and AWS services, but they are not used for interconnecting VPCs in
different accounts.
AWS Direct Connect is used for creating a dedicated network connection between an on-premises data center and an AWS Region, and it
is not used for interconnecting VPCs in different accounts.

VPC peering allows for private communication between VPCs in the same or different accounts, but it does not scale well for managing
large numbers of VPCs.
upvoted 4 times
  linux_admin 4 months, 3 weeks ago
Selected Answer: C
The company should use AWS Transit Gateway to help simplify management and reduce operational costs. AWS Transit Gateway is a
service that enables customers to connect thousands of VPCs and on-premises networks using a single gateway. With Transit Gateway,
the company can interconnect thousands of VPCs in various AWS accounts across a single Region without the need to create and manage
multiple VPC peering connections or VPN connections. This helps to reduce operational costs and simplify network management.
upvoted 1 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: C
According to chatGPT, the answer is C - Transit gateway.
The pharmaceutical company can use AWS Transit Gateway to interconnect its thousands of VPCs in various AWS accounts in a single AWS
Region. AWS Transit Gateway is a fully-managed service that simplifies the interconnection of VPCs, VPNs, and on-premises networks.

With AWS Transit Gateway, the company can create a hub-and-spoke network topology that allows it to centrally manage connectivity
between its VPCs, VPNs, and on-premises networks. It also helps to reduce operational costs by eliminating the need for complex peering
relationships between VPCs, and simplifying network routing and security.

Additionally, AWS Transit Gateway integrates with other AWS services, such as AWS Direct Connect, AWS PrivateLink, and AWS Global
Accelerator, to provide a comprehensive networking solution for the company's infrastructure.
upvoted 1 times

  harisene 5 months ago

Selected Answer: C
Anwer is C
upvoted 1 times

  ShivaTheBoss 5 months ago

Answer is C : Transit Gateway
As per the question company has setup their resources in a Single Region but thousands of VPC's.

VPC Peering is point to point makes the management so complex and expensive to maintain though its cheaper solution in terms of cost
involved.
At the end, if we don't have simplified management solution in place for corporates, any resource management will be very expensive and
unmanageable which we don't want.
upvoted 1 times

  noahsark 5 months, 1 week ago

Selected Answer: C
AWS Transit Gateway
https://aws.amazon.com/transit-gateway/
upvoted 1 times
Question #110 Topic 1

A company is planning an infrastructure deployment to the AWS Cloud. Before the deployment, the company wants a cost estimate for running the
infrastructure.
Which AWS service or feature can provide this information?

A. Cost Explorer

B. AWS Trusted Advisor

C. AWS Cost and Usage Report

D. AWS Pricing Calculator

Correct Answer: D

Community vote distribution

D (100%)

  myan2492 Highly Voted  9 months ago

D. pricing calculator -estimate cost
cost explore --graph--show cost, usage over time
cost and usage report -- tracks your AWS usage and provides estimated charges associated with your account.
upvoted 14 times

  dcdcdec 1 month, 1 week ago

Tq very much for ur comment. It helped me a lot in what is what.
upvoted 1 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: D
AWS Pricing Calculator is the AWS service or feature that can provide a cost estimate for running infrastructure before deployment.

The AWS Pricing Calculator allows users to estimate the costs of using various AWS services based on their anticipated usage. It provides a
web-based interface where users can select the desired AWS services, configure the specifications and quantities of resources needed,
and define usage patterns.

By inputting the details of the infrastructure deployment, such as the types and sizes of EC2 instances, storage volumes, networking
resources, and other AWS services, the AWS Pricing Calculator can generate an estimated monthly cost for running the infrastructure in
the AWS Cloud.

This cost estimate can help the company plan its budget, evaluate different deployment options, and make informed decisions about the
infrastructure design.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. AWS Pricing Calculator
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: D
D. AWS Pricing Calculato
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: D
Pricing calculator
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  DST_Justin 6 months, 3 weeks ago

Selected Answer: D
D is correct
upvoted 1 times
  ACLOUD_PRACTITIONER 7 months, 2 weeks ago
Selected Answer: D
D is correct
upvoted 1 times

  Aliciuzza 8 months ago

Selected Answer: D
D " *Before the deployment*
https://aws.amazon.com/it/premiumsupport/knowledge-center/estimating-aws-resource-costs/
https://aws.amazon.com/it/calculator/calculator-assumptions/
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is D
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for D
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: D
Answer is D.
upvoted 1 times
Question #111 Topic 1

Which AWS service of tool helps to centrally manage billing and allow controlled access to resources across AWS accounts?

A. AWS Identity and Access Management (IAM)

B. AWS Organizations

C. Cost Explorer

D. AWS Budgets

Correct Answer: B

Community vote distribution

B (93%) 7%

  man5484 2 weeks, 6 days ago

Selected Answer: B
AWS Organizations is the AWS service that helps centrally manage billing and allows controlled access to resources across multiple AWS
accounts.

AWS Organizations provides a way to centrally manage and govern multiple AWS accounts within an organization. It enables you to create
and manage groups of accounts, called organizational units (OUs), to align with your company's structure. With AWS Organizations, you
can apply policies across those accounts, control access to resources, and consolidate billing.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS Organizations
upvoted 1 times

  mojito1 3 months, 4 weeks ago

B is the correct answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: B
key point is => centrally manage billing and allow controlled access to resources across AWS accounts
AWS Organization does that
upvoted 3 times

  JAMTARA 7 months, 3 weeks ago

ASHIF SAYS ANSWER IS D please vote
upvoted 2 times

  sirasdf 6 months, 4 weeks ago

ASHIF SAYS ANSWER IS B - AWS Organizations is a service that helps you centrally manage billing and control access to resources
across multiple AWS accounts.
upvoted 1 times

  Aliciuzza 8 months ago

Selected Answer: B
B key: * across aws accounts*
https://docs.aws.amazon.com/controltower/latest/userguide/organizations.html
upvoted 3 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: C
Well, I read this :

https://aws.amazon.com/aws-cost-management/aws-cost-explorer/
AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time. Get
started quickly by creating custom reports that analyze cost and usage data. Analyze your data at a high level (for example, total costs and
usage across all accounts)
upvoted 1 times

  henryvex 8 months ago

The key word here is "centrally manage billing and allow controlled access" and that's AWS Organization
upvoted 1 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: B
Question is tricky but the hint is " resources across AWS accounts".
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  certiflux 10 months, 2 weeks ago

Selected Answer: B
B
Key words: "across AWS accounts"
upvoted 3 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 1 times
Question #112 Topic 1

Which of the following are Amazon Virtual Private Cloud (Amazon VPC) resources?

A. Objects; access control lists (ACLs)

B. Subnets; internet gateways

C. Access policies; buckets

D. Groups; roles

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 6 days ago

Selected Answer: B
Subnets are one of the key resources in Amazon VPC. They are subdivisions of IP address ranges within a VPC and provide a way to
segment and isolate resources within your virtual network.

Internet gateways are another important resource in Amazon VPC. They serve as the entry and exit points for traffic between your VPC
and the internet. They enable communication between your VPC resources and external networks, such as the public internet.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Subnets; internet gateways
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: B
I vote B
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  ACLOUD_PRACTITIONER 7 months, 2 weeks ago

Selected Answer: B
B is correct
upvoted 3 times

  JAMTARA 7 months, 3 weeks ago

ashif says answer is eitheir a or d please vote
upvoted 1 times

  stevenyk 8 months ago

[Components of Amazon VPC]
https://varunmanik1.medium.com/how-to-create-aws-vpc-in-10-steps-less-than-5-min-a49ac12064aa
- A Virtual Private Cloud: A logically isolated virtual network in the AWS cloud. You define a VPC’s IP address space from the ranges you
select.
- Subnet: A segment of a VPC’s IP address range where you can place groups of isolated resources.
- Internet Gateway: The Amazon VPC side of a connection to the public Internet.
- NAT Gateway: A highly available, managed Network Address Translation (NAT) service for your resources in a private subnet to access
the Internet.
- Route Table: A route table contains a set of rules, called routes, that are used to determine where network traffic from your subnet or
gateway is directed.
- DNS Hostname: The Amazon DNS server resolves a public DNS hostname to the public IPv4 address of the instance outside the network
of the instance.
- CIDR: Classless Inter-Domain Routing
upvoted 2 times

  myan2492 9 months ago

B. subnet, internet gateway
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 1 times
Question #113 Topic 1

A company needs to identify the last time that a specific user accessed the AWS Management Console.
Which AWS service will provide this information?

A. Amazon Cognito

B. AWS CloudTrail

C. Amazon Inspector

D. Amazon GuardDuty

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 6 days ago

Selected Answer: B
AWS CloudTrail is a service that enables you to monitor and log user activity and API usage within your AWS account. It records actions
taken by users, including console sign-in events, API calls, and management events, and stores them in a log file. This log file can be
analyzed to gain visibility into user activity and track actions taken in the AWS Management Console.

By examining the CloudTrail logs, you can identify the last time a specific user accessed the AWS Management Console. The logs will
provide information about console sign-in events, including the user, timestamp, and source IP address.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS CloudTrail
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: B
I vote B
upvoted 1 times

  MehdiMasri 5 months, 3 weeks ago

Selected Answer: B
B is correct
upvoted 1 times

  bigbeaer 6 months, 1 week ago

Selected Answer: B
B is correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  myan2492 9 months ago

AWS CloudTrail enables auditing, security monitoring, and operational troubleshooting by tracking user activity and API usage. CloudTrail
logs, continuously monitors, and retains account activity related to actions across your AWS infrastructure, giving you control over
storage, analysis, and remediation actions.
upvoted 4 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  certiflux 10 months, 2 weeks ago

Selected Answer: B
"AWS CloudTrail monitors and records account activity across your AWS infrastructure"
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 1 times
Question #114 Topic 1

A company launched an Amazon EC2 instance with the latest Amazon Linux 2 Amazon Machine Image (AMI).
Which actions can a system administrator take to connect to the EC2 instance? (Choose two.)

A. Use Amazon EC2 Instance Connect.

B. Use a Remote Desktop Protocol (RDP) connection.

C. Use AWS Batch

D. Use AWS Systems Manager Session Manager.

E. Use Amazon Connect

Correct Answer: AC

Community vote distribution

AD (100%)

  jr_2022 Highly Voted  11 months ago

A & D. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AccessingInstances.html
upvoted 21 times

  Soumya198725 Most Recent  3 days, 11 hours ago

Undoubtedly A&D
upvoted 1 times

  man5484 2 weeks, 6 days ago

Selected Answer: AD
A. Amazon EC2 Instance Connect is a secure and easy-to-use method for SSH access to EC2 instances. It allows system administrators to
connect to their instances using the AWS Management Console or the AWS CLI without the need for managing SSH key pairs manually.

D. AWS Systems Manager Session Manager provides interactive shell access to EC2 instances directly from the AWS Management Console
or the AWS CLI. It does not require opening inbound SSH ports or managing SSH keys.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: AD
A. Use Amazon EC2 Instance Connect.
D. Use AWS Systems Manager Session Manager.
upvoted 1 times

  Coffeelander 1 month, 1 week ago

Moderator selecting AWS batch? looks like he is nuts
upvoted 2 times

  nailimvali 2 months, 2 weeks ago

Selected Answer: AD
You can use Amazon EC2 Instance Connect (option A) to connect to an EC2 instance . Amazon EC2 Instance Connect provides a simple and
secure way to connect to your instances using Secure Shell (SSH). You can also use AWS Systems Manager Session Manager (option D) to
connect to an EC2 instance . AWS Systems Manager Session Manager is a fully managed AWS Systems Manager capability that lets you
manage your Amazon EC2 instances through an interactive one-click browser-based shell or through the AWS CLI.
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: AD
A. Use Amazon EC2 Instance Connect: This is a browser-based SSH connection method that allows you to connect to your EC2 instances
using AWS Identity and Access Management (IAM) credentials, without the need to manage SSH keys. You can use Instance Connect to
connect to an instance using the EC2 console, AWS CLI, or SDKs.

D. Use AWS Systems Manager Session Manager: This is a fully-managed, secure, and auditable way to access your instances using the
AWS Systems Manager console or AWS CLI. With Session Manager, you can tunnel your SSH (Secure Shell) and SCP (Secure Copy)
connections to your instances, without requiring inbound connections or the use of bastion hosts or VPNs.
upvoted 4 times

  kumaran1000001 4 months, 2 weeks ago

A - yes

B - we are talking about Linux not Windows-based

C - service for batch computing workload

D - contact center service

upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

sorry correction:
A - yes

B - we are talking about Linux not Windows-based

C - service for batch computing workload

D - yes

E - contact center service

upvoted 2 times

  harisene 5 months ago

Selected Answer: AD
A and D
upvoted 1 times

  Phreefall 5 months, 1 week ago

A and D are correct. AWS Batch does not enable connections, and Linux does not support Remote Desktop Protocol.
upvoted 2 times

  RiaanMO 5 months, 2 weeks ago

Cant see see how the answer can be A and C, AWS Batch manages compute environments and job queues, allowing you to easily run
thousands of jobs of any scale using Amazon ECS, Amazon EKS, and AWS Fargate with an option between Spot or on-demand resources.
You simply define and submit your batch jobs to a queue
upvoted 1 times

  Saurabbh989 5 months, 2 weeks ago

Selected Answer: AD
A & D is the right answer
upvoted 1 times

  bestedeki 6 months ago

Selected Answer: AD
A & D is the right answer
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 1 times

  Rmnx 7 months, 2 weeks ago

Selected Answer: AD
It's A&D.
upvoted 1 times

  JAMTARA 7 months, 3 weeks ago

ashif says answer is b please vote guys
upvoted 1 times

  sirasdf 6 months, 4 weeks ago

ashif is wrong
upvoted 3 times

  Adirya1 7 months, 3 weeks ago

Selected Answer: AD
A&D ARE CORRECT
upvoted 1 times
Question #115 Topic 1

A company wants to perform sentiment analysis on customer service email messages that it receives. The company wants to identify whether the
customer service engagement was positive or negative.
Which AWS service should the company use to perform this analysis?

A. Amazon Textract

B. Amazon Translate

C. Amazon Comprehend

D. Amazon Rekognition

Correct Answer: C

Community vote distribution

C (88%) 13%

  CarrieJ Highly Voted  11 months ago

Amazon Comprehend uses natural language processing (NLP) to extract insights about the content of documents.
upvoted 9 times

  konieczny69 Highly Voted  6 months, 1 week ago

Not in the scope of the exam
upvoted 6 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: C
Amazon Comprehend is a natural language processing (NLP) service offered by AWS. It provides pre-trained models to analyze text and
extract insights, including sentiment analysis. With Amazon Comprehend, the company can easily determine the sentiment of customer
service email messages, whether they are positive, negative, or neutral. This can help in understanding customer feedback and improving
customer service strategies.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: C
C. Amazon Comprehend
upvoted 1 times

  wesley223 2 months, 2 weeks ago

Amazon Comprehend lets you analyze documents using machine learning to uncover insights and relationships within text.
https://aws.amazon.com/pt/comprehend/
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: C
C. Amazon Comprehend

The AWS service that should be used to perform sentiment analysis on customer service email messages is Amazon Comprehend.
Amazon Comprehend is a natural language processing (NLP) service that uses machine learning to find insights and relationships in text.
It can be used to perform sentiment analysis, entity recognition, topic modeling, and language detection.
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
C. Amazon Comprehend

Amazon Textract is a service that is used for extracting text and data from scanned documents, but it is not used for sentiment analysis.

Amazon Translate is a service that is used for translating text from one language to another, but it is not used for sentiment analysis.

Amazon Rekognition is a service that is used for image and video analysis, such as object and scene detection, facial analysis, and celebrity
recognition, but it is not used for sentiment analysis of text.
upvoted 4 times

  noahsark 5 months, 1 week ago

Selected Answer: C
Amazon Comprehend
https://aws.amazon.com/comprehend/
upvoted 1 times

  rikininetysix 5 months, 1 week ago

Selected Answer: C
Answer should be 'C'. Amazon Comprehend is a natural-language processing (NLP) service that uses machine learning to uncover
valuable insights and connections in text.

Amazon Comprehend - https://go.aws/3xMUEhS

upvoted 1 times

  Shymaa_elfadly 6 months ago

Selected Answer: D
D correct
upvoted 2 times

  et_learner 4 months, 2 weeks ago

Very Very Wrong. D is for image/video analysis
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 2 times

  myan2492 9 months ago

Amazon Comprehend is a natural-language processing (NLP) service that uses machine learning to uncover valuable insights and
connections in text.
Amazon Translate is a neural machine translation service that delivers fast, high-quality, affordable, and customizable language
translation.
upvoted 5 times

  myan2492 9 months ago

Amazon Textract is a machine learning (ML) service that automatically extracts text, handwriting, and data from scanned documents.

Machine Learning Image and Video Analysis - AWShttps://aws.amazon.com › rekognition

Amazon Rekognition offers pre-trained and customizable computer vision (CV) capabilities to extract information and insights from
your images and videos.
upvoted 3 times

  ksuccex 9 months, 3 weeks ago

C is correct
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is C
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: C
Answer is C.
upvoted 2 times

  fross 11 months ago

Correct, Comprehend is used for NLP
upvoted 2 times
Question #116 Topic 1

What is the total amount of storage offered by Amazon S3?

A. 100MB

B. 5 GB

C. 5 TB

D. Unlimited

Correct Answer: D

Community vote distribution

D (95%) 5%

  Makku69 Highly Voted  8 months, 3 weeks ago

Selected Answer: D
Answer is D.
Some confused with 5 TB. thats the limit for one S3 object.
upvoted 12 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: D
Amazon S3 (Simple Storage Service) offers virtually unlimited storage. It does not have predefined limits on the total amount of storage
that can be used. Customers can store as much data as they need in S3, scaling their storage capacity as per their requirements. The
pricing for Amazon S3 is based on the amount of storage used and additional features or data transfer, rather than a fixed limit on
storage capacity.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Unlimited
upvoted 1 times

  akiraaws 4 months ago

The question is referring to the storage size and not the maximum file size.
Letter D is correct.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - no

B - the size of individual file upload in single-part upload

C - size limit of a single object in S3

D - yes
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  JAMTARA 7 months, 3 weeks ago

ashif says answer is c please vote guys
upvoted 1 times

  [Removed] 9 months, 1 week ago

Selected Answer: D
Key is total
upvoted 1 times

  Craig92866 9 months, 2 weeks ago

Selected Answer: D
S3 storage capacity: Unlimited (figuratively)
S3 object size: Minimum of 0 bytes to a maximum of 5 TB
https://aws.amazon.com/s3/faqs/#:~:text=Q%3A%20How%20much%20data%20can,single%20PUT%20is%205%20GB.
upvoted 2 times
  apchandana 9 months, 2 weeks ago
Selected Answer: D
the amount of data which can be stored in S3 is unlimited
upvoted 1 times

  Biren4990 10 months, 1 week ago

Answer is D.
The total volume of data and number of objects you can store are unlimited. Individual Amazon S3 objects can range in size from a
minimum of 0 bytes to a maximum of 5 TB.
https://aws.amazon.com/s3/faqs/#:~:text=The%20total%20volume%20of%20data,a%20maximum%20of%205%20TB.
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is D
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for D
upvoted 1 times

  gbiic 10 months, 3 weeks ago

https://aws.amazon.com › s3 › faqs
The total volume of data and number of objects you can store are unlimited. Individual Amazon S3 objects can range in size from a
minimum of 0 bytes to a maximum of 5 TB.
upvoted 2 times

  Steve122 10 months, 3 weeks ago

Selected Answer: D
D for sure. 5TB applies to individual object.
upvoted 2 times

  manolin 10 months, 3 weeks ago

answer is d: question is asking for total amount and not idividual uploads
upvoted 1 times

  ShaifulSam 10 months, 3 weeks ago

ANSWER IS 5TB THUS IT IS C
upvoted 1 times
Question #117 Topic 1

A company is migrating to Amazon S3. The company needs to transfer 60 TB of data from an on-premises data center to AWS within 10 days.
Which AWS service should the company use to accomplish this migration?

A. Amazon S3 Glacier

B. AWS Database Migration Service (AWS DMS)

C. AWS Snowball

D. AWS Direct Connect

Correct Answer: C

Community vote distribution

C (100%)

  myan2492 Highly Voted  9 months ago

C. snowball
AWS Snowball is a petabyte-scale data transport service that uses secure devices to transfer large amounts of data into and out of the
AWS Cloud.

Amazon S3 Glacier (S3 Glacier) is a secure and durable service for low-cost data archiving and long-term backup.

With S3 Glacier, you can store your data cost effectively for months, years, or even decades. S3 Glacier helps you offload the administrative
burdens of operating and scaling storage to AWS, so you don't have to worry about capacity planning, hardware provisioning, data
replication, hardware failure detection and recovery, or time-consuming hardware migration

AWS Database Migration Service (AWS DMS) is a cloud service that makes it easy to migrate relational databases, data warehouses, NoSQL
databases, and other types of data stores. You can use AWS DMS to migrate your data into the AWS Cloud or between combinations of
cloud and on-premises setups.
upvoted 9 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: C
AWS Snowball is a service specifically designed for large-scale data transfers. It allows you to securely and quickly transfer large amounts
of data to and from AWS. In this scenario, where the company needs to transfer 60 TB of data within a limited timeframe, AWS Snowball
would be the most suitable choice. The company can request a Snowball appliance from AWS, which will be shipped to their location. They
can then load their data onto the Snowball appliance, ship it back to AWS, and AWS will transfer the data into an S3 bucket. This method
ensures fast and efficient data transfer, even with large amounts of data.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS Snowball
upvoted 1 times

  tamefi5512 5 months ago

Selected Answer: C
A. Amazon S3 Glacier --- its a storage tier can't able to use to transfer on-premise data to was cloud
B. AWS Database Migration Service (AWS DMS) - its used to transfer migrate databases to or within aws.
C. AWS Snowball - AWS Snowball family (snow mobile) used to transfer large amounts of data from on-premise to AWS cloud
D. AWS Direct Connect - its a dedicate private connection from on-premise to aws cloud
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  fluorescentwhite 9 months ago

https://aws.amazon.com/snow/
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is c
upvoted 1 times

  IvanKhru 10 months, 2 weeks ago

The answer is C
upvoted 1 times
  sumanshu 10 months, 2 weeks ago
Vote for C
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: C
Answer is C.
upvoted 1 times

  CarrieJ 11 months ago

Snowball Edge can do local processing and edge-computing workloads in addition to transferring data between your local environment
and the AWS Cloud.
upvoted 2 times
Question #118 Topic 1

What type of database is Amazon DynamoDB?

A. In-memory

B. Relational

C. Key-value

D. Graph

Correct Answer: C

Community vote distribution

C (100%)

  myan2492 Highly Voted  9 months ago

C. "Amazon DynamoDB is a fully managed, serverless, *key-value* NoSQL database designed to run high-performance applications at
any scale."
upvoted 7 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: C
Amazon DynamoDB is a fully managed NoSQL database service provided by AWS. It is designed to provide fast and predictable
performance with seamless scalability. DynamoDB uses a key-value data model, where data is organized and accessed using a primary
key. Each item in the database is uniquely identified by its primary key, and the data is stored in a key-value format. This allows for
efficient retrieval and storage of data based on key lookups, making DynamoDB well-suited for applications that require low-latency and
high-performance access to data.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Key-value
upvoted 1 times

  Onyejicash 6 months ago

D- severless Key-value
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is c
upvoted 1 times

  certiflux 10 months, 2 weeks ago

Selected Answer: C
"Amazon DynamoDB is a fully managed, serverless, *key-value* NoSQL database designed to run high-performance applications at any
scale."
upvoted 4 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: C
Answer is C.
upvoted 1 times
Question #119 Topic 1

A large organization has a single AWS account.

What are the advantages of reconfiguring the single account into multiple AWS accounts? (Choose two.)

A. It allows for administrative isolation between different workloads.

B. Discounts can be applied on a quarterly basis by submitting cases in the AWS Management Console.

C. Transitioning objects from Amazon S3 to Amazon S3 Glacier in separate AWS accounts will be less expensive.

D. Having multiple accounts reduces the risks associated with malicious activity targeted at a single account.

E. Amazon QuickSight offers access to a cost tool that provides application-specific recommendations for environments running in multiple
accounts.

Correct Answer: AC

Community vote distribution

AD (98%)

  muxopancy Highly Voted  1 year, 7 months ago

A and D looks correct
upvoted 12 times

  sirasdf Highly Voted  6 months, 4 weeks ago

What does ashif say now? I need to know!
upvoted 9 times

  Soumya198725 Most Recent  3 days, 11 hours ago

Chatgpt says A&D
upvoted 1 times

  man5484 2 weeks, 6 days ago

Selected Answer: AD
A. It allows for administrative isolation between different workloads: By using multiple accounts, organizations can separate their
workloads and resources, providing isolation and control over each workload. This helps in managing access, security, and resource
allocation independently for different teams or projects.

D. Having multiple accounts reduces the risks associated with malicious activity targeted at a single account: If a single AWS account is
compromised, all the resources and workloads within that account may be at risk. By using multiple accounts, the impact of a security
breach or malicious activity can be limited to a specific account, reducing the overall risk.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: AD
A. It allows for administrative isolation between different workloads.
D. Having multiple accounts reduces the risks associated with malicious activity targeted at a single account.
upvoted 1 times

  Coffeelander 1 month, 1 week ago

A and D are the right answers. Moderator is as usual a Chutiya
upvoted 1 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: AD
The advantages of reconfiguring a single AWS account into multiple AWS accounts are:

A. It allows for administrative isolation between different workloads, making it easier to manage permissions and access control for
different teams and projects.

D. Having multiple accounts reduces the risks associated with malicious activity targeted at a single account. If a security breach occurs in
one account, it will not affect other accounts, and the organization can contain the impact of the breach.

B, C, and E are not valid advantages of reconfiguring a single AWS account into multiple accounts.

B is not a valid advantage because discounts are applied to the entire organization's AWS usage and are not limited to a single account.

C is not valid because transitioning objects between S3 and Glacier would not be less expensive across multiple accounts.

E is not valid because QuickSight offers cost tools for any AWS account, regardless of whether it is a single or multiple accounts.
upvoted 4 times
  huanghaiyao 2 months, 3 weeks ago
Selected Answer: AD
AD IS right,c seems unrelated
upvoted 1 times

  battleforbetter 3 months ago

Selected Answer: AD
A & D are pefect
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: AD
The advantages of reconfiguring a single AWS account into multiple AWS accounts are:

A. It allows for administrative isolation between different workloads. By creating separate AWS accounts for different workloads, it is
possible to have better control over administrative access and permissions. This can help to reduce the risk of accidental or intentional
changes to the workloads and increase security.

D. Having multiple accounts reduces the risks associated with malicious activity targeted at a single account. If a single AWS account is
compromised, all the workloads running in that account are at risk. By using multiple accounts, the risk is distributed, and the impact of a
security breach is minimized.
upvoted 1 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: AD
As per ChatGPT, The advantages of reconfiguring a single AWS account into multiple AWS accounts are:
A. It allows for administrative isolation between different workloads, providing better security and governance over the resources.
D. Having multiple accounts reduces the risks associated with malicious activity targeted at a single account. By having separate accounts,
security measures can be applied at the account level, reducing the attack surface for each account.
B, C, and E are not advantages of reconfiguring a single AWS account into multiple AWS accounts
upvoted 1 times

  JiggaCodex 6 months ago

AD - Are these questions being answered by an AI?
upvoted 1 times

  Saif93 6 months, 2 weeks ago

AD is the answer.
upvoted 1 times

  SmartLearner 8 months, 4 weeks ago

Selected Answer: AD
A, D is correct.
upvoted 2 times

  myan2492 9 months ago

A+D
Group workloads based on business purpose and ownership
Constrain access to sensitive data
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is AD
upvoted 1 times

  LloydA 10 months, 1 week ago

Selected Answer: AD
A & D.
upvoted 1 times
Question #120 Topic 1

A retail company has recently migrated its website to AWS. The company wants to ensure that it is protected from SQL injection attacks. The
website uses an
Application Load Balancer to distribute traffic to multiple Amazon EC2 instances.
Which AWS service or feature can be used to create a custom rule that blocks SQL injection attacks?

A. Security groups

B. AWS WAF

C. Network ACLs

D. AWS Shield

Correct Answer: B

Community vote distribution

B (100%)

  certiflux Highly Voted  10 months, 2 weeks ago

Selected Answer: B
"You can also use AWS WAF to block or allow requests based on conditions that you specify, such as the IP addresses that requests
originate from or *****values in the requests*****."
Values in the requests can match sql injections
upvoted 8 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: B
AWS WAF is a web application firewall that helps protect web applications from common web exploits and vulnerabilities, including SQL
injection attacks. With AWS WAF, you can create custom rules that inspect incoming requests and block any requests that match specific
patterns or signatures associated with SQL injection attacks.

By configuring AWS WAF with custom rules, you can define conditions and actions to be taken when SQL injection attempts are detected.
These rules can be applied at the Application Load Balancer level, allowing you to protect your web application across multiple Amazon
EC2 instances behind the load balancer.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS WAF
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: B
With AWS WAF, you can create security rules that control bot traffic and block common attack patterns such as SQL injection or cross-site
scripting (XSS).
https://aws.amazon.com/waf/
upvoted 2 times

  kumaran1000001 4 months, 2 weeks ago

A - instance level firewall

B - yes

C - subnet level firewall

D - shields from DDOS

upvoted 4 times

  tamefi5512 5 months ago

Selected Answer: B
https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-sqli-match.html
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times
  b3s1 9 months, 1 week ago
AWS WAF - B
upvoted 2 times

  Istiaque 10 months, 1 week ago

Sorry B.. aws WAF
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is A
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B

https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-sqli-match.html
upvoted 4 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 2 times
Question #121 Topic 1

Which AWS service provides a feature that can be used to proactively monitor and plan for the service quotas of AWS resources?

A. AWS CloudTrail

B. AWS Personal Health Dashboard

C. AWS Trusted Advisor

D. Amazon CloudWatch

Correct Answer: D

Community vote distribution

C (66%) D (33%)

  Jeyarajmohan Highly Voted  10 months, 1 week ago

Selected Answer: D
https://aws.amazon.com/about-aws/whats-new/2019/06/introducing-service-quotas-view-and-manage-quotas-for-aws-services-from-
one-location/
upvoted 13 times

  SmartLearner 8 months, 4 weeks ago

It'd be Trusted advisor (C). Service quota is the key. Cloudwatch just does monitoring.
upvoted 13 times

  Blimpy 8 months, 1 week ago

Yes - https://aws.amazon.com/premiumsupport/technology/trusted-advisor/

There is no question about being alerted (using Cloudwatch). Trusted advisor does proactive monitoring and thats how you plan
upvoted 3 times

  crymo 9 months, 2 weeks ago

the updated answer in 2022 says AWS Trusted Advisor. https://aws.amazon.com/solutions/implementations/quota-monitor/
upvoted 10 times

  JA2018 9 months, 1 week ago

so which is the correct answer for 2022?
upvoted 5 times

  Tarasharma Most Recent  2 days, 8 hours ago

C - aws tUSTED aDVISOR Service quotas are the maximum number of resources that you can create in an AWS account. AWS implements
quotas to provide highly available and reliable service to all customers, and protects you from unintentional spend. Trusted Advisor will
notify you once you reach more than 80% of a service quota. You can then follow recommendations to delete resources or request a quota
increase.
upvoted 1 times

  DominusUser 6 days, 4 hours ago

Selected Answer: C
AWS Trusted Advisor is the AWS service that provides a feature that can be used to proactively monitor and plan for the service quotas of
AWS resources. Trusted Advisor offers checks on various aspects of an AWS account, including service limits (quotas), security,
performance, and cost optimization. Among other checks, Trusted Advisor includes a Service Limits check that helps you monitor your
resource usage against the predefined service quotas set by AWS. It can provide recommendations to request a service limit increase
before you reach your limit, helping you avoid potential service disruptions due to exceeding quotas.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: C
https://aws.amazon.com/premiumsupport/technology/trusted-advisor/
upvoted 1 times

  elsie2023 2 weeks, 4 days ago

Selected Answer: C
AWS Trusted Advisor is a web service that inspects your AWS environment and provides real-time recommendations in accordance with
AWS best practices.
Trusted Advisor compares its findings to AWS best practices in five categories: cost optimization, performance, security, fault tolerance,
and service limits (now called service quotas).
upvoted 2 times

  zees3 2 weeks, 5 days ago

Selected Answer: C
Trusted Advisor monitors service limits
upvoted 1 times

  man5484 2 weeks, 6 days ago

Selected Answer: C
AWS Trusted Advisor is a service that provides real-time guidance to help you provision your resources following AWS best practices. It
offers recommendations in various categories, including cost optimization, performance, security, and service limits (quotas).

Within the Service Limits category, AWS Trusted Advisor provides information and recommendations on your resource usage and service
quotas. It helps you monitor your current resource usage and plan for future needs by notifying you when you are approaching or
exceeding your service quotas.
upvoted 2 times

  Nihal_OO7 1 month ago

Trusted advisor is the answer
upvoted 1 times

  angelparra 2 months ago

The AWS service that provides a feature for proactively monitoring and planning service quotas of AWS resources is called AWS Service
Quotas.

AWS Service Quotas allows you to view and manage your service quotas, which are the predefined limits set by AWS on the resources you
can use within your AWS account. With AWS Service Quotas, you can monitor your current resource usage, track your quotas, and request
increases if needed. It helps you understand your resource usage patterns and plan for scaling your applications or workloads
accordingly.
upvoted 1 times

  maazamin 2 months, 1 week ago

The correct option is C. AWS Trusted Advisor. AWS Trusted Advisor provides recommendations to help you optimize your AWS
infrastructure for cost savings, performance improvements, security enhancements, and service quota management. It includes a service
quota check that helps you monitor and plan for the service quotas of AWS resources.
upvoted 1 times

  AbirAbu 2 months, 2 weeks ago

Selected Answer: C
Trusted Advisor evaluates your account by using checks. These checks identify ways to optimize your AWS infrastructure, improve security
and performance, reduce costs, and monitor service quotas
upvoted 2 times

  yayaayzo 2 months, 2 weeks ago

C. AWS Trusted Advisor

AWS Trusted Advisor provides a feature that can be used to proactively monitor and plan for the service quotas of AWS resources. Trusted
Advisor offers recommendations to optimize AWS infrastructure across various categories, including service limits and quotas.
upvoted 1 times

  ShakthiGCP 2 months, 2 weeks ago

  wofuwofu 2 months, 2 weeks ago

Selected Answer: C
AWS Trusted Advisor is a service that offers guidance and recommendations to help customers optimize their AWS infrastructure across
various areas, including cost optimization, performance, security, and fault tolerance. It includes a Quotas category that specifically
provides information and alerts about AWS service quotas.

Within AWS Trusted Advisor's Quotas category, you can view the current usage and available quota for different AWS services. It helps you
proactively monitor resource usage and identify potential issues related to resource limits or quotas. Trusted Advisor provides
recommendations to adjust quotas if needed, allowing you to plan and manage your AWS resource usage more effectively.
upvoted 2 times

  eyaakrimi 2 months, 3 weeks ago

Selected Answer: C
service quota -> C
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: C
The AWS service that provides a feature that can be used to proactively monitor and plan for the service quotas of AWS resources is AWS
Trusted Advisor.
upvoted 2 times
  huanghaiyao 2 months, 3 weeks ago
Selected Answer: C
service quota ,so answer is c
upvoted 2 times
Question #122 Topic 1

Which of the following is an advantage that users experience when they move on-premises workloads to the AWS Cloud?

A. Elimination of expenses for running and maintaining data centers

B. Price discounts that are identical to discounts from hardware providers

C. Distribution of all operational controls to AWS

D. Elimination of operational expenses

Correct Answer: A

Community vote distribution

A (100%)

  man5484 2 weeks, 6 days ago

Selected Answer: A
When users move their on-premises workloads to the AWS Cloud, they can benefit from eliminating the expenses associated with running
and maintaining their own data centers. AWS takes care of the underlying infrastructure, including hardware, networking, and data center
management, allowing users to focus on their core business rather than managing physical infrastructure.
upvoted 1 times

  roma_tomato 2 months, 4 weeks ago

I don't understand the difference between "expenses for running and maintaining data centers" and "operational expenses", aren't they
the same thing?
upvoted 2 times

  stormy32 3 weeks, 4 days ago

The "operational expenses" you are including including all expenses, like people, hardware, any type of costs.
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: A
A. Elimination of expenses for running and maintaining data centers is an advantage that users experience when they move on-premises
workloads to the AWS Cloud.

Moving on-premises workloads to the AWS Cloud eliminates the need to maintain expensive data centers, hardware, and related
infrastructure. This can help organizations reduce their overall IT costs and improve their operational efficiency. AWS provides a wide
range of cloud-based services, including compute, storage, and database services, that can be used to run on-premises workloads on the
cloud. By moving workloads to AWS, organizations can take advantage of the flexibility, scalability, and cost-effectiveness of cloud
computing.
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: A
I vote A
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  nder 8 months, 1 week ago

Selected Answer: A
Moving to AWS in theory means you no longer need any infrastructure on premises other than an internet connection, in practice this is
rarely the case
upvoted 4 times

  KoreaSpurs 9 months ago

is it really A? the question is about USER position
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is A
upvoted 2 times

  IvanKhru 10 months, 2 weeks ago

Selected Answer: A
The answer is A
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: A
Answer is A.
upvoted 1 times
Question #123 Topic 1

Which design principle is included in the operational excellence pillar of the AWS Well-Architected Framework?

A. Create annotated documentation.

B. Anticipate failure.

C. Ensure performance efficiency.

D. Optimize costs.

Correct Answer: B

Community vote distribution

B (85%) A (15%)

  saifee_khan Highly Voted  5 months, 1 week ago

Both are the Design Principals:
Annotate documentation – Automate the creation of annotated documentation after every build.
Anticipate failure.
So, confused.
upvoted 5 times

  Karan997420 Most Recent  2 days, 9 hours ago

Selected Answer: A
It's A and B
upvoted 1 times

  Karan997420 2 days, 9 hours ago

Selected Answer: A
It's A and C
upvoted 1 times

  man5484 2 weeks, 6 days ago

Selected Answer: B
This principle emphasizes the importance of designing systems that can withstand and recover from failures, rather than assuming that
failures will not occur. By anticipating failure, organizations can proactively implement measures such as redundancy, fault tolerance, and
automated recovery to ensure the overall resilience and availability of their systems.
upvoted 1 times

  Shabz1 3 weeks, 5 days ago

Isn’t anticipate failure for “reliability”
M voting for ‘A’
upvoted 1 times

  samXXX 3 months, 1 week ago

Both A and C are answers
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

The design principle included in the operational excellence pillar of the AWS Well-Architected Framework that anticipates failure is:

B. Anticipate failure.

This principle recommends designing systems that can withstand failure and that can be quickly recovered from any failure that may
occur. It also emphasizes the importance of testing and experimenting to improve system resilience, and the implementation of
automated responses to potential failures to minimize downtime and ensure system continuity.
upvoted 2 times

  alexandercamachop 5 months, 2 weeks ago

Selected Answer: B
Answer is B, since part of the operational excellence is to anticipate failures by running and managing along with monitoring production
workloads. Also continuous improvement is part of Operational Excellence.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times
  myan2492 9 months ago
B. anticipate failure
operational excellence:
anticipate failure
perform operations as code
make frequent, small, reversible changes
refine operations procedures frequently
anticipate failure
learn from all operational failure
upvoted 4 times

  Shaychay 9 months, 3 weeks ago

Design principles for operational excellence in the cloud include performing operations as code, annotating documentation, anticipating
failure, and frequently making small, reversible changes.
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: B
B is correct
upvoted 1 times

  Cert_alert 10 months, 2 weeks ago

Selected Answer: B
BEST answer is Anticipate failures

https://docs.aws.amazon.com/wellarchitected/latest/operational-excellence-pillar/design-principles.html
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 1 times

  Esward 11 months ago

Anticipate failure is correct.
https://wa.aws.amazon.com/wellarchitected/2020-07-02T19-33-23/wat.pillar.operationalExcellence.en.html
upvoted 2 times
Question #124 Topic 1

Which AWS services offer gateway VPC endpoints that can be used to avoid sending traffic over the internet? (Choose two.)

A. Amazon Simple Notification Service (Amazon SNS)

B. Amazon Simple Queue Service (Amazon SQS)

C. AWS CodeBuild

D. Amazon S3

E. Amazon DynamoDB

Correct Answer: BD

Community vote distribution

DE (100%)

  myan2492 Highly Voted  9 months ago

D+ E: S3 and DynamoDB

VPC endpoints enable you to privately connect your VPC to services hosted on AWS without requiring an Internet gateway, a NAT device,
VPN, or firewall proxies. Endpoints are horizontally scalable and highly available virtual devices that allow communication between
instances in your VPC and AWS services. Amazon VPC offers two different types of endpoints: gateway type endpoints and interface type
endpoints.

Gateway type endpoints are available only for AWS services including S3 and DynamoDB. These endpoints will add an entry to your route
table you selected and route the traffic to the supported services through Amazon’s private network.

Interface type endpoints provide private connectivity to services powered by PrivateLink, being AWS services, your own services or SaaS
solutions, and supports connectivity over Direct Connect. More AWS and SaaS solutions will be supported by these endpoints in the future.
Please refer to VPC Pricing for the price of interface type endpoints.
upvoted 22 times

  jr_2022 Highly Voted  11 months ago

D & E https://docs.aws.amazon.com/vpc/latest/privatelink/gateway-endpoints.html
upvoted 13 times

  huanghaiyao 2 months, 3 weeks ago

yeah, i also see this,DE is right
upvoted 1 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: DE
Both Amazon S3 and Amazon DynamoDB offer gateway VPC endpoints that can be used to avoid sending traffic over the internet.

A gateway VPC endpoint allows private connectivity to supported AWS services within a VPC without requiring an internet gateway, NAT
device, VPN connection, or AWS Direct Connect connection. It enables you to access AWS services privately from your VPC using private IP
addresses, eliminating the need to traverse the public internet.
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: DE
when i see this,i know DE is correct
https://docs.aws.amazon.com/vpc/latest/privatelink/gateway-endpoints.html
upvoted 2 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: DE
"Gateway VPC endpoints provide reliable connectivity to Amazon S3 and DynamoDB without requiring an internet gateway or a NAT
device for your VPC. Gateway endpoints do not use AWS PrivateLink, unlike other types of VPC endpoints."
https://docs.aws.amazon.com/vpc/latest/privatelink/gateway-endpoints.html
upvoted 1 times

  nur16 3 months, 1 week ago

D &E
Q. What are the different types of VPC endpoints available on Amazon VPC?

D. Amazon S3: With a gateway VPC endpoint for Amazon S3, you can access S3 buckets from your VPC without traversing the internet.

E. Amazon DynamoDB: You can create a VPC endpoint for DynamoDB to access it from your VPC without going over the internet.
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: DE
The AWS services that offer gateway VPC endpoints that can be used to avoid sending traffic over the internet are:

D. Amazon S3
E. Amazon DynamoDB

Amazon S3 and Amazon DynamoDB both offer gateway VPC endpoints that allow you to access the services over a private network
connection within your VPC, without the need to go over the internet. This can help improve security, reduce latency, and lower data
transfer costs.

Amazon SNS, Amazon SQS, and AWS CodeBuild do not offer gateway VPC endpoints. However, you can still use these services securely
within your VPC by using VPC endpoints for AWS services or by setting up a VPC peering connection.
upvoted 1 times

  harisene 5 months ago

Selected Answer: DE
D and E
upvoted 1 times

  wabosi 5 months, 1 week ago

Selected Answer: DE
I vote for DE
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: DE
DE is the answer.
upvoted 1 times

  LibertyX 7 months, 3 weeks ago

Selected Answer: DE
B is just impossible
upvoted 1 times

  situchinmaya 9 months, 2 weeks ago

Answer is D E.

Reference -
https://aws.amazon.com/vpc/faqs/#:~:text=Gateway%20type%20endpoints%20are%20available,services%20through%20Amazon's%20pri
vate%20network.
upvoted 6 times

  Shaychay 9 months, 3 weeks ago

Traffic to Amazon S3 or DynamoDB from an instance in a public subnet is routed to the internet gateway for the VPC and then to the
service.
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is DE
upvoted 1 times

  LloydA 10 months, 1 week ago

Selected Answer: DE
Clarification from Moderator please.
upvoted 1 times
  Divit_S_K 10 months, 2 weeks ago
Option D & E ie., S3 and DynamoDB
upvoted 1 times
Question #125 Topic 1

Which of the following is the customer responsible for updating and patching, according to the AWS shared responsibility model?

A. Amazon FSx for Windows File Server

B. Amazon WorkSpaces virtual Windows desktop

C. AWS Directory Service for Microsoft Active Directory

D. Amazon RDS for Microsoft SQL Server

Correct Answer: B

Community vote distribution

B (100%)

  myan2492 Highly Voted  9 months ago

B. Amazon worksapce
We recommend that you regularly patch, update, and secure the operating system and applications on your WorkSpaces. You can
configure your WorkSpaces to be updated by WorkSpaces during a regular maintenance window or you can update them yourself.
upvoted 13 times

  sumanshu Highly Voted  10 months, 2 weeks ago

Vote for B

https://docs.aws.amazon.com/workspaces/latest/adminguide/update-management.html
upvoted 6 times

  man5484 Most Recent  2 weeks, 6 days ago

Selected Answer: B
According to the AWS shared responsibility model, the customer is responsible for updating and patching the operating system and
applications running on Amazon WorkSpaces virtual Windows desktops (option B). AWS is responsible for managing the underlying
infrastructure and maintaining the virtual desktop environment.
upvoted 1 times

  BobFar 4 months, 3 weeks ago

Correct Answer: B
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  sravan09 8 months, 2 weeks ago

B Is Correct
upvoted 2 times

  BobSchmitty 10 months ago

Selected Answer: B
Pretty sure its B
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 1 times

  Divit_S_K 10 months, 2 weeks ago

B is the correct answer
upvoted 1 times
Question #126 Topic 1

Who has the responsibility to patch the host operating system of an Amazon EC2 instance, according to the AWS shared responsibility model?

A. Both AWS and the customer

B. The customer only

C. The EC2 hardware manufacturer

D. AWS only

Correct Answer: B

Community vote distribution

D (76%) B (24%)

  Steve122 Highly Voted  10 months, 3 weeks ago

Selected Answer: D
GUEST > customer
------------------------------
HOST > AWS
upvoted 41 times

  NotMeAnyWay 6 months, 2 weeks ago

*D* Straight from the Docks "Security and Compliance is a shared responsibility between AWS and the customer. This shared model
can help relieve the customer’s operational burden as AWS operates, manages and controls the components from the host operating
system and virtualization layer down to the physical security of the facilities in which the service operates. The customer assumes
responsibility and management of the guest operating system (including updates and security patches)"

https://aws.amazon.com/compliance/shared-responsibility-
model/#:~:text=Security%20and%20Compliance,and%20security%20patches)
upvoted 3 times

  DominusUser Most Recent  6 days, 1 hour ago

Selected Answer: B
In the AWS shared responsibility model, Amazon Web Services (AWS) is responsible for the security of the cloud, which includes the
underlying infrastructure and the services they provide. However, customers are responsible for the security of their data and applications
in the cloud, which includes tasks such as managing their EC2 instances, including patching and updating the operating system running
on those instances.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: D
https://docs.aws.amazon.com/whitepapers/latest/develop-deploy-dotnet-apps-on-aws/amazon-elastic-compute-cloud-ec2-
instances.html
The responsibility to patch the HOST operating system of an Amazon EC2 instance lies with AWS.
The responsibility to patch the GUEST operating system of an Amazon EC2 instance lies with the customer.
upvoted 1 times

  Kakuzu 2 weeks ago

What is the difference between HOST os and GUEST os ? Don't get it
upvoted 1 times

  Gulsah 1 week, 4 days ago

Then read this:
https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/shared-responsibility.html
Security and Compliance is a shared responsibility between AWS and the customer. This shared model can help relieve the
customer’s operational burden as AWS operates, manages, and controls the components from the HOST operating system and
virtualization layer down to the physical security of the facilities in which the service operates. The customer assumes responsibility
and management of the GUEST operating system (including updates and security patches), and other associated application
software in addition to the configuration of the AWS provided security group firewall.
upvoted 1 times

  man5484 2 weeks, 6 days ago

Selected Answer: D
According to the AWS shared responsibility model, AWS is responsible for patching and maintaining the underlying infrastructure,
including the host operating system of an Amazon EC2 instance
upvoted 2 times

  khanda 3 weeks ago

Selected Answer: D
Here you need to understand virtualisation. Host is a server where you host your VM's (guest). Hosts runs its OS for example VMWare ESXi
and a guest could be running Windows/Linux. So, AWS is responsible to patching and updating the host OS and the customer is
responsible for guest OS.
upvoted 2 times

  itben 3 weeks, 1 day ago

Selected Answer: B
AWS offers an up2date AMI, but once deployed on a EC2 instance, the customer only is responsible for updating the guest OS.
upvoted 1 times

  sanjaynithin 3 weeks, 2 days ago

Selected Answer: D
Host Operating System Patch Management is done by AWS
upvoted 2 times

  Shabz1 3 weeks, 5 days ago

Correct answer is The customer only.
upvoted 1 times

  Forah 1 month ago

The answer is B
Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for
patching their guest OS and applications.
https://aws.amazon.com/compliance/shared-responsibility-
model/#:~:text=Patch%20Management%20%E2%80%93%20AWS%20is%20responsible%20for%20patching%20and%20fixing%20flaws%20
within%20the%20infrastructure%2C%20but%20customers%20are%20responsible%20for%20patching%20their%20guest%20OS%20and%2
0applications.
upvoted 1 times

  Legendari 1 month, 1 week ago

answer should be A as both AWS and the customer are responsible for Patch Manangement, Training and Awarness, Configuration
Management
upvoted 2 times

  vajra23 1 month, 2 weeks ago

should be B
Customers that deploy an Amazon EC2 instance are responsible for management of the guest operating system (including updates and
security patches)
upvoted 1 times

  Marcelo_Costa 2 months, 1 week ago

Selected Answer: D
D. AWS only.

In the case of Amazon EC2 instances, AWS is responsible for patching and maintaining the underlying host operating system. AWS
ensures that the infrastructure and host operating system are up to date with the latest security patches and updates. This responsibility
includes managing the hypervisor and the host operating system layer.

As a customer, you are responsible for managing the security and patching of the guest operating system and any applications or
software running on your EC2 instances. This includes configuring and maintaining security settings, applying updates and patches to the
guest operating system, and implementing appropriate security measures within your EC2 instances.

To summarize, according to the AWS shared responsibility model, AWS is responsible for patching and maintaining the host operating
system of EC2 instances, while the customer is responsible for patching and maintaining the guest operating system and any software
running on those instances.
upvoted 2 times

  AbdulMalik_Y 2 months, 1 week ago

Selected Answer: B
customer only has access to EC2 instance, so updates and all are customer's responsibility
upvoted 1 times

  gelodot 2 months, 2 weeks ago

Selected Answer: D
I think it, because in documentation, they say that customer is responsible for GUEST system and not HOST

Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for
patching their guest OS and applications.

https://aws.amazon.com/compliance/shared-responsibility-
model/#:~:text=Patch%20Management%20%E2%80%93%20AWS%20is%20responsible,their%20guest%20OS%20and%20applications.
upvoted 2 times

  eyaakrimi 2 months, 3 weeks ago

Selected Answer: B
for an Amazon EC2 instance the customer is responsible for host OS config
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: B
According to the AWS shared responsibility model, the responsibility to patch the host operating system of an Amazon EC2 instance falls
on the customer, which means the correct answer is B.
AWS is responsible for the security of the cloud infrastructure, including the physical security of the data centers, the security of the
hypervisor, and the security of the networking and storage infrastructure. The customer is responsible for the security of their own
applications and data, including the security of the guest operating system and any applications running on it.
Therefore, the customer must ensure that the operating system of their EC2 instances is patched and up to date with the latest security
patches and updates. AWS provides tools and services to help customers manage their EC2 instances, including the ability to automate
patch management, but it is ultimately the responsibility of the customer to ensure that their instances are secure.
upvoted 2 times

  BENNIELONG 3 months, 3 weeks ago

key word HOST
upvoted 1 times
Question #127 Topic 1

A company is using an Amazon RDS DB instance for an application that is deployed in the AWS Cloud. The company needs regular patching of the
operating system of the server where the DB instance runs.
What is the company's responsibility in this situation, according to the AWS shared responsibility model?

A. Open a support case to obtain administrative access to the server so that the company can patch the DB instance operating system.

B. Open a support case and request that AWS patch the DB instance operating system.

C. Use administrative access to the server, and apply the operating system patches during the regular maintenance window that is defined for
the DB instance.

D. Establish a regular maintenance window that tells AWS when to patch the DB instance operating system.

Correct Answer: B

Community vote distribution

D (67%) B (26%) 8%

  zoeyaj Highly Voted  11 months, 1 week ago

Should it be D?
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_UpgradeDBInstance.Maintenance.html
upvoted 21 times

  Testeurtest 8 months ago

The compagny (admins) access and setup a maintenance window as said in your document so:
C. Use administrative access to the server, and apply the operating system patches during the regular maintenance window that is
defined for the DB instance.
upvoted 3 times

  Esward 11 months ago

as per reference doc. D would the correct answer
upvoted 1 times

  41km 11 months ago

It looks like you're right. Key word is 'regular' I think.
upvoted 2 times

  kamdy Highly Voted  9 months, 1 week ago

Selected Answer: D
Hi Everyone, I have this exam scheduled for next week, and I don't have money to pay for the contributor access. Please anyone that has
have paid for this access should please and please help me send the downloaded PDF to this email address: kamdy72@gmail.com
Thanks in advance and God bless.
upvoted 7 times

  Soumya198725 Most Recent  3 days, 11 hours ago

ChatGPT says Option B
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: D
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_UpgradeDBInstance.Maintenance.html
Answer is D. Establish a regular maintenance window that tells AWS when to patch the DB instance operating system.
upvoted 1 times

  BigDataBB 2 weeks, 3 days ago

Selected Answer: D
The Amazon RDS maintenance window
Every DB instance has a weekly maintenance window during which any system changes are applied. Think of the maintenance window as
an opportunity to control when modifications and software patching occur. If a maintenance event is scheduled for a given week, it's
initiated during the 30-minute maintenance window you identify. Most maintenance events also complete during the 30-minute
maintenance window, although larger maintenance events may take more than 30 minutes to complete.

The 30-minute maintenance window is selected at random from an 8-hour block of time per region. If you don't specify a maintenance
window when you create the DB instance, RDS assigns a 30-minute maintenance window on a randomly selected day of the week.
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: B
According to the AWS shared responsibility model, AWS is responsible for patching and maintaining the underlying infrastructure,
including the operating system of the server where the Amazon RDS DB instance runs. Therefore, the responsibility for patching the
operating system lies with AWS (option B).

The company does not have direct administrative access to the server hosting the DB instance and should not attempt to patch the
operating system themselves. Instead, they can rely on AWS to perform the necessary patching as part of their managed service for
Amazon RDS.
upvoted 1 times
  itben 3 weeks, 1 day ago
Selected Answer: D
you will never get administrative access to servers used by AWS RDS
upvoted 2 times

  Vijaykpm 1 month, 1 week ago

Selected Answer: D
Amazon RDS is a Fully Managed Relational Database
upvoted 2 times

  Jeetesh 1 month, 3 weeks ago

C is the correct answer
upvoted 1 times

  AthenaLui 1 month, 3 weeks ago

Selected Answer: D
Answer is D: Establish a regular maintenance window that tells AWS when to patch the DB instance operating system.

The Amazon RDS maintenance window

Every DB instance has a weekly maintenance window during which any system changes are applied. Think of the maintenance window as
an opportunity to control when modifications and software patching occur.

Some maintenance items require that Amazon RDS take your DB instance offline for a short time. Maintenance items that require a
resource to be offline include required operating system or database patching. Required patching is automatically scheduled only for
patches that are related to security and instance reliability. Such patching occurs infrequently (typically once every few months) and
seldom requires more than a fraction of your maintenance window.

Reference:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_UpgradeDBInstance.Maintenance.html
upvoted 3 times

  nailimvali 2 months, 2 weeks ago

Selected Answer: C
According to the AWS shared responsibility model, the customer is responsible for updating and patching Amazon EC2 instances and
Amazon RDS for Microsoft SQL Server. Therefore, the company is responsible for applying the operating system patches during the
regular maintenance window that is defined for the DB instance (option C).
upvoted 4 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: B
According to the AWS shared responsibility model, the responsibility for patching the operating system of an Amazon RDS DB instance lies
with AWS. AWS manages the underlying infrastructure and operating system, including patching and maintenance. Therefore, the
company should open a support case and request that AWS patch the DB instance operating system. Option B is the correct answer.
upvoted 2 times

  Nolos 3 months ago

Selected Answer: D
The user don't apply the patchs itself. He only needs to define the maintenance window.
upvoted 2 times

  aws2380 3 months, 1 week ago

C is most appropriate of all option:

  Amit__Patel 3 months, 3 weeks ago

Option D is Correct
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: C
In this scenario, the company is responsible for patching the operating system of the server where the DB instance runs. Therefore, the
correct answer is C: Use administrative access to the server, and apply the operating system patches during the regular maintenance
window that is defined for the DB instance. The company should use the administrative access provided by AWS to log in to the server and
apply the necessary operating system patches during the maintenance window defined for the DB instance
upvoted 1 times
  Odba19c2021 4 months ago
Selected Answer: B
Patching the OS is an IaaS responsibility. RDS is a fully managed service. Customer establishes the patching window for the RDS. Thats all.
Answer is B
upvoted 1 times
Question #128 Topic 1

Why is an AWS Well-Architected review a critical part of the cloud design process?

A. A Well-Architected review is mandatory before a workload can run on AWS.

B. A Well-Architected review helps identify design gaps and helps evaluate design decisions and related documents.

C. A Well-Architected review is an audit mechanism that is a part of requirements for service level agreements.

D. A Well-Architected review eliminates the need for ongoing auditing and compliance tests.

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 5 days ago

Selected Answer: B
An AWS Well-Architected review is a voluntary process that allows customers to assess their workloads against AWS architectural best
practices. It helps identify areas where improvements can be made to optimize the workload for factors such as security, reliability,
performance efficiency, cost optimization, and operational excellence.

By conducting a Well-Architected review, organizations can gain insights into potential design gaps, identify areas for improvement, and
ensure that their architecture aligns with AWS best practices. This review process helps validate the architecture's adherence to AWS
guidelines and provides recommendations for optimization, risk mitigation, and cost savings.

The review is not mandatory for workloads to run on AWS, nor does it replace ongoing auditing and compliance requirements. Instead, it
serves as a valuable tool in the cloud design process, assisting organizations in creating robust, well-architected solutions on AWS.
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: B
https://docs.aws.amazon.com/wellarchitected/latest/framework/the-review-process.html
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  JAMTARA 7 months, 3 weeks ago

ashif says answer is a please vote guys
upvoted 2 times

  Agil09 8 months ago

Selected Answer: B
vote for B
upvoted 1 times

  N9 8 months, 1 week ago

Selected Answer: B
B is the answer
upvoted 2 times

  myan2492 9 months ago

D.
NEC has conducted AWS Well-Architected Framework Reviews on various projects to improve the quality of integration. In the
development of Water Counter Cloud Service, we conducted a review at an early stage of the design process. This enabled us to identify
design issues early and resolve them quickly, allowing us to deliver services to Sakai City Waterworks and Sewerage Bureau as quickly as
possible. The AWS Well-Architected Framework is also very useful for training engineers, and is indispensable for improving our technical
capabilities as a system integrator.”
upvoted 1 times

  Istiaque 10 months, 1 week ago

answer is B
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is B
upvoted 2 times
  sumanshu 10 months, 2 weeks ago
Vote for B
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: B
Answer is B.
upvoted 1 times
Question #129 Topic 1

A company implements an Amazon EC2 Auto Scaling policy along with an Application Load Balancer to automatically recover unhealthy
applications that run on
Amazon EC2 instances.
Which pillar of the AWS Well-Architected Framework does this action cover?

A. Security

B. Performance efficiency

C. Operational excellence

D. Reliability

Correct Answer: D
Reference:
https://docs.aws.amazon.com/wellarchitected/latest/reliability-pillar/wellarchitected-reliability-pillar.pdf

Community vote distribution

D (100%)

  man5484 2 weeks, 5 days ago

Selected Answer: D
The reliability pillar focuses on ensuring that workloads are able to operate continuously and with minimal disruption. By using auto
scaling and load balancing, the company can improve the reliability of their applications by automatically recovering from instances that
become unhealthy. This helps maintain a consistent level of service and reduces the impact of failures.
upvoted 1 times

  quadriham 1 month, 2 weeks ago

Hi Everyone, I have this exam scheduled for next week, and I don't have money to pay for the contributor access. Please anyone that has
have paid for this access should please and please help me send the downloaded PDF to this email address: akinsipep@gmail.com
Thanks in advance and God bless.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  JAMTARA 7 months, 3 weeks ago

ashif says answer is c please vote guys
upvoted 2 times

  myan2492 9 months ago

D. Reliability
keyword: to recover unhealthy applications
upvoted 2 times

  myan2492 9 months ago

Reliability: The reliability pillar includes the ability of a system to recover from infrastructure or service disruptions
upvoted 2 times

  Craig92866 9 months, 1 week ago

Selected Answer: D
Why isn't the answer Performance Efficiency?

Even though the question mentions scaling, it didn't specifically state vertical or horizontal. Vertical is an example of Performance
Efficiency and horizontal is an example of Reliability. Question said scaling is used to recover unhealthy applications, so horizontal scaling
is implied. Horizontal scaling and Application Load Balancer fall under Reliability.
upvoted 4 times

  kamdy 9 months, 1 week ago

  sumanshu 10 months, 2 weeks ago

Vote for D
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: D
Answer is D.
upvoted 1 times

  Esward 11 months ago

AWS Well-Architected Framework: Reliability
Automatically recover from failure
Test recovery procedures
Scale horizontally to increase aggregate workload availability
Stop guessing capacity
Manage change in automation
upvoted 1 times

  NawlinsTaz 11 months ago

Selected Answer: D
Reliability is correct
upvoted 2 times

  ChymKuBoy 1 year ago

Selected Answer: D
Reliability: The reliability pillar includes the ability of a system to recover from infrastructure or service disruptions
upvoted 2 times

  lulzsec2019 1 year ago

Why not Operational Excellence? As this is not about high availability (reliability) and more on operation.
upvoted 2 times

  tavy 12 months ago

because of 'restore sick apps', check the top comment
upvoted 1 times

  korean_kang 1 year, 6 months ago

Why not B ?
upvoted 2 times

  dekov1 1 year, 6 months ago

3- Reliability: The reliability pillar includes the ability of a system to recover from infrastructure or service disruptions
upvoted 4 times
Question #130 Topic 1

Which AWS Cloud benefit is shown by an architecture's ability to withstand failures with minimal downtime?

A. Agility

B. Elasticity

C. Scalability

D. High availability

Correct Answer: D

Community vote distribution

D (100%)

  ydnah2 Highly Voted  1 year, 8 months ago

D is right. High availability = minimal downtime = recovery quickly from failure. Agility is about how quickly something is deployed.
https://aws.amazon.com/marketplace/solutions/infrastructure-software/high-availability
upvoted 10 times

  myan2492 9 months ago

D. high availability = minimal downtime = recovery quickly from failure

agility= how quickly smt is deployed/ speed

upvoted 1 times

  man5484 Most Recent  2 weeks, 5 days ago

Selected Answer: D
By building a highly available architecture, organizations can minimize or eliminate the impact of failures on their applications and
services. This is achieved through strategies such as redundancy, fault tolerance, and automatic failover. When failures occur, the
architecture is designed to quickly and seamlessly recover and continue providing services to users, thereby minimizing or avoiding any
downtime.
upvoted 1 times

  vajra23 1 month, 2 weeks ago

Selected Answer: D
D is right.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - no because it’s quickly adapting to changing business needs

B - no because it’s about dynamically provision/de-provision resources

C - no because it’s about increasing workloads to handle increasing workloads

D - yes
upvoted 1 times

  MehdiMasri 5 months, 3 weeks ago

Selected Answer: D
talking about availability clearly so D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  blasquii 8 months, 1 week ago

Selected Answer: D
Answer is D.
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is D
upvoted 1 times
  sumanshu 10 months, 2 weeks ago
Vote for D
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: D
Answer is D.
upvoted 1 times

  H0n3y 1 year, 8 months ago

Should be A.
upvoted 2 times

  Prates_BR 11 months ago

For practitioner exam, when you see agility thing about speed.
upvoted 3 times
Question #131 Topic 1

Under the AWS shared responsibility model, which task is the customer's responsibility when managing AWS Lambda functions?

A. Creating versions of Lambda functions

B. Maintaining server and operating systems

C. Scaling Lambda resources according to demand

D. Updating the Lambda runtime environment

Correct Answer: A

Community vote distribution

A (74%) D (22%) 4%

  yogat78735 Highly Voted  1 year, 10 months ago

I think it's A
upvoted 42 times

  eww_cybr 1 year, 8 months ago

Lambda function scaling is done by AWS - https://docs.aws.amazon.com/lambda/latest/dg/invocation-scaling.html hence C is NOT
correct
upvoted 5 times

  Joggy12 1 year, 9 months ago

B and C cannot be Customer responsibility so A is the only option so I would say Answer is A
D is a Shared responsibility: "Typically, no action is required to pick up the latest patches for supported Lambda runtimes, but
sometimes action might be required to test patches before they are deployed (for example, known incompatible runtime patches). If
any action is required by customers, Lambda will contact them through the Personal Health Dashboard, through the AWS account's
email, or through other means, with the specific actions required to be taken.
Customers can use other programming languages in Lambda by implementing a custom runtime. For
custom runtimes, maintenance of the runtime becomes the customer's responsibility, including making sure that the custom runtime
includes the latest security patches"
upvoted 12 times

  Areo Highly Voted  1 year, 9 months ago

C? Lambda is serverless compute service, means you dont need to provision or scale resources. I wish the guy who bet C can pass the
exam.
upvoted 12 times

  Areo 1 year, 9 months ago

A, Lambda will create version of your function each time that you publish the function, and you can either create version of your
functions via Lambda console. So this is not only the responsibility of AWS or Customer.
D is correct per https://docs.aws.amazon.com/lambda/latest/dg/runtimes-modify.html
upvoted 4 times

  Craig92866 9 months, 1 week ago

No, it's not D. That document does mention 'update' but it's talking about updating the Lambda config, not the underlining Lambda
runtime.
upvoted 1 times

  4ss0 1 year, 5 months ago

"...which allow Lambda to delegate the runtime startup to your script..." so it's not D since is a shared responsability it depends if
the user wants to have it or leave it to Lmabda
upvoted 2 times

  Gulsah Most Recent  2 weeks, 3 days ago

Selected Answer: A
https://docs.aws.amazon.com/lambda/latest/dg/lambda-concurrency.html
A. Creating versions of Lambda functions, is a customer responsibility because it involves managing and deploying the code for Lambda
functions.
Not B - AWS Lambda is a serverless compute service, AWS handles the maintenance.
Not C - AWS Lambda automatically scales the resources according to demand.
Not D - AWS manages the runtime environment for Lambda functions.
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: A
By creating versions or aliases, the customer can have control over the different iterations of their Lambda functions and manage the
deployment and testing of new code versions without impacting the production environment. This allows for better control and
management of the function's lifecycle.
upvoted 2 times
  yogitharevathi 3 weeks, 1 day ago
It's A
https://www.bing.com/search?
pglt=41&q=Under+the+AWS+shared+responsibility+model%2C+which+task+is+the+customer%27s+responsibility+when+managing+AWS+L
ambda+functions%3F&cvid=4364822d013d4bd3a504dbf5ee9a1785&aqs=edge..69i57j69i11004.1439j0j1&FORM=ANNAB1&PC=U531
upvoted 2 times

  Ravi__Sankar 3 weeks, 5 days ago

A. Creating versions of Lambda functions

AWS Lambda is a serverless computing service where the underlying infrastructure and server management are handled by AWS. The
shared responsibility model dictates that AWS is responsible for the operational aspects of the Lambda service, such as scaling, patching
the underlying infrastructure, and managing the runtime environment.

However, the customer is responsible for the configuration and management of their specific Lambda functions. This includes creating
versions of Lambda functions, which allows for safe and controlled updates to the function's code and configuration. Creating versions
enables the customer to manage and deploy changes to their Lambda functions without affecting the production environment.
upvoted 3 times

  HC89 1 month ago

Selected Answer: A
A. Creating versions of Lambda functions

AWS Lambda is a serverless compute service, so customers don't have to worry about maintaining servers or operating systems (B),
scaling resources according to demand (C), or updating the runtime environment (D). Those tasks are managed by AWS.

However, customers are responsible for the code they run in Lambda functions, which includes version management. So creating versions
of Lambda functions (A) is part of the customer's responsibility. This allows customers to manage and invoke different versions of a
function, which can be critical for development, testing, and deployment workflows.
upvoted 2 times

  Odba19c2021 2 months ago

Selected Answer: A
The answer is (A). Below is why I do not think it is (D).
https://docs.aws.amazon.com/lambda/latest/dg/runtimes-update.html
upvoted 2 times

  Jackie_Tu 2 months, 3 weeks ago

Selected Answer: A
Customer will use Lamda Function to handle business logic, maintain the version of coding to fit well with business demand.
upvoted 2 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: D
Under the AWS shared responsibility model, the customer is responsible for the code and configuration of their AWS Lambda functions,
including creating versions of Lambda functions and updating the Lambda runtime environment.

Therefore, the answer is D. Updating the Lambda runtime environment.

AWS manages the underlying infrastructure, including server and operating systems, as well as scaling Lambda resources according to
demand.
upvoted 1 times

  Guru4Cloud 4 months ago

Selected Answer: D
Under the AWS shared responsibility model, the customer is responsible for writing and deploying the code for their Lambda functions, as
well as configuring and managing access control and security settings. Therefore, the correct answer is not listed among the options.

