AWS quiz questions

AWS interview questions

  • 1.

    How can you secure data at rest on an EBS volume?

    1. Attach the volume to an instance using EC2’s SSL interface.

    2.  Encrypt the volume using the S3 server-side encryption service.

    3. Create an IAM policy that restricts read and write access to the volume.

    4. Use an encrypted file system on top of the EBS volume.

    Answer
  • 2.

    The user just started an instance at 3 PM. Between 3 PM to 5 PM, he stopped and started the instance twice. During the same period, he has run the linux reboot command by ssh once and triggered reboot from AWS console once. For how many instance hours will AWS charge this user?

    1. 5

    2. 4

    3. 3

    4. 2

    Answer
  • 3.

    Which of the below mentioned steps will not be performed while creating the AMI of instance stored-backend?

    1. Upload the bundled volume.

    2. Bundle the volume.

    3. Register the AMI.

    4. Define the AMI launch permissions.

    Answer
  • 4.

    What cli tools does AWS provide

    1. AWS CLI.

    2. AWS Tools for Windows PowerShell.

    3. Amazon EC2 CLI.

    4. All of the three.

    Answer
  • 5.

    A startup company hired you to help them build a mobile application, that will ultimately store billions of images and videos in Amazon Simple Storage Service (S3). The company is lean on funding, and wants to minimize operational costs, however, they have an aggressive marketing plan, and expect to double their current installation base every six months. Due to the nature of their business, they are expecting sudden and large increases in traffic to and from S3, and need to ensure that it can handle the performance needs of their application. What other information must you gather from this customer in order to determine whether S3 is the right option?

    1. You must find out the total number of requests per second at peak usage.

    2. You must know the size of the individual objects being written to S3, in order to properly design the key namespace.

    3. You must know how many customers the company has today, because this is critical in understanding what their customer base will be in two years.

    4.  In order to build the key namespace correctly, you must understand the total amount of storage needs for each S3 bucket.

    Answer
  • 6.

    EC2 role

    1. Launch an instance with an AWS Identity and Aceess Management (IAM) role to restrict AWS API access for the instance.

    2. Setup an IAM user for the instance to restrict access to AWS API and assign it at launch.

    3. Setup an IAM group with restricted AWS API access and put the instance in the group at launch.

    4. Pass access AWS credentials in the User Data field when the instance is launched.

    Answer
  • 7.

    You have assigned one Elastic IP to your EC2 instance. Now we need to restart the VM without EIP changed. Which of below you should not do?

    1. When the instance is in VPC private subnet, stop/start works.

    2. Reboot the instance.

    3. Reboot and stop/start both works.

    4. When the instance is in VPC public subnets, stop/start works.

    Answer
  • 8.

    About the charge of Elastic IP Address, which of the following is true?

    1. You can have 5 Elastic IP addresses per region with no charge.

    2. Elastic IP addresses can always be used with no charge.

    3. You can have one Elastic IP (EIP) address associated with a running instance at no charge.

    4. You are charged for each Elastic IP addressed.

    Answer
  • 9.

    Placement Groups: enables applications to participate in a low-latency, 10 Gbps network. Which of below statements is false.

    1. You can move an existing instance into a placement group by specify parameter of placement group.

    2. A placement group can't span multiple Availability Zones.

    3. A placement group can span peered VPCs.

    4. Not all of the instance types that can be launched into a placement group.

    Answer
  • 10.

    What about below is false for AWS SLA

    1. RDS multi-AZ is guarantee to 99.95%.

    2. EBS availability is guarantee to 99.95%.

    3. S3 availability is guarantee to 99.95%.

    4. EC2 availability is guarantee to 99.95%.

    Answer
  • 11.

    Select the correct set of options. These are the initial settings for the default security group

    1. Allow all inbound traffic, Allow all outbound traffic and Does NOT allow instances associated with this security group to talk to each other.

    2. Allow no inbound traffic, Allow all outbound traffic and Allow instances associated with this security group to talk to each other.

    3. Allow all inbound traffic, Allow no outbound traffic and Allow instances associated with this security group to talk to each other.

    4. Allow no inbound traffic, Allow all outbound traffic and Does NOT allow instances associated with this security group to talk to each other.

    Answer
  • 12.

    An IAM user is trying to perform an action on an object belonging to some other root account’s bucket. Which of the below mentioned options will AWS S3 not verify?

    1. The object owner has provided access to the IAM user

    2. Permission provided by the bucket owner to the IAM user

    3. Permission provided by the parent of the IAM user on the bucket

    4. Permission provided by the parent of the IAM user

    Answer

© 2017 QuizBucket.org