문제
15. A company is launching an ecommerce application that must always be available. The application will run on Amazon EC2 instances continuously for the next 12 months. What is the MOST cost-effective instance purchasing option that meets these requirements?
A. Spot Instances
B. Savings Plans
C. Dedicated Hosts
D. On-Demand Instances
[B] Amazon EC2 Savings Plans enable you to reduce your compute costs by committing to a consistent amount of compute usage for a 1-year or 3-year term. This results in savings of up to 72% over On-Demand Instance costs. Any usage up to the commitment is charged at the discounted Savings Plan rate (for example, $10 an hour). Any usage beyond the commitment is charged at regular On-Demand Instance rates.
26. What are some advantages of using Amazon EC2 instances to host applications in the AWS Cloud instead of on premises? (Choose two.)
A. EC2 includes operating system patch management.
B. EC2 integrates with Amazon VPC, AWS CloudTrail, and AWS Identity and Access Management (IAM).
C. EC2 has a 100% service level agreement (SLA).
D. EC2 has a flexible, pay-as-you-go pricing model.
E. EC2 has automatic storage cost optimization.
[B,D]
39. A company has a database server that is always running. The company hosts the server on Amazon EC2 instances. The instance sizes are suitable for the workload. The workload will run for 1 year. Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?
A. Standard Reserved Instances
B. On-Demand Instances
C. Spot Instances
D. Convertible Reserved Instances
[A]. Amazon EC2 Reserved Instances (RI) provide a significant discount (up to 72%) compared to On-Demand pricing and provide a capacity reservation when used in a specific Availability Zone.
73. Which characteristic of the AWS Cloud helps users eliminate underutilized CPU capacity?
A. Agility
B. Elasticity
C. Reliability
D. Durability
[B]. Elasticity and Agility are pretty much the same thing but Elasticity is for resources (like CPU) and Agility is for services (EC2).
97. A company has a workload that will run continuously for 1 year. The workload cannot tolerate service interruptions.
Which Amazon EC2 purchasing option will be MOST cost-effective?
A. All Upfront Reserved Instances
B. Partial Upfront Reserved Instances
C. Dedicated Instances
D. On-Demand Instances
[A]
103. Which type of AWS storage is ephemeral and is deleted when an Amazon EC2 instance is stopped or terminated?
A. Amazon Elastic Block Store (Amazon EBS)
B. Amazon EC2 instance store
C. Amazon Elastic File System (Amazon EFS)
D. Amazon S3
[B] Amazon EC2 instance store provides temporary block-level storage for Amazon EC2 instances. The data on an instance store volume persists only during the life of the associated Amazon EC2 instance.
If the instance is stopped or terminated, any data on instance store volumes is lost.
In contrast, Amazon Elastic Block Store (Amazon EBS) provides persistent block-level storage volumes for use with Amazon EC2 instances.
105. A company hosts an application on an Amazon EC2 instance. The EC2 instance needs to access several AWS resources, including Amazon S3 and Amazon DynamoDB.
What is the MOST operationally efficient solution to delegate permissions?
A. Create an IAM role with the required permissions. Attach the role to the EC2 instance.
B. Create an IAM user and use its access key and secret access key in the application.
C. Create an IAM user and use its access key and secret access key to create a CLI profile in the EC2 instance
D. Create an IAM role with the required permissions. Attach the role to the administrative IAM user.
A. When an IAM role is attached to an EC2 instance, the instance can use the permissions associated with the role to access AWS resources, such as Amazon S3 and Amazon DynamoDB, without the need for an access key and secret access key.
114. A company launched an Amazon EC2 instance with the latest Amazon Linux 2 Amazon Machine Image (AMI).
Which actions can a system administrator take to connect to the EC2 instance? (Choose two.)