However, of the given options, the task that is closest to the customer's responsibility when managing AWS Lambda functions is option D,
updating the Lambda runtime environment. AWS is responsible for maintaining the underlying infrastructure and runtime environment,
including security updates and patching, but customers are responsible for updating the Lambda runtime version for their functions to
take advantage of new features or performance improvements.
upvoted 2 times

  saifee_khan 4 months ago

Following is the ChatGpt response:

No, customers cannot update the Lambda runtime environment directly. Lambda runtime environments are managed by AWS and are
designed to provide a secure and isolated execution environment for Lambda functions.
When you create a Lambda function, you can choose a runtime environment from a list of supported runtimes, such as Node.js, Python,
Java, and C#. AWS manages the runtime environment and ensures that it is up to date with security patches and other updates.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - yes

B - no, AWS

C - no, AWS

D - no, AWS
upvoted 1 times

  alvalv2006 4 months, 2 weeks ago

A is correct answer. If you choose any other option, that means that "Creating versions of Lambda functions" should be a responsibility of
AWS, what is wrong.
upvoted 2 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: A
The customer is responsible for creating versions of Lambda functions, which can be used to manage updates and changes to the
function code.
upvoted 3 times

  Momo2023 4 months, 4 weeks ago

Under the AWS shared responsibility model, when managing AWS Lambda functions, the customer is responsible for creating versions of
Lambda functions.

The AWS shared responsibility model defines which security and compliance tasks are the responsibility of AWS and which tasks are the
responsibility of the customer. Under this model, AWS is responsible for the security of the underlying infrastructure that supports the
AWS services, while the customer is responsible for the security of the applications and data they run on the AWS services.

For AWS Lambda, AWS is responsible for managing the underlying compute infrastructure, including server and operating systems,
scaling of resources, and updating the Lambda runtime environment. However, the customer is responsible for creating and managing
the code and configurations of their Lambda functions,
upvoted 1 times

  Amycert 5 months ago

Selected Answer: A
The customer is obviously responsible for creating versions
upvoted 2 times
Question #132 Topic 1

What does the AWS Concierge Support team provide?

A. A technical expert dedicated to the user

B. A primary point of contact for AWS Billing and AWS Support

C. A partner to help provide scaling guidance for an event launch

D. A dedicated AWS staff member who reviews the user's application architecture

Correct Answer: A

Community vote distribution

B (100%)

  zoeyaj Highly Voted  11 months, 1 week ago

Selected Answer: B
The Support Concierge Team are AWS billing and account experts that specialize in working with enterprise accounts.
upvoted 10 times

  sri073 Most Recent  2 weeks, 5 days ago

Selected Answer: B
A concierge is an individual or company specialising in personal assistance
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: B
A primary point of contact for AWS Billing and AWS Support: The Concierge Support team acts as a single point of contact for customers,
assisting them with their billing inquiries and coordinating support-related activities. They help customers navigate through AWS services
and offerings, ensuring a smooth experience and addressing any questions or concerns related to billing and support.
upvoted 1 times

  Coffeelander 1 month, 1 week ago

Once again the moderator or question compiler is a chutiya
upvoted 3 times

  Guru4Cloud 4 months ago

Selected Answer: B
The AWS Concierge Support team provides a primary point of contact for AWS Billing and AWS Support, so the correct answer is B.
upvoted 2 times

  Guru4Cloud 3 months, 3 weeks ago

The AWS Concierge Support team provides a technical expert dedicated to the user. This expert acts as a primary point of contact for
AWS Billing and AWS Support, and is available to provide personalized assistance with AWS service selection, architecture review, and
optimization recommendations. While the Concierge Support team may offer advice on scaling for an event launch, their primary focus
is on providing technical support and guidance to AWS customers.
upvoted 3 times

  Krish_Kaustub 4 months, 3 weeks ago

Selected Answer: B
AWS Enterprise Support Plan (24/7)
====================================
Concierge Support Team (for billing and account best practices)
upvoted 1 times

  harisene 5 months ago

Selected Answer: B
B is the answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  brks 7 months, 1 week ago

They will quickly and efficiently assist you with your billing and account inquiries, and work with you to implement billing and account best
practices so that you can focus on what matters: running your business.
upvoted 1 times
  BloodyMery 7 months, 2 weeks ago
Your Amazon Web Services Concierge is a senior customer service agent who is assigned to your account when you subscribe to an
Enterprise or qualified Reseller Support plan. This Concierge agent is your primary point of contact for billing or account inquiries; when
you don’t know whom to call, they will find the right people to help. In most cases, the Amazon Web Services Concierge is available during
regular business hours in your headquarters’ geography. The best way to contact the Amazon Web Services Concierge is through the
Amazon Web Services Support Center.
upvoted 1 times

  Rmnx 7 months, 2 weeks ago

Selected Answer: B
If there were 2 answers then it should be A&B. However, it would be B in this case though language is bit tricky as both technical and
billing support is provided. Refer to below

https://aws.amazon.com/premiumsupport/plans/enterprise/
upvoted 2 times

  myan2492 9 months ago

B.
Billing and account management
upvoted 1 times

  Shaychay 9 months, 1 week ago

Selected Answer: B
http://www.etltechblog.com/2020/05/27-aws-support-concierge.html
upvoted 1 times

  kamdy 9 months, 1 week ago

Selected Answer: B
Hi Everyone, I have this exam scheduled for next week, and I don't have money to pay for the contributor access. Please anyone that has
have paid for this access should please and please help me send the downloaded PDF to this email address: kamdy72@gmail.com
Thanks in advance and God bless.
upvoted 1 times

  ravi2023 5 months, 2 weeks ago

sent email
upvoted 1 times

  ravi2023 5 months, 2 weeks ago

about exam, not the pdf, im using free
upvoted 1 times

  JAMTARA 7 months, 3 weeks ago

once you get please share with me as well god bless you kamdy I'm also poor
upvoted 1 times

  Jeyarajmohan 10 months, 1 week ago

Selected Answer: B
https://www.amazonaws.cn/en/support/features/
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  Ahmed_Root 10 months, 3 weeks ago

Selected Answer: B
it should be related to this text:
"Your Amazon Web Services Concierge is a senior customer service agent who is assigned to your account when you subscribe to an
Enterprise or qualified Reseller Support plan. This Concierge agent is your primary point of contact for billing or account inquiries; when
you don’t know whom to call, they will find the right people to help."
found on https://www.amazonaws.cn/en/support/features/
upvoted 2 times
Question #133 Topic 1

A company needs to generate reports that can break down cloud costs by product, by company-defined tags, and by hour, day, and month.
Which AWS tool should the company use to meet these requirements?

A. Reserved Instance utilization and coverage reports

B. Savings Plans utilization reports

C. AWS Budgets reports

D. AWS Cost and Usage Reports

Correct Answer: D

Community vote distribution

D (100%)

  N9 Highly Voted  8 months, 1 week ago

Selected Answer: D
Price calculator - for cost estimation
Cost explorer - for current and past cost and usage in graphs
Cost and usage reports - for reports
upvoted 9 times

  man5484 Most Recent  2 weeks, 5 days ago

Selected Answer: D
AWS Cost and Usage Reports provide detailed information on the usage and costs of AWS services in an account. These reports can be
customized to break down costs by various dimensions such as product, tags, and time intervals (hour, day, month, etc.). By configuring
the reports with the desired parameters, the company can generate the required cost breakdown reports to analyze and track their cloud
spending.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  myan2492 9 months ago

D. Cost and usage report
AWS Cost and Usage Reports tracks your AWS usage and provides estimated charges associated with your account. Each report contains
line items for each unique combination of AWS products, usage type, and operation that you use in your AWS account. You can customize
the AWS Cost and Usage Reports to aggregate the information either by the hour, day, or month.
upvoted 2 times

  Istiaque 10 months, 1 week ago

Answer is D
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for D
upvoted 1 times

  bilel500 10 months, 4 weeks ago

Selected Answer: D
Answer is D.
upvoted 1 times
Question #134 Topic 1

A company has a serverless application that includes an Amazon API Gateway API, an AWS Lambda function, and an Amazon DynamoDB
database.
Which AWS service can the company use to trace user requests as they move through the application's components?

A. AWS CloudTrail

B. Amazon CloudWatch

C. Amazon Inspector

D. AWS X-Ray

Correct Answer: D

Community vote distribution

D (91%) 9%

  jellybiscuit Highly Voted  9 months, 2 weeks ago

Selected Answer: D
X-ray - https://aws.amazon.com/xray/

CloudTrail - audit
Cloudwatch - monitor
Inspector - vulnerability management
X-Ray - tracing
upvoted 102 times

  princenuel 7 months, 3 weeks ago

thanks for this concise and precise breakdown
upvoted 10 times

  JAMTARA 7 months, 3 weeks ago

thanks behen
upvoted 3 times

  Jay1234_ 9 months, 1 week ago

great breakdown
upvoted 4 times

  Craig92866 9 months, 1 week ago

Perfect overview. Thanks!
upvoted 3 times

  man5484 Most Recent  2 weeks, 5 days ago

Selected Answer: D
AWS X-Ray is a service that helps developers analyze and debug distributed applications. It provides end-to-end visibility into how
requests flow through an application's components, including API Gateway, Lambda functions, and DynamoDB. With X-Ray, the company
can trace user requests as they move through the different components of their serverless application, helping them identify performance
bottlenecks, troubleshoot issues, and optimize the application's performance.
upvoted 2 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: D
AWS X-Ray provides a complete view of requests as they travel through your application and filters visual data across payloads, functions,
traces, services, APIs, and more with no-code and low-code motions.
https://aws.amazon.com/xray/?nc2=type_a
upvoted 3 times

  [Removed] 2 months, 3 weeks ago

Selected Answer: D
AWS X-ray
upvoted 2 times

  BieLey 3 months, 1 week ago

Selected Answer: D
Memory Aid:
Ray Tracing
upvoted 2 times
  Amit__Patel 3 months, 3 weeks ago
Selected Answer: D
* The AWS service that can be used to trace user requests as they move through the application's components is D. AWS X-Ray.

AWS X-Ray allows you to trace user requests as they travel through your serverless application's components, including Amazon API
Gateway APIs, AWS Lambda functions, and Amazon DynamoDB databases. With X-Ray, you can visualize and debug the requests, identify
performance bottlenecks, and analyze errors.

* AWS CloudTrail is a service that records AWS API calls and events for audit and compliance purposes. Amazon CloudWatch is a
monitoring service for AWS resources and the applications you run on them. Amazon Inspector is a security assessment service that helps
you test the security of your applications.
upvoted 3 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: D
D. AWS X-Ray.

AWS X-Ray is a service that helps developers analyze and debug production, distributed applications, such as those built using a
microservices architecture. With X-Ray, you can understand how your application and its underlying services are performing to identify
and troubleshoot the root cause of performance issues and errors. It allows you to trace requests as they move through your application
and visualize the components and services that are involved in processing those requests
upvoted 2 times

  AWSOXY 3 months, 4 weeks ago

AWS X-Ray makes it easy for developers to analyze the behavior of their distributed applications by providing request tracing, exception
collection, and profiling capabilities.
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: D
The AWS service that the company can use to trace user requests as they move through the application's components is D. AWS X-Ray.

AWS X-Ray is a service that allows developers to analyze and debug distributed applications, such as those built using Amazon API
Gateway, AWS Lambda, and Amazon DynamoDB. X-Ray provides a visual representation of the application's components and their
interactions, allowing developers to trace user requests as they move through the application and identify performance issues or errors.

By using X-Ray, the company can view a complete end-to-end trace of user requests, including the time taken by each component, the
number of requests processed, and any errors or exceptions encountered. X-Ray also provides insights into how resources are used by the
application, which can help the company optimize performance and reduce costs.
upvoted 2 times

  Krish_Kaustub 4 months, 3 weeks ago

"Trace" is the key word.
As per https://docs.aws.amazon.com/xray/latest/devguide/aws-xray.html ,
For any traced request to your application, you can see detailed information not only about the request and response, but also about calls
that your application makes to downstream AWS resources, microservices, databases, and web APIs.
upvoted 1 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: D
AWS X ray
upvoted 1 times

  Momo2023 4 months, 4 weeks ago

The AWS service that the company can use to trace user requests as they move through the components of the serverless application is
AWS X-Ray.

AWS X-Ray is a distributed tracing system that helps developers analyze and debug distributed applications, such as those built using AWS
Lambda, Amazon API Gateway, and Amazon DynamoDB. With X-Ray, the company can visualize the flow of requests through their
application and identify performance bottlenecks or errors.
CHATGPT
upvoted 2 times

  Amycert 5 months ago

Selected Answer: D
D according to chatgpt
upvoted 3 times

  noahsark 5 months, 1 week ago

Selected Answer: D
AWS X-Ray
https://aws.amazon.com/xray/
upvoted 3 times
  Qadir 6 months, 1 week ago
AWS X-Ray
It provides a complete view of requests as they travel through your application and filters visual data across payloads, functions, traces,
services, APIs, and more with no-code and low-code motions.
https://aws.amazon.com/xray/#:~:text=AWS%20X%2DRay%20provides%20a,code%20and%20low%2Dcode%20motions.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  brks 7 months, 1 week ago

A company needs to set up a petabyte-scale data warehouse in the AWS Cloud.

Which AWS service will meet this requirement?

A. Amazon DynamoDB

B. Amazon RDS

C. Amazon Redshift

D. Amazon ElastiCache

Correct Answer: C

Community vote distribution

C (100%)

  CarrieJ Highly Voted  11 months ago

Amazon Redshift is a fast, fully managed, petabyte-scale data warehouse service that makes it simple and cost-effective to efficiently
analyze all your data using your existing business intelligence tools.
upvoted 7 times

  man5484 Most Recent  2 weeks, 5 days ago

Selected Answer: C
Amazon Redshift is a fully managed data warehousing service in the AWS Cloud. It is specifically designed to handle large-scale data
analytics workloads, including petabyte-scale data warehouses. With Redshift, the company can store and analyze vast amounts of data
efficiently and cost-effectively. It provides fast query performance, scalability, and easy integration with other AWS services and tools for
data analytics and business intelligence.
upvoted 1 times

  sri073 3 weeks ago

Selected Answer: C
petadata wareshouse----redshift
upvoted 1 times

  Temptation 1 month, 2 weeks ago

Selected Answer: C
Redshift
upvoted 1 times

  Patzi 4 months, 1 week ago

Selected Answer: C
Redshift
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Aakuu 8 months, 3 weeks ago

Data warehouse is the key - C
upvoted 1 times

  myan2492 9 months ago

C. Redshift --data warehouse
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is C
upvoted 1 times

  IvanKhru 10 months, 2 weeks ago

Selected Answer: C
C is the answer
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for C
upvoted 2 times

  bilel500 10 months, 4 weeks ago

Selected Answer: C
Answer is C.
upvoted 1 times

Question #136 Topic 1

Which AWS service is always provided at no charge?

A. Amazon S3

B. AWS Identity and Access Management (IAM)

C. Elastic Load Balancers

D. AWS WAF

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 5 days ago

Selected Answer: B
AWS Identity and Access Management (IAM) is always provided at no charge. IAM allows users to manage access and permissions to AWS
resources, such as creating and managing user accounts, groups, roles, and policies. While other AWS services may have associated costs
based on their usage, IAM itself does not incur any charges.
upvoted 1 times

  danielolasupo02 5 months, 2 weeks ago

Amazin s3 - unlimited storage but charges
AWS IAM - free account management service
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: B
From: https://aws.amazon.com/premiumsupport/knowledge-center/iam-
intro/#:~:text=You%20can%20interact%20with%20IAM,offered%20at%20no%20additional%20charge.

"You can interact with IAM through the web-based IAM console, the AWS Command Line Interface, or the AWS API or SDKs. IAM is offered
at no additional charge. "
upvoted 3 times

  Istiaque 10 months, 1 week ago

Answer is b
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times
Question #137 Topic 1

A company needs to design an AWS disaster recovery plan to cover multiple geographic areas.
Which action will meet this requirement?

A. Configure multiple AWS accounts.

B. Configure the architecture across multiple Availability Zones in an AWS Region.

C. Configure the architecture across multiple AWS Regions.

D. Configure the architecture among many edge locations.

Correct Answer: C

Community vote distribution

C (83%) B (17%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: C
From: https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-the-cloud.html

"In addition to data, you must also back up the configuration and infrastructure necessary to redeploy your workload and meet your
Recovery Time Objective (RTO). AWS CloudFormation provides Infrastructure as Code (IaC), and enables you to define all of the AWS
resources in your workload so you can reliably deploy and redeploy to multiple AWS accounts and AWS Regions. "
upvoted 8 times

  Gulsah Most Recent  2 weeks, 3 days ago

Selected Answer: C
https://aws.amazon.com/blogs/architecture/implementing-multi-region-disaster-recovery-using-event-driven-architecture/
https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options-in-the-cloud.html
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: C
To design a disaster recovery plan that covers multiple geographic areas, the company should configure the architecture across multiple
AWS Regions. AWS Regions are separate geographical locations where AWS data centers are located. By replicating the infrastructure and
data across multiple AWS Regions, the company ensures that in the event of a disaster or disruption in one Region, the workload can be
quickly and seamlessly shifted to another Region to maintain business continuity. This approach provides geographic redundancy and
enhances the overall resilience of the infrastructure.
upvoted 2 times

  Oripresa 2 months ago

Selected Answer: B
con la respuesta B cumples la premisa de disponibilidad ante fallos geograficos. No es necesario reproducirlo en regiones
upvoted 2 times

  KinngMarl_ 2 months ago

I vote for C as you you need a recovery plan in multiple AWS Region but so doing you covering all the Region of AWS
upvoted 1 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: C
The action that will meet the requirement of designing an AWS disaster recovery plan to cover multiple geographic areas is C. Configure
the architecture across multiple AWS Regions.

Configuring the architecture across multiple AWS Regions will ensure that if a disaster occurs in one region, the application can failover to
another region. This approach provides geographic diversity and redundancy for disaster recovery purposes.
upvoted 2 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The best action to meet the requirement of designing an AWS disaster recovery plan to cover multiple geographic areas is to configure
the architecture across multiple AWS Regions. This will ensure that the company's data and applications are replicated and available in
multiple geographic locations, which will minimize downtime and ensure business continuity in the event of a disaster.

Therefore, option C (Configure the architecture across multiple AWS Regions) is the most suitable action to meet the requirement of
designing an AWS disaster recovery plan to cover multiple geographic areas.
upvoted 2 times
  kumaran1000001 4 months, 2 weeks ago
A - does not address DR

B - good for HA but not for DR

C - yes

D - not a DR solution but a content delivery solution

upvoted 4 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
To meet the requirement of designing an AWS disaster recovery plan to cover multiple geographic areas, the best option is C. Configure
the architecture across multiple AWS Regions.

AWS Regions are geographically separated locations, each with multiple Availability Zones (AZs), that are designed to be isolated from
each other. Deploying an application across multiple Regions can help provide disaster recovery and business continuity in the event of a
natural disaster or other regional disruption. By deploying resources in multiple Regions, the company can ensure that if one Region
becomes unavailable, the application can still be accessed from another Region.
upvoted 3 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: C
Configure the architecture across multiple AWS Regions for Disaster Recovery.
upvoted 2 times

  Stein_39 4 months, 3 weeks ago

Selected Answer: C
C is right Ans
upvoted 2 times

  Amycert 5 months ago

Selected Answer: C
Obviously C, and also chatgpt confirmed
upvoted 2 times

  noahsark 5 months, 1 week ago

Selected Answer: C
Configure the architecture across multiple AWS Regions.
https://aws.amazon.com/about-aws/global-infrastructure/regions_az/?p=ngi&loc=2
upvoted 2 times

  wabosi 5 months, 1 week ago

Selected Answer: C
I vote for C
AZ -> High Availability
Multi Region -> Disaster Recovery
upvoted 4 times

  dattatek 5 months, 1 week ago

Answer C

Seems like a lot of people don’t understand the basic functionality of cloud and geographic if they answered anything else
upvoted 2 times

  alexandercamachop 5 months, 2 weeks ago

Selected Answer: C
Availability Zones are all located within the same region (same geographical area)
The only one that has different geographical locations are the regions.
Document: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-regions-availability-zones.html
upvoted 2 times

  wooyourdaddy 5 months, 2 weeks ago

Selected Answer: C
C. Configure the architecture across multiple AWS Regions.

Multi-AZ strategy
Every AWS Region consists of multiple Availability Zones (AZs). Each AZ consists of one or more data centers, located a separate and
distinct geographic location. This significantly reduces the risk of a single event impacting more than one AZ. Therefore, if you’re
designing a DR strategy to withstand events such as power outages, flooding, and other other localized disruptions, then using a Multi-AZ
DR strategy within an AWS Region can provide the protection you need.

Multi-Region strategy
AWS provides multiple resources to enable a multi-Region approach for your workload. This provides business assurance against events
of sufficient scope that can impact multiple data centers across separate and distinct locations. For most examples in this blog post, we
use a multi-Region approach to demonstrate DR strategies. But, you can also use these for Multi-AZ strategies or hybrid (on-premises
workload/cloud recovery) strategies.
upvoted 2 times
Question #138 Topic 1

Which of the following is a benefit of moving from an on-premises data center to the AWS Cloud?

A. Compute instances can be launched and terminated as needed to optimize costs.

B. Compute costs can be viewed in the AWS Billing and Cost Management console.

C. Users retain full administrative access to their compute instances.

D. Users can optimize costs by permanently running enough instances at peak load.

Correct Answer: A

Community vote distribution

A (86%) 14%

  man5484 2 weeks, 5 days ago

Selected Answer: A
One of the benefits of moving from an on-premises data center to the AWS Cloud is the ability to leverage the elasticity and scalability of
cloud computing. With AWS, users can launch and terminate compute instances (such as Amazon EC2 instances) as needed based on the
demand and workload requirements. This allows for optimized cost management, as users only pay for the resources they actually use
and can scale up or down to match the workload. This flexibility in resource provisioning is a key advantage of the AWS Cloud.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - yes

B - basic feature

C - not true

D - not a best practice

upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  SmartLearner 8 months, 3 weeks ago

Selected Answer: A
A is right.
upvoted 2 times

  myan2492 9 months ago

A. true
upvoted 1 times

  kamdy 9 months, 1 week ago

Selected Answer: A
I have this exam scheduled for next week, and I don't have money to pay for the contributor access. Please anyone that has have paid for
this access should please and please help me send the downloaded PDF to this email address: kamdy72@gmail.com
Thanks in advance and God bless.
upvoted 1 times

  JAMTARA 7 months, 3 weeks ago

spam account please report cheap people
upvoted 1 times

  isnotxy1202 9 months, 1 week ago

could you plz share it if you have received
upvoted 1 times

  kamdy 9 months, 1 week ago

Selected Answer: A
Hi Everyone, I have this exam scheduled for next week, and I don't have money to pay for the contributor access. Please anyone that has
have paid for this access should please and please help me send the downloaded PDF to this email address: kamdy72@gmail.com
Thanks in advance and God bless.
upvoted 1 times
  FR_Wolfman 10 months ago
Selected Answer: A
Answer is A
upvoted 1 times

  Istiaque 10 months, 1 week ago

Answer is A
upvoted 1 times

  jcrzj 10 months, 2 weeks ago

Selected Answer: A
Best fit
upvoted 1 times

  anagy11 10 months, 2 weeks ago

Selected Answer: A
I think A is the most suitable answer, as it' about the flexibility only AWS as a cloud provider provides. Of course you can provision and
terminate your compute resources as an on-premises data center as well, but it takes much more manual work and time. In AWS, it's just
a few clicks.
upvoted 2 times

  Craig92866 9 months, 1 week ago

Well put.
upvoted 1 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: A
A is correct
upvoted 2 times

  adamwella 10 months, 2 weeks ago

The best answer is A
upvoted 2 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 2 times

  30Miles 11 months ago

Selected Answer: B
why B is Wrong?
upvoted 2 times

  jellybiscuit 9 months, 2 weeks ago

B is not wrong.
A is just a better, more compelling benefit.
upvoted 3 times

  onejason 10 months, 4 weeks ago

on-premises data center also offer billing information
upvoted 1 times

  Prates_BR 11 months ago

B is no wrong. The point is, A is better fit about the question. I mean, for practitioner exam, most of time COST is the best option if
available.
upvoted 4 times
Question #139 Topic 1

In which ways does the AWS Cloud offer lower total cost of ownership (TCO) of computing resources than on-premises data centers? (Choose
two.)

A. AWS replaces upfront capital expenditures with pay-as-you-go costs.

B. AWS is designed for high availability, which eliminates user downtime.

C. AWS eliminates the need for on-premises IT staff.

D. AWS uses economies of scale to continually reduce prices.

E. AWS offers a single pricing model for Amazon EC2 instances.

Correct Answer: AC

Community vote distribution

AD (86%) 10%

  Gulsah 2 weeks, 3 days ago

Selected Answer: AD
C is not correct. While the AWS Cloud reduces (not eliminates) the need for on-premises staff to manage and maintain infrastructure,
organizations still require skilled personnel to manage and optimize their AWS resources and configurations. The roles and
responsibilities may shift, but the need for IT staff remains.
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: AD
A. AWS replaces upfront capital expenditures with pay-as-you-go costs: With AWS, users pay for the computing resources they actually use
on a pay-as-you-go basis, eliminating the need for large upfront capital expenditures for hardware and infrastructure.

D. AWS uses economies of scale to continually reduce prices: AWS operates at a large scale, serving millions of customers, which allows
them to benefit from economies of scale. As a result, AWS continually reduces prices for its services, providing cost savings for customers.
upvoted 2 times

  starsea 2 months, 2 weeks ago

Selected Answer: AD
C is not the right answer since you most likely still need IT staff on-premise.
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: AD
The correct options are:

A. AWS replaces upfront capital expenditures with pay-as-you-go costs.

D. AWS uses economies of scale to continually reduce prices.

Explanation:

AWS offers lower total cost of ownership (TCO) than on-premises data centers in several ways. First, AWS replaces upfront capital
expenditures with pay-as-you-go costs. Instead of purchasing and maintaining hardware, software, and facilities, users pay only for the
computing resources they actually use. Second, AWS uses economies of scale to continually reduce prices, resulting in lower costs for
users over time. This is possible because AWS has a large global infrastructure, which enables it to negotiate better prices for hardware
and software, and to spread the costs of its operations over a large number of customers. By contrast, on-premises data centers require
significant upfront investments, and users must bear the costs of maintaining and upgrading their equipment and facilities over time.
upvoted 3 times

  temis31 3 months ago

Selected Answer: AD
There are 3 options correct
upvoted 3 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: AD
The two ways in which the AWS Cloud offers a lower total cost of ownership (TCO) of computing resources than on-premises data centers
are:

A. AWS replaces upfront capital expenditures with pay-as-you-go costs, allowing users to pay only for the computing resources they
actually use, without having to make an upfront capital investment in hardware and software.
D. AWS uses economies of scale to continually reduce prices, passing on the savings to customers. This allows customers to benefit from
lower costs over time, without having to negotiate lower prices or renegotiate contracts.
upvoted 2 times
  poiuytrewq123456 4 months, 1 week ago
Selected Answer: AD
C not true - staff still needed to admin AWS
upvoted 3 times

  kumaran1000001 4 months, 2 weeks ago

A - yes. fixed costs are almost eliminated

B - not directly related to cost reduction

C - not true

D - yes

E - no
upvoted 2 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: AD
The two ways in which the AWS Cloud offers lower total cost of ownership (TCO) of computing resources than on-premises data centers
are:

A. AWS replaces upfront capital expenditures with pay-as-you-go costs: With AWS, users only pay for what they use, without the need for
upfront investments in hardware, facilities, and maintenance. This pay-as-you-go model can result in significant cost savings, especially for
organizations that have unpredictable or variable workloads.

D. AWS uses economies of scale to continually reduce prices: AWS operates at a large scale, and as a result, they can offer computing
resources at lower prices than on-premises data centers. Additionally, AWS regularly reduces prices for its services as it gains more
customers and achieves greater economies of scale.
upvoted 2 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: AD
AWS offers a pay-as-you-go pricing model that allows users to avoid upfront capital expenditures and pay only for the resources they use,
reducing the total cost of ownership (TCO) compared to on-premises data centers. Additionally, AWS is designed to take advantage of
economies of scale, enabling the company to continually reduce prices and further lower TCO for customers.
upvoted 2 times

  NeonUnderG 4 months, 3 weeks ago

I think A,C

D is also a valid response however, just my opinion that A and C have more merit and value to the customer as key word is 'continually'
which made me think a bit...
upvoted 1 times

  harisene 5 months ago

Selected Answer: AD
A and D
upvoted 2 times

  DuboisNicolasDuclair 6 months, 1 week ago

C is wrong AWS don’t eliminate the need to have on premise staff
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 2 times

  Jatinbunkar 6 months, 3 weeks ago

Selected Answer: AC
THERE ARE 3 OPTIONS CORRECT
upvoted 1 times

  shenan 6 months, 3 weeks ago

C,D pass to the question
upvoted 2 times

  Testeurtest 8 months ago

Selected Answer: AD
Advantages of the Cloud :
> Translation of IT cost from Capital Expense to Operational Expense
No need to maintain and apply maintenance on the datacenter
Stop guessing capacity
> Economy at scale
Rapidity and Agility
Go global in minutes
upvoted 3 times
Question #140 Topic 1

Which AWS service monitors AWS accounts for security threats?

A. Amazon GuardDuty

B. AWS Secrets Manager

C. Amazon Cognito

D. AWS Certificate Manager (ACM)

Correct Answer: A

Community vote distribution

A (85%) C (15%)

  Pranava_GCP 1 day, 1 hour ago

Selected Answer: A
A. Amazon GuardDuty
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: A
https://aws.amazon.com/guardduty/
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: A
Amazon GuardDuty is the AWS service that monitors AWS accounts for security threats. It continuously analyzes logs and network traffic
data to detect malicious activity, unauthorized behavior, and potential security risks. GuardDuty uses machine learning and threat
intelligence to identify threats such as account compromise, data exfiltration, and suspicious API activity. When it detects a security issue,
it generates findings and sends alerts to help users take appropriate actions to remediate the threat.
upvoted 2 times

  ManojKL 5 months, 1 week ago

A is the answer
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  cdat 7 months, 2 weeks ago

Selected Answer: A
A 100%.
Amazon GuardDuty: intelligent threat protection for accounts and workloads
https://www.amazonaws.cn/en/guardduty/
upvoted 3 times

  N9 8 months ago
Selected Answer: A
GuardDuty

Cognito is for social media logins

upvoted 4 times

  smerix 8 months ago

Selected Answer: A
Vote for A
upvoted 2 times

  Testeurtest 8 months ago

Selected Answer: C
Amazon GuardDuty: Intelligent Detection of threats (using any logs in your deployment by analyze it)
> Amazon Cognito : Simple and Secure User Sign-Up, Sign-In, and Access Control for Application users
upvoted 3 times
  myan2492 9 months ago
A. Amazon GuardDuty: threat detection
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: A
Check out: https://aws.amazon.com/guardduty/
upvoted 2 times

  Istiaque 10 months, 1 week ago

answer is A
"Amazon GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and
delivers detailed security findings for visibility and remediation"
upvoted 4 times

  sumanshu 10 months, 2 weeks ago

Vote for A
upvoted 2 times
Question #141 Topic 1

Which benefit is included with an AWS Enterprise Support plan?

A. AWS Partner Network (APN) support at no cost.

B. Designated support from an AWS technical account manager (TAM)

C. On-site support from AWS engineers

D. AWS managed compliance as code with AWS Config

Correct Answer: B

Community vote distribution

B (100%)

  Pranava_GCP 1 day, 1 hour ago

Selected Answer: B
B. Designated support from an AWS technical account manager (TAM)
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: B
With an AWS Enterprise Support plan, one of the benefits is the availability of a designated AWS technical account manager (TAM). The
TAM acts as a single point of contact and provides personalized guidance and assistance to help the customer optimize their AWS
environment, resolve technical issues, and achieve their business goals. The TAM works closely with the customer to understand their
specific needs and provides proactive support, architectural guidance, and best practices recommendations.
upvoted 1 times

  Oripresa 1 month, 2 weeks ago

Selected Answer: B
el parcheo de la ec2 es cosa de amazon. El encriptado tienes tu que seleccionarlo y decidir que tipo quieres, no lo hace amazon de forma
automatica
upvoted 1 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: B
B. Patch Amazon EC2 instances.

AWS performs automatic patching of Amazon EC2 instances as part of its shared responsibility model for managing security in the cloud.
AWS manages the underlying infrastructure and provides patches and updates for the infrastructure components, including the
hypervisor, network, and storage layers. However, customers are responsible for patching the operating system, applications, and
software that they install on their EC2 instances.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  CalT925 9 months ago

Selected Answer: B
TAM is only available in enterprise
upvoted 3 times

  subramani2018 9 months, 3 weeks ago

A:APN Consulting Partners are professional services firms that help customers of all types and sizes design, architect, build, "MIGRATE",
and manage their workloads and applications on AWS, accelerating their migration to AWS cloud. once moved then henceforth support
conatct would be TAM
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 2 times
Question #142 Topic 1

Which task does AWS perform automatically?

A. Encrypt data that is stored in Amazon DynamoDB.

B. Patch Amazon EC2 instances.

C. Encrypt user network traffic.

D. Create TLS certificates for users' websites.

Correct Answer: A

Community vote distribution

A (65%) B (31%) 4%

  myan2492 Highly Voted  9 months ago

A. DynamoDB
All user data stored in Amazon DynamoDB is fully encrypted at rest. DynamoDB encryption at rest provides enhanced security by
encrypting all your data at rest using encryption keys stored in AWS Key Management Service (AWS KMS)
upvoted 15 times

  Pranava_GCP Most Recent  1 day ago

Selected Answer: A
A. Encrypt data that is stored in Amazon DynamoDB.

"All user data stored in Amazon DynamoDB is fully encrypted at rest. DynamoDB encryption at rest provides enhanced security by
encrypting all your data at rest using encryption keys stored in AWS Key Management Service (AWS KMS). This functionality helps reduce
the operational burden and complexity involved in protecting sensitive data. With encryption at rest, you can build security-sensitive
applications that meet strict encryption compliance and regulatory requirements."

https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html
upvoted 1 times

  Soumya198725 3 days, 11 hours ago

ChatGPT says Option": B
upvoted 1 times

  mart213 2 weeks, 1 day ago

La opción A también podría ser correcta, ya que AWS ofrece la opción de cifrar los datos almacenados en Amazon DynamoDB de manera
automática. Sin embargo, la pregunta originalmente planteada es sobre una tarea que realiza AWS de manera automática, y la opción A
se refiere a una opción de cifrado que el usuario debe habilitar manualmente. Por lo tanto, la respuesta más precisa a la pregunta original
es la opción B.
upvoted 1 times

  Gulsah 2 weeks, 3 days ago

Selected Answer: A
A is correct, encryption is automatic:
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html
B is incorrect, patching is not automatic:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/update-management.html
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: B
AWS regularly patches and updates the underlying infrastructure, including the host operating system, for Amazon EC2 instances. These
patches and updates help ensure the security and reliability of the instances. As a customer, you are responsible for managing the
software and applications running on your EC2 instances, but AWS takes care of the underlying infrastructure patches automatically.
AWS does not automatically encrypt data that is stored in Amazon DynamoDB. You can choose to encrypt your data in DynamoDB, but
you have to do it manually.
upvoted 1 times

  Vaishu1991 3 weeks, 4 days ago

Selected Answer: D
AWS can automatically create TLS certificates for users' websites through its AWS Certificate Manager (ACM) service, making option D the
correct answer.
upvoted 1 times

  Vaishu1991 3 weeks, 4 days ago

Correct Answer is A after reaing below article:-
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html
upvoted 1 times
  Oripresa 1 month, 2 weeks ago
Selected Answer: B
el parcheo de la ec2 es cosa de amazon. El encriptado tienes tu que seleccionarlo y decidir que tipo quieres, no lo hace amazon de forma
automatica
upvoted 1 times

  louisvuitton12 2 months ago

Selected Answer: A
All DynamoDB tables are encrypted. There is no option to enable or disable encryption for new or existing tables. By default, all tables are
encrypted under an AWS owned customer master key (CMK) in the DynamoDB service account.
upvoted 2 times

  yizhcontact 2 months ago

C. Encrypt user network traffic: AWS automatically encrypts user network traffic by providing Transport Layer Security (TLS) encryption for
network connections. This is done through various AWS services, such as Elastic Load Balancer (ELB), Amazon CloudFront, and Amazon
API Gateway, which automatically enable TLS encryption for inbound and outbound network traffic to secure data in transit.
upvoted 1 times

  arnabsarkar2601 2 months ago

Selected Answer: D
According to ChatGPT - D
Create TLS certificates for users' websites.

AWS automatically provides and manages TLS (Transport Layer Security) certificates for users' websites through the AWS Certificate
Manager (ACM) service. ACM eliminates the need for users to generate, manage, and renew their own SSL/TLS certificates. It simplifies
the process of obtaining and deploying certificates for securing websites and other AWS resources. Users can request and import SSL/TLS
certificates for their domain names directly from ACM, and AWS takes care of the certificate provisioning, renewal, and integration with
other AWS services like Elastic Load Balancer (ELB), CloudFront, and API Gateway.
upvoted 1 times

  nailimvali 2 months, 2 weeks ago

Selected Answer: A
Correct: A
upvoted 2 times

  starsea 2 months, 2 weeks ago

Selected Answer: A
patching EW2 is still customer's responsibility.
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: B
B. Patch Amazon EC2 instances.

Amazon Web Services (AWS) automatically patches the underlying infrastructure that runs customer workloads, including Amazon Elastic
Compute Cloud (EC2) instances, to address known security vulnerabilities and protect the AWS infrastructure. Customers are responsible
for patching the operating systems, platforms, and application layers of their EC2 instances, but AWS provides automated patching tools
to simplify the process.

AWS also provides encryption capabilities for customer data, but it's the customer's responsibility to implement and manage encryption
keys and policies for their data. The customer is also responsible for encrypting their own network traffic and creating TLS certificates for
their websites.
upvoted 3 times

  0x0045 3 months ago

Selected Answer: A
A. Amazon does not patch EC2 instances
upvoted 2 times

  Nolos 3 months ago

Selected Answer: A
When creating a new table, you can choose one of the following customer master keys (CMK) to encrypt your table:

AWS owned CMK – Default encryption type. The key is owned by DynamoDB (no additional charge).

AWS managed CMK – The key is stored in your account and is managed by AWS KMS (AWS KMS charges apply).

Customer managed CMK – The key is stored in your account and is created, owned, and managed by you. You have full control over the
CMK (AWS KMS charges apply).

All DynamoDB tables are encrypted. There is no option to enable or disable encryption for new or existing tables. By default, all tables are
encrypted under an AWS owned customer master key (CMK) in the DynamoDB service account.
https://catalog.us-east-1.prod.workshops.aws/workshops/aad9ff1e-b607-45bc-893f-121ea5224f24/en-
US/ddb#:~:text=All%20user%20data%20stored%20in,Management%20Service%20(AWS%20KMS).
upvoted 2 times
  Luxurie 3 months ago
B. AWS automatically patches EC2 instances.
upvoted 1 times
Question #143 Topic 1

Which AWS service or tool can a company use to visualize, understand, and manage AWS spending and usage over time?

A. AWS Trusted Advisor

B. Amazon CloudWatch

C. Cost Explorer

D. AWS Budgets

Correct Answer: C

Community vote distribution

C (100%)

  Pranava_GCP 1 day ago

Selected Answer: C
C. Cost Explorer

"AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time. Get
started quickly by creating custom reports that analyze cost and usage data. Analyze your data at a high level (for example, total costs and
usage across all accounts), or dive deeper into your cost and usage data to identify trends, pinpoint cost drivers, and detect anomalies."

https://aws.amazon.com/aws-cost-management/aws-cost-explorer/
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: C
AWS Cost Explorer is a service that provides a comprehensive set of tools for visualizing, understanding, and managing AWS spending and
usage over time. It allows you to analyze your costs and usage patterns, create custom reports and dashboards, and gain insights into
your AWS spending. Cost Explorer provides detailed cost and usage information at the account level, service level, and resource level,
enabling you to optimize your costs and make informed decisions about your AWS resources.
upvoted 1 times

  Madbo 3 months, 1 week ago

AWS Cost Explorer is the correct answer because it provides a comprehensive set of tools to visualize and analyze costs, usage, and usage
trends for different AWS services, and provides cost forecasts to help manage AWS costs over time
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The AWS service or tool that a company can use to visualize, understand, and manage AWS spending and usage over time is C. Cost
Explorer.

Cost Explorer is a cost management tool provided by AWS that allows users to visualize, understand, and manage AWS spending and
usage over time. It provides various features and functionalities to help users analyze their AWS costs and usage, such as cost and usage
reports, custom cost allocation tags, and budgeting tools
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 2 times

  Mohinit 6 months, 3 weeks ago

Vote for c
upvoted 2 times

  myan2492 9 months ago

C. Cost Explorer --> graph, over time
CloudTrail: monitor and record account activity across AWS infrastructure, giving you control over storage, remediation action. CloudTrail
enables auditing, security monitoring and operational troubleshooting by tracking user activity and API usage
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: C
from: https://aws.amazon.com/aws-cost-management/aws-cost-explorer/
upvoted 1 times
  sumanshu 10 months, 2 weeks ago
Vote for C
upvoted 1 times
Question #144 Topic 1

A company wants to deploy some of its resources in the AWS Cloud. To meet regulatory requirements, the data must remain local and on
premises. There must be low latency between AWS and the company resources.
Which AWS service or feature can be used to meet these requirements?

A. AWS Local Zones

B. Availability Zones

C. AWS Outposts

D. AWS Wavelength Zones

Correct Answer: A
Reference:
https://d1.awsstatic.com/whitepapers/hybrid-cloud-with-aws.pdf
(18)

Community vote distribution

C (84%) A (16%)

  _SHARU_ Highly Voted  1 year, 1 month ago

  SmartLearner Highly Voted  8 months, 3 weeks ago

Selected Answer: C
C, outposts seems correct, it's tricky.
Local zones (A) don't offer on premises, it's near your location only.
upvoted 10 times

  Pranava_GCP Most Recent  1 day ago

Selected Answer: C
C. AWS Outposts
upvoted 1 times

  Tarasharma 2 days, 8 hours ago

Sorry i meant - Admin saying answer is A
but pasting link with pg 18 that clearly says answer is C - How will i pass the exam
upvoted 1 times

  Tarasharma 2 days, 8 hours ago

Admin saying answer is C but pasting link with pg 18 that clearly says answer is C - How will i pass the exam
upvoted 1 times

  Kariyakarawana 2 weeks, 1 day ago

Selected Answer: A
Reference: https://aws.amazon.com/about-aws/global-
infrastructure/localzones/faqs/#:~:text=You%20should%20use%20AWS%20Local,with%20very%20low%2Dlatency%20communications.
upvoted 1 times
  man5484 2 weeks, 5 days ago
Selected Answer: C
AWS Outposts is a service that allows you to run AWS infrastructure, services, APIs, and tools on-premises. This means that you can keep
your data local and on-premises, while still taking advantage of the scalability, elasticity, and security of AWS.

AWS Outposts also provides low latency between your on-premises resources and AWS. This is because AWS Outposts uses the same
high-speed network that AWS uses to connect its data centers around the world.
upvoted 1 times

  0x0045 3 months ago

Selected Answer: C
I agree...C
upvoted 1 times

  brianbanda 3 months, 3 weeks ago

The AWS service or feature that can be used to meet these requirements is C. AWS Outposts.

AWS Outposts is a fully managed service that extends AWS infrastructure, services, APIs, and tools to customer premises. With AWS
Outposts, customers can run AWS services locally, ensuring that their data remains on premises while still having access to low-latency
connectivity with AWS services in the cloud.

AWS Local Zones and Availability Zones are both cloud data centers that provide high availability and fault tolerance for AWS resources.
They do not provide the capability to run AWS services locally.

AWS Wavelength Zones provide ultra-low latency connectivity between 5G devices and AWS services, but they are not designed to run
AWS services on customer premises.
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The AWS service or feature that can be used to meet these requirements is C. AWS Outposts.

AWS Outposts allows customers to run AWS infrastructure and services on-premises for a consistent hybrid experience. With AWS
Outposts, customers can have low-latency access to the same AWS services, APIs, and tools that they use in AWS Regions, while
maintaining data residency and meeting regulatory requirements. This service enables customers to run compute, storage, and database
services locally, and seamlessly connect to AWS services in the cloud.
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: C
key word 'on premises' -> AWS Outposts, no doubts
https://aws.amazon.com/outposts
upvoted 2 times

  kumaran1000001 4 months, 2 weeks ago

A - no. only available in metros and urban areas

B - no. in the cloud solution

C - yes

D - no. 5G computing. Located at the edge of the network

upvoted 1 times

  noahsark 5 months, 1 week ago

Selected Answer: C
AWS Outposts
https://aws.amazon.com/outposts/
upvoted 1 times

  liliyao 5 months, 1 week ago

C ! AWS Outposts brings AWS infrastructure and services to customers' on-premises data centers or co-location sites.
upvoted 1 times

  wooyourdaddy 5 months, 2 weeks ago

Selected Answer: C
Keyword is on premise in the question:

Unlike Outposts, which you deploy within your datacenter or a co-location of your choice, Local Zones are owned, managed, and operated
by AWS. Local Zones eliminate the need for you to manage power, connectivity, and capacity using the exact same set of APIs and tools
that you are already using for an AWS Region.
Ref link: https://aws.amazon.com/blogs/compute/aws-local-zones-and-aws-outposts-choosing-the-right-technology-for-your-edge-
workload/#:~:text=Unlike%20Outposts%2C%20which%20you%20deploy,using%20for%20an%20AWS%20Region.
upvoted 2 times
  Saif93 6 months, 2 weeks ago
Selected Answer: C
C is the answer.
upvoted 1 times

  Jatinbunkar 6 months, 3 weeks ago

Selected Answer: C
C IS CORRECT BECAUSE QUESTION ALSO SAYS THAT ON- PREMISES
upvoted 1 times
Question #145 Topic 1

A company requires an isolated environment within AWS for security purposes.

Which action can be taken to accomplish this?

A. Create a separate Availability Zone to host the resources.

B. Create a separate VPC to host the resources.

C. Create a placement group to host the resources.

D. Create an AWS Direct Connect connection between the company and AWS.

Correct Answer: B
Reference:
https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/infrastructure-security.html

Community vote distribution

B (92%) 8%

  Pranava_GCP 1 day ago

Selected Answer: B
B. Create a separate VPC to host the resources.
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: B
To create an isolated environment within AWS for security purposes, the company can create a separate Virtual Private Cloud (VPC). A VPC
is a logically isolated section of the AWS Cloud where the company can launch AWS resources in a virtual network that is dedicated to their
account. By creating a separate VPC, the company can control the network settings, IP address ranges, subnets, route tables, and security
settings specific to their isolated environment.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - no. no isolation

B - yes. network isolation

C - no. for performance improvement

D - no. bridge between on-premise and AWS Cloud

upvoted 1 times

  EricLeong 4 months, 3 weeks ago

hi, can someone share the pdf file for exam question and send to my email lannchien@yahoo.com. Your kindness is truely appreciate .
Thank you
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times
  sirasdf 6 months, 4 weeks ago
B - I have money but can someone pay for my contributor access? Thanks god bless
upvoted 2 times

  prodigywole 8 months ago

hello pls can someone help me with the downloaded pdf of 301 question at ogunlade.oluwole94@gmail.com my exam is for sunday
upvoted 1 times

  PruLee 9 months, 1 week ago

@No mind, Could you send the pdf of 301 questions to me by using gmail, lily1243587@gmail.com
upvoted 1 times

  kamdy 9 months, 1 week ago

Hi Everyone, I have this exam scheduled for next week, and I don't have money to pay for the contributor access. Please anyone that has
have paid for this access should please and please help me send the downloaded PDF to this email address: kamdy72@gmail.com
Thanks in advance and God bless.
upvoted 2 times

  QasimAWS 9 months ago

Share it with me too @ qasimyousufzai112@gmail.com
upvoted 1 times

  Nehc 9 months, 2 weeks ago

Vote for B
upvoted 2 times

  vviicc0385 10 months, 2 weeks ago

B is correct
upvoted 1 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: B
B is correct
upvoted 2 times

  DL28 10 months, 2 weeks ago

Selected Answer: B
Ans is B
upvoted 1 times

  [Removed] 10 months, 2 weeks ago

B is the answer.
upvoted 1 times

  sumanshu 10 months, 2 weeks ago

Vote for B
upvoted 1 times

  Alaaaa21 10 months, 2 weeks ago

Hello Everyone , I'v the exam on Monday and I'm not able to access all the 301 questions . Is it possible help me to get it as pdf file ?
upvoted 2 times

  GNelly 11 months, 2 weeks ago

Selected Answer: B
AWS Direct Connect is a service that enables you to establish a dedicated private connection between your data center and a VPC. Not
"inside AWS" there B
upvoted 3 times
Question #146 Topic 1

Which AWS service is a highly available and scalable DNS web service?

A. Amazon VPC

B. Amazon CloudFront

C. Amazon Route 53

D. Amazon Connect

Correct Answer: C
Reference:
https://aws.amazon.com/route53/

Community vote distribution

C (100%)

  BillyC Highly Voted  1 year, 8 months ago

C is correct
upvoted 6 times

  Pranava_GCP Most Recent  1 day ago

Selected Answer: C
C. Amazon Route 53
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: C
Amazon Route 53 is a highly available and scalable Domain Name System (DNS) web service provided by AWS. It is designed to route end
users to internet applications by translating domain names into IP addresses. Route 53 provides reliable and cost-effective domain
registration, DNS routing, and health checking of resources within AWS or outside of it.
upvoted 1 times

  poiuytrewq123456 4 months, 1 week ago

Selected Answer: C
C is correct. Amazon, can you give me 65 questions like this :)
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  N9 8 months, 1 week ago

Key word - DNS then Route 53
upvoted 3 times

  ACLOUD_PRACTITIONER 8 months, 3 weeks ago

Selected Answer: C
C.
Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service.
upvoted 1 times
Question #147 Topic 1

Which of the following is an AWS best practice for managing an AWS account root user?

A. Keep the root user password with the security team.

B. Enable multi-factor authentication (MFA) for the root user.

C. Create an access key for the root user.

D. Keep the root user password consistent for compliance purposes.

Correct Answer: B
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html

Community vote distribution

B (85%) C (15%)

  bratpyt Highly Voted  1 year, 9 months ago

b is correct
upvoted 19 times

  Silascarter Highly Voted  1 year, 8 months ago

The answer to this Question is D. It is asking "which is not a recommended practice".

A: Securely lock away you root user access key. Recommended

B: Enable MFA on root user. Recommended
C: Create access key for root User. Recommended
D. Not Recommended. (You are supposed to rotate root users password if you are keeping it even though best practice says delete it).

Source: https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
upvoted 5 times

  et_learner 4 months, 2 weeks ago

no 'NOT' here buddy, something wrong with your eyes?
upvoted 8 times

  Adeeliqbal123 1 year, 2 months ago

That confuses me for sure because so many people are not reading it properly. It says NOT recommended practice.
upvoted 1 times

  Josh11211 8 months, 1 week ago

no, it does not say NOT
upvoted 9 times

  Pranava_GCP Most Recent  1 day ago

Selected Answer: B
B. Enable multi-factor authentication (MFA) for the root user.
upvoted 1 times

  Kariyakarawana 2 weeks, 1 day ago

Selected Answer: B
According to AWS documentation,
"Enable AWS multi-factor authentication (MFA) on your AWS account root user." is recommendation.
C canot be the answer according to AWS documentation
"You use an access key (an access key ID and secret access key) to make programmatic requests to AWS. However, we strongly
recommend that you do not create an AWS account root user access key. The access key for your AWS account root user gives full access
to all your resources for all AWS services, including your billing information. You can't reduce the permissions associated with your AWS
account root user access key."
Reference: https://docs.aws.amazon.com/accounts/latest/reference/best-practices-root-user.html
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: B
Enabling multi-factor authentication (MFA) for the root user is considered an AWS best practice for managing an AWS account. MFA adds
an extra layer of security to the account by requiring an additional authentication factor, such as a physical token or a virtual MFA device,
in addition to the password. This helps protect the root user from unauthorized access and reduces the risk of compromise.
upvoted 1 times

  khanda 2 weeks, 6 days ago

Selected Answer: B
Safeguard your root user credentials by configuring MFA for your root user credentials. We don't recommend generating access keys for
your root user, because they allow full access to all your resources.

source: https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
upvoted 1 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: B
B. Enable multi-factor authentication (MFA) for the root user.

Enabling multi-factor authentication (MFA) for the root user is an AWS best practice for managing an AWS account. MFA adds an
additional layer of security to an account by requiring a user to provide a second form of authentication in addition to their password,
such as a code generated by an authenticator app or a hardware token. This makes it much more difficult for unauthorized users to
access the account, even if they have obtained the root user's password.
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: B
The AWS best practice for managing an AWS account root user is to enable multi-factor authentication (MFA) for the root user. This
provides an additional layer of security to protect the root user account from unauthorized access.

Option A is not a best practice as keeping the root user password with the security team may increase the risk of the password being
compromised.

Option C is not recommended as creating access keys for the root user can lead to the key being accidentally exposed and used to gain
unauthorized access to the account.

Option D is not recommended as using consistent passwords for compliance purposes can increase the risk of the password being
compromised. It is recommended to use strong, unique passwords and rotate them periodically
upvoted 1 times

  harisene 5 months ago

Selected Answer: B
B is the answer
upvoted 1 times

  Amycert 5 months ago

Selected Answer: B
B is mostly correct, but it is actually better to not use the root account at all, only for emergencies
upvoted 1 times

  bismainlearn 5 months, 3 weeks ago

Selected Answer: B
The AWS account root user is the most privileged user in an AWS account, and has complete access to all AWS resources and services. As a
best practice, it is recommended to enable multi-factor authentication (MFA) for the root user to add an extra layer of security. With MFA,
users will be required to provide not just a password but also a unique authentication code generated by a device such as a hardware
token or a smartphone app. This helps prevent unauthorized access to the AWS account, even if the password is compromised.

It is also recommended to avoid using the root user for everyday tasks and instead create IAM users with the necessary permissions.
Access keys should not be used for the root user, as they provide long-term access to the AWS account and should be used with caution.
Keeping the password consistent for compliance purposes is not necessarily a security best practice, and can make it easier for attackers
to gain unauthorized access if the password is known or compromised.
upvoted 3 times

  toor777 6 months ago

Selected Answer: B
b is correct
upvoted 1 times

  RobertMcD 6 months ago

Selected Answer: B
When you create an AWS account you establish a root user name and password to sign in to the AWS Management Console. Safeguard
your root user credentials the same way you would protect other sensitive personal information. You can do this by configuring MFA for
your root user credentials. We don't recommend generating access keys for your root user, because they allow full access to all your
resources for all AWS services, including your billing information. Don’t use your root user for everyday tasks. Use the root user to
complete the tasks that only the root user can perform. For the complete list of tasks that require you to sign in as the root user, see Tasks
that require root user credentials in the AWS Account Management Reference Guide.
upvoted 1 times

  siddhardhat7670 6 months ago

Selected Answer: B
AWS recommends enabling multi-factor authentication (MFA) for the root user of an AWS account to provide an additional layer of
security. MFA requires the use of a second form of authentication, such as a one-time code generated by an authentication app or a
hardware token, in addition to a password. This makes it much harder for an attacker to gain access to the root user account, even if they
have obtained the password.
upvoted 1 times
  Saif93 6 months, 2 weeks ago
Selected Answer: B
B is the answer.
upvoted 1 times

  cdat 7 months, 2 weeks ago

B is the right answer, not D.
You can even see this in the IAM dashboard within "Security recommendations" section:
"Having multi-factor authentication (MFA) for the root user improves security for this account. Using access keys attached to an IAM user
instead of the root user improves security."
upvoted 1 times

  cdat 7 months, 2 weeks ago

* not C
upvoted 1 times

  jatric 7 months, 3 weeks ago

Selected Answer: B
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#lock-away-credentials

Its not C as per below

Safeguard your root user credentials the same way you would protect other sensitive personal information. You can do this by configuring
MFA for your root user credentials. We don't recommend generating access keys for your root user, because they allow full access to all
your resources for all AWS services, including your billing information.
upvoted 1 times
Question #148 Topic 1

A company wants to improve its security and audit posture by limiting Amazon EC2 inbound access.
What should the company use to access instances remotely instead of opening inbound SSH ports and managing SSH keys?

A. EC2 key pairs

B. AWS Systems Manager Session Manager

C. AWS Identity and Access Management (IAM)

D. Network ACLs

Correct Answer: B
Reference:
https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager.html

Community vote distribution

B (100%)

  yzgulec Highly Voted  1 year ago

Selected Answer: B
AWS Systems Manager Session Manager is a new interactive shell and CLI that helps to provide secure, access-controlled, and audited
Windows and Linux EC2 instance management. Session Manager removes the need to open inbound ports, manage SSH keys, or use
bastion hosts.

Answer is B.
upvoted 6 times

  0147 Highly Voted  1 year, 7 months ago

Hello Team, I have the AWS exam coming up, but reading the questions, should I study the 818 questions?
upvoted 5 times

  thanoskachacha 1 year, 6 months ago

Hey did you really study 818 questions?
upvoted 5 times

  RolandoTrevinoA 1 year, 2 months ago

its helpful, in order to detect trick question o trick answers
upvoted 3 times

  Pranava_GCP Most Recent  1 day ago

Selected Answer: B
B. AWS Systems Manager Session Manager
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: B
AWS Systems Manager Session Manager is a fully managed service that provides secure and auditable remote shell access to EC2
instances directly through the AWS Management Console, CLI, or SDKs. With Session Manager, you can access your instances without
opening inbound SSH ports or managing SSH keys.

By using Session Manager, you can centrally manage access to instances, enforce fine-grained permissions using IAM policies, and record
all session activity in CloudTrail for auditing and compliance purposes. It provides a secure and convenient way to access your EC2
instances without exposing them to inbound SSH traffic.
upvoted 1 times

  Raya_2023 4 months ago

The answer is B
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: B
Agreed, B is the only viable option for this question's context.
upvoted 3 times
  SM786 1 year, 7 months ago
https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager.html
So B is right
upvoted 2 times

  Jun0121 1 year, 7 months ago

B is right.
upvoted 1 times
Question #149 Topic 1

After selecting an Amazon EC2 Dedicated Host reservation, which pricing option would provide the largest discount?

A. No upfront payment

B. Hourly on-demand payment

C. Partial upfront payment

D. All upfront payment

Correct Answer: D
Reference:
https://aws.amazon.com/ec2/pricing/reserved-instances/pricing/

Community vote distribution

D (100%)

  syu31svc Highly Voted  1 year, 10 months ago

From the link: https://aws.amazon.com/ec2/pricing/reserved-instances/pricing/
"You can choose between three payment options when you purchase a Standard or Convertible Reserved Instance. With the All Upfront
option, you pay for the entire Reserved Instance term with one upfront payment. This option provides you with the largest discount
compared to On-Demand Instance pricing"
So answer is D
upvoted 19 times

  Pranava_GCP Most Recent  1 day ago

Selected Answer: D
D. All upfront payment
upvoted 1 times

  man5484 2 weeks, 5 days ago

Selected Answer: D
When selecting an Amazon EC2 Dedicated Host reservation, there are different pricing options available, including no upfront payment,
partial upfront payment, and all upfront payment.

Among these options, the largest discount is provided when choosing the all upfront payment option. With the all upfront payment
option, you pay for the entire reservation upfront, which gives you the highest discount compared to the other options.
upvoted 1 times

  Arnaud92 5 months, 3 weeks ago

Customers who choose Dedicated Hosts have to pay the On-Demand price for every hour the host is active in the account. It supports only
per-hour billing and does not support per-second billing scheme
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  jatric 7 months, 3 weeks ago

Selected Answer: D
obvious
upvoted 1 times

  Lokokan 11 months, 2 weeks ago

D gives more discount
upvoted 1 times

  bilel500 11 months, 2 weeks ago

Selected Answer: D
Answer is D.
upvoted 1 times

  srinivasmanyam 1 year, 1 month ago

the correct answer is 'D'
Reservations can provide up to a 70% discount compared to the On-Demand price. Dedicated Host Reservations can be purchased using
the AWS Management Console or AWS CLI.
You can choose between three Dedicated Host Reservation payment options. With the All Upfront option, you pay for the entire Dedicated
Host Reservation with one upfront payment. This option provides you with the largest discount compared to On-Demand pricing. With the
Partial Upfront option, you make a low upfront payment and are then charged a discounted hourly rate for the Dedicated Host for the
duration of the reservation. The No Upfront option does not require an upfront payment and provides a discounted hourly rate for the
duration of the term.
https://aws.amazon.com/ec2/dedicated-hosts/pricing/
upvoted 2 times
  guychow 1 year, 2 months ago
Selected Answer: D
pay all in advance always receive further discount rate.
upvoted 4 times

  AharonQ 1 year, 4 months ago

D. all the time
upvoted 1 times

  MJeidah 1 year, 8 months ago

Definitely D!
upvoted 1 times

  RAAAEHL 1 year, 9 months ago

D - all upfront
upvoted 2 times

  kimalto452 1 year, 9 months ago

D..................
upvoted 2 times

  Mihai2 1 year, 9 months ago

I think it is D.
Go to https://aws.amazon.com/ec2/dedicated-hosts/pricing/ and try to CTRL + F for "With the All Upfront option".
upvoted 4 times

  Jessik 1 year, 10 months ago

The correct answer is B.
https://aws.amazon.com/es/ec2/pricing/dedicated-
instances/#:~:text=Las%20instancias%20dedicadas%20son%20instancias,dedicado%20a%20un%20solo%20cliente.&text=Pague%20por%2
0las%20instancias%20dedicadas,90%25%20comprando%20instancias%20de%20spot.
upvoted 3 times

  MinodaZ 1 year, 9 months ago

The host is DEDICATED to you. You don't pay per hour. All Upfront is the correct answer.
upvoted 2 times

  pablo1234567 1 year, 8 months ago

dios..................
upvoted 2 times
Question #150 Topic 1

A company has refined its workload to use specific AWS services to improve efficiency and reduce cost.
Which best practice for cost governance does this example show?

A. Resource controls

B. Cost allocation

C. Architecture optimization

D. Tagging enforcement

Correct Answer: B
Reference:
https://d1.awsstatic.com/whitepapers/architecture/AWS-Cost-Optimization-Pillar.pdf

Community vote distribution

C (81%) B (19%)

  b3llm4n Highly Voted  1 year, 10 months ago

It should be C as per the AWS documentation:
https://docs.aws.amazon.com/whitepapers/latest/cost-management/cost-governance-best-practices.html
"Architecture optimization focuses on the need to continually refine workloads to be more cost-conscious to create better architected
systems."
upvoted 46 times

  Craig92866 Highly Voted  9 months, 1 week ago

Anyone else excited they're 50% through with the review? Keep the momentum going!
upvoted 20 times

  Gulsah Most Recent  2 weeks, 3 days ago

Selected Answer: C
C. Architecture optimization
The example provided demonstrates the best practice of architecture optimization. By refining its workload to use specific AWS services,
the company aims to improve efficiency and reduce costs. Architecture optimization involves designing and implementing the most
efficient and cost-effective architecture for a system. By leveraging the right AWS services and resources, companies can optimize their
infrastructure to meet their workload requirements while minimizing costs.
upvoted 1 times

  man5484 2 weeks, 4 days ago

Selected Answer: C
Architecture optimization is a best practice for cost governance that involves designing and deploying your workloads in a way that
minimizes costs. This can be done by using the right AWS services for the job, optimizing your resource utilization, and using cost-saving
features such as Reserved Instances and Spot Instances.
upvoted 1 times

  Coffeelander 1 month, 1 week ago

This compiler is really a cunt.
upvoted 3 times

  jvuoso 1 month, 3 weeks ago

Selected Answer: C
C. Architecture optimization
upvoted 1 times

  yizhcontact 2 months ago

C. Architecture optimization: By selecting specific AWS services to refine their workload, the company is optimizing their architecture to
improve efficiency and reduce costs. This involves identifying the most appropriate AWS services that align with their workload
requirements and leveraging the inherent capabilities and cost-effectiveness of those services. This optimization can involve choosing
serverless architectures, utilizing managed services, or implementing cost-effective storage solutions, among other considerations.
upvoted 1 times

  Chinnukollipara 3 months, 2 weeks ago

Does these questions actually come on exam?
upvoted 4 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: C
C. Architecture optimization

The example provided shows the best practice of architecture optimization for cost governance. Architecture optimization is the process
of refining an organization's workloads to use specific AWS services or configurations to improve efficiency and reduce costs. By choosing
the most cost-effective services and configurations, an organization can optimize its architecture to minimize costs while still meeting its
performance and functionality requirements.
upvoted 1 times
  brianbanda 3 months, 3 weeks ago
The example given shows the best practice for cost governance of C. Architecture optimization.

By refining its workload to use specific AWS services to improve efficiency and reduce cost, the company is optimizing its architecture to
minimize unnecessary resource usage and maximize cost-effectiveness. This is a key aspect of cost governance, as it helps to ensure that
resources are being used efficiently and cost-effectively.

Resource controls refer to setting limits on resource usage to prevent over-provisioning and unnecessary costs. Cost allocation involves
assigning costs to specific users, teams, or departments for accountability and cost optimization. Tagging enforcement involves the use of
tags to label and categorize resources for better cost management.

While all of these practices are important for cost governance, architecture optimization is a foundational best practice that underlies
many of the other practices.
upvoted 2 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The example you provided shows the best practice of architecture optimization for cost governance in AWS. By refining its workload to use
specific AWS services, the company is optimizing its architecture to improve efficiency and reduce cost. This practice involves identifying
and using the most appropriate AWS services to meet the specific needs of the application, which can help to reduce cost by eliminating
unnecessary resources and minimizing resource usage.
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
The example provided shows the best practice of architecture optimization. By refining their workload to use specific AWS services, the
company has optimized their architecture to improve efficiency and reduce costs.

Option A, resource controls, involves setting limits on the resources that can be used by an individual, team, or application to manage
costs. This is not related to the example provided.

Option B, cost allocation, involves tracking costs across multiple accounts, teams, or applications to assign costs to the appropriate entity
for accountability and financial reporting. This is not related to the example provided.

Option D, tagging enforcement, involves enforcing a consistent set of tags on AWS resources to make it easier to search, filter, and track
costs. This is not related to the example provided.

Therefore, the best answer is C, architecture optimization.

upvoted 2 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: C
C. Architecture optimization.

Refining a workload to use specific AWS services to improve efficiency and reduce cost is an example of the best practice of architecture
optimization for cost governance. Architecture optimization involves designing and configuring AWS resources and services to minimize
costs while meeting performance and availability requirements.
upvoted 1 times

  ShivaTheBoss 5 months ago

Answer is C:
"Refined" its workload to use specific AWS services to "improve efficiency and reduce cost"
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 2 times

  Biotech 6 months, 2 weeks ago

Selected Answer: C
Architecture optimization refers to designing a workload in a way that aligns with the strengths and capabilities of the underlying
infrastructure. By using specific AWS services to improve efficiency and reduce cost, the company is demonstrating that it has optimized
its workload to align with the services that will best meet its needs, and thus minimize costs.

Resource controls, cost allocation, and tagging enforcement are also important best practices for cost governance, but they are not
directly related to the example provided. Resource controls help to ensure that resources are used efficiently and effectively, cost
allocation allows you to assign costs to specific projects or departments, and tagging enforcement helps to ensure that resources are
properly tagged for cost tracking and reporting.
upvoted 2 times
  jatric 7 months, 3 weeks ago
Selected Answer: C
its Cost Optimization not Cost allocation. So its C
upvoted 2 times
Question #151 Topic 1

A company would like to host its MySQL databases on AWS and maintain full control over the operating system, database installation, and
configuration.
Which AWS service should the company use to host the databases?

A. Amazon RDS

B. Amazon EC2

C. Amazon DynamoDB

D. Amazon Aurora

Correct Answer: A
Reference:
https://d1.awsstatic.com/whitepapers/best-practices-for-running-oracle-database-on-aws.pdf?did=wp_card&trk=wp_card
(6)

Community vote distribution

B (95%) 5%

  asad12 Highly Voted  1 year, 9 months ago

b -Hosting a MySQL database on an EC2 instance, you will be able to choose the underlying building blocks such as operating system,
storage settings, and database configuration, giving you full control and flexibility over your MySQL database and surpassing the
limitations of Amazon RDS, while also leveraging all the advantages of the AWS Cloud platform and services.
upvoted 22 times

  man5484 Most Recent  2 weeks, 4 days ago

Selected Answer: B
Amazon EC2 is a compute service that allows you to rent virtual machines (VMs) on AWS. This means that you have full control over the
operating system, database installation, and configuration.
Here are some of the benefits of using Amazon EC2 to host MySQL databases:
Full control: You have full control over the operating system, database installation, and configuration.
Flexibility: You can choose the type of VM that you need, the amount of storage that you need, and the region that you want to host your
databases in.
Cost-effectiveness: You can only pay for the resources that you use.
upvoted 1 times

  jbkrishna 1 month ago

Hi, thanks all for the questions - i passed the Cloud Practioner exam... thanks !! I will post my score in a day or 2... yes pls go through all
the services atleast once....and remember what service is used for what purpose....prepare own notes and do comparision between
services that are very close e.g AWS WAF vs AWS Sheild, read and capture the design principles of well architected framework and desing
principles of all the pillars
upvoted 4 times

  Coffeelander 1 month, 1 week ago

The question compiler is a cunt beyond comparison
upvoted 2 times

  starsea 2 months, 2 weeks ago

Selected Answer: B
RDS is managed service which does not give you full control over instances.
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: B
full control over the operating system
so i choose B
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: B
The AWS service that would best fit the requirements of the company is Amazon EC2 (B).

