Amazon AWS Certified Cloud Practitioner Exam Practice Questions | aws 클라우드 프랙티셔너 문제 #31~60

 

Free & Accurate Amazon AWS Certified Cloud Practitioner Practice Questions | ExamTopics

 

 

2023.01.04 - [DevOps/aws] - Amazon AWS Certified Cloud Practitioner Exam Practice Questions | aws 클라우드 프랙티셔너 문제 #1~30

---

#31~40

31. A company has a single Amazon EC2 instance. The company wants to adopt a highly available architecture.
What can the company do to meet this requirement?

• A. Scale vertically to a larger EC2 instance size.
• B. Scale horizontally across multiple Availability Zones.
• C. Purchase an EC2 Dedicated Instance.
• D. Change the EC2 instance family to a compute optimized instance.

=> B. Scale horizontally across multiple Availability Zones.

고가용성을 위해 수평확장

32. A company's on-premises application deployment cycle was 3-4 weeks. After migrating to the AWS Cloud, the company can deploy the application in 2-3 days.
Which benefit has this company experienced by moving to the AWS Cloud?

• A. Elasticity
• B. Flexibility
• C. Agility
• D. Resilience

=> C. Agility

 

33. Which of the following are included in AWS Enterprise Support? (Choose two.)

• A. AWS technical account manager (TAM)
• B. AWS partner-led support
• C. AWS Professional Services
• D. Support of third-party software integration to AWS
• E. 5-minute response time for critical issues

=> A, D

Enterprise Support 플랜을 보유한 고객은 Basic, Developer 및 Business Support 플랜에 포함된 모든 기능 외에도 다음과 같은 기능에 액세스할 수 있습니다.
회사의 특정 사용 사례 및 애플리케이션을 지원하기 위한 컨설팅 관계인 애플리케이션 아키텍처 지침인프라 이벤트 관리 지원: 회사가 사용 사례를 더 잘 이해할 수 있도록 돕는 AWS Support와의 단기 계약입니다.
또한 회사에 아키텍처 및 확장 지침도 제공합니다.

TAM 이 무조건 들어가고 

Support of third-party software integration to AWS 는 처음 들어본다. 

 

34. A global media company uses AWS Organizations to manage multiple AWS accounts.
Which AWS service or feature can the company use to limit the access to AWS services for member accounts?

• A. AWS Identity and Access Management (IAM)
• B. Service control policies (SCPs)
• C. Organizational units (OUs)
• D. Access control lists (ACLs)

=> B. Service control policies (SCPs)

Ou는 조직단위 , 권한을 주고 제한하는 것은 SCP 서비스 제어 정책

 

35. A company wants to limit its employees' AWS access to a portfolio of predefined AWS resources.
Which AWS solution should the company use to meet this requirement?

• A. AWS Config
• B. AWS software development kits (SDKs)
• C. AWS Service Catalog
• D. AWS AppSync

=>  C. AWS Service Catalog

 

C. What is the use of service catalog in AWS? AWS Service Catalog allows organizations to create and manage catalogs of IT services that are approved for use on AWS. These IT services can include everything from virtual machine images, servers, software, and databases to complete multi-tier application architectures.

 

AWS Catalog 를 사용하면 유저 접근 제한을 할 수 있다. 

AWS Service Catalog이란 무엇입니까? - AWS Service Catalog (amazon.com)

AWS Service Catalog이란 무엇입니까? - AWS Service Catalog

AWS Service Catalog를 사용하는 조직은 다음에 대해 승인된 IT 서비스 카탈로그를 생성하고 관리할 수 있습니다.AWS. 이때 IT 서비스란 다중 계층 애플리케이션 아키텍처를 완성하기 위한 가상 머신 이미지, 서버, 소프트웨어, 데이터베이스 등을 포괄합니다.

AWS Service Catalog를 사용하는 조직은 흔히 배포된 IT 서비스를 중앙에서 관리할 수 있고, 규정 준수 요건을 충족할 수 있습니다. 최종 사용자는 조직에서 규정한 제약에 따라, 필요에 따라 승인된 IT 서비스만 신속하게 배포할 수 있습니다.

 

36. An online company was running a workload on premises and was struggling to launch new products and features. After migrating the workload to AWS, the company can quickly launch products and features and can scale its infrastructure as required.
Which AWS Cloud value proposition does this scenario describe?

• A. Business agility
• B. High availability
• C. Security
• D. Centralized auditing

=> A. Business agility

비즈니스 민첩성

 

37. Which of the following are advantages of the AWS Cloud? (Choose two.)

• A. AWS management of user-owned infrastructure
• B. Ability to quickly change required capacity
• C. High economies of scale
• D. Increased deployment time to market
• E. Increased fixed expenses

=> B,C

 

 

38. AWS has the ability to achieve lower pay-as-you-go pricing by aggregating usage across hundreds of thousands of users.
This describes which advantage of the AWS Cloud?