A. Use Amazon EC2 Instance Connect.
B. Use a Remote Desktop Protocol (RDP) connection.
C. Use AWS Batch
D. Use AWS Systems Manager Session Manager.
E. Use Amazon Connect
A. Use Amazon EC2 Instance Connect: This is a browser-based SSH connection method that allows you to connect to your EC2 instances using AWS Identity and Access Management (IAM) credentials, without the need to manage SSH keys. You can use Instance Connect to connect to an instance using the EC2 console, AWS CLI, or SDKs.
D. Use AWS Systems Manager Session Manager: This is a fully-managed, secure, and auditable way to access your instances using the AWS Systems Manager console or AWS CLI. With Session Manager, you can tunnel your SSH (Secure Shell) and SCP (Secure Copy) connections to your instances, without requiring inbound connections or the use of bastion hosts or VPNs.
129. A company implements an Amazon EC2 Auto Scaling policy along with an Application Load Balancer to automatically recover unhealthy applications that run on Amazon EC2 instances.
Which pillar of the AWS Well-Architected Framework does this action cover?
A. Security
B. Performance efficiency
C. Operational excellence
D. Reliability
D.
149. After selecting an Amazon EC2 Dedicated Host reservation, which pricing option would provide the largest discount?
A. No upfront payment
B. Hourly on-demand payment
C. Partial upfront payment
D. All upfront payment
D. With the All Upfront option, you pay for the entire Reserved Instance term with one upfront payment. This option provides you with the largest discount compared to On-Demand Instance pricing
151. A company would like to host its MySQL databases on AWS and maintain full control over the operating system, database installation, and configuration.
Which AWS service should the company use to host the databases?
A. Amazon RDS
B. Amazon EC2
C. Amazon DynamoDB
D. Amazon Aurora
B. Hosting a MySQL database on an EC2 instance, you will be able to choose the underlying building blocks such as operating system, storage settings, and database configuration, giving you full control and flexibility over your MySQL database and surpassing the limitations of Amazon RDS, while also leveraging all the advantages of the AWS Cloud platform and services.
153. A company is using Amazon EC2 Auto Scaling to scale its Amazon EC2 instances.
Which benefit of the AWS Cloud does this example illustrate?
A. High availability
B. Elasticity
C. Reliability
D. Global reach
B.
164. Which responsibility belongs to AWS when a company hosts its databases on Amazon EC2 instances?
A. Database backups
B. Database software patches
C. Operating system patches
D. Operating system installations.
D.
170. A company needs an Amazon EC2 instance for a rightsized database server that must run constantly for 1 year.
Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?
A. Standard Reserved Instance
B. Convertible Reserved Instance
C. On-Demand Instance
D. Spot Instance
A.
171. A company has multiple applications and is now building a new multi-tier application. The company will host the new application on Amazon EC2 instances. The company wants the network routing and traffic between the various applications to follow the security principle of least privilege.
Which AWS service or feature should the company use to enforce this principle?
A. Security groups
B. AWS Shield
C. AWS Global Accelerator
D. AWS Direct Connect gateway
A. Security groups control the traffic that is allowed to reach and leave the resources that it is associated with.
173. A company is creating a document that defines the operating system patch routine for all the company's systems.
Which AWS resources should the company include in this document? (Choose two.)
A. Amazon EC2 instances
B. AWS Lambda functions
C. AWS Fargate tasks
D. Amazon RDS instances
E. Amazon Elastic Container Service (Amazon ECS) instances
A. Amazon EC2 instances: EC2 instances are virtual servers in the cloud, and they often run the company's systems and applications. Including EC2 instances in the patch routine document ensures that the operating systems on these instances are regularly updated and patched for security and performance reasons.
D. Amazon RDS instances: Amazon RDS (Relational Database Service) provides managed database services. If the company is using RDS instances for their databases, it is important to include them in the patch routine document to ensure that the database operating systems receive regular updates and security patches.
174. Which AWS service or feature gives a company the ability to control incoming traffic and outgoing traffic for Amazon EC2 instances?
A. Security groups
B. Amazon Route 53
C. AWS Direct Connect
D. Amazon VPC
A. Security groups control the traffic that is allowed to reach and leave the resources that it is associated with.
B. Decoupling an AWS Cloud architecture involves breaking up a monolithic system into smaller, independent components that can be upgraded or replaced without affecting the entire system.
