IAM AND EC2
Master Your AWS Knowledge: IAM and EC2 Quiz
Test your expertise in Amazon Web Services (AWS) with our comprehensive quiz focusing on IAM and EC2. Whether you're a beginner or looking to brush up your skills, this quiz covers essential topics to ensure you understand key AWS concepts.
Get ready to challenge yourself with questions on:
- EC2 Instance Types
- IAM Policies and Roles
- Elastic IP Costs
- High Availability and Disaster Recovery
- Security Best Practices
You have a distributed application that periodically processes large volumes of data across multiple Amazon EC2 Instances. The application is designed to recover gracefully from Amazon EC2 instance failures. You are required to accomplish this task in the most cost effective way. Which of the following will meet your requirements?
Spot Instances
Reserved instances
Dedicated instances
On-Demand instances
If I want my instance to run on a single-tenant hardware, which value do I have to set the instance’s tenancy attribute to?
Dedicated
Isolated
One
Reserved
When will you incur costs with an Elastic IP address (EIP)?
When an EIP is allocated.
When it is allocated and associated with a running instance.
When it is allocated and associated with a stopped instance.
Costs are incurred regardless of whether the EIP is associated with a running instance.
You have setup multi-factor authentication (MFA) for your root account according to AWS(Amazon Web Service) best practices and configured it to work with Google Authenticator on your smart phone. Unfortunately, your smart phone has been lost. What are the options available to access your account as the root user?
You will need to contact AWS(Amazon Web Service) support to request that the MFA device is deactivated and have your password reset
Unfortunately, you will no longer be able to access this account as the root user
On the AWS(Amazon Web Service) sign-in with authentication device web page, choose to sign in using alternative factors of authentication and use the verification email and code to sign in
Get a user with administrative privileges in your AWS(Amazon Web Service) account to deactivate the MFA device assigned to the root account
You need to launch a series of EC2 instances with multiple attached volumes by modifying the block device mapping. Which block device can be specified in a block device mapping to be used with an EC2 instance? (choose 2)
Instance store volume
EFS volume
EBS volume
S3 bucket
Snapshot
You need to run a PowerShell script on a fleet of EC2 instances running Microsoft Windows. The instances have already been launched in your VPC. What tool can be run from the AWS(Amazon Web Service) Management Console that will run the script on all target EC2 instances?
AWS OpsWorks
AWS CodeDeploy
Run Command
AWS Config
An AWS(Amazon Web Service) user has created a Provisioned IOPS EBS volume which is attached to an EBS optimized instance and configured 1000 IOPS. Based on the EC2 SLA, what is the average IOPS the user will achieve for most of the year?
1000
950
990
900
Which of the following approaches provides the lowest cost for Amazon elastic block store snapshots while giving you the ability to fully restore data?
Maintain two snapshots: the original snapshot and the latest incremental snapshot
Maintain the original snapshot; subsequent snapshots will overwrite one another
Maintain a single snapshot; the latest snapshot is both incremental and complete
Maintain the most current snapshot; archive the original to Amazon Glacier
You are a Solutions Architect at Digital Cloud Training. One of your clients is expanding their operations into multiple AWS(Amazon Web Service) regions around the world. The client has requested some advice on how to leverage their existing AWS(Amazon Web Service) Identity and Access Management (IAM) configuration in other AWS(Amazon Web Service) regions. What advice would you give to your client?
IAM is a regional service and the client will need to copy the configuration items required across to other AWS(Amazon Web Service) regions
IAM is a global service and the client can use users, groups, roles, and policies in any AWS(Amazon Web Service) region
The client can use Amazon Cognito to create a single sign-on configuration across multiple AWS(Amazon Web Service) regions
The client will need to create a VPC peering configuration with each remote AWS(Amazon Web Service) region and then allow IAM access across regions
A Solutions Architect is designing a shared service for hosting containers from several customers on Amazon ECS. These containers will use several AWS(Amazon Web Service) services. A container from one customer must not be able to access data from another customer. Which solution should the Architect use to meet the requirements?
Network ACLs
IAM Instance Profile for EC2 instances
IAM roles for tasks
IAM roles for EC2 instances
A company's application is running on Amazon EC2 instances in a single Region. In the event of a disaster, a solutions architect needs to ensure that the resources can also be deployed to a second Region. Which combination of actions should the solutions architect take to accomplish this? (Choose two.)
Detach a volume on an EC2 instance and copy it to Amazon S3.
Launch a new EC2 instance from an Amazon Machine Image (AMI) in a new Region.
Launch a new EC2 instance in a new Region and copy a volume from Amazon S3 to the new instance.
Copy an Amazon Machine Image (AMI) of an EC2 instance and specify a different Region for the destination.
Copy an Amazon Elastic Block Store (Amazon EBS) volume from Amazon S3 and launch an EC2 instance in the destination Region using that EBS volume.
A solutions architect is designing a high performance computing (HPC) workload on Amazon EC2. The EC2 instances need to communicate to each other frequently and require network performance with low latency and high throughput.Which EC2 configuration meets these requirements?
Launch the EC2 instances in a cluster placement group in one Availability Zone.
Launch the EC2 instances in a spread placement group in one Availability Zone.
Launch the EC2 instances in an Auto Scaling group in two Regions and peer the VPCs.
Aunch the EC2 instances in an Auto Scaling group spanning multiple Availability Zones.
A company allows its developers to attach existing IAM policies to existing IAM roles to enable faster experimentation and agility. However, the security operations team is concerned that the developers could attach the existing administrator policy, when would allow the developers to circumvent any other security policies.How should a solutions architect address this issue?
Create an Amazon SNS topic to send an alert every time a developer creates a new policy.
Use service control policies to disable IAM activity across all account in the organizational unit.
Use service control policies to disable IAM activity across all account in the organizational unit.
Set an IAM permissions boundary on the developer IAM role that explicitly denies attaching the administrator policy.
A company is storing an access key with an access key ID and secret access key in a text file on a custom Amazon Machine Image (AMI). The company uses the access key to access Amazon DynamoDB tables from instances created from the AMI. The security team has mandated a more secure solution. Which solution will meet the security team’s mandate?
Put the access key in an Amazon S3 bucket and retrieve the access key on boot from the instance.
Pass the access key to the instances through instance user data.
Obtain the access key from a key server launched in a private subnet
Create an IAM role with permissions to access the table and launch all instances with the new role
{"name":"IAM AND EC2", "url":"https://www.quiz-maker.com/QPREVIEW","txt":"Test your expertise in Amazon Web Services (AWS) with our comprehensive quiz focusing on IAM and EC2. Whether you're a beginner or looking to brush up your skills, this quiz covers essential topics to ensure you understand key AWS concepts.Get ready to challenge yourself with questions on:- EC2 Instance Types- IAM Policies and Roles- Elastic IP Costs- High Availability and Disaster Recovery- Security Best Practices","img":"https:/images/course2.png"}