Published - Fri, 03 Mar 2023
AWS Certified Cloud Practitioner Certification - Part 34
1. Which architectural principle is used when deploying an Amazon Relational Database Service (Amazon RDS) instance in Multiple Availability Zone mode?
A) A. Implement loose coupling.
B) B. Design for failure.
C) C. Automate everything that can be automated.
D) D. Use services, not servers.
2. What does it mean to grant least privilege to AWS IAM users?
A) A. It is granting permissions to a single user only.
B) B. It is granting permissions using AWS IAM policies only.
C) C. It is granting AdministratorAccess policy permissions to trustworthy users.
D) D. It is granting only the permissions required to perform a given task.
3. What is a benefit of loose coupling as a principle of cloud architecture design?
A) A. It facilitates low-latency request handling.
B) B. It allows applications to have dependent workflows.
C) C. It prevents cascading failures between different components.
D) D. It allows companies to focus on their physical data center operations.
4. A director has been tasked with investigating hybrid cloud architecture. The company currently accesses AWS over the public internet. Which service will facilitate private hybrid connectivity?
A) A. Amazon Virtual Private Cloud (Amazon VPC) NAT Gateway
B) B. AWS Direct Connect
C) C. Amazon Simple Storage Service (Amazon S3) Transfer Acceleration
D) D. AWS Web Application Firewall (AWS WAF)
5. A company's web application currently has tight dependencies on underlying components, so when one component fails the entire web application fails. Applying which AWS Cloud design principle will address the current design issue?
A) A. Implementing elasticity, enabling the application to scale up or scale down as demand changes.
B) B. Enabling several EC2 instances to run in parallel to achieve better performance.
C) C. Focusing on decoupling components by isolating them and ensuring individual components can function when other components fail.
D) D. Doubling EC2 computing resources to increase system fault tolerance.
A) A. Implement loose coupling.
B) B. Design for failure.
C) C. Automate everything that can be automated.
D) D. Use services, not servers.
2. What does it mean to grant least privilege to AWS IAM users?
A) A. It is granting permissions to a single user only.
B) B. It is granting permissions using AWS IAM policies only.
C) C. It is granting AdministratorAccess policy permissions to trustworthy users.
D) D. It is granting only the permissions required to perform a given task.
3. What is a benefit of loose coupling as a principle of cloud architecture design?
A) A. It facilitates low-latency request handling.
B) B. It allows applications to have dependent workflows.
C) C. It prevents cascading failures between different components.
D) D. It allows companies to focus on their physical data center operations.
4. A director has been tasked with investigating hybrid cloud architecture. The company currently accesses AWS over the public internet. Which service will facilitate private hybrid connectivity?
A) A. Amazon Virtual Private Cloud (Amazon VPC) NAT Gateway
B) B. AWS Direct Connect
C) C. Amazon Simple Storage Service (Amazon S3) Transfer Acceleration
D) D. AWS Web Application Firewall (AWS WAF)
5. A company's web application currently has tight dependencies on underlying components, so when one component fails the entire web application fails. Applying which AWS Cloud design principle will address the current design issue?
A) A. Implementing elasticity, enabling the application to scale up or scale down as demand changes.
B) B. Enabling several EC2 instances to run in parallel to achieve better performance.
C) C. Focusing on decoupling components by isolating them and ensuring individual components can function when other components fail.
D) D. Doubling EC2 computing resources to increase system fault tolerance.
1. Right Answer: B
Explanation: Amazon RDS Multi-AZ deployments provide enhanced availability and durability for Database (DB) Instances, making them a natural fit for production database workloads. When you provision a Multi-AZ DB Instance, Amazon RDS automatically creates a primary DB Instance and synchronously replicates the data to a standby instance in a different Availability Zone (AZ). Each AZ runs on its own physically distinct, independent infrastructure, and is engineered to be highly reliable. In case of an infrastructure failure, Amazon RDS performs an automatic failover to the standby (or to a read replica in the case of Amazon Aurora), so that you can resume database operations as soon as the failover is complete. Since the endpoint for your DB Instance remains the same after a failover, your application can resume database operation without the need for manual administrative intervention.https://aws.amazon.com/rds/details/multi-az/
2. Right Answer: D
Explanation: When you create IAM policies, follow the standard security advice of granting least privilege, or granting only the permissions required to perform a task. Determine what users (and roles) need to do and then craft policies that allow them to perform only those tasks.https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#grant-least-privilege
3. Right Answer: C
Explanation: IT systems should ideally be designed in a way that reduces inter-dependencies. Your components need to be loosely coupled to avoid changes or failure in one of the components from affecting others. Your infrastructure also needs to have well defined interfaces that allow the various components to interact with each other only through specific, technology-agnostic interfaces. Modifying any underlying operations without affecting other components should be made possible.https://www.botmetric.com/blog/aws-cloud-architecture-design-principles/
4. Right Answer: B
Explanation: Amazon VPC provides multiple network connectivity options for you to leverage depending on your current network designs and requirements. These connectivity options include leveraging either the internet or an AWS Direct Connect connection as the network backbone and terminating the connection into either AWS or usermanaged network endpoints. Additionally, with AWS, you can choose how network routing is delivered between Amazon VPC and your networks, leveraging either AWS or user-managed network equipment and routes.https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/introduction.html
5. Right Answer: C
Explanation:
Explanation: Amazon RDS Multi-AZ deployments provide enhanced availability and durability for Database (DB) Instances, making them a natural fit for production database workloads. When you provision a Multi-AZ DB Instance, Amazon RDS automatically creates a primary DB Instance and synchronously replicates the data to a standby instance in a different Availability Zone (AZ). Each AZ runs on its own physically distinct, independent infrastructure, and is engineered to be highly reliable. In case of an infrastructure failure, Amazon RDS performs an automatic failover to the standby (or to a read replica in the case of Amazon Aurora), so that you can resume database operations as soon as the failover is complete. Since the endpoint for your DB Instance remains the same after a failover, your application can resume database operation without the need for manual administrative intervention.https://aws.amazon.com/rds/details/multi-az/
2. Right Answer: D
Explanation: When you create IAM policies, follow the standard security advice of granting least privilege, or granting only the permissions required to perform a task. Determine what users (and roles) need to do and then craft policies that allow them to perform only those tasks.https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#grant-least-privilege
3. Right Answer: C
Explanation: IT systems should ideally be designed in a way that reduces inter-dependencies. Your components need to be loosely coupled to avoid changes or failure in one of the components from affecting others. Your infrastructure also needs to have well defined interfaces that allow the various components to interact with each other only through specific, technology-agnostic interfaces. Modifying any underlying operations without affecting other components should be made possible.https://www.botmetric.com/blog/aws-cloud-architecture-design-principles/
4. Right Answer: B
Explanation: Amazon VPC provides multiple network connectivity options for you to leverage depending on your current network designs and requirements. These connectivity options include leveraging either the internet or an AWS Direct Connect connection as the network backbone and terminating the connection into either AWS or usermanaged network endpoints. Additionally, with AWS, you can choose how network routing is delivered between Amazon VPC and your networks, leveraging either AWS or user-managed network equipment and routes.https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/introduction.html
5. Right Answer: C
Explanation:
Created by
Comments (0)
Search
Popular categories
Latest blogs
CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Write a public review