205. Which task is the responsibility of the customer according to the AWS shared responsibility model?
A. Maintain the security of the hardware that runs Amazon EC2 instances.
B. Patch the guest operating system of Amazon EC2 instances.
C. Protect the security of the AWS global infrastructure.
D. Patch Amazon RDS software.
B.
212. An ecommerce company wants to use Amazon EC2 Auto Scaling to add and remove EC2 instances based on CPU utilization.
Which AWS service or feature can initiate an Amazon EC2 Auto Scaling action to achieve this goal?
A. Amazon Simple Queue Service (Amazon SQS)
B. Amazon Simple Notification Service (Amazon SNS)
C. AWS Systems Manager
D. Amazon CloudWatch alarm
D. Amazon CloudWatch alarms can be created on the Auto Scaling group as a whole, such as Average CPU Utilization.
217. A company owns per-core software licenses.
Which Amazon EC2 instance purchasing option must the company use for this license type?
· A. Reserved Instances
· B. Dedicated Hosts
· C. Spot Instances
· D. Dedicated Instances
[B]. Pay for a physical host that is fully dedicated to running your instances, and bring your existing per-socket, per-core, or per-VM software licenses to reduce costs.
236. A company needs to run an application on Amazon EC2 instances. The instances cannot be interrupted at any time. The company needs an instance purchasing option that requires no long-term commitment or upfront payment.
Which instance purchasing option will meet these requirements MOST cost-effectively?
A. On-Demand Instances
B. Spot Instances
C. Dedicated Hosts
D. Reserved Instances
A. AWS recommends using On-Demand Instances for applications with short-term, irregular workloads that cannot be interrupted. They are also suitable for use during testing and development of applications on EC2.
237. A company uses Amazon EC2 instances to run its web application. The company uses On-Demand Instances and Spot Instances. The company needs to visualize its monthly spending on both types of instances.
Which AWS service or feature will meet this requirement?
A. AWS Cost Explorer
B. AWS Budgets
C. Amazon CloudWatch
D. AWS Cost Categories
A. AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time.
245. A company has existing software licenses that it wants to bring to AWS, but the licensing model requires licensing physical cores.
How can the company meet this requirement in the AWS Cloud?
A. Launch an Amazon EC2 instance with default tenancy.
B. Launch an Amazon EC2 instance on a Dedicated Host.
C. Create an On-Demand Capacity Reservation.
D. Purchase Dedicated Reserved Instances.
B. To help facilitate the maximum benefit of a customer’s existing Microsoft licensing, AWS provides multiple options to utilize BYOL EC2 Dedicated Hosts and Dedicated Instances expose the physical cores of the server to Windows and applications such as SQL Server while allowing licenses with or without Software Assurance to be utilized. Bare Metal as well as VMware on AWS can minimize additional licensing costs.
259. A company needs steady and predictable performance from its Amazon EC2 instances at the lowest possible cost. The company also needs the ability to scale resources to ensure that it has the right resources available at the right time.
Which AWS service or resource will meet these requirements?
· A. Amazon CloudWatch
· B. Application Load Balancer
· C. AWS Batch
· D. Amazon EC2 Auto Scaling
[D]. Amazon EC2 Auto Scaling is a service that automatically adjusts the number of Amazon Elastic Compute Cloud (EC2) instances in response to changes in demand for the application.
261. A company wants a cost-effective option when running its applications in an Amazon EC2 instance for short time periods. The applications can be interrupted.
Which EC2 instance type will meet these requirements?
· A. Spot Instances
· B. On-Demand Instances
· C. Reserved Instances
· D. Dedicated Instances
[A]. Spot Instances are a cost-effective option for running applications on Amazon EC2 for short periods of time.
270. Which AWS service or tool is associated with an Amazon EC2 instance and acts as a virtual firewall to control inbound and outbound traffic?
· A. AWS WAF
· B. AWS Shield
· C. Network access control list (ACL)
· D. Security group
[D].