Amazon EC2 (Elastic Compute Cloud) is a web service that provides resizable compute capacity in the cloud, allowing users to create and
run virtual machines (instances) on Amazon's infrastructure. With Amazon EC2, users have full control over the operating system,
database installation, and configuration. This means that the company can install and configure MySQL as they see fit, giving them
complete control over their databases.
upvoted 1 times
  akiraaws 4 months ago
Who is responsible for this page, the answers do not have any consistency.
B- Amazon EC2 is absolutely correct.
upvoted 3 times

  tony629 4 months ago

Selected Answer: B
B is more suitable
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: B
To maintain full control over the operating system, database installation, and configuration, the company should use Amazon EC2 to host
their MySQL databases on AWS.

Amazon EC2 provides full administrative access to the underlying operating system and hardware, giving users complete control over the
configuration and management of their environment. This allows users to install and configure the specific software versions and
components required for their database environment, including MySQL.

Amazon RDS, on the other hand, is a managed database service that provides automated database administration, backup and recovery,
and scaling capabilities. While Amazon RDS supports MySQL databases, users do not have access to the underlying operating system and
hardware, and therefore cannot have full control over the installation and configuration of their databases.
upvoted 1 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: B
B. Amazon EC2.

To maintain full control over the operating system, database installation, and configuration, a company should use Amazon EC2 to host
MySQL databases on AWS. Amazon EC2 provides scalable, customizable compute capacity that can be used to run applications and
services, including databases.
upvoted 1 times

  MehdiMasri 5 months, 3 weeks ago

keywords full control over the operating system, database installation, so B
upvoted 1 times

  Onyejicash 6 months ago

A -Amazon RDS -Amazon Web Services (AWS) provides a comprehensive set of services and tools for
deploying Oracle Database on the reliable and secure AWS cloud infrastructure. AWS
offers its customers two options for running Oracle Database on AWS:
 Using Amazon Relational Database Service (Amazon RDS) for Oracle, which is a
managed database service that helps simplify the provisioning and management of
Oracle databases. Amazon RDS makes it easy to set up, operate, and scale a
relational database in the cloud by automating installation, disk provisioning and
management, patching, minor version upgrades, failed instance replacement, as well
as backup and recovery tasks.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  jetwork 7 months ago

I think the answer is B. This video explains it quite well: https://www.youtube.com/watch?v=hUT1cyfPAts
upvoted 2 times

  MayneE 8 months, 3 weeks ago

Selected Answer: B
"...Amazon is responsible for infrastructure, backups, and updates on the Amazon RDS DB instance, the shell access to the underlying
operating system is disabled."
https://bluexp.netapp.com/blog/migrating-mysql-database-ec2-hosted-amazon-rds
upvoted 1 times

  MayneE 8 months, 3 weeks ago

RDS is fully managed...
upvoted 3 times
Question #152 Topic 1

How does the AWS global infrastructure offer high availability and fault tolerance to its users?

A. The AWS infrastructure is made up of multiple AWS Regions within various Availability Zones located in areas that have low flood risk, and
are interconnected with low-latency networks and redundant power supplies.

B. The AWS infrastructure consists of subnets containing various Availability Zones with multiple data centers located in the same geographic
location.

C. AWS allows users to choose AWS Regions and data centers so that users can select the closest data centers in different Regions.

D. The AWS infrastructure consists of isolated AWS Regions with independent Availability Zones that are connected with low-latency
networking and redundant power supplies.

Correct Answer: D

Community vote distribution

D (100%)
  nublit Highly Voted  9 months, 2 weeks ago
Selected Answer: D
A: AWS Regions within various Availability Zones. "within"
Availability Zones are distinct locations within an AWS Region that are engineered to be isolated from failures in other Availability Zones.
D: AWS Regions with independent Availability Zones."With"
upvoted 11 times

  RolandoTrevinoA Highly Voted  1 year, 2 months ago

A, D
look the same to me
upvoted 8 times

  man5484 Most Recent  2 weeks, 4 days ago

Selected Answer: D
AWS achieves high availability and fault tolerance through its global infrastructure, which is designed to provide resiliency and minimize
downtime. The infrastructure is built using isolated AWS Regions, which are separate geographic areas with their own set of data centers.
Each Region consists of multiple Availability Zones, which are physically separate and isolated from each other. Availability Zones are
equipped with redundant power supplies, networking, and cooling systems to ensure high availability.
By deploying resources across multiple Availability Zones within a Region, users can achieve fault tolerance and protect their applications
from single points of failure. The low-latency networking between Availability Zones allows for fast and reliable communication between
resources.
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: D
D. The AWS infrastructure consists of isolated AWS Regions with independent Availability Zones that are connected with low-latency
networking and redundant power supplies.

AWS achieves high availability and fault tolerance for its users by building its infrastructure on top of independent AWS Regions, which are
made up of separate Availability Zones. Each Availability Zone is physically isolated and located in a separate geographic location with
redundant power, networking, and connectivity to other zones within the same region. This isolation and redundancy ensure that even if
one Availability Zone fails, other zones within the same region continue to operate normally
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  whoareyou 1 year, 9 months ago

Can anyone explain the difference between A&D?
upvoted 2 times

  fabulousethiopia 1 year, 9 months ago

A: AWS Regions within various Availability Zones. "within"
Availability Zones are distinct locations within an AWS Region that are engineered to be isolated from failures in other Availability
Zones.
D: AWS Regions with independent Availability Zones."With"
upvoted 8 times
Question #153 Topic 1

A company is using Amazon EC2 Auto Scaling to scale its Amazon EC2 instances.
Which benefit of the AWS Cloud does this example illustrate?

A. High availability

B. Elasticity

C. Reliability

D. Global reach

Correct Answer: A

Community vote distribution

B (75%) A (22%)

  myan2492 Highly Voted  9 months ago

B. elasticity
auto-scaling--> eslaticity
upvoted 20 times

  TRD007 Highly Voted  1 year, 6 months ago

Selected Answer: A
Amazon EC2 Auto Scaling helps you maintain application availability and allows you to automatically add or remove EC2 instances
according to conditions you define.
upvoted 5 times

  Gulsah Most Recent  1 week, 4 days ago

Selected Answer: A
Answer A is correct.
https://aws.amazon.com/ec2/autoscaling/features/
Amazon EC2 Auto Scaling will automatically replace unhealthy or unreachable instances to maintain higher availability of your
applications.
upvoted 1 times

  Gulsah 1 week, 1 day ago

Changing my answer to B.
upvoted 1 times

  man5484 2 weeks, 4 days ago

Selected Answer: B
By using Amazon EC2 Auto Scaling, the company is leveraging the elasticity of the AWS Cloud. Elasticity refers to the ability to dynamically
scale resources up or down based on demand. With Amazon EC2 Auto Scaling, the number of Amazon EC2 instances can automatically
increase or decrease based on predefined scaling policies and conditions.

This provides several benefits, including the ability to meet fluctuating demand while maintaining optimal performance and cost
efficiency. During periods of high demand, Amazon EC2 Auto Scaling can automatically add more instances to handle the increased
workload, ensuring high availability and preventing performance degradation. Conversely, during periods of low demand, it can scale
down the number of instances, reducing costs and optimizing resource utilization.
upvoted 2 times

  Coffeelander 1 month, 1 week ago

If we follow these questionnaire, I guess we will definitely fail. Most of the answers he is highlighting are wrong. Proving himself to be a
chutiya
upvoted 1 times

  Abbytam 1 month, 2 weeks ago

Selected Answer: B
Elasticity
upvoted 2 times

  tester0071 1 month, 3 weeks ago

Selected Answer: B
Auto-scaling- Elasticity - can scale horizontally when required (coorect)
High Availability - Multi AZ deployment - If any data center is not available by any chances then traffic would start diverting to instance
deployed in other AZ
upvoted 2 times
  huanghaiyao 2 months, 3 weeks ago
Selected Answer: B
auto scaling means elasticity ,so b is right
upvoted 2 times

  0x0045 3 months ago

Selected Answer: B
Elasticity
upvoted 2 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: B
B. Elasticity

The example of using Amazon EC2 Auto Scaling to scale Amazon EC2 instances illustrates the benefit of elasticity in the AWS Cloud.
Elasticity refers to the ability of an organization to quickly and easily scale up or down its resources in response to changing demand. In
this case, the company is able to use Amazon EC2 Auto Scaling to automatically adjust the number of EC2 instances based on demand,
ensuring that it always has enough resources to handle incoming traffic without paying for excess capacity during periods of low demand.
upvoted 3 times

  studynoplay 3 months, 4 weeks ago

Selected Answer: B
Auto Scaling - Elasticity
High Availability - Fault Tolerance, DR, recover from failure
upvoted 3 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: B
The example of using Amazon EC2 Auto Scaling to scale Amazon EC2 instances illustrates the benefit of Elasticity in the AWS Cloud.
Elasticity refers to the ability to automatically increase or decrease computing resources as needed to accommodate changes in
application demand. In this case, the company can automatically scale their EC2 instances to handle increases in demand and scale down
during periods of lower demand. This allows the company to optimize resource utilization and ensure that they are only paying for what
they need, while still being able to handle fluctuating workloads.
upvoted 2 times

  kumaran1000001 4 months, 2 weeks ago

A - no. operational excellence

B - yes. scale and up automatically

C - no.

D - no. performance efficiency

upvoted 2 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: B
This example illustrates the benefit of elasticity. Amazon EC2 Auto Scaling automatically adjusts the number of Amazon EC2 instances in a
group according to the demand for the application. This allows the company to quickly and easily scale resources up or down as needed,
based on changing traffic patterns or demand.
upvoted 2 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: B
B. Elasticity.

Using Amazon EC2 Auto Scaling to scale Amazon EC2 instances illustrates the benefit of elasticity in the AWS Cloud. Elasticity refers to the
ability to automatically provision and de-provision compute resources as needed to handle changes in workload demand.

With Amazon EC2 Auto Scaling, the number of Amazon EC2 instances can be scaled up or down automatically based on the actual demand
for resources. This ensures that the application can handle changes in traffic and workload without downtime or manual intervention.

High availability refers to the ability of an application or service to remain available even in the event of failures. Reliability refers to the
ability of an application or service to function as expected over time. Global reach refers to the ability of an application or service to be
accessed from anywhere in the world. While these are all important benefits of the AWS Cloud, the example given specifically illustrates
elasticity.
upvoted 2 times

  Momo2023 4 months, 4 weeks ago

CHATGPT.
The example of a company using Amazon EC2 Auto Scaling to scale its Amazon EC2 instances illustrates the benefit of elasticity in the AWS
Cloud.

Elasticity refers to the ability of an infrastructure to automatically and dynamically scale up or down in response to changes in demand or
traffic. Amazon EC2 Auto Scaling is a service that enables you to automatically scale your EC2 instances based on demand, ensuring that
you have the appropriate capacity to handle traffic spikes and surges.

By using Amazon EC2 Auto Scaling, the company can easily add or remove EC2 instances to match the current demand for their
application, without having to manually provision or de-provision resources. This can lead to significant cost savings, as the company only
pays for the resources they need at any given time.

While high availability, reliability, and global reach are also important benefits of the AWS Cloud, they are not directly illustrated by this
example of using Amazon EC2 Auto Scaling.
upvoted 1 times
  Momo2023 4 months, 4 weeks ago
CHATGPT.
The example of a company using Amazon EC2 Auto Scaling to scale its Amazon EC2 instances illustrates the benefit of elasticity in the AWS
Cloud.

Which AWS service or feature is used to send both text and email messages from distributed applications?

A. Amazon Simple Notification Service (Amazon SNS)

B. Amazon Simple Email Service (Amazon SES)

C. Amazon CloudWatch alerts

D. Amazon Simple Queue Service (Amazon SQS)

Correct Answer: D
Reference:
https://aws.amazon.com/getting-started/hands-on/send-messages-distributed-
applications/#:~:text=Send%20Messages%20Between%20Distributed%
20Applications%20with%20Amazon%20Simple%20Queue%20Service%20(SQS)

Community vote distribution

A (74%) D (26%)

  yogat78735 Highly Voted  1 year, 10 months ago

I think it's A
upvoted 37 times

  sasikumar Highly Voted  1 year, 9 months ago

Amazon Simple Notification Service (Amazon SNS) is a fully managed messaging service for both application-to-application (A2A) and
application-to-person (A2P) communication.

The A2A pub/sub functionality provides topics for high-throughput, push-based, many-to-many messaging between distributed systems,
microservices, and event-driven serverless applications. Using Amazon SNS topics, your publisher systems can fanout messages to a large
number of subscriber systems including Amazon SQS queues, AWS Lambda functions and HTTPS endpoints, for parallel processing, and
Amazon Kinesis Data Firehose. The A2P functionality enables you to send messages to users at scale via SMS, mobile push, and email.
upvoted 29 times

  Gulsah Most Recent  1 week, 4 days ago

Selected Answer: D
Answer is correct: D
https://aws.amazon.com/getting-started/hands-on/send-messages-distributed-applications/
upvoted 1 times

  man5484 2 weeks, 4 days ago

Selected Answer: A
Amazon Simple Notification Service (Amazon SNS) is a fully managed messaging service that enables the sending of both text messages
(SMS) and email messages from distributed applications. It provides a publish-subscribe model, allowing messages to be sent to multiple
subscribers or endpoints simultaneously.

With Amazon SNS, applications can send messages to a variety of endpoints, including email addresses, mobile devices (via SMS), AWS
Lambda functions, HTTP endpoints, and more. It supports both text-based messages and email messages, making it a versatile solution
for sending notifications, alerts, and other types of messages to users or systems.

Amazon SQS is a message queue service that allows you to decouple microservices and distributed systems. SQS is a good option for
storing messages that need to be processed later. However, it is not a good option for sending text or email messages.
upvoted 2 times

  Coffeelander 1 month, 1 week ago

I think the question compiler does not understand english. It says both text and email and obviously it should be for mobile also.
upvoted 1 times

  Zonci 1 month, 4 weeks ago

Selected Answer: A
Amazon SNS is used for pub/sub messaging and sending notifications to multiple subscribers, Amazon SQS is used for reliable message
queuing and decoupling application components, and Amazon SES is used for sending high-quality emails. The choice between these
services depends on your specific use case and the requirements of your application.
upvoted 1 times

  gelodot 2 months, 1 week ago

Selected Answer: D
alcording to this i think id D
distributed applications - > SQS
https://ably.com/topic/aws-sns-vs-sqs#:~:text=SNS%20is%20typically%20used%20for,1%20minute%20to%2014%20days).
upvoted 1 times
  huanghaiyao 2 months, 3 weeks ago
Selected Answer: A
i think A is right,as follows
https://aws.amazon.com/sns/?nc2=type_a
upvoted 2 times

  0x0045 3 months ago

Selected Answer: A
SQS is used to decouple application components, not sent emails and texs. that is what SNS is designed to do.
https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-difference-from-amazon-mq-sns.html
upvoted 1 times

  reshu26 3 months, 1 week ago

SNS is right answer.
SQS is wrong as via SQS can't send email.
upvoted 2 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: A
The AWS service or feature that is used to send both text and email messages from distributed applications is Amazon Simple Notification
Service (Amazon SNS).

Amazon SNS is a fully managed pub/sub messaging service that enables you to send messages from one application to another or to a
large number of subscribers. With Amazon SNS, you can send text messages (SMS), email messages, and push notifications to mobile
devices, as well as other distributed services and applications. Amazon SNS supports multiple protocols, including HTTP/HTTPS, Email,
SMS, Lambda, and more, making it easy to integrate with your existing applications and services.
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: A
The AWS service that is used to send both text and email messages from distributed applications is Amazon Simple Notification Service
(Amazon SNS). Amazon SNS is a fully managed messaging service that enables the delivery of messages to a large number of subscribers,
including SMS text messages, email messages, and push notifications to mobile devices or distributed services.
upvoted 1 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: A
A. Amazon Simple Notification Service (Amazon SNS).

Amazon Simple Notification Service (Amazon SNS) is a fully managed pub/sub messaging service that enables distributed applications to
send messages to one or many recipients using either email or text messages (SMS). With Amazon SNS, developers can send messages to
large numbers of recipients or devices, with automatic scaling to handle load spikes.
upvoted 1 times

  Momo2023 4 months, 4 weeks ago

CHATGPT.
The AWS service or feature that is used to send both text and email messages from distributed applications is Amazon Simple Notification
Service (Amazon SNS).

Amazon SNS is a fully managed messaging service that enables you to send messages or notifications to a variety of endpoints, including
email, SMS (text), mobile push notifications, and more. With Amazon SNS, you can send messages to multiple recipients or subscribers
simultaneously, and you can also filter messages based on recipient preferences or topics.

While Amazon Simple Email Service (Amazon SES) can also be used to send emails from distributed applications, it does not support text
(SMS) messages or other types of notifications.
upvoted 1 times

  noahsark 5 months ago

Selected Answer: A
Amazon Simple Notification Service (Amazon SNS)
https://aws.amazon.com/sns/
upvoted 1 times

  rikininetysix 5 months, 1 week ago

Selected Answer: A
Answer should be 'A', Amazon SNS can send both messages and simple emails. - https://go.aws/3EwYDTJ

"Distribute application-to-person (A2P) notifications to your customers with SMS texts, push notifications, and email."
upvoted 1 times

  Onyejicash 6 months ago

A- Amazon simple queue services: Amazon SQS is the AWS service that allows application components to communicate in the cloud. You
will use the Amazon SQS console to create and configure a message queue, send a message, receive and delete that message, and then
delete the queue.
upvoted 1 times

Question #155 Topic 1

A user is able to set up a master payer account to view consolidated billing reports through:

A. AWS Budgets.

B. Amazon Macie.

C. Amazon QuickSight.

D. AWS Organizations.

Correct Answer: D
Reference:
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html

Community vote distribution

D (100%)

  TheWicker Highly Voted  1 year, 9 months ago

D. AWS Organizations

"You can track the charges across multiple accounts and download the combined cost and usage data."

https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html
upvoted 7 times

  man5484 Most Recent  2 weeks, 4 days ago

Selected Answer: D
AWS Organizations is a service that enables the management of multiple AWS accounts within an organization. It provides features for
centralized billing and management of resources across these accounts.

When using AWS Organizations, a master payer account is set up to consolidate the billing and obtain consolidated billing reports for all
the linked accounts. The master payer account is responsible for paying for the usage across all the linked accounts and can view and
analyze the consolidated billing reports to gain insights into the overall spending and resource usage of the organization.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  aman_aneja 8 months ago

Selected Answer: D
https://aws.amazon.com/organizations/faqs/
upvoted 2 times
Question #156 Topic 1

According to the AWS shared responsibility model, which task is the customer's responsibility?

A. Maintaining the infrastructure needed to run AWS Lambda

B. Updating the operating system of Amazon DynamoDB instances

C. Maintaining Amazon S3 infrastructure

D. Updating the guest operating system on Amazon EC2 instances

Correct Answer: D
Reference:
https://aws.amazon.com/compliance/shared-responsibility-
model/#:~:text=Customers%20are%20responsible%20for%20managing,also%20extends%
20to%20IT%20controls

Community vote distribution

D (100%)

  man5484 2 weeks, 4 days ago

Selected Answer: D
According to the AWS shared responsibility model, the customer is responsible for updating the guest operating system on Amazon EC2
instances.

AWS is responsible for the security and maintenance of the underlying infrastructure, such as the physical servers, networking, and
storage. However, the customer is responsible for the configuration, management, and maintenance of their applications, operating
systems, and data that they run on the EC2 instances.

This includes tasks such as updating the guest operating system, installing security patches, and managing the software and applications
running on the instances.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: D
According to the AWS shared responsibility model, updating the guest operating system on an Amazon EC2 instance is the customer's
responsibility. Therefore, the correct answer is D.
AWS is responsible for the security of the cloud infrastructure, including the physical security of the data centers, the security of the
hypervisor, and the security of the networking and storage infrastructure. However, the customer is responsible for the security of their
own applications and data, including the guest operating system and any applications running on it.
Other tasks that are the customer's responsibility include securing access to AWS services and resources, configuring network security
groups and firewalls, managing user access and permissions, and implementing security controls at the application layer.
Maintenance of AWS services such as AWS Lambda, Amazon DynamoDB, and Amazon S3 is the responsibility of AWS, not the customer.
upvoted 1 times

  studynoplay 3 months, 4 weeks ago

Selected Answer: D
Host OS - AWS
Guest OS - customer
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  DST_Justin 6 months, 3 weeks ago

Selected Answer: D
GUEST > customer
upvoted 1 times

  Agil09 8 months ago

Selected Answer: D
D is correct
upvoted 2 times

  Justyna94 1 year, 4 months ago

Selected Answer: D
D is correct
upvoted 2 times
  rch040 1 year, 7 months ago
D is Correct
upvoted 1 times

  asad12 1 year, 10 months ago

D- correct
upvoted 4 times
Question #157 Topic 1

A company wants to migrate a small website and database quickly from on-premises infrastructure to the AWS Cloud. The company has limited
operational knowledge to perform the migration.
Which AWS service supports this use case?

A. Amazon EC2

B. Amazon Lightsail

C. Amazon S3

D. AWS Lambda

Correct Answer: C

Community vote distribution

B (83%) C (18%)

  semo41 Highly Voted  1 year, 9 months ago

I think the answer is B (lightsail is more suitable for little experience)
upvoted 24 times

  Blimpy 8 months, 1 week ago

Yes - most suitable - "Lightsail instances are specifically engineered by AWS for web servers, developer environments, and small
database use cases." https://lightsail.aws.amazon.com/ls/docs/en_us/articles/amazon-lightsail-frequently-asked-questions-faq
upvoted 5 times

  storm2513 Highly Voted  1 year, 10 months ago

It’s B
upvoted 9 times

  man5484 Most Recent  2 weeks, 4 days ago

Selected Answer: B
Amazon Lightsail is a simplified and user-friendly service that allows users to quickly launch and manage virtual private servers (VPS) with
pre-configured options for compute, storage, and networking. It provides an easy-to-use interface and offers pre-configured application
stacks for various use cases, including website hosting and database management.

With Lightsail, the company can easily create an instance to host their website and database, and the service takes care of the underlying
infrastructure, including networking, storage, and server management. It provides a streamlined migration process and offers a simplified
experience for users who may not have extensive knowledge of AWS services.
upvoted 1 times

  Natasha7289 1 month, 1 week ago

Lightsail is perfectly fit for this one.
upvoted 1 times

  Marcelo_Costa 2 months, 1 week ago

I wonder HOW a S3 bucket can run a database.
upvoted 1 times

  nailimvali 2 months, 2 weeks ago

Selected Answer: B
For a small website and database migration with limited operational knowledge, Amazon Lightsail is the most suitable AWS service.
Amazon Lightsail offers a preconfigured virtual machine (VM) image with a web server, and also includes a built-in database. This makes it
easy to quickly migrate a small website and database from on-premises infrastructure to the AWS Cloud with minimal operational
knowledge1.

Therefore, option B is correct: Amazon Lightsail supports this use case

upvoted 1 times

  constantlearning 2 months, 2 weeks ago

Selected Answer: B
B is the right answer. The question implies multiple functions that need to be transfered into cloud. LightSail is the best and quicker
option
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: B
B is right
upvoted 1 times
  brianbanda 3 months, 3 weeks ago
The AWS service that best supports this use case is Amazon Lightsail.

Amazon Lightsail is a simplified, easy-to-use service that provides a preconfigured environment to deploy web applications quickly. It is
designed to help customers who have limited AWS experience to quickly launch and manage a simple application on the cloud.

Amazon Lightsail offers a preconfigured virtual machine (VM) image with a web server, and also includes a built-in database. This makes it
easy to quickly migrate a small website and database from on-premises infrastructure to the AWS Cloud with minimal operational
knowledge.
upvoted 2 times

  akiraaws 4 months ago

why S3 if you can't run database on it?
Letter B is correct.
upvoted 1 times

  tony629 4 months ago

Selected Answer: B
I think the answer is AWS Light
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - no b’coz needs operational knowledge

B - yes

C - storage service

D - serverless computing service not intended for running websites

upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: B
The best option for this use case would be Amazon Lightsail. Amazon Lightsail is an easy-to-use, low-cost service for deploying and
managing virtual private servers and web applications. It is designed to help users quickly launch and manage virtual private servers,
websites, and applications in the AWS Cloud. Amazon Lightsail provides a simplified way to get started with AWS for customers who don't
have deep technical knowledge, by offering a simple user interface, a pre-configured virtual machine image library, and straightforward
pricing.
upvoted 1 times

  MRui 4 months, 2 weeks ago

How can the Website database be stored in S3? A website with a database is a dynamic website, and S3 is for static websites.
upvoted 1 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: B
B. Amazon Lightsail.

Amazon Lightsail is a simplified and user-friendly service that enables customers to quickly deploy a website and database to the AWS
Cloud without requiring advanced technical knowledge. With Lightsail, customers can launch a pre-configured virtual machine instance
with a choice of operating system, web application platform, and database engine, and easily migrate their data and applications to the
cloud.
upvoted 1 times

  harisene 5 months ago

Selected Answer: B
B is the answer
upvoted 1 times

  liliyao 5 months, 1 week ago

B， For a small website and database migration with limited operational knowledge, Amazon Lightsail is the most suitable AWS service.
upvoted 2 times
Question #158 Topic 1

A company is moving multiple applications to a single AWS account. The company wants to monitor the AWS Cloud costs incurred by each
application.
What can the company do to meet this requirement?

A. Set up invoiced billing.

B. Use AWS Artifact.

C. Set budgets in Cost Explorer.

D. Create cost allocation tags.

Correct Answer: C

Community vote distribution

D (88%) 12%

  man5484 2 weeks, 4 days ago

Selected Answer: D
Cost allocation tags are key-value pairs that can be assigned to AWS resources. They allow users to categorize and track costs based on
specific attributes or dimensions, such as application, environment, department, or any other custom criteria. By assigning cost allocation
tags to resources, the company can gain visibility into the costs associated with each application.

To implement this, the company can create and apply appropriate cost allocation tags to the resources used by each application. Once the
tags are in place, they can use AWS Cost Explorer or the AWS Cost and Usage Reports to view cost breakdowns based on the assigned
tags. This will provide the necessary visibility and insights into the costs incurred by each application within the single AWS account.
upvoted 2 times

  0x0045 3 months ago

Selected Answer: D
D Agreed
upvoted 1 times

  brianbanda 3 months, 3 weeks ago

To meet the requirement of monitoring the AWS Cloud costs incurred by each application, the company can create cost allocation tags.

Cost allocation tags allow the company to categorize resources in the AWS environment with metadata that reflects the organization's
structure and needs. Each tag consists of a key-value pair that can be associated with AWS resources such as EC2 instances, EBS volumes,
and RDS instances.

By applying cost allocation tags to AWS resources, the company can gain a better understanding of which resources are used by which
application, and monitor the costs of each application in Cost Explorer. The company can also use the tags to filter and group the cost and
usage data in reports and create custom cost allocation reports.
upvoted 2 times

  kumaran1000001 4 months, 2 weeks ago

A - no coz receives invoices instead of paying by card

B - no coz access to compliance reports

C - no coz gets alerts for accounts on over usage, etc.

D - yes
upvoted 1 times

  MRui 4 months, 2 weeks ago

D is the answer. How to you know the cost for an individual app in Budgets if you do not have tags associated?
upvoted 2 times

  harisene 5 months ago

Selected Answer: D
D is the answer
upvoted 1 times

  Amycert 5 months ago

Selected Answer: D
It should be D, budgets are not used to monitor the costs by resource, they are mostly used to control the money spent
upvoted 1 times
  nour 5 months, 1 week ago
Selected Answer: D
Cost allocation tags are labels that can be attached to AWS resources and tracked in the AWS Billing and Cost Management console. This
helps the company to identify and monitor the costs incurred by each application.
upvoted 1 times

  Phary 5 months, 2 weeks ago

C is correct. There are some limitation if you use tag to monitor the cost of the application. See below :

Limitations on resources that can be tagged: Not all AWS resources support tagging, and the tags supported by different services may
have varying limitations. It's important to review the documentation of each service to understand which resources can be tagged and
how.

Limitations on the granularity of the tags: The granularity of the tags can be limited by the service that the resource belongs to. For
example, you may not be able to tag an EC2 instance by its individual usage time, and instead, the tag will apply to the entire instance.
This limitation can make it difficult to track and optimize costs for specific application components.
upvoted 1 times

  aniani 6 months ago

Look at the word "Monitor". (D) Cost allocation tags is relevant one to monitor. Is dint ask to set the budget or pool the data.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  Testeurtest 8 months ago

Selected Answer: D
Tricky question again :
https://www.cloudzero.com/blog/aws-budgets-vs-cost-
explorer#:~:text=AWS%20cost%20tool.-,What%20Are%20The%20Differences%20Between%20AWS%20Budgets%20And%20Cost%20Explore
r,costs%20and%20forecast%20future%20spending.
"It’s also not possible to create custom budgets directly from AWS Cost Explorer"
upvoted 1 times

  OliverBd 8 months, 1 week ago

Selected Answer: D
It is D
upvoted 2 times

  Craig92866 9 months, 1 week ago

Selected Answer: C
C. Yes, cost allocation tags (D) are relevant here but those tags are just labels. To pool that data and run analytics, you'll need to create a
budget in Cost Explorer.
upvoted 3 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: D
D is correct
upvoted 3 times

  timHAG 10 months, 3 weeks ago

Selected Answer: D
d is right
upvoted 2 times

  Arvina 10 months, 4 weeks ago

Selected Answer: D
Should be D
upvoted 3 times
Question #159 Topic 1

Which design principle is achieved by following the reliability pillar of the AWS Well-Architected Framework?

A. Vertical scaling

B. Manual failure recovery

C. Testing recovery procedures

D. Changing infrastructure manually

Correct Answer: C
Reference:
https://aws.amazon.com/blogs/apn/the-5-pillars-of-the-aws-well-architected-framework/

Community vote distribution

C (100%)

  aprendiendo Highly Voted  1 year, 9 months ago

C. Testing recovery procedures
Reliability
Design Principles
Automatically recover from failure
Test recovery procedures
Scale horizontally to increase aggregate workload availability
Stop guessing capacity
Manage change in automation
upvoted 18 times

  JohnO1971 Highly Voted  1 year, 10 months ago

No, answer is C. If you follow the link supplied, you will find it mentioned.
upvoted 7 times

  man5484 Most Recent  2 weeks, 4 days ago

Selected Answer: C
The reliability pillar focuses on ensuring that a workload operates continuously and reliably, even in the face of failures. It emphasizes the
implementation of mechanisms to automatically recover from failures, such as using redundancy, fault tolerance, and automated backup
and restore processes.

As part of this pillar, it is important to test recovery procedures regularly to validate their effectiveness and ensure they function as
expected during actual failure scenarios. By conducting regular testing and simulations, organizations can identify and address any issues
or gaps in their recovery procedures, improving the overall reliability of their workload.
upvoted 1 times

  Amycert 5 months ago

Selected Answer: C
C according to chatgpt
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

do you think that chatgpt is always correct?
upvoted 2 times

  alexandercamachop 5 months, 2 weeks ago

Selected Answer: C
C, Reliability is to recover from failures fast, part of that is testing it to make sure it actually is able to recover in case of an actual failure.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  arisyuli 7 months, 3 weeks ago

vote for B
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: C
agreed
upvoted 1 times
  seaninwa 1 year, 4 months ago
There is no dependability pillar, it's reliability so why are they using the wrong word even though it's essentially the same meaning. Just
use the reliability word, wtf.
upvoted 3 times

  aboeyunus 1 year, 9 months ago

C is correct

Reliabilty
Test recovery procedures - Use automation to simulate different failures or to recreate
scenarios that led to failures before
upvoted 4 times

  aprendiendo 1 year, 9 months ago

Reliability
Design Principles
Automatically recover from failure
Test recovery procedures
Scale horizontally to increase aggregate workload availability
Stop guessing capacity
Manage change in automation
upvoted 5 times

  Ting0707 1 year, 10 months ago

This is B
upvoted 2 times

  MisooB 1 year, 9 months ago

"Horizontal" scaling is what you ment
upvoted 1 times

  Nancy_kk 1 year, 9 months ago

If B is Automatically recover from failure will be correct, but the option B is manual failure recovery which is incorrect.
upvoted 2 times
Question #160 Topic 1

A user needs to quickly deploy a non-relational database on AWS. The user does not want to manage the underlying hardware or the database
software.
Which AWS service can be used to accomplish this?

A. Amazon RDS

B. Amazon DynamoDB

C. Amazon Aurora

D. Amazon Redshift

Correct Answer: B
Reference:
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/SQLtoNoSQL.html

Community vote distribution

B (100%)

  b_d Highly Voted  1 year, 10 months ago

Yes, it's B - DynamoDB.
upvoted 9 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: B
B. Amazon DynamoDB
upvoted 1 times

  man5484 2 weeks, 4 days ago

Selected Answer: B
Amazon DynamoDB is a fully managed NoSQL database service provided by AWS. It allows users to store and retrieve any amount of data
and serves as a key-value and document database. DynamoDB takes care of the infrastructure management, including hardware
provisioning, database setup, scaling, and patching, allowing users to focus on their application development.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: B
For quickly deploying a non-relational database on AWS without managing the underlying hardware or database software, the best choice
is Amazon DynamoDB.

Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability.
It is designed to handle large amounts of data with high read and write throughput, making it ideal for use cases such as gaming, ad tech,
IoT, and mobile applications. With Amazon DynamoDB, the user doesn't have to worry about managing the underlying hardware or
database software, as AWS takes care of the infrastructure and maintenance.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  Agil09 8 months ago

Selected Answer: B
https://aws.amazon.com/dynamodb/features/
upvoted 1 times

  aman_aneja 8 months ago

Selected Answer: B
https://aws.amazon.com/dynamodb/features/
upvoted 2 times

  wkj 11 months ago

B - DynamoDB
upvoted 1 times

  BillyC 1 year, 8 months ago

B is correct
upvoted 3 times
  jpush 1 year, 9 months ago
B - DynamoDB.
upvoted 3 times
Question #161 Topic 1

Which task is an AWS responsibility when a workload is running in Amazon RDS?

A. Creating the database table

B. Updating the database schema

C. Installing the database engine

D. Dropping the database records

Correct Answer: C

Community vote distribution

C (100%)

  myan2492 Highly Voted  9 months ago

C. AWS is responsible for managing RDS database engine
upvoted 5 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: C
C. Installing the database engine
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: C
Amazon RDS takes care of the underlying infrastructure and manages the installation, configuration, and patching of the database
engine. Users can focus on managing their databases, including creating tables, updating the schema, and managing the data, while AWS
handles the database engine administration.
upvoted 1 times

  khanda 2 weeks, 6 days ago

Selected Answer: C
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
C. Installing the database engine is an AWS responsibility when a workload is running in Amazon RDS.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: C
Agreed, AWS is responsible for managing the RDS database engine.
upvoted 3 times

  timHAG 10 months, 3 weeks ago

i think its dropping the DB records, installing the DB enging is AWS for RDS as its fully managed by them
upvoted 1 times

  timHAG 10 months, 3 weeks ago

i take it back,, i was thinking of customer responsibility.. Q is right, AWS should install DB engin
upvoted 1 times
Question #162 Topic 1

A development team wants to publish and manage web services that provide REST APIs.
Which AWS service will meet this requirement?

A. AWS App Mesh

B. Amazon API Gateway

C. Amazon CloudFront

D. AWS Cloud Map

Correct Answer: B

Community vote distribution

B (100%)

  vichu0308 Highly Voted  10 months, 2 weeks ago

Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at
any scale. So its B
upvoted 14 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: B
B. Amazon API Gateway

"Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs
at any scale. APIs act as the "front door" for applications to access data, business logic, or functionality from your backend services. Using
API Gateway, you can create RESTful APIs and WebSocket APIs that enable real-time two-way communication applications. API Gateway
supports containerized and serverless workloads, as well as web applications."

https://aws.amazon.com/api-gateway/
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: B
Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at
any scale. It provides capabilities to create RESTful APIs, handle API versioning, perform authentication and authorization, apply rate
limiting and throttling, and integrate with other AWS services or external backends. It offers features like API caching, request/response
transformations, and built-in support for generating SDKs and documentation.
upvoted 1 times

  sohan1444 1 month ago

Selected Answer: B
b is the answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 3 times

  Lorber 8 months, 3 weeks ago

Selected Answer: B
Answer is B
upvoted 1 times
Question #163 Topic 1

A company has a social media platform in which users upload and share photos with other users. The company wants to identify and remove
inappropriate photos. The company has no machine learning (ML) scientists and must build this detection capability with no ML expertise.
Which AWS service should the company use to build this capability?

A. Amazon SageMaker

B. Amazon Textract

C. Amazon Rekognition

D. Amazon Comprehend

Correct Answer: D

Community vote distribution

C (100%)

  myan2492 Highly Voted  9 months ago

C. Rekognition
Amazon Rekognition
Automate your image and video analysis with machine learning
Amazon Comprehend
Derive and understand valuable insights from text within documents
upvoted 13 times

  Blimpy 8 months, 1 week ago

100% its explained here https://youtu.be/fnFpE6UEd_I
upvoted 5 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: C
C. Amazon Rekognition

"Detect inappropriate content, Quickly and accurately identify unsafe or inappropriate content across image and video assets based on
general or business-specific standards and practices."

https://aws.amazon.com/rekognition/
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: C
Amazon Rekognition is a fully managed service that provides computer vision capabilities for analyzing images and videos. It offers pre-
trained models for various tasks, including image moderation, which can be used to detect explicit or inappropriate content within
images. With Amazon Rekognition, the company can easily integrate this capability into their social media platform without the need for
ML expertise.
upvoted 1 times

  nailimvali 2 months, 2 weeks ago

Selected Answer: C
The AWS service that the company should use to build this capability is Amazon Rekognition. Amazon Rekognition is a fully managed
image and video analysis service that can detect and recognize objects, people, text, scenes, and activities in images and videos. It can
also detect inappropriate content in images and videos.

Therefore, option C is correct: The company should use Amazon Rekognition to build this capability
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: C
i think answer is C
D:Amazon Comprehend
Derive and understand valuable insights from text within documents
upvoted 1 times

  [Removed] 2 months, 3 weeks ago

Selected Answer: C
I think there a obviously wrong answers on for engagement.
upvoted 1 times
  0x0045 3 months ago
Selected Answer: C
C: Ugh
upvoted 1 times

  RamyaKondapalli 3 months, 3 weeks ago

C is the Answer
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The AWS service that the company should use to build this capability is C. Amazon Rekognition.

Amazon Rekognition is a fully managed image and video analysis service that can detect and recognize objects, people, text, scenes, and
activities in images and videos. It can also detect inappropriate content, such as explicit or suggestive adult content, violence, and gore.
upvoted 1 times

  harisene 5 months ago

Selected Answer: C
C is the answer
upvoted 1 times

  Khattak 6 months ago

C is the correct answer Amazon Rekognition
upvoted 1 times

  Patil111 6 months ago

Image Processing=Amazon Rekognition.
upvoted 1 times

  Onyejicash 6 months ago

C-Amazon Rekgnition is a machine learning that add images and video, also can detect inappropriate content
D-Amazon comprehend is document processing using synchronous and asynchronous .
the highlighted question is " No machine learning " is a tricky one here. so i go with amazon comprehend .
upvoted 1 times

  Dincha 6 months ago

Selected Answer: C
C is the answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Rmnx 7 months, 2 weeks ago

Selected Answer: C
https://aws.amazon.com/rekognition/
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: C
Agreed, please refer to: https://aws.amazon.com/rekognition/
upvoted 1 times
Question #164 Topic 1

Which responsibility belongs to AWS when a company hosts its databases on Amazon EC2 instances?

A. Database backups

B. Database software patches

C. Operating system patches

D. Operating system installations.

Correct Answer: D

Community vote distribution

D (88%) 8%

  anagy11 Highly Voted  10 months, 2 weeks ago

Selected Answer: D
When you choose to use EC2 for your database, you first have to provision the EC2 instance, which means you will use an AMI, containing
the OS itself which is then installed by AWS to the EC2. All the other tasks are your responsibility.
upvoted 16 times

  mayliang Highly Voted  3 months, 2 weeks ago

Why there are so many confusing questions here?
upvoted 7 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: D
D. Operating system installations.
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: D
When a company hosts its databases on Amazon EC2 instances, AWS is responsible for providing the underlying infrastructure and
managing the physical hardware of the EC2 instances. However, the responsibility for tasks related to the software and data stored within
the instances is typically the responsibility of the customer.

Therefore, among the options provided, the responsibility that belongs to AWS when a company hosts its databases on Amazon EC2
instances is option D, operating system installations. AWS provisions and manages the underlying operating system for EC2 instances,
ensuring that it is installed and ready for customer use.
upvoted 1 times

  RS16 3 months, 2 weeks ago

A is correct
upvoted 1 times

  Gaddo 3 months, 2 weeks ago

When a company hosts its databases on Amazon EC2 instances, AWS is responsible for providing and maintaining the underlying
infrastructure, including the physical server, network, and storage resources. However, the responsibility for managing the databases,
including database backups, database software patches, operating system patches, and operating system installations, is the
responsibility of the customer. Therefore, the answer is none of the options (A, B, C, or D) belong to AWS responsibility.
upvoted 4 times

  Guru4Cloud 3 months, 3 weeks ago

If you think......
As an Infrastructure as a Service (IaaS) offering, Amazon EC2 instances provide customers with virtual machines (VMs) on which they can
install and manage their own operating systems, applications, and databases. AWS is responsible for providing the underlying physical
infrastructure, but customers are responsible for managing and securing the VMs and any software installed on them.

Therefore, the correct answer is: None of the above.

When a company hosts its databases on Amazon EC2 instances, the responsibility for database backups, database software patches,
operating system patches, and operating system installations would fall under the responsibility of the customer. AWS provides tools and
services that can help customers manage and automate these tasks, but ultimately it is the customer's responsibility to ensure that their
databases are backed up and secure, and that any necessary software patches or updates are applied in a timely manner.
upvoted 2 times

  akiraaws 4 months ago

The letter D makes more sense.
upvoted 1 times
  Praveenl 4 months ago
A. DB backup
upvoted 1 times

  Shan455 4 months ago

Selected Answer: A
Aws should take care of database backups
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: D
EC2 Instances for database installation
upvoted 1 times

  sionita 6 months ago

https://aws.amazon.com/compliance/shared-responsibility-model/

Am i crazy or the answer should b C? I know that the keyword si guest OS, but answed D can't be. The OS comes with the AMI so no need
to install that.
"Customers that deploy an Amazon EC2 instance are responsible for management of the guest operating system (including updates and
security patches), any application software or utilities installed by the customer on the instances, and the configuration of the AWS-
provided firewall (called a security group) on each instance. "
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  arisyuli 7 months, 3 weeks ago

Vote for C, operating system patches is AWS & Operating system installations is customer
upvoted 1 times

  dark_cherrymon 8 months ago

Selected Answer: D
D, no such thing as database software patch
upvoted 1 times

  SilverAlpaca 8 months, 1 week ago

Selected Answer: D
vot for D
upvoted 1 times

  ShoobyDooby 10 months, 1 week ago

i thought OS patches is AWS responsibility and Guest OS patches is customer responsibility. confused.
upvoted 3 times
Question #165 Topic 1

A company wants to use Amazon S3 to store its legacy data. The data is rarely accessed. However, the data is critical and cannot be recreated.
The data needs to be available for retrieval within seconds.
Which S3 storage class meets these requirements MOST cost-effectively?

A. S3 Standard

B. S3 One Zone-Infrequent Access (S3 One Zone-IA)

C. S3 Standard-Infrequent Access (S3 Standard-IA)

D. S3 Glacier

Correct Answer: A

Community vote distribution

C (67%) B (26%) 5%

  elcid32 Highly Voted  7 months, 3 weeks ago

Shouldn't it be B: S3 One Zone-IA is for data that is accessed less frequently, but requires rapid access when needed. Unlike other S3
Storage Classes which store data in a minimum of three Availability Zones (AZs), S3 One Zone-IA stores data in a single AZ and costs 20%
less than S3 Standard-IA. The 20% less fits the cost effective solution they are looking for.
upvoted 13 times

  Anonymousduck 6 months ago

It says clearly that data is critical and can't be recreated which means the storage class needs to be highly available so 'C' makes sense
upvoted 11 times

  Saif93 6 months, 2 weeks ago

100% valid reasoning. It's B.

Here:

https://aws.amazon.com/about-aws/whats-new/2018/04/announcing-s3-one-zone-infrequent-access-a-new-amazon-s3-storage-class/
upvoted 1 times

  Marcelo_Costa 2 months, 1 week ago

It's C. The link you sent says clearly that One Zone must be used for data that can be recreated, which is no the case.
upvoted 3 times

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: C
Agreed, check this out: https://aws.amazon.com/s3/storage-classes/?trk=67bd8f28-3315-4e58-8488-
8cd82ecb9cbc&sc_channel=ps&s_kwcid=AL!4422!3!596115621492!p!!g!!amazon%20s3&ef_id=CjwKCAjw2OiaBhBSEiwAh2ZSP5GrvVvKEwQR
LgRvz-wZmpDqyvBO4CHtQu-abwSq6dGpMqPZlfIRYxoCvocQAvD_BwE:G:s&s_kwcid=AL!4422!3!596115621492!p!!g!!amazon%20s3

S3 Standard-IA is for data that is accessed less frequently, but requires rapid access when needed. S3 Standard-IA offers the high
durability, high throughput, and low latency of S3 Standard, with a low per GB storage price and per GB retrieval charge. This combination
of low cost and high performance make S3 Standard-IA ideal for long-term storage, backups, and as a data store for disaster recovery
files. S3 Storage Classes can be configured at the object level and a single bucket can contain objects stored across S3 Standard, S3
Intelligent-Tiering, S3 Standard-IA, and S3 One Zone-IA. You can also use S3 Lifecycle policies to automatically transition objects between
storage classes without any application changes.
upvoted 5 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: C
C. S3 Standard-Infrequent Access (S3 Standard-IA)

B is incorrect, coz data is critical and cannot be recreated which need multiple AZs to support high availability.
upvoted 1 times

  Pranava_GCP 4 days, 19 hours ago

B. S3 One Zone-Infrequent Access (S3 One Zone-IA) which is incorrect choice.
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: B
Answer is B. S3 One Zone-Infrequent Access (S3 One Zone-IA)
Data is critical and cannot be created, needs to be available for retrieval within seconds.
https://aws.amazon.com/s3/storage-classes/#__
It’s a good choice for storing secondary backup copies of on-premises data or easily re-creatable data.`
`
upvoted 1 times

  Gulsah 1 week, 4 days ago

Changing my answer, it must be B. On the same page:
https://aws.amazon.com/s3/storage-classes/#__
B̀ecause S3 One Zone-IA stores data in a single AWS Availability Zone, data stored in this storage class will be lost in the event of
Availability Zone destruction.`
The data is legacy data and it is critical, cannot be recreated. So this would not be a good option. Therefore answer is C. S3 Standard-
Infrequent Access (S3 Standard-IA)
S3 Standard-IA is for data that is accessed less frequently, but requires rapid access when needed.
upvoted 1 times

  Gulsah 1 week, 4 days ago

@Moderators, can you delete this? Thank you.
upvoted 1 times

  Gulsah 1 week, 4 days ago

Changing my answer, it must be C. On the same page:
https://aws.amazon.com/s3/storage-classes/#__
B̀ecause S3 One Zone-IA stores data in a single AWS Availability Zone, data stored in this storage class will be lost in the event of
Availability Zone destruction.`
The data is legacy data and it is critical, cannot be recreated. So this would not be a good option. Therefore answer is C. S3 Standard-
Infrequent Access (S3 Standard-IA)
S3 Standard-IA is for data that is accessed less frequently, but requires rapid access when needed.
upvoted 1 times

  Kariyakarawana 2 weeks, 1 day ago

Selected Answer: B
S3 One Zone-IA is for data that is accessed less frequently, but requires rapid access when needed. Unlike other S3 Storage Classes which
store data in a minimum of three Availability Zones (AZs), S3 One Zone-IA stores data in a single AZ and costs 20% less than S3 Standard-
IA.
Refer: https://aws.amazon.com/s3/storage-classes/#:~:text=S3%20One%20Zone%2DIA%20is,less%20than%20S3%20Standard%2DIA.
upvoted 2 times

  man5484 2 weeks, 3 days ago

Selected Answer: B
Both S3 One Zone-IA and S3 Standard-IA meet the company's requirements of storing rarely accessed data that needs to be available for
retrieval within seconds.
The main difference between the two storage classes is the cost. S3 One Zone-IA is less expensive than S3 Standard-IA because it stores
data in a single Availability Zone. However, S3 Standard-IA stores data in three Availability Zones, which makes it more resilient to outages.
Here is a table that summarizes the key differences between S3 One Zone-IA and S3 Standard-IA:
Storage class Cost Retrieval time Data redundancy
S3 One Zone-IA Less expensive Milliseconds Single Availability Zone
S3 Standard-IA More expensive Minutes Three Availability Zones
upvoted 2 times

  illenium 1 month, 1 week ago

Should be C

S3 Standard-IA: S3 Standard-IA is suitable for scenarios where data access patterns are infrequent but where high durability and
availability are required. It is a good choice for backup and restore data, disaster recovery, and long-term storage of rarely accessed data.

S3 One Zone-IA: S3 One Zone-IA is recommended for scenarios where data can be easily reproduced or has lower value, and the lower
cost is prioritized over the risk of data loss due to the loss of a single Availability Zone. It is suitable for scenarios such as secondary
backups, replicated data, or easily reproducible data.
upvoted 3 times

  Vihar1 1 month, 3 weeks ago

Storage Class Cost Availability Durability Retrieval Speed
S3 Standard Highest Highest Highest Fastest
S3 Standard-IA Lower High High Within seconds
S3 One Zone-IA Lower High High Within minutes
S3 Glacier Lowest Very high Very high Within hours
upvoted 4 times

  sdas1 2 months, 2 weeks ago

Answer is C.
https://aws.amazon.com/about-aws/whats-new/2018/04/announcing-s3-one-zone-infrequent-access-a-new-amazon-s3-storage-class/
Amazon S3 Standard, S3 Standard-IA, S3 One Zone-IA, and Amazon Glacier, are all designed for 99.999999999% durability. Amazon S3
Standard, S3 Standard-IA and Amazon Glacier distribute data across a minimum of three geographically-separated Availability Zones to
offer the highest level of resilience to AZ loss. S3 One Zone-IA saves cost by storing infrequently accessed data with lower resilience in a
single Availability Zone. Amazon S3 Standard-IA is a good choice for long-term storage of master data that is infrequently accessed. For
other infrequently accessed data, such as duplicates of backups or data summaries that can be regenerated, S3 One Zone-IA provides a
lower price point.
upvoted 2 times
  constantlearning 2 months, 2 weeks ago
Selected Answer: B
For storing legacy data that is rarely accessed but needs to be available for retrieval within seconds, the most cost-effective S3 storage
class would be:

B. S3 One Zone-Infrequent Access (S3 One Zone-IA)

upvoted 2 times

  0x0045 3 months ago

Selected Answer: C
1: Needs redundancy, 2: Needs good performance, 3: Needs to be cost effective

It has to be C: Standard IA is multi-zone (redundant), Standard Tire (speedy enough), and IA, lower performing storage so less cost
upvoted 2 times

  yashinaalvin 3 months, 1 week ago

The answer can ONLY be C - S3 Standard-IA
upvoted 2 times

  Gaddo 3 months, 2 weeks ago

If the data is critical and needs to be available for retrieval within seconds, S3 Standard is the best option because it provides low-latency,
high-throughput performance and is designed for frequently accessed data. However, if the data is rarely accessed, it can be moved to a
more cost-effective storage class, such as S3 Standard-Infrequent Access (S3 Standard-IA). S3 Standard-IA is designed for data that is
accessed less frequently but requires rapid access when needed. This storage class provides a lower storage price than S3 Standard, but
with a retrieval fee. Therefore, S3 Standard-IA is the most cost-effective storage class for this use case.
upvoted 2 times

  darn 3 months, 4 weeks ago

tricky, could be Amazon S3 Glacier Instant Retrieval but the fact that says "GLACIER" and no last name, makes me think its B
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The storage class that meets the given requirements most cost-effectively is S3 Standard-Infrequent Access (S3 Standard-IA).

S3 Standard-IA is designed for data that is accessed less frequently, but still requires immediate access when needed. This storage class
offers the same low latency and high throughput performance as S3 Standard, but with a lower storage cost. It charges a lower fee for
storage, but charges a retrieval fee when the data is accessed.
upvoted 2 times

  kumaran1000001 4 months, 2 weeks ago

A - no coz not cost-effective in this scenario

B - no coz not meeting data criticality spec

C - yes

C - no coz not meeting retrieval in seconds

upvoted 2 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
Option C, S3 Standard-Infrequent Access (S3 Standard-IA), is the most cost-effective storage class that meets the given requirements. This
storage class is designed for data that is accessed less frequently but still requires rapid access when needed. It offers the same low
latency and high throughput performance as S3 Standard, but with a lower storage cost and an additional retrieval fee.
Option B, S3 One Zone-Infrequent Access (S3 One Zone-IA), is not suitable for storing critical data that cannot be recreated since it stores
data in a single availability zone, which means that data may be lost if the availability zone becomes unavailable.
upvoted 4 times
Question #166 Topic 1

An online retail company wants to migrate its on-premises workload to AWS. The company needs to automatically handle a seasonal workload
increase in a cost- effective manner.
Which AWS Cloud features will help the company meet this requirement? (Choose two.)

A. Cross-Region workload deployment

B. Pay-as-you-go pricing

C. Built-in AWS CloudTrail audit capabilities

D. Auto Scaling policies

E. Centralized logging

Correct Answer: BD

Community vote distribution

BD (100%)

  JackFish Highly Voted  9 months, 4 weeks ago

Selected Answer: BD
BD – Pay-as-you-go pricing is great for a cost-effective manner, and with auto scaling policies, customer can define a scaling policy that
performs the optimal scaling action, such as change in capacity by value or percentage, or setting exact capacity values.

Cross-Region workload deployment is not fitting for the question (there is nothing about globalisation).

There is no request for monitoring user activity, so CloudTrail is also incorrect.

There is nothing about checking any statuses or collecting logs, so there is no need for centralized logging.
upvoted 7 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: BD
B. Pay-as-you-go pricing
D. Auto Scaling policies
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: BD
B. Pay-as-you-go pricing: With pay-as-you-go pricing, the company can scale its resources up or down based on demand during the
seasonal workload increase. This allows the company to pay only for the resources it uses, helping to optimize costs.

D. Auto Scaling policies: Auto Scaling allows the company to automatically adjust the number of resources based on demand. By setting
up Auto Scaling policies, the company can define rules to automatically add or remove resources to match the workload. This ensures that
the company can handle the seasonal workload increase efficiently while minimizing costs during periods of lower demand.
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: BD
no doubts
upvoted 1 times

  Khattak 6 months ago

BD correct answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BD
BD is the answer.
upvoted 1 times

  myan2492 9 months ago

B+D
auto scaling, pay as you go
upvoted 2 times
Question #167 Topic 1

Which AWS service helps developers use loose coupling and reliable messaging between microservices?

A. Elastic Load Balancing

B. Amazon Simple Notification Service (Amazon SNS)

C. Amazon CloudFront

D. Amazon Simple Queue Service (Amazon SQS)

Correct Answer: D

Community vote distribution

D (100%)

  JackFish Highly Voted  9 months, 4 weeks ago

Selected Answer: D
D - Amazon SQS is a fully managed message queuing for microservices, distributed systems, and serverless applications.

Elastic Load Balancing automatically distributes incoming application traffic; it doesn’t help with developer work in this context.

Amazon SNS is used for email and notifications to users, not for developers.

Amazon CloudFront is a content delivery network (CDN) service built for securely delivering content to customers. It is not used for loose
coupling nor microservices.
upvoted 9 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: D
D. Amazon Simple Queue Service (Amazon SQS)

"Amazon SQS provides a simple and reliable way for customers to decouple and connect components (microservices) together using
queues."
https://aws.amazon.com/sqs/#:~:text=Amazon%20SQS%20provides%20a%20simple%20and%20reliable%20way%20for%20customers%20t
o%20decouple%20and%20connect%20components%20(microservices)%20together%20using%20queues.
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: D
Amazon SQS is a fully managed message queuing service that enables decoupling and asynchronous communication between
microservices. It provides reliable message delivery and ensures that messages are processed in a scalable and fault-tolerant manner. By
using SQS, developers can implement a publish-subscribe pattern or a message queue pattern to enable loosely coupled communication
between microservices.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  myan2492 9 months ago

D. simple queue service
What is Amazon SQS used for?
Amazon SQS is a message queue service used by distributed applications to exchange messages through a polling model, and can be
used to decouple sending and receiving components.
upvoted 2 times
Question #168 Topic 1

A company needs to build an application that uses AWS services. The application will be delivered to residents in European Counties. The
company must abide by regional regulatory requirements.
Which AWS service or program should the company use to determine which AWS services meet the regional requirements?

A. AWS Audit Manager

B. AWS Shield

C. AWS Compliance Program

D. AWS Artifact

Correct Answer: C

Community vote distribution

C (83%) D (17%)

  JackFish Highly Voted  9 months, 4 weeks ago

Selected Answer: C
In my opinion it is C – AWS Compliance Program, and let me explain why.
upvoted 15 times

  JackFish 9 months, 4 weeks ago

It is a tricky question, both AWS Artifact and AWS Compliance Program are correct for the compliance topic. But the main clue in the
question is “DETERMINE which AWS services meet the regional requirements”.
AWS Compliance program is described as “helping customers to understand the robust controls in place at AWS to maintain security
and compliance in the cloud.”, so the understanding if they meet the requirements before doing anything in AWS:
https://aws.amazon.com/compliance/programs/
AWS Artifact is used to manage and accept all required agreements for IAM roles for members of the organization, as well as monitor
for new future agreements, but that is after acknowledging which services are already running: https://www.youtube.com/watch?
v=rss0CJ0bw40
So with that knowledge, from the question I understand that the customer wants to check which services meet the regional
requirements before doing any action, so C is more fitting in that scenario.
upvoted 32 times

  0x0045 3 months ago

Thanks for this. I guessed "D", was just a little weak on the topic. no I won't forget.
upvoted 1 times

  ChizzyO Highly Voted  8 months ago

The correct answer is D - AWS Artifact

From AWS skillbuilder: "If you run software that deals with consumer data in the EU, you would need to make sure that you're in
compliance with GDPR, or if you run healthcare applications in the US you will need to design your architectures to meet HIPAA
compliance requirements. "

"One place you can access these documents is through a service called AWS Artifact. With AWS Artifact, you can gain access to compliance
reports done by third parties who have validated a wide range of compliance standards. Check out the AWS Compliance Center in order to
find compliance information all in one place. It will show you compliance enabling services as well as documentation like the AWS Risk and
Security Whitepaper, which you should read to ensure that you understand security and compliance with AWS. "
upvoted 7 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: D
D. AWS Artifact
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: C
Answer is C.
https://aws.amazon.com/compliance/programs/
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: C
The AWS Compliance Program provides information and resources to help customers understand how AWS services align with specific
compliance requirements in different regions. It includes details on the compliance programs and certifications that AWS has obtained,
such as GDPR, HIPAA, ISO, and more. The AWS Compliance Program provides comprehensive information about regional requirements
and helps customers ensure that their applications meet the necessary regulatory standards.
upvoted 2 times
  LEEMAH_KIMBAH 2 weeks, 6 days ago
https://aws.amazon.com/compliance/programs/
answer-Artifact
upvoted 1 times

  DUBURA 1 month, 1 week ago

The company should use the AWS Artifact program to determine which AWS services meet the regional requirements.

AWS Artifact provides access to various compliance and regulatory documents, including the AWS Service Organization Controls (SOC)
reports, Payment Card Industry (PCI) Attestations of Compliance, and other compliance reports. These reports detail the security and
compliance measures implemented by AWS services in different regions.

By accessing AWS Artifact, the company can review and verify that the AWS services they plan to use meet the specific regional regulatory
requirements for European countries. This ensures that the company remains compliant with the necessary regulations while building
and delivering their application.

Additionally, AWS Artifact offers downloadable compliance reports and other relevant documents, providing the company with the
necessary documentation to demonstrate adherence to regional regulatory requirements during audits or assessments.
upvoted 1 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: C
C. AWS Compliance Program

The AWS Compliance Program provides a framework for customers to navigate regulatory requirements by providing information on how
AWS services and features can help address compliance needs. AWS compliance programs help customers meet compliance requirements
for industry-specific standards, such as HIPAA, PCI DSS, and others.

In this scenario, the company needs to ensure that it meets regional regulatory requirements while building an application that uses AWS
services. The AWS Compliance Program can help the company identify which AWS services and features can help meet regulatory
requirements for European countries. The program provides resources such as whitepapers, reports, and certifications that can help
organizations understand how AWS services can be used to support their compliance objectives.
upvoted 3 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The AWS Compliance Program is designed to help customers navigate the complex world of compliance and regulatory requirements. It
provides a range of resources and tools to help customers understand how AWS services meet regional compliance requirements.
Therefore, the company should use the AWS Compliance Program to determine which AWS services meet the regulatory requirements for
European Countries.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - no coz it’s a service that provides an automated assessment of resource config and compliance with industry standards and
compliance

B - no coz it’s a DDoS threat detection service

C - yes coz it meets the regional regulatory requirements

D - no coz it’s a service that provides on-demand access to AWS compliance reports
upvoted 2 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
The company should use the AWS Compliance Program (option C) to determine which AWS services meet the regional regulatory
requirements. The AWS Compliance Program provides information about how AWS meets the compliance requirements for various
regulatory standards, such as the General Data Protection Regulation (GDPR) in the European Union.

The AWS Compliance Program includes information about the compliance status of various AWS services and regions, as well as details
about AWS's security and compliance controls. This information can help the company understand which AWS services are appropriate for
use in their application while meeting the regulatory requirements of the region.
Option D, AWS Artifact, is a service that provides on-demand access to AWS compliance reports and other documentation that customers
can use to meet their compliance and regulatory requirements.
upvoted 2 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: C
AWS Compliance Program is the correct answer. The AWS Compliance Program includes information about the regulatory requirements
for various regions and industries, as well as information about how AWS services can be used to meet these requirements.
upvoted 3 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: C
The AWS Compliance Program provides information about how AWS services comply with various regional and global regulations,
including data protection laws in the European Union. Therefore, the company should use the AWS Compliance Program to determine
which AWS services meet the regional regulatory requirements. Answer: C.
upvoted 1 times
  MohamedAssaf 5 months ago
Selected Answer: C
the company can use the AWS Compliance program, which provides a central location for finding compliance resources and information
related to AWS services in specific regions. The Compliance Program offers various resources, including compliance reports and
certifications, regional-specific legal and regulatory requirements, and security best practices.
upvoted 2 times

  AspiringScriptKiddie 5 months, 1 week ago

Selected Answer: D
There is no such AWS service called "AWS Compliance Program"...
AWS has their own compliance program internally, but it has nothing to do with a product offering. Check the link below to the AWS
Compliance Programs page which explains how their infrastructure is compliant to those standards. This has nothing to do with your
company's compliance. If you have an S3 bucket with PII and it's publicly open, you have compliance issues and need to check AWS
Artifact to figure out what you need to do.
To comply with regulations, such as GDPR, SOX, HIPAA, etc., there are 3 different services (at time of writing this) to help you and your
infrastructure:
AWS Audit Manager
AWS Cloud Trail
AWS Artifact
Each of these doing something very different.
SOURCE: https://aws.amazon.com/compliance/programs/
upvoted 1 times

  cristib00 5 months, 2 weeks ago

Selected Answer: C
The questions is: "Which AWS service..." but AWS Artifact is not really a service.
upvoted 1 times

  mifre 5 months, 2 weeks ago

Selected Answer: C
I was wrong before Compliance Program is correct in that “HIPAA compliant amazon services” is what we are looking for, and that’s
under AWS Security under compliance.
https://aws.amazon.com/compliance/hipaa-eligible-services-reference/

Artificact simply has all the regulations so that you can ensure you are compliant with your practices. Artifact doesn’t specify which AWS
Services are compliant.
upvoted 1 times
Question #169 Topic 1

A company needs to implement identity management for a fleet of mobile apps that are running in the AWS Cloud.
Which AWS service will meet this requirement?

A. Amazon Cognito

B. AWS Security Hub

C. AWS Shield

D. AWS WAF

Correct Answer: A

Community vote distribution

A (100%)

  JackFish Highly Voted  9 months, 4 weeks ago

Selected Answer: A
A – Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily.

AWS Security Hub is a cloud security posture management service that automates best practice checks, aggregates alerts, and supports
automated remediation. Not relevant.

AWS Shield and AWS WAF are for threat protection (Shield for DDoS, WAF for SQL injections), not relevant to the question.
upvoted 15 times

  Pranava_GCP Most Recent  4 days, 19 hours ago

Selected Answer: A
A. Amazon Cognito

"Amazon Cognito helps you implement customer identity and access management (CIAM) into your web and mobile applications. You can
quickly add user authentication and access control to your applications in minutes."

https://aws.amazon.com/cognito/
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: A
Amazon Cognito is the AWS service that is specifically designed for identity management and user authentication in the context of mobile
and web applications. It provides a comprehensive set of features for managing user identities, including user registration, sign-in, and
access control.

With Amazon Cognito, you can easily add user authentication and authorization to your mobile apps running in the AWS Cloud. It
supports various identity providers, such as social media platforms and enterprise identity systems, allowing your app users to sign in
using their existing credentials. You can also create and manage user pools to handle user registration and sign-up flows.

Furthermore, Amazon Cognito provides features for handling user data synchronization across devices, enabling users to seamlessly
access their data across multiple devices. It also integrates with other AWS services, such as AWS Lambda and Amazon API Gateway, to
enable secure access to backend resources.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  emretokay 7 months, 3 weeks ago

"identity management for a fleet of mobile apps" = CAmazon Cognito
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: A
Agreed, from what is published on https://aws.amazon.com/cognito/details/, Amazon Cognito makes more sense for this question.
upvoted 1 times
Question #170 Topic 1

A company needs an Amazon EC2 instance for a rightsized database server that must run constantly for 1 year.
Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?

A. Standard Reserved Instance

B. Convertible Reserved Instance

C. On-Demand Instance

D. Spot Instance

Correct Answer: A

Community vote distribution

A (88%) 13%

  Pranava_GCP 1 week ago

Selected Answer: A
A. Standard Reserved Instance

"Standard Reserved Instances typically provide the highest discount levels. One-year Standard Reserved Instances provide a similar
discount to three-year Convertible Reserved Instances."

https://aws.amazon.com/blogs/aws/ec2-reserved-instance-update-convertible-ris-and-regional-
benefit/#:~:text=Convertible%20Reserved%20Instances%20%2DConvertible%20RIs,Reserved%20Instance%20at%20any%20time.
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: A
Answer is A. Standard Reserved Instance.
https://aws.amazon.com/ec2/pricing/reserved-instances/pricing/
Standard Reserved Instances provide you with a significant discount (up to 72%) compared to On-Demand Instance pricing, and can be
purchased for a 1-year or 3-year term. Customers have the flexibility to change the Availability Zone, the instance size, and networking
type of their Standard Reserved Instances.
Purchase Convertible Reserved Instances if you need additional flexibility, such as the ability to use different instance families, operating
systems, or tenancies over the Reserved Instance term. Convertible Reserved Instances provide you with a significant discount (up to 66%)
compared to On-Demand Instances and can be purchased for a 1-year or 3-year term.
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: A
Reserved Instances provide a significant discount compared to On-Demand Instances, making them a cost-effective choice for long-term,
steady-state workloads. By committing to a Reserved Instance, you are reserving capacity for a specific instance type in a specific
Availability Zone for a defined duration. This reservation allows you to achieve cost savings compared to running the instance on-demand.

The "Standard" Reserved Instance option provides the highest discount among the Reserved Instance types. It offers a fixed discount
over the On-Demand instance pricing for the term of the reservation, which in this case would be 1 year.

Convertible Reserved Instances provide flexibility to change the instance type within the same instance family, but they usually have a
slightly higher price compared to Standard Reserved Instances.
upvoted 2 times

  noahsark 5 months ago

Selected Answer: B
Convertible Reserved Instance

https://docs.aws.amazon.com/whitepapers/latest/cost-optimization-reservation-models/standard-vs.-convertible-offering-classes.html

  studynoplay 3 months, 4 weeks ago

Convertible Reserved Instance is more expensive. A is the correct answer
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times
  cdat 7 months, 2 weeks ago
Selected Answer: A
1. Must run constantly for 1 year: it discards option D.
2. Most cost-effectively: it discards options C and B (more expensive than standard reserved instances).

So, A is correct.
upvoted 3 times

  Aliciuzza 8 months ago

Selected Answer: A
for sure A
upvoted 3 times

  JA2018 9 months, 1 week ago

Selected Answer: A
From: https://docs.aws.amazon.com/whitepapers/latest/cost-optimization-reservation-models/standard-vs.-convertible-offering-
classes.html

Standard Reserved Instances typically provide the highest discount levels. One-year Standard Reserved Instances provide a similar
discount to three-year Convertible Reserved Instances.
upvoted 3 times

  anagy11 10 months, 2 weeks ago

Selected Answer: A
I think it's A, keyword is MOST cost-effective. In the question's context, "rightsized" means to me you likely won't change your instance in
the following year -> standard reserved instance. Convertible reserved instances are about changing resources dynamically when
required.
Additionally:
"Standard Reserved Instances typically provide the highest discount levels. One-year Standard Reserved Instances provide a similar
discount to three-year Convertible Reserved Instances."
https://docs.aws.amazon.com/whitepapers/latest/cost-optimization-reservation-models/standard-vs.-convertible-offering-classes.html
upvoted 3 times

  malfoys 10 months, 2 weeks ago

Selected Answer: A
Standard Reserved Instances typically provide the highest discount levels. One-year Standard Reserved Instances provide a similar
discount to three-year Convertible Reserved Instances.
upvoted 3 times

  face1 10 months, 2 weeks ago

B is correct -> keyword rightsized
upvoted 1 times

  lrbk 10 months, 3 weeks ago

Selected Answer: B
rightsized -> B
upvoted 1 times
Question #171 Topic 1

A company has multiple applications and is now building a new multi-tier application. The company will host the new application on Amazon EC2
instances. The company wants the network routing and traffic between the various applications to follow the security principle of least privilege.
Which AWS service or feature should the company use to enforce this principle?

A. Security groups

B. AWS Shield

C. AWS Global Accelerator

D. AWS Direct Connect gateway

Correct Answer: A

Community vote distribution

A (100%)
  JackFish Highly Voted  9 months, 4 weeks ago
Selected Answer: A
A – Security groups control the traffic that is allowed to reach and leave the resources that it is associated with.

AWS Shield is for DDoS protection.

AWS Global Accelerator is for global reach.

AWS Direct Connect is a cloud service that links your network directly to AWS to deliver consistent, low-latency performance.
upvoted 17 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: A
A. Security groups

"A security group acts as a virtual firewall for your EC2 instances to control incoming and outgoing traffic. Inbound rules control the
incoming traffic to your instance, and outbound rules control the outgoing traffic from your instance. When you launch an instance, you
can specify one or more security groups. If you don't specify a security group, Amazon EC2 uses the default security group for the VPC.
You can add rules to each security group that allow traffic to or from its associated instances. You can modify the rules for a security
group at any time. New and modified rules are automatically applied to all instances that are associated with the security group. When
Amazon EC2 decides whether to allow traffic to reach an instance, it evaluates all of the rules from all of the security groups that are
associated with the instance."

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-security-groups.html
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: A
Security groups are virtual firewalls that control inbound and outbound traffic at the instance level. They act as a first line of defense by
allowing you to specify the protocols, ports, and source IP ranges that are allowed to access your instances. By configuring security
groups appropriately, you can restrict network traffic to only what is necessary for the applications to communicate with each other,
following the principle of least privilege.

Security groups provide granular control over traffic at the instance level and can be easily configured and managed through the AWS
Management Console, CLI, or SDKs. You can define specific rules to allow or deny traffic based on various criteria such as IP addresses,
port numbers, and protocols.
upvoted 1 times

  Vishal_Gupta 4 months, 1 week ago

Keyword here is EC2 instance. Security Gateway acts as a firewall for EC2 instances
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  nder 8 months, 1 week ago

Selected Answer: A
Security groups act as a firewall at the INSTANCE level
upvoted 1 times
Question #172 Topic 1

A company's web application requires AWS credentials and authorizations to use an AWS service.
Which IAM entity should the company use as best practice?

A. IAM role

B. IAM user

C. IAM group

D. IAM multi-factor authentication (MFA)

Correct Answer: A

Community vote distribution

A (78%) D (22%)

  xianpxian Highly Voted  7 months, 4 weeks ago

Selected Answer: A
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html
upvoted 5 times

  30Miles Highly Voted  11 months ago

Selected Answer: A
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html
upvoted 5 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: D
D. IAM multi-factor authentication (MFA)

"We recommend using IAM roles for human users and workloads that access your AWS resources so that they use temporary credentials.
However, for scenarios in which you need an IAM user or root user in your account, require MFA for additional security. With MFA, users
have a device that generates a response to an authentication challenge. Each user's credentials and device-generated response are
required to complete the sign-in process. "

https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#enable-mfa-for-privileged-users
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: D
Answer is D. IAM multi-factor authentication (MFA)
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
Require multi-factor authentication (MFA)
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#enable-mfa-for-privileged-users
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: A
IAM roles are designed to be assumed by trusted entities, such as AWS services or applications, to obtain temporary security credentials.
They are recommended for scenarios where you want to grant permissions to entities that you do not want to create and manage long-
term IAM users for.

By assigning an IAM role to the web application, the application can assume the role and obtain temporary security credentials. These
credentials can then be used to make authorized API requests to AWS services on behalf of the application, without the need to directly
embed long-term access keys or IAM user credentials in the application code.

IAM roles provide an added layer of security by allowing you to define fine-grained permissions and policies for the role. This ensures that
the web application only has access to the necessary AWS services and resources required for its functionality, reducing the risk of
unauthorized access or misuse.
upvoted 1 times

  MohamedAssaf 5 months ago

Selected Answer: A
the company should use IAM roles to grant AWS credentials and authorizations to its web application.

IAM roles are a secure way to grant permissions to an entity that needs to access AWS resources. In this case, the web application needs
to access AWS services using AWS credentials and authorizations. By using an IAM role, the web application can assume the role and gain
temporary security credentials to access the AWS services. This eliminates the need to store and manage long-term access keys or secret
keys within the application code, reducing the risk of accidental exposure or misuse.
IAM roles can be assigned policies that define the specific permissions required by the web application to access the necessary AWS
services. This allows the company to grant the least privilege required for the web application to function correctly.
upvoted 2 times
  Nav_een_Anand02 5 months, 3 weeks ago
Selected Answer: D
D is the answer
upvoted 2 times

  Pavlo123 6 months ago

D is the answer
upvoted 2 times

  Genius072398 6 months ago

This person is trolling everyone.
upvoted 1 times

  just4bs 6 months, 1 week ago

"requires AWS credentials and authorizations" is the key to this answer. It is D MFA. The role assigns the credentials, but the
authorizations (plural) is suggesting more than one way to authorize.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times
Question #173 Topic 1

A company is creating a document that defines the operating system patch routine for all the company's systems.
Which AWS resources should the company include in this document? (Choose two.)

A. Amazon EC2 instances

B. AWS Lambda functions

C. AWS Fargate tasks

D. Amazon RDS instances

E. Amazon Elastic Container Service (Amazon ECS) instances

Correct Answer: AD

Community vote distribution

AD (60%) AE (33%) 6%

  dante_JPMC Highly Voted  7 months ago

Who writes these questions lol. There's unnecessary levels of imprecision and ambiguity.
upvoted 31 times

  Bigbluee Highly Voted  6 months, 3 weeks ago

I thought it should be AD because RDS is also patched based on customer's recomendation. Maintenance windows in RDS is set by
customer and he can agree whether major versions should be applied.
Then I noticed that question states clearly: "operating system patch".
For RDS, we manage patching ONLY for DATABASE engine (minor, major versions).

So the correct answer is AE as we patch ECS by replacing AMI with newer version.
upvoted 8 times

  et_learner 4 months, 2 weeks ago

Why RDS operation system patch should the user to care?
upvoted 2 times

  ramps_08 Most Recent  2 days, 8 hours ago

Selected Answer: AE
Answer: A, E
AWS manages OS patching according to <User Guide> of RDS. It's clearly stated under "OS Patching" section, compared to EC2. For EC2,
OS patching is customer's responsibility. For RDS, it's AWS's responsibility. Please see "Amazon RDS and Amazon EC2" section of this link:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html
upvoted 1 times

  Pranava_GCP 1 week ago

Selected Answer: AE
A. Amazon EC2 instances
E. Amazon Elastic Container Service (Amazon ECS) instances

"Amazon ECS Anywhere provides support for registering an external instance such as an on-premises server or virtual machine (VM), to
your Amazon ECS cluster."

https://docs.aws.amazon.com/AmazonECS/latest/developerguide/ecs-anywhere.html#ecs-anywhere-supported-os
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: AD
Answer is correct, AD.
Amazon EC2 instances and Amazon RDS instances, require regular operating system patching to ensure security and performance.
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: AD
A. Amazon EC2 instances: EC2 instances are virtual servers in the AWS Cloud and require regular patching of the underlying operating
system. The document should outline the frequency and process for patching EC2 instances.

D. Amazon RDS instances: Amazon RDS provides managed database services, and the instances running the databases also require
regular patching of the underlying operating system. The document should include information on how to patch RDS instances following
best practices.
upvoted 2 times
  TAN_THE_MAN 2 weeks, 4 days ago
ec2,rds
upvoted 1 times

  HamzaMomin 2 weeks, 6 days ago

Selected Answer: A
Document ----------> EC2
upvoted 1 times

  AB89 3 weeks, 2 days ago

Selected Answer: AD
ec2 & rds
upvoted 2 times

  sOI852POL 3 weeks, 6 days ago

Selected Answer: AD
B. AWS Lambda functions (option B), AWS Fargate tasks (option C), and Amazon Elastic Container Service (Amazon ECS) instances (option
E) do not have direct operating systems that are managed by the company. These resources are serverless or container-based services
where the operating system and patching responsibilities are handled by AWS. Therefore, they do not need to be included in the
document that defines the company's operating system patch routine.
upvoted 4 times

  dbwhddn10 4 weeks, 1 day ago

Selected Answer: AE
please see link: https://docs.aws.amazon.com/ko_kr/AmazonECS/latest/developerguide/ecs-anywhere.html
ECS can use on-premise Instance that need to be self updating
upvoted 2 times

  Zonci 2 months ago

Selected Answer: AD
A. Amazon EC2 instances: EC2 instances are virtual servers in the cloud, and they often run the company's systems and applications.
Including EC2 instances in the patch routine document ensures that the operating systems on these instances are regularly updated and
patched for security and performance reasons.

D. Amazon RDS instances: Amazon RDS (Relational Database Service) provides managed database services. If the company is using RDS
instances for their databases, it is important to include them in the patch routine document to ensure that the database operating
systems receive regular updates and security patches.
upvoted 2 times

  yayaayzo 2 months, 2 weeks ago

A. Amazon EC2 instances
D. Amazon RDS instances

Amazon EC2 instances and Amazon RDS instances are both infrastructure resources that require regular patching of the underlying
operating system.
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: AD
A. Amazon EC2 instances
D. Amazon RDS instances

Both Amazon EC2 instances and Amazon RDS instances require regular operating system patching to ensure security and stability. AWS
Lambda functions, AWS Fargate tasks, and Amazon Elastic Container Service instances do not require operating system patching because
they are managed services.
upvoted 2 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: AD
The two AWS resources that should be included in the document defining the operating system patch routine for all the company's
systems are:

A. Amazon EC2 instances

D. Amazon RDS instances

Amazon EC2 instances and Amazon RDS instances are Infrastructure-as-a-Service (IaaS) offerings that allow customers to run their own
operating systems on virtual machines in the cloud. Therefore, it is important to include these resources in the document defining the
operating system patch routine.

AWS Lambda functions, AWS Fargate tasks, and Amazon Elastic Container Service (Amazon ECS) instances are not related to operating
system patching as they are Platform-as-a-Service (PaaS) or serverless offerings that do not require customers to manage the underlying
operating systems.
upvoted 3 times

  0x0045 3 months ago

Selected Answer: AE
I started writing my comments thinking "A&D" but it is "A&E"
IT is A and E.
A: No one questions patching EC2
D: While the customer does not patch the instance running the RDS, I believe the customer can define the patch cycle expected to be run
by AWS.
E: ECS runs on regular EC2 instances (can run on prem as well) so you have to patch those EC2 instances.
upvoted 1 times

  aislin 3 months, 2 weeks ago

Selected Answer: AE
The answer is AE. RDS OS patches are applied automatically during maintenance windows. According to
https://docs.aws.amazon.com/whitepapers/latest/cost-optimization-reservation-models/standard-vs.-convertible-offering-classes.html ,
"Amazon RDS upgrades the operating system to a newer version to improve database performance and customers’ overall security
posture."
upvoted 1 times
Question #174 Topic 1

Which AWS service or feature gives a company the ability to control incoming traffic and outgoing traffic for Amazon EC2 instances?

A. Security groups

B. Amazon Route 53

C. AWS Direct Connect

D. Amazon VPC

Correct Answer: D

Community vote distribution

A (100%)

  learner2023 Highly Voted  11 months ago

Selected Answer: A
A security group acts as a virtual firewall for your EC2 instances to control incoming and outgoing traffic. Inbound rules control the
incoming traffic to your instance, and outbound rules control the outgoing traffic from your instance. When you launch an instance, you
can specify one or more security groups.
upvoted 18 times

  fross 11 months ago

I put A as well.
upvoted 4 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: A
A. Security groups

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-security-groups.html
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: A
Security groups in AWS are virtual firewalls that control inbound and outbound traffic for Amazon EC2 instances. They act as a first line of
defense by specifying the allowed inbound and outbound traffic based on protocols, ports, and IP addresses. Security groups operate at
the instance level and can be associated with one or more instances. By configuring security group rules, a company can control the traffic
flow to and from its EC2 instances, allowing only the necessary connections and blocking unauthorized access.
upvoted 1 times

  PranjaliJ 2 months ago

Security groups
A. Security groups is the AWS service or feature that gives a company the ability to control incoming traffic and outgoing traffic for
Amazon EC2 instances.
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: A
A is right
upvoted 1 times

  0x0045 3 months ago

Selected Answer: A
A: again Ugh
upvoted 2 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: A
A. Security groups is the AWS service or feature that gives a company the ability to control incoming traffic and outgoing traffic for
Amazon EC2 instances.
Security groups act as virtual firewalls for EC2 instances and control the inbound and outbound traffic by allowing or denying traffic based
on the rules that are defined in the security group. By default, all inbound traffic is denied, and all outbound traffic is allowed. Security
groups are associated with one or more EC2 instances and are defined at the instance level.
upvoted 1 times
  harisene 5 months ago
Selected Answer: A
A in the answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  sudeep627 7 months ago

Selected Answer: A
Security Group is an AWS service or feature that gives a company the ability to control incoming traffic and outgoing traffic for Amazon
EC2 instances.
upvoted 1 times

  sophire 7 months ago

Selected Answer: A
Security group for instance level restrictions
upvoted 1 times

  brks 7 months, 1 week ago

Selected Answer: A
Security groups allow or deny specific inbound and outbound traffic at the resource level (such as an EC2 instance).
upvoted 1 times

  ChuckChao 7 months, 2 weeks ago

A security group acts as a virtual firewall for your EC2 instances to control incoming and outgoing traffic. Inbound rules control the
incoming traffic to your instance, and outbound rules control the outgoing traffic from your instance. When you launch an instance, you
can specify one or more security groups. The Answer should be A.
upvoted 1 times

  Aliciuzza 8 months ago

Selected Answer: A
A
Security groups allow or deny specific inbound and outbound traffic at the resource level (such as an EC2 instance).
When you launch an instance, you can associate it with one or more security groups.
upvoted 1 times

  l2eena 8 months ago

A is correct. VPC is a service.
"Amazon Virtual Private Cloud is a commercial cloud computing service that provides users a virtual private cloud, by “provisioning a
logically isolated section of Amazon Web Services Cloud”. Enterprise customers are able to access the Amazon Elastic Compute Cloud over
an IPsec based virtual private network."
upvoted 1 times

  vipulchoubisa 8 months, 1 week ago

ACTUALLY OUTGOING IS FREE, YOU CAN'T CONTROL WITH SECURITY GROUPS. BUT I THINK AS PER CCP SECURITY GROUPS IS ANSWER.
upvoted 1 times

  MayneE 8 months, 3 weeks ago

Instance level = Security Groups
Subnet level = VPC
upvoted 4 times

  JYKL88 8 months, 2 weeks ago

Instance level = security group
subnect level = NACL, not VPC
upvoted 4 times

  MayneE 8 months, 3 weeks ago

forgot to add, answer is A
upvoted 1 times
Question #175 Topic 1

A company is starting to build its infrastructure in the AWS Cloud. The company wants access to technical support during business hours. The
company also wants general architectural guidance as teams build and test new applications.
Which AWS Support plan will meet these requirements at the LOWEST cost?

A. AWS Basic Support

B. AWS Developer Support

C. AWS Business Support

D. AWS Enterprise Support

Correct Answer: B

Community vote distribution

B (94%) 3%

  learner2023 Highly Voted  11 months ago

Selected Answer: B
We recommend AWS Developer Support if you are testing or doing early development on AWS and want the ability to get technical
support during business hours as well as general architectural guidance as you build and test.

In addition to enhanced technical support and architectural guidance, Developer Support provides access to documentation and forums,
AWS Trusted Advisor, and AWS Personal Health Dashboard.
upvoted 12 times

  sharmaurs Most Recent  6 days, 1 hour ago

  Pranava_GCP 1 week ago

Selected Answer: B
B. AWS Developer Support
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: B
Answer is correct, B.
https://www.amazonaws.cn/en/support/compare-plans/
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: B
AWS Developer Support is designed for developers and technical teams who need access to technical support during business hours. It
provides a cost-effective support option with access to AWS Support engineers via email during business hours. This plan is suitable for
companies that require basic technical assistance and general architectural guidance as they build and test new applications.
upvoted 2 times

  hudlion 2 weeks, 6 days ago

Selected Answer: C
B does not have the architectural guidance
upvoted 1 times

  aislin 3 months, 2 weeks ago

Selected Answer: B
According to https://docs.aws.amazon.com/awssupport/latest/user/aws-support-plans.html#features , "Basic Support offers support for
account and billing questions and service quota increases. The other plans offer a number of technical support cases with pay-by-the-
month pricing and no long-term contracts." THE OTHER PLANS offer technical support.
"Customers with a Developer Support plan have access to these additional features:
Best practice guidance
Client-side diagnostic tools
Building-block architecture support: guidance on how to use AWS products, features, and services together
Supports an unlimited number of support cases that can be opened by one primary contact, which is the AWS account root user."
upvoted 3 times
  Capricorn27 4 months ago
Based on the requirements mentioned, the AWS Support plan that would meet these requirements at the LOWEST cost is AWS Business
Support (Option C).

AWS Business Support provides 24/7 access to AWS Trusted Advisor, AWS Infrastructure Event Management, and AWS Personal Health
Dashboard. It also includes email support during business hours, which would meet the requirement of having access to technical
support during business hours. Additionally, AWS Business Support provides general architectural guidance for new applications.

AWS Basic Support (Option A) provides access to AWS Trusted Advisor and the AWS Support Center, but it does not include email support
during business hours or architectural guidance.

AWS Developer Support (Option B) provides access to AWS Trusted Advisor, the AWS Support Center, and email support 24/7, but it does
not include architectural guidance.

AWS Enterprise Support (Option D) provides the most comprehensive support for large enterprises but is more expensive than the other
options and likely unnecessary for a company just starting to build its infrastructure in the AWS Cloud.
upvoted 2 times

  kumaran1000001 4 months, 2 weeks ago

A - no coz needs technical support

B - no. provides technical support but does not provide architectural guidance

C - yes

D - no coz does not require a dedicated support

upvoted 3 times

  vicyyu 6 months ago

Selected Answer: B
AWS Basic Support plan is the entry-level plan that provides access to documentation and whitepapers and also AWS Trusted Advisor, but
it does not provide any access to technical support.
upvoted 2 times

  konieczny69 6 months ago

Selected Answer: A
Developer plan supports both. Why b is selected answer?
upvoted 1 times

  konieczny69 6 months ago

Correction -> Basic plan supports both
upvoted 1 times

  Phary 5 months, 2 weeks ago

General Guidance is not included in basic plan.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  alkahtam 7 months, 1 week ago

Selected Answer: B
https://www.amazonaws.cn/en/support/compare-plans/
upvoted 3 times

  JAMTARA 7 months, 3 weeks ago

ASHIF SAYS ANSWER IS A please vote guys
upvoted 2 times

  myan2492 9 months ago

Developer support
access to technical support during business hours.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: B
Agreed, reference URL: https://www.amazonaws.cn/en/support/compare-plans/
upvoted 4 times
Question #176 Topic 1

A company is migrating its public website to AWS. The company wants to host the domain name for the website on AWS.
Which AWS service should the company use to meet this requirement?

A. AWS Lambda

B. Amazon Route 53

C. Amazon CloudFront

D. AWS Direct Connect

Correct Answer: B

Community vote distribution

B (100%)

  myan2492 Highly Voted  9 months ago

Route 53: DNS: Domain name service (53= port 53)
upvoted 5 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: B
B. Amazon Route 53
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: B
Amazon Route 53 is a scalable and highly available Domain Name System (DNS) web service provided by AWS. It allows you to register and
manage domain names and perform DNS routing for your applications. Route 53 provides various DNS management features, including
domain registration, DNS routing policies, and health checks.

In the case of hosting the domain name for the company's website on AWS, Amazon Route 53 can be used to register the domain name,
configure the DNS settings, and point the domain to the appropriate AWS resources, such as the website hosted on Amazon S3, Amazon
EC2 instances, or load balancers.
upvoted 2 times

  VLRuben 5 months, 1 week ago

Selected Answer: B
If u want to host ur DNS in AWS u must choose Route 53
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  JackFish 9 months, 4 weeks ago

Selected Answer: B
B – Route 53 is responsible for domain names.
upvoted 3 times
Question #177 Topic 1

A company needs to evaluate its AWS environment and provide best practice recommendations in five categories: cost, performance, service
limits, fault tolerance, and security.
Which AWS service can the company use to meet these requirements?

A. AWS Shield

B. AWS WAF

C. AWS Trusted Advisor

D. AWS Service Catalog

Correct Answer: C

Community vote distribution

C (100%)

  JackFish Highly Voted  9 months, 4 weeks ago

C – AWS Trusted Advisor is used to evaluate its AWS environment and provide best practice recommendations in five categories: cost,
performance, service limits, fault tolerance, and security.

AWS Shield is for DDoS protection.

AWS WAF is for SQL injection protection.

AWS Service Catalog is for managing services.

upvoted 12 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: C
C. AWS Trusted Advisor

https://aws.amazon.com/premiumsupport/technology/trusted-advisor/#:~:text=Advisor%20(11%3A45)-,Benefits,-
Checks%20from%20Trusted
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: C
AWS Trusted Advisor is a service that provides real-time guidance to help you optimize your AWS environment across multiple categories,
including cost optimization, performance improvement, security, fault tolerance, and service limits. It analyzes your AWS resources and
configurations and provides recommendations based on AWS best practices.

Trusted Advisor offers checks and recommendations in various areas, such as cost optimization (e.g., identifying idle resources,
suggesting reserved instances), performance improvement (e.g., analyzing service limits, identifying bottlenecks), security (e.g., checking
for security vulnerabilities, access control issues), fault tolerance (e.g., evaluating backup configurations, identifying single points of
failure), and more.
upvoted 1 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
The AWS service that can help the company evaluate its AWS environment and provide best practice recommendations in the five
categories of cost, performance, service limits, fault tolerance, and security is AWS Trusted Advisor.
AWS Trusted Advisor provides real-time guidance to help users optimize their AWS resources, improve performance, reduce costs, and
enhance security by identifying opportunities and providing recommendations. It covers the five categories mentioned in the question
and provides specific advice on how to address issues related to each of them.

Therefore, the correct answer is C. AWS Trusted Advisor.

upvoted 1 times

  alexandercamachop 5 months, 2 weeks ago

Selected Answer: C
AWS Trusted Advisor: Evaluates / inspects customers environment.
This is part of Business / Enterprise support only
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 2 times
  xianpxian 7 months, 4 weeks ago
Selected Answer: C
• C. AWS Trusted Advisor
upvoted 1 times

  aman_aneja 8 months ago

Selected Answer: C
All requirements listed as benefits on this page:
https://aws.amazon.com/premiumsupport/technology/trusted-advisor/
upvoted 1 times

  myan2492 9 months ago

C. trusted advisor
five categories: cost, performance, service limits, fault tolerance, and security.
upvoted 2 times
Question #178 Topic 1

Which AWS service provides the capability to view end-to-end performance metrics and troubleshoot distributed applications?

A. AWS Cloud9

B. AWS CodeStar

C. AWS Cloud Map

D. AWS X-Ray

Correct Answer: D

Community vote distribution

D (100%)

  GeO15 Highly Voted  1 year, 7 months ago

D: https://aws.amazon.com/xray/?nc2=type_a
upvoted 7 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: D
D. AWS X-Ray

"AWS X-Ray helps developers analyze and debug production, distributed applications, such as those built using a microservices
architecture. With X-Ray, you can understand how your application and its underlying services are performing to identify and troubleshoot
the root cause of performance issues and errors. X-Ray provides an end-to-end view of requests as they travel through your application,
and shows a map of your application’s underlying components."

https://aws.amazon.com/xray/faqs/
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: D
AWS X-Ray is a service that helps developers analyze and debug distributed applications, such as those running on microservices
architectures. It provides end-to-end visibility into requests as they travel across various components and services, allowing you to identify
performance bottlenecks, troubleshoot issues, and optimize application performance.

With AWS X-Ray, you can trace requests as they flow through different AWS resources and services, including AWS Lambda functions,
Amazon EC2 instances, Amazon ECS containers, and more. It captures information about each step of the request journey, including
response times, errors, and the dependencies between different components.
upvoted 1 times

  yellowimp 2 months, 3 weeks ago

Why not CloudWatch?
upvoted 2 times

  Onyejicash 6 months ago

Selected Answer: D
AWS X-Ray makes it easy for developers to analyze the behavior of their production, distributed applications with end-to-end tracing
capabilities. You can use X-Ray to identify performance bottlenecks, edge case errors, and other hard to detect issues. X-Ray supports
applications, either in development or in production, of any type or size, from simple asynchronous event calls and three-tier web
applications to complex distributed applications built using a microservices architecture. This enables developers to quickly find and
address problems in their applications and improve the experience for end users of their applications.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  deqgi 7 months ago

Selected Answer: D
D is correct
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: D
agreed
upvoted 1 times
  satnandi 1 year, 7 months ago
D correct
upvoted 3 times
Question #179 Topic 1

Which cloud computing benefit does AWS demonstrate with its ability to offer lower variable costs as a result of high purchase volumes?

A. Pay-as-you-go pricing

B. High availability

C. Global reach

D. Economies of scale

Correct Answer: A

Community vote distribution

D (98%)

  TAvenger Highly Voted  1 year, 9 months ago

D. Economies of scale
upvoted 17 times

  karld Most Recent  6 days, 22 hours ago

Beginning to suspect the admin flunked this exam...
upvoted 1 times

  Pranava_GCP 1 week ago

Selected Answer: D
D. Economies of scale
upvoted 1 times

  Pranava_GCP 1 week ago

"Benefit from massive economies of scale – By using cloud computing, you can achieve a lower variable cost than you can get on your
own. Because usage from hundreds of thousands of customers is aggregated in the cloud, providers such as AWS can achieve higher
economies of scale, which translates into lower pay as-you-go prices."

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-
computing.html#:~:text=Benefit%20from%20massive,you%2Dgo%20prices.
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: D
Answer is D.
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: D
AWS demonstrates the cloud computing benefit of economies of scale. As a cloud service provider with a large customer base and high
purchase volumes, AWS is able to achieve cost efficiencies through economies of scale. This means that AWS can negotiate better pricing
with hardware and software vendors, optimize resource utilization, and spread infrastructure costs across a large customer base. These
cost savings are then passed on to customers in the form of lower variable costs.

One of the ways AWS offers lower variable costs is through its pay-as-you-go pricing model. With this model, customers only pay for the
resources they consume on an as-needed basis, without any upfront or long-term commitments. This allows customers to scale their
usage up or down based on demand and only pay for what they actually use.
upvoted 2 times

  constantlearning 2 months, 2 weeks ago

Selected Answer: D
Definitely D.
upvoted 2 times

  0x0045 3 months ago

Selected Answer: D
"offer lower variable costs as a result of high purchase volumes?"
That is economic scale, NOT PAYG. D:
upvoted 2 times

  ATBGUYS 3 months, 3 weeks ago

Selected Answer: D
EoS translates to volume purchasing at a significantly reduced cost value. Even though A is correct, it is still an attribute under the
economics of scale. D is the answer.
upvoted 2 times
  Guru4Cloud 3 months, 4 weeks ago
Selected Answer: D
The correct answer is D. Economies of scale.

AWS (Amazon Web Services) can offer lower variable costs due to its ability to achieve economies of scale, which means that as the
volume of purchases increases, the cost per unit decreases. This is because AWS is able to negotiate lower prices from suppliers, spread
fixed costs across a larger customer base, and optimize its operations for efficiency. As a result, customers who use AWS services can
benefit from lower costs, especially for large-scale deployments.
upvoted 2 times

  jcasm 4 months, 3 weeks ago

Selected Answer: A
answer A
upvoted 1 times

  soshisy 4 months, 3 weeks ago

Thankful for your comments!!! My answer is D as well. I think they are intentionally making some wrong answers to start discussion and
through discussions it will refresh our minds.
upvoted 3 times

  harisene 5 months ago

Selected Answer: D
Answer: D
upvoted 2 times

  wabosi 5 months, 1 week ago

Selected Answer: D
I vote for D
upvoted 2 times

  alphaBetaPruning 6 months ago

Selected Answer: D
will go with D
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  brink 6 months, 3 weeks ago

Selected Answer: D
The correct answer is D. Economies of scale.

AWS has the ability to offer lower variable costs as a result of high purchase volumes, which demonstrates the benefit of economies of
scale. Economies of scale refer to the reduction in unit costs that a company can achieve by increasing the scale of production. In the case
of AWS, the company is able to negotiate lower prices for hardware and other resources by buying in large volumes, and it can pass those
savings on to its customers in the form of lower prices for its cloud services.
upvoted 4 times

  Diego_Vieira46 7 months, 1 week ago

Extremamente arrependido de ter pago por esse simulado. Várias questões completamente incorretas. A resposta correta é D: Economias
de Escala.
upvoted 1 times
Question #180 Topic 1

Which AWS service provides threat detection by monitoring for malicious activities and unauthorized actions to protect AWS accounts, workloads,
and data that is stored in Amazon S3?

A. AWS Shield

B. AWS Firewall Manager

C. Amazon GuardDuty

D. Amazon Inspector

Correct Answer: C

Community vote distribution

C (100%)

  Pranava_GCP 1 week, 2 days ago

Selected Answer: C
C. Amazon GuardDuty
"GuardDuty is an intelligent threat detection service that continuously monitors your AWS accounts, Amazon Elastic Compute Cloud
(Amazon EC2) instances, AWS Lambda functions, Amazon Elastic Kubernetes Service (Amazon EKS) clusters, Amazon Aurora login activity,
and data stored in Amazon Simple Storage Service (Amazon S3) for malicious activity. "

https://aws.amazon.com/guardduty/faqs/
upvoted 1 times

  man5484 2 weeks, 3 days ago

Selected Answer: C
Amazon GuardDuty is an AWS service that provides threat detection by continuously monitoring for malicious activities and unauthorized
actions in AWS accounts. It analyzes data from various sources, such as VPC Flow Logs, CloudTrail event logs, and DNS logs, to identify
potential security threats.

Specifically, Amazon GuardDuty is designed to protect AWS accounts, workloads, and data stored in Amazon S3 from various types of
threats, including unauthorized access, compromised instances, and data exfiltration attempts. It uses machine learning algorithms and
threat intelligence to identify patterns and anomalies that may indicate malicious activity.

When GuardDuty detects a potential threat, it generates findings and alerts, which can be viewed in the AWS Management Console or
integrated with other AWS services for automated responses. This helps organizations quickly identify and respond to security incidents,
improving their overall security posture.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - no. DDoS detection

B - no. centralized security management to create and manage WAF rules.

C - yes. threat detection by monitoring for malicious activities

D - no. security assessment service

upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  aman_aneja 8 months ago

Selected Answer: C
https://aws.amazon.com/guardduty/features/
upvoted 2 times

  myan2492 9 months ago

GuardDuty == threat detection
upvoted 2 times

  satishstechie 9 months, 2 weeks ago

Answer is "C" Amazon GuardDuty
upvoted 1 times
  MSAzureguy 9 months, 2 weeks ago
C .Amazon GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and
delivers detailed security findings for visibility and remediation.
https://aws.amazon.com/guardduty/
upvoted 4 times
Question #181 Topic 1

Which AWS service can a company use to store and manage Docker images?

A. Amazon DynamoDB

B. Amazon Kinesis Data Streams

C. Amazon Elastic Container Registry (Amazon ECR)

D. Amazon Elastic File System (Amazon EFS)

Correct Answer: C

Community vote distribution

C (100%)

  sharmaurs 6 days, 1 hour ago

Selected Answer: C
C. Amazon Elastic Container Registry (Amazon ECR)
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: C
C. Amazon Elastic Container Registry (Amazon ECR)
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: C
Amazon Elastic Container Registry (Amazon ECR) is a fully managed container registry service provided by AWS. It allows you to store,
manage, and deploy Docker container images. With Amazon ECR, you can securely store your container images and easily integrate them
with other AWS services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS), for
running containerized applications.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  JAMTARA 7 months, 3 weeks ago

biryaniboy says is D please help him ashif
upvoted 1 times

  ACLOUD_PRACTITIONER 8 months ago

C is correct. Amazon Elastic Container Registry (ECR) is a highly available and secure private container repository that makes it easy to
store and manage your Docker container images, encrypting and compressing images at rest so they are fast to pull and secure.
upvoted 3 times

  myan2492 9 months ago

C. Container
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: C
Agreed, Check out the following resources:

1.
https://aws.amazon.com/docker/#:~:text=AWS%20provides%20Amazon%20Elastic%20Container,and%20quickly%20retrieving%20Docker
%20images.

2. https://aws.amazon.com/ecr/
upvoted 1 times
Question #182 Topic 1

A company needs an automated security assessment report that will identify unintended network access to Amazon EC2 instances. The report
also must identify operating system vulnerabilities on those instances.
Which AWS service or feature should the company use to meet this requirement?

A. AWS Trusted Advisor

B. Security groups

C. Amazon Macie

D. Amazon Inspector

Correct Answer: D

Community vote distribution

D (100%)

  Pranava_GCP 1 week, 2 days ago

Selected Answer: D
D. Amazon Inspector

"Amazon Inspector is an automated vulnerability management service that continually scans Amazon Elastic Compute Cloud (EC2), AWS
Lambda functions, and container workloads for software vulnerabilities and unintended network exposure."

https://aws.amazon.com/inspector/faqs/?nc=sn&loc=6
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: D
Amazon Inspector is an automated security assessment service provided by AWS. It helps you identify security vulnerabilities and
potential issues in your applications and infrastructure. In the given scenario, Amazon Inspector can be used to generate an automated
security assessment report that includes the identification of unintended network access to Amazon EC2 instances and operating system
vulnerabilities on those instances.

Amazon Inspector uses a set of predefined rules to assess the security state of your resources. It analyzes the network activity, operating
system configurations, and application behavior to identify potential security issues. The assessment report provides detailed findings and
recommendations for remediation.
upvoted 1 times

  alexandercamachop 5 months, 2 weeks ago

Selected Answer: D
Keyword: "Vulnerability" which is Inspector.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  DavisP 7 months, 3 weeks ago

Selected Answer: D
automated assessment, I will choose D.
upvoted 1 times

  bichivega 8 months ago

no lo tengo claro, creo que quizas el B, porque habla de EC2
upvoted 2 times

  myan2492 9 months ago

D. AWS inspector
Amazon Inspector is an automated vulnerability management service that continually scans
AWS workloads for software vulnerabilities and unintended network exposure.
upvoted 4 times

  JA2018 9 months, 1 week ago

To locate unintended resource access and vulnerabilities, you need to choose Option D.

From: https://www.linkedin.com/pulse/aws-trusted-advisor-vs-inspector-what-difference-netcom-learning?trk=organization-update-
content_share-article

AWS Inspector is a vulnerability management tool that automatically analyzes AWS workloads to find accidental network exposure and
software vulnerabilities. It provides a detailed list of security issues and recommendations to fix them. AWS Inspector helps users unite
their vulnerability management services for Amazon EC2 and ECR into a single managed solution. Users are also provided with an
accurate Inspector risk score helping them prioritize their vulnerable resources.
upvoted 3 times
Question #183 Topic 1

A global company is building a simple time-tracking mobile app. The app needs to operate globally and must store collected data in a database.
Data must be accessible from the AWS Region that is closest to the user.
What should the company do to meet these data storage requirements with the LEAST amount of operational overhead?

A. Use Amazon EC2 in multiple Regions to host separate databases

B. Use Amazon RDS cross-Region replication

C. Use Amazon DynamoDB global tables

D. Use AWS Database Migration Service (AWS DMS)

Correct Answer: C

Community vote distribution

C (100%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: C
From: https://aws.amazon.com/dynamodb/global-tables/

Global tables build on the global Amazon DynamoDB footprint to provide you with a fully managed, multi-Region, and multi-active
database that delivers fast, local, read and write performance for massively scaled, global applications. Global tables replicate your
DynamoDB tables automatically across your choice of AWS Regions.
upvoted 12 times

  EricSono Highly Voted  1 year, 9 months ago

C is ok
https://aws.amazon.com/tw/dynamodb/global-tables/
upvoted 7 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: C
C. Use Amazon DynamoDB global tables
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: C
To meet the data storage requirements with the least amount of operational overhead, the company should use Amazon DynamoDB
global tables. Amazon DynamoDB global tables provide a fully managed, multi-region, and multi-master database replication solution.
With global tables, the company can replicate data across multiple AWS Regions, allowing the data to be accessed from the AWS Region
closest to the user.

By using Amazon DynamoDB global tables, the company can achieve low-latency data access and high availability without the need to
manage separate databases in multiple AWS Regions or set up complex replication mechanisms. DynamoDB takes care of the replication
and data consistency across Regions, automatically handling failovers and ensuring that the data is available in the desired AWS Region.
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: C
To meet the data storage requirements with the least amount of operational overhead, the company should use Amazon DynamoDB
global tables.

Amazon DynamoDB global tables allow you to create a fully managed, multi-region, and multi-master database table that can provide
low-latency read and write performance for applications that have a global footprint. It automatically replicates your data across multiple
AWS Regions and enables automatic failover in the event of a regional disruption.

With DynamoDB global tables, the company can avoid the need to manage multiple databases in different regions or set up cross-Region
replication manually. DynamoDB takes care of all the underlying infrastructure, replication, and scaling, and ensures that the data is
always available from the AWS Region that is closest to the user.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

C is the answer.
upvoted 1 times
  jatric 7 months, 3 weeks ago
Selected Answer: C
Both B and C seems right but keypoint here is "...with the LEAST amount of operational overhead".
So more appropriate option is C
upvoted 2 times

  myan2492 9 months ago

C. DynamoDB:
Global tables build on global Amazon DynamoDB footprint to provide you with fully managed, multi-region, multi-active database . Global
tables replicate your DynamoDB tables automatically across your choice of AWS regions
upvoted 3 times

  Cyoung82 9 months, 2 weeks ago

C. I think the key word or words in this question are global and globally. That indicates to me DynamoDB Global Tables.
upvoted 3 times

  AulaitQM 1 year, 2 months ago

Selected Answer: C
C is correct
upvoted 5 times

  pub 1 year, 10 months ago

IMO, the answer is B
upvoted 5 times

  weihong_gasiapac 1 year, 8 months ago

B is wrong because RDS replication is applied when there is too many read and write request that will affect the performance of the
RDS. We can use the replicated RDS for read purpose.
upvoted 11 times
Question #184 Topic 1

Which of the following are economic advantages of the AWS Cloud? (Choose two.)

A. Increased workforce productivity

B. Decreased need to encrypt user data

C. Manual compliance audits

D. Simplified total cost of ownership (TCO) accounting

E. Faster product launches

Correct Answer: DE

Community vote distribution

AE (52%) DE (32%) AD (16%)

  IuriiUA Highly Voted  9 months ago

Selected Answer: AE
A and E
E: Business Agility: Deploying new features/ applications faster and reducing errors
Example: Launch of new products 75% faster.
https://aws.amazon.com/economics/
upvoted 11 times

  Blimpy 8 months ago

After some thought I agree with AE. There is no option to mention TCO reduction (which would have been right)
upvoted 3 times

  Blimpy 8 months ago

An economic advantage is a benefit that can be quantified, so D is wrong
upvoted 3 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: AE
A. Increased workforce productivity
E. Faster product launches
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: AE
If D is incorrect, A and E definitely correct.
https://aws.amazon.com/economics/
- Staff productivity
- Business agility
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: DE
D. Simplified total cost of ownership (TCO) accounting: The AWS Cloud offers a pay-as-you-go pricing model, where users only pay for the
resources they consume. This eliminates the need for large upfront capital investments and allows for more accurate and predictable cost
management.

E. Faster product launches: The AWS Cloud provides a wide range of pre-configured services and resources that can be quickly
provisioned and scaled as needed. This allows companies to accelerate their product development and deployment cycles, leading to
faster time-to-market and potential cost savings.
upvoted 1 times

  Zonci 2 months ago

Selected Answer: AE
The best answers for the economic advantages of the AWS Cloud are:

A. Increased workforce productivity: The scalability and accessibility of the cloud allow teams to provision resources quickly, leading to
increased productivity and efficiency in their work.

E. Faster product launches: With AWS Cloud's capabilities, organizations can accelerate product launches by leveraging scalable resources,
automation, and various services offered by AWS.
upvoted 2 times
  starsea 2 months, 2 weeks ago
Selected Answer: DE
TCO reduction is one of the biggest reason for going cloud
I am kind of torn between Productivity and Launch feature faster since both make sense and referred in
https://aws.amazon.com/economics/
upvoted 1 times

  starsea 2 months, 2 weeks ago

After reading the answers again, I noticed that TCO one is not about the reduction of TCO, instead it's about the accounting, which
makes no sense. The answer should be AE.
upvoted 3 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: DE
The two economic advantages of the AWS Cloud are:

D. Simplified total cost of ownership (TCO) accounting

E. Faster product launches

Simplified total cost of ownership (TCO) accounting is an economic advantage of the AWS Cloud because AWS offers pay-as-you-go
pricing, which allows customers to pay only for the resources they use and avoid upfront capital expenditures. This can simplify TCO
accounting by providing more predictable and manageable costs.

Faster product launches are another economic advantage of the AWS Cloud because AWS offers a range of services that enable customers
to quickly deploy, scale, and manage their applications. This can help businesses accelerate time-to-market for new products and services,
which can lead to increased revenue and a competitive advantage in the marketplace.
upvoted 1 times

  0x0045 3 months ago

Selected Answer: DE
AWS does nothing directly to increase workforce productivity. That said, workforce productivity COULD be a result of a well-architected
application framework, just not a focus.
the argument against D could be valid; however, it it is, again, well-architected, serverless tools and services along with PAYG and auto-
scaling are all benefits you CANNOT achieve designing in a private data-center. D&E are the AWS expected answers.
upvoted 2 times

  BieLey 3 months, 1 week ago

Selected Answer: AD
Simplified total cost of ownership (TCO) accounting (D): AWS's pay-as-you-go pricing model, cost visibility tools, and pricing options such
as reserved instances and savings plans can help organizations optimize costs, avoid upfront expenses, and simplify TCO accounting.

Increased workforce productivity (A): By leveraging the various services and features offered by AWS, organizations can automate tasks,
streamline processes, and improve overall productivity of their workforce.
upvoted 2 times

  ABHIJIT0612 3 months, 1 week ago

Selected Answer: AE
D. Simplified total cost of ownership (TCO) accounting: With AWS Cloud, customers pay only for the computing resources they use, and
the cost is based on a pay-as-you-go model. This eliminates the need for large upfront capital expenses and helps in simplified TCO
accounting.

E. Faster product launches: AWS Cloud provides a variety of tools and services that help in quickly developing, testing, and deploying
applications. This enables faster time-to-market and reduces the cost of product launches.

Option A, Increased workforce productivity, is not an economic advantage of the AWS Cloud, as it does not directly translate to cost
savings or revenue generation. Option B, Decreased need to encrypt user data, is incorrect, as data encryption is always necessary for
security purposes and is not affected by the choice of cloud provider. Option C, Manual compliance audits, is also incorrect, as AWS
provides a variety of compliance and security certifications, which can save time and resources needed for manual audits.
upvoted 2 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: AD
The economic advantages of the AWS Cloud are:

A. Increased workforce productivity: The AWS Cloud provides a range of services and tools that enable teams to work collaboratively,
streamline processes, and automate tasks, resulting in increased productivity.

D. Simplified total cost of ownership (TCO) accounting: The AWS Cloud provides a pay-as-you-go pricing model, which means that you only
pay for the services and resources you use. This helps simplify TCO accounting and reduce costs.
upvoted 1 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: AD
The economic advantages of the AWS Cloud are:

A. Increased workforce productivity: AWS provides managed services that allow developers to focus on building applications rather than
managing infrastructure. This increases productivity and reduces time to market.

D. Simplified total cost of ownership (TCO) accounting: AWS offers a pay-as-you-go pricing model, which allows organizations to pay only
for the resources they use. This reduces upfront costs and makes it easier to forecast and manage expenses.
upvoted 1 times
  Capricorn27 4 months ago
The economic advantages of the AWS Cloud are:

A. Increased workforce productivity: AWS services enable teams to focus on their core business competencies rather than managing
infrastructure. This can lead to increased productivity and efficiency.

D. Simplified total cost of ownership (TCO) accounting: AWS offers a pay-as-you-go pricing model that eliminates the need for large
upfront capital expenditures. This helps simplify TCO accounting and makes it easier to forecast costs.

Option B is incorrect because user data should always be encrypted, regardless of the cloud provider.

Option C is incorrect because AWS provides automated compliance checks and certifications, reducing the need for manual compliance
audits.

Option E is not a direct economic advantage but rather a business agility advantage, as AWS services can help accelerate product launches
and time-to-market.
upvoted 2 times

  saifee_khan 4 months ago

As per ChatGPT A, D, and E are correct.
upvoted 1 times

  kumaran1000001 4 months, 2 weeks ago

A - yes

B - no. coz you still need to protect your data

C - no. coz AWS provides various automated compliance monitoring

D - yes. pay-as-you-go model eliminates upfront investments and reduces the overall cost of ownership.

E - not directly related

upvoted 1 times

  bluesky2023 4 months ago

But D is not reduce TCO, is just simple TCO accounting
upvoted 2 times

  et_learner 4 months, 2 weeks ago

Selected Answer: DE
Increased workforce productivity is not an economic advantage of the AWS Cloud because it is not directly related to cost savings or
revenue generation. While the AWS Cloud can provide many benefits that can help increase productivity, such as faster development
cycles, better collaboration tools, and easier access to data, these benefits are not related to the economic advantages of the AWS Cloud.

Economic advantages of the AWS Cloud are typically related to cost savings or revenue generation, such as simplified TCO accounting,
faster product launches, reduced infrastructure management costs, or improved resource utilization. These economic advantages can
help organizations save money, increase revenue, or improve their overall financial performance.
upvoted 2 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: DE
The economic advantages of the AWS Cloud are:

D. Simplified total cost of ownership (TCO) accounting: AWS Cloud provides a pay-as-you-go pricing model that allows companies to pay
only for the resources they use. This makes it easier for companies to calculate and forecast their expenses, as they do not need to invest
in expensive hardware or maintain infrastructure.

E. Faster product launches: AWS Cloud provides a variety of services that can help companies rapidly develop, test, and deploy their
applications. This results in faster time-to-market, which can provide a competitive advantage and increased revenue.
upvoted 1 times

  et_learner 4 months, 2 weeks ago

ChatGPT
upvoted 2 times
Question #185 Topic 1

Which controls does the customer fully inherit from AWS in the AWS shared responsibility model?

A. Patch management controls

B. Awareness and training controls

C. Physical and environmental controls

D. Configuration management controls

Correct Answer: A

Community vote distribution

C (83%) D (18%)

  Nag1900 Highly Voted  1 year, 1 month ago

This is testing your English reading
upvoted 89 times

  Clair00613 3 months, 4 weeks ago

and I failed
upvoted 10 times

  darn 3 months, 4 weeks ago

lol legit
upvoted 2 times

  doctorreaper Highly Voted  1 year, 9 months ago

It's C, however it's worded very strangely. It's basically saying "AWS will take care of physical and environmental controls for you and you
inherit this right".
upvoted 29 times

  cyd001 Most Recent  1 week, 1 day ago

Selected Answer: D
C. Physical and environmental controls
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: C
C. Physical and environmental controls
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: C
In the AWS shared responsibility model, the customer fully inherits physical and environmental controls from AWS. This means that AWS is
responsible for the security and management of the underlying infrastructure, including the data centers, networking, and power
systems. AWS implements stringent physical and environmental controls to ensure the security and availability of their infrastructure.
upvoted 1 times

  elsie2023 2 weeks, 3 days ago

Selected Answer: C
c is correct
https://aws.amazon.com/compliance/shared-responsibility-model/
https://myrestraining.com/blog/aws/aws-certified-cloud-practitioner/aws-inherited-and-shared-controls/
upvoted 1 times

  tester0071 1 month, 3 weeks ago

In such situation pick odd one out
upvoted 1 times

  nlocnil 2 months, 1 week ago

This is one question that a completely seem to misunderstand. the answers given dont make sense to me.
upvoted 2 times

  0x0045 3 months ago

Selected Answer: C
Terribly worded question. almost a "double positive creates a negative?" situation. Customer has to do some sort of patching, so NOT A,
Customer still has to do some awareness training, so NOT B,
and Customer must also maintain some sort of configuration management, so also NOT D
that leaves C, which I could argue, if there is a VPN to AWS from the offices, physical access to the office (and AWS "inherited?") is still a
customer responsibility?

For the audience, this is what AWS is teaching us, not always direct logic. Pick C to pass the exam.
upvoted 4 times
  hoangngoclee 3 months, 2 weeks ago
https://myrestraining.com/blog/aws/aws-certified-cloud-practitioner/aws-inherited-and-shared-controls/
Inherited Controls – Controls which a customer fully inherits from AWS: Physical and Environmental controls

Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or
perspectives:

Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for
patching their guest OS and applications.
Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring
their own guest operating systems, databases, and applications.
Awareness & Training – AWS trains AWS employees, but a customer must train their own employees.
upvoted 2 times

  Guru4Cloud 3 months, 4 weeks ago

Selected Answer: C
C. Physical and environmental controls
Explanation:
According to the AWS Shared Responsibility Model, AWS is responsible for security "of" the cloud, meaning the underlying infrastructure
and services, while customers are responsible for security "in" the cloud, meaning their data, applications, and configurations.
AWS is responsible for providing and maintaining the physical infrastructure, including the physical security of data centers,
environmental controls, and network security, among others. These controls are fully inherited by the customer, and AWS provides
assurance that they are implemented and operated effectively.

The customer is responsible for patch management, awareness and training, configuration management, and other security controls
related to their data and applications running on AWS services.
upvoted 2 times

  Odba19c2021 4 months ago

Selected Answer: D
A. Patch management controls (Shared)
B. Awareness and training controls (Shared)
C. Physical and environmental controls Most Voted (AWS)
D. Configuration management controls (Customer)

AWS assumes ownership of what makes up the cloud. The configuration management is in the cloud.
upvoted 4 times

  kumaran1000001 4 months, 2 weeks ago

This was a tough question. But the process of elimination might help based on there is only one answer:
A - no. partly shared

B - no. partly shared

C - wholly shared by AWS

D - no. partly shared

upvoted 2 times

  harisene 5 months ago

Selected Answer: C
Answer: C
upvoted 1 times

  noahsark 5 months ago

Selected Answer: C
Physical and environmental controls

Inherited Controls – Controls which a customer fully inherits from AWS.

Physical and Environmental controls

https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 4 times

  wabosi 5 months, 1 week ago

Selected Answer: C
I vote for C
upvoted 1 times

  liliyao 5 months, 1 week ago

C The customer fully inherits physical and environmental controls from AWS in the AWS shared responsibility model.
upvoted 1 times
Question #186 Topic 1

Which task is a customer's responsibility, according to the AWS shared responsibility model?

A. Management of the guest operating systems

B. Maintenance of the configuration of infrastructure devices

C. Management of the host operating systems and virtualization

D. Maintenance of the software that powers Availability Zones

Correct Answer: A

Community vote distribution

A (100%)

  myan2492 Highly Voted  9 months ago

A.keyword
guest
upvoted 5 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: A
A. Management of the guest operating systems

"The customer assumes responsibility and management of the guest operating system (including updates and security patches), other
associated application software as well as the configuration of the AWS provided security group firewall."

https://aws.amazon.com/compliance/shared-responsibility-
model/#:~:text=The%20customer%20assumes%20responsibility%20and%20management%20of%20the%20guest%20operating%20system
%20(including%20updates%20and%20security%20patches)%2C%20other%20associated%20application%20software%20as%20well%20as%
20the%20configuration%20of%20the%20AWS%20provided%20security%20group%20firewall.
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: A
AWS is responsible for the security and maintenance of the underlying infrastructure, including the physical data centers, networking, and
power systems. The customer, on the other hand, is responsible for managing the guest operating systems, which includes tasks such as
applying patches, configuring security settings, and managing user access within the operating systems.
upvoted 2 times

  [Removed] 2 months, 3 weeks ago

Selected Answer: A
Guest OS - Customer
upvoted 1 times

  0x0045 3 months ago

based on #185, I expected a bunch of confusion here as well. guess we are doing better than I thought.
upvoted 1 times

  ABHIJIT0612 3 months, 1 week ago

Selected Answer: A
A SHOULD BE THE ANSWER
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  sujitwarrier11 9 months, 3 weeks ago

Selected Answer: A
its the guest operationg system that is controlled and maintained by the user
upvoted 2 times
Question #187 Topic 1

A company needs to deliver new website features quickly in an iterative manner to minimize the time to market.
Which AWS Cloud concept does this requirement represent?

A. Reliability

B. Elasticity

C. Agility

D. High availability

Correct Answer: C

Community vote distribution

C (100%)

  sujitwarrier11 Highly Voted  9 months, 3 weeks ago

Selected Answer: C
quickly and iteratively = Agility
upvoted 9 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: C
C. Agility
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: C
Agility refers to the ability to rapidly and easily adapt to changing business needs and market demands. In the context of AWS, it means
having the ability to quickly deploy and scale resources, implement changes, and iterate on applications or services. By leveraging AWS
services and features, companies can take advantage of the cloud's flexibility and automation capabilities to accelerate their development
and deployment cycles, allowing them to bring new features and updates to market more efficiently.
upvoted 1 times

  [Removed] 2 months, 3 weeks ago

Selected Answer: C
Speed, Iterative - Agile
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  myan2492 9 months ago

Speed = agility= quickly
upvoted 3 times
Question #188 Topic 1

A company wants to increase its ability to recover its infrastructure in the case of a natural disaster.
Which pillar of the AWS Well-Architected Framework does this ability represent?

A. Cost optimization

B. Performance efficiency

C. Reliability

D. Security

Correct Answer: C

Community vote distribution

C (100%)

  satnandi Highly Voted  1 year, 7 months ago

C : The ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet
demand, and mitigate disruptions such as misconfigurations or transient network issues.
upvoted 6 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: C
C. Reliability
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Automatically recover from failure: By monitoring a workload for key performance indicators (KPIs), you can trigger automation when
a threshold is breached. These KPIs should be a measure of business value, not of the technical aspects of the operation of the service.
This allows for automatic notification and tracking of failures, and for automated recovery processes that work around or repair the
failure. With more sophisticated automation, it’s possible to anticipate and remediate failures before they occur.

https://wa.aws.amazon.com/wellarchitected/2020-07-02T19-33-
23/wat.pillar.reliability.en.html#:~:text=Automatically%20recover%20from,before%20they%20occur.
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: C
Reliability refers to the ability of a system to operate continuously and recover from failures, including natural disasters. It involves
implementing strategies and mechanisms to ensure that applications and data are highly available, resilient, and can withstand
disruptions.

In the context of disaster recovery, AWS offers various services and features such as multi-region deployment, automated backups, and
replication capabilities to help organizations ensure the availability and recoverability of their infrastructure and data in the event of a
natural disaster.
upvoted 2 times

  Justin_ts 2 months, 2 weeks ago

their seems to be a lot of theses "recover" questions on this test i think I'm seeing a pattern
upvoted 1 times

  Clair00613 3 months, 4 weeks ago

Selected Answer: C
R for recover
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  JAMTARA 7 months, 3 weeks ago

ashif says answer is B Tehri says answer is C
upvoted 1 times

  N9 8 months ago
Selected Answer: C
keyword - recover
upvoted 1 times
  myan2492 9 months ago
C. reliability
upvoted 2 times

  sujitwarrier11 9 months, 3 weeks ago

Selected Answer: C
Recover from disaster = reliable system
upvoted 4 times

Question #189 Topic 1

Which AWS service tracks API calls and user activity?

A. AWS Organizations

B. AWS Config

C. Amazon CloudWatch

D. AWS CloudTrail

Correct Answer: D

Community vote distribution

D (100%)

  Pranava_GCP 1 week, 2 days ago

Selected Answer: D
D. CloudTrail
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: D
AWS CloudTrail provides a comprehensive audit trail of all API activity within your AWS account. It captures detailed information about API
calls made to various AWS services, including the identity of the caller, the time of the call, the source IP address, the parameters passed,
and the response received. This information helps you monitor and troubleshoot your AWS infrastructure, track changes made to
resources, and investigate security incidents.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  aman_aneja 8 months ago

Selected Answer: D
https://aws.amazon.com/cloudtrail/faqs/
upvoted 2 times

  myan2492 9 months ago

D. CloudTrail
AWS CloudTrail enables auditing, security monitoring, and operational troubleshooting by tracking user activity and API usage. CloudTrail
logs, continuously monitors, and retains account activity related to actions across your AWS infrastructure, giving you control over
storage, analysis, and remediation actions.
upvoted 3 times

  Nguyen25183 9 months ago

Its D. AWS CloudTrail. With AWS Cloudtrail you can tracks API Call and user activities.
upvoted 2 times
Question #190 Topic 1

Which AWS service, feature, or tool uses machine learning to continuously monitor cost and usage for unusual cloud spending?

A. Amazon Lookout for Metrics

B. AWS Budgets

C. Amazon CloudWatch

D. AWS Cost Anomaly Detection

Correct Answer: D

Community vote distribution

D (100%)

  Aliciuzza Highly Voted  8 months ago

Selected Answer: D
D " AWS Cost Anomaly Detection is an AWS cost management feature that uses machine learning to continually monitor your cost and
usage to detect unusual spends."
ref
https://docs.aws.amazon.com/wellarchitected/latest/management-and-governance-guide/aws-cloud-financial-management-services-
and-tools.html
upvoted 9 times

  sharmaurs Most Recent  6 days ago

Should this question be part of ACP exam ?
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: D
AWS Cost Anomaly Detection is a machine learning-powered service that analyzes your AWS cost and usage data to identify anomalies
and provide insights into unusual spending patterns. It uses advanced algorithms to learn your unique spending patterns and
automatically detects any deviations from the expected behavior. By proactively alerting you to potential cost anomalies, it helps you
identify cost optimization opportunities and prevent unexpected cost overruns.
upvoted 1 times

  Amar_1905 1 month, 1 week ago

Keywords here - "ML usage" to "identify unusual usage" - AWS Cost Anomaly Detection
upvoted 1 times

  Krish_Kaustub 4 months, 2 weeks ago

Selected Answer: D
https://aws.amazon.com/aws-cost-management/aws-cost-anomaly-detection/
AWS Cost Anomaly Detection leverages advanced Machine Learning technologies to identify anomalous spend and root causes, so you
can quickly take action
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  myan2492 9 months ago

D. AWS cost anomaly detection
--> detect and alert on any abnormal or sudden spend increases in your AWS account.
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: D
agreed
upvoted 2 times

  HarishRao 9 months, 1 week ago

Selected Answer: D
https://aws.amazon.com/aws-cost-management/aws-cost-anomaly-detection/faqs/
upvoted 2 times

  Pamban 9 months, 3 weeks ago

Selected Answer: D
Correct answer. https://aws.amazon.com/aws-cost-management/aws-cost-anomaly-detection/
upvoted 2 times
Question #191 Topic 1

A company deployed an application on an Amazon EC2 instance. The application ran as expected for 6 months in the past week, users have
reported latency issues. A system administrator found that the CPU utilization was at 100% during business hours. The company wants a scalable
solution to meet demand.
Which AWS service or feature should the company use to handle the load for its application during periods of high demand?

A. Auto Scaling groups

B. AWS Global Accelerator

C. Amazon Route 53

D. An Elastic IP address

Correct Answer: C

Community vote distribution

A (98%)

  SH_Train Highly Voted  11 months ago

Selected Answer: A
AWS Auto Scaling monitors your application and automatically adds or removes capacity from your resource groups in real-time as
demands change.
upvoted 10 times

  Pamban Highly Voted  9 months, 3 weeks ago

Selected Answer: A
It is scaling groups. Route 53 is dns..
upvoted 5 times

  cyd001 Most Recent  1 week, 1 day ago

Selected Answer: A
Auto Scaling groups
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: A
Auto Scaling groups in AWS allow you to automatically adjust the number of Amazon EC2 instances in your application fleet based on the
incoming traffic and demand. It helps you maintain performance, availability, and cost-effectiveness by scaling the capacity up or down as
needed. With Auto Scaling, you can set scaling policies based on various metrics such as CPU utilization, network traffic, or custom
application metrics.

In this case, since the application is experiencing latency issues due to high CPU utilization, using Auto Scaling groups will allow the
company to automatically add more instances to handle the increased demand and distribute the workload across multiple instances.
This will help improve the application's performance and ensure it can handle the load during peak periods.
upvoted 1 times

  Pepeti 1 month, 1 week ago

Selected Answer: A
RESPOSTA CORRETA AUTO SCALING
upvoted 1 times

  Coffeelander 1 month, 1 week ago

The question compiler is definitely a maatherchod.
upvoted 1 times

  nailimvali 2 months, 2 weeks ago

Selected Answer: A
It is scaling groups. Route 53 is dns..
upvoted 1 times

  0x0045 3 months ago

Selected Answer: A
aaaand another incorrect answer. Route 53 would be added in front of ELB and scale sets to do something like distribute load to another
region for either fail-over or geo-loadbalancing. I guess you COULD use Route 53 to round-robin EC2 instances?, but that is in no way what
the question meant. A. (behind an ELB)
upvoted 1 times
  xsuku4u 4 months, 1 week ago
Selected Answer: C
The company wants a scalable solution to meet demand. --> He already selected the Auto Scaling Groups. Now,
Which AWS service or feature should the company use to handle the load for its application during periods of high demand? --> It's Route
53 to distribute the incoming high load evenly between the multiple instances. so, cpu utilization will not reach to 100%.
upvoted 1 times

  aislin 3 months, 2 weeks ago

no, route 53 is DNS resolution. you are thinking of ELB.
upvoted 1 times

  harisene 5 months ago

Selected Answer: A
Answer: A
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  DST_Justin 6 months, 2 weeks ago

Selected Answer: A
Scaling is the point
upvoted 1 times

  Meeso 6 months, 3 weeks ago

Selected Answer: A
I think the admin """experts""" who chose the answers are not taking it seriously, I have always to depend on the votes.
so many answers are chosen wrong.

The answer is obviously A

upvoted 4 times

  ozbeyucel 7 months ago

its A, auto-scaling groups!
upvoted 1 times

  Kase052 7 months ago

I think it is A. Scaling has nothing to do with DNS.
upvoted 1 times

  HW4301 7 months, 1 week ago

https://docs.aws.amazon.com/autoscaling/ec2/userguide/auto-scaling-groups.html

An Auto Scaling group starts by launching enough instances to meet its desired capacity. It maintains this number of instances by
performing periodic health checks on the instances in the group. The Auto Scaling group continues to maintain a fixed number of
instances even if an instance becomes unhealthy. If an instance becomes unhealthy, the group terminates the unhealthy instance and
launches another instance to replace it.
upvoted 2 times

  Sleo82 8 months ago

Selected Answer: A
I think its A
upvoted 2 times
Question #192 Topic 1

A company wants to migrate to AWS and use the same security software it uses on premises. The security software vendor offers its security
software as a service on AWS.
Where can the company purchase the security solution?

A. AWS Partner Solutions Finder

B. AWS Support Center

C. AWS Management Console

D. AWS Marketplace

Correct Answer: D

Community vote distribution

D (100%)

  ksiazezbajki Highly Voted  1 year, 8 months ago

Selected Answer: D
D. AWS Marketplace
upvoted 7 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: D
The AWS Marketplace is an online store that offers a wide selection of third-party software, including security solutions, that can be used
on AWS. It provides a platform for customers to find, compare, and purchase software solutions that meet their specific needs. Vendors
can list their software offerings on the AWS Marketplace, making it a convenient and centralized location for customers to discover and
acquire the software they require.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  BillyC 1 year, 8 months ago

D is correct
upvoted 4 times
Question #193 Topic 1

A company is generating large sets of critical data in its on-premises data center. The company needs to securely transfer the data to AWS for
processing. These transfers must occur daily over a dedicated connection.
Which AWS service should the company use to meet these requirements?

A. AWS Backup

B. AWS DataSync

C. AWS Direct Connect

D. AWS Snowball

Correct Answer: B

Community vote distribution

C (82%) Other

  Emiley Highly Voted  9 months, 1 week ago

Selected Answer: C
The answer is C because Data sync is a secure, online service that automates and accelerates moving data between on premises and AWS
Storage services. whereas Direct connect is a network service that provides an alternative to using the Internet to utilize AWS cloud
services. In this scenario the company wants to transfer the file for processing not storing C is the correct answer.
upvoted 17 times

  ntlvld Highly Voted  2 months, 4 weeks ago

Should be C. Direct Connect.
You are correct that AWS DataSync is a data transfer service that can be used to transfer large amounts of data to and from AWS. It can
also be used to transfer data securely over the internet using encryption.

However, the question specifies that the transfers must occur daily over a dedicated connection. AWS DataSync does not provide a
dedicated connection for data transfer. Instead, it uses the internet to transfer data. While the internet is a reliable and secure way to
transfer data, it is not as fast and secure as a dedicated connection.

AWS Direct Connect, on the other hand, provides a dedicated private connection between an on-premises data center and AWS. With AWS
Direct Connect, you can establish a private, high-speed, and secure connection to AWS, which is ideal for transferring large volumes of
data securely and quickly.
upvoted 6 times

  Gulsah Most Recent  1 week, 4 days ago

Selected Answer: C
Answer is C. AWS Direct Connect
https://aws.amazon.com/directconnect/
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: C
AWS Direct Connect provides a dedicated network connection from the company's on-premises environment to AWS. It establishes a
private and secure connection that bypasses the public internet, ensuring reliable and low-latency data transfers. With AWS Direct
Connect, the company can transfer data directly from its data center to AWS without going through the internet, resulting in improved
security and data transfer performance.
upvoted 2 times

  Amar_1905 1 month, 1 week ago

found this topic:
Using AWS DataSync with VPC endpoint creates private link but that is not an default offering :
https://docs.aws.amazon.com/datasync/latest/userguide/datasync-in-vpc.html

So, default private network connectivity is through DirectConnect

upvoted 1 times

  starsea 2 months, 2 weeks ago

Selected Answer: C
dedicated connection is the key word. DataSync has two ways to copy data from on-premises to AWS, one is through AWS Direct Connect
(dedicated), and the other is Internet. Therefore you should not answer DataSync since it might not be dedicated.
upvoted 3 times

  Yasser001 2 months, 3 weeks ago

Selected Answer: C
To securely transfer large sets of critical data from an on-premises data center to AWS over a dedicated connection on a daily basis, the
company should use AWS Direct Connect.

AWS Direct Connect is a dedicated network connection service that provides a high-speed, dedicated network connection between on-
premises infrastructure and AWS. It is ideal for transferring large amounts of data frequently, which requires a dedicated, private
connection to maintain the security and reliability of the data transfer.
upvoted 3 times
  0x0045 3 months ago
Selected Answer: C
another vague question. from https://aws.amazon.com/datasync/faqs/

Q: How do I use AWS DataSync for recurring transfers between on-premises and AWS for ongoing workflows?

A: You can use AWS DataSync for ongoing transfers from on-premises systems into or out of AWS for processing.

but I can't find any supporting data about DataSync actually needing a dedicated link.

I do see this:

Q: Can I use AWS DataSync with AWS Direct Connect?

A: You can use AWS DataSync with your Direct Connect link to access public service endpoints

so neither are fully correct or incorrect based on the question as stated. I would hope any actual cert ??? on the topic are not a vague. I
picked C because of the word "dedicated"
upvoted 3 times

  nixonlaw 3 months ago

Selected Answer: B
B is answer. C. AWS Direct Connect is a network level service.
upvoted 1 times

  lajtosadam 3 months, 3 weeks ago

"The company needs to securely transfer the data to AWS for processing. These transfers must occur daily over a dedicated connection."
The answer is C!
upvoted 4 times

  vvviv 3 months, 3 weeks ago

Selected Answer: B
The answer is B DataSync because DataSync moves large amount of data from on-premises to AWS, and replication tasks can be
scheduled hourly, daily, weekly.
Option C Direct Connect also connects between on-premises and AWS but not the best option for data moving/transfer.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: C
A company is generating large sets of critical data in its on-premises data center. The company needs to securely transfer the data to AWS
for processing. These transfers must occur daily over a dedicated connection.
Which AWS service should the company use to meet these requirements?
A. AWS Backup
B. AWS DataSync
C. AWS Direct Connect
D. AWS Snowball
upvoted 2 times

  g3_joeman 3 months, 4 weeks ago

Selected Answer: A
https://aws.amazon.com/cloud-data-migration/

//You can use DataSync to copy data over AWS Direct Connect or internet links to AWS for one-time data migrations, recurring data
processing workflows, and automated replication for data protection and recovery.//
upvoted 1 times

  g3_joeman 3 months, 4 weeks ago

Answer is B therefore.
upvoted 1 times

  kumaran1000001 4 months, 1 week ago

A - no. fully managed backup service

B - no. it can do the task but not over a dedicated line

C - yes

D - no. data transport solution

upvoted 1 times
  g3_joeman 3 months, 4 weeks ago
For B. Here is a reference

https://aws.amazon.com/cloud-data-migration/

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
C. AWS Direct Connect: AWS Direct Connect establishes a dedicated network connection between the customer's data center and AWS,
providing a more consistent and secure connection compared to transferring data over the public internet. Direct Connect also offers the
option to use private virtual interfaces to connect to specific AWS services, such as Amazon S3 or Amazon EC2 instances, for processing of
the data.
upvoted 2 times

  Momo2023 4 months, 4 weeks ago

The company needs to transfer large sets of critical data to AWS for processing. Since the transfers must occur daily over a dedicated
connection, the company should use AWS Direct Connect, which provides dedicated network connections between on-premises
infrastructure and AWS. This service offers consistent network performance, reduced bandwidth costs, and provides a more reliable and
secure connection to the AWS infrastructure.

