AWS EXAM FOR CLOUD PRACTITIONER

1. One benefit of On-Demand Amazon Elastic Compute Cloud (Amazon EC2) pricing is:
 A. the ability to bid for a lower hourly cost.
 B. paying a daily rate regardless of time used.
 C. paying only for time used.
 D. pre-paying for instances and paying a lower hourly rate.

2 An administrator needs to rapidly deploy a popular IT solution and start using it

immediately where can the administrator find assistance?
 A. AWS Well-Architected Framework documentation
 B. Amazon CloudFront
 C. AWS CodeCommit
 D. AWS Quick Start reference deployments

3 Which of the following services is in the category of AWS serverless platform?

 A. Amazon EMR
 B. Elastic Load Balancing
 C. AWS Lambda
 D. AWS Mobile Hub

4 Which services are parts of the AWS serverless platform?

 A. Amazon EC2, Amazon S3, Amazon Athena
 B. Amazon Kinesis, Amazon SQS, Amazon EMR
 C. AWS Step Functions, Amazon DynamoDB, Amazon SNS
 D. Amazon Athena, Amazon Cognito, Amazon EC2

5 According to the AWS shared responsibility model, what is the sole responsibility of AWS?
 A. Application security
 B. Edge location management
 C. Patch management
 D. Client-side data

6 Which AWS IAM feature is used to associate a set of permissions with multiple users?
 A. Multi-factor authentication
 B. Groups
 C. Password policies
 D. Access keys
7 Which of the following are benefits of the AWS Cloud? (Choose two.)
 A. Unlimited uptime
 B. Elasticity
 C. Agility
 D. Colocation
 E. Capital expenses

8 Which of the following can a customer use to enable single sign-on (SSO) to the AWS
Console?
 A. Amazon Connect
 B. AWS Directory Service
 C. Amazon Pinpoint
 D. Amazon Rekognition

9 What are the multiple, isolated locations within an AWS Region that are connected by
low-latency networks called?
 A. AWS Direct Connects
 B. Amazon VPCs
 C. Edge locations
 D. Availability Zones

10 Which of the following benefits does the AWS Compliance program provide to AWS
customers? (Choose two.)
 A. It verifies that hosted workloads are automatically compliant with the controls of
supported compliance frameworks.
 B. AWS is responsible for the maintenance of common compliance framework
documentation.
 C. It assures customers that AWS is maintaining physical security and data protection.
 D. It ensures the use of compliance frameworks that are being used by other cloud
providers.
 E. It will adopt new compliance frameworks as they become relevant to
customer workloads

11 Which of the following services provides on-demand access to AWS compliance

reports?
 A. AWS IAM
 B. AWS Artifact
 C. Amazon GuardDuty
 D. AWS KMS
12 As part of the AWS shared responsibility model, which of the following operational
controls do users fully inherit from AWS?
 A. Security management of data center
 B. Patch management
 C. Configuration management
 D. User and access management

13 When comparing AWS Cloud with on-premises Total Cost of Ownership, which expenses must
be considered? (Choose two.)
 A. Software development
 B. Project management
 C. Storage hardware
 D. Physical servers
 E. Antivirus software license

14 Under the shared responsibility model, which of the following tasks are the responsibility of
the customer? (Choose two.)
 A. Maintaining the underlying Amazon EC2 hardware.
 B. Managing the VPC network access control lists.
 C. Encrypting data in transit and at rest.
 D. Replacing failed hard disk drives.
 E. Deploying hardware in different Availability Zones.

15 Which scenarios represent the concept of elasticity on AWS? (Choose two.)

 A. Scaling the number of Amazon EC2 instances based on traffic.
 B. Resizing Amazon RDS instances as business needs change.
 C. Automatically directing traffic to less-utilized Amazon EC2 instances.
 D. Using AWS compliance documents to accelerate the compliance process.
 E. Having the ability to create and govern environments using code.

16 When is it beneficial for a company to use a Spot Instance?

 A. When there is flexibility in when an application needs to run
 B. When there are mission-critical workloads.
 C. When dedicated capacity is needed.
 D. When an instance should not be stopped.

