AWS-DA(101-110)
AWS Cloud Services Quiz
Test your knowledge on Amazon Web Services (AWS) with this engaging quiz designed for developers, engineers, and cloud enthusiasts. Dive into a series of challenging questions that assess your understanding of various AWS services and best practices.
- 10 thought-provoking questions
- Multiple choice format
- Designed for all skill levels
The development team is now hard at work developing an API that will be provided through the Amazon API gateway. Three environments will service the API: development, test, and production. All three phases of the API Gateway are set to consume 237 GB of cache. Which deployment option is the MOST cost-effective?
A. Create a single API Gateway with all three stages.
B. Create three API Gateways, one for each stage in a single AWS account.
C. Create an API Gateway in three separate AWS accounts.
D. Enable the cache for development and test environments only when needed.
On Amazon EC2 ECS, two containerized microservices are hosted. The first microservice reads a database instance from Amazon RDS Aurora, while the second microservice reads a table from Amazon DynamoDB. How can the bare minimal rights be provided to each microservice?
A. Set ECS_ENABLE_TASK_IAM_ROLE to false on EC2 instance boot in ECS agent configuration file. Run the first microservice with an IAM role for ECS tasks with read-only access for the Aurora database. Run the second microservice with an IAM role for ECS tasks with read-only access to DynamoDB.
B. Set ECS_ENABLE_TASK_IAM_ROLE to false on EC2 instance boot in the ECS agent configuration file. Grant the instance profile role read-only access to the Aurora database and DynamoDB.
C. Set ECS_ENABLE_TASK_IAM_ROLE to true on EC2 instance boot in the ECS agent configuration file. Run the first microservice with an IAM role for ECS tasks with read-only access for the Aurora database. Run the second microservice with an IAM role for ECS tasks with read-only access to DynamoDB.
D. Set ECS_ENABLE_TASK_IAM_ROLE to true on EC2 instance boot in the ECS agent configuration file. Grant the instance profile role read-only access to the Aurora database and DynamoDB.
A developer is debugging a three-tier application hosted on Amazon EC2 instances. Between the application servers and database servers, there is a connection issue. Which Amazon Web Services (AWS) services or tools should be utilized to determine which component is faulty? (Make a selection of at least two.)
AWS CloudTrail
AWS Trusted Advisor
Amazon VPC Flow Logs
Network access control lists
AWS Config rules
A program inserts data into an Amazon DynamoDB database. As the application expands to thousands of instances, intermittent ThrottlingException problems are thrown by calls to the DynamoDB API. The application is written in a language that is not supported by the AWS SDK. What procedure should be followed in the event of an error?
Add exponential backoff to the application logic
Use Amazon SQS as an API message bus
Pass API calls through Amazon API Gateway
Send the items to DynamoDB through Amazon Kinesis Data Firehose
A developer is using serverless components to create a highly secure healthcare application. This application involves writing temporary data to an AWS Lambda function's /tmp storage. How should this data be encrypted by the developer?
Enable Amazon EBS volume encryption with an AWS KMS CMK in the Lambda function configuration so that all storage attached to the Lambda function is encrypted.
Set up the Lambda function with a role and key policy to access an AWS KMS CMK. Use the CMK to generate a data key used to encrypt all data prior to writing to /tmp storage.
Use OpenSSL to generate a symmetric encryption key on Lambda startup. Use this key to encrypt the data prior to writing to /tmp storage.
Use an on-premises hardware security module (HSM) to generate keys, where the Lambda function requests a data key from the HSM and uses that to encrypt data on all requests to the function.
A business requires security for its current website, which is hosted behind an Elastic Load Balancer. Amazon EC2 instances hosting the website are CPU restricted. How can the website be secured without raising the CPU burden on the Amazon EC2 web servers? (Select two.)
Configure an Elastic Load Balancer with SSL pass-through.
Configure SSL certificates on an Elastic Load Balancer.
Configure an Elastic Load Balancer with a Loadable Storage System.
Install SSL certificates on the EC2 instances.
Configure an Elastic Load Balancer with SSL termination.
A software engineer created a Node.js AWS Lambda function to do CPU-intensive data processing. The Lambda function takes around 5 minutes to finish with the default parameters. Which strategy should a developer employ to expedite the finishing process?
Instead of using Node.js, rewrite the Lambda function using Python.
Instead of packaging the libraries in the ZIP file with the function, move them to a Lambda layer and use the layer with the function.
Allocate the maximum available CPU units to the function.
Increase the available memory to the function.
A developer will handle AWS services through the AWS CLI on a local development server. What can be done to guarantee that the CLI executes commands using the Developer's IAM permissions?
Specify the Developer's IAM access key ID and secret access key as parameters for each CLI command.
Run the aws configure CLI command, and provide the Developer's IAM access key ID and secret access key.
Specify the Developer's IAM user name and password as parameters for each CLI command.
Use the Developer's IAM role when making the CLI command.
A client wishes to host its source code on AWS Elastic Beanstalk. The client should undertake deployment with minimum downtime and should keep application access logs exclusively on existing instances. Which deployment strategy would meet these criteria?
Rolling
All at once
Rolling with an additional batch
Immutable
A development team chooses to use AWS CodePipeline and AWS CodeCommit to implement a continuous integration/continuous delivery (CI/CD) method for a new application. Management, on the other hand, requires a human to evaluate and approve the code prior to it being released to production. How can the development team include a manual approver into the continuous integration/continuous delivery pipeline?
Use AWS SES to send an email to approvers when their action is required. Develop a simple application that allows approvers to accept or reject a build. Invoke an AWS Lambda function to advance the pipeline when a build is accepted.
If approved, add an approved tag when pushing changes to the CodeCommit repository. CodePipeline will proceed to build and deploy approved commits without interruption
Add an approval step to CodeCommit. Commits will not be saved until approved.
Add an approval action to the pipeline. Configure the approval action to publish to an Amazon SNS topic when approval is required. The pipeline execution will stop and wait for an approval.
{"name":"AWS-DA(101-110)", "url":"https://www.quiz-maker.com/QPREVIEW","txt":"Test your knowledge on Amazon Web Services (AWS) with this engaging quiz designed for developers, engineers, and cloud enthusiasts. Dive into a series of challenging questions that assess your understanding of various AWS services and best practices.10 thought-provoking questionsMultiple choice formatDesigned for all skill levels","img":"https:/images/course3.png"}