# (196-264) AWS Certified Cloud Practitioner ###### tags: `AWS` `Exam Topic` `Cloud Practitioner` 196. Which AWS Support plan provides a full set of AWS Trusted Advisor checks? **D. Enterprise and Business Support** 197. Which of the following services have Distributed Denial of Service (DDoS) mitigation features? (Choose two.) **A. AWS WAF D. Amazon CloudFront** 198. 🔺When building a cloud Total Cost of Ownership (TCO) model, which cost elements should be considered for workloads running on AWS? (Choose three.) **A. Compute costs C. Storage costs D. Data transfer costs** 199. What time-savings advantage is offered with the use of Amazon Rekognition? **B. Amazon Rekognition provides automatic detection of objects appearing in pictures.** 200. When comparing AWS with on-premises Total Cost of Ownership (TCO), what costs are included? **A. Data center security** 201. According to the AWS shared responsibility model, what is AWS responsible for? **D. Managing the network infrastructure** 202. 🔺Which service should be used to estimate the costs of running a new project on AWS? **B. AWS Simple Monthly Calculator** 203. :x:Which AWS tool will identify security groups that grant unrestricted Internet access to a limited list of ports? ~~B. AWS Trusted Advisor~~ **D. Amazon EC2 dashboard** 204. :x:Which AWS service can be used to generate alerts based on an estimated monthly bill? **B. Amazon CloudWatch** >:::info >https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/monitor_estimated_charges_with_cloudwatch.html >Creating a Billing Alarm to Monitor Your **Estimated AWS Charges** > >You can monitor your estimated AWS charges by using Amazon CloudWatch > >**[CLoudWatch biling alarm vs. AWS Budgets](https://www.reddit.com/r/aws/comments/9mds9z/what_is_the_difference_between_billing_alarms_and/)**: Budgets is more flexible. > > Budgets is more powerful and flexible. You can use Budgets the same as Billing Alarms, but you can do a lot more. >Billing alarms are 'per account' only, and monthly only, based on overall AWS Spend. Alarms happen when you breach the set number. >Budgets on the other hand can be set to warn based on forecasted spend for a month, quarter or year, and can be tracked against different dimensions, such as a group of linked accounts, specific tags or services. 205. Which Amazon EC2 pricing model offers the MOST significant discount when compared to On-Demand Instances? **C. All Upfront Reserved Instances for a 3-year term** 206. Which of the following is the responsibility of AWS? **B. Physically destroying storage media at end of life** 207. Which of the following is an advantage of using AWS? **C. There is no guessing on capacity needs.** 208. Which AWS service would a customer use with a static website to achieve lower latency and high transfer speeds? **D. Amazon CloudFront** 209. 🔺Which services manage and automate application deployments on AWS? (Choose two.) **A. AWS Elastic Beanstalk B. AWS CodeCommit** 210. A user wants guidance on possible savings when migrating from on-premises to AWS. Which tool is suitable for this scenario? **C. AWS Total Cost of Ownership (TCO) Calculator** 211. :x:Which principles are used to architect applications for reliability on the AWS Cloud? (Choose two.) **A. Design for automated failure recovery B. Use multiple Availability Zones** 212. What tasks should a customer perform when that customer suspects an AWS account has been compromised? (Choose two.) **A. Rotate passwords and access keys. E. Contact AWS Support.** 213. What is an example of high availability in the AWS Cloud? **B. Ensuring an application remains accessible, even if a resource fails** 214. Which AWS security service protects applications from distributed denial of service attacks with always-on detection and automatic inline mitigations? **D. AWS Shield** 215. A company wants to monitor the CPU usage of its Amazon EC2 resources. Which AWS service should the company use? **B. Amazon CloudWatch** 216. What is an AWS Identity and Access Management (IAM) role? **C. An entity that defines a set of permissions for use with an AWS resource** 217. :x:What are the advantages of Reserved Instances? (Choose two.) **A. They provide a discount over on-demand pricing. E. Customers can reserve capacity in an Availability Zone.** ~~C. They provide additional networking capability.~~ 218. How do Amazon EC2 Auto Scaling groups help achieve high availability for a web application? **B. They automatically add or replace instances across multiple Availability Zones when the application needs it.** 219. How can one AWS account use Reserved Instances from another AWS account? **B. By using AWS Organizations consolidated billing** 220. A customer runs an On-Demand Amazon Linux EC2 instance for 3 hours, 5 minutes, and 6 seconds. For how much time will the customer be billed? **D. 4 hours** 221. Which of the following AWS services provide compute resources? (Choose two.) **A. AWS Lambda B. Amazon Elastic Container Service (Amazon ECS)** 222. Which AWS service enables users to deploy infrastructure as code by automating the process of provisioning resources? **B. AWS CloudFormation** 223. Which AWS services provide a way to extend an on-premises architecture to the AWS Cloud? (Choose two.) **B. AWS Direct Connect D. AWS Storage Gateway** 224. Which of the following allows users to provision a dedicated network connection from their internal network to AWS? **B. AWS Direct Connect** 225. Which services use AWS edge locations? (Choose two.) **A. Amazon CloudFront B. AWS Shield** 226. Which service would provide network connectivity in a hybrid architecture that includes the AWS Cloud? **B. AWS Direct Connect** 227. Which tool can be used to compare the costs of running a web application in a traditional hosting environment to running it on AWS? **D. AWS Total Cost of Ownership (TCO) Calculator** 228. What is the value of using third-party software from AWS Marketplace instead of installing third-party software on Amazon EC2? (Choose two.) **A. Users pay for software by the hour or month depending on licensing. B. AWS Marketplace enables the user to launch applications with 1-Click.