17 A company is considering moving its on-premises data center to AWS. What factors should
be included in doing a Total Cost of Ownership (TCO) analysis? (Choose two.)
  A. Amazon EC2 instance availability
 B. Power consumption of the data center
 C. Labor costs to replace old servers
 D. Application developer time
 E. Database engine capacity

18 How does AWS charge for AWS Lambda?

 A. Users bid on the maximum price they are willing to pay per hour.
 B. Users choose a 1-, 3- or 5-year upfront payment term.
 C. Users pay for the required permanent storage on a file system or in a database.
 D. Users pay based on the number of requests and consumed compute resources.

20 What function do security groups serve related Amazon Elastic Compute Cloud (Amazon EC2)
instance security?
 A. Act as a virtual firewall for the Amazon EC2 instance.
 B. Secure AWS user accounts with AWS identity and Access Management (IAM) policies.
 C. Provide DDoS protection with AWS Shield.
 D. Use Amazon CloudFront to protect the Amazon EC2 instance.

21 Which disaster recovery scenario offers the lowest probability of down time?
 A. Backup and restore
 B. Pilot light
 C. Warm standby
 D. Multi-site active-active

22 What will help a company perform a cost benefit analysis of migrating to the AWS Cloud?
 A. Cost Explorer
 B. AWS Total Cost of Ownership (TCO) Calculator
 C. AWS Pricing Calculator
 D. AWS Trusted Advisor

23 Which of the following provides the ability to share the cost benefits of Reserved
Instances across AWS accounts?
 A. AWS Cost Explorer between AWS accounts
 B. Linked accounts and consolidated billing
 C. Amazon Elastic Compute Cloud (Amazon EC2) Reserved Instance Utilization Report
 D. Amazon EC2 Instance Usage Report between AWS accounts
24 A company has multiple AWS accounts and wants to simplify and consolidate its billing
process. Which AWS service will achieve this?
 A. AWS Cost and Usage Reports
 B. AWS Organizations
 C. AWS Cost Explorer
 D. AWS Budgets

25 A company is designing an application hosted in a single AWS Region serving end- users
spread across the world. The company wants to provide the end-users low latency access to the
application data. Which of the following services will help fulfill this requirement?
 A. Amazon CloudFront
 B. AWS Direct Connect
 C. Amazon Route 53 global DNS
 D. Amazon Simple Storage Service (Amazon S3) transfer acceleration

26 Which of the following deployment models enables customers to fully trade their capital
IT expenses for operational expenses?
 A. On-premises
 B. Hybrid
 C. Cloud
 D. Platform as a service

27 How is asset management on AWS easier than asset management in a physical data center?
 A. AWS provides a Configuration Management Database that users can maintain.
 B. AWS performs infrastructure discovery scans on the customer's behalf.
 C. Amazon EC2 automatically generates an asset report and places it in the customer's
specified Amazon S3 bucket.
 D. Users can gather asset metadata reliably with a few API calls.

28 What feature of Amazon RDS helps to create globally redundant databases?

 A. Snapshots
 B. Automatic patching and updating
 C. Cross-Region read replicas
 D. Provisioned IOPS

29 Which methods can be used to identify AWS costs by departments? (Choose two.)
 A. Enable multi-factor authentication for the AWS account root user.
 B. Create separate accounts for each department.
 C. Use Reserved Instances whenever possible.
 D. Use tags to associate each instance with a particular department.
  E. Pay bills using purchase orders.

30 Under the AWS shared responsibility model, customer responsibilities include which one of
the following?
 A. Securing the hardware, software, facilities, and networks that run all products and
services.
 B. Providing certificates, reports, and other documentation directly to AWS customers
under NDA.
 C. Configuring the operating system, network, and firewall.
 D. Obtaining industry certifications and independent third-party attestations.