• A. Launch globally in minutes
• B. Increase speed and agility
• C. High economies of scale
• D. No guessing about compute capacity

=> C. High economies of scale

규모의 경제

 

39. A company has a database server that is always running. The company hosts the server on Amazon EC2 instances. The instance sizes are suitable for the workload. The workload will run for 1 year.
Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?

• A. Standard Reserved Instances
• B. On-Demand Instances
• C. Spot Instances
• D. Convertible Reserved Instances

=> A. Standard Reserved Instances

싸게 할려면 예약 인스턴스 

 

40. A company is developing a mobile app that needs a high-performance NoSQL database.
Which AWS services could the company use for this database? (Choose two.)

• A. Amazon Aurora
• B. Amazon RDS
• C. Amazon Redshift
• D. Amazon DocumentDB (with MongoDB compatibility)
• E. Amazon DynamoDB

=>  D,E 

NoSQL 이다.

---

#41~50

41. Which tasks are the responsibility of AWS, according to the AWS shared responsibility model? (Choose two.)

• A. Patch the Amazon EC2 guest operating system.
• B. Upgrade the firmware of the network infrastructure.
• C. Apply password rotation for IAM users.
• D. Maintain the physical security of edge locations.
• E. Maintain least privilege access to the root user account.

=> B, D

네트워크 인프라 업그레이드, 물리적 데이터 센터 보안 

 

42. Which of the following are features of network ACLs as they are used in the AWS Cloud? (Choose two.)

• A. They are stateless.
• B. They are stateful.
• C. They evaluate all rules before allowing traffic.
• D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic.
• E. They operate at the instance level.

=> A, D

Rules are evaluated starting with the lowest numbered rule. As soon as a rule matches traffic, it's applied regardless of any higher-numbered rule that might contradict it.

acl은 처음에 모두 허용하는 걸로 알고 있다.

하지만 낮은 순서대로 차례대로 처리한다고 알자 

 

43. A company has designed its AWS Cloud infrastructure to run its workloads effectively. The company also has protocols in place to continuously improve supporting processes.
Which pillar of the AWS Well-Architected Framework does this scenario represent?

• A. Security
• B. Performance efficiency
• C. Cost optimization
• D. Operational excellence

=> D. Operational excellence

 

The Operational Excellence pillar includes the ability to support development and run workloads effectively, gain insight into their operations, and to continuously improve supporting processes and procedures to deliver business value.

 

workload 를 효율적으로 처리 -> 운영 우수성

 

44. Which AWS service or feature can be used to create a private connection between an on-premises workload and an AWS Cloud workload?

• A. Amazon Route 53
• B. Amazon Macie
• C. AWS Direct Connect
• D. AWS PrivateLink

=> C. AWS Direct Connect

 

45. A company needs to graphically visualize AWS billing and usage over time. The company also needs information about its AWS monthly costs.
Which AWS Billing and Cost Management tool provides this data in a graphical format?

• A. AWS Bills
• B. Cost Explorer
• C. AWS Cost and Usage Report
• D. AWS Budgets

=> B. Cost Explorer

 

46. A company wants to run production workloads on AWS. The company needs concierge service, a designated AWS technical account manager (TAM), and technical support that is available 24 hours a day, 7 days a week.
Which AWS Support plan will meet these requirements?

• A. AWS Basic Support
• B. AWS Enterprise Support
• C. AWS Business Support
• D. AWS Developer Support

=> B. AWS Enterprise Support

tam 나오면 enterprise

 

47. Which architecture design principle describes the need to isolate failures between dependent components in the AWS Cloud?

• A. Use a monolithic design.
• B. Design for automation.
• C. Design for single points of failure.
• D. Loosely couple components.

=> D. Loosely couple components.

느슨한 결합으로 서비스를 격리시킨다.

 

48. Which AWS services are managed database services? (Choose two.)

• A. Amazon Elastic Block Store (Amazon EBS)
• B. Amazon S3
• C. Amazon RDS
• D. Amazon Elastic File System (Amazon EFS)
• E. Amazon DynamoDB

=> C,E 

완전 관리형 db

a,b,d 는 스토리지 서비스이다 .

 

49. A company is using the AWS Free Tier for several AWS services for an application.
What will happen if the Free Tier usage period expires or if the application use exceeds the Free Tier usage limits?

• A. The company will be charged the standard pay-as-you-go service rates for the usage that exceeds the Free Tier usage.
• B. AWS Support will contact the company to set up standard service charges.
• C. The company will be charged for the services it consumed during the Free Tier period, plus additional charges for service consumption after the Free Tier period.
• D. The company's AWS account will be frozen and can be restarted after a payment plan is established.