AWS Backup is a fully managed backup service that centralizes and automates the backup of data across AWS services and on-premises
applications.

AWS DataSync is a data transfer service that simplifies and automates moving data between on-premises storage and AWS services.

AWS Snowball is a petabyte-scale data transport solution that uses devices designed to be secure to transfer large amounts of data into
and out of AWS.
upvoted 4 times

  tamefi5512 5 months ago

Selected Answer: C
The answer is C
upvoted 2 times
Question #194 Topic 1

A company wants to run production workloads on AWS. The company wants access to technical support from engineers 24 hours a day, 7 days a
week. The company also wants access to the AWS Health API and contextual architectural guidance for business use cases. The company has a
strong IT support team and does not need concierge support.
Which AWS Support plan will meet these requirements at the LOWEST cost?

A. AWS Basic Support

B. AWS Developer Support

C. AWS Business Support

D. AWS Enterprise Support

Correct Answer: D

Community vote distribution

C (95%) 5%

  Arvina Highly Voted  10 months, 3 weeks ago

Selected Answer: C
The answer should be C . 2 reasons
1. for Contextual review Business is required not enterprise
2. Also it doesn't need concierge which is mentioned in the question which straight away cancelled enterprise and the answer will be
business
upvoted 18 times

  zoeyaj Highly Voted  11 months ago

Selected Answer: C
24/7 technical engineer, AWS Health, Contextual Guidance, Company had strong IT and doesn't need Concierge
upvoted 11 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: C
AWS Business Support offers 24/7 access to AWS Support engineers through email, chat, and phone. It provides access to the AWS Health
API, allowing the company to programmatically retrieve information about the health of AWS services. Additionally, AWS Business Support
offers general architectural guidance to help with business use cases.

The cost of AWS Business Support is lower than AWS Enterprise Support, which provides additional features such as concierge support.
AWS Developer Support is designed for individual developers and may not provide the level of support required by a company running
production workloads.
upvoted 1 times

  Zonci 2 months ago

Selected Answer: D
AWS Enterprise Support offers 24x7 access to support engineers via phone, email, and chat. It provides access to the AWS Health API,
which provides real-time information about service health and notifications. Additionally, AWS Enterprise Support offers architectural
guidance for business use cases.
upvoted 2 times

  MukundP 3 months, 1 week ago

Correct answer should be B. Notice the wordings, "strong IT team", "no concierge needed". AWS Developer Support will meet their
requirements at the lowest cost
upvoted 2 times

  BalazsStarschema 2 months, 1 week ago

Developer does not have 24/7 availability, only business hours.
upvoted 2 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: C
Based on the requirements, the AWS Support plan that would meet the company's needs at the lowest cost is C. AWS Business Support.

AWS Business Support provides 24/7 access to AWS Trusted Advisor, AWS Infrastructure Event Management, and the AWS Health API,
which are the features that the company needs. Business Support also includes access to AWS Support engineers during business hours,
which should be sufficient given the strong IT support team the company already has in place. Additionally, Business Support provides
architectural guidance for specific business use cases, which can be useful for optimizing the company's use of AWS.
upvoted 1 times
  Guru4Cloud 3 months, 4 weeks ago
Selected Answer: C
Based on the given requirements, the AWS Support plan that will meet these requirements at the LOWEST cost is option C, AWS Business
Support.

AWS Business Support provides 24/7 access to AWS Trusted Advisor, AWS Personal Health Dashboard, and AWS Support engineers via
email, chat, and phone. This plan also includes architectural guidance for specific use cases and AWS Health API access
upvoted 1 times

  Sourava 4 months, 1 week ago

Selected Answer: C
Business support can be used if you are running production workloads on AWS and want 24x7 access to technical support from engineers,
access to Health API, and contextual architectural guidance for your use-cases.
upvoted 1 times

  RiaanMO 5 months, 2 weeks ago

The moderator needs to double check the answer, it clearly states: The company has a strong IT support team and does not need
concierge support. Correct answer is C
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  rjay_juanico 7 months, 1 week ago

C is correct
upvoted 1 times

  SelloLed 7 months, 4 weeks ago

Answer C

https://aws.amazon.com/premiumsupport/plans/business/
upvoted 1 times

  fviero 8 months ago

Selected Answer: C
Who's providing "correct"answers dear lord. This is clearly C.
upvoted 2 times

  myan2492 9 months ago

B. business support (24/7 phone, web, chat)
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: C
Agreed
upvoted 1 times

  EazElr 9 months, 1 week ago

Selected Answer: C
"does not need concierge support"
upvoted 1 times

  nottie_noe 10 months, 2 weeks ago

Clearly C : https://aws.amazon.com/premiumsupport/plans/
upvoted 4 times
Question #195 Topic 1

Which of the following is a managed AWS service that is used specifically for extract, transform, and load (ETL) data?

A. Amazon Athena

B. AWS Glue

C. Amazon S3

D. AWS Snowball Edge

Correct Answer: B

Community vote distribution

B (100%)

  myan2492 Highly Voted  9 months ago

B. Glue == stick 3 things together: Extract, transform, load (ETL)
upvoted 14 times

  ACLOUD_PRACTITIONER Highly Voted  8 months ago

Selected Answer: B
AWS Glue is another offering from AWS and is a serverless ETL (Extract, Transform, and Load) service on the cloud. It is fully managed,
cost-effective service to categorize your data, clean and enrich it and finally move it from source systems to target systems.
upvoted 6 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: B
AWS Glue is a fully managed extract, transform, and load (ETL) service that makes it easy to prepare and load data for analytics. It
provides capabilities for discovering, cataloging, cleaning, and transforming data, making it ready for analysis. With AWS Glue, you can
create and manage data transformation workflows, and it integrates well with other AWS services for data storage, such as Amazon S3
and Amazon Redshift.
upvoted 1 times

  konieczny69 6 months ago

not int he scope of the exam
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Aliciuzza 8 months ago

Selected Answer: B
Aws Glue
as per doc " AWS Glue is a fully managed extract, transform, and load (ETL) service that makes it easier to discover, prepare, and combine
data for analytics, machine learning (ML), and application development."
Ref: https://aws.amazon.com/it/what-is/etl/#:~:text=AWS%20Glue%20is%20a%20fully,ML)%2C%20and%20application%20development.
upvoted 3 times

  JA2018 9 months, 1 week ago

Selected Answer: B
https://ahana.io/answers/the-differences-between-aws-athena-and-aws-glue-ahana/

AWS Glue is also serverless, but more of an ecosystem of tools to allow you to easily do schema discovery and ETL with auto-generated
scripts that can be modified either visually or via editing the script. The most commonly known components of Glue are Glue Metastore
and Glue ETL. Glue Metastore is a serverless hive compatible metastore which can be used in lieu of your own managed Hive. Glue ETL on
the other hand is a Spark service which allows customers to run Spark jobs without worrying about the configuration, manageability and
operationalization of the underlying Spark infrastructure. There are other services such as Glue Data Wrangler which we will keep outside
the scope of this discussion.
upvoted 3 times

  sujitwarrier11 9 months, 3 weeks ago

Selected Answer: B
AWS glue provides serverless ETL
upvoted 1 times

  akosigengen 11 months ago

B. AWS Glue provides both visual and code-based interfaces to make data integration easier. Users can easily find and access data using
the AWS Glue Data Catalog. Data engineers and ETL (extract, transform, and load) developers can visually create, run, and monitor ETL
workflows with a few clicks in AWS Glue Studio.
upvoted 1 times
Question #196 Topic 1

Which of the following actions are controlled with AWS Identity and Access Management (IAM)? (Choose two.)

A. Control access to AWS service APIs and to other specific resources.

B. Provide intelligent threat detection and continuous monitoring.

C. Protect the AWS environment using multi-factor authentication (MFA).

D. Grant users access to AWS data centers.

E. Provide firewall protection for applications from common web attacks.

Correct Answer: AC

Community vote distribution

AC (77%) AD (15%) 8%

  JA2018 Highly Voted  8 months, 2 weeks ago

Selected Answer: AC
agreed
upvoted 5 times

  cyd001 Most Recent  1 week, 1 day ago

Selected Answer: AC
Answer is correct, AC.
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: AC
Answer is correct, AC.
A. IAM allows you to manage permissions and access to various AWS service APIs and specific resources such as Amazon S3 buckets, EC2
instances, and more. IAM provides fine-grained control over what actions users and roles can perform within the AWS environment.
C. IAM supports multi-factor authentication (MFA), which adds an extra layer of security to AWS accounts. MFA requires users to provide
two or more forms of identification (e.g., password and a temporary authentication code from a virtual MFA device or hardware MFA
token) before they can access AWS resources.
D is incorrect, IAM does not control physical access to AWS data centers.
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: AC
IAM allows you to manage user access to various AWS resources and services. It enables you to create and manage user accounts, grant
permissions, and define policies to control access to AWS resources. With IAM, you can control who can access your AWS environment and
what actions they can perform.
upvoted 2 times

  Tony_27 6 months, 1 week ago

Selected Answer: AC
AWS multi-factor authentication (MFA) is an AWS Identity and Access Management (IAM) best practice that requires a second
authentication factor in addition to user name and password sign-in credentials. You can enable MFA at the AWS account level and for
root and IAM users you have created in your account.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AC
AC is the answer.
upvoted 2 times

  arunattupurath 7 months ago

A is obvious. But why not B ? Thread detection check is for when any role or users are able to access anything they shouldn't be !
upvoted 2 times

  sassy2023 7 months, 1 week ago

Selected Answer: AD
With IAM, I can control (A)Access to AWS resources & (D)Access to Data Center (Digitally)
How is C even relevant, Protecting AWS environment with MFA? If anything it would be protecting IAM account.
upvoted 4 times

  Agil09 8 months ago

Selected Answer: AC
nothing to to here with web prottection
upvoted 4 times

  SilverAlpaca 8 months, 1 week ago

why D is not answer
upvoted 1 times

  SUPERHEROGEEK 8 months ago

Because only AWS has access to the physical data centers
upvoted 3 times

  JAMTARA 7 months, 3 weeks ago

because ashif says so
upvoted 1 times

  N30Force 8 months, 1 week ago

Answer is AD
upvoted 1 times

  SUPERHEROGEEK 8 months ago

Can't be D because the customer using IAM can't have access to the data center since only AWS has access to it
upvoted 1 times

  JYKL88 8 months, 2 weeks ago

Selected Answer: AC
agree with the answer
upvoted 3 times

  DiDivision 8 months, 2 weeks ago

Selected Answer: AE
The three others have nothing to do with IAMs
upvoted 2 times

  JA2018 8 months, 2 weeks ago

Firewall has nothing to do with AWS IAM.
upvoted 4 times
Question #197 Topic 1

Which of the following are shared controls that apply to both AWS and the customer, according to the AWS shared responsibility model? (Choose
two.)

A. Resource configuration management

B. Network data integrity

C. Employee awareness and training

D. Physical and environmental security

E. Replacement and disposal of disk drives

Correct Answer: AC

Community vote distribution

AC (100%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: AC
Refer to: https://aws.amazon.com/compliance/shared-responsibility-model/

1. Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for
patching their guest OS and applications.

2. Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for
configuring their own guest operating systems, databases, and applications.
3.
Awareness & Training - AWS trains AWS employees, but a customer must train their own employees.
upvoted 9 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: AC
A. Resource configuration management: Both AWS and the customer share the responsibility of properly configuring and managing the
resources they use in the AWS environment.

C. Employee awareness and training: Both AWS and the customer share the responsibility of ensuring that employees are aware of and
trained in security best practices and compliance requirements.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: AC
The two shared controls that apply to both AWS and the customer, according to the AWS shared responsibility model, are:

A. Resource configuration management: AWS is responsible for the security of the cloud, while customers are responsible for the security
of their content and applications in the cloud. Customers are responsible for configuring their resources securely, including storage,
compute, and network configurations.

C. Employee awareness and training: AWS is responsible for ensuring that its employees are trained and aware of security risks and
procedures related to their work. Customers are responsible for ensuring that their employees are trained and aware of security risks and
procedures related to their use of AWS services.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AC
AC is the answer.
upvoted 1 times

  deqgi 7 months ago

Selected Answer: AC
AC is what I would select here.
upvoted 1 times
Question #198 Topic 1

What information is found on an AWS Identity and Access Management (IAM) credential report? (Choose two.)

A. The date and time when an IAM user's password was last used to sign in to the AWS Management Console.

B. The type of multi-factor authentication (MFA) device assigned to an IAM user.

C. The User-Agent browser identifier for each IAM user currently logged in.

D. Whether multi-factor authentication (MFA) has been enabled for an IAM user.

E. The number of incorrect login attempts by each IAM user in the previous 30 days.

Correct Answer: AC

Community vote distribution

AD (96%) 4%

  lajtosadam Highly Voted  3 months, 3 weeks ago

I just donwloaded the report:
user arn user_creation_time password_enabled password_last_used password_last_changed password_next_rotation mfa_active
access_key_1_active access_key_1_last_rotated access_key_1_last_used_date access_key_1_last_used_region access_key_1_last_used_service
access_key_2_active access_key_2_last_rotated access_key_2_last_used_date access_key_2_last_used_region access_key_2_last_used_service
cert_1_active cert_1_last_rotated cert_2_active cert_2_last_rotated
Based on this, A and D would be the correct answer.
upvoted 8 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: AD
The IAM credential report provides details about the IAM users in an AWS account, including their access keys, passwords, MFA devices,
and various other security-related information. However, the report does not include information such as the type of MFA device assigned
to an IAM user, the User-Agent browser identifier for each logged-in IAM user, or the number of incorrect login attempts.
upvoted 1 times

  harisene 5 months ago

Selected Answer: AD
A and D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 1 times

  HW4301 7 months, 1 week ago

A,D
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html#id_credentials_understanding_the_report_format

The date and time when the AWS account root user or IAM user's password was last used to sign in to an AWS website, in ISO 8601 date-
time format.
o The user's password has never been used.
mfa_active
When a multi-factor authentication (MFA) device has been enabled for the user, this value is TRUE. Otherwise it is FALSE.
upvoted 4 times

  HarishRao 9 months, 1 week ago

Selected Answer: AD
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html#id_credentials_understanding_the_report_format
upvoted 3 times

  EazElr 9 months, 2 weeks ago

Selected Answer: AD
Checked it by myself, A and D only
upvoted 3 times

  Pamban 9 months, 3 weeks ago

Selected Answer: AD
Clearly the answers are A and D https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html
upvoted 3 times
  bergermn 10 months, 2 weeks ago
AD correct. This page says nothing about "User-Agent browser"
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html
upvoted 2 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: AD
AD is correct
upvoted 2 times

  Aki20220918 10 months, 2 weeks ago

AD is correct
upvoted 1 times

  cata2402 10 months, 2 weeks ago

Selected Answer: AD
AD is correct
https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_examples_iam-credential-report.html
upvoted 2 times

  timHAG 10 months, 3 weeks ago

Selected Answer: AD
AD is correct
upvoted 2 times

  WANGJENNY 10 months, 4 weeks ago

Selected Answer: AD
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html#id_credentials_understanding_the_report_format
upvoted 2 times

  Vic_d_gr8 11 months ago

Selected Answer: AD
A & D. check list of IAM Credential report
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html
upvoted 3 times

  30Miles 11 months ago

Selected Answer: AB
https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_examples_iam-credential-report.html
upvoted 1 times

  fross 11 months ago

IAM Credential report includes status of the users' credentials, including passwords, access keys, MFA devices, and signing certificates.
https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_examples_iam-credential-report.html
upvoted 3 times
Question #199 Topic 1

What is the LEAST expensive AWS Support plan that contains a full set of AWS Trusted Advisor best practice checks?

A. AWS Enterprise Support

B. AWS Business Support

C. AWS Developer Support

D. AWS Basic Support

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 1 day ago

Selected Answer: B
AWS Business Support provides a cost-effective option that includes access to the full set of AWS Trusted Advisor best practice checks. It
offers 24/7 technical support, access to AWS Trusted Advisor, and additional support features such as chat and email support.
upvoted 1 times

  AWShan 1 month, 4 weeks ago

Aはなぜ違うの？
upvoted 1 times

  zill98 2 months, 1 week ago

Selected Answer: B
full set of AWS Trusted Advisor only available on business or enterprise support, so ans is B.
upvoted 1 times

  MukundP 3 months, 1 week ago

Correcting myself. Answer should be D. AWS Basic Support is the most affordable AWS Support plan and includes access to AWS Trusted
Advisor
upvoted 1 times

  Brad456 1 month, 2 weeks ago

B is the correct answer. Core checks are included in Basic Support, but the question is asking for full set. For that you need at the
minimum Business Support.

https://aws.amazon.com/premiumsupport/plans/
upvoted 1 times

  MukundP 3 months, 1 week ago

B. AWS Basic Support is the most affordable AWS Support plan and includes access to AWS Trusted Advisor
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: B
agreed, check out: https://www.amazonaws.cn/en/support/compare-plans/
upvoted 3 times

  Fer200 9 months, 2 weeks ago

Selected Answer: B
AWS Basic Support and AWS Developer Support customers can access core security checks and checks for service quotas. AWS Business
Support and AWS Enterprise Support customers can access all checks, including cost optimization, security, fault tolerance, performance,
and service quotas.
upvoted 4 times
Question #200 Topic 1

Which AWS service provides domain registration, DNS routing, and service health checks?

A. AWS Direct Connect

B. Amazon Route 53

C. Amazon CloudFront

D. Amazon API Gateway

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 1 day ago

Selected Answer: B
Amazon Route 53 is a scalable domain name system (DNS) web service that allows you to register and manage domain names, route
traffic to AWS resources or other external endpoints, and perform health checks to monitor the availability of your resources. It provides
reliable and cost-effective domain registration and DNS management, making it suitable for various use cases including website hosting,
application routing, and global traffic management.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  aman_aneja 8 months ago

Selected Answer: B
https://aws.amazon.com/route53/faqs/
upvoted 3 times

  myan2492 9 months ago

B. Route 53 --> DNS
upvoted 3 times
Question #201 Topic 1

A bank needs to store recordings of calls made to its contact center for 6 years. The recordings must be accessible within 48 hours from the time
they are requested.
Which AWS service will provide a secure and cost-effective solution for retaining these files?

A. Amazon DynamoDB

B. Amazon S3 Glacier

C. Amazon Connect

D. Amazon ElastiCache

Correct Answer: C

Community vote distribution

B (89%) 11%

  lizliz Highly Voted  1 year, 10 months ago

I think its B
upvoted 42 times

  bratpyt Highly Voted  1 year, 10 months ago

Someone answered AWS Connect because it's related to call centers, but actually, this question is more about data so B.
upvoted 18 times

  Soumya198725 Most Recent  1 day, 23 hours ago

Option :B and will avail the feature of AWS glacier and choose the option as Bulk Reterival
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: B
Amazon S3 Glacier is designed for long-term data archiving and backup. It provides secure, durable, and scalable object storage with
flexible retrieval options. With Amazon S3 Glacier, you can store large amounts of data at a lower cost compared to other storage options.
The data is stored in archives and can be accessed within a predefined retrieval time (such as 48 hours) when needed.
upvoted 1 times

  Coffeelander 1 month, 1 week ago

It should be B. Typically the compiler is a cunt
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: B
answer is b
upvoted 1 times

  jasonled3 3 months, 3 weeks ago

Its S3 Glacier.
https://aws.amazon.com/s3/storage-classes/glacier/
For archive data that does not require immediate access but needs the flexibility to retrieve large sets of data at no cost, such as backup or
disaster recovery use cases, choose S3 Glacier Flexible Retrieval (formerly S3 Glacier), with retrieval in minutes or free bulk retrievals in 5-
12 hours.
upvoted 1 times

  harisene 5 months ago

Selected Answer: B
Answer B
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: C
The Amazon S3 Glacier Deep Archive storage class provides two retrieval options ranging from 12-48 hours.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times
  ozbeyucel 7 months ago
its about storing the data therefore its B
upvoted 1 times

  HW4301 7 months, 1 week ago

C
https://aws.amazon.com/s3/storage-classes/

S3 Glacier Deep Archive would have met the requirement better than S3 Glacier for cost savings.

To save even more on long-lived archive storage such as compliance archives and digital media preservation, choose S3 Glacier Deep
Archive, the lowest cost storage in the cloud with data retrieval from 12—48 hours.
upvoted 2 times

  Sleo82 8 months ago

Selected Answer: B
I think its B
upvoted 4 times

  Oluniyi 8 months, 2 weeks ago

B is he answer. Amazon connect does no retain files
upvoted 2 times

  Lorber 8 months, 3 weeks ago

Selected Answer: B
Amazon S3 Glacier
upvoted 3 times

  zinabu 10 months, 3 weeks ago

glacier is, for retrieving data within 12 hours not 48hr , so the question is about a customer service call center so "C'' is the correct answer
upvoted 1 times

  Inytt 9 months, 1 week ago

Retrieving a data from Glacier can take up to 12 hours, Bank needs their data in 48 hours after the request, so Glacier is the right
choice.
upvoted 3 times

  Sugarbear_01 1 year ago

Selected Answer: B
S3 Glacier
upvoted 2 times
Question #202 Topic 1

Which AWS service should be used to migrate a company's on-premises MySQL database to Amazon RDS?

A. AWS Direct Connect

B. AWS Server Migration Service (AWS SMS)

C. AWS Database Migration Service (AWS DMS)

D. AWS Schema Conversion Tool (AWS SCT)

Correct Answer: C

Community vote distribution

C (100%)

  man5484 2 weeks, 1 day ago

Selected Answer: C
AWS Database Migration Service (DMS) is a fully managed service that enables seamless migration of databases to AWS quickly and
securely. It supports various source and target database engines, including MySQL and Amazon RDS. AWS DMS simplifies the database
migration process by handling tasks such as schema conversion, data replication, and ongoing replication management.
upvoted 1 times

  Shammyshetty 1 month, 4 weeks ago

C RDS is a database service
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  tfosso 7 months ago

Selected Answer: C
Answer C
upvoted 3 times

  Wiss7 9 months, 2 weeks ago

Selected Answer: C
https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/migrate-an-on-premises-mysql-database-to-amazon-rds-for-
mysql.html
upvoted 3 times
Question #203 Topic 1

Which benefits does a company gain when the company moves from on-premises IT architecture to the AWS Cloud? (Choose two.)

A. Reduced or eliminated tasks for hardware troubleshooting, capacity planning, and procurement

B. Elimination of the need for trained IT staff

C. Automatic security configuration of all applications that are migrated to the cloud

D. Elimination of the need for disaster recovery planning

E. Faster deployment of new features and applications

Correct Answer: AE

Community vote distribution

AE (100%)

  man5484 2 weeks, 1 day ago

Selected Answer: AE
A. Reduced or eliminated tasks for hardware troubleshooting, capacity planning, and procurement: With the AWS Cloud, companies can
offload the responsibility of managing hardware infrastructure, including troubleshooting issues, planning for capacity needs, and
procuring new hardware. AWS manages the underlying infrastructure, allowing companies to focus on their core business.

E. Faster deployment of new features and applications: AWS provides a wide range of services and tools that enable companies to quickly
deploy and scale applications. The cloud infrastructure allows for agility and faster time to market, as companies can easily provision
resources and take advantage of managed services for various functionalities.
upvoted 1 times

  [Removed] 2 months, 3 weeks ago

Selected Answer: AE
A and E
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: AE
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AE
AE is the answer.
upvoted 1 times

  tonwija 7 months, 2 weeks ago

Selected Answer: AE
Because it can reduce or eliminate so i choose A for cost optimize & E for agility
upvoted 3 times

  JA2018 8 months, 2 weeks ago

Selected Answer: AE
agreed
upvoted 1 times
Question #204 Topic 1

Which of the following is a benefit of decoupling an AWS Cloud architecture?

A. Reduced latency

B. Ability to upgrade components independently

C. Decreased costs

D. Fewer components to manage

Correct Answer: B

Community vote distribution

B (100%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: B
https://www.cloudamqp.com/blog/why-is-application-decoupling-a-good-
thing.html#:~:text=A%20decoupled%20application%20architecture%20allows,and%20unaware%20of%20each%20other.
upvoted 5 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: B
The benefit of decoupling an AWS Cloud architecture is the ability to upgrade components independently. When components are
decoupled, they are not tightly coupled or dependent on each other, allowing for independent upgrades or changes to specific
components without affecting the entire system. This provides flexibility and agility in managing and evolving the architecture over time.
upvoted 1 times

  Madbo 3 months, 1 week ago

Answer: B. Ability to upgrade components independently.

Decoupling an AWS Cloud architecture involves breaking up a monolithic system into smaller, independent components that can be
upgraded or replaced without affecting the entire system. This results in greater flexibility, scalability, and agility, as well as the ability to
use different technologies or services for different components. Decoupling does not necessarily result in reduced latency, decreased
costs, or fewer components to manage.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times
Question #205 Topic 1

Which task is the responsibility of the customer according to the AWS shared responsibility model?

A. Maintain the security of the hardware that runs Amazon EC2 instances.

B. Patch the guest operating system of Amazon EC2 instances.

C. Protect the security of the AWS global infrastructure.

D. Patch Amazon RDS software.

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 1 day ago

Selected Answer: B
According to the AWS shared responsibility model, the responsibility for patching the guest operating system of Amazon EC2 instances
lies with the customer. AWS is responsible for the security of the underlying infrastructure, including the hardware that runs EC2
instances, but the customer is responsible for managing and securing the operating system and applications running on those instances.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: B
https://aws.amazon.com/compliance/shared-responsibility-model/

Customers that deploy an Amazon EC2 instance are responsible for management of the guest operating system (including updates and
security patches), any application software or utilities installed by the customer on the instances, and the configuration of the AWS-
provided firewall (called a security group) on each instance.
upvoted 1 times

  woodbury888 2 months, 3 weeks ago

Selected Answer: B
B is the correct choice
upvoted 1 times

  RS16 3 months, 2 weeks ago

B correct
upvoted 1 times

  RiaanMO 5 months, 1 week ago

Combined cost = C. Consolidated billing
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed
upvoted 3 times
Question #206 Topic 1

Which AWS Organizations feature can be used to track charges across multiple accounts and report the combined cost?

A. Service control policies (SCPs)

B. Cost Explorer

C. Consolidated billing

D. AWS Identity and Access Management (IAM)

Correct Answer: C

Community vote distribution

C (100%)

  Aliciuzza Highly Voted  8 months ago

Selected Answer: C
correct : C
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html
upvoted 5 times

  Pranava_GCP 2 weeks, 5 days ago

agreed, from above link, "You can use the consolidated billing feature in AWS Organizations to consolidate billing and payment for
multiple AWS accounts or multiple Amazon Web Services India Private Limited (AWS India) accounts".

https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html
upvoted 1 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: C
Consolidated billing allows you to consolidate billing for multiple AWS accounts under a single paying account. This enables you to receive
a single bill and provides you with a centralized view of costs across all your accounts.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

C is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: C
sgreed
upvoted 1 times
Question #207 Topic 1

Which of the following is a cloud benefit that AWS offers to its users?

A. The ability to configure AWS data center hypervisors

B. The ability to purchase hardware in advance of increased traffic

C. The ability to deploy to AWS on a global scale

D. Compliance audits for user IT environments

Correct Answer: C

Community vote distribution

C (100%)

  JA2018 Highly Voted  8 months, 2 weeks ago

Selected Answer: C
agreed

Go global in minutes

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 5 times

  Pranava_GCP 2 weeks, 5 days ago

yes, from the link : "Go global in minutes – Easily deploy your application in multiple regions around the world with just a few clicks.
This means you can provide lower latency and a better experience for your customers at minimal cost."
upvoted 1 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: C
The cloud benefit that AWS offers to its users is the ability to deploy to AWS on a global scale. AWS provides a global infrastructure that
allows users to deploy their applications and services in multiple geographic regions around the world. This global presence enables users
to reach their customers with low latency and provides them with the flexibility to expand their presence in different regions based on
demand.
upvoted 1 times

  tamefi5512 5 months ago

Selected Answer: C
C is the answer,
its one of the 6 advantages of aws cloud
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times
Question #208 Topic 1

An ecommerce company has migrated its IT infrastructure from an on-premises data center to the AWS Cloud.
Which cost is the company's direct responsibility?

A. Cost of application software licenses

B. Cost of the hardware infrastructure on AWS

C. Cost of power for the AWS servers

D. Cost of physical security for the AWS data center

Correct Answer: A

Community vote distribution

A (100%)

  man5484 2 weeks, 1 day ago

Selected Answer: A
When an ecommerce company migrates its IT infrastructure from an on-premises data center to the AWS Cloud, the cost of application
software licenses is typically the company's direct responsibility. This is because AWS provides the infrastructure and the underlying
software components, but the company is responsible for acquiring and managing the necessary licenses for the specific applications it
uses on AWS.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: A
https://aws.amazon.com/compliance/shared-responsibility-model/

IMHO, this should be part of "Shared Responsibility Model" discussion, from above link

" The customer assumes responsibility and management of the guest operating system (including updates and security patches), other
associated application software as well as the configuration of the AWS provided security group firewall".
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  N9 8 months ago
Selected Answer: A
A is the answer
https://docs.aws.amazon.com/license-manager/latest/userguide/license-manager.html

As you build out your cloud infrastructure on AWS, you can save costs by using Bring Your Own License model (BYOL) opportunities. That
is, you can re-purpose your existing license inventory for use with your cloud resources.
upvoted 4 times

  Slitigenz 10 months, 1 week ago

Why is not B?
upvoted 1 times

  Craig92866 8 months, 1 week ago

This is a poorly worded question... I thought B, too, and I think it's not the answer because we're not purchasing network gear, PDU's,
battery backups and other infrastructure items that aren't servers and storage (Instance Stores, EC2 Dedicated Hosts, etc). But
depending on the product you buy from AWS, software licenses can be AWS's responsibility, too. Again, poorly worded...
upvoted 2 times

  Istiaque 10 months ago

B is AWS responsibility
upvoted 5 times
Question #209 Topic 1

What are the five pillars of the AWS Well-Architected Framework?

A. Encryption, documentation, speed, hybrid design, and cost optimization

B. Containerization, cost margins, globalization, marketplace, and developer operations

C. Network, compute, storage, security, and developer operations

D. Operational excellence, reliability, performance efficiency, security, and cost optimization

Correct Answer: D

Community vote distribution

D (100%)

  anagy11 Highly Voted  10 months, 2 weeks ago

Selected Answer: D
D is the correct, however, the question should be updated because now there are 6 pillars of WAF: Operational Excellence, Security,
Reliability, Sustainability, Performance Efficiency, Cost Optimization
upvoted 10 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: D
D. Operational excellence - Focuses on operational practices that allow organizations to run their workloads efficiently, gain insights into
their operations, and continuously improve processes and procedures.

Reliability - Focuses on the ability to recover from failures and meet business continuity objectives by designing systems that can
automatically recover from infrastructure or service disruptions.

Performance efficiency - Focuses on using resources efficiently to meet system requirements, including selecting the right resource types
and sizes and optimizing performance as demands change.

Security - Focuses on protecting information, systems, and assets while delivering business value through risk assessments, data
protection mechanisms, and implementing various security controls.

Cost optimization - Focuses on avoiding unnecessary costs by optimizing resource usage, selecting the right pricing models, and analyzing
spending patterns to ensure cost-effectiveness.
upvoted 1 times

  Veerapapi 3 months, 3 weeks ago

Deprecated Question. Follow link - https://docs.aws.amazon.com/wellarchitected/latest/iot-lens/the-pillars-of-the-well-architected-
framework.html
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: D
Remember that they added one more..
The 6 Pillars of the AWS Well-Architected Framework
Operational Excellence
Security
Reliability
Performance Efficiency
Cost Optimization
*Sustainability*
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  DST_Justin 6 months, 2 weeks ago

Selected Answer: D
Well, Think about it.
upvoted 1 times

  anksvast 6 months, 3 weeks ago

Sustainability is the 6th one.
https://aws.amazon.com/blogs/apn/the-6-pillars-of-the-aws-well-architected-framework/
upvoted 3 times
  LibertyX 7 months, 2 weeks ago
Selected Answer: D
The answer is D, But there are now 6 pillars
https://aws.amazon.com/architecture/well-architected/?wa-lens-whitepapers.sort-by=item.additionalFields.sortDate&wa-lens-
whitepapers.sort-order=desc&wa-guidance-whitepapers.sort-by=item.additionalFields.sortDate&wa-guidance-whitepapers.sort-
order=desc
upvoted 1 times

  noraroxette 7 months, 4 weeks ago

Selected Answer: D
Answer: D
upvoted 1 times

  sanyoc 8 months ago

Selected Answer: D
answer D
upvoted 1 times

  fross 11 months ago

Selected Answer: D
This is an easy one. D!
upvoted 2 times
Question #210 Topic 1

A company accepts enrollment applications on handwritten paper forms. The company uses a manual process to enter the form data into its
backend systems.
The company wants to automate the process by scanning the forms and capturing the enrollment data from scanned PDF files.
Which AWS service should the company use to build this process?

A. Amazon Rekognition

B. Amazon Textract

C. Amazon Transcribe

D. Amazon Comprehend

Correct Answer: B

Community vote distribution

B (100%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: B
agreed.

What is Amazon Textract?

Amazon Textract is a machine learning (ML) service that automatically extracts text, handwriting, and data from scanned documents. It
goes beyond simple optical character recognition (OCR) to identify, understand, and extract data from forms and tables.
upvoted 8 times

  Pranava_GCP 2 weeks, 5 days ago

yes,
https://aws.amazon.com/textract/
upvoted 1 times

  man5484 Most Recent  2 weeks, 1 day ago

Selected Answer: B
The AWS service that can be used to automate the process of extracting data from scanned PDF files is Amazon Textract (Option B).
Amazon Textract is a machine learning service that uses optical character recognition (OCR) technology to automatically extract text and
data from scanned documents, including PDF files. It can accurately recognize and extract data from various types of documents, such as
forms, invoices, and contracts, making it suitable for automating the process of capturing enrollment data from scanned paper forms.
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: B
The AWS service that the company should use to automate the process of capturing enrollment data from scanned PDF files is:

B. Amazon Textract: Amazon Textract is a machine learning service that automatically extracts text and data from scanned documents,
including handwritten text. The service can extract tables, forms, and text in a variety of formats, including PDF and image files. With
Amazon Textract, the company can automate the process of extracting the enrollment data from scanned PDF files and integrate the data
with its backend systems.
upvoted 1 times

  Cloud_Explorer 4 months, 4 weeks ago

Not in the exam guide, not in the course...
upvoted 2 times

  konieczny69 6 months ago

not in the scope of the exam
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Asad_Elahi 9 months ago

Selected Answer: B
agreed
upvoted 2 times
  real111 10 months, 2 weeks ago
Selected Answer: B
Amazon Textract is a machine learning (ML) service that automatically extracts text, handwriting, and data from scanned documents.
upvoted 3 times

  rock2010 10 months, 2 weeks ago

Amazon Textract is a machine learning (ML) service that automatically extracts text, handwriting, and data from scanned documents.
upvoted 2 times

  rock2010 10 months, 2 weeks ago

Typo its "B"
upvoted 1 times

  bergermn 10 months, 2 weeks ago

C, https://aws.amazon.com/codecommit/#:~:text=AWS%20CodeCommit%20is%20a%20secure,in%20transit%20and%20at%20rest.

AWS CodeCommit is a secure, highly scalable, managed source control service that hosts private Git repositories. It makes it easy for
teams to securely collaborate on code with contributions encrypted in transit and at rest.
upvoted 1 times
Question #211 Topic 1

Which AWS service should a company use to organize, characterize, and search large numbers of images?

A. Amazon Transcribe

B. Amazon Rekognition

C. Amazon Aurora

D. Amazon QuickSight

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks, 1 day ago

Selected Answer: B
Amazon Rekognition is a deep learning-based image and video analysis service that can analyze and extract valuable information from
images, such as objects, scenes, and faces. It provides powerful image search and recognition capabilities, allowing users to categorize
and organize their image collections based on specific attributes or characteristics. Additionally, it offers features like facial analysis,
content moderation, and text detection, making it a comprehensive solution for image analysis and management.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: B
https://docs.aws.amazon.com/rekognition/latest/dg/what-is.html

"Searchable image and video libraries – Amazon Rekognition makes images and stored videos searchable so you can discover objects and
scenes that appear within them".
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: B
The AWS service that a company should use to organize, characterize, and search large numbers of images is Amazon Rekognition.

Amazon Rekognition is a fully managed AI service that makes it easy to add image and video analysis to applications. It provides
capabilities such as object and scene detection, facial analysis, celebrity recognition, text detection, and image moderation. With Amazon
Rekognition, a company can easily organize and search large numbers of images based on their characteristics, such as visual content,
keywords, and tags.
upvoted 2 times

  konieczny69 6 months ago

out of exam scope
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed
upvoted 3 times
Question #212 Topic 1

An ecommerce company wants to use Amazon EC2 Auto Scaling to add and remove EC2 instances based on CPU utilization.
Which AWS service or feature can initiate an Amazon EC2 Auto Scaling action to achieve this goal?

A. Amazon Simple Queue Service (Amazon SQS)

B. Amazon Simple Notification Service (Amazon SNS)

C. AWS Systems Manager

D. Amazon CloudWatch alarm

Correct Answer: B

Community vote distribution

D (96%) 4%

  zoeyaj Highly Voted  11 months ago

Selected Answer: D
Amazon CloudWatch alarms can be created on the Auto Scaling group as a whole, such as Average CPUUtilization. This is because alarms
are used to tell Auto Scaling when to add/remove instances and such decisions would be based upon the group as a whole.
upvoted 31 times

  Gulsah Most Recent  1 week, 4 days ago

Selected Answer: D
D for sure.
upvoted 1 times

  man5484 2 weeks, 1 day ago

Selected Answer: D
Amazon CloudWatch provides monitoring and observability services for AWS resources, including EC2 instances. It allows you to set up
alarms on various metrics, such as CPU utilization, network traffic, or disk usage. When a specific threshold is breached, an alarm is
triggered.

With Amazon EC2 Auto Scaling, you can configure scaling policies based on CloudWatch alarms. In this scenario, you can set a CloudWatch
alarm to monitor CPU utilization of the EC2 instances. When the CPU utilization exceeds a certain threshold, the alarm triggers an auto
scaling action to add more instances to handle the increased load. Similarly, when the CPU utilization decreases, the auto scaling action
can remove instances to optimize costs.
upvoted 2 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: D
https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-scale-based-on-demand.html

"Amazon EC2 Auto Scaling supports the following types of dynamic scaling policies:

Target tracking scaling—Increase and decrease the current capacity of the group based on a Amazon CloudWatch metric and a target
value. It works similar to the way that your thermostat maintains the temperature of your home—you select a temperature and the
thermostat does the rest".
upvoted 2 times

  Nihal_OO7 1 month ago

d. Cloud watch alaram
upvoted 2 times

  fhernandez 1 month, 3 weeks ago

Option D is correct
upvoted 2 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: B
the answer is B
upvoted 1 times

  nixonlaw 3 months ago

Selected Answer: D
D,Amazon CloudWatch - You can use a CloudWatch alarm with Amazon EC2 Auto Scaling to scale your EC2 instances based on demand.
REF. https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/WhatIsCloudWatch.html
=>>Amazon EC2 Auto Scaling enables you to automatically launch or terminate Amazon EC2 instances based on user-defined policies,
health status checks, and schedules. You can use a CloudWatch alarm with Amazon EC2 Auto Scaling to scale your EC2 instances based on
demand.
upvoted 3 times
  Veerapapi 3 months, 3 weeks ago
If you specify scaling policies, then Amazon EC2 Auto Scaling can launch or terminate instances as demand on your application increases
or decreases.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: D
The AWS service or feature that can initiate an Amazon EC2 Auto Scaling action based on CPU utilization is Amazon CloudWatch alarm.

Amazon CloudWatch is a monitoring service that provides metrics and logs on AWS resources and applications. It can be used to monitor
the CPU utilization of an Amazon EC2 instance and trigger an Amazon EC2 Auto Scaling action based on predefined thresholds. To do this,
a CloudWatch alarm must be set up with the CPU utilization metric, and then configured to trigger the appropriate Amazon EC2 Auto
Scaling action when the threshold is met.
upvoted 2 times

  Krish_Kaustub 4 months, 2 weeks ago

Selected Answer: D
https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/WhatIsCloudWatch.html
You can use a CloudWatch alarm with Amazon EC2 Auto Scaling to scale your EC2 instances based on demand. For more information, see
Dynamic Scaling in the Amazon EC2 Auto Scaling User Guide
upvoted 2 times

  spiderking123 5 months ago

Selected Answer: D
D is the correct answer
upvoted 2 times

  harisene 5 months ago

Selected Answer: D
Answer: D
upvoted 2 times

  Ahmedhadi_ 5 months, 1 week ago

  Phary 5 months, 2 weeks ago

I think Cloud Watch is more suitable in this case.

You can use SNS to trigger an EC2 Auto Scaling action by creating an SNS topic that is subscribed to by the Auto Scaling group. When a
message is sent to the SNS topic, it triggers the Auto Scaling group to add or remove EC2 instances based on the configured scaling rules.

However, in the case of triggering EC2 Auto Scaling based on CPU utilization, Amazon CloudWatch is the more suitable service to use.
CloudWatch is specifically designed for monitoring and alerting on cloud resources, including EC2 instances, and provides more fine-
grained control over scaling rules and alarm thresholds. SNS, on the other hand, is a more general-purpose messaging service that can be
used for a wide range of use cases, including triggering EC2 Auto Scaling but may not provide the same level of control and granularity as
CloudWatch for this specific use case.
upvoted 3 times

  Onyejicash 6 months ago

Selected Answer: B
Amazon CloudWatch
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 3 times
Question #213 Topic 1

A company wants to host a private version control system for its application code in the AWS Cloud.
Which AWS service should the company use to meet this requirement?

A. AWS CodePipeline

B. AWS CodeStar

C. AWS CodeCommit

D. AWS CodeDeploy

Correct Answer: C

Community vote distribution

C (100%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: C
from: https://aws.amazon.com/devops/source-control/

Source Control with AWS

AWS CodeCommit is a managed source control system that hosts Git repositories and works with all Git-based tools.

AWS CodeCommit will store code, binaries, and metadata in a redundant fashion with high availability. You will be able to collaborate with
local and remote teams to edit, compare, sync, and revise your code.

Because AWS CodeCommit runs in the AWS Cloud, you no longer need to worry about hosting, scaling, or maintaining your own source
code control infrastructure. CodeCommit automatically encrypts your files and is integrated with AWS Identity and Access Management
(IAM), allowing you to assign user-specific permissions to your repositories. This ensures that your code remains secure and you can
collaborate on projects across your team in a secure manner.
upvoted 11 times

  bergermn Highly Voted  10 months, 2 weeks ago

C, https://aws.amazon.com/codecommit/#:~:text=AWS%20CodeCommit%20is%20a%20secure,in%20transit%20and%20at%20rest.

  man5484 Most Recent  2 weeks ago

Selected Answer: C
AWS CodeCommit is a fully managed source control service that enables teams to securely host private Git repositories. It provides a
highly scalable and secure environment to store and manage code. With CodeCommit, teams can collaborate on code and easily track
changes using Git version control.

Using CodeCommit, the company can create private repositories to securely store and manage its application code. It offers features such
as branch management, pull requests, and code reviews to facilitate efficient development workflows. The code repositories in
CodeCommit are accessible only to authorized users within the company's AWS account, ensuring the privacy and security of the
codebase.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times
Question #214 Topic 1

Which AWS service or tool can a company set up to send notifications that a custom spending threshold has been reached or exceeded?

A. AWS Budgets

B. AWS Trusted Advisor

C. AWS CloudTrail

D. AWS Support

Correct Answer: A

Community vote distribution

A (100%)

  man5484 2 weeks ago

Selected Answer: A
AWS Budgets is a service that allows users to set custom spending thresholds and receive alerts when those thresholds are reached or
exceeded. It provides a way to track and manage costs by setting budgets based on various cost dimensions such as AWS service, linked
account, tag, and more. Once a budget is created and configured with the desired spending threshold, users can choose to receive
notifications via email or Amazon Simple Notification Service (SNS) when the threshold is crossed. This helps organizations proactively
monitor their AWS spending and take appropriate actions to control costs.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: A
https://aws.amazon.com/aws-cost-management/aws-budgets/

With AWS Budgets, set custom budgets to track your costs and usage, and respond quickly to alerts received from email or SNS
notifications if you exceed your threshold.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 3 times

  sanyoc 8 months ago

Selected Answer: A
correct answer A
upvoted 3 times

  EazElr 9 months, 1 week ago

Selected Answer: A
"spending threshold"
upvoted 2 times
Question #215 Topic 1

Which AWS service is used to host static websites?

A. Amazon S3

B. Amazon Elastic Block Store (Amazon EBS)

C. AWS CloudFormation

D. Amazon Elastic File System (Amazon EFS)

Correct Answer: A

Community vote distribution

A (100%)

  sanyoc Highly Voted  8 months ago

Selected Answer: A
S3 = Secure, durable, and scalable object storage infrastructure. S3 can be used to host static websites to deliver HTML, JavaScript, images,
and video for sites that do not contain server-side scripting.
upvoted 5 times

  man5484 Most Recent  2 weeks ago

Selected Answer: A
Amazon S3 (Simple Storage Service) can be used to host static websites. It provides a cost-effective and scalable solution for storing and
serving static web content, such as HTML, CSS, JavaScript files, images, and videos. With Amazon S3, you can create a bucket, configure it
for static website hosting, and upload your website content to the bucket. Amazon S3 then makes the content available for access via a
website endpoint.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: A
https://docs.aws.amazon.com/AmazonS3/latest/userguide/WebsiteHosting.html

"You can use Amazon S3 to host a static website. On a static website, individual webpages include static content. They might also contain
client-side scripts.By contrast, a dynamic website relies on server-side processing, including server-side scripts, such as PHP, JSP, or
ASP.NET. Amazon S3 does not support server-side scripting, but AWS has other resources for hosting dynamic websites".
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  myan2492 9 months ago

A. Aws S3
Hosting a static website using Amazon S3
PDF
RSS
You can use Amazon S3 to host a static website. On a static website, individual webpages include static content. They might also contain
client-side scripts.

By contrast
upvoted 1 times
Question #216 Topic 1

Which AWS service contains built-in engines to protect web applications that run in the cloud from SQL injection attacks and cross-site scripting?

A. AWS WAF

B. AWS Shield Advanced

C. Amazon GuardDuty

D. Amazon Detective

Correct Answer: A

Community vote distribution

A (95%) 5%

  srikanth923 Highly Voted  4 months, 1 week ago

Selected Answer: A
A. AWS WAF: Provides built-in engines to protect web applications from common web exploits such as SQL injection and cross-site
scripting.

B. AWS Shield Advanced: Provides DDoS protection to applications that are running on AWS.

C. Amazon GuardDuty: Continuously monitors for malicious activity and unauthorized behavior in AWS accounts and workloads.

D. Amazon Detective: Helps to analyze, investigate, and identify the root cause of potential security issues or suspicious activities within
AWS resources.
upvoted 8 times

  ACLOUD_PRACTITIONER Highly Voted  8 months ago

Selected Answer: A
AWS WAF helps protect web applications from attacks by allowing you to configure rules that allow, block, or monitor (count) web
requests based on conditions that you define. These conditions include IP addresses, HTTP headers, HTTP body, URI strings, SQL injection
and cross-site scripting.
upvoted 5 times

  man5484 Most Recent  2 weeks ago

Selected Answer: A
AWS WAF is a web application firewall service that helps protect web applications from common web exploits, such as SQL injection and
cross-site scripting (XSS) attacks. It allows you to create rules to filter and monitor HTTP and HTTPS requests to your web applications. By
defining conditions and rules, AWS WAF can inspect and filter incoming requests based on various criteria, including SQL injection and XSS
patterns. It integrates with other AWS services, such as Amazon CloudFront and Application Load Balancer, to provide an additional layer
of security for web applications.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: A
https://aws.amazon.com/waf/faqs/#:~:text=AWS%20WAF%20helps%20protects%20your,that%20contain%20particular%20request%20hea
ders

AWS WAF helps protects your website from common attack techniques like SQL injection and Cross-Site Scripting (XSS). In addition, you
can create rules that can block or rate-limit traffic from specific user-agents, from specific IP addresses, or that contain particular request
headers.
upvoted 1 times

  Onyejicash 6 months ago

AWS WAF makes it easy to create rules that block common web exploits like SQL injection and cross site scripting.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  Aliciuzza 8 months ago

Selected Answer: A
Think A correct
"AWS WAF helps protects your website from common attack techniques like SQL injection and Cross-Site Scripting (XSS). In addition, you
can create rules that can block or rate-limit traffic from specific user-agents, from specific IP addresses, or that contain particular request
headers."
https://aws.amazon.com/it/waf/faqs/#:~:text=AWS%20WAF%20helps%20protects%20your,that%20contain%20particular%20request%20h
eaders.
upvoted 2 times
  vadiminski_a 9 months, 3 weeks ago
Selected Answer: A
https://docs.aws.amazon.com/de_de/AmazonCloudWatch/latest/monitoring/WhatIsCloudWatch.html
[...] " SQL-Injection oder Cross-Site-Scripting." [...]
upvoted 1 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: A
A is correct
upvoted 1 times

  radsreed 11 months ago

Answer is A. AWS WAF gives you control over how traffic reaches your applications by enabling you to create security rules that control bot
traffic and block common attack patterns, such as SQL injection or cross-site scripting.
upvoted 4 times

  Mikami88 11 months ago

The answer is correct as. It is A since a WAF protects against a variety of malicious activities including XSS and SQL injections.
upvoted 1 times

  fross 11 months ago

Selected Answer: B
Answer is B AWS Shield. It protects against DDoS attacks.
upvoted 1 times

  et_learner 4 months, 2 weeks ago

learn it buddy, https://aws.amazon.com/waf
upvoted 1 times

  adamwella 10 months, 2 weeks ago

incorrect.
upvoted 2 times
Question #217 Topic 1

A company owns per-core software licenses.

Which Amazon EC2 instance purchasing option must the company use for this license type?

A. Reserved Instances

B. Dedicated Hosts

C. Spot Instances

D. Dedicated Instances

Correct Answer: A

Community vote distribution

B (90%) 10%

  learner2023 Highly Voted  11 months ago

B. Dedicated Hosts.
Dedicated Hosts – Pay for a physical host that is fully dedicated to running your instances, and bring your existing per-socket, per-core, or
per-VM software licenses to reduce costs.
upvoted 24 times

  HW4301 Highly Voted  7 months, 1 week ago

B.
https://aws.amazon.com/blogs/mt/simplified-byol-experience-using-aws-license-manager/

Amazon EC2 Dedicated Hosts allow you to use your existing per-socket, per-core, or per-VM software licenses that are bound to VMs,
sockets, or physical cores, subject to your license terms.
upvoted 5 times

  man5484 Most Recent  2 weeks ago

Selected Answer: B
When a company owns per-core software licenses, the appropriate Amazon EC2 instance purchasing option is Dedicated Hosts. With
Dedicated Hosts, the company has the ability to launch instances on physical servers dedicated exclusively to their use. This provides
control and visibility over the underlying hardware and allows them to bring their own per-core software licenses.
upvoted 2 times

  Pranava_GCP 2 weeks, 5 days ago

B. Dedicated Hosts.

https://aws.amazon.com/ec2/dedicated-hosts/

Dedicated Hosts allow you to use your existing per-socket, per-core, or per-VM software licenses, including Windows Server, SQL Server,
SUSE Linux Enterprise Server, Red Hat Enterprise Linux, or other software licenses that are bound to VMs, sockets, or physical cores,
subject to your license terms.
upvoted 2 times

  Chetan27 1 month, 1 week ago

Selected Answer: B
B DEDICATED HOST
upvoted 2 times

  [Removed] 2 months, 3 weeks ago

Selected Answer: B
B. Dedicated Hosts
upvoted 2 times

  nixonlaw 3 months ago

Selected Answer: B
B, Dedicated Host not a instance.
REF. : https://aws.amazon.com/blogs/mt/simplified-byol-experience-using-aws-license-manager/
==>>Amazon EC2 Dedicated Hosts allow you to use your existing per-socket, per-core, or per-VM software licenses that are bound to VMs,
sockets, or physical cores, subject to your license terms.
upvoted 3 times

  akeQU 3 months, 1 week ago

what is right
upvoted 1 times
  Guru4Cloud 3 months, 3 weeks ago
Selected Answer: B
The Amazon EC2 instance purchasing option that the company must use for per-core software licenses is Dedicated Hosts (Option B).

Dedicated Hosts provide physical servers dedicated to a customer's use. This allows the customer to use their existing server-bound
software licenses without any additional licensing costs, as long as the licenses are compliant with the rules of the specific software
vendor.
upvoted 2 times

  kumaran1000001 4 months, 1 week ago

A - no. good for a long-term commitment

B - yes. exclusive control over your environment

C - no. good for workloads that are flexible in terms of timing and availability

D - no. not the same level of control as dedicated hosts

upvoted 2 times

  harisene 5 months ago

Selected Answer: B
Answer: B
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  jsmith111 7 months, 2 weeks ago

Selected Answer: B
Dedicated Hosts – Pay for a physical host that is fully dedicated to running your instances, and bring your existing per-socket, per-core, or
per-VM software licenses to reduce costs.
upvoted 3 times

  sanyoc 8 months ago

Selected Answer: B
voted b
upvoted 2 times

  N9 8 months ago
Selected Answer: B
keyword - percore
upvoted 2 times

  Eden 9 months ago

B dedicated host because of the word per-core
upvoted 4 times

  HarishRao 9 months, 1 week ago

Selected Answer: B
https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/dedicated-hosts-overview.html#dedicated-hosts-BYOL
upvoted 2 times
Question #218 Topic 1

A company needs to set up user authentication for a new application. Users must be able to sign in directly with a user name and password, or
through a third- party provider.
Which AWS service should the company use to meet these requirements?

A. AWS Single Sign-On

B. AWS Signer

C. Amazon Cognito

D. AWS Directory Service

Correct Answer: C

Community vote distribution

C (94%) 6%

  real111 Highly Voted  10 months, 2 weeks ago

Selected Answer: C
Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily. Amazon Cognito
scales to millions of users and supports sign-in with social identity providers, such as Apple, Facebook, Google, and Amazon, and
enterprise identity providers via SAML 2.0 and OpenID Connect.
upvoted 7 times

  man5484 Most Recent  2 weeks ago

Selected Answer: C
Amazon Cognito is the AWS service that is specifically designed for user authentication and authorization. It provides user management,
authentication, and federation capabilities, allowing users to sign in directly with a user name and password or through third-party
identity providers such as Facebook, Google, or Amazon. Amazon Cognito also supports features like user registration, email and SMS-
based verification, and multi-factor authentication.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: C
https://docs.aws.amazon.com/cognito/latest/developerguide/what-is-amazon-cognito.html

"Amazon Cognito is an identity platform for web and mobile apps. It’s a user directory, an authentication server, and an authorization
service for OAuth 2.0 access tokens and AWS credentials. With Amazon Cognito, you can authenticate and authorize users from the built-
in user directory, from your enterprise directory, and from consumer identity providers like Google and Facebook."
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: C
Amazon Cognito provides authentication, authorization, and user management for your web and mobile apps. Your users can sign in
directly with a user name and password, or through a third party such as Facebook, Amazon, Google or Apple.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: C
agreed, Amazon Cognito make more sense as it allows users to sign in directly with a user name and password, or through a third- party
provider.
upvoted 3 times

  anagy11 10 months, 2 weeks ago

Selected Answer: C
Answer is exactly C
upvoted 1 times

  cata2402 10 months, 3 weeks ago

C is the answer
https://aws.amazon.com/cognito/
Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily. Amazon Cognito
scales to millions of users and supports sign-in with social identity providers, such as Apple, Facebook, Google, and Amazon, and
enterprise identity providers via SAML 2.0 and OpenID Connect.
upvoted 2 times
  Arvina 10 months, 3 weeks ago
Selected Answer: D
I think the answer should be D
It enables you to join Amazon EC2 instances to your domain easily and supports many AWS and third-party applications and services
upvoted 1 times

  JA2018 9 months, 1 week ago

key phrase: Users must be able to sign in directly with a user name and password, or through a third- party provider.

this is why Amazon Cognito is more appropriate for this option.

upvoted 1 times
Question #219 Topic 1

A company's IT team is managing MySQL database server clusters. The IT team has to patch the database and take backup snapshots of the data
in the clusters.
The company wants to move this workload to AWS so that these tasks will be completed automatically.
What should the company do to meet these requirements?

A. Deploy MySQL database server clusters on Amazon EC2 instances.

B. Use Amazon RDS with a MySQL database.

C. Use an AWS CloudFormation template to deploy MySQL database servers on Amazon EC2 instances.

D. Migrate all the MySQL database data to Amazon S3.

Correct Answer: B

Community vote distribution

B (100%)

  man5484 2 weeks ago

Selected Answer: B
Amazon RDS (Relational Database Service) is a managed database service provided by AWS. It offers fully automated database
management tasks, including patching the database software and performing backups. By using Amazon RDS with a MySQL database, the
company can offload the responsibility of managing the underlying infrastructure, including the database server clusters, to AWS.

With Amazon RDS, AWS takes care of tasks such as database software patching, performing backups, and managing high availability and
automatic failover. The company can focus on using the database and its data without the need to worry about the operational aspects of
managing the underlying infrastructure.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: B
https://aws.amazon.com/rds/mysql/

"Amazon RDS for MySQL frees you up to focus on application development by managing time-consuming database administration tasks,
including backups, upgrades, software patching, performance improvements, monitoring, scaling, and replication."
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: B
no doubts
upvoted 1 times

  alexandercamachop 5 months, 1 week ago

Selected Answer: B
Secret here is the company wants to automate this repetitive tasks, AWS RDS is a relational database server that automatically updates the
SQL database so you just worry about the data. (Serverless)
upvoted 4 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 3 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed
upvoted 3 times
Question #220 Topic 1

What is the primary use case for Amazon GuardDuty?

A. Prevention of DDoS attacks

B. Protection against SQL injection attacks

C. Automatic monitoring for threats to AWS workloads

D. Automatic provisioning of AWS resources

Correct Answer: C

Community vote distribution

C (100%)

  Aliciuzza Highly Voted  8 months ago

Selected Answer: C
C
"Amazon GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and
delivers detailed security findings for visibility and remediation."
upvoted 7 times

  man5484 Most Recent  2 weeks ago

Selected Answer: C
Amazon GuardDuty is a threat detection service offered by AWS. It continuously monitors and analyzes various data sources, such as AWS
CloudTrail logs, VPC Flow Logs, and DNS logs, to detect potential security threats and malicious activities within your AWS environment.

GuardDuty uses machine learning algorithms and anomaly detection techniques to identify patterns and behaviors that indicate
unauthorized access attempts, compromised instances, data exfiltration, and other malicious activities. It provides detailed findings and
alerts to help you quickly respond to and mitigate security incidents.

By leveraging GuardDuty, customers can enhance the security of their AWS workloads by proactively identifying and addressing potential
security threats and vulnerabilities. It helps to improve the overall security posture of your AWS environment by automating the detection
and response to security events.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: C
https://aws.amazon.com/guardduty/

"Continuously monitor your AWS accounts, instances, serverless and container workloads, users, databases, and storage for potential
threats."
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: C
The primary use case for Amazon GuardDuty is C. Automatic monitoring for threats to AWS workloads.

Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior in AWS
accounts and workloads. It uses machine learning, anomaly detection, and integrated threat intelligence to identify potential security
threats, such as compromised instances, unauthorized access to AWS resources, and attempts to exploit known vulnerabilities. GuardDuty
alerts users to potential security findings and provides actionable insights to help remediate security issues in real-time.

Amazon GuardDuty is not designed for preventing DDoS attacks or protecting against SQL injection attacks, nor is it for automatic
provisioning of AWS resources.
upvoted 1 times

  iamlearning4ever 5 months, 2 weeks ago

A 'guard' is placed to 'monitor'.
upvoted 2 times

  poiuytrewq123456 4 months, 1 week ago

Thnx! Great way to remember it.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 2 times
  anksvast 6 months, 3 weeks ago
DDoS protection - Sheild, SQL injection protection - WAF
upvoted 3 times

  Nobody71 8 months, 3 weeks ago

Selected Answer: C
Amazon GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and
delivers detailed security findings for visibility and remediation.
upvoted 4 times

  Fenix_Inc 9 months ago

Selected Answer: C
https://aws.amazon.com/guardduty/
upvoted 2 times
Question #221 Topic 1

Which statements explain the business value of migration to the AWS Cloud? (Choose two.)

A. The migration of enterprise applications to the AWS Cloud makes these applications automatically available on mobile devices.

B. AWS availability and security provide the ability to improve service level agreements (SLAs) while reducing risk and unplanned downtime.

C. Companies that migrate to the AWS Cloud eliminate the need to plan for high availability and disaster recovery.

D. Companies that migrate to the AWS Cloud reduce IT costs related to infrastructure, freeing budget for reinvestment in other areas.

E. Applications are modernized because migration to the AWS Cloud requires companies to rearchitect and rewrite all enterprise applications.

Correct Answer: CD

Community vote distribution

BD (100%)

  Pratt24 Highly Voted  11 months ago

Selected Answer: BD
BD is correct
upvoted 11 times

  Craig92866 Highly Voted  8 months ago

Selected Answer: BD
Sometimes I think I have a better chance of getting the question right than the site.
upvoted 6 times

  man5484 Most Recent  2 weeks ago

Selected Answer: BD
B. AWS availability and security provide the ability to improve service level agreements (SLAs) while reducing risk and unplanned
downtime. With AWS, businesses can leverage highly available and resilient infrastructure, robust security measures, and comprehensive
backup and disaster recovery capabilities. This allows companies to enhance their SLAs, ensuring greater uptime and minimizing the risk
of costly downtime events.

D. Companies that migrate to the AWS Cloud reduce IT costs related to infrastructure, freeing budget for reinvestment in other areas.
AWS offers a pay-as-you-go pricing model, allowing businesses to scale resources up or down based on demand, and only pay for what
they use. This eliminates the need for upfront capital investments in hardware and reduces ongoing maintenance and operational costs.
The cost savings can be redirected to other strategic initiatives, such as innovation, product development, or expanding business
operations.
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: BD
BD is right
upvoted 1 times

  nixonlaw 3 months ago

Selected Answer: BD
Answer is B,D.
C is not a correct answer. You have to plan & configure for HA using ASG & DR using different technology.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

The business value of migration to the AWS Cloud is:
B. AWS availability and security provide the ability to improve service level agreements (SLAs) while reducing risk and unplanned
downtime.
D. Companies that migrate to the AWS Cloud reduce IT costs related to infrastructure, freeing budget for reinvestment in other areas.
Explanation:

B. Migrating to the AWS Cloud provides access to the AWS global infrastructure, which offers high availability and security to businesses.
AWS provides SLA's that guarantee service availability and reduce unplanned downtime. This enhances the customer experience and
reduces business risk.

D. Migrating to AWS provides businesses with an opportunity to reduce IT costs related to infrastructure. With AWS, there are no upfront
costs or long-term commitments, and businesses only pay for the resources they use. AWS provides an elastic infrastructure, which allows
businesses to scale up or down based on demand, which helps save costs.
upvoted 1 times

  kumaran1000001 4 months, 1 week ago

A - no. not automatic but an enabler

B - yes

C - no. there is no free lunch. you always need to plan

D - yes

E - no. there is an as-is provision

upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: BD
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BD
BD is the answer.
upvoted 1 times

  Redes 8 months, 1 week ago

Selected Answer: BD
B. AWS availability and security provide the ability to improve service level agreements (SLAs) while reducing risk and unplanned
downtime.
D. Companies that migrate to the AWS Cloud reduce IT costs related to infrastructure, freeing budget for reinvestment in other areas.
upvoted 1 times

  satishstechie 9 months, 1 week ago

Selected Answer: BD
C is not the answer. You have to plan & configure for HA using ASG & DR using different technology.
Answer - B & D. It helps to improve SLA & reduce risk and downtime. Better TCO.
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: BD
Option C should not be an option at all.
upvoted 3 times

  EazElr 9 months, 1 week ago

Selected Answer: BD
You may still need to handle Disaster Recovery scenarios. C isn't the correct answer.
B and D.
upvoted 3 times

  Istiaque 10 months ago

B and D
https://pages.awscloud.com/global-in-gc-500-business-value-of-migration-whitepaper-learn.html?trk=9b32e983-a2c8-4455-b3a1-
b385b54cba90&sc_channel=el
upvoted 4 times

  learner2023 11 months ago

Selected Answer: BD
BD is the right answer
upvoted 4 times

  fross 11 months ago

agreed
upvoted 3 times
Question #222 Topic 1

A company needs to identify personally identifiable information (PII), such as credit card numbers, from data that is stored in Amazon S3.
Which AWS service should the company use to meet this requirement?

A. Amazon Inspector

B. AWS Shield

C. Amazon GuardDuty

D. Amazon Macie

Correct Answer: D
Reference:
https://aws.amazon.com/macie/

Community vote distribution

D (100%)

  Emiley Highly Voted  9 months, 1 week ago

Selected Answer: D
Macie automatically detects a large and growing list of sensitive data types, including personally identifiable information (PII) such as
names, addresses, and credit card numbers. It also gives you constant visibility of the data security and data privacy of your data stored in
Amazon S3.
upvoted 9 times

  man5484 Most Recent  2 weeks ago

Selected Answer: D
Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching techniques to
automatically discover, classify, and protect sensitive data stored in AWS. It can help identify and classify PII, including credit card
numbers, in various formats and locations within your S3 buckets.

By using Amazon Macie, the company can gain visibility into their data, identify potential risks or compliance violations, and take
appropriate actions to protect sensitive information and maintain data privacy.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: D
https://aws.amazon.com/macie/

"Amazon Macie discovers sensitive data using machine learning and pattern matching, provides visibility into data security risks, and
enables automated protection against those risks."
upvoted 1 times

  kumaran1000001 4 months, 1 week ago

A - no. report about usage

B - no. ML service for forecasting time series type data

C - no. to estimate costs

D - yes
upvoted 1 times

  zdravko777 5 months, 3 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times
Question #223 Topic 1

Which AWS services or tools are designed to protect a workload from SQL injections, cross-site scripting, and DDoS attacks? (Choose two.)

A. VPC endpoint

B. Virtual private gateway

C. AWS Shield Standard

D. AWS Config

E. AWS WAF

Correct Answer: C
Reference:
https://aws.amazon.com/waf/
https://aws.amazon.com/shield/?whats-new-cards.sort-by=item.additionalFields.postDateTime&whats-new-cards.sort-order=desc

Community vote distribution

E (53%) C (47%)

  learner2023 Highly Voted  11 months ago

Selected Answer: E
Ans: CE
AWS shield standard prevents DDoS attacks
AWS WAF for SQL injection protection.

They asking for two option to select.

upvoted 17 times

  khanda Most Recent  2 weeks ago

Selected Answer: E
AWS shield standard does not protect against SQL injection but AWS WAF does.
upvoted 1 times

  man5484 2 weeks ago

Selected Answer: E
Ans :- C & E (not able to select C option)
C. AWS Shield Standard: AWS Shield Standard is a built-in DDoS (Distributed Denial of Service) protection service provided by AWS. It helps
protect applications against common and most frequently observed DDoS attacks.

E. AWS WAF (Web Application Firewall): AWS WAF is a web application firewall that helps protect web applications from common web
exploits, including SQL injections and cross-site scripting (XSS) attacks. It allows you to define customizable security rules to block or allow
traffic based on various conditions and patterns.
upvoted 1 times

  AbdulMalik_Y 2 months, 1 week ago

Selected Answer: C
it's CE,
Why it's not allowing 2 options
upvoted 1 times

  Justin_ts 2 months, 2 weeks ago

C AND E
upvoted 1 times

  labnay 2 months, 3 weeks ago

Choose C And E
upvoted 1 times

  labnay 2 months, 3 weeks ago

Choose two A and E
upvoted 1 times

  Madbo 3 months, 1 week ago

Answers are C and E.

AWS Shield Standard is a managed DDoS protection service that safeguards web applications running on AWS by automatically detecting
and mitigating DDoS attacks.
AWS WAF (Web Application Firewall) is a managed service that provides protection against common web exploits and attacks, such as SQL
injections and cross-site scripting, by allowing customers to create custom security rules.
upvoted 1 times
  Guru4Cloud 3 months, 3 weeks ago
Selected Answer: C
The AWS services or tools that are designed to protect a workload from SQL injections, cross-site scripting, and DDoS attacks are:

C. AWS Shield Standard

E. AWS WAF

Admins, Please make correction on this questions> Choose Two, Not One
upvoted 2 times

  studynoplay 3 months, 4 weeks ago

Selected Answer: C
C and E
upvoted 1 times

  akshay_8 4 months, 1 week ago

Option C,E
upvoted 1 times

  alameen_hameed 4 months, 1 week ago

Selected Answer: E
Option CE
upvoted 2 times

  et_learner 4 months, 2 weeks ago

Selected Answer: C
CE, no doubts
upvoted 1 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: C
The AWS services or tools that are designed to protect a workload from SQL injections, cross-site scripting, and DDoS attacks are AWS
Shield Standard (Option C) and AWS WAF (Option E).

AWS Shield Standard is a free service that provides always-on detection and automatic inline mitigation to minimize the effects of DDoS
attacks on AWS resources. It helps to protect against network and transport layer attacks such as SYN/UDP floods and reflection attacks.

AWS WAF (Web Application Firewall) is a web application firewall service that provides centralized control over the security of web
applications. It helps to protect web applications from common web exploits such as SQL injections and cross-site scripting attacks. AWS
WAF allows you to create custom rules to block, allow, or monitor web requests based on specific conditions.
upvoted 1 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: C
C & E is the answer
AWS WAF - protect a workload from SQL injections, cross-site scripting
AWS shield standard - DDoS attacks
upvoted 1 times

  tamefi5512 5 months ago

Selected Answer: C
C & E is the answer
AWS WAF - protect a workload from SQL injections, cross-site scripting
AWS shield standard - DDoS attacks
upvoted 1 times

  zdravko777 5 months, 3 weeks ago

Selected Answer: C
CE is the answer.
upvoted 2 times
Question #224 Topic 1

A company wants to forecast future costs and usage of AWS resources based on past consumption.
Which AWS service or tool will provide this forecast?

