AWS quiz questions

AWS interview questions

  • 1.

    Which of the following statements are true about Amazon Route 53 resource records? Choose 2 answers

    1. An Alias record can map one DNS name to another Amazon Route 53 DNS name.

    2. A CNAME record can be created for your zone apex.

    3. An Amazon Route 53 CNAME record can point to any DNS record hosted anywhere.

    4.  TTL can be set for an Alias record in Amazon Route 53.

    5. Use SSL to encrypt the data while in transit to Amazon S3.

    6. An Amazon Route 53 Alias record can point to any DNS record hosted anywhere.

    Answer
  • 2.

    Which of the following approaches provides the lowest cost for Amazon Elastic Block Store snapshots while giving you the ability to fully restore data?

    1. Maintain a single snapshot the latest snapshot is both Incremental and complete.

    2. Maintain two snapshots: the original snapshot and the latest incremental snapshot.

    3. Maintain a volume snapshot; subsequent snapshots will overwrite one another

    4. Maintain the most current snapshot, archive the original and incremental to Amazon Glacier.

    Answer
  • 3.

    Which of the following are true regarding AWS CloudTrail? Choose 3 answers

    1. CloudTrail is enabled by default

    2. Logs can be delivered to a single Amazon S3 bucket for aggregation

    3. Logs can only be processed and delivered to the region in which they are generated

    4. CloudTrail is enabled on a per-region basis

    5. CloudTrail is enabled globally

    6. CloudTrail is enabled for all available services within a region

    Answer
  • 4.

    A company has an AWS account that contains three VPCs (Dev, Test, and Prod) in the same region. Test is peered to both Prod and Dev. All VPCs have non overlapping CIDR blocks. The company wants to push minor code releases from Dev to Prod to speed up time to market. Which of the following options helps the company accomplish this?

    1.  The VPCs have non-overlapping CIDR blocks in the same account. The route tables contain local routes for all VPCs.

    2. Create a new entry to Prod in the Dev route table using the peering connection as the target.

    3. Create a new peering connection Between Prod and Dev along with appropriate routes.

    4. Attach a second gateway to Dev. Add a new entry in the Prod route table identifying the gateway as the target.

    Answer
  • 5.

    Company A has a S3 bucket containing premier content that they intend to make available to only paid subscribers of their website. The S3 bucket currently has default permissions of all objects being private to prevent inadvertent exposure of the premier content to non-paying website visitors. How can Company A provide only paid subscribers the ability to download a premier content file in the S3 bucket?

    1.  Apply a bucket policy that grants anonymous users to download the content from the S3 bucket

    2.  Generate a pre-signed object URL for the premier content file when a paid subscriber requests a download

    3. Add a bucket policy that requires Multi-Factor Authentication for requests to access the S3 bucket objects

    4. Enable server side encryption on the S3 bucket for data protection against the non-paying website visitors

    Answer
  • 6.

    If a message is retrieved from a queue in Amazon SQS, how long is the message inaccessible to other users by default?

    1. 45 Seconds

    2. 60 Seconds

    3. 30 Seconds

    Answer
  • 7.

    You have written an application that uses the Elastic Load Balancing service to spread traffic to several web servers. Your users complain that they are sometimes forced to login again in the middle of using your application, after they have already logged in. This is not behaviour you have designed. What is a possible solution to prevent this happening?

    1.  Use instance storage to save session state.

    2.  Use instance memory to save session state.

    3. Use Glacier to save session slate.

    4. Use EBS to save session state

    5. Use ElastiCache to save session state.

    Answer
  • 8.

    Regarding the attaching of ENI to an instance, what does ‘hot attach’ refer to?

    1. Attaching an ENI to an instance when it is starting

    2. Attaching an ENI to an instance when it is stopped.

    3. Attaching an ENI to an instance when it is running

    4. Attaching an ENI to an instance during the launch process

    Answer
  • 9.