=> A. The company will be charged the standard pay-as-you-go service rates for the usage that exceeds the Free Tier usage.

프리티어 다쓰고 난 후 사용량에 대해서 요금이 부과된다. 

 

50. A company recently deployed an Amazon RDS instance in its VPC. The company needs to implement a stateful firewall to limit traffic to the private corporate network.
Which AWS service or feature should the company use to limit network traffic directly to its RDS instance?

• A. Network ACLs
• B. Security groups
• C. AWS WAF
• D. Amazon GuardDuty

=> B. Security groups

stateful firewall ,  보안그룹은 stateful 

---

#51~60

Which AWS service uses machine learning to help discover, monitor, and protect sensitive data that is stored in Amazon S3 buckets?

• A. AWS Shield
• B. Amazon Macie
• C. AWS Network Firewall
• D. Amazon Cognito

=> B. Amazon Macie

Amazon Macie is a data security and data privacy service that uses machine learning (ML) and pattern matching to discover and protect your sensitive data.

amazon macie 는 머신러닝을 이용해 데이터를 분석한다 .

 

52. A company wants to improve the overall availability and performance of its applications that are hosted on AWS.
Which AWS service should the company use?

• A. Amazon Connect
• B. Amazon Lightsail
• C. AWS Global Accelerator
• D. AWS Storage Gateway

=>  C. AWS Global Accelerator

Global Accelerator improves overall performance & availability

global Accelerator는 가용성과 성능을 개선한다.

 

 

53. Which AWS service or feature identifies whether an Amazon S3 bucket or an IAM role has been shared with an external entity?

• A. AWS Service Catalog
• B. AWS Systems Manager
• C. AWS IAM Access Analyzer
• D. AWS Organizations

=> C. AWS IAM Access Analyzer

Access Analyzer helps you identify the resources in your organization and accounts, such as Amazon S3 buckets or IAM roles, shared with an external entity. This lets you identify unintended access to your resources and data, which is a security risk.

 

54. A company does not want to rely on elaborate forecasting to determine its usage of compute resources. Instead, the company wants to pay only for the resources that it uses. The company also needs the ability to increase or decrease its resource usage to meet business requirements.
Which pillar of the AWS Well-Architected Framework aligns with these requirements?

• A. Operational excellence
• B. Security
• C. Reliability
• D. Cost optimization

=>D. Cost optimization

 

elaborate: 정교한 company wants to pay only for the resources that it uses.

 

55. A company wants to launch its workload on AWS and requires the system to automatically recover from failure.
Which pillar of the AWS Well-Architected Framework includes this requirement?

• A. Cost optimization
• B. Operational excellence
• C. Performance efficiency
• D. Reliability

=> D. Reliability

 

56. A large enterprise with multiple VPCs in several AWS Regions around the world needs to connect and centrally manage network connectivity between its VPCs.
Which AWS service or feature meets these requirements?

• A. AWS Direct Connect
• B. AWS Transit Gateway
• C. AWS Site-to-Site VPN
• D. VPC endpoints

=> B. AWS Transit Gateway

Transit gateway acts a 'central hub' for multiple VPC connectivity.

vpc를 중앙에서 연결하는것 transit gateway

 

57. Which AWS service supports the creation of visual reports from AWS Cost and Usage Report data?

• A. Amazon Athena
• B. Amazon QuickSight
• C. Amazon CloudWatch
• D. AWS Organizations

=> B. Amazon QuickSight

Answer is Quicksight. Athena can also read from the S3 bucket in which CUR data is stored but there is no report visulalization capability in Athena. You can create a simple tabular report in Athena.

아테나에는 비쥬얼 리포트가 없다 .

 

58. Which AWS service should be used to monitor Amazon EC2 instances for CPU and network utilization?

• A. Amazon Inspector
• B. AWS CloudTrail
• C. Amazon CloudWatch
• D. AWS Config

=>  C. Amazon CloudWatch

사용량을 볼려면 cloudWatch 

 

59. A company is preparing to launch a new web store that is expected to receive high traffic for an upcoming event. The web store runs only on AWS, and the company has an AWS Enterprise Support plan.
Which AWS resource will provide guidance about how the company should scale its architecture and operational support during the event?

• A. AWS Abuse team
• B. The designated AWS technical account manager (TAM)
• C. AWS infrastructure event management
• D. AWS Professional Services

=> B. The designated AWS technical account manager (TAM)

 

60. A user wants to deploy a service to the AWS Cloud by using infrastructure-as-code (IaC) principles.
Which AWS service can be used to meet this requirement?

• A. AWS Systems Manager
• B. AWS CloudFormation
• C. AWS CodeCommit
• D. AWS Config

=> B. AWS CloudFormation