A. AWS Cost and Usage Report

B. Amazon Forecast

C. AWS Pricing Calculator

D. Cost Explorer

Correct Answer: D
Reference:
https://docs.aws.amazon.com/cost-management/latest/userguide/ce-forecast.html

Community vote distribution

D (95%) 3%

  Aliciuzza Highly Voted  8 months ago

Selected Answer: D
D " Cost Explorer"
Key word "based on past consumption"
upvoted 14 times

  Corridon Most Recent  1 week, 3 days ago

Selected Answer: D
AWS Pricing Calculator does not forecast based on past usage.

After you enable Cost Explorer, AWS prepares the data about your costs for the current month and the last 12 months, and then calculates
the forecast for the next 12 months.

https://aws.amazon.com/aws-cost-management/aws-cost-explorer/
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: D
AWS Pricing Calculator is used to estimate the costs of AWS services before actually deploying them. It is not designed for ongoing cost
and usage forecasting based on historical data like AWS Cost Explorer. So the answer is D.
upvoted 1 times

  man5484 2 weeks ago

Selected Answer: D
D. Cost Explorer: AWS Cost Explorer provides cost and usage reporting and analysis. It includes a forecasting feature that uses historical
data to project future costs and usage. This allows you to estimate and plan for future spending based on your past consumption
patterns.

By using Cost Explorer, you can gain insights into your AWS resource usage and costs, analyze trends, and make informed decisions about
optimizing your infrastructure and budge
upvoted 2 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: D
D " Cost Explorer"
https://docs.aws.amazon.com/cost-management/latest/userguide/ce-forecast.html

"A forecast is a prediction of how much you will use AWS services over the forecast time period that you selected. This forecast is based on
your past usage. You can use a forecast to estimate your AWS bill and set alarms and budgets for based on predictions. Because forecasts
are predictions, the forecasted billing amounts are estimated and might differ from your actual charges for each statement period."
upvoted 2 times

  Odba19c2021 1 month, 1 week ago

Selected Answer: A
AWS Cost and Usage Report is a more detailed version of Cost Explorer. Why would this be incorrect?
upvoted 1 times

  Zonci 2 months ago

Selected Answer: D
the correct option for forecasting future costs and usage based on past consumption is D. Cost Explorer.
upvoted 2 times
  srikanth923 4 months, 1 week ago
Selected Answer: D
while Amazon Forecast is designed to create forecasts based on historical data, it is not specifically designed to provide cost management
and optimization tools, including forecasting of future costs and usage of AWS resources based on past consumption. This is the primary
function of AWS Cost Explorer, which is specifically designed to help customers visualize, understand, and manage their AWS costs and
usage over time.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 4 times

  N9 8 months ago
Selected Answer: D
D is correct answer in 2022
upvoted 3 times

  N9 8 months ago
https://docs.aws.amazon.com/cost-management/latest/userguide/ce-forecast.html

A forecast is a prediction of how much you will use AWS services over the forecast time period that you selected. This forecast is based on
your past usage.
upvoted 2 times

  JDKJDKJDK 8 months, 3 weeks ago

Selected Answer: D
I think the given answer is correct, in the link it says
"A forecast is a prediction of how much you will use AWS services over the forecast time period that you selected. This forecast is based on
your past usage."
As we don't use past usage for pricing calculator

https://docs.aws.amazon.com/cost-management/latest/userguide/ce-forecast.html
upvoted 4 times

  folkmusic99 8 months, 3 weeks ago

AWS Forecast is for timeseries work. Not for budget planning.
upvoted 1 times

  michopth 8 months, 3 weeks ago

Selected Answer: C
So it is C in my opinion
upvoted 1 times

  Gulsah 1 week, 4 days ago

AWS Pricing Calculator is used to estimate the costs of AWS services before actually deploying them. It is not designed for ongoing cost
and usage forecasting based on historical data like AWS Cost Explorer. So the answer is D- Cost Explorer.
upvoted 1 times

  michopth 8 months, 3 weeks ago

Since it says forecast it is the AWS Pricing Calculator
upvoted 1 times

  MrSaint 8 months ago

not so fast my friend, it says forecast BUT, it also said "...based on past consumption.." you can use pricing calculator based of what
you going to use based on amount of resources you going to need, not based on your past consumption. Actually have past
consumption is a requirement to Cost Explorer be able to forecast.https://docs.aws.amazon.com/cost-
management/latest/userguide/ce-forecast.html
upvoted 3 times

  saiffaidi 5 months, 1 week ago

In my opinion forecast is always based on "PAST" statistics which means Pricing calculator makes more sense here
upvoted 1 times

  simonak 9 months ago

B is correct
upvoted 1 times

  Nguyen25183 8 months, 3 weeks ago

the hide solution tells D. So B or D is right bro?
upvoted 1 times
Question #225 Topic 1

Which AWS services use cloud-native storage that provides replication across multiple Availability Zones by default? (Choose two.)

A. Amazon ElastiCache

B. Amazon RDS for Oracle

C. Amazon Neptune

D. Amazon DocumentDB (with MongoDB compatibility)

E. Amazon Redshift

Correct Answer: CD
Reference:
https://docs.aws.amazon.com/documentdb/latest/developerguide/replication.html
https://docs.aws.amazon.com/neptune/latest/userguide/feature-overview-storage.html

Community vote distribution

CD (44%) CE (32%) 13% 8%

  Yasser001 Highly Voted  2 months, 3 weeks ago

Selected Answer: CE
The two AWS services that use cloud-native storage that provides replication across multiple Availability Zones by default are:

C. Amazon Neptune
E. Amazon Redshift

Amazon Neptune is a fully managed graph database service that provides high availability and durability through automatic replication of
data across multiple Availability Zones.

Amazon Redshift is a fully managed data warehouse service that uses cloud-native storage with automatic replication across multiple
Availability Zones.

Amazon ElastiCache, Amazon RDS for Oracle, and Amazon DocumentDB (with MongoDB compatibility) also provide replication across
multiple Availability Zones for high availability, but they do not use cloud-native storage that provides replication by default. Instead,
customers need to configure replication when setting up these services.
upvoted 9 times

  Phary Highly Voted  5 months, 2 weeks ago

I think the answer provided (CD) is correct.

RDS and Redshift support multi az - but not by default. You have to configure it if you want multiAZ.

https://aws.amazon.com/blogs/big-data/enable-multi-az-deployments-for-your-amazon-redshift-data-
warehouse/#:~:text=Amazon%20Redshift%20now%20supports%20Multi,operating%20in%20unforeseen%20failure%20scenarios.
upvoted 5 times

  Gulsah Most Recent  1 week, 4 days ago

Selected Answer: CD
Vote for CD. (original answer is correct)
https://aws.amazon.com/neptune/faqs/
https://aws.amazon.com/documentdb/faqs/
https://docs.aws.amazon.com/neptune/latest/userguide/feature-overview-storage.html
https://docs.aws.amazon.com/documentdb/latest/developerguide/replication.html
upvoted 1 times

  man5484 2 weeks ago

Selected Answer: CD
C. Amazon Neptune: Amazon Neptune is a fully managed graph database service that provides high durability and availability by
replicating data across multiple Availability Zones. It automatically handles the replication and failover of data to ensure data durability
and minimize downtime.

D. Amazon DocumentDB (with MongoDB compatibility): Amazon DocumentDB is a fully managed MongoDB-compatible document
database service. It uses cloud-native storage that replicates data across multiple Availability Zones by default. This ensures high
availability and durability of the data, with automatic failover in case of a failure.
upvoted 2 times

  BigDataBB 2 weeks, 2 days ago

Selected Answer: CD
On Neptune we all agree. The quistion is about "DocumentDB" and "Redshift", according to what is written in the documentation i vote
for "DocumentDB".

DocumentDB HA require 2 differents AZ

https://docs.aws.amazon.com/documentdb/latest/developerguide/replication.html

For Redshift this option is in preview

https://aws.amazon.com/blogs/big-data/enable-multi-az-deployments-for-your-amazon-redshift-data-warehouse/
Amazon Redshift now supports Multi-AZ deployments (Preview) for provisioned RA3 clusters. Multi-AZ deployments support running your
data warehouse in multiple Availability Zones simultaneously and can continue operating in unforeseen failure scenarios. A Multi-AZ
deployment is intended for customers with business-critical analytics applications that require the highest levels of availability and
resiliency.

So my choice is C,D
upvoted 2 times
  Zonci 1 month, 2 weeks ago
Selected Answer: CD
Amazon Redshift does not use cloud-native storage. Instead, it uses a columnar storage technology specifically designed for data
warehousing workloads. The data in Amazon Redshift is stored on local disks attached to the Redshift cluster nodes. Redshift
automatically manages the distribution and replication of data across multiple nodes for performance and fault tolerance. This
architecture allows for efficient query processing and high throughput for analytic workloads.
upvoted 3 times

  Zonci 1 month, 4 weeks ago

Selected Answer: CD
Amazon ElastiCache, Amazon RDS for Oracle, and Amazon Redshift, do not provide replication across multiple Availability Zones by
default. However, these services may offer high availability and durability through other mechanisms, such as using Multi-AZ deployments
or cluster replication.
upvoted 3 times

  maazamin 2 months, 1 week ago

Selected Answer: CE
The AWS services that use cloud-native storage with replication across multiple Availability Zones by default are:

C. Amazon Neptune: A fully managed graph database service.

E. Amazon Redshift: A fully managed data warehousing service.

These services automatically replicate data across multiple Availability Zones for high availability and durability.
upvoted 2 times

  sdas1 2 months, 1 week ago

CD
https://aws.amazon.com/documentdb/faqs/
Amazon DocumentDB automatically maintains six copies of your data across three Availability Zones (AZs) and will automatically attempt
to recover your instance in a healthy AZ with no data loss. In the unlikely event your data is unavailable within Amazon DocumentDB
storage, you can restore from a cluster snapshot or perform a point-in-time restore operation to a new cluster. Note that the latest
restorable time for a point-in-time restore operation can be up to five minutes in the past.
upvoted 2 times

  eyaakrimi 2 months, 3 weeks ago

Selected Answer: CE
clouf-native storage -> C,E
upvoted 1 times

  Nolos 2 months, 3 weeks ago

Selected Answer: CE
Cluster volume – Neptune data is stored in the cluster volume, which is designed for reliability and high availability. A cluster volume
consists of copies of the data across multiple Availability Zones in a single AWS Region. Because your data is automatically replicated
across Availability Zones, it is highly durable, and there is little possibility of data loss.
Source: https://docs.aws.amazon.com/neptune/latest/userguide/intro.html

https://aws.amazon.com/rds/features/multi-az/
upvoted 1 times

  ntlvld 2 months, 4 weeks ago

The two AWS services that use cloud-native storage that provides replication across multiple Availability Zones by default are:

C. Amazon Neptune
E. Amazon Redshift

Option A, Amazon ElastiCache, is a fully managed in-memory data store and cache service. While it can be configured to use replication for
high availability, it does not use cloud-native storage that provides replication across multiple Availability Zones by default.

Option B, Amazon RDS for Oracle, is a managed relational database service that provides replication for high availability. However, it does
not use cloud-native storage that provides replication across multiple Availability Zones by default.

Option D, Amazon DocumentDB (with MongoDB compatibility), is a fully managed document database service that is designed to be
compatible with the MongoDB API. While it provides replication for high availability, it does not use cloud-native storage that provides
replication across multiple Availability Zones by default.
upvoted 2 times
  Konop 3 months, 1 week ago
Selected Answer: CE
C&E

C. Amazon Neptune: Amazon Neptune is a fully-managed graph database service that is optimized for storing and querying highly
connected data. It automatically replicates data across multiple Availability Zones to provide high availability and data durability.

E. Amazon Redshift: Amazon Redshift is a fully-managed data warehousing service that makes it simple and cost-effective to analyze all
your data using standard SQL and existing Business Intelligence (BI) tools. It uses a highly available, distributed architecture that
automatically replicates data within and across multiple Availability Zones.
upvoted 2 times

  aws2380 3 months, 1 week ago

correct ans CE:
Amazon ElastiCache, Amazon RDS for Oracle, and Amazon DocumentDB (with MongoDB compatibility) do not use cloud-native storage
with multi-AZ replication by default. However, they provide options to enable multi-AZ deployment for higher availability and durability.
upvoted 1 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: CE
The AWS services that use cloud-native storage that provides replication across multiple Availability Zones by default are:

C. Amazon Neptune
E. Amazon Redshift

Amazon Neptune is a fast, reliable, and fully-managed graph database service that uses a highly available, durable, and fault-tolerant
storage layer that automatically replicates data across multiple Availability Zones.

Amazon Redshift is a fully-managed, petabyte-scale data warehouse service that uses a highly available, durable, and fault-tolerant
storage layer that automatically replicates data across multiple Availability Zones.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: CD
Explanation:
C. Amazon Neptune is a fast, reliable, fully managed graph database service that enables you to build and run applications that work with
highly connected datasets. Neptune uses a distributed, fault-tolerant architecture that is designed to provide high availability and
durability. Data is automatically replicated across multiple Availability Zones, which helps ensure that the database remains available even
in the event of a failure.

D. Amazon DocumentDB (with MongoDB compatibility) is a fully managed document database service that is designed to be compatible
with MongoDB workloads. DocumentDB uses a distributed, fault-tolerant architecture that is designed to provide high availability and
durability. Data is automatically replicated across multiple Availability Zones, which helps ensure that the database remains available even
in the event of a failure.
upvoted 2 times

  AWSOXY 3 months, 4 weeks ago

Selected Answer: CD
neptune and documentdb are correct
upvoted 2 times
Question #226 Topic 1

Which AWS services are serverless? (Choose two.)

A. AWS Fargate

B. Amazon Managed Streaming for Apache Kafka

C. Amazon EMR

D. Amazon S3

E. Amazon EC2

Correct Answer: AD
Reference:
https://aws.amazon.com/serverless/?nc2=h_ql_prod_serv_s

Community vote distribution

AD (90%) 10%

  learner2023 Highly Voted  11 months ago

AD are correct. AWS serverlers services are listed here. https://aws.amazon.com/serverless/
upvoted 18 times

  man5484 Most Recent  2 weeks ago

Selected Answer: AD
A. AWS Fargate: AWS Fargate is a serverless compute engine for containers. It allows you to run containers without managing the
underlying infrastructure. You only need to define your containerized application, specify resource requirements, and AWS Fargate takes
care of provisioning and managing the necessary compute resources.

D. Amazon S3: Amazon S3 (Simple Storage Service) is a highly scalable and durable object storage service. It is considered serverless
because you can simply store and retrieve objects without the need to provision or manage any servers. You pay for the storage and data
transfer you use, without worrying about server maintenance or scaling.
upvoted 2 times

  aws2380 3 months, 1 week ago

correct Ans : B, DAmazon Managed Streaming for Apache Kafka and Amazon S3 are serverless services that do not require the
provisioning and management of servers or infrastructure.

AWS Fargate, Amazon EMR, and Amazon EC2 are not serverless services as they require the provisioning and management of servers or
infrastructure. AWS Fargate abstracts the underlying infrastructure, but still requires the user to provision and manage the container
environment. Amazon EMR and Amazon EC2 are fully-managed services that provide the user with control over the underlying
infrastructure.
upvoted 1 times

  Krish_Kaustub 4 months, 2 weeks ago

Category Name of service
Compute ---AWS Lambda , AWS Fargate
Application Integration--- Amazon Event Bridge , AWS Step Functions , Amazon SQS, Amazon API Gateway, AWS AppSync
Storage ----Amazon S3, Amazon EFS, Amazon DynamoDB, Amazon RDS Proxy, Amazon Aurora Serverless , Amazon Redshift Serverless,
Amazon Neptune Serverless
upvoted 3 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: AD
A. AWS Fargate: AWS Fargate is a serverless compute engine for containers that allows customers to run Docker containers without
having to manage the underlying infrastructure. Fargate automatically scales the infrastructure based on the needs of the application.

D. Amazon S3: Amazon S3 (Simple Storage Service) is a serverless object storage service that allows customers to store and retrieve any
amount of data from anywhere on the web. S3 automatically scales to accommodate growing amounts of data, and customers are only
charged for the storage they use.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 3 times

  Redes 8 months, 1 week ago

Selected Answer: AD
A. AWS Fargate
D. Amazon S3
upvoted 3 times
  JDKJDKJDK 8 months, 3 weeks ago
Selected Answer: AD
C is incorrect because it says that Amazon EMR and Amazon EMR Serverless are two different things. "Amazon EMR Serverless is a new
option in Amazon EMR that makes it easy and cost-effective for data engineers and analysts"

https://aws.amazon.com/emr/
upvoted 2 times

  Fenix_Inc 9 months ago

Selected Answer: AD
AD correct
upvoted 2 times

  Asad_Elahi 9 months ago

Selected Answer: AD
AD are correct. AWS serverlers services are listed here. https://aws.amazon.com/serverless/
upvoted 3 times

  hakaakk 10 months, 1 week ago

Selected Answer: AD
A,D is correct answer
upvoted 2 times

  Sib777 11 months ago

Selected Answer: AC
Amazon EMR Serverless is a serverless option in Amazon EMR that makes it easy for data analysts and engineers to run open-source big
data analytics frameworks without configuring, managing, and scaling clusters or servers.
upvoted 2 times

  learner2023 11 months ago

Amazon EMR and Amazon EMR Serverless are different . Amazon EMR Serverless is a new option in Amazon EMR
upvoted 1 times
Question #227 Topic 1

Which task is the responsibility of AWS, according to the AWS shared responsibility model?

A. Apply guest operating system patches to Amazon EC2 instances.

B. Provide monitoring of human resources information management (HRIM) systems.

C. Perform automated backups of Amazon RDS instances.

D. Optimize the costs of running AWS services.

Correct Answer: C
Reference:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.html

Community vote distribution

C (100%)

  man5484 2 weeks ago

Selected Answer: C
AWS is responsible for managing and maintaining the underlying infrastructure and services provided by AWS, including automated
backups of managed services like Amazon RDS (Relational Database Service). AWS takes care of the operational aspects of backing up the
data stored in RDS instances, ensuring data durability and availability.
upvoted 1 times

  San_0268 3 months ago

Selected Answer: C
C is the most appropriate ans
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: C
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: C
agreed s RDS is a AWS managed service
upvoted 2 times
Question #228 Topic 1

A company needs to deploy a PostgreSQL database into Amazon RDS. The database must be highly available and fault tolerant.
Which AWS solution should the company use to meet these requirements?

A. Amazon RDS with a single Availability Zone

B. Amazon RDS snapshots

C. Amazon RDS with multiple Availability Zones

D. AWS Database Migration Service (AWS DMS)

Correct Answer: C
Reference:
https://aws.amazon.com/rds/features/multi-az/

Community vote distribution

C (100%)

  man5484 2 weeks ago

Selected Answer: C
By choosing Amazon RDS with multiple Availability Zones, the company can benefit from the automatic synchronous replication of the
database across multiple data centers in different Availability Zones. This setup provides redundancy and ensures that the database
remains accessible even if an entire Availability Zone becomes unavailable due to a failure or outage. In such cases, Amazon RDS
automatically fails over to the standby replica in another Availability Zone, minimizing downtime and ensuring high availability of the
database.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: C
https://aws.amazon.com/rds/features/multi-az/
"Highly available, durable relational databases deployed across up to three Availability Zones (AZs)"
"In an Amazon RDS Multi-AZ deployment, Amazon RDS automatically creates a primary database (DB) instance and synchronously
replicates the data to an instance in a different AZ. When it detects a failure, Amazon RDS automatically fails over to a standby instance
without manual intervention."
upvoted 1 times

  RS16 3 months, 2 weeks ago

C is correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: C
agreed
upvoted 2 times
Question #229 Topic 1

A company wants to add facial identification to its user verification process on an application.
Which AWS service should the company use to meet this requirement?

A. Amazon Polly

B. Amazon Transcribe

C. Amazon Lex

D. Amazon Rekognition

Correct Answer: D

Community vote distribution

D (100%)

  EazElr Highly Voted  9 months, 1 week ago

Selected Answer: D
Polly and Transcribe related to speech only.
Rekognition for imaging.
C not relevant at all.
upvoted 6 times

  man5484 Most Recent  2 weeks ago

Selected Answer: D
Amazon Rekognition is a powerful deep learning-based service provided by AWS that enables companies to analyze and recognize faces in
images and videos. It can be used to detect, verify, and identify faces, as well as perform various facial analysis tasks such as emotion
detection, age estimation, and gender recognition.

By integrating Amazon Rekognition into the application, the company can leverage its advanced capabilities to perform facial
identification and verification. This can enhance the security and user experience of the application by allowing users to verify their
identity through facial recognition.
upvoted 1 times

  Pranava_GCP 2 weeks, 5 days ago

Selected Answer: D
https://docs.aws.amazon.com/rekognition/latest/dg/faces.html

"When you provide an image that contains a face, Amazon Rekognition detects the face in the image, analyzes the facial attributes of the
face, and then returns a percent confidence score for the face and the facial attributes that are detected in the image."
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  lmbalati 10 months, 2 weeks ago

What is the answer??
upvoted 1 times

  Istiaque 10 months ago

answer is D
Amazon Rekognition enables your applications to confirm user identities by comparing their live image with a reference image.
Amazon Rekognition detects Personal Protective Equipment (PPE) such as face covers, head covers, and hand covers on persons in
images.
upvoted 3 times
Question #230 Topic 1

A company wants the ability to quickly upload its applications to the AWS Cloud without needing to provision underlying resources.
Which AWS service will meet these requirements?

A. AWS CloudFormation

B. AWS Elastic Beanstalk

C. AWS CodeDeploy

D. AWS CodeCommit

Correct Answer: B
Reference:
https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/Welcome.html

Community vote distribution

B (100%)

  man5484 2 weeks ago

Selected Answer: B
AWS Elastic Beanstalk is a fully managed service that makes it easy to deploy, run, and scale applications in multiple languages such as
Java, .NET, PHP, Node.js, Python, Ruby, and Go. With Elastic Beanstalk, you can simply upload your application code, and the service will
automatically handle the deployment, capacity provisioning, load balancing, and scaling of the underlying infrastructure required to run
your application.

This allows you to focus on developing your application and not worry about the underlying infrastructure setup and management. Elastic
Beanstalk provides an easy and quick way to deploy applications without needing to provision or manage the underlying resources
manually.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: B
B. AWS Elastic Beanstalk

Explanation:

AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP,
Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS. With Elastic Beanstalk, you can
simply upload your code and Elastic Beanstalk will automatically handle the deployment details of capacity provisioning, load balancing,
and automatic scaling of your application. You can easily monitor the performance of your application and access your application logs in
the Elastic Beanstalk console, or integrate Elastic Beanstalk with other AWS services to add features such as messaging and data storage.
upvoted 2 times

  danielolasupo02 5 months ago

What's the difference between CloudFormation and Elastic Beanstalk based on their applications?
upvoted 1 times

  Codikas 1 month, 1 week ago

CloudFormation and Elastic Beanstalk are two cloud services from Amazon Web Services (AWS) for automating the deployment of
applications. CloudFormation provides a way to write the complete infrastructure for an application in a text file, called a template. This
describes the resources that need to be created and their configuration. CloudFormation then automates the process of creating,
configuring, and managing the resources. Elastic Beanstalk, on the other hand, is an application deployment service and provides an all
in one solution for deploying and managing applications. Rather than providing users with control as to how their application will be
deployed, Elastic Beanstalk offers a simple solution that requires minimal user input or interference. In short, CloudFormation offers
more control and flexibility than Elastic Beanstalk, while providing less simplicity.
upvoted 5 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed
upvoted 2 times

  lokeshb 9 months ago

B is correct - With Elastic Beanstalk, you can *quickly* deploy and manage applications in the AWS Cloud without having to learn about
the infrastructure that runs those applications
upvoted 3 times

  danielolasupo02 5 months ago

I get confused when I see this definition cos it sounds similar to CloudFormation's definitin...so what's their difference?
upvoted 1 times

  kimmy12 9 months, 1 week ago

How about A - CloudFormation?
upvoted 1 times

  lvyyl 8 months, 3 weeks ago

CloudFormation is all about services as a code, you need to learn how to write it before hand
upvoted 3 times
Question #231 Topic 1

Which AWS service monitors CPU utilization on Amazon EC2 instances?

A. AWS CloudTrail

B. Amazon Inspector

C. AWS Config

D. Amazon CloudWatch

Correct Answer: D
Reference:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-cloudwatch.html

Community vote distribution

D (100%)

  acnaz Highly Voted  6 months ago

Selected Answer: D
AWS CloudTrail-monitors and records account activity
Amazon Inspector-vulnerability management
AWS Config-assess, audit, and evaluate the configurations and relationships of your resources.
Amazon CloudWatch-CPU
upvoted 5 times

  man5484 Most Recent  1 week, 6 days ago

Selected Answer: D
Amazon CloudWatch is a monitoring and observability service provided by AWS. It collects and tracks metrics, collects log files, and sets
alarms. With Amazon CloudWatch, you can monitor various performance metrics of your EC2 instances, such as CPU utilization, memory
usage, network traffic, and disk I/O. This helps you to understand the performance and health of your EC2 instances and enables you to
take actions based on the collected data.
upvoted 1 times

  Nolos 2 months, 3 weeks ago

Looks like none are needed.
https://repost.aws/knowledge-center/ec2-cpu-utilization-check-throttling
upvoted 1 times

  San_0268 3 months ago

Selected Answer: D
correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  DST_Justin 6 months, 2 weeks ago

Selected Answer: D
agreed
upvoted 2 times

  JA2018 8 months, 2 weeks ago

Selected Answer: D
agreed
upvoted 1 times
Question #232 Topic 1

A company needs to label its AWS resources so that the company can categorize and track costs.
What should the company do to meet this requirement?

A. Use cost allocation tags.

B. Use AWS Identity and Access Management (IAM).

C. Use AWS Organizations.

D. Use the AWS Cost Management coverage report.

Correct Answer: A
Reference:
https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html

Community vote distribution

A (100%)

  man5484 1 week, 6 days ago

Selected Answer: A
To meet the requirement of labeling AWS resources for categorizing and tracking costs, the company should use cost allocation tags. Cost
allocation tags are key-value pairs that can be applied to AWS resources to categorize and organize them. These tags are used to track
and allocate costs across different categories or business units within the organization.

By assigning cost allocation tags to AWS resources, the company can gain better insights into its AWS spending and allocate costs based
on specific tags. This allows for more accurate cost reporting and analysis, enabling better cost management and optimization.
upvoted 1 times

  Pranava_GCP 2 weeks, 4 days ago

Selected Answer: A
A is the correct answer
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/cost-alloc-tags.html

"You can use tags to organize your resources, and cost allocation tags to track your AWS costs on a detailed level. After you activate cost
allocation tags, AWS uses the cost allocation tags to organize your resource costs on your cost allocation report, to make it easier for you
to categorize and track your AWS costs."
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: A
You can use tags to organize your resources, and cost allocation tags to track your AWS costs on a detailed level.
AWS uses the cost allocation tags to organize your resource costs on your cost allocation report, to make it easier for you to categorize
and track your AWS costs. AWS provides two types of cost allocation tags.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: A
agreed
upvoted 3 times
Question #233 Topic 1

A company wants its employees to have access to virtual desktop infrastructure to securely access company-provided desktops through the
employees' personal devices.
Which AWS service should the company use to meet these requirements?

A. Amazon AppStream 2.0

B. AWS AppSync

C. Amazon FSx for Windows File Server

D. Amazon WorkSpaces

Correct Answer: D
Reference:
https://aws.amazon.com/workspaces/

Community vote distribution

D (91%) 9%

  victorwtchan Highly Voted  8 months, 2 weeks ago

Selected Answer: D
"While the two AWS services are somewhat similar, it’s important to remember that Amazon AppStream 2.0 is focused on hosting
individual applications on AWS, while Amazon WorkSpaces creates virtual desktops that can be used to create entire working
environments for you and your team."
https://www.cloudhesive.com/blog-posts/appstream-2-0-vs-workspaces-basics/
upvoted 12 times

  zoeyaj Highly Voted  10 months ago

Selected Answer: D
Amazon AppStream 2.0 is focused on hosting individual applications on AWS, while Amazon WorkSpaces creates virtual desktops that can
be used to create entire working environments for you and your team.

The bottom line is that if you’re looking to move your existing legacy applications to AWS, you’ll want to look at Amazon AppStream 2.0 in
more detail, and if you’re just looking for a quick and easy way to deploy Windows virtual desktops for your users, Amazon WorkSpaces is
most likely an ideal solution
upvoted 6 times

  man5484 Most Recent  1 week, 6 days ago

Selected Answer: D
To meet the requirement of providing employees with access to virtual desktop infrastructure securely, the company should use Amazon
WorkSpaces. Amazon WorkSpaces is a fully managed desktop-as-a-service (DaaS) solution that allows users to access their desktops and
applications securely from any supported device, including personal devices, such as laptops, tablets, or smartphones.

Amazon WorkSpaces provides a persistent, cloud-based desktop experience for end users, and it allows administrators to manage users,
applications, and policies centrally. It offers the flexibility to scale up or down the number of desktops as needed, making it a suitable
solution for remote workforces or companies looking for a cost-effective, secure, and scalable virtual desktop infrastructure.
upvoted 2 times

  Pranava_GCP 2 weeks, 4 days ago

Selected Answer: D
D is the correct answer
https://docs.aws.amazon.com/workspaces/latest/adminguide/amazon-workspaces.html

"Amazon WorkSpaces enables you to provision virtual, cloud-based Microsoft Windows, Amazon Linux, or Ubuntu Linux desktops for your
users, known as WorkSpaces. WorkSpaces eliminates the need to procure and deploy hardware or install complex software. You can
quickly add or remove users as your needs change. Users can access their virtual desktops from multiple devices or web browsers."
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 3 times

  DST_Justin 6 months, 2 weeks ago

Selected Answer: D
Voted for D
upvoted 2 times
  N9 8 months ago
Selected Answer: D
D is anwser
https://www.cloudhesive.com/blog-posts/appstream-2-0-vs-workspaces-basics/
upvoted 4 times

  lokeshb 9 months ago

Vote for A - AppStream 2.0 is a fully managed application streaming service that provides users instant access to their desktop
applications from anywhere
upvoted 1 times

  Gulsah 1 week, 4 days ago

Amazon AppStream 2.0 allows you to stream desktop applications from the cloud to any device, but it is more focused on application
streaming rather than full virtual desktops. So the correct answer is C. Amazon WorkSpaces.
upvoted 1 times

  PoloQaz 10 months, 2 weeks ago

Amazon WorkSpaces - Secure, reliable, and scalable access to persistent desktops from any location.
Amazon AppStream 2.0 - Secure, reliable, and scalable access to applications and non-persistent desktops from any location.
I go with: D
upvoted 2 times

  coolcool_ll 10 months, 3 weeks ago

Selected Answer: A
I vote for A. This is the link: https://aws.amazon.com/appstream2/
upvoted 2 times

  30Miles 11 months ago

Selected Answer: A
A is similar with woekSpaces right?
upvoted 1 times
Question #234 Topic 1

Which task can a company complete by using AWS Organizations?

A. Track application deployment statuses globally.

B. Remove unused and underutilized AWS resources across all accounts.

C. Activate DDoS protection across all accounts.

D. Share pre-purchased Amazon EC2 resources across accounts.

Correct Answer: D
Reference:
https://aws.amazon.com/organizations/
https://docs.aws.amazon.com/ram/latest/userguide/shareable.html

Community vote distribution

D (78%) B (22%)

  N9 Highly Voted  8 months ago

Selected Answer: D
https://docs.aws.amazon.com/ram/latest/userguide/getting-started-sharing.html#getting-started-sharing-orgs
upvoted 5 times

  carlos0808 Highly Voted  10 months, 1 week ago

Selected Answer: D
"In AWS Control Tower, Organizations helps centrally manage billing; control access, compliance, and security; and share resources across
your member AWS accounts."
upvoted 5 times

  Gulsah Most Recent  1 week, 4 days ago

Selected Answer: D
https://docs.aws.amazon.com/ram/latest/userguide/shareable.html
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: D
AWS Organizations is a service that allows an organization to centrally manage and govern multiple AWS accounts. It simplifies the
process of creating and managing AWS accounts within an organization. One of the features of AWS Organizations is the ability to set up a
consolidated billing family, where one AWS account (the payer account) is responsible for paying the charges of all the other member
accounts in the organization.

With AWS Organizations, you can set up a payment method in the payer account, and all the linked member accounts' charges will be
consolidated into a single bill. This enables the sharing of benefits, such as pre-purchased Reserved Instances and Savings Plans, across
all accounts in the organization. This is beneficial for cost optimization and resource management, as the payer account can optimize and
purchase reserved capacity that is automatically shared with all linked accounts.
upvoted 2 times

  Pranava_GCP 2 weeks, 4 days ago

Selected Answer: D
https://docs.aws.amazon.com/ram/latest/userguide/shareable.html

You can share Amazon EC2 resources by using AWS RAM.

upvoted 2 times

  et_learner 4 months, 2 weeks ago

Selected Answer: D
do not consider removal function in AWS Organization.
upvoted 3 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: B
B. Remove unused and underutilized AWS resources across all accounts: AWS Organizations is a management service that enables
companies to consolidate multiple AWS accounts into an organization that can be centrally managed. It allows companies to manage
policies and control access to resources across multiple accounts in a more efficient way. One of the key benefits of AWS Organizations is
the ability to use it for cost optimization by removing unused and underutilized resources across all accounts.
upvoted 3 times
  et_learner 4 months, 2 weeks ago
please ask ChatGPT again, only D is correct this time
upvoted 4 times

  Rammstein 1 month, 2 weeks ago

Correct, I'm using chatgpt Plus and sometimes it goes wrong, you need to make sure of its replies.
upvoted 1 times

  Momo2023 4 months, 4 weeks ago

D. Share pre-purchased Amazon EC2 resources across accounts.
upvoted 2 times

  noahsark 5 months ago

Selected Answer: D
Share pre-purchased Amazon EC2 resources across accounts.
https://docs.aws.amazon.com/ram/latest/userguide/getting-started-sharing.html
upvoted 3 times

  Ribeiro19 5 months ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  chris0975 8 months ago

Selected Answer: D
sharing > removing
upvoted 3 times

  Josh11211 8 months, 1 week ago

How is B better than D?
upvoted 2 times

  N9 8 months ago
https://docs.aws.amazon.com/ram/latest/userguide/getting-started-sharing.html#getting-started-sharing-orgs
upvoted 2 times

  Zonci 8 months, 1 week ago

Selected Answer: B
it should be B
upvoted 1 times

  michopth 8 months, 3 weeks ago

Selected Answer: B
B is the correct
upvoted 1 times

  lokeshb 9 months ago

Answer is B
upvoted 2 times

  Emiley 9 months, 1 week ago

Selected Answer: B
I would say B
upvoted 1 times
Question #235 Topic 1

A user has been granted permission to change their own IAM user password.
Which AWS services can the user use to change the password? (Choose two.)

A. AWS Command Line Interface (AWS CLI)

B. AWS Key Management Service (AWS KMS)

C. AWS Management Console

D. AWS Resource Access Manager (AWS RAM)

E. AWS Secrets Manager

Correct Answer: AC
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_passwords_user-change-own.html

Community vote distribution

AC (100%)

  man5484 1 week, 5 days ago

Selected Answer: AC
When a user has been granted permission to change their own IAM user password, they can do so through the AWS Management
Console or by using the AWS Command Line Interface (AWS CLI).
upvoted 1 times

  Zonci 1 month, 4 weeks ago

Selected Answer: AC
A. AWS Command Line Interface (AWS CLI): The AWS CLI provides command-line access to various AWS services, including IAM. The user
can use the AWS CLI to change their IAM user password by running the appropriate command.

C. AWS Management Console: The AWS Management Console is a web-based interface that allows users to interact with and manage their
AWS resources. The user can navigate to the IAM service in the AWS Management Console and change their own IAM user password
through the user interface.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AC
AC is the answer.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: AC
agreed, as shown in the URL shared
upvoted 3 times
Question #236 Topic 1

A company needs to run an application on Amazon EC2 instances. The instances cannot be interrupted at any time. The company needs an
instance purchasing option that requires no long-term commitment or upfront payment.
Which instance purchasing option will meet these requirements MOST cost-effectively?

A. On-Demand Instances

B. Spot Instances

C. Dedicated Hosts

D. Reserved Instances

Correct Answer: A
Reference:
https://aws.amazon.com/ec2/pricing/

Community vote distribution

A (88%) 13%

  man5484 1 week, 5 days ago

Selected Answer: A
On-Demand Instances allow you to pay for compute capacity on an hourly or per-second basis with no upfront commitment or long-term
contract. You can launch instances whenever you need them and stop or terminate them when they are no longer required. There is no
long-term commitment, and you only pay for the hours or seconds that the instances are running.
upvoted 2 times

  Pranava_GCP 2 weeks, 4 days ago

Selected Answer: A
A: On-demand instances
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-on-demand-instances.html

"We recommend that you use On-Demand Instances for applications with short-term, irregular workloads that cannot be interrupted."
upvoted 2 times

  awsrudra 2 months ago

Why is it A
upvoted 1 times

  Gulsah 1 week, 4 days ago

On-Demand Instances: On-Demand instances allow you to pay for compute capacity by the hour or second with no long-term
commitment or upfront payment. You can run instances whenever you need them and stop them when you're done, with no
interruption. This flexibility makes them suitable for applications that cannot tolerate any interruptions.
upvoted 1 times

  et_learner 4 months, 2 weeks ago

Selected Answer: A
key word: cannot be interrupted (not B), no long-term commitment(not D) or upfront payment(not C)
upvoted 3 times

  Abhisek1999 4 months, 3 weeks ago

C is correct
upvoted 1 times

  zdravko777 5 months, 3 weeks ago

Selected Answer: A
A is the answer
upvoted 2 times

  Onyejicash 6 months ago

Selected Answer: A
AWS recommends using On-Demand Instances for applications with short-term, irregular workloads that cannot be interrupted. They are
also suitable for use during testing and development of applications on EC2.
upvoted 3 times

  Tony_27 6 months, 1 week ago

Selected Answer: A
A is the correct answer
upvoted 2 times
  Saif93 6 months, 2 weeks ago
Selected Answer: A
A is the answer.
upvoted 2 times

  Biotech 6 months, 2 weeks ago

Selected Answer: A
On-demand instances are a purchasing option for Amazon EC2 instances that allows users to pay for the instances they use on an hourly
basis, with no long-term commitment or upfront payment required. On-demand instances are a cost-effective option because they are
well-suited for workloads that are unpredictable or that do not require a long-term commitment, and they give you the flexibility to
increase or decrease your usage as needed.
upvoted 3 times

  N9 7 months, 4 weeks ago

Selected Answer: A
no upfront and no long term so A is answer
upvoted 3 times

  sanyoc 8 months ago

Selected Answer: D
reserved also can be no up-front payment
upvoted 2 times

  zailsingh 6 months, 1 week ago

But reserved have commitment's involved and the question says no commitments
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: A
1. Cannot be interrupted.
2. No commitment/ upfront payment
upvoted 2 times

  EazElr 9 months, 1 week ago

Selected Answer: A
on-demand has no interruption and no upfront payment
upvoted 2 times

  ShoobyDooby 10 months, 1 week ago

Selected Answer: D
why not D? reserved instances are cheaper than on demand
upvoted 2 times

  EazElr 9 months, 1 week ago

RI can be purchased for 1 year or 3 years. This is long-term solution.
upvoted 3 times

  MANNAN9358 9 months, 3 weeks ago

The company needs an instance purchasing option that requires no long-term commitment or upfront payment. that's means no
reserved instance
upvoted 1 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: A
A is correct.
About Spot Instances
Spot Instance interruption – Amazon EC2 terminates, stops, or hibernates your Spot Instance when Amazon EC2 needs the capacity back.
Amazon EC2 provides a Spot Instance interruption notice, which gives the instance a two-minute warning before it is interrupted.
upvoted 2 times

  lenog 10 months, 2 weeks ago

MOST cost-effectively, should be "b"
upvoted 1 times

  anagy11 10 months, 2 weeks ago

Not correct - "The instances cannot be interrupted at any time."
upvoted 2 times
Question #237 Topic 1

A company uses Amazon EC2 instances to run its web application. The company uses On-Demand Instances and Spot Instances. The company
needs to visualize its monthly spending on both types of instances.
Which AWS service or feature will meet this requirement?

A. AWS Cost Explorer

B. AWS Budgets

C. Amazon CloudWatch

D. AWS Cost Categories

Correct Answer: A
Reference:
https://aws.amazon.com/aws-cost-management/aws-cost-explorer/

Community vote distribution

A (100%)

  man5484 1 week, 5 days ago

Selected Answer: A
AWS Cost Explorer is a tool that provides visualizations and insights into your AWS usage and costs. It allows you to view your spending
patterns over time, analyze costs, and identify cost-saving opportunities. With AWS Cost Explorer, you can easily see how much you are
spending on On-Demand Instances and Spot Instances, among other AWS resources.
upvoted 1 times

  Pranava_GCP 2 weeks, 4 days ago

Selected Answer: A
https://aws.amazon.com/aws-cost-management/aws-cost-explorer/

"AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time."
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: A
COST EXPLORA PREDICTS COST
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: A
agreed
upvoted 2 times
Question #238 Topic 1

Which task can a user complete by using AWS Identity and Access Management (IAM)?

A. Validate JSON syntax from an application configuration file.

B. Analyze logs from an Amazon API Gateway call.

C. Filter traffic to or from an Amazon EC2 instance.

D. Grant permissions to applications that run on Amazon EC2 instances.

Correct Answer: D
Reference:
https://aws.amazon.com/iam/#:~:text=With%20AWS%20Identity%20and%20Access,to%20refine%20permissions%20across%20AWS

Community vote distribution

D (100%)

  man5484 1 week, 5 days ago

Selected Answer: D
AWS Identity and Access Management (IAM) is used to manage access to AWS services and resources securely. With IAM, you can create
and manage AWS users and groups, and define the permissions (policies) that grant access to specific AWS resources and actions. By
assigning appropriate IAM permissions to users and groups, you can control what actions they can perform on Amazon EC2 instances and
other AWS resources.
upvoted 1 times

  tester0071 1 month, 3 weeks ago

This question is worded wrong which makes it more vague. IAM gives permission to EC2 to use/access different AWS services ( IAM
doesn't go inside the EC2 instance and interfere with internal system because its "customer" responsibility)
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: D
The task that a user can complete by using AWS Identity and Access Management (IAM) is:

D. Grant permissions to applications that run on Amazon EC2 instances.

Explanation:

AWS Identity and Access Management (IAM) is a web service that enables Amazon Web Services (AWS) customers to manage access to
AWS services and resources securely. IAM enables you to create and manage AWS users and groups, and to grant permissions to access
AWS resources. With IAM, you can control who can access your AWS resources, and what actions they can perform on those resources.
IAM also enables you to set up access policies that grant permissions to AWS resources based on attributes such as user name, group
membership, or tags. By using IAM, you can grant permissions to applications that run on Amazon EC2 instances, and control which AWS
resources those applications can access.
upvoted 2 times

  Genius072398 6 months ago

Grant permissions to applications that run on Amazon EC2 instances.
You don't grant permissions to applications. You grant permissions to users to use a certain application. So how is D correct?
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: D
With AWS Identity and Access Management (IAM), you can specify who or what can access services and resources in AWS, centrally
manage fine-grained permissions, and analyse access to refine permissions across AWS.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  wooyourdaddy 7 months, 3 weeks ago

Selected Answer: D
Granular permissions:

You can grant different permissions to different people for different resources. For example, you might allow some users complete access
to Amazon Elastic Compute Cloud (Amazon EC2), Amazon Simple Storage Service (Amazon S3), Amazon DynamoDB, Amazon Redshift, and
other AWS services. For other users, you can allow read-only access to just some S3 buckets, or permission to administer just some EC2
instances, or to access your billing information but nothing else.

https://docs.aws.amazon.com/IAM/latest/UserGuide/introduction.html
upvoted 2 times
Question #239 Topic 1

A company needs to generate reports for business intelligence and operational analytics on petabytes of semistructured and structured data.
These reports are produced from standard SQL queries on data that is in an Amazon S3 data lake.
Which AWS service provides the ability to analyze this data?

A. Amazon RDS

B. Amazon Neptune

C. Amazon DynamoDB

D. Amazon Redshift

Correct Answer: D
Reference:
https://aws.amazon.com/data-warehouse/

Community vote distribution

D (100%)

  zoeyaj Highly Voted  10 months ago

Selected Answer: D
semi-structure > Redshift
upvoted 7 times

  Kanyeeeah 10 months ago

"Petabytes" scale of data > Redshift
upvoted 3 times

  man5484 Most Recent  1 week, 5 days ago

Selected Answer: D
Amazon Redshift is a fully-managed data warehousing service that allows you to run complex queries on large datasets. It is optimized for
online analytic processing (OLAP) workloads and is well-suited for business intelligence and operational analytics use cases. Amazon
Redshift can directly query data stored in Amazon S3, making it an excellent choice for analyzing large amounts of data in a data lake.
upvoted 1 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: D
The AWS service that provides the ability to analyze data stored in an Amazon S3 data lake using standard SQL queries is Amazon Redshift.
Amazon Redshift is a fast, scalable, and fully managed data warehouse service that makes it simple and cost-effective to analyze all your
data using SQL and your existing business intelligence tools. It can easily handle petabytes of structured and semistructured data, and
provides features such as columnar storage, parallel processing, and automatic compression to deliver fast query performance.
Therefore, the correct answer is D. Amazon Redshift
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  UD_ 7 months, 2 weeks ago

D is the answer
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: D
D is correct.

https://aws.amazon.com/redshift/
upvoted 2 times
Question #240 Topic 1

A system automatically recovers from failure when a company launches its workload on the AWS Cloud services platform.
Which pillar of the AWS Well-Architected Framework does this situation demonstrate?

A. Cost optimization

B. Operational excellence

C. Performance efficiency

D. Reliability

Correct Answer: D
Reference:
https://wa.aws.amazon.com/wellarchitected/2020-07-02T19-33-23/wat.pillar.reliability.en.html

Community vote distribution

D (100%)

  Pranava_GCP 1 day, 2 hours ago

Selected Answer: D
D. Reliability
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: D
In AWS, various services and features, such as Auto Scaling, Amazon RDS Multi-AZ, and Amazon S3 versioning, contribute to improving the
reliability of workloads by automatically recovering from failures and maintaining high availability. By leveraging these AWS services,
companies can design and build applications that are fault-tolerant and resilient to outages and disruptions.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: D
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  sanyoc 8 months ago

Selected Answer: D
correct one
upvoted 2 times

  JA2018 8 months, 2 weeks ago

Selected Answer: D
agreed
upvoted 2 times
Question #241 Topic 1

Which of the following describes AWS Local Zones?

A. A cluster of data centers in one geographic location

B. A site used by Amazon CloudFront to cache frequently accessed content

C. An extension of an AWS Region to more granular locations

D. One or more data centers with redundant power and networking

Correct Answer: C
Reference:
https://aws.amazon.com/about-aws/global-infrastructure/localzones/faqs/

Community vote distribution

C (100%)

  Redes Highly Voted  8 months, 2 weeks ago

Selected Answer: C
Each AWS Local Zone location is an extension of an AWS Region where you can run your latency sensitive applications using AWS services
such as Amazon Elastic Compute Cloud, Amazon Virtual Private Cloud, Amazon Elastic Block Store, Amazon File Storage, and Amazon
Elastic Load Balancing in geographic proximity to end-users. AWS Local Zones provide a high-bandwidth, secure connection between local
workloads and those running in the AWS Region, allowing you to seamlessly connect to the full range of in-region services through the
same APIs and tool sets.
upvoted 5 times

  Pranava_GCP Most Recent  1 day, 2 hours ago

Selected Answer: C
C. An extension of an AWS Region to more granular locations

"AWS Local Zones allow you to use select AWS services, like compute and storage services, closer to more end-users, providing them very
low latency access to the applications running locally. AWS Local Zones are also connected to the parent region via Amazon’s redundant
and very high bandwidth private network, giving applications running in AWS Local Zones fast, secure, and seamless access to the rest of
AWS services."

https://aws.amazon.com/about-aws/global-infrastructure/localzones/faqs/
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: C
AWS Local Zones are an extension of an AWS Region. They are designed to bring the AWS infrastructure closer to end-users in select
metropolitan areas. Local Zones provide a way to place resources, such as EC2 instances, in locations that are geographically closer to
users to reduce latency and improve application performance.

Each Local Zone is connected to its parent AWS Region through a low-latency network link, allowing resources in the Local Zone to interact
with other AWS services in the parent Region seamlessly. This architecture enables customers to deploy low-latency applications in
specific geographic areas without sacrificing the ability to leverage the full set of AWS services available in the parent Region.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  JA2018 9 months, 1 week ago

Selected Answer: C
Agreed.

https://aws.amazon.com/about-aws/global-infrastructure/localzones/faqs/

AWS Local Zones allow you to use select AWS services, like compute and storage services, closer to more end-users, providing them very
low latency access to the applications running locally. AWS Local Zones are also connected to the parent region via Amazon’s redundant
and very high bandwidth private network, giving applications running in AWS Local Zones fast, secure, and seamless access to the rest of
AWS services.
upvoted 2 times

  yzgulec 1 year ago

Selected Answer: C
C is correct.
upvoted 1 times
  AulaitQM 1 year, 2 months ago
Selected Answer: C
C is the answer
upvoted 1 times

  JGanesh 1 year, 3 months ago

C is the right answer
upvoted 1 times

  li988464 1 year, 3 months ago

Selected Answer: C
C IS CORRECT
upvoted 1 times

  somenick 1 year, 6 months ago

Selected Answer: C
https://aws.amazon.com/about-aws/global-infrastructure/localzones/faqs/
upvoted 4 times

  AdrianKaczmarczyk 1 year, 7 months ago

The FAQ (https://aws.amazon.com/about-aws/global-infrastructure/localzones/faqs/) does not state that explicitly, but Local Zones are
extensions of the parent Region for sure. Answer C seems most appropriate.
upvoted 2 times

  Rebecca619 1 year, 7 months ago

Seems to be C?
upvoted 1 times
Question #242 Topic 1

A retail company is migrating its IT infrastructure applications from on premises to the AWS Cloud.
Which costs will the company eliminate with this migration? (Choose two.)

A. Cost of data center operations

B. Cost of application licensing

C. Cost of marketing campaigns

D. Cost of physical server hardware

E. Cost of network management

Correct Answer: AD
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html

Community vote distribution

AD (85%) DE (15%)

  Jeynie Highly Voted  8 months ago

Selected Answer: AD
seems correct
upvoted 9 times

  Pranava_GCP Most Recent  1 day, 2 hours ago

Selected Answer: AD
A. Cost of data center operations
D. Cost of physical server hardware
upvoted 1 times

  Gulsah 1 week, 4 days ago

Selected Answer: AD
Answer is correct, AD.
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: AD
A. Cost of data center operations: Running and maintaining an on-premises data center can be expensive due to various factors like
power, cooling, space, and personnel required to manage the data center facility. With AWS Cloud, the company can use the shared
infrastructure and pay-as-you-go pricing model, which eliminates the need to operate and maintain a data center.

D. Cost of physical server hardware: On-premises IT infrastructure requires purchasing and maintaining physical server hardware. With
AWS Cloud, the company can use virtualized instances provided by AWS, and the underlying hardware is managed by AWS. This reduces
the need for upfront hardware purchases and maintenance costs.
upvoted 2 times

  RS16 3 months, 2 weeks ago

A &D correct
upvoted 2 times

  studynoplay 3 months, 4 weeks ago

Selected Answer: AD
a & d are the best answers
upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: AD
Correct
upvoted 2 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: AD
The two costs that the company will eliminate with this migration are:

A. Cost of data center operations: The company will no longer need to manage and maintain its own data centers, which will eliminate the
costs associated with power, cooling, physical security, and other data center operations.
D. Cost of physical server hardware: The company will no longer need to purchase and maintain its own physical server hardware.
Instead, it can use the compute resources provided by AWS, such as Amazon EC2 instances, which can be scaled up or down as needed. E.
Cost of network management: While migrating to the AWS Cloud may reduce the cost of network management, it is not a guaranteed
elimination of this cost. Network management costs can vary depending on the complexity of the network architecture, security
requirements, and other factors.
upvoted 2 times
  enc_0343 6 months ago
Selected Answer: AD
Using AWS eliminates a need for data centers and physical servers.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 2 times

  656823 6 months, 2 weeks ago

I go for AD, but E seems correct as well?
upvoted 1 times

  RobertMcD 6 months ago

You still have a virtual network to manage so you don't fully get rid of that portion in the cloud
upvoted 4 times

  656823 5 months, 2 weeks ago

Got it. Thank you!
upvoted 1 times

  Biotech 6 months, 2 weeks ago

Selected Answer: AD
A & D are the answers
upvoted 3 times

  ozbeyucel 7 months ago

its is definitely AD
upvoted 3 times

  Maxx 7 months ago

I will go with A & D as the application migrates from DC to AWS cloud , cost of data center operations also reduce by eliminating app os
management , os licensing and patch management.
upvoted 2 times

  nder 8 months, 1 week ago

Selected Answer: DE
You won't be eliminating the cost of data centre expenses, because AWS is the cloud data centre...
upvoted 2 times

  NickD82 7 months ago

That sounds correct but how would you connect to the data Centre if you have no network? AD is the a more suitable answer IMO
upvoted 2 times

  gabbani72 8 months, 1 week ago

Selected Answer: DE
D,E are correct!
in Cloud i pay for network management??????????????????
upvoted 3 times

  mwsd 6 months, 2 weeks ago

But you still have to manage the your private networks on the cloud
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: AD
I will go for A & D
upvoted 2 times
Question #243 Topic 1

What is a benefit of moving to the AWS Cloud in terms of improving time to market?

A. Decreased deployment speed

B. Increased application security

C. Increased business agility

D. Increased backup capabilities

Correct Answer: C
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html

Community vote distribution

C (100%)

  Pranava_GCP 1 day, 2 hours ago

Selected Answer: C
C. Increased business agility
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: C
Moving to the AWS Cloud can significantly improve time to market for companies. AWS provides a wide range of services and features that
enable businesses to rapidly deploy and scale applications, reducing the time it takes to bring new products and services to market. With
AWS, companies can quickly provision resources, automate processes, and leverage managed services, allowing them to focus more on
innovation and less on infrastructure management.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: C
no doubts
upvoted 1 times

  RiaanMO 5 months, 1 week ago

C is the correct answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Josh11211 8 months, 1 week ago

Why no??t A
upvoted 2 times

  michopth 8 months, 3 weeks ago

Selected Answer: C
Fully Agree ; Business agility
upvoted 2 times

  EazElr 9 months, 1 week ago

Selected Answer: C
6 pillars:
Trade fixed expense for variable expense
Benefit from massive economies of scale
Stop guessing capacity
Increase speed and agility
Stop spending money running and maintaining data centers
Go global in minutes
upvoted 1 times
Question #244 Topic 1

Which of the following are characteristics of a serverless application that runs in the AWS Cloud? (Choose two.)

A. Users must manually configure Amazon EC2 instances.

B. Users have a choice of operating systems.

C. The application has built-in fault tolerance.

D. Users can run Amazon EC2 Spot Instances.

E. The application can scale based on demand.

Correct Answer: CE
Reference:
https://aws.amazon.com/serverless/#:~:text=Serverless%20on%20AWS&text=AWS%20offers%20technologies%20for%20running,increase%20a
gility%20and%
20optimize%20costs

Community vote distribution

CE (100%)

  Pranava_GCP 1 day, 2 hours ago

Selected Answer: CE
C. The application has built-in fault tolerance.
E. The application can scale based on demand.
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: CE
C. The application has built-in fault tolerance: AWS takes care of managing the underlying infrastructure and provides built-in fault
tolerance. For example, services like AWS Lambda and Amazon DynamoDB automatically replicate data and handle failures without the
need for users to manage these aspects.

E. The application can scale based on demand: Serverless applications can automatically scale based on the incoming workload. Services
like AWS Lambda and Amazon API Gateway automatically handle scaling to accommodate varying traffic patterns without any manual
intervention.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: CE
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: CE
CE is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: CE
agreed
upvoted 2 times

  michopth 8 months, 3 weeks ago

Selected Answer: CE
CE is the correct ; serveless means NO EC2
upvoted 4 times
Question #245 Topic 1

A company has existing software licenses that it wants to bring to AWS, but the licensing model requires licensing physical cores.
How can the company meet this requirement in the AWS Cloud?

A. Launch an Amazon EC2 instance with default tenancy.

B. Launch an Amazon EC2 instance on a Dedicated Host.

C. Create an On-Demand Capacity Reservation.

D. Purchase Dedicated Reserved Instances.

Correct Answer: B
Reference:
https://aws.amazon.com/ec2/dedicated-hosts/

Community vote distribution

B (100%)

  Lexzy Highly Voted  1 year, 10 months ago

The ans is B
upvoted 18 times

  whoareyou Highly Voted  1 year, 9 months ago

It's B
upvoted 10 times

  Pranava_GCP Most Recent  1 day, 1 hour ago

Selected Answer: B
B. Launch an Amazon EC2 instance on a Dedicated Host.

"Amazon EC2 Dedicated Hosts allow you to use your eligible software licenses from vendors such as Microsoft and Oracle on Amazon EC2,
so that you get the flexibility and cost effectiveness of using your own licenses, but with the resiliency, simplicity and elasticity of AWS. An
Amazon EC2 Dedicated Host is a physical server fully dedicated for your use, so you can help address corporate compliance
requirements."

https://aws.amazon.com/ec2/dedicated-hosts/
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: B
When a company needs to bring its existing software licenses that require licensing physical cores to the AWS Cloud, the best option is to
launch the Amazon EC2 instances on a Dedicated Host. A Dedicated Host provides a physical server with dedicated resources that are not
shared with other AWS accounts. This allows the company to use their existing licensing model that requires physical core-based
licensing.
upvoted 1 times

  Sam05132010 6 months ago

The Answer iS A. The software licenses are different from hardware licenses. You have to use a default tenancy in this case.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Zonci 8 months, 1 week ago

Selected Answer: B
"per core" - Dedicated host
upvoted 1 times

  Tonnie85 1 year ago

Selected Answer: B
Should be Dedicated Host; Answer B
upvoted 1 times

  nVizzz 1 year, 2 months ago

Selected Answer: B
No doubt correct is B
upvoted 1 times
  AharonQ 1 year, 3 months ago
Hey admin, it should be B, Please conrrect or confirm!
upvoted 1 times

  papyce 1 year, 5 months ago

Answer = B
upvoted 1 times

  ostralo 1 year, 5 months ago

B : BYOL - dedicated host
upvoted 1 times

  fatoz 1 year, 6 months ago

It should be B
upvoted 1 times

  umop_apisdn 1 year, 7 months ago

Selected Answer: B
Correct answer is B
upvoted 3 times

  abrakadabraaa 1 year, 7 months ago

Selected Answer: B
B is correct
upvoted 3 times

  Falcon12 1 year, 7 months ago

Answer- B. customer licenses can be installed on dedicated host only.
upvoted 3 times

  ruchik 1 year, 7 months ago

Selected Answer: B
B is the answer
upvoted 4 times
Question #246 Topic 1

A company has a complex AWS architecture. The company needs assistance from a dedicated technical professional who can suggest strategies
regarding incidents, trade-offs, support, and risk management.
Which AWS Support plan will provide the required support?

A. AWS Business Support

B. AWS Enterprise Support

C. AWS Developer Support

D. AWS Basic Support

Correct Answer: A
Reference:
https://aws.amazon.com/premiumsupport/plans/

Community vote distribution

B (93%) 7%

  learner2023 Highly Voted  11 months ago

Selected Answer: B
TAM is available for Enterprise only
upvoted 16 times

  man5484 Most Recent  1 week, 5 days ago

Selected Answer: B
AWS Enterprise Support is the highest level of AWS Support and provides a dedicated technical account manager (TAM) who acts as a
single point of contact and provides personalized support and guidance to the company. The TAM can help with architectural best
practices, incident management, trade-offs, support planning, and risk management, among other things.
upvoted 3 times

  Amar_1905 1 month ago

Based on link on answer : https://aws.amazon.com/premiumsupport/plans/
1. Consultative review and guidance based on your applications (one-per-year)
2. A pool of Technical Account Managers to provide proactive guidance, and coordinate access to programs and AWS experts

Answer is Enterprise Plan

upvoted 2 times

  Pepeti 1 month, 1 week ago

RESPOSTA CORRETA B
upvoted 2 times

  Guru4Cloud 3 months, 3 weeks ago

Selected Answer: B
The AWS Support plan that will provide the required support is:
B. AWS Enterprise Support
Explanation:

AWS Enterprise Support provides a dedicated technical account manager (TAM) to help customers achieve their desired outcomes by
providing proactive and personalized guidance and support. The TAM is an experienced technical professional who works with customers
to understand their business and technical goals, and to provide guidance on AWS services and best practices. The TAM helps customers
to optimize their AWS infrastructure, troubleshoot issues, and manage incidents. The TAM also provides support for trade-offs, risk
management, and other business decisions related to the customer's use of AWS. With AWS Enterprise Support, customers have access to
24/7 technical support, as well as a range of AWS Trusted Advisor checks and guidance. Customers can also take advantage of AWS
Infrastructure Event Management (IEM) to receive proactive notifications about potential issues with their AWS resources.
upvoted 2 times

  kumaran1000001 4 months, 1 week ago

A - no coz no dedicated support

B - yes

C - not suitable for this level of support

D - not suitable for this level of support

upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: B
TAM is required
upvoted 2 times

  Stein_39 4 months, 3 weeks ago

Ans is B because in the question asking dedicated TAM so answer is B Enterprise
upvoted 3 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: B
TAM - Enterprise
upvoted 2 times

  harisene 5 months ago

Selected Answer: B
Answer: B
upvoted 2 times

  Tony_27 6 months, 1 week ago

Selected Answer: B
dedicated
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  N9 8 months ago
Selected Answer: B
TAM is keyowrd
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: B
Should be B

1. a complex AWS architecture.

2. needs assistance from a dedicated technical professional who can suggest strategies regarding incidents, trade-offs, support, and risk
management.

https://aws.amazon.com/premiumsupport/plans/
upvoted 2 times

  Cyoung82 9 months, 1 week ago

B - Enterprise
Access to AWS Managed Services (AMS) for an additional fee. AMS augments your existing teams with cloud advanced operations skills
and capacity. Includes baseline operations, a designated Cloud Service Delivery Manager (CSDM), Cloud Architect (CA), and access to the
AMS security team.
upvoted 2 times

  Fer200 9 months, 2 weeks ago

Selected Answer: B
Enterprise Support has everything. Question does not mention anything about Price, just customer needs.
upvoted 2 times

  Fer200 9 months, 2 weeks ago

Selected Answer: B
I would say B, question mentions "Dedicated"
upvoted 3 times
Question #247 Topic 1

Which of the following is an advantage that the AWS Cloud provides to users?

A. Users eliminate the need to guess about infrastructure capacity requirements.

B. Users decrease their variable costs by maintaining sole ownership of IT hardware.

C. Users maintain control of underlying IT infrastructure hardware.

D. Users maintain control of operating systems for managed services.

Correct Answer: A
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html

Community vote distribution

A (91%) 9%

  Pranava_GCP 1 day, 1 hour ago

Selected Answer: A
A. Users eliminate the need to guess about infrastructure capacity requirements.

"Stop guessing capacity – Eliminate guessing on your infrastructure capacity needs. When you make a capacity decision prior to deploying
an application, you often end up either sitting on expensive idle resources or dealing with limited capacity. With cloud computing, these
problems go away. You can access as much or as little capacity as you need, and scale up and down as required with only a few minutes’
notice."

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: A
One of the advantages of using the AWS Cloud is that it provides users with the ability to scale their infrastructure up or down based on
demand. With AWS's elastic and scalable services, users can dynamically adjust their resources to match the workload, eliminating the
need to guess about infrastructure capacity requirements. This flexibility helps users avoid overprovisioning and the associated costs of
maintaining idle resources, leading to more efficient resource utilization and cost savings.
upvoted 2 times

  SayanKundu 1 month ago

Selected Answer: B
It seems B is also correct right? because it is reducing cost of IT hardware and its maintenance as well. confusing options...
upvoted 1 times

  Gulsah 1 week, 4 days ago

B is incorrect because one of the key advantages of the AWS Cloud is that it eliminates the need for users to own and manage IT
hardware. Instead, users can use a pay-as-you-go model, reducing fixed costs and allowing them to scale resources based on actual
usage. This provides greater flexibility, cost-efficiency, and frees users from the burden of hardware maintenance.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: A
no doubts
upvoted 2 times

  Onyejicash 6 months ago

Selected Answer: A
Stop guessing capacity – Eliminate guessing on your infrastructure capacity needs. When you make a capacity decision prior to deploying
an application, you often end up either sitting on expensive idle resources or dealing with limited capacity. With cloud computing, these
problems go away. You can access as much or as little capacity as you need, and scale up and down as required with only a few minutes’
notice.
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  Respur 7 months, 3 weeks ago

A is correct
upvoted 4 times
Question #248 Topic 1

Which AWS services can use AWS WAF to protect against common web exploitations? (Choose two.)

A. Amazon Route 53

B. Amazon CloudFront

C. AWS Transfer Family

D. AWS Site-to-Site VPN

E. Amazon API Gateway

Correct Answer: BE
Reference:
https://aws.amazon.com/waf/faqs/#:~:text=AWS%20WAF%20can%20be%20deployed,content%20at%20the%20Edge%20locations

Community vote distribution

BE (100%)

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: BE
B. Amazon CloudFront
E. Amazon API Gateway

AWS Web Application Firewall (WAF) can be used to protect against common web exploitations such as SQL injection, cross-site scripting
(XSS), and other types of attacks. AWS WAF can be used in conjunction with Amazon CloudFront and Amazon API Gateway to protect your
web applications and APIs. AWS WAF allows you to create custom rules to block common attack patterns, and to monitor and
troubleshoot web requests by logging web requests that match or don't match the rules you've defined.
upvoted 6 times

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: BE
agreed

https://aws.amazon.com/waf/faqs/#:~:text=What%20services%20does%20AWS%20WAF,content%20at%20the%20Edge%20locations.

What services does AWS WAF support?

AWS WAF can be deployed on Amazon CloudFront, the Application Load Balancer (ALB), Amazon API Gateway, and AWS AppSync. As part
of Amazon CloudFront it can be part of your Content Distribution Network (CDN) protecting your resources and content at the Edge
locations. As part of the Application Load Balancer it can protect your origin web servers running behind the ALBs. As part of Amazon API
Gateway, it can help secure and protect your REST APIs. As part of AWS AppSync, it can help secure and protect your GraphQL APIs.
upvoted 5 times

  Pranava_GCP Most Recent  1 day, 1 hour ago

Selected Answer: BE
B. Amazon CloudFront Most Voted
E. Amazon API Gateway
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: BE
B. Amazon CloudFront: AWS WAF can be used to protect web applications that use Amazon CloudFront as a content delivery network
(CDN).

E. Amazon API Gateway: AWS WAF can also be used to protect web APIs exposed through Amazon API Gateway.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: BE
vote for BE
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: BE
AMAZON CLOUDFRONT, APPLICATION LOAD BLANCER, AMAZON API GATEWAY AND AWS APPSYNC
upvoted 3 times
  Saif93 6 months, 2 weeks ago
Selected Answer: BE
BE is the answer.
upvoted 1 times

  exclusive 6 months, 3 weeks ago

Selected Answer: BE
B. Amazon CloudFront
E. Amazon API Gateway

AWS Web Application Firewall (WAF) is a service that you can use to protect your web applications from common web exploitations. You
can use AWS WAF to create rules that block, allow, or monitor (count) web requests based on conditions that you specify.
upvoted 1 times

  Redes 8 months, 1 week ago

Selected Answer: BE
B. Amazon CloudFront
E. Amazon API Gateway
upvoted 1 times

  yzgulec 1 year ago

B, E.
You can deploy AWS WAF on Amazon CloudFront as part of your CDN solution, the Application Load Balancer that fronts your web servers
or origin servers running on EC2, Amazon API Gateway for your REST APIs, or AWS AppSync for your GraphQL APIs. With AWS WAF, you
pay only for what you use and the pricing is based on how many rules you deploy and how many web requests your application receives.

https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/Aurora.Managing.Backups.html
upvoted 3 times

  fabiand17 1 year, 3 months ago

Selected Answer: BE
BE for sure.
upvoted 1 times
Question #249 Topic 1

Which controls are shared under the AWS shared responsibility model? (Choose two.)

A. Awareness and training

B. Patching of Amazon RDS

C. Configuration management

D. Physical and environmental controls

E. Service and communications protection or security

Correct Answer: AC
Reference:
https://aws.amazon.com/compliance/shared-responsibility-model/

Community vote distribution

AC (89%) 11%

  asad12 Highly Voted  1 year, 10 months ago

correct - Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts
or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own
control implementation within their use of AWS services. Examples include:

  Tecatero2001 1 year, 10 months ago

So A & C a correct?
upvoted 4 times

  sandordini 1 year, 9 months ago

I think so :)
upvoted 1 times

  theonlyhero Highly Voted  1 year, 6 months ago

why not E?
upvoted 8 times

  Pranava_GCP Most Recent  1 day, 1 hour ago

Selected Answer: AC
A. Awareness and training
C. Configuration management
upvoted 1 times

  man5484 1 week, 5 days ago

Selected Answer: AC
Awareness and training is a shared responsibility between AWS and its customers. AWS provides security training and awareness
resources to its customers, but it is ultimately the responsibility of the customer to ensure that their employees are aware of security best
practices and how to implement them.
Configuration management is also a shared responsibility. AWS provides tools and resources to help customers manage their
configurations, but it is ultimately the responsibility of the customer to ensure that their configurations are secure.
upvoted 2 times

  khanda 1 week, 6 days ago

Selected Answer: AC
Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for
patching their guest OS and applications.
Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring
their own guest operating systems, databases, and applications.
Awareness & Training - AWS trains AWS employees, but a customer must train their own employees.
upvoted 2 times

  Rammstein 1 month, 2 weeks ago

Are those shared between AWS and Customer?
upvoted 1 times
  Guru4Cloud 3 months, 3 weeks ago
Selected Answer: AE
Two controls that are shared under the AWS Shared Responsibility Model are:

A. Awareness and training: AWS provides guidance and resources to customers for establishing a strong security posture, but it is the
customer's responsibility to ensure that their employees and contractors are trained and aware of security policies, procedures, and best
practices.