271. A company wants to migrate its on-premises Microsoft SQL Server database server to the AWS Cloud. The company has decided to use Amazon EC2 instances to run this database.
Which of the following is the company responsible for managing, according to the AWS shared responsibility model?
· A. EC2 hypervisor
· B. Security patching of the guest operating system
· C. Network connectivity of the host server
· D. Uptime service level agreement (SLA) for the EC2 instances
[B]. According to the AWS shared responsibility model, when a company uses Amazon EC2 instances to run a Microsoft SQL Server database, the company is responsible for managing the security patching of the guest operating system
290. A company has a set of databases that are stored on premises. The company wants to bring its existing Microsoft SQL Server licenses when the company moves the databases to run on Amazon EC2 instances.
Which EC2 instance purchasing option should the company use to meet these requirements?
· A. Dedicated Instances
· B. Reserved Instances
· C. Dedicated Hosts
· D. Spot Instances
[C]. While Dedicated Instances are extremely valuable from a compliance perspective, Dedicated Hosts also give you the visibility into the physical host that is required for a Bring Your Own License (BYOL) model
316.A company is running an Amazon EC2 instance in a VPC.
Which of the following can the company use to route and filter incoming network requests for the EC2 instance?
· A. Route tables and web application firewalls
· B. Security groups and route tables
· C. Security groups and a network intrusion system
· D. Route tables and AWS Shield
B: The clues here are "instance" and "route". Security groups is related to instances and route tables to redirect traffic.
317. A company plans to migrate its custom marketing application and order-processing application to AWS. The company needs to deploy the applications on different types of instances with various configurations of CPU, memory, storage, and networking capacity.
Which AWS service should the company use to meet these requirements?
· A. AWS Lambda
· B. Amazon Cognito
· C. Amazon Athena
· D. Amazon EC2
D
322. Which of the following are advantages of moving from on premises to the AWS Cloud? (Choose two.)
· A. Trade variable expenses for capital expenses.
· B. Eliminate costs related to running and maintaining data centers.
· C. Benefit from massive economies of scale.
· D. Eliminate the need to tram IT staff.
· E. Gam the ability to reserve capacity for 7 years or more.
B,C
327. A company recently created its first AWS account.
Which AWS services will require the use of a VPC? (Choose two.)
· A. Amazon S3
· B. Amazon Elastic File System (Amazon EFS)
· C. Amazon Cognito
· D. Amazon DynamoDB
· E. Amazon EC2
E. Amazon EC2 - Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides resizable compute capacity in the cloud. Instances of EC2 are launched in a VPC.
B. Amazon Elastic File System (Amazon EFS) - Amazon Elastic File System (Amazon EFS) provides a simple, scalable, fully managed elastic NFS file system that can be used with AWS Cloud services and on-premises resources. Amazon EFS is a regional service that supports VPCs.
329. A company is using Amazon EC2 instances.
Which tasks are the company's responsibility, according to the AWS shared responsibility model? (Choose two.)
· A. Maintain the network infrastructure.
· B. Patch the guest operating system.
· C. Configure a security group on deployed EC2 instances.
· D. Provide physical security for the underlying hardware of the EC2 instances.
· E. Manage the underlying hypervisor.
B,C
342. A company is running multiple workloads in the AWS Cloud and recently began investigating ways to reduce costs. The company is already running fault-tolerant workloads on Amazon EC2 that perform periodic checkpoints in case of an outage.
Which AWS service or pricing model can provide the GREATEST cost savings?
· A. Capacity Reservations
· B. Amazon Lightsail
· C. Spot Instances
· D. Dedicated Hosts
C (문제가 별로)
345. A company needs to perform data processing once a week that typically takes about 5 hours to complete.
Which AWS service should the company use for this workload?
· A. AWS Lambda
· B. Amazon EC2
· C. AWS CodeDeploy
· D. AWS Wavelength
B: This question is all about how to handle a workload for a short period of usage (Lambda) vs a permanent AWS usage (EC2). And the 15 mn related to Lamba is not its maximum workload duration but its maximum invocation timeout (out of place).