31 Which managed AWS service provides real-time guidance on AWS security best
practices?
 A. AWS X-Ray
 B. AWS Trusted Advisor
 C. Amazon CloudWatch
 D. AWS Systems Manager

32 Which feature adds elasticity to Amazon EC2 instances to handle the changing demand for
workloads?
 A. Resource groups
 B. Lifecycle policies
 C. Application Load Balancer
 D. Amazon EC2 Auto Scaling

33 Under the AWS shared responsibility model, customers are responsible for which aspects
of security in the cloud? (Choose two.)
 A. Visualization management
 B. Hardware management
 C. Encryption management
 D. Facilities management
 E. Firewall management

34 Which AWS hybrid storage service enables on-premises applications to seamlessly use
AWS Cloud storage through standard file-storage protocols?
 A. AWS Direct Connect
 B. AWS Snowball
 C. AWS Storage Gateway
 D. AWS Snowball Edge
35 Which AWS hybrid storage service enables on-premises applications to seamlessly use
AWS Cloud storage through standard file-storage protocols?
 A. AWS Direct Connect
 B. AWS Snowball
 C. AWS Storage Gateway
 D. AWS Snowball Edge

36 What is a responsibility of AWS in the shared responsibility model?

 A. Updating the network ACLs to block traffic to vulnerable ports.
 B. Patching operating systems running on Amazon EC2 instances.
 C. Updating the firmware on the underlying EC2 hosts.
 D. Updating the security group rules to block traffic to the vulnerable ports.

37 Which architectural principle is used when deploying an Amazon Relational Database Service
(Amazon RDS) instance in Multiple Availability Zone mode?
 A. Implement loose coupling.
 B. Design for failure.
 C. Automate everything that can be automated.
 D. Use services, not servers.

38 What does it mean to grant least privilege to AWS IAM users?

 A. It is granting permissions to a single user only.
 B. It is granting permissions using AWS IAM policies only.
 C. It is granting Administrator Access policy permissions to trustworthy users.
 D. It is granting only the permissions required to perform a given task.

39 A director has been tasked with investigating hybrid cloud architecture. The company
currently accesses AWS over the public internet. Which service will facilitate private hybrid
connectivity?
 A. Amazon Virtual Private Cloud (Amazon VPC) NAT Gateway
 B. AWS Direct Connect
 C. Amazon Simple Storage Service (Amazon S3) Transfer Acceleration
 D. AWS Web Application Firewall (AWS WAF)
40 A company's web application currently has tight dependencies on underlying components, so
when one component fails the entire web application fails. Applying which AWS Cloud design
principle will address the current design issue?
 A. Implementing elasticity, enabling the application to scale up or scale down as demand
changes.
 B. Enabling several EC2 instances to run in parallel to achieve better performance.
 C. Focusing on decoupling components by isolating them and ensuring individual
components can function when other components fail.
 D. Doubling EC2 computing resources to increase system fault tolerance.

41 How can a customer increase security to AWS account logons? (Choose two.)
 A. Configure AWS Certificate Manager
 B. Enable Multi-Factor Authentication (MFA)
 C. Use Amazon Cognito to manage access
 D. Configure a strong password policy
 E. Enable AWS Organizations

42 What AWS service would be used to centrally manage AWS access across multiple
accounts?
 A. AWS Service Catalog
 B. AWS Config
 C. AWS Trusted Advisor
 D. AWS Organizations

43 Which AWS service can a customer use to set up an alert notification when the account is
approaching a particular dollar amount?
 A. AWS Cost and Usage reports
 B. AWS Budgets
 C. AWS Cost Explorer
 D. AWS Trusted Advisor

44 What can users access from AWS Artifact?

 A. AWS security and compliance documents
 B. A download of configuration management details for all AWS resources
 C. Training materials for AWS services
 D. A security assessment of the applications deployed in the AWS Cloud
45 Which of the following is an AWS Well-Architected Framework design principle related to
reliability?
 A. Deployment to a single Availability Zone
 B. Ability to recover from failure
 C. Design for cost optimization
 D. Perform operations as code

46 Which type of AWS storage is ephemeral and is deleted when an instance is stopped or
terminated?
 A. Amazon EBS
 B. Amazon EC2 instance store
 C. Amazon EFS
 D. Amazon S3

47 What is an advantage of using the AWS Cloud over a traditional on-premises solution?
 A. Users do not have to guess about future capacity needs.
 B. Users can utilize existing hardware contracts for purchases.
 C. Users can fix costs no matter what their traffic is.
 D. Users can avoid audits by using reports from AWS.