E. Service and communications protection or security: AWS is responsible for the security of the underlying infrastructure that supports its
cloud services, while the customer is responsible for securing the applications and data that are deployed on top of that infrastructure.
The customer must also protect the communication channels used to access and manage their AWS resources.

Therefore, options A and E are the correct answers.

upvoted 3 times

  et_learner 4 months, 1 week ago

Selected Answer: AC
should be AC
upvoted 2 times

  Rahul96 5 months, 2 weeks ago

anser =B&E??
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AC
AC is the answer.
upvoted 2 times

  Redes 8 months, 1 week ago

Selected Answer: AC
A. Awareness and training
C. Configuration management
upvoted 2 times

  JA2018 8 months, 2 weeks ago

Selected Answer: AC
agreed
upvoted 2 times

  jprat 1 year ago

Selected Answer: AC
Definitely A & C
upvoted 2 times

  realyy 1 year, 2 months ago

Selected Answer: AC
I choose A & C
upvoted 2 times

  Myxa 1 year, 4 months ago

Selected Answer: AC
A & C are correct
upvoted 2 times

  Chuma1 1 year, 7 months ago

Selected Answer: AC
A and C correct Ref: https://aws.amazon.com/compliance/shared-responsibility-model/?nc1=h_ls
Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or
perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control
implementation within their use of AWS services. Examples include:
Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for
patching their guest OS and applications.
Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring
their own guest operating systems, databases, and applications.
Awareness & Training - AWS trains AWS employees, but a customer must train their own employees.
upvoted 5 times

  DavidSharl 1 year, 8 months ago

C and E are correct!
upvoted 3 times
Question #250 Topic 1

A company manages global applications that require static IP addresses.

Which AWS service would enable the company to improve the availability and performance of its applications?

A. Amazon CloudFront

B. AWS Global Accelerator

C. Amazon S3 Transfer Acceleration

D. Amazon API Gateway

Correct Answer: B
Reference:
https://aws.amazon.com/global-accelerator/faqs/#:~:text=A%3A%20AWS%20Global%20Accelerator%20provides,AWS%20Regions%2C%20to%
20improve%20redundancy

Community vote distribution

B (100%)

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: B
B. AWS Global Accelerator

AWS Global Accelerator is a service that improves the availability and performance of global applications by routing traffic to the optimal
AWS region for a given user. It uses Anycast technology, which directs traffic to the nearest healthy endpoint and it allows to provision a
set of static IP addresses that act as a fixed entry point to the applications hosted in one or more AWS regions. This service can be useful
for the company that manages global applications that require static IP addresses and want to improve the availability and performance
of their applications, as it enables the company to provide users with low-latency access to their applications, even when the underlying
infrastructure is distributed across multiple regions.
upvoted 6 times

  man5484 Most Recent  1 week, 5 days ago

Selected Answer: B
AWS Global Accelerator is a service that improves the availability and performance of applications by utilizing the AWS global network to
direct traffic to the optimal AWS endpoint based on the client's location and health of the endpoints. It provides static IP addresses that
act as Anycast IP addresses, ensuring that clients are always directed to the nearest healthy endpoint. This helps to reduce latency,
improve application availability, and enhance the global performance of the applications.
upvoted 1 times

  Amar_1905 1 month ago

The actual use case is using AWS Cloudfront with AWS GlobalAccelerator, while Cloudfront improves the availability & latency issues, static
IP can be configured using Global Accelerator...
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: B
it's B
upvoted 1 times

  Saif93 6 months, 2 weeks ago

B is the answer.
upvoted 1 times

  N9 8 months ago
Selected Answer: B
keyword - static IP address
upvoted 3 times

  myan2492 9 months ago

Aws global, accelerator
How does AWS Global Accelerator help support multi-Region failover?

A: AWS Global Accelerator provides you with a set of static IP addresses that can map to multiple application endpoints across AWS
Regions, to improve redundancy. If your application experiences failure in a specific AWS Region, AWS Global Accelerator automatically
detects the unhealthy endpoints and redirects traffic to the next optimal AWS Region, ensuring high availability and disaster recovery.
upvoted 3 times

  Fer200 9 months, 2 weeks ago

Selected Answer: B
AWS Global Accelerator provides static IP addresses that provide a fixed entry point to your applications and eliminate the complexity of
managing specific IP addresses for different AWS Regions and Availability Zones.
upvoted 4 times
Question #251 Topic 1

Which of the following are AWS compute services? (Choose two.)

A. Amazon Lightsail

B. AWS Systems Manager

C. AWS CloudFormation

D. AWS Batch

E. Amazon Inspector

Correct Answer: AD
Reference:
https://aws.amazon.com/products/compute/

Community vote distribution

AD (100%)

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: AD
A. Amazon Lightsail
D. AWS Batch

Amazon Lightsail and AWS Batch are both compute services provided by AWS.

Amazon Lightsail is a simplified compute service that makes it easy for developers, small businesses, and startups to launch and manage
web applications, databases, and more. Lightsail includes everything needed to launch and run web applications, including a virtual
private server (VPS), storage, data transfer, DNS, and a static IP address.

AWS Batch is a service that makes it easy to run batch computing workloads on the AWS Cloud. It enables developers, scientists, and
engineers to easily and efficiently run hundreds of thousands of batch computing jobs on a managed cluster of Amazon EC2 instances.

AWS Systems Manager, AWS CloudFormation, and Amazon Inspector are not compute services, but rather management, provisioning,
and security assessment services respectively.
upvoted 11 times

  JackFish Highly Voted  9 months, 3 weeks ago

Selected Answer: AD
List of all compute services:

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/compute-services.html
upvoted 11 times

  man5484 Most Recent  1 week, 5 days ago

Selected Answer: AD
A. Amazon Lightsail is a simplified compute service that offers virtual private servers (VPS) with pre-configured operating systems and
applications. It is designed for easy setup and is suitable for small to medium workloads.

D. AWS Batch is a fully-managed service that enables developers, scientists, and engineers to easily and efficiently run batch computing
workloads of any scale on AWS. It dynamically provisions the optimal quantity and type of compute resources (e.g., CPU or memory
optimized instances) based on the volume and specific resource requirements of the batch jobs submitted.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: AD
A. Amazon Lightsail
D. AWS Batch
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: AD
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AD
AD is the answer.
upvoted 1 times
  Redes 8 months, 1 week ago
Selected Answer: AD
A. Amazon Lightsail
D. AWS Batch
upvoted 2 times

  JA2018 9 months, 1 week ago

Selected Answer: AD
Agreed
upvoted 1 times

  BillyC 1 year, 8 months ago

A and D
upvoted 1 times

  TAvenger 1 year, 9 months ago

A. Amazon Lightsail
D. AWS Batch
upvoted 1 times
Question #252 Topic 1

A company needs to report on events that involve the specific AWS services that the company uses.
Which AWS service or resource can the company use with Amazon CloudWatch to meet this requirement?

A. Amazon Inspector

B. AWS Personal Health Dashboard

C. AWS Trusted Advisor

D. AWS CloudTrail logs

Correct Answer: D
Reference:
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-log-file-examples.html

Community vote distribution

D (94%) 6%

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: D
D. AWS CloudTrail logs

AWS CloudTrail logs provide a record of all the AWS Management Console sign-in events and API calls made in the AWS account.
CloudTrail logs can be used to report on events that involve specific AWS services that a company uses. The company can use CloudTrail
logs with Amazon CloudWatch to monitor and alert on specific activities that occur within their AWS environment.

CloudWatch is a monitoring service for AWS resources and the applications you run on AWS. You can use CloudWatch to collect and track
metrics, collect and monitor log files, and set alarms.

Amazon Inspector, AWS Personal Health Dashboard, and AWS Trusted Advisor are not the right services to use for this specific use case.
Inspector is an automated security assessment service, Personal Health Dashboard is a service that provides a personalized view into the
performance and availability of the AWS resources, and Trusted Advisor is a service that provides real-time guidance to help optimize
performance, security, and cost.
upvoted 6 times

  man5484 Most Recent  1 week, 5 days ago

Selected Answer: D
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. It records
all actions taken by users, roles, or AWS services within your AWS account, providing event history data for security analysis, resource
tracking, and troubleshooting. These event logs are stored in Amazon S3 and can be integrated with Amazon CloudWatch for monitoring
and reporting purposes.

By using AWS CloudTrail logs with Amazon CloudWatch, the company can report on events that involve specific AWS services, track user
activities, and monitor changes to resources. This combination allows for comprehensive monitoring and reporting on various aspects of
the AWS environment.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: D
D. AWS CloudTrail logs
upvoted 2 times

  Nolos 2 months, 3 weeks ago

I don`
t like this question. Its̀ too generic. What kind of events are they meaning?

AWS CloudTrail serve to log USER activities (as stop a instance or change its configuration).
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-log-file-examples.html

https://aws.amazon.com/premiumsupport/technology/aws-health-
dashboard/#:~:text=The%20AWS%20Health%20Dashboard%20is,particular%20AWS%20account%20or%20organization.
upvoted 3 times

  et_learner 4 months, 1 week ago

Selected Answer: D
it is right
upvoted 2 times

  Rooh 6 months, 1 week ago

This would be B. Personal health dashboard provides detailed information about performance and availability of AWS services which may
impact customers resources. it works along with cloudwatch and provide notifications when there are issues with cloudwatch service.
refer below
https://aws.amazon.com/premiumsupport/faqs/?nc=sn&loc=6
upvoted 2 times

  Phary 5 months, 2 weeks ago

Personal Health Dashboard is focused on service disruptions and health events that affect a customer's AWS resources, rather than
providing insights into specific AWS services used by a company. In contrast, CloudTrail logs with CloudWatch can be used to monitor
and report on specific AWS services used by a company, including API calls and events related to those services. This can provide more
detailed information about how the company is using AWS services, and help identify potential security issues or opportunities for
optimization.
upvoted 5 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  Maxx 7 months ago

I think more relevant is Personal Healy dashboard i.e option B
upvoted 2 times

  zoeyaj 10 months ago

Selected Answer: D
https://docs.aws.amazon.com/AmazonCloudWatch/latest/events/EventTypes.html#events-for-services-not-listed
upvoted 3 times

  jg_85 10 months ago

Selected Answer: B
Why not B?

The question states: "the specific AWS services that the company uses."

And you can find the following here: https://aws.amazon.com/premiumsupport/technology/aws-health-dashboard/

"When you sign in to the AWS Health Dashboard, you have a personalized view of the AWS service status that powers your application.
Use the AWS Health Dashboard to learn about specific operational issues that affect your account. For example, if you receive an event for
a lost Amazon Elastic Block Store (EBS) volume associated with one of your Amazon EC2 instances, you can quickly view how your
resources are impacted, helping you to troubleshoot and remediate."
upvoted 1 times

  zoeyaj 10 months ago

Because the question asked: "service or resource that use with Amazon CloudWatch"

You can also use CloudWatch Events with services that do not emit events and are not listed on this page. AWS CloudTrail is a service
that automatically records events such as AWS API calls. You can create CloudWatch Events rules that trigger on the information
captured by CloudTrail. For more information about CloudTrail, see What is AWS CloudTrail?

https://docs.aws.amazon.com/AmazonCloudWatch/latest/events/EventTypes.html#events-for-services-not-listed
upvoted 6 times
Question #253 Topic 1

A company with AWS Enterprise Support needs help understanding its monthly AWS bill and wants to implement billing best practices.
Which AWS tool or resource is available to accomplish these goals?

A. Resource tagging

B. AWS Concierge Support team

C. AWS Abuse team

D. AWS Support

Correct Answer: B
Reference:
https://aws.amazon.com/premiumsupport/plans/enterprise/

Community vote distribution

B (100%)

  SophiaXu Highly Voted  1 year, 9 months ago

The Concierge team will quickly and efficiently assist you with your billing and account inquiries, and work with you to help implement
billing and account best practices so that you can focus on running your business.
upvoted 32 times

  avocado16 Highly Voted  1 year, 10 months ago

AWS concierge support team, customer can access them because they have enterprise support
upvoted 8 times

  man5484 Most Recent  1 week, 4 days ago

Selected Answer: B
AWS Concierge Support is a benefit that comes with AWS Enterprise Support. It offers personalized, white-glove assistance to help
enterprise customers with their billing inquiries, cost optimization, and other AWS-related questions and best practices. The AWS
Concierge Support team provides proactive assistance, helping customers understand their monthly AWS bill and offering guidance on
billing best practices to optimize costs.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS Concierge Support team
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: B
correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: B
B. AWS Concierge Support team

AWS Enterprise Support customers have access to an AWS Concierge Support team, which is a dedicated team of technical support
engineers that provide personalized guidance and best practices to help customers optimize their AWS usage and costs. This team can
help customers understand their monthly AWS bills, identify and resolve issues that contribute to unexpected costs, and implement billing
best practices.

AWS Resource tagging is a way to organize AWS resources by attaching metadata, called tags, to the resources. This can help to categorize
and manage resources, but it's not the best option for understanding the monthly bill and implementing billing best practices.

AWS Support and AWS Abuse team are different teams, Support team deals with technical issues and Abuse team deals with abuse and
security issues.
upvoted 2 times

  Redes 8 months, 1 week ago

Selected Answer: B
AWS concierge support team
upvoted 2 times

  myan2492 9 months ago

B. Concierge team = Account Assistance= enterprise suppot
upvoted 1 times

  Bigbluee 9 months, 2 weeks ago

I thought it is D as ALWAYS managing group is easier than managing user access. it is same for Microsoft AD. Add user to security group
and all permissions are granted to group. Same for Azure AD
Same for IAM:
Use groups for IAM policies. While it is possible and sometimes necessary to apply policies to individual users, it's better to apply group
policies instead. For example, rather than managing policies for 10 individual HR staff members, put them into an HR group and apply a
single HR policy to the entire group. This is faster and causes fewer oversights that compromise security. Groups also make it easier to
move users as their jobs change.
upvoted 1 times

  VTI_Training 1 year, 3 months ago

Selected Answer: B
AWS concierge support team
upvoted 1 times

  Venkat_uth 1 year, 3 months ago

ANS is B
upvoted 1 times

  Jayii 1 year, 4 months ago

Selected Answer: B
Enterprise & billing = Concierge
upvoted 1 times

  Tyron1711 1 year, 5 months ago

Selected Answer: B
Enterprise Support = Concierge Support Team
upvoted 1 times

  davidkerr7 1 year, 6 months ago

Selected Answer: B
Enterprise Support = Concierge
upvoted 1 times

  somenick 1 year, 7 months ago

Selected Answer: B
The Concierge team will quickly and efficiently assist you with your billing and account inquiries, and work with you to help implement
billing and account best practices so that you can focus on running your business
upvoted 1 times

  BillyC 1 year, 8 months ago

B is correct
upvoted 1 times
Question #254 Topic 1

Which of the following is an AWS key-value database offering consistent single-digit millisecond performance at any scale?

A. Amazon RDS

B. Amazon Aurora

C. Amazon DynamoDB

D. Amazon Redshift

Correct Answer: C
Reference:
https://aws.amazon.com/dynamodb/

Community vote distribution

C (100%)
  NotMeAnyWay Highly Voted  6 months, 2 weeks ago
Selected Answer: C
C. Amazon DynamoDB

Amazon DynamoDB is a fully managed, highly scalable key-value database service that delivers consistent single-digit millisecond
performance at any scale. It allows you to store and retrieve any amount of data, and serves any level of request traffic. DynamoDB
automatically spreads the data and traffic for a table over a sufficient number of servers to handle the request capacity specified by the
customer and the amount of data stored, while maintaining consistent and fast performance.

Amazon RDS, Amazon Aurora, and Amazon Redshift are also AWS services but they are not key-value database services, they are relational
database services, a postgres-compatible relational database service, and a data warehousing service respectively.
upvoted 7 times

  man5484 Most Recent  1 week, 4 days ago

Selected Answer: C
Amazon DynamoDB is a fully managed, serverless, NoSQL database service provided by AWS. It is a key-value and document database
that offers consistent single-digit millisecond latency at any scale, making it a great choice for applications that require low-latency access
to data, regardless of the amount of data being stored or the request rate. DynamoDB provides seamless scalability and automatic
replication across multiple Availability Zones to ensure high availability and durability.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Amazon DynamoDB
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: C
correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Redes 8 months, 1 week ago

Selected Answer: C
C. Amazon DynamoDB
upvoted 1 times

  myan2492 9 months ago

Fast, flexible NoSQL database service for single-digit millisecond performance at any scale. Get Started with Amazon DynamoDB. Free 25
GB of storage.
upvoted 1 times

  myan2492 9 months ago

Key value= noSql
Dynamodb
upvoted 1 times
Question #255 Topic 1

A company is developing a new Node.js application. The application must have a scalable NoSQL database to meet increasing demand as the
popularity of the application grows.
Which AWS service will meet the requirements for the database?

A. Amazon Aurora Serverless

B. Amazon ElastiCache

C. Amazon DynamoDB

D. Amazon Redshift

Correct Answer: C
Reference:
https://aws.amazon.com/dynamodb/

Community vote distribution

C (100%)

  man5484 1 week, 4 days ago

Selected Answer: C
Amazon DynamoDB is a fully managed NoSQL database service provided by AWS. It is designed to be highly scalable and can
automatically adjust its capacity to handle the changing demand of applications. DynamoDB provides consistent single-digit millisecond
latency at any scale, making it well-suited for applications that require low-latency access to data even with increasing popularity and
demand. Additionally, DynamoDB automatically replicates data across multiple Availability Zones to ensure high availability and durability.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Amazon DynamoDB
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: C
correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: C
C. Amazon DynamoDB

Amazon DynamoDB is a fully managed, highly scalable NoSQL database service that is well suited for building highly available, scalable,
and performant applications. It is a key-value and document database that supports both document and key-value data models. It allows
you to store and retrieve any amount of data, and serves any level of request traffic. DynamoDB automatically spreads the data and traffic
for a table over a sufficient number of servers to handle the request capacity specified by the customer and the amount of data stored,
while maintaining consistent and fast performance.

Amazon Aurora Serverless, Amazon ElastiCache and Amazon Redshift are not NoSQL databases, they are relational database service, a
web service that makes it easy to deploy, operate, and scale an in-memory cache in the cloud and a data warehousing service respectively.
upvoted 4 times

  Redes 8 months, 1 week ago

Selected Answer: C
C. Amazon DynamoDB
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: C
agreed
upvoted 1 times
Question #256 Topic 1

A company wants to set up an entire development and continuous delivery toolchain for coding, building, testing, and deploying code.
Which AWS service will meet these requirements?

A. Amazon CodeGuru

B. AWS CodeStar

C. AWS CodeCommit

D. AWS CodeDeploy

Correct Answer: B

Community vote distribution

B (100%)

  Msdy Highly Voted  7 months, 3 weeks ago

Is this part of cloud practitioner curriculum
upvoted 8 times

  Saif93 6 months, 2 weeks ago

Yes, as of today Jan 20th, 2023.
upvoted 2 times

  Onyejicash Highly Voted  6 months ago

Selected Answer: B
AWS CodeStar enables you to quickly develop, build, and deploy applications on AWS. AWS CodeStar provides a unified user interface,
enabling you to easily manage your software development activities in one place. With AWS CodeStar, you can set up your entire
continuous delivery toolchain in minutes, allowing you to start releasing code faster.
upvoted 7 times

  man5484 Most Recent  1 week, 4 days ago

Selected Answer: B
AWS CodeStar is a fully managed service that enables you to quickly develop, build, and deploy applications on AWS. It provides a pre-
configured continuous delivery toolchain with integrations for various AWS services like AWS CodeCommit for source code repositories,
AWS CodeBuild for building code, AWS CodePipeline for continuous delivery, and AWS CodeDeploy for automated deployments. With AWS
CodeStar, you can set up an entire development and continuous delivery toolchain for coding, building, testing, and deploying code with
ease.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS CodeStar
upvoted 1 times

  adfertel 3 months, 3 weeks ago

A. Amazon CodeGuru: es un servicio de aprendizaje automático (ML) desarrollado por Amazon Web Services (AWS) que proporciona
análisis y recomendaciones de código para mejorar la calidad y el rendimiento de las aplicaciones.

B. AWS CodeStar: es un servicio completamente administrado que permite a los equipos de desarrollo crear, compilar, probar y desplegar
aplicaciones en AWS rápidamente. Proporciona plantillas preconfiguradas para proyectos de diferentes lenguajes de programación y
marcos de aplicaciones.

C. AWS CodeCommit: es un servicio de control de versiones totalmente administrado que permite a los desarrolladores almacenar,
administrar y colaborar en el código fuente de la aplicación de forma segura y escalable en la nube.

D. AWS CodeDeploy: es un servicio de implementación automatizado que ayuda a los desarrolladores a implementar aplicaciones de
forma rápida y confiable en diferentes servicios de cómputo de AWS, como Amazon EC2, AWS Fargate, AWS Lambda y otros.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  Redes 8 months, 1 week ago

Selected Answer: B
AWS CodeStar lets you quickly develop, build, and deploy applications on AWS.
upvoted 3 times
  JA2018 8 months, 2 weeks ago
Selected Answer: B
agreed, I just checked https://docs.aws.amazon.com/codestar/latest/userguide/welcome.html
upvoted 1 times

  CptFarmer 9 months, 3 weeks ago

I think its D: AWS CodePipeline: continuous delivery services that automates your release pipelines. It automates the build, test and deploy
phases of the release process.
upvoted 1 times

  CptFarmer 9 months, 3 weeks ago

My mistake, its not option D. But I think its not Codestar
upvoted 1 times

  DataEngineer_WideOps 9 months, 2 weeks ago

I think it's CodeStar, since in the question they asked for web / application, and in codestar documentation they mentioned AWS
CodeStar provides the tools you need to quickly develop, build, and deploy applications on AWS.
while CodeDeploy for instance is a service that automates application deployments to a variety of compute services including
Amazon EC2, AWS Fargate, AWS Lambda, and on-premises instances. So it's basically intended for AWS Services and not for your
code.
upvoted 2 times

  DataEngineer_WideOps 9 months, 2 weeks ago

Thus I vote for CodeStar.
upvoted 2 times

  lmbalati 11 months ago

B,
https://docs.aws.amazon.com/codestar/latest/userguide/welcome.html
upvoted 3 times
Question #257 Topic 1

Which service enables customers to audit API calls in their AWS accounts?

A. AWS CloudTrail

B. AWS Trusted Advisor

C. Amazon Inspector

D. AWS X-Ray

Correct Answer: A
Reference:
https://docs.aws.amazon.com/audit-manager/latest/userguide/logging-using-cloudtrail.html

Community vote distribution

A (91%) 9%

  man5484 1 week, 4 days ago

Selected Answer: A
AWS CloudTrail is a service that enables customers to log, continuously monitor, and retain account activity-related events in their AWS
accounts. It records API calls made by or on behalf of the AWS account and delivers those log files to an Amazon S3 bucket for storage.
AWS CloudTrail provides visibility into user activity by recording actions taken on resources and helps with security analysis, resource
change tracking, and compliance auditing.
upvoted 2 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: A
The service that enables customers to audit API calls in their AWS accounts is A. AWS CloudTrail. CloudTrail is a fully-managed service that
logs, monitors, and retains events related to API calls and other activities in an AWS account. It provides an audit trail of all actions taken
by users, applications, and services, making it easier to comply with regulatory requirements and to troubleshoot operational issues.
CloudTrail provides event history, tracking of resource changes, and real-time notification of events via CloudWatch Events. It is an
essential tool for maintaining visibility and control over your AWS environment
upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: A
no doubts
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: A
A. AWS CloudTrail

AWS CloudTrail is a service that enables customers to audit API calls in their AWS accounts. It captures API calls made to AWS services,
including the identity of the API caller, the time of the API call, the source IP address of the API caller, the request parameters, and the
response elements returned by the service. CloudTrail logs are stored in an S3 bucket and can be analyzed using tools such as Amazon
Athena, Amazon EMR, and AWS Glue, to identify trends and troubleshoot issues.

AWS Trusted Advisor, Amazon Inspector, and AWS X-Ray are not service that enable customers to audit API calls. Trusted Advisor is a
service that provides real-time guidance to help optimize performance, security, and cost, Inspector is an automated security assessment
service and X-Ray is a service for analyzing and debugging distributed applications.
upvoted 4 times

  skygold54 7 months, 3 weeks ago

https://www.google.com/url?sa=t&source=web&rct=j&url=https://docs.aws.amazon.com/audit-manager/latest/userguide/logging-using-
cloudtrail.html&ved=2ahUKEwjZlIay9Pf7AhUYiv0HHdDgAaUQFnoECAoQAQ&usg=AOvVaw1itaAR89mrjRRmabMj9Npr
Cloud trail
upvoted 2 times

  N9 8 months ago
Selected Answer: A
https://docs.aws.amazon.com/audit-manager/latest/userguide/logging-using-cloudtrail.html
upvoted 2 times
  Redes 8 months, 1 week ago
Selected Answer: A
With AWS CloudTrail, you can monitor your AWS deployments in the cloud by getting a history of AWS API calls for your account, including
API calls made by using the AWS Management Console, the AWS SDKs, the command line tools, and higher-level AWS services.
upvoted 2 times

  JDKJDKJDK 8 months, 3 weeks ago

Selected Answer: A
Well the header literally says "Logging AWS Audit Manager API calls with AWS CloudTrail"
upvoted 2 times

  myan2492 9 months ago

A. True. CloudTrail
upvoted 2 times

  myan2492 9 months ago

Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities
and unintended network exposure.
upvoted 1 times

  myan2492 9 months ago

AWS X-Ray is a service that helps developers analyze and debug distributed applications. Customers use X-Ray to monitor application
traces, including the performance of calls to other downstream components or services, in either cloud-hosted applications or from their
own machines during development.
upvoted 1 times

  myan2492 9 months ago

  borntolearn 10 months ago

Selected Answer: A
You can use CloudTrail to audit API calls made by services that are integrated with ACM. For more information about using CloudTrail, see
the AWS CloudTrail User Guide. The following examples show the types of logs that can be generated depending on the AWS resources on
which you provision the ACM certificate.
https://docs.aws.amazon.com/acm/latest/userguide/ct-related.html
upvoted 2 times

  anagy11 10 months, 2 weeks ago

Selected Answer: D
AWS X-Ray
upvoted 1 times

  Aki20220918 10 months, 2 weeks ago

Selected Answer: D
D is correct
upvoted 1 times

  honey121 1 year, 9 months ago

A is the answer,Keyword here is API calls
upvoted 4 times

  adamwella 10 months, 2 weeks ago

If the keyword is API calls then why wouldn't it be X-Ray?
upvoted 4 times

  Kanyeeeah 10 months, 1 week ago

CloudTrail is a web service that records AWS API calls for your AWS account and delivers log files to an Amazon S3 bucket. From the
word "audit" it means they will check the logs/calls.
upvoted 2 times
Question #258 Topic 1

A company is moving its office and must establish an encrypted connection to AWS.
Which AWS service will help meet this requirement?

A. AWS VPN

B. Amazon Route 53

C. Amazon API Gateway

D. Amazon Connect

Correct Answer: A
Reference:
https://aws.amazon.com/vpn/

Community vote distribution

A (100%)

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: A
A. AWS VPN

AWS Virtual Private Network (VPN) is a service that enables customers to establish an encrypted connection to the AWS infrastructure. A
VPN connection can be used to connect the company's office network to the AWS cloud, allowing the company to access their data and
applications securely and with minimal latency. AWS VPN supports both Internet Protocol security (IPsec) and Secure Sockets Layer (SSL)
protocols, and can be used to connect to VPCs, AWS Direct Connect, and other AWS services.

Amazon Route 53, Amazon API Gateway, and Amazon Connect are not the right services to use for this specific use case. Route 53 is a
highly available and scalable cloud Domain Name System (DNS) web service, API Gateway is a fully managed service that makes it easy for
developers to create, publish, maintain, monitor, and secure APIs at any scale, and Connect is a cloud-based contact center service.
upvoted 6 times

  man5484 Most Recent  1 week, 4 days ago

Selected Answer: A
AWS VPN (Virtual Private Network) is a service that allows a company to establish a secure, encrypted connection between its on-premises
network and its Virtual Private Cloud (VPC) in AWS. By setting up an AWS VPN, the company can securely connect its office network to AWS
resources and workloads, ensuring data confidentiality and integrity during transit. This is particularly useful for scenarios where secure
communication between an organization's on-premises infrastructure and AWS resources is required.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: A
correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  Nguyen25183 8 months, 3 weeks ago

Selected Answer: A
Secure connectivity - encrypt the traffic
AWS Client VPN uses the secure TLS VPN tunnel protocol to encrypt the traffic. A single VPN tunnel terminates at each Client VPN endpoint
and provides users access to all AWS and on-premises resources.
https://aws.amazon.com/vpn/features/
upvoted 1 times

  Nguyen25183 8 months, 3 weeks ago

Secure connectivity - encrypt the traffic
AWS Client VPN uses the secure TLS VPN tunnel protocol to encrypt the traffic. A single VPN tunnel terminates at each Client VPN endpoint
and provides users access to all AWS and on-premises resources.
https://aws.amazon.com/vpn/features/
upvoted 1 times

  myan2492 9 months ago

A. VPN connection
Use AWS encryption solutions, along with all default security controls within AWS services.

Use advanced managed security services such as Amazon Macie, which assists in discovering and securing personal data that is stored in
Amazon S3.
upvoted 1 times
  Lsartore 1 year, 4 months ago
Selected Answer: A
A simple VPN connection can fulfill it
upvoted 3 times

  sionita 1 year, 5 months ago

A is the answer
upvoted 2 times
Question #259 Topic 1

A company needs steady and predictable performance from its Amazon EC2 instances at the lowest possible cost. The company also needs the
ability to scale resources to ensure that it has the right resources available at the right time.
Which AWS service or resource will meet these requirements?

A. Amazon CloudWatch

B. Application Load Balancer

C. AWS Batch

D. Amazon EC2 Auto Scaling

Correct Answer: D
Reference:
https://aws.amazon.com/autoscaling/

Community vote distribution

D (100%)

  man5484 1 week, 4 days ago

Selected Answer: D
Amazon EC2 Auto Scaling is a service that allows you to automatically adjust the number of Amazon EC2 instances in your fleet based on
demand. It helps you maintain steady and predictable performance by automatically scaling the number of instances up or down based
on configured policies. When there is increased demand, EC2 Auto Scaling can add more instances, and when demand decreases, it can
remove instances to optimize costs. This way, you can ensure you have the right resources available at the right time without incurring
unnecessary expenses. EC2 Auto Scaling is a powerful tool for optimizing performance and cost in dynamic and variable workloads.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: D
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: D
D. Amazon EC2 Auto Scaling

Amazon EC2 Auto Scaling is a service that automatically adjusts the number of Amazon Elastic Compute Cloud (EC2) instances in response
to changes in demand for the application. It enables the company to scale resources to ensure that it has the right resources available at
the right time, while keeping costs low. It also allows customers to maintain steady and predictable performance by automatically
increasing or decreasing the number of EC2 instances based on predefined policies and schedules.

Amazon CloudWatch is a monitoring service for AWS resources and the applications you run on AWS, it doesn't provide the automatic
scaling feature. Application Load Balancer, is a service that automatically routes incoming application traffic across multiple target
instances, it can help with scaling but it's not the best option for this specific use case. AWS Batch is a service that makes it easy to run
batch computing workloads on the AWS Cloud, it doesn't provide automatic scaling feature as well.
upvoted 3 times

  JA2018 8 months, 2 weeks ago

Selected Answer: D
agreed
upvoted 1 times
Question #260 Topic 1

Which action will provide documentation to help a company evaluate whether its use of the AWS Cloud is compliant with local regulatory
standards?

A. Running Amazon GuardDuty

B. Using AWS Artifact

C. Creating an AWS Support ticket

D. Evaluating AWS CloudTrail logs

Correct Answer: B
Reference:
https://aws.amazon.com/artifact/

Community vote distribution

B (100%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: B
B. Using AWS Artifact

"AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to
security and compliance reports from AWS and ISVs who sell their products on AWS Marketplace."

https://aws.amazon.com/artifact/
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: B
AWS Artifact is a service that provides on-demand access to AWS compliance reports and other relevant documentation. It offers a
collection of documents, including AWS compliance reports, certifications, and agreements, which can be helpful for evaluating whether
the company's use of the AWS Cloud is compliant with local regulatory standards. AWS Artifact makes it easier to understand and
demonstrate how AWS has implemented security and compliance controls in the cloud environment.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: B
no doubts
upvoted 1 times

  NotMeAnyWay 6 months, 1 week ago

Selected Answer: B
B is correct.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  skygold54 7 months, 3 weeks ago

Security Compliance Portal – AWS Artifact ...
AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demandj
upvoted 4 times

  Redes 8 months, 1 week ago

Selected Answer: B
B. Using AWS Artifact
upvoted 1 times

  EazElr 9 months, 1 week ago

Selected Answer: B
Artifact
upvoted 1 times

  BillyC 1 year, 8 months ago

B is correct
upvoted 1 times

  G_512 1 year, 10 months ago

Answer is B. ez
upvoted 2 times
Question #261 Topic 1

A company wants a cost-effective option when running its applications in an Amazon EC2 instance for short time periods. The applications can be
interrupted.
Which EC2 instance type will meet these requirements?

A. Spot Instances

B. On-Demand Instances

C. Reserved Instances

D. Dedicated Instances

Correct Answer: A
Reference:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-purchasing-options.html

Community vote distribution

A (100%)

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: A
A. Spot Instances

Spot Instances are a cost-effective option for running applications on Amazon EC2 for short periods of time. These instances are available
at a significant discount compared to On-Demand instances, with hourly rates that can be up to 90% lower. Spot Instances can be
interrupted by Amazon EC2 with a two-minute notification when EC2 needs the capacity back, this makes them suitable for applications
that can be interrupted.

On-Demand Instances are instances that you can launch at any time and pay for by the hour, they are the most flexible and they don't
have the same cost-effectiveness as Spot instances.
Reserved Instances are a cost-effective option for customers who can commit to using a specific instance type for a period of time, they
are not as cost-effective as Spot instances for short-term runs.
Dedicated Instances are a type of EC2 instance that runs on a dedicated, single-tenant host, This type of instances are more expensive
than the others and not suitable for short-term runs.
upvoted 5 times

  Pranava_GCP Most Recent  4 days, 20 hours ago

Selected Answer: A
A. Spot Instances

"Spot Instances are a cost-effective choice if you can be flexible about when your applications run and if your applications can be
interrupted. For example, Spot Instances are well-suited for data analysis, batch jobs, background processing, and optional tasks."

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-spot-instances.html
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: A
Spot Instances are a cost-effective option for running applications in Amazon EC2 instances for short time periods. They allow you to bid
on unused EC2 capacity, and you pay the Spot price for the instance type you choose. Spot Instances can be interrupted with a two-minute
notification when EC2 needs the capacity back, but they can significantly reduce costs compared to On-Demand or Reserved Instances,
making them suitable for applications that can handle interruptions or are fault-tolerant.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. Spot Instances
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: A
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times
  kapt 8 months, 2 weeks ago
Selected Answer: A
correct
upvoted 1 times
Question #262 Topic 1

A retail company is building a new mobile app. The company is evaluating whether to build the app at an on-premises data center or in the AWS
Cloud.
Which of the following are benefits of building this app in the AWS Cloud? (Choose two.)

A. A large, upfront capital expense and low variable expenses

B. Increased speed for trying out new projects

C. Complete control over the physical security of the infrastructure

D. Flexibility to scale up in minutes as the application becomes popular

E. Ability to pick the specific data centers that will host the application servers

Correct Answer: BD
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html

Community vote distribution

BD (82%) DE (18%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: BD
B. Increased speed for trying out new projects
D. Flexibility to scale up in minutes as the application becomes popular
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: BD
B. Increased speed for trying out new projects: In the AWS Cloud, you can quickly provision the necessary resources and start working on
new projects without the need to procure physical hardware or wait for setup time, enabling faster experimentation and development.

D. Flexibility to scale up in minutes as the application becomes popular: AWS offers the ability to scale up or down resources based on
demand, allowing you to easily handle increases in user traffic or demand for your application without the need to worry about hardware
limitations or capacity planning. This scalability helps ensure a smooth experience for users even during peak times.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: BD
B. Increased speed for trying out new projects
D. Flexibility to scale up in minutes as the application becomes popular
upvoted 2 times

  ShakthiGCP 1 month, 2 weeks ago

Selected Answer: BD
E is incorrect. you cant choose data centers. you can choose region
upvoted 2 times

  kumaran1000001 4 months, 1 week ago

A - no. coz fixed costs almost eliminated

B - yes

C - no for obvious reasons

D - yes

E - no. coz customer choose region not specific data centers

upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: BD
Option A is incorrect because AWS allows for a low upfront cost and variable expenses, which is the opposite of a large upfront capital
expense and low variable expenses.

Option C is incorrect because AWS follows a shared responsibility model where the physical security of the infrastructure is the
responsibility of AWS, while the customer is responsible for securing the applications and data. Therefore, the customer does not have
complete control over the physical security of the infrastructure.
Option E is incorrect because while AWS allows customers to choose the region in which their application is hosted, they cannot pick
specific data centers.
upvoted 2 times
  linux_admin 4 months, 3 weeks ago
Selected Answer: BD
E. Ability to pick the specific data centers that will host the application servers - This statement is not entirely accurate. The AWS Cloud
provides customers with multiple availability zones in different geographic regions, but customers do not have the ability to pick the
specific data centers that will host their application servers.
upvoted 2 times

  Oyas 4 months, 3 weeks ago

We call each group of logical data centers an Availability Zone.
https://aws.amazon.com/about-aws/global-infrastructure/regions_az/
upvoted 1 times

  Saddle2DiEast 5 months ago

Selected Answer: DE
answer DE
upvoted 1 times

  NZaf985 5 months, 1 week ago

Selected Answer: BD
B,D
You can't pick data centers, you can only pick AZ's.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BD
BD is the answer.
upvoted 2 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: DE
D. Flexibility to scale up in minutes as the application becomes popular
E. Ability to pick the specific data centers that will host the application servers

Building the mobile app in the AWS Cloud provides the retail company with the following benefits:

Flexibility to scale up in minutes as the application becomes popular: With AWS, the company can easily add more resources (such as
compute and storage) to the app as needed, without a large upfront capital expense.
Ability to pick the specific data centers that will host the application servers: AWS provides a global infrastructure with multiple availability
zones and regions, allowing the company to choose the specific geographic locations where their app will be hosted.
A large, upfront capital expense and low variable expenses, Increased speed for trying out new projects and complete control over the
physical security of the infrastructure are not benefits of building the app in the cloud, They are benefits of on-premises data centers.
upvoted 2 times

  sassy2023 7 months, 1 week ago

Selected Answer: DE
DE, on-premise DC vs AWS wide availability of DC choices
upvoted 1 times

  myan2492 9 months ago

BD sure
upvoted 3 times

  yzgulec 1 year ago

B, D for sure.
upvoted 2 times

  TheMarineTech 1 year, 2 months ago

Selected Answer: BD
B & D. The whole selling point of AWS is saving money due to pay as you go.
upvoted 3 times

  eyadman 1 year, 2 months ago

Selected Answer: BD
B,D are the correct answers
upvoted 3 times
Question #263 Topic 1

A developer is working on enhancing applications at AWS. The developer needs a service that can securely host GitHub-based code, repositories,
and version controls.
Which AWS service should the developer use?

A. AWS CodeStar

B. Amazon CodeGuru

C. AWS CodeCommit

D. AWS CodePipeline

Correct Answer: C
Reference:
https://docs.aws.amazon.com/codecommit/latest/userguide/welcome.html

Community vote distribution

C (100%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: C
C. AWS CodeCommit

"AWS CodeCommit is a secure, highly scalable, fully managed source control service that hosts private Git repositories."

https://aws.amazon.com/codecommit/
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: C
AWS CodeCommit is a fully managed source control service that makes it easy for teams to host secure and scalable Git-based
repositories. It provides a secure and reliable way to store code and collaborate with other team members. CodeCommit is designed to
work seamlessly with other AWS services and development tools, making it an excellent choice for securely hosting GitHub-based code,
repositories, and version controls on AWS.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS CodeCommit
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: C
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: C
C. AWS CodeCommit

AWS CodeCommit is a fully managed source control service that makes it easy for the developer to host Git-based code, repositories, and
version controls securely. CodeCommit provides a fully managed service, which means that it automatically scales to meet the needs of
the developer's repositories and integrates with AWS services like IAM for access control and CloudTrail for auditing. The developer can
use CodeCommit to store, manage, and track code changes for software development projects, it's especially useful for developers who
want to use Git-based version control system but don't want to manage their own infrastructure.
upvoted 4 times

  Nguyen25183 8 months, 3 weeks ago

Selected Answer: C
AWS CodeCommit is a secure, highly scalable, fully managed source control service that hosts private Git repositories.
https://aws.amazon.com/codecommit/
upvoted 2 times
Question #264 Topic 1

What is an AWS Region?

A. A broad set of global, cloud-based products that include compute, storage, and databases

B. A physical location around the world where data centers are clustered

C. One or more discrete data centers with redundant power, networking, and connectivity

D. A service that developers use to build applications that deliver latencies of single-digit milliseconds to users

Correct Answer: B
Reference:
https://aws.amazon.com/about-aws/global-infrastructure/regions_az/

Community vote distribution

B (100%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: B
B. A physical location around the world where data centers are clustered
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: B
An AWS Region is a geographic area where AWS has multiple data centers, known as Availability Zones, that are geographically isolated
but connected with low-latency, high-bandwidth networking. Each Region is designed to be isolated from other Regions to provide fault
tolerance, scalability, and high availability for AWS services and resources. AWS customers can choose which Region to use for their
resources based on factors such as compliance requirements, latency, and data residency concerns.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. A physical location around the world where data centers are clustered
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: B
B. A physical location around the world where data centers are clustered.

An AWS (Amazon Web Services) Region is a physical location around the world where data centers are clustered. AWS operates in multiple
geographic regions around the world, each of which comprises multiple Availability Zones. Each region is completely independent and
designed to be isolated from the others. This means that each region is entirely self-contained, with its own infrastructure, security, and
availability zones. By using multiple regions, customers can choose the location that best meets their needs in terms of latency,
compliance, and other factors.
upvoted 1 times

  Onyejicash 6 months ago

Selected Answer: B
AWS has the concept of a Region, which is a physical location around the world where we cluster data centers. We call each group of
logical data centers an Availability Zone.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: B
B. A physical location around the world where data centers are clustered

An AWS Region is a physical location around the world where AWS has multiple data centers. Each Region is designed to be isolated from
the other regions, and provides a low-latency network connection to other regions. This allows customers to store data and run
applications closer to their customers and end-users, and provides better performance, lower latencies, and compliance with data
sovereignty and other regulatory requirements. AWS currently has more than 60 regions across the world, each region contains one or
more availability zones, which are discrete data centers with redundant power, networking, and connectivity.
upvoted 4 times
  Redes 8 months, 2 weeks ago
Selected Answer: B
https://aws.amazon.com/about-aws/global-infrastructure/regions_az/?nc1=h_ls

AWS has the concept of a Region, which is a physical location around the world where we cluster data centers.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/global-infrastructure.html
upvoted 1 times
Question #265 Topic 1

Which AWS benefit enables users to deploy cloud infrastructure that consists of multiple geographic regions connected by a network with low
latency, high throughput, and redundancy?

A. Economies of scale

B. Security

C. Elasticity

D. Global reach

Correct Answer: D
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/global-infrastructure.html

Community vote distribution

D (100%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: D
D. Global reach
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
Global reach is an AWS benefit that allows users to deploy cloud infrastructure across multiple geographic regions connected by a
network with low latency, high throughput, and redundancy. AWS has a vast global network of data centers and edge locations that
enable users to deploy resources closer to end-users and customers, reducing latency and improving the performance of applications and
services worldwide. This global infrastructure also provides redundancy and high availability, ensuring that users can access their
resources and services even in the event of failures or outages in a specific region.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Global reach
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: D
vote for D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: D
D. Global reach

AWS Global Reach enables users to deploy cloud infrastructure that consists of multiple geographic regions connected by a network with
low latency, high throughput, and redundancy. This allows users to store data and run applications closer to their customers and end-
users, providing better performance, lower latencies, and compliance with data sovereignty and other regulatory requirements. This
feature enables customers to select the region where their data will be stored, and also allows customers to distribute their applications
across multiple regions for high availability and disaster recovery.

Economies of scale, Security and Elasticity are other benefits of using AWS, but they are not related to Global reach.
Economies of scale allow customers to take advantage of the massive scale of AWS to reduce costs. Security provides customers with a
secure environment to run their workloads and protect their data. Elasticity allows customers to scale their resources up and down to
match the demand of their applications.
upvoted 2 times
  JA2018 8 months, 2 weeks ago
Selected Answer: D
made sense
upvoted 1 times
Question #266 Topic 1

A company is considering a migration from on premises to the AWS Cloud. The company's IT team needs to offload support of the workload.
What should the IT team do to accomplish this goal?

A. Use AWS Managed Services to provision, run, and support the company infrastructure.

B. Build hardware refreshes into the operational calendar to ensure availability.

C. Use Amazon Elastic Container Service (Amazon ECS) on Amazon EC2 instances.

D. Overprovision compute capacity for seasonal events and traffic spikes to prevent downtime.

Correct Answer: A
Reference:
https://docs.aws.amazon.com/managedservices/latest/userguide/what-is-ams.html

Community vote distribution

A (100%)

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: A
A. Use AWS Managed Services to provision, run, and support the company infrastructure.

The IT team should use AWS Managed Services to provision, run, and support the company infrastructure. AWS Managed Services provide
fully managed, highly available, and scalable infrastructure services. These services are designed to offload the operational responsibilities
of provisioning, running, and scaling the infrastructure. This will allow the IT team to focus on higher-value tasks such as application
development, while AWS takes care of the underlying infrastructure. Managed services can include Amazon RDS, Amazon Elasticsearch
Service, Amazon DynamoDB, Amazon SNS and many others.
upvoted 5 times

  Pranava_GCP Most Recent  4 days, 20 hours ago

Selected Answer: A
A. Use AWS Managed Services to provision, run, and support the company infrastructure.
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: A
AWS Managed Services is a service offering from AWS that helps companies offload the operational burden of managing their
infrastructure in the cloud. With AWS Managed Services, AWS takes care of the day-to-day operational tasks such as provisioning,
patching, monitoring, and backup, allowing the company's IT team to focus on higher-value tasks like application development and
innovation. This can help the company reduce operational overhead and improve the overall efficiency of its IT operations while
leveraging the expertise of AWS in managing cloud environments.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. Use AWS Managed Services to provision, run, and support the company infrastructure.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: A
no doubts
upvoted 1 times

  harisene 5 months ago

Selected Answer: A
Answer: A
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  myan2492 9 months ago

Welcome to AWS Managed Services (AMS), infrastructure operations management for Amazon Web Services (AWS). AMS is an enterprise
service that provides ongoing management of your AWS infrastructure.
upvoted 3 times
Question #267 Topic 1

What is a benefit of using AWS serverless computing?

A. Application deployment and management are not required.

B. Application security will be fully managed by AWS.

C. Monitoring and logging are not needed.

D. Management of infrastructure is offloaded to AWS.

Correct Answer: D
Reference:
https://aws.amazon.com/serverless/

Community vote distribution

D (100%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: D
D. Management of infrastructure is offloaded to AWS
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
A key benefit of using AWS serverless computing, specifically with services like AWS Lambda, is that the management of the underlying
infrastructure is abstracted away from the developers. AWS takes care of the server provisioning, scaling, and maintenance, allowing
developers to focus solely on writing code for their applications. This eliminates the need for manual server management, patching, and
monitoring, which reduces operational overhead and allows developers to be more productive and focus on building and deploying
applications.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Management of infrastructure is offloaded to AWS.
upvoted 1 times

  Guru4Cloud 3 months, 2 weeks ago

Selected Answer: D
D. Management of infrastructure is offloaded to AWS.

One of the primary benefits of using AWS serverless computing is that the management of infrastructure is offloaded to AWS. This means
that the customer does not need to worry about provisioning or managing servers or other infrastructure resources. Instead, the focus
can be on building and deploying applications. AWS manages the underlying infrastructure, including servers, storage, and networking,
and provides automatic scaling and availability.
upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: D
correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  myan2492 9 months ago

D.
eliminate infrastructure management tasks like capacity provisioning and patching, so you can focus on writing code that serves your
customers. Serverless applications start with AWS Lambda, an event-driven compute service natively integrated with over 200 AWS
services and software as a service (SaaS) applications.
upvoted 4 times
Question #268 Topic 1

A company plans to launch an application that will run in multiple locations within the United States. The company needs to identify the two AWS
Regions where the application can operate at the lowest price.
Which AWS service or feature should the company use to determine the Regions that offer the lowest price?

A. Cost Explorer

B. AWS Budgets

C. AWS Trusted Advisor

D. AWS Pricing Calculator

Correct Answer: D
The other three options help with post deployment in AWS cloud.
Reference:
https://calculator.aws/#/

Community vote distribution

D (100%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: D
D. AWS Pricing Calculator

https://calculator.aws/#/addService/ec2-enhancement
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
The AWS Pricing Calculator is the AWS service or feature that allows the company to estimate the cost of running resources, services, and
applications in different AWS Regions. By using the AWS Pricing Calculator, the company can input the required resources and
configurations for their application and then compare the costs of running it in different AWS Regions. This will help the company identify
the Regions that offer the lowest price for their specific application requirements.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. AWS Pricing Calculator
upvoted 1 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: D
The AWS service that the company can use to determine the Regions that offer the lowest price for their application is D. AWS Pricing
Calculator. The AWS Pricing Calculator is a web-based tool that allows customers to estimate their monthly bill based on their expected
usage of various AWS services, including compute, storage, database, and networking. The calculator provides pricing information for all
AWS Regions, allowing customers to compare prices and choose the most cost-effective Region for their application. By selecting the AWS
services that their application will use and estimating their usage, the company can use the Pricing Calculator to determine the Regions
that offer the lowest price.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: D
it's right
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  JA2018 8 months, 2 weeks ago

Selected Answer: D
agreed
upvoted 2 times
Question #269 Topic 1

Which approach will enhance a user's security on AWS?

A. Use Multi-AZ deployments with Amazon RDS.

B. Create a hybrid architecture by using AWS Direct Connect.

C. Monitor application-specific information with AWS X-Ray.

D. Encrypt data by using AWS Key Management Service (AWS KMS).

Correct Answer: D
Reference:
https://aws.amazon.com/kms/features/

Community vote distribution

D (100%)

  Pranava_GCP 4 days, 20 hours ago

Selected Answer: D
D. Encrypt data by using AWS Key Management Service (AWS KMS).
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
Using AWS Key Management Service (AWS KMS) to encrypt data enhances a user's security on AWS. AWS KMS is a managed service that
allows users to create and control encryption keys used to encrypt their data stored in AWS services or applications. By encrypting data,
even if there is unauthorized access to the data, it remains protected and unreadable without the appropriate encryption key. This adds
an extra layer of security to sensitive data and ensures data confidentiality and integrity.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Encrypt data by using AWS Key Management Service (AWS KMS).
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: D
D. Encrypt data by using AWS Key Management Service (AWS KMS).

Encrypting data by using AWS Key Management Service (AWS KMS) is an approach that will enhance a user's security on AWS. AWS KMS is
a service that allows users to create and manage encryption keys used to encrypt and decrypt data. By using KMS to encrypt data, users
can secure data at rest and in transit, meet compliance requirements, and maintain control over their encryption keys.

Using Multi-AZ deployments with Amazon RDS, creating a hybrid architecture by using AWS Direct Connect, and monitoring application-
specific information with AWS X-Ray are all important security best practices, but they do not directly enhance the security of data like
encryption does.
upvoted 3 times

  JA2018 8 months, 2 weeks ago

Selected Answer: D
agreed
upvoted 1 times
Question #270 Topic 1

Which AWS service or tool is associated with an Amazon EC2 instance and acts as a virtual firewall to control inbound and outbound traffic?

A. AWS WAF

B. AWS Shield

C. Network access control list (ACL)

D. Security group

Correct Answer: D
Reference:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-security-groups.html

Community vote distribution

D (100%)

  myan2492 Highly Voted  9 months ago

Shield -- DDoS
WAF -- httlps
Security group --EC2
Network ACLs --subnet
upvoted 10 times

  Pranava_GCP Most Recent  1 week, 1 day ago

Selected Answer: D
D. Security group
"A security group acts as a virtual firewall for your EC2 instances to control incoming and outgoing traffic. Inbound rules control the
incoming traffic to your instance, and outbound rules control the outgoing traffic from your instance. When you launch an instance, you
can specify one or more security groups. If you don't specify a security group, Amazon EC2 uses the default security group for the VPC.
You can add rules to each security group that allow traffic to or from its associated instances."
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-security-groups.html
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
A Security Group is associated with an Amazon EC2 instance and acts as a virtual firewall to control inbound and outbound traffic. It acts at
the instance level, controlling traffic to and from an individual instance, and allows you to specify which traffic is allowed or denied based
on rules you define. Security groups provide a simple way to manage security at the instance level, making it easy to control what traffic is
allowed to access the instance and what traffic is not.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Security group
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: D
agreed
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: D
D. Security group

A security group is an AWS service or tool that is associated with an Amazon EC2 instance and acts as a virtual firewall to control inbound
and outbound traffic. Security groups enable you to specify which traffic is allowed to reach your instances, based on a set of rules that
you define. Security groups act at the instance level, not the subnet level, so each instance in a subnet in your VPC must be associated with
a security group. You can add or remove rules from a security group at any time, and you can associate multiple security groups with a
single instance.

AWS WAF is a web application firewall that helps protect web applications from common web exploits, AWS Shield is a service that
provides DDoS protection for web applications hosted on AWS, and Network access control list (ACL) is another service that controls traffic
in and out of a VPC, but it acts at the subnet level, not the instance level like security groups.
upvoted 4 times
Question #271 Topic 1

A company wants to migrate its on-premises Microsoft SQL Server database server to the AWS Cloud. The company has decided to use Amazon
EC2 instances to run this database.
Which of the following is the company responsible for managing, according to the AWS shared responsibility model?

A. EC2 hypervisor

B. Security patching of the guest operating system

C. Network connectivity of the host server

D. Uptime service level agreement (SLA) for the EC2 instances

Correct Answer: B
Reference:
https://aws.amazon.com/compliance/shared-responsibility-model/

Community vote distribution

B (100%)

  Pranava_GCP 1 week, 1 day ago

Selected Answer: B
B. Security patching of the guest operating system
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: B
According to the AWS shared responsibility model, the company is responsible for tasks related to the guest operating system, which
includes security patching, software updates, and other configurations within the operating system running on Amazon EC2 instances.
AWS is responsible for the underlying infrastructure, such as the EC2 hypervisor and the physical network connectivity of the host server.
Uptime service level agreement (SLA) for EC2 instances is also managed by AWS.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Security patching of the guest operating system
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: B
yes, B is the company's responsibility
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: B
B. Security patching of the guest operating system

According to the AWS shared responsibility model, when a company uses Amazon EC2 instances to run a Microsoft SQL Server database,
the company is responsible for managing the security patching of the guest operating system. This includes ensuring that the operating
system is updated with the latest security patches, and that the database software is configured securely.

AWS is responsible for the security of the EC2 hypervisor, network connectivity of the host server, and uptime service level agreement
(SLA) for the EC2 instances.
upvoted 2 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed, customers is responsible for managing the guest OS which sits above the hypervisor on the physical host (managed. by AWS)
upvoted 1 times
Question #272 Topic 1

A. Amazon EC2

B. Amazon Lightsail

C. Amazon Elastic Kubernetes Service (Amazon EKS)

D. AWS Fargate

Correct Answer: D
Reference:
https://aws.amazon.com/fargate/

Community vote distribution

D (78%) C (22%)

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: D
D. AWS Fargate

Fargate is a serverless compute engine for containers that allows you to run containers without having to manage the underlying EC2
instances, this service automatically provisions and manages the resources required to run the containers. Fargate will only provision the
necessary resources, like CPU and memory, for the containers, this feature ensures that the developer doesn't have to over-allocate
resources and pay for resources they don't use.

Amazon EC2, Amazon Lightsail, and Amazon Elastic Kubernetes Service (Amazon EKS) are other AWS services but they don't provide the
automatic provisioning and management of backend instances, this feature is only available on AWS Fargate. Amazon EC2 is a web service
that provides resizable compute capacity in the cloud. Amazon Lightsail is a fully managed service that makes it easy to launch and
manage web applications and blogs. Amazon EKS is a managed service that makes it easy to deploy, scale, and operate containerized
applications using Kubernetes.
upvoted 15 times

  zoeyaj Highly Voted  11 months ago

Selected Answer: C
https://aws.amazon.com/eks/

Fargate isn't container, and it doesn't require any provision.

upvoted 14 times

  et_learner 4 months, 1 week ago

Wrong!!!, Please note the stem 'The service must automatically provision and manage the backend instances. '
upvoted 6 times

  koyelchatt 10 months, 2 weeks ago

Yes, C seems to be the answer
upvoted 3 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: D
D. AWS Fargate
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
AWS Fargate is a serverless compute engine for containers that allows you to run containers without having to manage the underlying
infrastructure. With Fargate, you don't need to provision or manage EC2 instances. It automatically takes care of provisioning and
managing the backend infrastructure to run your containers, so you only need to specify the necessary resources and configurations for
your application.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: D
D. AWS Fargate
upvoted 2 times
  studynoplay 3 months, 4 weeks ago
Selected Answer: D
Fargate -- "automatically" provision
upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: D
Anyone who choose C, please note the stem 'The service must automatically provision and manage the backend instances. '
upvoted 3 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: D
AWS Fargate is a compute engine that allows users to run containers without the need to manage the underlying infrastructure. It
automatically provisions and manages the infrastructure needed to run the containers, including compute, storage, and networking
resources. Users can specify the resources required for their containers, and AWS Fargate will provision only the necessary resources. This
makes it an ideal service for deploying container-based applications that require automatic provisioning and management of backend
instances.
upvoted 2 times

  linux_admin 4 months, 3 weeks ago

Selected Answer: D
AWS Fargate is a serverless compute engine for containers that allows developers to run containers without managing the underlying EC2
instances. Fargate automatically provisions and manages the backend instances required to run the application in a scalable and cost-
effective manner. It provisions only the necessary resources based on the application's resource requirements, and the developer only
pays for the resources that are actually used
upvoted 2 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: D
AWS Fargate
upvoted 3 times

  Momo2023 4 months, 4 weeks ago

AWS Fargate will meet these requirements because it is a serverless compute engine for containers that automatically manages the
scaling and provisioning of the underlying infrastructure based on the defined resource requirements of the application. It abstracts the
infrastructure layer and automatically allocates the necessary resources.
upvoted 2 times

  Momo2023 4 months, 4 weeks ago

A developer wants to deploy an application on a container-based service. The service must automatically provision and manage the
backend instances. The service must provision only the necessary resources.
Which AWS service will meet these requirements?
A. Amazon EC2
B. Amazon Lightsail
C. Amazon Elastic Kubernetes Service (Amazon EKS)
D. AWS Fargate
upvoted 1 times

  Momo2023 4 months, 4 weeks ago

  noahsark 5 months ago

Selected Answer: D
AWS Fargate
AWS Fargate is a serverless, pay-as-you-go compute engine that lets you focus on building applications without managing servers. AWS
Fargate is compatible with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS).
https://aws.amazon.com/fargate/
upvoted 2 times

  claorden 5 months ago

Selected Answer: D
"The service must automatically provision and manage the backend instances", so Fargate
upvoted 2 times

  Ahmedhadi_ 5 months ago

Selected Answer: C
eks provision and manage back end
upvoted 1 times
  aMiPL 6 months ago
It is not Kubernetes. You need provision EC2 instances on managed cluster using node groups configuration
upvoted 1 times
Question #273 Topic 1

Which tasks require use of the AWS account root user? (Choose two.)

A. Changing an AWS Support plan

B. Modifying an Amazon EC2 instance type

C. Grouping resources in AWS Systems Manager

D. Running applications in Amazon Elastic Kubernetes Service (Amazon EKS)

E. Closing an AWS account

Correct Answer: AE
Reference:
https://docs.aws.amazon.com/general/latest/gr/root-vs-iam.html

Community vote distribution

AE (100%)

  Pranava_GCP 1 week ago

Selected Answer: AE
A. Changing an AWS Support plan
E. Closing an AWS account

https://docs.aws.amazon.com/accounts/latest/reference/root-user-tasks.html
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: AE
The AWS account root user has the highest level of permissions in an AWS account and can perform tasks like changing the AWS Support
plan and closing the AWS account
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: AE
A. Changing an AWS Support plan
E. Closing an AWS account
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: AE
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: AE
AE is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: AE
A. Changing an AWS Support plan: The AWS account root user has the permissions to change the AWS Support plan that is associated with
the account. This can be done by logging in to the AWS Management Console, navigating to the Support Center, and selecting the
appropriate plan.

E. Closing an AWS account: The AWS account root user has the permissions to close an AWS account. This is a permanent action and
cannot be undone, it will delete all resources associated with the account, including all data and configurations. Before closing the
account, the root user should ensure that all resources are backed up and that any necessary permissions or access keys have been
revoked. This can be done via AWS Management Console, AWS Support page.
upvoted 3 times

  myan2492 9 months ago

A, E true
upvoted 1 times

  Good22 1 year, 7 months ago

paying attention to these questions is very important ."root user" normal users can't perform the other functions as well. A&E is for sure .
upvoted 4 times
Question #274 Topic 1

Which AWS service enables the decoupling and scaling of applications?

A. Amazon Simple Queue Service (Amazon SQS)

B. AWS Outposts

C. Amazon S3

D. Amazon Simple Email Service (Amazon SES)

Correct Answer: A
Reference:
https://aws.amazon.com/sqs/#:~:text=Amazon%20Simple%20Queue%20Service%20(SQS,distributed%20systems%2C%20and%20serverless%
20applications

Community vote distribution

A (100%)

  Pranava_GCP 1 week ago

Selected Answer: A
A. Amazon Simple Queue Service (Amazon SQS)

"Amazon SQS provides a simple and reliable way for customers to decouple and connect components (microservices) together using
queues."

https://aws.amazon.com/sqs/#:~:text=Amazon%20SQS%20provides%20a%20simple%20and%20reliable%20way%20for%20customers%20t
o%20decouple%20and%20connect%20components%20(microservices)%20together%20using%20queues.
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: A
Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables decoupling and scaling of applications. It
allows different components of an application to communicate asynchronously, ensuring better scalability and fault tolerance. SQS
provides a reliable and scalable solution for passing messages between different parts of a distributed application, enabling better
decoupling and increased resilience.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. Amazon Simple Queue Service (Amazon SQS)
upvoted 1 times

  RS16 3 months, 2 weeks ago

A correct
upvoted 1 times

  evazaf 4 months ago

Selected Answer: A
A is the correct answer
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: A
agreed
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  myan2492 9 months ago

A sure
upvoted 3 times
Question #275 Topic 1

Which of the following describes some of the core functionality of Amazon S3?

A. Amazon S3 is a high-performance block storage service that is designed for use with Amazon EC2.

B. Amazon S3 is an object storage service that provides high-level performance, security, scalability, and data availability.

C. Amazon S3 is a fully managed, highly reliable, and scalable file storage system that is accessible over the industry-standard SMB protocol.

D. Amazon S3 is a scalable, fully managed elastic NFS for use with AWS Cloud services and on-premises resources.

Correct Answer: A

Community vote distribution

B (100%)

  zoeyaj Highly Voted  11 months ago

Selected Answer: B
Amazon Simple Storage Service (Amazon S3) is an object storage service that offers industry-leading scalability, data availability, security,
and performance. Customers of all sizes and industries can use Amazon S3 to store and protect any amount of data for a range of use
cases, such as data lakes, websites, mobile applications, backup and restore, archive, enterprise applications, IoT devices, and big data
analytics.
upvoted 20 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: B
B. Amazon S3 is an object storage service that provides high-level performance, security, scalability, and data availability.

"Amazon Simple Storage Service (Amazon S3) is an object storage service offering industry-leading scalability, data availability, security,
and performance. Customers of all sizes and industries can store and protect any amount of data for virtually any use case, such as data
lakes, cloud-native applications, and mobile apps. With cost-effective storage classes and easy-to-use management features, you can
optimize costs, organize data, and configure fine-tuned access controls to meet specific business, organizational, and compliance
requirements."

https://aws.amazon.com/s3/#:~:text=Amazon%20Simple%20Storage,and%20compliance%20requirements.
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: B
Amazon S3 (Simple Storage Service) is an object storage service provided by AWS. It is designed to store and retrieve any amount of data
from anywhere on the web. It offers high performance, durability, security, and scalability. Data in S3 is organized as objects and stored in
buckets, and each object consists of data, metadata, and a unique identifier. S3 is commonly used for storing and serving large amounts
of unstructured data, such as images, videos, backups, logs, and other files, with high availability and durability.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Amazon S3 is an object storage service that provides high-level performance, security, scalability, and data availability.
upvoted 1 times

  huanghaiyao 2 months, 3 weeks ago

Selected Answer: B
s3 is a object storage service,so answer is B
upvoted 1 times

  nixonlaw 3 months ago

Selected Answer: B
S3 is an object storage service.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: B
sure thing
upvoted 1 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: B
Amazon S3 is an object storage service
upvoted 1 times
  harisene 5 months ago
Selected Answer: B
Answer: B
upvoted 1 times

  paraswaiba 5 months ago

Answer B. AWS S3 is block storage so how could answer A be correct???
upvoted 1 times

  wabosi 5 months, 1 week ago

Selected Answer: B
I vote for B
upvoted 1 times

  Mehdi111 5 months, 3 weeks ago

Selected Answer: B
Amazon S3 is an object storage service that stores data as objects within buckets.
upvoted 1 times

  Akinwaleo 6 months ago

Selected Answer: B
Are you telling me ExamTopics doesn't know S3 is an Object storage?
upvoted 2 times

  debabrata6983 6 months, 1 week ago

Selected Answer: B
B is the correct answer. How on earth anyone say Option A is correct? Are you really kidding
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  HW4301 7 months, 1 week ago

B.
https://aws.amazon.com/s3/

Amazon Simple Storage Service (Amazon S3) is an object storage service offering industry-leading scalability, data availability, security,
and performance.
upvoted 1 times

  Vrush44 7 months, 1 week ago

Selected Answer: B
s3 is object storage.
upvoted 1 times
Question #276 Topic 1

How does consolidated billing help reduce costs for a company that has multiple AWS accounts?

A. It aggregates usage across accounts so that the company can reach volume discount thresholds sooner.

B. It offers an additional 5% discount on purchases of All Upfront Reserved Instances.

C. It provides a simplified billing invoice that the company can process more quickly than a standard invoice.

D. It gives AWS resellers the ability to bill their customers for usage.

Correct Answer: A
Reference:
https://aws.amazon.com/about-aws/whats-new/2010/02/09/announcing-consolidated-billing-for-aws-
accounts/#:~:text=Consolidated%20Billing%
20enables%20you%20to,associated%20with%20your%20paying%20account

Community vote distribution

A (100%)

  Pranava_GCP 1 week ago

Selected Answer: A
A. It aggregates usage across accounts so that the company can reach volume discount thresholds sooner.
upvoted 1 times

  Pranava_GCP 1 week ago

"Consolidated Billing enables you to see a combined view of AWS costs incurred by all accounts in your department or company, as
well as obtain a detailed cost report for each individual AWS account associated with your paying account. Consolidated Billing may
also lower your overall costs since the rolled up usage across all of your accounts could help you reach lower-priced volume tiers more
quickly."

https://aws.amazon.com/about-aws/whats-new/2010/02/09/announcing-consolidated-billing-for-aws-
accounts/#:~:text=Consolidated%20Billing%20enables,tiers%20more%20quickly.
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: A
Consolidated billing is a feature in AWS Organizations that allows a company to consolidate payment for multiple AWS accounts into a
single paying account. This helps the company achieve better volume discount pricing tiers, as the combined usage across accounts may
reach the thresholds for discounted pricing more quickly than individual accounts. By consolidating billing, the company can optimize
costs and take advantage of cost-saving opportunities offered by AWS.
upvoted 2 times

  ESAJRR 1 month ago

Selected Answer: A
A. It aggregates usage across accounts so that the company can reach volume discount thresholds sooner.
upvoted 1 times

  kumaran1000001 4 months, 1 week ago

A - yes

B - no

C - no. the primary purpose is not faster invoice purposing

D - no
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: A
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times
  Redes 8 months, 2 weeks ago
Selected Answer: A
Combined usage
upvoted 3 times

  myan2492 9 months ago

A. sure
upvoted 1 times

  anagy11 10 months, 2 weeks ago

Selected Answer: A
Correct answer is A. C is not correct because the question is not about simplicity of billing but about costs.
upvoted 3 times

  yzgulec 1 year ago

Selected Answer: A
Combined usage – You can combine the usage across all accounts in the organization to share the volume pricing discounts, Reserved
Instance discounts, and Savings Plans. This can result in a lower charge for your project, department, or company than with individual
standalone accounts.

Answer is A.
upvoted 3 times

  ExamUser55 1 year ago

Answer is C
upvoted 1 times

  shshchch88 1 year, 5 months ago

A is correct.
upvoted 2 times

  BorgesQC 1 year, 7 months ago

A is correct
upvoted 2 times

  ashish0826 1 year, 7 months ago

The answer is C
upvoted 3 times
Question #277 Topic 1

A company wants to secure its consumer web application by using SSL/TLS to encrypt traffic.
Which AWS service can the company use to meet this goal?

A. AWS WAF

B. AWS Shield

C. Amazon VPC

D. AWS Certificate Manager (ACM)

Correct Answer: D
Reference:
https://aws.amazon.com/certificate-manager/

Community vote distribution

D (70%) A (30%)

  JA2018 Highly Voted  9 months, 1 week ago

Selected Answer: D
https://aws.amazon.com/certificate-
manager/#:~:text=Use%20AWS%20Certificate%20Manager%20(ACM,and%20your%20internal%20connected%20resources.

Use AWS Certificate Manager (ACM) to provision, manage, and deploy public and private SSL/TLS certificates for use with AWS services
and your internal connected resources. ACM removes the time-consuming manual process of purchasing, uploading, and renewing
SSL/TLS certificates.

To use SSL/ TLS encryption, you need to setup and assign the SSL/ TLS certificates first.
upvoted 11 times

  myan2492 Highly Voted  9 months ago

A. WAF
You use AWS published API calls to access AWS WAF through the network. Clients must support Transport Layer Security (TLS) 1.0 or later.
upvoted 8 times

  Pranava_GCP Most Recent  1 week ago

Selected Answer: D
D. AWS Certificate Manager (ACM)

"Use AWS Certificate Manager (ACM) to provision, manage, and deploy public and private SSL/TLS certificates for use with AWS services
and your internal connected resources. ACM removes the time-consuming manual process of purchasing, uploading, and renewing
SSL/TLS certificates."

https://aws.amazon.com/certificate-
manager/#:~:text=Use%20AWS%20Certificate%20Manager%20(ACM)%20to%20provision%2C%20manage%2C%20and%20deploy%20public
%20and%20private%20SSL/TLS%20certificates%20for%20use%20with%20AWS%20services%20and%20your%20internal%20connected%20r
esources.%20ACM%20removes%20the%20time%2Dconsuming%20manual%20process%20of%20purchasing%2C%20uploading%2C%20an
d%20renewing%20SSL/TLS%20certificates.
upvoted 1 times

  Gulsah 1 week, 3 days ago

Selected Answer: A
Answer is A. AWS WAF.
AWS Certificate Manager (ACM) is used to centrally manage SSL/TLS certificates but it is not used to secure web applications to encrypt
trafic. AWS WAF can do this.
https://aws.amazon.com/certificate-manager/features/
https://docs.aws.amazon.com/waf/latest/developerguide/data-protection.html
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
AWS Certificate Manager (ACM) is a service that allows you to provision, manage, and deploy public and private SSL/TLS certificates for
use with AWS services and your internal resources. By using ACM, you can easily obtain SSL/TLS certificates for your web application to
enable encrypted communication between your users and your web servers, enhancing the security of your consumer web application.
upvoted 1 times

  AB89 3 weeks, 2 days ago

Selected Answer: D
Helps provision and manage SSL and TLS Certificates
Provides public and private certificate for free
Integrates with Elastic Load balancing , api gateway and more
upvoted 1 times
  ESAJRR 1 month ago
Selected Answer: D
D. AWS Certificate Manager (ACM)
upvoted 1 times

  evazaf 4 months ago

Selected Answer: D
d is correct: https://aws.amazon.com/certificate-manager/
upvoted 1 times

  kumaran1000001 4 months, 1 week ago

A - no, it’s web app firewall

B - no, DDoS protection

C - No. helps to launch web resources into a virtual private network

D - yes
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: D
Please see https://aws.amazon.com/certificate-manager before you want to choose A
upvoted 2 times

  Vinayhasija 4 months, 2 weeks ago

Selected Answer: D
AWS Certificate Manager (ACM) is a service that provides SSL/TLS certificates for use with AWS services and applications deployed in AWS.
It makes it easy to provision, manage, and deploy SSL/TLS certificates for use with AWS services such as Elastic Load Balancing, Amazon
CloudFront, and Amazon API Gateway. With ACM, customers can deploy SSL/TLS certificates to secure their web applications and encrypt
traffic between their users and the application.
upvoted 1 times

  RajithaR 4 months, 3 weeks ago

Selected Answer: D
The company can use AWS Certificate Manager (ACM) to secure its consumer web application by using SSL/TLS to encrypt traffic. ACM
provides SSL/TLS certificates that can be used with Amazon CloudFront, Elastic Load Balancing, and other services to secure traffic to and
from the application.
upvoted 1 times

  wabosi 5 months, 1 week ago

Selected Answer: D
I vote D
upvoted 1 times

  aniani 5 months, 4 weeks ago

Provision and manage certificates so you can securely stop traffic to your website or application - ACM
upvoted 1 times

  AWS_mastery 6 months, 1 week ago

Selected Answer: D
Both can do the job, but D: AWS Certificate Manager (ACM) announced by AWS stating the required task explicitly in the question.
upvoted 3 times

  maniganesh 6 months, 2 weeks ago

Correct answer is D
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times
Question #278 Topic 1

Which of the following are advantages of moving to the AWS Cloud? (Choose two.)

A. Users can implement all AWS services in seconds.

B. AWS assumes all responsibility for the security of infrastructure and applications.

C. Users experience increased speed and agility.

D. Users benefit from massive economies of scale.

E. Users can move hardware from their data center to the AWS Cloud.

Correct Answer: CD
Reference:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html

Community vote distribution

CD (100%)

  Pranava_GCP 1 week ago

Selected Answer: CD
C. Users experience increased speed and agility.
D. Users benefit from massive economies of scale.
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: CD
C. Users experience increased speed and agility.

Moving to the AWS Cloud provides increased speed and agility as users can provision and scale resources quickly, enabling faster
application deployment and reducing time-to-market.

D. Users benefit from massive economies of scale.

AWS operates at a large scale, which allows them to provide cost-effective solutions. This enables users to benefit from significant cost
savings compared to running infrastructure on-premises.
upvoted 2 times

  SayanKundu 1 month ago

CD is perfect answer...But A is also seems correct to me. Whats your view?
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: CD
C. Users experience increased speed and agility.
D. Users benefit from massive economies of scale.
upvoted 1 times

  lwf2 2 months, 1 week ago

Selected Answer: CD
Agreed with everyone
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: CD
no doubts
upvoted 1 times

  Momo2023 4 months, 4 weeks ago

C. Users experience increased speed and agility.
D. Users benefit from massive economies of scale.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: CD
CD is the answer.
upvoted 1 times
  kapt 8 months, 2 weeks ago
Selected Answer: CD
correct
upvoted 2 times
Question #279 Topic 1

A company stores configuration files in an Amazon S3 bucket. These configuration files must be accessed by applications that are running on
Amazon EC2 instances.
According to AWS security best practices, how should the company grant permissions to allow the applications for access the S3 bucket?

A. Use the AWS account root user access keys.

B. Use the AWS access key ID and the EC2 secret access key.

C. Use an IAM role with the necessary permissions.

D. Activate multi-factor authentication (MFA) and versioning on the S3 bucket.

Correct Answer: C
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html

Community vote distribution

C (100%)

  Pranava_GCP 1 week ago

Selected Answer: C
C. Use an IAM role with the necessary permissions.
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: C
AWS security best practices recommend using IAM roles to grant permissions to AWS resources, including S3 buckets. By attaching an IAM
role to the EC2 instances, applications running on those instances can securely access the S3 bucket without needing to use access keys or
credentials directly. This approach provides a more secure and manageable way to grant access to AWS resources from EC2 instances.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Use an IAM role with the necessary permissions.
upvoted 1 times

  evazaf 4 months ago

Selected Answer: C
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: C
correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  Zonci 8 months, 1 week ago

Selected Answer: C
"Use IAM roles for applications and AWS services that require Amazon S3 access
upvoted 2 times

  Redes 8 months, 2 weeks ago

Selected Answer: C
Use IAM roles for applications and AWS services that require Amazon S3 access

For applications on Amazon EC2 or other AWS services to access Amazon S3 resources, they must include valid AWS credentials in their
AWS API requests. You should not store AWS credentials directly in the application or Amazon EC2 instance. These are long-term
credentials that are not automatically rotated and could have a significant business impact if they are compromised.

Instead, you should use an IAM role to manage temporary credentials for applications or services that need to access Amazon S3. When
you use a role, you don't have to distribute long-term credentials (such as a user name and password or access keys) to an Amazon EC2
instance or AWS service such as AWS Lambda. The role supplies temporary permissions that applications can use when they make calls to
other AWS resources.
upvoted 2 times
  Nguyen25183 8 months, 3 weeks ago
Selected Answer: C
"Use IAM roles for applications and AWS services that require Amazon S3 access"
https://docs.aws.amazon.com/AmazonS3/latest/userguide/security-best-practices.html
upvoted 1 times
Question #280 Topic 1

A company needs an AWS service that will continuously monitor the company's AWS account for suspicious activity. The service must have the
ability to initiate automated actions against threats that are identified in the security findings.
Which service will meet these requirements?

A. AWS Trusted Advisor

B. Amazon Detective

C. Amazon Inspector

D. Amazon GuardDuty

Correct Answer: D
Reference:
https://aws.amazon.com/guardduty/faqs/

Community vote distribution

D (100%)

  N9 Highly Voted  8 months ago

Selected Answer: D
https://medium.com/aws-architech/use-case-aws-inspector-vs-guardduty-3662bf80767a
upvoted 5 times

  Pranava_GCP Most Recent  1 week, 2 days ago

Selected Answer: D
D. Amazon GuardDuty

https://aws.amazon.com/guardduty/
upvoted 1 times

  man5484 1 week, 4 days ago

Selected Answer: D
Amazon GuardDuty is a threat detection service that continuously monitors the AWS account for malicious or unauthorized activities. It
uses machine learning, anomaly detection, and integrated threat intelligence to identify potential security threats, such as unauthorized
access, compromised instances, and data exfiltration. When suspicious activities are detected, GuardDuty generates security findings and
provides actionable insights to help you remediate the threats. Additionally, GuardDuty can integrate with other AWS services, like AWS
Lambda, to automate responses to security findings, enabling you to take immediate actions against threats.
upvoted 1 times

  losbaltica 4 weeks ago

Selected Answer: D
Key word Threats = GuardDuty
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Amazon GuardDuty
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: D
Agreed
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 2 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: D
Agreed
upvoted 2 times
  Josh11211 8 months ago
: Can I take automated preventative actions using GuardDuty?

With GuardDuty, CloudWatch Events, and AWS Lambda, you have the flexibility to set up automated remediation actions based on a
security finding. For example, you can create a Lambda function to modify your AWS security group rules based on security findings. If
you receive a GuardDuty finding indicating one of your EC2 instances is being probed by a known malicious IP, you can address it through
a CloudWatch Events rule, initiating a Lambda function to automatically modify your security group rules and restrict access on that port.
upvoted 4 times
Question #281 Topic 1

A company wants to analyze streaming user data and respond to customer queries in real time.
Which AWS service can meet these requirements?

A. Amazon QuickSight

B. Amazon Redshift

C. Amazon Kinesis Data Analytics

D. AWS Data Pipeline

Correct Answer: C
Reference:
https://aws.amazon.com/kinesis/data-analytics/

Community vote distribution

C (100%)

  myan2492 Highly Voted  9 months ago

Amazon Kinesis Data Analytics is the easiest way to transform and analyze streaming data in real time using Apache Flink.
upvoted 6 times

  man5484 Most Recent  1 week, 1 day ago

Selected Answer: C
Amazon Kinesis Data Analytics is a service that allows you to process and analyze streaming data in real-time. It enables you to run SQL
queries on streaming data from various sources, such as Amazon Kinesis Streams or Amazon Kinesis Firehose, and respond to customer
queries in real-time. This service provides the ability to continuously process, analyze, and derive insights from large volumes of streaming
data with low latency and high availability.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: C
C. Amazon Kinesis Data Analytics
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

"With Amazon Kinesis Data Streams, you can build custom applications that process or analyze streaming data for specialized needs.
You can add various types of data such as clickstreams, application logs, and social media to a Kinesis data stream from hundreds of
thousands of sources. Within seconds, the data will be available for your applications to read and process from the stream."

https://aws.amazon.com/kinesis/data-streams/faqs/?nc=sn&loc=6&refid=fc81dabe-57e1-4c46-8d33-cfd3acf1ef08
upvoted 1 times

  losbaltica 4 weeks ago

Selected Answer: C
Use Amazon Kinesis Data Streams to collect and process large streams of data records in real time. You can create data-processing
applications, known as Kinesis Data Streams applications. A typical Kinesis Data Streams application reads data from a data stream as data
records.

Amazon QuickSight is a very fast, easy-to-use, cloud-powered business analytics service that makes it easy for all employees within an
organization to build visualizations, perform ad-hoc analysis, and quickly get business insights from their data, anytime, on any device.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Amazon Kinesis Data Analytics
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: C
agreed
upvoted 1 times
  Saif93 6 months, 2 weeks ago
Selected Answer: C
C is the answer.
upvoted 1 times

Question #282 Topic 1

Who can create and manage access keys for an AWS account root user?

A. The AWS account owner

B. An IAM user that has administrator permissions

C. IAM users within a designated group

D. An IAM user that has the required role

Correct Answer: A
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html

Community vote distribution

A (100%)

  man5484 1 week, 1 day ago

Selected Answer: A
Only the AWS account root user has the permissions to create and manage access keys for the AWS account. IAM users, even those with
administrative permissions, cannot manage access keys for the root user. It is recommended to avoid using the root user for day-to-day
tasks and instead create IAM users with appropriate permissions to manage resources and access keys. This follows the principle of least
privilege and enhances the security of the AWS account.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: A
A. The AWS account owner
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. The AWS account owner
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: A
A. The AWS account owner.

The AWS account root user is the master user for the AWS account and has full access to all resources and services. Only the AWS account
owner can create and manage access keys for the root user, as they have the highest level of permissions within the account. It is not
recommended to use the root user for regular activities. Instead, create an IAM user with necessary permissions and use that user for
day-to-day activities.
upvoted 4 times

  myan2492 9 months ago

account owner
upvoted 2 times
Question #283 Topic 1

Which AWS service can help a company detect an outage of its website servers and redirect users to alternate servers?

A. Amazon CloudFront

B. Amazon GuardDuty

C. Amazon Route 53

D. AWS Trusted Advisor

Correct Answer: C
Reference:
https://aws.amazon.com/about-aws/whats-new/2013/02/11/announcing-dns-failover-for-route-53/

Community vote distribution

C (100%)

  asad12 Highly Voted  1 year, 10 months ago

C- "We are excited to announce the release of DNS Failover for Route 53, Amazon’s Domain Name System (DNS) web service. With DNS
Failover, Amazon Route 53 can help detect an outage of your website and redirect your end users to alternate locations where your
application is operating properly..." https://aws.amazon.com/about-aws/whats-new/2013/02/11/announcing-dns-failover-for-route-53/
upvoted 19 times

  CRO Highly Voted  1 year, 10 months ago

its "C"
upvoted 5 times

  man5484 Most Recent  1 week, 1 day ago

Selected Answer: C
Amazon Route 53 is a highly available and scalable domain name system (DNS) web service provided by AWS. It can be used to detect an
outage of website servers and redirect users to alternate servers or locations when the primary servers become unavailable. Route 53
offers a feature called "DNS Failover" that automatically routes traffic from an unhealthy endpoint to a healthy one based on health
checks that you configure. This helps ensure high availability and resiliency for web applications and websites.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: C
C. Amazon Route 53
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Amazon Route 53
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: C
C. Amazon Route 53

Amazon Route 53 is a highly available and scalable Domain Name System (DNS) web service. It can be used to detect an outage of a
company's website servers and redirect users to alternate servers through the use of health checks and failover routing policies. It can
also be used to route users to the optimal location for faster content delivery using geographic routing.
upvoted 1 times

  Redes 8 months, 2 weeks ago

Selected Answer: C
Route53
upvoted 1 times

  legacy1996 9 months, 2 weeks ago

The Answer is C.
Route53 has Global Health Checking Functionality. Apart from the Single-Value Mode, Route53 will always return records which are
healthy.
upvoted 1 times
  AlinaHusanu 1 year, 1 month ago
Selected Answer: C
C is correct
upvoted 1 times

  Dhiva_ 1 year, 9 months ago

C is correct
upvoted 1 times

  fedeX 1 year, 10 months ago

I think it's CloudFront CDN
upvoted 3 times

  YaoiLova 1 year, 10 months ago

I think so too
upvoted 2 times

  TAvenger 1 year, 9 months ago

CloudFront helps to deliver the data and helps against DDoS attacks. It will not help with health/status checks.
https://aws.amazon.com/cloudfront/

C. Route 53 is the correct answer

upvoted 2 times
Question #284 Topic 1

A web application is hosted on AWS using an Elastic Load Balancer, multiple Amazon EC2 instances, and Amazon RDS.
Which security measures fall under the responsibility of AWS? (Choose two.)

A. Running a virus scan on EC2 instances

B. Protecting against IP spoofing and packet sniffing

C. Installing the latest security patches on the RDS instance

D. Encrypting communication between the EC2 instances and the Elastic Load Balancer

E. Configuring a security group and a network access control list (NACL) for EC2 instances

Correct Answer: BC
Reference:
https://docs.aws.amazon.com/acm/latest/userguide/data-protection.html https://aws.amazon.com/compliance/shared-responsibility-model/

Community vote distribution

BC (100%)

  AnonymousJhb Highly Voted  1 year, 10 months ago

i think its B & C.
Encrypted comms between the elb \ WAF and ec2 will only occur when the application is using port 443 combined with a digicert. When
using port 80, the traffic will not be encrypted to the backend target. This is setup \ dependent on the customers application \ port
dependencies and is not determined by AWS.
upvoted 23 times

  cathal Highly Voted  1 year, 9 months ago

B, C

RDS is managed database service, AWS will take care of security patches

• Virus scanning on EC2 is customers responsibility

• Encrypting communications between EC2 and ELB requires customer to apply certificates and also to configure the instances and ELB for
encryption
• Security group & NACL are customer’s responsibility to configure

By elimination I can determine that protection against IP spoofing and packet sniffing is their responsibility.

All of this agrees with the general AWS shared responsibility model. AWS has responsibility for managed services and network
infrastructure in this case.
upvoted 18 times

  Randall_19 1 year, 9 months ago

Hello all,
https://d1.awsstatic.com/whitepapers/Security/Networking_Security_Whitepaper.pdf
Amazon network security protect against IP spoofing and packet sniffing

so correct answers are B, D

upvoted 3 times

  Randall_19 1 year, 9 months ago

sorry typo.
Correct answer are C, D
upvoted 4 times

  examdummy22 1 year, 9 months ago

You mean B,C? Your first comment with link directs to B
upvoted 1 times

  hadjer 1 year, 9 months ago

are you serious?
upvoted 3 times

  man5484 Most Recent  1 week, 1 day ago

Selected Answer: BC
B. Protecting against IP spoofing and packet sniffing (This is AWS's responsibility as part of securing the underlying infrastructure)
C. Installing the latest security patches on the RDS instance (This is AWS's responsibility for the managed service, including patching the
underlying infrastructure)
upvoted 2 times
  Pranava_GCP 1 week, 2 days ago
Selected Answer: BC
B. Protecting against IP spoofing and packet sniffing
C. Installing the latest security patches on the RDS instance

"Periodically, Amazon RDS performs maintenance on Amazon RDS resources. Maintenance most often involves updates to the DB
instance's underlying hardware, underlying operating system (OS), or database engine version. Updates to the operating system most
often occur for security issues and should be done as soon as possible.
Some maintenance items require that Amazon RDS take your DB instance offline for a short time. Maintenance items that require a
resource to be offline include required operating system or database patching. Required patching is automatically scheduled only for
patches that are related to security and instance reliability. Such patching occurs infrequently (typically once every few months) and
seldom requires more than a fraction of your maintenance window."
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_UpgradeDBInstance.Maintenance.html
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: BC
B. Protecting against IP spoofing and packet sniffing
C. Installing the latest security patches on the RDS instance
upvoted 1 times

  lebou 1 month, 2 weeks ago

B & C is the correct answer cause even if aws offer path user must apply it.
upvoted 1 times

  aws2380 3 months, 1 week ago

B and D
B. - related to physical network hardening
D. -- AWS responsibility to provide mechanism to encrypt data between AWS resources.

C is not correct:
RDS is fully managed service, although customers are responsible for patch management. Security of own application and database is
responsibility of customers.
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: BC
B and C are correct
upvoted 1 times

  Momo2023 4 months, 4 weeks ago

B. Protecting against IP spoofing and packet sniffing
C. Installing the latest security patches on the RDS instance
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BC
BC is the answer.
upvoted 1 times

  N9 8 months ago
Too heavy for begineer
upvoted 1 times

  legacy1996 9 months, 2 weeks ago

It's B & C.
Communication between ELB and Ec2 is not always encrypted in flight, you can establish a connection over HTTP as well. Hence, it is our
responsibility to enable it if we want, but we can choose to disable it for whatever reason. Therefore, D cannot be a valid response.
upvoted 1 times

  ocbn3wby 1 year, 6 months ago

Selected Answer: BC
B, C. RDS - Managed service;
Through elimination - IP Spoofing protection comes into AWS responsibilities;
upvoted 1 times

  Nova077 1 year, 7 months ago

This question is bit confusing:
We know B is one answer.
But for others I have doubt:
For example C: Installing patches on RDS Instance. This is AWS's responsibility since its a fully managed service.
For D: Communication between EC2 and ELB needs to be encrypted and that is considered as security of data in transit. AWS
recommendation is to apply SSL / TLS1.2 or later
(https://docs.aws.amazon.com/acm/latest/userguide/data-protection.html) . Hence, This becomes a customer responsibility.

A is simply not the answer

( Read the forum: https://forums.aws.amazon.com/thread.jspa?threadID=94288)

E: Configuring a security group and a network access control list (NACL) for EC2 instances << this is obviously a customer responsibility.
So in summary : B and C
upvoted 1 times
  awsawsmaster 1 year, 9 months ago
B, D !
upvoted 1 times

  jealbave 1 year, 9 months ago

C&D are corrects
upvoted 6 times

  AhmedMI 1 year, 9 months ago

i dont understand .. why do we need encrypt the communication in between the ec2 to ELB even though its inside the aws network
upvoted 2 times

  som74 1 year, 9 months ago

It is B&C
upvoted 3 times
Question #285 Topic 1

Which of the following is an AWS Well-Architected Framework design principle for operational excellence in the AWS Cloud?

A. Go global in minutes.

B. Make frequent, small, reversible changes.

C. Implement a strong foundation of identity and access management.

D. Stop spending money on hardware infrastructure for data center operations.

Correct Answer: B
Reference:
https://aws.amazon.com/architecture/well-architected/

Community vote distribution

B (100%)

  man5484 1 week, 1 day ago

Selected Answer: B
The AWS Well-Architected Framework design principle for operational excellence emphasizes making frequent, small, and reversible
changes to improve operational processes. This approach allows for easier testing, faster rollbacks in case of issues, and continuous
improvement of the system without causing major disruptions.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: B
B. Make frequent, small, reversible changes.

"Make frequent, small, reversible changes: Design workloads to allow components to be updated regularly. Make changes in small
increments that can be reversed if they fail (without affecting customers when possible)."

https://wa.aws.amazon.com/wellarchitected/2020-07-02T19-33-23/wat.pillar.operationalExcellence.en.html
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Make frequent, small, reversible changes.
upvoted 1 times

  lebou 1 month, 2 weeks ago

Selected Answer: B
B is correct
upvoted 1 times

  RS16 3 months, 2 weeks ago

B is correct
upvoted 1 times

  RamyaKondapalli 3 months, 3 weeks ago

B is Correct
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 3 times

  myan2492 9 months ago

B true
upvoted 4 times
Question #286 Topic 1

Which AWS service provides intelligent recommendations to improve code quality and identify an application's most expensive lines of code?

A. Amazon CodeGuru

B. AWS CodeStar

C. AWS CodeCommit

D. AWS CodeDeploy

Correct Answer: A
Reference:
https://aws.amazon.com/codeguru/#:~:text=Amazon%20CodeGuru%20is%20a%20developer,most%20expensive%20lines%20of%20code

Community vote distribution

A (100%)

  man5484 1 week, 1 day ago

Selected Answer: A
Amazon CodeGuru is an AWS service that provides intelligent recommendations to improve code quality and identify an application's
most expensive lines of code. It uses machine learning algorithms to analyze code and provides recommendations for performance
improvements and best practices. This helps developers optimize their applications and reduce costs.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: A
A. Amazon CodeGuru

"CodeGuru has two components: Amazon CodeGuru Security and Amazon CodeGuru Profiler. CodeGuru Security is a machine learning
(ML) and program analysis-based tool that finds security vulnerabilities in your Java, Python, and JavaScript code. CodeGuru Security also
scans for hardcoded credentials. CodeGuru Profiler optimizes performance for applications running in production and identifies the most
expensive lines of code, reducing operational costs significantly."

https://aws.amazon.com/codeguru/faqs/
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. Amazon CodeGuru
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: A
no doubts
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  wooyourdaddy 7 months, 3 weeks ago

Selected Answer: A
Detect security vulnerabilities and automate code reviews:

Amazon CodeGuru is a developer tool that provides intelligent recommendations to improve code quality and identify an application’s
most expensive lines of code. - https://aws.amazon.com/codeguru/
upvoted 4 times
Question #287 Topic 1

A company wants to expand from one AWS Region into a second AWS Region.
What does the company need to do to expand into the second Region?

A. Contact an AWS account manager to sign a new contract.

B. Move an Availability Zone to the second Region.

C. Begin to deploy resources in the second Region.

D. Download the AWS Management Console for the second Region.

Correct Answer: C
Reference:
https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-plan-region.html

Community vote distribution

C (100%)

  man5484 1 week, 1 day ago

Selected Answer: C
To expand into a second AWS Region, the company needs to start deploying resources in that Region. AWS Regions are separate
geographic locations where AWS services are hosted. Each Region is isolated from other Regions and consists of multiple Availability
Zones. By deploying resources in a second Region, the company can achieve high availability and disaster recovery capabilities, as well as
bring its applications closer to end-users in different geographic areas.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: C
C. Begin to deploy resources in the second Region.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Begin to deploy resources in the second Region.
upvoted 1 times

  RS16 3 months, 2 weeks ago

To expand into a second AWS Region, the company needs to begin to deploy resources in the second Region. This means creating new
resources such as EC2 instances, S3 buckets, and RDS databases in the new Region.
upvoted 1 times

  Amit__Patel 3 months, 3 weeks ago

Selected Answer: C
To expand into a second AWS Region, the company needs to start deploying resources in the second Region. Therefore, the correct
answer is option C.

Expanding into a second AWS Region requires creating new resources in the target Region. This involves deploying the application and its
related resources, such as EC2 instances, databases, load balancers, and other services in the new Region. It is important to ensure that
the necessary security and compliance measures are in place before deploying the application in the new Region. The company can use
tools like AWS CloudFormation or AWS Elastic Beanstalk to automate the process of deploying resources to the new Region.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: C
C. Begin to deploy resources in the second Region.

Expanding into a second AWS Region involves deploying resources in that Region, such as Amazon Elastic Compute Cloud (EC2) instances,
Amazon Simple Storage Service (S3) buckets, and Amazon Relational Database Service (RDS) instances. This can be done using the AWS
Management Console, the AWS Command Line Interface (CLI), or programmatically using the AWS SDKs or APIs. The company may also
want to consider setting up a Virtual Private Cloud (VPC) in the second Region and configuring VPC peering or VPN connections to connect
the two VPCs. There is no need to contact an AWS account manager to sign a new contract or move an availability zone, and there is no
need to download the AWS Management Console for the second Region.
upvoted 3 times

Question #288 Topic 1

Which AWS service provides storage that can be mounted across multiple Amazon EC2 instances?

A. Amazon WorkSpaces

B. Amazon Elastic File System (Amazon EFS)

C. AWS Database Migration Service (AWS DMS)

D. AWS Snowball Edge

Correct Answer: B
Reference:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Storage.html

Community vote distribution

B (100%)

  man5484 1 week, 1 day ago

Selected Answer: B
Amazon Elastic File System (Amazon EFS) is a scalable, fully managed, and cloud-native file storage service provided by AWS. It provides a
simple and scalable file system that can be mounted across multiple Amazon EC2 instances. This means that multiple EC2 instances within
the same VPC can share the same file system, enabling them to access and modify files concurrently. Amazon EFS is suitable for use cases
that require shared file storage across multiple instances, such as content management systems, web hosting, and development
environments.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: B
B. Amazon Elastic File System (Amazon EFS)
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. Amazon Elastic File System (Amazon EFS)
upvoted 1 times

  Madbo 3 months, 1 week ago

B. Amazon Elastic File System (Amazon EFS) provides simple, scalable, and fully managed elastic NFS file systems that can be mounted
across multiple EC2 instances.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: B
B. Amazon Elastic File System (Amazon EFS)

Amazon Elastic File System (EFS) is a fully managed, elastic, NFS file system that can be mounted across multiple Amazon EC2 instances. It
allows you to create and configure file systems that are accessible to multiple instances, making it easy to share data across instances and
applications. With EFS, you can scale your storage up or down as needed, and pay only for the storage you use. EFS also provides a high-
availability storage service that automatically replicates your data across multiple availability zones, ensuring that your data is highly
available and durable.
upvoted 4 times

  Respur 7 months, 3 weeks ago

Selected Answer: B
EFS correct
upvoted 2 times
Question #289 Topic 1

A company needs to deploy applications in the AWS Cloud as quickly as possible. The company also needs to minimize the complexity that is
related to the management of AWS resources.
Which AWS service should the company use to meet these requirements?

A. AWS Config

B. AWS Elastic Beanstalk

C. Amazon EC2

D. Amazon Personalize

Correct Answer: B
Reference:
https://docs.aws.amazon.com/elastic-beanstalk/index.html

Community vote distribution

B (100%)

  man5484 1 week, 1 day ago

Selected Answer: B
AWS Elastic Beanstalk is a Platform as a Service (PaaS) offering from AWS that allows developers to quickly deploy and manage
applications in the AWS Cloud. With Elastic Beanstalk, developers can simply upload their application code, and the service will
automatically handle the deployment, capacity provisioning, load balancing, and application health monitoring. This allows developers to
focus on building their applications without worrying about the underlying infrastructure complexities.
upvoted 1 times

  Pranava_GCP 1 week, 2 days ago

Selected Answer: B
B. AWS Elastic Beanstalk
"AWS Elastic Beanstalk makes it even easier for developers to quickly deploy and manage applications in the AWS Cloud. Developers
simply upload their application, and Elastic Beanstalk automatically handles the deployment details of capacity provisioning, load
balancing, auto-scaling, and application health monitoring."
https://aws.amazon.com/elasticbeanstalk/faqs/
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS Elastic Beanstalk
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

B is the answer.
upvoted 1 times

  dark_cherrymon 8 months ago

Selected Answer: B
bbbbbbbbbbbb
upvoted 2 times
Question #290 Topic 1

A company has a set of databases that are stored on premises. The company wants to bring its existing Microsoft SQL Server licenses when the
company moves the databases to run on Amazon EC2 instances.
Which EC2 instance purchasing option should the company use to meet these requirements?

A. Dedicated Instances

B. Reserved Instances

C. Dedicated Hosts

D. Spot Instances

Correct Answer: A
Reference:
https://aws.amazon.com/windows/resources/licensing/

Community vote distribution

C (91%) 6%

  zoeyaj Highly Voted  11 months ago

Selected Answer: C
https://www.trek10.com/blog/dedicated-hosts-and-dedicated-instances/

While Dedicated Instances are extremely valuable from a compliance perspective, Dedicated Hosts also give you the visibility into the
physical host that is required for a Bring Your Own License (BYOL) model — i.e., if you want to use your own Windows Server, SQL Server,
SUSE, or RHEL licenses that are provided on a CPU core basis.
upvoted 12 times

  NotMeAnyWay Highly Voted  6 months, 2 weeks ago

Selected Answer: C
C. Dedicated Hosts

A dedicated host is a physical EC2 server that is fully dedicated to your use, and on which you can run one or more Amazon EC2 instances.
With dedicated hosts, you can use your existing Microsoft SQL Server licenses on Amazon EC2 instances. This allows you to bring your
existing licenses and use them on EC2 instances, rather than purchasing new licenses. In addition, dedicated hosts offer added security,
compliance and regulatory requirements.

It is important to mention that Reserved Instances and Dedicated Instances also could be used in this scenario, however, the use of a
dedicated host allows for more control over the underlying infrastructure, and in addition, it allows the company to have more visibility
and control over their instances, which is beneficial when running databases that have high performance requirements.
upvoted 6 times

  man5484 Most Recent  1 week, 1 day ago

Selected Answer: C
Dedicated Hosts are physical servers with EC2 instance capacity that are dedicated to a specific AWS account. When using Dedicated
Hosts, you have full control over the host, including the ability to bring your existing server-bound software licenses, such as Microsoft
SQL Server, and run them on these dedicated instances.

By using Dedicated Hosts, you can leverage your existing Microsoft SQL Server licenses and maintain compliance with licensing
requirements while running your databases on EC2 instances in the AWS Cloud.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. Dedicated Hosts
upvoted 1 times

  DineshBatla 1 month ago

Selected Answer: B
When licensing individual virtual machines (VMs), the SQL Server 2019 licensing guide states, “To license individual VMs using the Per Core
model, customers must purchase a core license for each v-core (or virtual processor, virtual CPU, virtual thread) allocated to the VM,
subject to a four-core license minimum per VM.”
upvoted 1 times

  DineshBatla 1 month ago

When licensing individual virtual machines (VMs), the SQL Server 2019 licensing guide states, “To license individual VMs using the Per Core
model, customers must purchase a core license for each v-core (or virtual processor, virtual CPU, virtual thread) allocated to the VM,
subject to a four-core license minimum per VM.”
upvoted 1 times
  Odba19c2021 1 month, 1 week ago
Selected Answer: A
If you chose (A) or (C) you are correct.

https://aws.amazon.com/windows/resources/licensing/

Your existing licenses may be used on AWS with Amazon EC2 Dedicated Hosts, Amazon EC2 Dedicated Instances, or EC2 instances with
default tenancy using Microsoft License Mobility through Software Assurance.
upvoted 1 times

  nixonlaw 3 months ago

Selected Answer: C
Answer is C, There is defference btw dedicated host and dedicated instance.
Bring Your Own License (BYOL) can be supported on dedicated host. But on dedicated instance it's partially supported. so answer is C.
upvoted 1 times

  g3_joeman 4 months ago

Selected Answer: A
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/dedicated-instance.html

//* Microsoft SQL Server with License Mobility through Software Assurance, and Windows Virtual Desktop Access (VDA) licenses can be
used with Dedicated Instance.//
upvoted 1 times

  Mehdi111 5 months, 3 weeks ago

Selected Answer: C
Both A and C are correct but in the question there is no clue about cost efficiency so 100% correct answer is C.
upvoted 1 times

  uzi112233 6 months, 1 week ago

Dedicated Host
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: C
C is the answer.
upvoted 1 times

  dangji 7 months, 2 weeks ago

Selected Answer: C
https://aws.amazon.com/windows/resources/licensing/
upvoted 2 times

  Josh11211 8 months ago

A. Dedicated instance is cheaper.
upvoted 2 times

  Josh11211 8 months ago

I don't see why dedicated host is better than dedicated instance.
In the link from the site, it states that hosts are good. Shared tenancy is more complicated. Since dedicated hosts are cheaper than
dedicated instance, hosts is my answer.
upvoted 1 times

  re_333 8 months, 2 weeks ago

The answer is dedicated host.
https://aws.amazon.com/windows/resources/licensing/
upvoted 2 times

  EazElr 9 months, 2 weeks ago

Selected Answer: C
Bring Your Own License (BYOL) model
upvoted 3 times
Question #291 Topic 1

Which of the following is a way to use Amazon EC2 Auto Scaling groups to scale capacity in the AWS Cloud?

A. Scale the number of EC2 instances in or out automatically, based on demand.

B. Use serverless EC2 instances.

C. Scale the size of EC2 instances up or down automatically, based on demand.

D. Transfer unused CPU resources between EC2 instances.

Correct Answer: A
Reference:
https://aws.amazon.com/ec2/autoscaling/faqs/

Community vote distribution

A (90%) 10%

  man5484 1 week, 1 day ago

Selected Answer: A
Amazon EC2 Auto Scaling groups are used to automatically adjust the number of EC2 instances in your fleet based on demand or
predefined conditions. Scaling in and out refers to increasing or decreasing the number of instances in response to changes in the
demand for your application. EC2 Auto Scaling helps you maintain the desired number of instances to handle the load efficiently and cost-
effectively.
upvoted 1 times

  Gulsah 1 week, 3 days ago

Selected Answer: A
scale the number, scale out as needed.
https://docs.aws.amazon.com/autoscaling/ec2/userguide/what-is-amazon-ec2-auto-scaling.html
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. Scale the number of EC2 instances in or out automatically, based on demand.
upvoted 2 times

  AbdulMalik_Y 2 months, 1 week ago

Selected Answer: C
It's C folks, the question mentions the "capacity", so scale the size up or down
upvoted 1 times

  GCipry3 3 months ago

Selected Answer: A
Certainly A
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 2 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: A
A. Scale the number of EC2 instances in or out automatically, based on demand.

Amazon EC2 Auto Scaling groups allows you to automatically scale the number of Amazon Elastic Compute Cloud (EC2) instances in your
application in or out, in response to changes in demand for your application. This helps ensure that you have the correct number of
instances running to handle the traffic to your application. Auto Scaling can be configured to use CloudWatch alarms to determine when
to scale the number of instances, and it can also be configured to scale based on a schedule. This can be done by creating policies that
increase or decrease the number of instances, based on CloudWatch metrics, schedule or even by using a custom metric.

It is important to mention that Auto Scaling groups can also scale the size of EC2 instances up or down, but this is not the only way to use
it.
upvoted 4 times

  JDKJDKJDK 8 months, 3 weeks ago

Selected Answer: A
Its in and out
upvoted 4 times
  Fer200 9 months, 2 weeks ago
Selected Answer: A
Other sites refer to EC2 Autoscale as In/Out
ex: https://spot.io/resources/aws-autoscaling/ec2-autoscaling-the-basics-and-4-best-practices/#a6
upvoted 3 times

  mightyemay 9 months, 2 weeks ago

Selected Answer: A
A. scale in/out
upvoted 4 times

  vadiminski_a 9 months, 3 weeks ago

Selected Answer: A
All your explanation point to A as the answer. We increase the NUMBER of EC2 instances thus increasing the SIZE of the group
upvoted 3 times

  enoyl 9 months, 4 weeks ago

Selected Answer: C
From the reference:
You can use Amazon EC2 Auto Scaling to automatically increase the number of Amazon EC2 instances during demand spikes to maintain
performance and decrease capacity during lulls to reduce costs.
upvoted 1 times

  Josh11211 8 months ago

Makes it A, not c. Scaling horizontally not vertically.
upvoted 1 times

  skbi570 9 months, 4 weeks ago

Selected Answer: C
C is the correct answer.
upvoted 1 times

  face1 10 months ago

A is correct
https://docs.aws.amazon.com/autoscaling/ec2/userguide/what-is-amazon-ec2-auto-scaling.html
upvoted 2 times

  AC1984 10 months, 1 week ago

C is the correct answer
upvoted 1 times

  rock2010 10 months, 1 week ago

"C" is the Answer
upvoted 1 times
Question #292 Topic 1

A company discovered unauthorized access to resources in its on-premises data center. Upon investigation, the company found that the requests
originated from a resource hosted on AWS.
Which AWS team should the company contact to report this issue?

A. AWS Customer Service team

B. AWS Sales team

C. AWS Abuse team

D. AWS Technical Support team

Correct Answer: C
Reference:
https://aws.amazon.com/premiumsupport/knowledge-center/report-aws-abuse/

Community vote distribution

C (100%)

  man5484 1 week ago

Selected Answer: C
If a company discovers unauthorized access or abuse originating from a resource hosted on AWS, they should contact the AWS Abuse
team. The Abuse team handles reports of inappropriate behavior, security incidents, and other potential violations of AWS Acceptable Use
Policy (AUP). They will investigate the issue and take appropriate actions to address the situation.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: C
C. AWS Abuse team
upvoted 1 times

  Guru4Cloud 3 months, 1 week ago

Selected Answer: C
Now..it's called "AWS Trust & Safety team" and not "Abuse Team"
upvoted 3 times

  RS16 3 months, 2 weeks ago

C is correct
upvoted 1 times

  73vino 4 months, 2 weeks ago

AWS Abuse team has Trust & Safety team which will take care as per from the below link
https://aws.amazon.com/premiumsupport/knowledge-center/report-aws-abuse/
upvoted 1 times

  alvesdama 5 months, 3 weeks ago

does it exist in the exam?
upvoted 2 times

  N9 7 months, 4 weeks ago

Selected Answer: C
AWS Trust & Safety Team
upvoted 2 times

  EazElr 9 months, 2 weeks ago

it's called "AWS Trust & Safety team" and not "Abuse Team"
upvoted 4 times
Question #293 Topic 1

Which of the following are aspects of the AWS shared responsibility model? (Choose two.)

A. Configuration management of infrastructure devices is the customer's responsibility.

B. For Amazon S3, AWS operates the infrastructure layer, the operating systems, and the platforms.

C. AWS is responsible for protecting the physical cloud infrastructure.

D. AWS is responsible for training the customer's employees on AWS products and services.

E. For Amazon EC2, AWS is responsible for maintaining the guest operating system.

Correct Answer: BC
Reference:
https://aws.amazon.com/compliance/shared-responsibility-
model/#:~:text=AWS%20responsibility%20%E2%80%9CSecurity%20of%20the,that%20run
%20AWS%20Cloud%20services

Community vote distribution

BC (100%)

  man5484 1 week ago

Selected Answer: BC
In the AWS shared responsibility model, the responsibility for security and management is shared between AWS and the customer. AWS
takes care of the underlying infrastructure, operating systems, and platforms for services like Amazon S3. However, customers are
responsible for using these services securely, setting up access controls, and managing their own data. Additionally, AWS is responsible
for physical security and protection of the cloud infrastructure, while customers are responsible for configuring and managing their
applications and data.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: BC
A. Configuration management of infrastructure devices is the customer's responsibility.
B. For Amazon S3, AWS operates the infrastructure layer, the operating systems, and the platforms.
C. AWS is responsible for protecting the physical cloud infrastructure.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BC
BC is the answer.
upvoted 2 times

  Redes 8 months, 2 weeks ago

Selected Answer: BC
B. For Amazon S3, AWS operates the infrastructure layer, the operating systems, and the platforms.
C. AWS is responsible for protecting the physical cloud infrastructure.
upvoted 3 times

  gabbani72 8 months, 2 weeks ago

Selected Answer: BC
B, C
for B read:
"For abstracted services, such as Amazon S3 and Amazon DynamoDB, AWS operates the infrastructure layer, the operating system, and
platforms, and customers access the endpoints to store and retrieve data."
upvoted 1 times

  Fer200 9 months, 2 weeks ago

AWS is not responsible for training the customer.
Answer should be B and C
upvoted 2 times

  timHAG 10 months, 3 weeks ago

"aspects" of the share model, should be b and C i think, S3 mgmt is not aspects of the shared model.
upvoted 2 times

  timHAG 10 months, 3 weeks ago

i meant C and D, taining and protection, are both aspects of the aws shared model
upvoted 1 times

  Multi_Cloud 10 months, 3 weeks ago

AWS trains it's own employees not the customer employees. Should be B&C
https://aws.amazon.com/compliance/shared-responsibility-model/
"Awareness & Training - AWS trains AWS employees, but a customer must train their own employees."
upvoted 1 times

Question #294 Topic 1

A company needs real-time guidance to follow AWS best practices to save money, improve system performance, and close security gaps.

Which AWS service should the company use?

A. Amazon GuardDuty

B. AWS Trusted Advisor

C. AWS Management Console

D. AWS Systems Manager

Correct Answer: B

Community vote distribution

B (100%)

  man5484 1 week ago

Selected Answer: B
AWS Trusted Advisor is a service that provides real-time guidance to help customers follow AWS best practices. It offers recommendations
in areas such as cost optimization, performance improvements, security enhancements, and fault tolerance. Trusted Advisor continuously
monitors your AWS environment and provides actionable insights to save money, improve system performance, and close security gaps
based on AWS best practices.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS Trusted Advisor
upvoted 1 times

  RS16 3 months, 2 weeks ago

B is ok
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed, check this out

https://aws.amazon.com/premiumsupport/technology/trusted-advisor/
upvoted 3 times
Question #295 Topic 1

A company wants to organize its users so that the company can grant permissions to the users as a group.
Which AWS service or tool can the company use to meet this requirement?

A. Security groups

B. AWS Identity and Access Management (IAM)

C. Resource groups

D. AWS Security Hub

Correct Answer: B

Community vote distribution

B (94%) 6%

  man5484 1 week ago

Selected Answer: B
AWS Identity and Access Management (IAM) is the AWS service that allows you to manage users and their permissions in the AWS
environment. IAM enables you to create and manage user identities, groups, and roles. By using IAM, you can organize your users into
groups and then assign permissions to those groups. This makes it easier to manage permissions and grant access to AWS resources for
multiple users at once.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS Identity and Access Management (IAM)
upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: B
no doubts
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 2 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: B
B. AWS Identity and Access Management (IAM)

AWS Identity and Access Management (IAM) is a service that enables the company to control and manage access to AWS resources. IAM
allows the company to create and manage users, groups and roles, and to grant permissions to those groups and roles. This enables the
company to grant permissions to a group of users, rather than having to grant permissions individually to each user. With IAM, the
company can create IAM users and groups and then grant permissions to those groups using policies. This allows the company to grant
permissions to a set of users as a group, which helps to simplify the process of managing access to resources.
upvoted 2 times

  ChiragVisavadiya 7 months, 1 week ago

Selected Answer: B
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_permissions_overview.html

"An account administrator can control access to AWS resources by attaching permissions policies to IAM identities (users, groups, and
roles)."
upvoted 3 times

  Aasvogel 8 months ago

Selected Answer: B
Security groups are for instances.
upvoted 2 times

  dark_cherrymon 8 months ago

Selected Answer: A
aaaaaaaaaaa
upvoted 1 times
  et_learner 4 months, 1 week ago
A is infra layer, not organization layer. so you are totally WRONG!!!
upvoted 1 times

  SalesforceMaster 8 months ago

Selected Answer: A
A, is correct, IAM users are individual access credentials to the account.
upvoted 1 times

  lwf2 2 months, 1 week ago

A applies to EC2 instances, not to the wider scope given in this question.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed
upvoted 2 times
Question #296 Topic 1

A company runs applications that process credit card information. Auditors have asked if the AWS environment has changed since the previous
audit. If the AWS environment has changed, the auditors want to know how it has changed.

Which AWS services can provide this information? (Choose two.)

A. AWS Artifact

B. AWS Trusted Advisor

C. AWS Config

D. AWS CloudTrail

E. AWS Identity and Access Management (IAM)

Correct Answer: CD

Community vote distribution

CD (100%)

  JA2018 Highly Voted  8 months, 2 weeks ago

Selected Answer: CD
agreed

AWS Config is a fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change
notifications to enable security and governance.

https://www.google.com/search?
q=+AWS+Elastic+Beanstalk+vs+aws+config&rlz=1C5CHFA_enSG1031SG1031&ei=RJR0Y6eiM8uSseMPhfOckAo&ved=0ahUKEwin1J3bmbL7Ah
VLSWwGHYU5B6IQ4dUDCA8&uact=5&oq=+AWS+Elastic+Beanstalk+vs+aws+config&gs_lcp=Cgxnd3Mtd2l6LXNlcnAQAzIECCEQFToECAAQQz
oFCAAQgAQ6BggAEBYQHjoFCAAQhgM6BQghEKABOggIIRAWEB4QHToKCCEQFhAeEA8QHToHCAAQHhCiBDoFCAAQogQ6BgghEA0QFUoEC
EEYAEoECEYYAFAAWIxCYJZEaABwAXgAgAHpAYgBtAqSAQYxMC40LjGYAQCgAQKgAQHAAQE&sclient=gws-wiz-
serp#:~:text=AWS%20Config%20FAQs,%E2%80%BA%20config%20%E2%80%BA%20faq
upvoted 7 times

  man5484 Most Recent  1 week ago

Selected Answer: CD
AWS Config: AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. It
continuously monitors and records the changes to the configuration settings of your AWS resources. With AWS Config, you can view the
historical timeline of configuration changes and track the changes made to your resources over time.

AWS CloudTrail: AWS CloudTrail is a service that records API calls and events for your AWS account. It provides a history of AWS API calls
made by or on behalf of your account and delivers log files to an Amazon S3 bucket. CloudTrail allows you to track who made the API call,
when it was made, which resources were accessed, and the source IP address of the requester.

Both AWS Config and AWS CloudTrail can be useful for providing information about changes to your AWS environment, helping you
understand how your resources have changed since the previous audit.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: CD
C. AWS Config
D. AWS CloudTrail
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: CD
AWS Config is a service that provides a detailed inventory of AWS resources and configuration changes to these resources. It can be used
to track changes to resources over time, including changes to configurations, relationships between resources, and compliance with
internal policies or external regulations.

AWS CloudTrail is a service that records all API calls made in an AWS account and stores the information in an Amazon S3 bucket. This
information can be used for security analysis, resource change tracking, and compliance auditing.
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: CD
CD is the answer.
upvoted 2 times
Question #297 Topic 1

A company wants to use a template to reliably provision, manage, and update its infrastructure in the AWS Cloud.

Which AWS service will meet these requirements?

A. AWS Lambda

B. AWS CloudFormation

C. AWS Fargate

D. AWS CodeDeploy

Correct Answer: B

Community vote distribution

B (100%)

  man5484 1 week ago

Selected Answer: B
AWS CloudFormation is a service that allows you to create and manage a collection of related AWS resources using templates. It enables
you to provision and update resources in a safe, predictable, and repeatable way. With CloudFormation, you define your infrastructure as
code in a template, which can be version-controlled and shared. The template describes all the resources and their configurations, and
CloudFormation takes care of creating and managing those resources as specified in the template.

Using AWS CloudFormation, you can launch complex infrastructures with a single click, update existing stacks, and rollback to previous
versions if needed. It helps you maintain consistency, reduce human errors, and automate the process of managing AWS resources,
making it a reliable way to provision, manage, and update your infrastructure in the AWS Cloud.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: B
B. AWS CloudFormation
upvoted 1 times

  RS16 3 months, 2 weeks ago

cloud formation is using template
upvoted 1 times

  et_learner 4 months, 1 week ago

Selected Answer: B
agreed
upvoted 3 times

  Saif93 6 months, 2 weeks ago

Selected Answer: B
B is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: B
agreed

https://aws.amazon.com/cloudformation/resources/templates/
upvoted 3 times
Question #298 Topic 1

A company is reviewing the current costs of running its own infrastructure on premises. The company wants to compare these on-premises costs
to the costs of running infrastructure in the AWS Cloud.

How should the company make this comparison?

A. Review the AWS shared responsibility model.

B. Audit existing software and hardware licensing costs.

C. Analyze the AWS Well-Architected Framework.

D. Use Migration Evaluator.

Correct Answer: D

Community vote distribution

D (100%)

  man5484 1 week ago

Selected Answer: D
Migration Evaluator is an AWS tool that helps companies assess the cost benefits of moving their existing applications to the AWS Cloud. It
allows you to compare the costs of running applications on-premises with the costs of running them in the AWS Cloud. By using Migration
Evaluator, the company can get insights into potential cost savings, which helps in making informed decisions about migrating to AWS.

The tool provides a detailed cost comparison, taking into account various factors such as hardware, software, data center costs, and AWS
service costs. It helps the company understand the Total Cost of Ownership (TCO) of their current infrastructure and how it compares to
the TCO of running the same workload on AWS. This allows the company to evaluate the financial benefits of migration and make an
informed decision about moving its infrastructure to the AWS Cloud.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: D
D. Use Migration Evaluator.
upvoted 1 times

  Zonci 1 month, 3 weeks ago

Selected Answer: D
Migration Evaluator provides a comprehensive cost analysis, including infrastructure costs, licensing costs, and other associated expenses.
It takes into account various factors like resource utilization, storage requirements, and data transfer costs to generate an accurate
comparison between on-premises costs and the costs of running infrastructure in the AWS Cloud.
upvoted 2 times

  et_learner 4 months, 1 week ago

Selected Answer: D
correct answer
upvoted 1 times

  Saif93 6 months, 2 weeks ago

Selected Answer: D
D is the answer.
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: D
https://aws.amazon.com/migration-evaluator/
upvoted 2 times
Question #299 Topic 1

A company needs a low-code, visual workflow service that developers can use to build distributed applications.

Which AWS service is designed to meet these requirements?

A. AWS Step Functions

B. AWS Config

C. AWS Lambda

D. Amazon CloudWatch

Correct Answer: A

Community vote distribution

A (100%)

  man5484 1 week ago

Selected Answer: A
AWS Step Functions is a low-code, visual workflow service provided by AWS. It allows developers to build and coordinate applications
using visual workflows. With Step Functions, you can design and build distributed applications easily, defining the steps and conditions for
the workflow visually through a graphical interface.

Step Functions supports a wide range of AWS services, and it can be used to create complex workflows that involve multiple AWS
resources and microservices. It simplifies the process of creating distributed applications and makes it easier to manage the flow of tasks
and actions.
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: A
A. AWS Step Functions
upvoted 1 times

  susong 1 month, 3 weeks ago

Selected Answer: A
Agrred
upvoted 1 times

  Mehdi111 5 months, 3 weeks ago

Selected Answer: A
AWS Step Functions is a visual workflow service that helps developers use AWS services to build distributed applications, automate
processes, orchestrate microservices, and create data and machine learning (ML) pipelines.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: A
A is the answer.
upvoted 1 times

  rezba1987 7 months, 4 weeks ago

Selected Answer: A
AGREED
upvoted 1 times

  JA2018 8 months, 2 weeks ago

Selected Answer: A
agreed

https://aws.amazon.com/step-functions/
upvoted 2 times
Question #300 Topic 1

A company wants to accelerate migration from its data center to the AWS Cloud.
Which combination of AWS services should the company use to meet this requirement? (Choose two.)

A. Amazon Connect

B. AWS Direct Connect

C. AWS Server Migration Service (AWS SMS)

D. Amazon Route 53

E. AWS Organizations

Correct Answer: BC

Community vote distribution

BC (92%) 8%

  man5484 1 week ago

Selected Answer: BC
B. AWS Direct Connect: AWS Direct Connect enables the company to establish a dedicated network connection between their on-premises
data center and AWS. This dedicated connection can provide higher bandwidth and lower latency than using the public internet. It helps
to improve the data transfer speed and reliability during migration.

C. AWS Server Migration Service (AWS SMS): AWS SMS is a service that simplifies and automates the process of migrating on-premises
virtual machines (VMs) to Amazon EC2 instances in the AWS Cloud. It allows the company to quickly and efficiently migrate their existing
virtualized workloads to AWS without the need for manual intervention.
upvoted 1 times

  cyd001 1 week, 1 day ago

Selected Answer: AC
Why not A&C ?
upvoted 1 times

  ESAJRR 1 month ago

Selected Answer: BC
B. AWS Direct Connect
C. AWS Server Migration Service (AWS SMS)
upvoted 2 times

  lwf2 2 months, 1 week ago

Selected Answer: BC
Though I don't love Direct Connect, as that is a choice more in line with *preserving* an existing data center rather than replacing it,
though it makes sense this would first be required to gradually make a transition.
upvoted 1 times

  Momo2023 4 months, 4 weeks ago

The correct answer is B and C.
AWS Direct Connect can provide a dedicated network connection between the company's data center and the AWS Cloud, which can help
to accelerate migration by providing a more reliable and secure connection. AWS Server Migration Service (AWS SMS) can automate the
process of migrating virtualized servers from a company's data center to the AWS Cloud. Amazon Connect is a cloud-based contact center
service and Amazon Route 53 is a domain name system (DNS) web service. AWS Organizations is a service to help manage multiple AWS
accounts. While these services can be useful in managing a company's infrastructure, they are not directly related to accelerating
migration from a data center to the AWS Cloud.
upvoted 2 times

  Saif93 6 months, 2 weeks ago

Selected Answer: BC
BC is the answer.
upvoted 1 times

  NotMeAnyWay 6 months, 2 weeks ago

Selected Answer: BC
B. AWS Direct Connect
C. AWS Server Migration Service (AWS SMS)

AWS Direct Connect is a service that enables the company to establish a dedicated network connection from its data center to AWS. This
connection can be used to transfer data between the company's data center and the AWS Cloud, providing a more reliable, lower-latency
way to move large amounts of data.
AWS Server Migration Service (SMS) is a service that automates the process of migrating on-premises servers to the AWS Cloud. It can
help the company to quickly and efficiently migrate large numbers of servers to the AWS Cloud, with minimal downtime. SMS allows to
automate the replication of an entire on-premises infrastructure to the cloud and also allows to schedule the migration and monitor the
progress.

By using these two services together, the company can accelerate its migration to the AWS Cloud, by establishing a dedicated, high-speed
connection between its data center and the AWS Cloud and by automating the process of migrating servers to the AWS Cloud.
upvoted 4 times
  SLEON01 8 months, 2 weeks ago
Selected Answer: BC
BC Agreed
upvoted 2 times

AWS DevOps Engineer Professional Exam - Free Exam Q&as, Page 1 - ExamTopics
No ratings yet
AWS DevOps Engineer Professional Exam - Free Exam Q&as, Page 1 - ExamTopics
377 pages
Aws Certified Developer Associate Dva c02
No ratings yet
Aws Certified Developer Associate Dva c02
209 pages
AWS Certified Security - Specialty Exam - Free Exam Q&As, Page 1 - ExamTopics
No ratings yet
AWS Certified Security - Specialty Exam - Free Exam Q&As, Page 1 - ExamTopics
871 pages
Exam 1
No ratings yet
Exam 1
14 pages
AWS Certified Advanced Networking Speciality ANS-C01 PDF
100% (2)
AWS Certified Advanced Networking Speciality ANS-C01 PDF
99 pages
5490065B05, VDR F1S1 Installation Manual
100% (5)
5490065B05, VDR F1S1 Installation Manual
82 pages
b07bk1vjmx Awscertifiedcloudpractitioner2018practicequestionsbychandraprakashbusam 181102190839
0% (4)
b07bk1vjmx Awscertifiedcloudpractitioner2018practicequestionsbychandraprakashbusam 181102190839
199 pages
3 Maarek Test
No ratings yet
3 Maarek Test
106 pages
AWS Certified Cloud Practitioner Exam - Free Exam Q&as, Page 1 - ExamTopics
100% (1)
AWS Certified Cloud Practitioner Exam - Free Exam Q&as, Page 1 - ExamTopics
456 pages
GX6621 DVBS2 NATURE 141 I-MAC User+manua
No ratings yet
GX6621 DVBS2 NATURE 141 I-MAC User+manua
19 pages
AWS Certified Solutions Architect - Associate SAA-C02
No ratings yet
AWS Certified Solutions Architect - Associate SAA-C02
15 pages
AWS Certified Cloud Practitioner (CLF-C01) Sample Exam Questions
No ratings yet
AWS Certified Cloud Practitioner (CLF-C01) Sample Exam Questions
3 pages
Student Leave Management System
50% (4)
Student Leave Management System
39 pages
Vulnerability Management Policy and Procedures
50% (4)
Vulnerability Management Policy and Procedures
18 pages
AWS Certified Cloud Practitioner - Sample Questions PDF
No ratings yet
AWS Certified Cloud Practitioner - Sample Questions PDF
3 pages
Motor Control Using Arduino
71% (7)
Motor Control Using Arduino
41 pages
Test 3 Nael Davis Exam AWS
0% (1)
Test 3 Nael Davis Exam AWS
222 pages
Parking Guidance System (PGS)
No ratings yet
Parking Guidance System (PGS)
23 pages
Aws Exam Dumps
100% (1)
Aws Exam Dumps
27 pages
ºèðÀÂÛÌ - AWS-SAP Certified Solutions Architect-Professional.577Q
100% (2)
ºèðÀÂÛÌ - AWS-SAP Certified Solutions Architect-Professional.577Q
91 pages
Wa0000.
No ratings yet
Wa0000.
1,214 pages
Amazon: Exam Questions AWS-Certified-Security-Specialty
No ratings yet
Amazon: Exam Questions AWS-Certified-Security-Specialty
47 pages
Sample Que Ans1
No ratings yet
Sample Que Ans1
194 pages
Proans
No ratings yet
Proans
834 pages
Wireless PHY-Layer Insecurity in EV Charging
0% (1)
Wireless PHY-Layer Insecurity in EV Charging
19 pages
AWS+Slides+Ch+00 Finalized
No ratings yet
AWS+Slides+Ch+00 Finalized
47 pages
Computer Networks Lab 1
0% (1)
Computer Networks Lab 1
6 pages
CLF c01
100% (1)
CLF c01
6 pages
Module 11 - AWS Certified Cloud Practitioner Basics
No ratings yet
Module 11 - AWS Certified Cloud Practitioner Basics
3 pages
AWS Part1
No ratings yet
AWS Part1
78 pages
Smart Energy Product Portfolio August23
No ratings yet
Smart Energy Product Portfolio August23
96 pages
Passing The Aws Cloud Practitioner Exam: Study Group #5: Exam Tips, Cloudtrail, Cloudwatch, and More
No ratings yet
Passing The Aws Cloud Practitioner Exam: Study Group #5: Exam Tips, Cloudtrail, Cloudwatch, and More
35 pages
Sony Mbx-215 - Foxconn m931 (Irx-5300) - Rev Sa
100% (1)
Sony Mbx-215 - Foxconn m931 (Irx-5300) - Rev Sa
93 pages
Assignments - NOC - Principles of Digital Communications - 2018
No ratings yet
Assignments - NOC - Principles of Digital Communications - 2018
37 pages
Exam Questions AWS-Solution-Architect-Associate
No ratings yet
Exam Questions AWS-Solution-Architect-Associate
6 pages
AWS Solutions Architect Associate (SAA-C01) Sample Exam Questions
No ratings yet
AWS Solutions Architect Associate (SAA-C01) Sample Exam Questions
4 pages
Migrate To AWS Using CloudEndure and AWS Migration Hub ENT313-R2
No ratings yet
Migrate To AWS Using CloudEndure and AWS Migration Hub ENT313-R2
18 pages
Multi Stage Amp Questions
No ratings yet
Multi Stage Amp Questions
12 pages
AWS Solution Architect Associate Exam Questions
No ratings yet
AWS Solution Architect Associate Exam Questions
7 pages
Ee Draindumps 2023-Aug-16 by Nicholas 93q Vce
100% (1)
Ee Draindumps 2023-Aug-16 by Nicholas 93q Vce
24 pages
AWS Certified Cloud Practitioner Exam Guide v2.1
No ratings yet
AWS Certified Cloud Practitioner Exam Guide v2.1
2 pages
Amazon: Exam Questions AWS-Certified-Cloud-Practitioner
No ratings yet
Amazon: Exam Questions AWS-Certified-Cloud-Practitioner
9 pages
Amazon: Exam Questions AWS-Solution-Architect-Associate
No ratings yet
Amazon: Exam Questions AWS-Solution-Architect-Associate
28 pages
Dump 3
No ratings yet
Dump 3
23 pages
Practice Test 6
No ratings yet
Practice Test 6
50 pages
Aindumps 2023-Sep-14 by Darnell 218q Vce
No ratings yet
Aindumps 2023-Sep-14 by Darnell 218q Vce
18 pages
AWS Certified Solutions Architect Professional - Exam Guide
No ratings yet
AWS Certified Solutions Architect Professional - Exam Guide
22 pages
AWS Certified Solutions Architect Associate Practice Test 6
No ratings yet
AWS Certified Solutions Architect Associate Practice Test 6
159 pages
AWS Certified Solutions Architect Associate Practice Test 5
No ratings yet
AWS Certified Solutions Architect Associate Practice Test 5
158 pages
User Manual: SM-A525F SM-A525F/DS SM-A526B SM-A526B/DS SM-A725F SM-A725F/DS
No ratings yet
User Manual: SM-A525F SM-A525F/DS SM-A526B SM-A526B/DS SM-A725F SM-A725F/DS
136 pages
The Python Tutorial - Python 3.8.6 Documentation
No ratings yet
The Python Tutorial - Python 3.8.6 Documentation
13 pages
AWS Certified Cloud Practitioner Exam 2018 PDF
No ratings yet
AWS Certified Cloud Practitioner Exam 2018 PDF
7 pages
Fadada
No ratings yet
Fadada
14 pages
Tiristor Presspca
No ratings yet
Tiristor Presspca
19 pages
NodOn TheSoftRemote ZWave UserGuide en
No ratings yet
NodOn TheSoftRemote ZWave UserGuide en
2 pages
AZ-900 PrepAway 222 v12.0
No ratings yet
AZ-900 PrepAway 222 v12.0
183 pages
How To Open Citrix From GlobalProtect Using Personal Computer
No ratings yet
How To Open Citrix From GlobalProtect Using Personal Computer
19 pages
Aws Certified Cloud Practitioner - 9
100% (1)
Aws Certified Cloud Practitioner - 9
28 pages
Klimax 210
No ratings yet
Klimax 210
6 pages
AWS Certified Advanced Networking - Specialty
No ratings yet
AWS Certified Advanced Networking - Specialty
5 pages
AWS Certified Cloud Practitioner Exam Dumps - myTechMint-job 6
No ratings yet
AWS Certified Cloud Practitioner Exam Dumps - myTechMint-job 6
31 pages
2nd Quarter Test css11
100% (1)
2nd Quarter Test css11
2 pages
Exam Question AWS (Test)
No ratings yet
Exam Question AWS (Test)
285 pages
CSE130 Asgn2 Winter23 v7-1
No ratings yet
CSE130 Asgn2 Winter23 v7-1
10 pages
FTAVIXAutonomic EN Dec 14 2021 08 36 28 38 PM - 20221027122941.297 - X
No ratings yet
FTAVIXAutonomic EN Dec 14 2021 08 36 28 38 PM - 20221027122941.297 - X
3 pages
AWS Certified Solutions Architect Associate Practice Test 03
No ratings yet
AWS Certified Solutions Architect Associate Practice Test 03
72 pages
HP 800 G2 SSF User Manual
No ratings yet
HP 800 G2 SSF User Manual
61 pages
AWS Practitioner EXAM 2
No ratings yet
AWS Practitioner EXAM 2
5 pages
Question Set 2
No ratings yet
Question Set 2
13 pages
AWS Certified Solutions Architect - Associate SAA-C03 Exam - Free Exam Q&As, Page 1 - ExamTopics
No ratings yet
AWS Certified Solutions Architect - Associate SAA-C03 Exam - Free Exam Q&As, Page 1 - ExamTopics
97 pages
AWS Cloud Final Updated Questions
No ratings yet
AWS Cloud Final Updated Questions
149 pages
AWS-Certified-Cloud-Practitioner Exam Dumps
No ratings yet
AWS-Certified-Cloud-Practitioner Exam Dumps
28 pages
Se Three Phase Inverter Datasheet
No ratings yet
Se Three Phase Inverter Datasheet
2 pages
UG - Imonitor iDX 4.3 - T0001399 - 31 - Oct - 2023 - Rev - 2
No ratings yet
UG - Imonitor iDX 4.3 - T0001399 - 31 - Oct - 2023 - Rev - 2
308 pages
AWS Certified Developer Associate - Exam Guide
No ratings yet
AWS Certified Developer Associate - Exam Guide
16 pages
TS Manual 2.5
No ratings yet
TS Manual 2.5
137 pages
Aws Certified Solutions Architect Associate Study Guide B08L1BC3QR
No ratings yet
Aws Certified Solutions Architect Associate Study Guide B08L1BC3QR
91 pages
cv0-003 9
No ratings yet
cv0-003 9
10 pages
Aws Certified Cloud Practitioner CLF c02 2024
No ratings yet
Aws Certified Cloud Practitioner CLF c02 2024
191 pages
Amazon Web Services Passguide Dop-C02 Simulations 2024-Apr-03 by Stan 68q Vce
No ratings yet
Amazon Web Services Passguide Dop-C02 Simulations 2024-Apr-03 by Stan 68q Vce
23 pages
SAA-C03 AWS Certified Solutions Architect - Associate Updated Dumps
No ratings yet
SAA-C03 AWS Certified Solutions Architect - Associate Updated Dumps
89 pages
Saa-C03 9
No ratings yet
Saa-C03 9
25 pages
Sample DevOps Resume
No ratings yet
Sample DevOps Resume
2 pages
AWS Certified Cloud Practitioner Exam - Free Exam Q&as, Page 1 - ExamTopics 1-500 18-May-2024
No ratings yet
AWS Certified Cloud Practitioner Exam - Free Exam Q&as, Page 1 - ExamTopics 1-500 18-May-2024
1,390 pages
Control Systems Pre Question Paper
No ratings yet
Control Systems Pre Question Paper
3 pages
AWS Certified Solutions Architect - Associate SAA-C03-250324-848q
No ratings yet
AWS Certified Solutions Architect - Associate SAA-C03-250324-848q
419 pages
CM65XX EEPROM Configuration Tool User Manual
No ratings yet
CM65XX EEPROM Configuration Tool User Manual
29 pages
Fusion Party V3 User Guide 27-12-2023
No ratings yet
Fusion Party V3 User Guide 27-12-2023
2 pages
SAA-C03 AWS Certified Solutions Architect - Associate Updated Dumps
No ratings yet
SAA-C03 AWS Certified Solutions Architect - Associate Updated Dumps
90 pages
Dip Lab
No ratings yet
Dip Lab
27 pages