347 .According to the AWS shared responsibility model, which activities are the customer's responsibility for security in the AWS Cloud? (Choose two.)
· A. Hardware maintenance
· B. Amazon EC2 operating system patching
· C. API access control for AWS resources
· D. Configuration management of infrastructure devices
· E. Maintenance of an Availability Zone
B,C
386. A company wants its Amazon EC2 instances to operate in a highly available environment, even if there is a natural disaster in a particular geographic area.
Which solution achieves this goal?
A. Use EC2 instances in a single Availability Zone
B. Use EC2 instances in multiple AWS Regions
C. Use EC2 instances in multiple edge locations.
D. Use Amazon CloudFront with the EC2 instances configured as the source.
B. Using EC2 instances in multiple AWS Regions ensures high availability even in the event of a natural disaster in a particular geographic area. If one region goes down due to a disaster, the instances in other regions will continue to function normally, providing uninterrupted service to customers.
388. A company needs to apply security rules to specific Amazon EC2 instances.
Which AWS service or feature provides this functionality?
A. AWS WAF
B. Network ACLs
C. Amazon VPC
D. Security groups
D.Security groups are a fundamental feature of Amazon VPC that acts as a virtual firewall for EC2 instances. They enable you to control inbound and outbound traffic to your EC2 instances by defining rules that specify the allowed traffic's source and destination.
389. A company wants to run Amazon EC2 instances in locations that are near the company’s global users.
Which aspect of the AWS environment will support this requirement?
A. Availability Zone
B. Edge locations
C. AWS Regions
D. Regional edge caches
C. Edge locations are used by Amazon CloudFront for content delivery and do not directly impact the location of EC2 instances.
On the other hand, AWS Regions can support the requirement of running EC2 instances in locations that are near the company's global users. AWS Regions are separate geographical areas where AWS services, such as EC2 instances, are available. By choosing an AWS Region that is geographically close to the users, the company can reduce latency and improve performance.
393. A company is developing an application that the company will host on Amazon EC2 instances. The application must be available 24 hours a day, 7 days a week. The company needs a scalable, highly available cloud architecture to support the application.
Which guidelines should the company apply in its design to meet these requirements? (Choose two.)
A. Use EC2 Spot Instances
B. Use Multi-AZ deployments.
C. Use Auto Scaling groups
D. Use AWS Backup.
E. Use EC2 Reserved Instances.
B. Use Multi-AZ deployments: Multi-AZ deployments allow the company to run the application across multiple availability zones within a region. This provides high availability and automatic failover in the event of a failure in one availability zone.
C. Use Auto Scaling groups: Auto Scaling groups allow the company to automatically add or remove Amazon EC2 instances based on the demand for the application, which is important for ensuring high availability and scalability.
397. A company is using Amazon EC2 instances.
Which tasks are the company's responsibility, according to the AWS shared responsibility model? (Choose two.)
A. Choose the initial root password of new Linux instances.
B. Identify which users can access the EC2 instances, and manage their permissions in the operating system.
C. Apply the updates of the hypervisor where the EC2 instances are running.
D. Choose between a Wi-Fi connection and an Ethernet connection for the global internet access.
E. Identify and manage the users who are allowed to create or delete EC2 instances.
B. Identify which users can access the EC2 instances, and manage their permissions in the operating system. This includes managing the security group rules, and managing access control mechanisms such as AWS Identity and Access Management (IAM) policies.
E. Identify and manage the users who are allowed to create or delete EC2 instances. This includes creating, modifying, or deleting IAM policies and roles.
403. An application that is hosted on Amazon EC2 has a steady and consistent workload. The application will operate for at least 1 year.
What is the MOST cost-effective instance purchasing option to meet these requirements?
A. Spot Instances
B. Reserved Instances
C. On-Demand Instances
D. Dedicated Hosts
B. Reserved instances: 1 or 3 years, discounted hourly rate