    Which of the following are correct statements with policy evaluation logic in AWS Identity and Access Management? Choose 2 answers

    1.  An explicit allow overrides default deny.

    2. An explicit allow overrides an explicit deny Load Balancer

    3. By default, all requests are denied

    4. By default, all request are allowed

    5. An explicit deny does not override an explicit allow

    Answer
  • 10.

    Which of the following services are included at no additional cost with the use of the AWS platform? Choose 2 answers

    1. Simple Workflow Service

    2. CloudFormation

    3. Elastic Load Balancing

    4. Auto Scaling

    5. Simple Storage Service

    6. Elastic Compute Cloud

    Answer
  • 11.

    How can software determine the public and private IP addresses of the Amazon EC2 instance that it is running on?

    1. Query the appropriate Amazon CloudWatch metric.

    2. Use ipconfig or hostconfig command.

    3. Query the local instance userdata

    4. Query the local instance metadata

    Answer
  • 12.

    How is Amazon SNS different from Amazon SQS? choose 2 answers

    1. Amazon SQS provides flexibility for distributed components of applications to send and receive messages with requiring each component to be concurrently available.

    2. Amazon SNS allows applications to send time-critical messages to multiple subscribers through a “push” mechanism

    3.  Amazon SQS is a message queue service used by distributed applications to exchange messages through a polling model, and can be used to decouple sending and receiving components

    4. Amazon SNS allows applications to send time-critical messages to multiple subscribers through a “pull” mechanism

    5.  Amazon SQS is a message queue service used by distributed applications to exchange messages through a push model, and can be used to decouple sending and receiving components

    Answer
  • 13.

    Which of the following are valid SNS delivery transports? Choose 3 answers

    1. SOAP

    2. SMS

    3. UDP

    4. Email

    5. SQS

    Answer
  • 14.

    Which of the following statements about SWF are true? Choose 3 answers

    1. SWF requires an S3 bucket for workflow storage

    2. SWF requires at least 1 EC2 instance per domain

    3. SWF triggers SNS notifications on task assignment

    4. SWF workflow executions can last up to a year

    5. SWF uses deciders and workers to complete tasks

    6. SWF tasks are assigned once and never duplicated

    Answer
  • 15.

    Which of the following statements about SQS is true?

    1. Messages will be delivered exactly once and messages will be delivered in Last in, First out order

    2. Messages will be delivered exactly once and messages will be delivered in First in, First out order

    3. Messages will be delivered exactly once and message delivery order is indeterminate

    4. Messages will be delivered one or more times and message delivery order is indeterminate

    Answer
  • 16.

    What is the maximum number of S3 Buckets available per AWS account?

    1. 100 per IAM user

    2. 100 per account

    3. 200 per region

    4. 100 per region

    Answer
  • 17.

    What happens, by default, when one of the resources in a CloudFormation stack cannot be created?

    1. CloudFormation templates are parsed in advance so stack creation is guaranteed to succeed.

    2. Previously-created resources are kept but the stack creation terminates.

    3. The stack creation continues, and the final results indicate which steps failed.

    4. Previously-created resources are deleted and the stack creation terminates.

    Answer
  • 18.

    Which statements about DynamoDB are true? Choose 2 answers

    1. DynamoDB uses optimistic concurrency control

    2. DynamoDB uses conditional writes for consistency

    3. DynamoDB uses a pessimistic locking model

    4. DynamoDB restricts item access during reads

    5. DynamoDB restricts item access during writes

    Answer
  • 19.

    EC2 instances are launched from Amazon Machine images (AMIS). A given public AMI can:

    1. be used to launch EC2 Instances in any AWS region

    2. only be used to launch EC2 instances in the same AWS region as the AMI is stored.

    3. only be used to launch EC2 instances in the same AWS availability zone as the AMI is stored

    4. only be used to launch EC2 instances in the same country as the AMI is stored

    Answer
  • 20.

    What is the type of monitoring data (for Amazon EBS volumes) available automatically in 5-minute periods at no charge called?

    1. Detailed

    2. Basic

    3. Primary

    4. Licensed

    Answer

© 2017 QuizBucket.org