48 Which of the following is an AWS-managed compute service?

 A. Amazon SWF
 B. Amazon EC2
 C. AWS Lambda
 D. Amazon Aurora

49 Which of the following is an AWS-managed compute service?

 A. Amazon SWF
 B. Amazon EC2
 C. AWS Lambda
 D. Amazon Aurora

50 Which of the following is an important architectural principle when designing cloud

applications?
 A. Store data and backups in the same region.
 B. Design tightly coupled system components.
 C. Avoid multi-threading.
 D. Design for failure
51 Which mechanism allows developers to access AWS services from application code?
 A. AWS Software Development Kit
 B. AWS Management Console
 C. AWS CodePipeline
 D. AWS Config

52 Which Amazon EC2 pricing model is the MOST cost efficient for an uninterruptible
workload that runs once a year for 24 hours?
 A. On-Demand Instances
 B. Reserved Instances
 C. Spot Instances
 D. Dedicated Instances

53 Which of the following services allows running of a MySQL-compatible database that

automatically grows storage as needed? (Choose two)
 A. Amazon Elastic Compute Cloud (Amazon EC2)
 B. Amazon Relational Database Service (Amazon RDS) for MySQL
 C. Amazon Lightsail
 D. Amazon Aurora

54 Which Amazon Virtual Private Cloud (Amazon VPC) feature enables users to connect two
VPCs together?
 A. Amazon VPC endpoints
 B. Amazon Elastic Compute Cloud (Amazon EC2) ClassicLink
 C. Amazon VPC peering
 D. AWS Direct Connect

55 Which service's PRIMARY purpose is software version control?

 A. Amazon CodeStar
 B. AWS Command Line Interface (AWS CLI)
 C. Amazon Cognito
 D. AWS CodeCommit

56 A company is considering migrating its applications to AWS. The company wants to

compare the cost of running the workload on-premises to running the equivalent
workload on the AWS platform. Which tool can be used to perform this comparison?
 A. AWS Pricing Calculator
 B. AWS Total Cost of Ownership (TCO) Calculator
 C. AWS Billing and Cost Management console
  D. Cost Explorer

57 Which AWS service provides a secure, fast, and cost-effective way to migrate or
transport exabyte-scale datasets into AWS?
 A. AWS Batch
 B. AWS Snowball
 C. AWS Migration Hub
 D. AWS Snowmobile

58 Which of the following BEST describe the AWS pricing model? (Choose two.)
 A. Fixed-term
 B. Pay-as-you-go
 C. Colocation
 D. Planned
 E. Variable cost

59 Which load balancer types are available with Elastic Load Balancing (ELB)? (Choose two.)
 A. Public load balancers with AWS Application Auto Scaling capabilities
 B. F5 Big-IP and Citrix NetScaler load balancers
 C. Classic Load Balancers
 D. Cross-zone load balancers with public and private IPs
 E. Application Load Balancers

60 Why should a company choose AWS instead of a traditional data center?

 A. AWS provides users with full control over the underlying resources.
 B. AWS does not require long-term contracts and provides a pay-as-you-go model.
 C. AWS offers edge locations in every country, supporting global reach.
 D. AWS has no limits on the number of resources that can be created.

61 Which solution provides the FASTEST application response times to frequently accessed data
to users in multiple AWS Regions?
 A. AWS CloudTrail across multiple Availability Zones
 B. Amazon CloudFront to edge locations
 C. AWS CloudFormation in multiple regions
 D. A virtual private gateway over AWS Direct Connect

62 Which of the following AWS services can be used to run a self-managed database?
  A. Amazon Route 53
 B. AWS X-Ray
 C. AWS Snowmobile
 D. Amazon Elastic Compute Cloud (Amazon EC2)

63 What exclusive benefit is provided to users with Enterprise Support?

 A. Access to a Technical Project Manager
 B. Access to a Technical Account Manager
 C. Access to a Cloud Support Engineer
 D. Access to a Solutions Architect

64 How can a user protect against AWS service disruptions if a natural disaster affects an entire
geographic area?
 A. Deploy applications across multiple Availability Zones within an AWS Region.
 B. Use a hybrid cloud computing deployment model within the geographic area.
 C. Deploy applications across multiple AWS Regions.
 D. Store application artifacts using AWS Artifact and replicate them across multiple AWS
Regions.

65 How does AWS MOST effectively reduce computing costs for a growing start-up
company?
 A. It provides on-demand resources for peak usage.
 B. It automates the provisioning of individual developer environments.
 C. It automates customer relationship management.
 D. It implements a fixed monthly computing budget.