** 229. Which of the following is a cloud architectural design principle? **B. Loosely couple components.** 230. Under the shared responsibility model; which of the following areas are the customer's responsibility? (Choose two.) **B. Patching of operating systems E. Configuration of the security group** 231. Which service enables customers to audit and monitor changes in AWS resources? **D. AWS Config** 232. :x:Which AWS service identifies security groups that allow unrestricted access to a user's AWS resources? **B. AWS Trusted Advisor** ~~D. Amazon Inspector~~ >:::info > ## Trusted Advisor vs. Inspector > **Trusted Advisor** > * Cost Optimization > * Fault Tolerance > * Performance > * Service Limits > * Security > > **Inspector** > - checks the configuration of **EC2 instances only** > - Runs and checks **operating system patches** > - Checks known **vulnerabilities** & common issues. 233. According to the AWS shared responsibility model, who is responsible for configuration management? **C. It is shared between AWS and the customer.** 234. Which AWS service is a content delivery network that securely delivers data, video, and applications to users globally with low latency and high speeds? **C. Amazon CloudFront** 235. Which benefit of the AWS Cloud supports matching the supply of resources with changing workload demands? **C. Elasticity** 236. A user is running an application on AWS and notices that one or more AWS-owned IP addresses is involved in a distributed denial-of-service (DDoS) attack. Who should the user contact FIRST about this situation? **D. AWS Abuse team** 237. Which of the following are benefits of hosting infrastructure in the AWS Cloud? (Choose two.) **A. There are no upfront commitments. C. Users have the ability to provision resources on demand.** 238. What AWS service would be used to centrally manage AWS access policies across multiple accounts? **D. AWS Organizations** 239. What is AWS Trusted Advisor? **C. It is an online tool with a set of automated checks that provides recommendations on cost optimization, performance, and security.** 240. Which AWS service or feature allows a company to visualize, understand, and manage AWS costs and usage over time? **B. AWS Cost Explorer** 241. Which AWS service offers on-demand access to AWS security and compliance reports? **B. AWS Artifact** ## Topic 2 242. Which AWS services can host a Microsoft SQL Server database? (Select TWO.) **A. Amazon EC2 B. Amazon Relational Database Service (Amazon RDS)** 243. Which AWS characteristics make AWS cost effective for a workload with dynamic user demand? (Select TWO.) **C. Elasticity D. Pay-as-you-go pricing** 244. Which of the following are characteristics of Amazon S3? (Select TWO.) **B. An object store E. A durable storage system** 245. Which services can be used across hybrid AWS Cloud architectures? (Select TWO.) **A. Amazon Route 53 B. Virtual Private Gateway** 246. :x:Which AWS tools assist with estimating costs? (Select three.) **B. Cost allocation tags C. AWS Simple Monthly Calculator D. AWS Total Cost of Ownership (TCO) Calculator** 247. AWS supports which of the following methods to add security to Identity and Access Management (IAM) users? (Select TWO.) **D. Using Multi-Factor Authentication (MFA) E. Enforcing password strength and expiration** 248. Which AWS services should be used for read/write of constantly changing data? (Select TWO.) **B. Amazon RDS** ~~D. Amazon Redshift~~ **D. Amazon Redshift E. Amazon EFS* 249. Which of the following are features of Amazon CloudWatch Logs? (Select TWO.) **D. Real-time monitoring E. Adjustable retention** 250. Which of the following are valid ways for a customer to interact with AWS services? (Select TWO.) **A. Command line interface C. Software Development Kits** 251. Which of the following AWS services can be used to serve large amounts of online video content with the lowest possible latency? (Select TWO.) **B. Amazon S3 E. Amazom CloudFront** 252. Which of the following security-related services does AWS offer? (Select TWO.) **B. AWS Trusted Advisor security checks C. Data encryption** 253. Which of the following are categories of AWS Trusted Advisor? (Select TWO.) **A. Fault Tolerance D. Performance** 254. Which of the following services could be used to deploy an application to servers running on-premises? (Select TWO.) **B. AWS OpsWorks C. AWS CodeDeploy** 255. Which design principles for cloud architecture are recommended when re-architecting a large monolithic application? (Select TWO.) **C. Implement loose coupling. E. Design for scalability.** 256. Which AWS services are defined as global instead of regional? (Select TWO.) **A. Amazon Route 53 D. Amazon CloudFront** 257. The financial benefits of using AWS are: (Select TWO.) **A. reduced Total Cost of Ownership (TCO). C. reduced operational expenditure (opex).** 258. :x:Which of the following can an AWS customer use to launch a new Amazon Relational Database Service (Amazon RDS) cluster? (Select TWO.) **B. AWS CloudFormation E. AWS Management Console** ~~D. Amazon EC2 Auto Scaling~~ 259. Which of the following security measures protect access to an AWS account? (Select TWO.) **B. Grant least privilege access to IAM users. E. Activate multi-factor authentication (MFA) for privileged users.** 260. 🔺Which options does AWS make available for customers who want to learn about security in the cloud in an instructor-led setting? (Select TWO.) **B. AWS Online Tech Talks E. AWS Classroom Training** 261. Which of the following features can be configured through the Amazon Virtual Private Cloud (Amazon VPC) Dashboard? (Select TWO.) **C. Security Groups D. Subnets** 262. Which AWS services can be used to gather information about AWS account activity? (Select TWO.) **C. AWS CloudTrail E. Amazon CloudWatch** 263. Which of the following common IT tasks can AWS cover to free up company IT resources? (Select TWO.) **A. Patching databases software C. Backing up databases** 264. What can AWS edge locations be used for? (Select TWO.) **B. Delivering content closer to users D. Reducing traffic on the server by caching responses**