CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
AWS Cloud Practitioner Questions 2022 - Part 18
1. As a Cloud Architect, you are responsible for preparing the migration strategy and designing the network architecture. Select all possible connectivity options for Amazon VPC from below. (select 3)(Select 3answers)
A) Your corporate data center using an AWS Site-to-Site VPN connection - via the Virtual Private Gateway.
B) Both the internet and your corporate data center - utilizing both an Internet Gateway and a Virtual Private Gateway)
C) The internet - via an Internet Gateway.
D) Using Amazon API Gateway
E) Using Kerberos.
2. Your e-commerce application needs access to a specific Amazon S3 bucket. The application will run on EC2 instance. What should you do to give the application access to the bucket securely?
A) You should attach an IAM role to the EC2 instance with a policy that grants it access to the Amazon S3 bucket.
B) You should grant access to the S3 bucket using Access Control List (ACL).
C) You should store your access key and secret access key on the EC2 instance.
D) You should use S3 bucket policies to make the bucket public.
3. Imagine you are responsible for the architecture of your company's cloud resources and need to take care of security using Amazon RDS. Select all true statements. (select 2)(Select 2answers)
A) Amazon Cognito is used to control who can access the database instance.
B) Amazon VPC is used to isolate database from the internet traffic.
C) Data is not encrypted at rest by default.
D) Security groups are used to control access to the database instance.
4. Your compliance department is concerning about new cloud infrastructure that your company has started using. You want to give them access to AWS security and compliance reports and online agreements. Which AWS service should you recommend to your compliance department?
A) They should use AWS Shield.
B) They should use AWS Trusted Advisor.
C) They should use AWS Artifact.
D) They should use Amazon Inspector.
5. As a Data Engineer, you need to design a fault-tolerant storage solution for your workloads. You don't know which storage class to choose. Which of the following access patterns works best with S3 Intelligent-Tiering? (select 2)(Select 2answers)
A) Weekly data access patterns
B) Long term storage access patterns
C) Unpredictable access patterns
D) Unknown access patterns
E) Daily access data patterns
A) Your corporate data center using an AWS Site-to-Site VPN connection - via the Virtual Private Gateway.
B) Both the internet and your corporate data center - utilizing both an Internet Gateway and a Virtual Private Gateway)
C) The internet - via an Internet Gateway.
D) Using Amazon API Gateway
E) Using Kerberos.
2. Your e-commerce application needs access to a specific Amazon S3 bucket. The application will run on EC2 instance. What should you do to give the application access to the bucket securely?
A) You should attach an IAM role to the EC2 instance with a policy that grants it access to the Amazon S3 bucket.
B) You should grant access to the S3 bucket using Access Control List (ACL).
C) You should store your access key and secret access key on the EC2 instance.
D) You should use S3 bucket policies to make the bucket public.
3. Imagine you are responsible for the architecture of your company's cloud resources and need to take care of security using Amazon RDS. Select all true statements. (select 2)(Select 2answers)
A) Amazon Cognito is used to control who can access the database instance.
B) Amazon VPC is used to isolate database from the internet traffic.
C) Data is not encrypted at rest by default.
D) Security groups are used to control access to the database instance.
4. Your compliance department is concerning about new cloud infrastructure that your company has started using. You want to give them access to AWS security and compliance reports and online agreements. Which AWS service should you recommend to your compliance department?
A) They should use AWS Shield.
B) They should use AWS Trusted Advisor.
C) They should use AWS Artifact.
D) They should use Amazon Inspector.
5. As a Data Engineer, you need to design a fault-tolerant storage solution for your workloads. You don't know which storage class to choose. Which of the following access patterns works best with S3 Intelligent-Tiering? (select 2)(Select 2answers)
A) Weekly data access patterns
B) Long term storage access patterns
C) Unpredictable access patterns
D) Unknown access patterns
E) Daily access data patterns
1. Right Answer: A,B,C
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: B,D
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: C,D
Explanation:
Explanation:
2. Right Answer: A
Explanation:
3. Right Answer: B,D
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: C,D
Explanation:
Tags:
free aws exam machine learning aws machine learning speciality 2023 exam questions cloud exam cloud practitioner0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment