Prepare for the AWS Certified Cloud Practitioner exam with these practice questions and answers. This guide covers cloud concepts, AWS services, security, and pricing models.
Q: Delete root access keys, activate MFA on root account, apply IAM password policy, use groups to assign permissions, create individual IAM users
Answer: Best Practices for Securing Root AWS Account
Q: Federated Access
Answer: To grant users access to AWS services with corporate directory
Q: User Authorized, then Autheniticated
Answer: The order a user is granted access to AWS services
Q: Compliance with Laws & Regulations, Certifications/Attestations
Answer: Components of the AWS Assurance Program
Q: Risk Management, Control Environment, Information Security
Answer: Components of the AWS Risk and Compliance Program
Q: Roles, Groups, Permissions, Users
Answer: Components of IAM
Q: 7
Answer: AWS WAF can go down to which OSI layer
Q: True
Answer: AWS is responsible for the security of managed Foundation Servers, such as RDS
Q: IN
Answer: Users are responsible for security ___ the cloud
Q: OF
Answer: AWS is responsible for security ___ the cloud
Q: HIPAA
Answer: Which Compliance guarantees attests to the fact that the AWS platform has met the standard required for the secure storage of medical records in the US
Q: AWS Trusted Advisor
Answer: Which service will help optimize your entire AWS environment in real time following AWS best practices
Q: AWS Shield
Answer: What is AWS’ managed DDoS protection service
Q: AWS Concierge
Answer: Which AWS support panel should you contact if you are an AWS Enterprise customer with questions about billing and your overall AWS account
Q: AURI, PURI, NURI
Answer: Payment options for Reserved Instances
Q: 20
Answer: Maximum number of Linked Accounts per Paying Account under Consolidated Billing
Q: VPC, Auto-Scaling, CloudFormation, Elastic Beanstalk, IAM
Answer: Free AWS Services
Q: On-Demand, Reserved, Spot, Dedicated Hosts
Answer: EC2 pricing options
Q: Collection of resources that share one or more tags (or portions of tags)
Answer: Resource Group
Q: Enterprise
Answer: AWS Support level with a TAM
Q: Billing Support
Answer: All accounts receive this support service as a standard
Q: Number of requests, additional storage, clock hours of server time
Answer: RDS billing criteria
Q: Elasticity
Answer: The ability to scale computing resources up and down easily, while only paying for the resources used
Q: Assuming everything will fail, scalability, disposable resources, infrastructure as code
Answer: Principles of sound cloud design
Q: Stop guessing about your capacity requirements, scale horizontally
Answer: Principles of sound design when it comes to reliability
Q: Multi-Region
Answer: Which deployment strategy should you follow if you have a mission-critical application which must be globally available at all times
Q: A geographical area divided into AZs. Each contains at least two AZs
Answer: AWS Regions
Q: Variable expense, increased speed and agility, elasticity, go global in minutes
Answer: Advantages of Cloud Computing
Q: Democratize advanced technologies, use serverless architectures, deploy into multiple regions to go global in minutes
Answer: Principles of sound design when it comes to performance efficiency
Q: Regions, AZs, Edge Locations
Answer: AWS Global Infrastructure
Q: Fault-tolerant
Answer: A system that will remain operational even in the even of a component failure
Q: Public, Hybrid, Private
Answer: Cloud Computing Deployments
Q: Highly Available
Answer: A system that is always available, without the need for human intervention
Q: AZ
Answer: Collection of data centers within a specific region
Q: 2
Answer: Minimum number of AZs per region
Q: Business, Enterprise
Answer: Support plans with unlimited contacts and unlimited support cases
Q: Elastic Beanstalk
Answer: Allows you to select both your instance type and your database
Q: ALB 1st selects a target based on a routing rule, then uses a Round-Robin strategy to select a node – Classic uses Round-Robin for TCP listeners only
Answer: AWS Load Balancer types that use a Round-Robin load distribution strategy
Q: Storing application assets, Static web hosting
Answer: Common use cases for S3 include:
Q: True
Answer: Auto Scaling allows you to add or remove EC2 instances from your EC2 fleet based on conditions you specify
Q: Edge Locations
Answer: S3 Transfer Acceleration uses AWS’ network of ___ to more quickly get your data into AWS
Q: Create individual IAM users, activate MFA on root account, use roles to delegate access to IAM users
Answer: Steps you should take in securing your AWS account
Q: AWS Snowball, AWS Application Discovery Service
Answer: Migration Services
Q: Lambda
Answer: Serverless technology that allows you to run your code without provisioning a computing infrastructure
Q: No
Answer: Is there a limit to the number of objects you can put into S3
Q: No
Answer: Can S3 host a dynamic website, like one that runs on a LAMP stack
Q: Fault tolerance, security, cost optimization, performance
Answer: Categories that AWS Trusted Advisor provides best practices and/or checks of your AWS environment
Q: Management Console, SDK, Command Line
Answer: Valid access types for an IAM user
Q: Auto Scaling
Answer: What AWS Service is an automated resource provisioning
Q: JSON
Answer: IAM policies are written using ___
Q: Glacier
Answer: Data archival service that is extremely inexpensive but has a multi hour data retrieval window
Q: Re-create the volume from a snapshot
Answer: How to re-create an EBS volume that you previously used
Q: True
Answer: With DynamoDB, you can specify the amount of throughput you need for read/write operations
Q: AWS Trusted Advisor
Answer: What AWS Services can assist you with cost optimization
Q: DynamoDB
Answer: What is AWS’ managed NoSQL database
Q: True
Answer: By default, all subnets
Q: Public IP Address
Answer: What does an EC2 instance in your VPC need for the Internet Gateway to route its traffic to the internet
Q: Networking and Content Delivery
Answer: AWS VPC is a component of which of the following overall services categories
Q: A container for storing Archives
Answer: What is a Vault in Amazon Glacier
Q: No
Answer: Can the paying account make changes to any of the resources owned by a linked account (with consolidated billing)
Q: Yes
Answer: For a fixed rate, can you choose detailed, once a minute monitoring of your EC2 instances?
Q: Auto Scaling
Answer: You need to ensure that you have the correct number of EC2 instances available to handle the load of your application. What service should you use?
Q: No
Answer: Do private subnets have direct, private access to the internet?
Q: Lambda
Answer: What compute service should you use to execute your code when you need to execute code in response to a specific change to your S3 bucket?
Q: Internet Gateway
Answer: For a subnet to be public and send non-local traffic to the internet gateway, we must update the Route Table of the public subnet and attach which of the following to the VPC that contains the subnet?