Free & Accurate Amazon AWS Certified Cloud Practitioner Practice Questions | ExamTopics
2023.01.04 - [DevOps/aws] - Amazon AWS Certified Cloud Practitioner Exam Practice Questions | aws 클라우드 프랙티셔너 문제 #1~30
2023.01.04 - [DevOps/aws] - Amazon AWS Certified Cloud Practitioner Exam Practice Questions | aws 클라우드 프랙티셔너 문제 #31~60

#61~70


61. A company that has multiple business units wants to centrally manage and govern its AWS Cloud environments. The company wants to automate the creation of
AWS accounts, apply service control policies (SCPs), and simplify billing processes.
Which AWS service or tool should the company use to meet these requirements?

A. AWS Organizations
B. Cost Explorer
C. AWS Budgets
D. AWS Trusted Advisor

=>D. AWS Organizations 62. Which IT controls do AWS and the customer share, according to the AWS shared responsibility model? (Choose two.)

A. Physical and environmental controls
B. Patch management
C. Cloud awareness and training
D. Zone security
E. Application data encryption

B,C

Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within their use of AWS services. Examples include: Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications. Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring their own guest operating systems, databases, and applications. Awareness & Training - AWS trains AWS employees, but a customer must train their own employees.
Aws 공동책임 모델.
Application 암호화는 고객 책임
공동 책임으로 patch management, cloud awareness amd training

63. A company is launching an application in the AWS Cloud. The application will use Amazon S3 storage. A large team of researchers will have shared access to the data. The company must be able to recover data that is accidentally overwritten or deleted.
Which S3 feature should the company turn on to meet this requirement?

A. Server access logging
B. S3 Versioning
C. S3 Lifecycle rules
D. Encryption in transit and at rest

B. S3 versioning

64. A manufacturing company has a critical application that runs at a remote site that has a slow internet connection. The company wants to migrate the workload to
AWS. The application is sensitive to latency and interruptions in connectivity. The company wants a solution that can host this application with minimum latency.
Which AWS service or feature should the company use to meet these requirements?

A. Availability Zones
B. AWS Local Zones
C. AWS Wavelength
D. AWS Outposts

=>  B. AWS Local Zone

이번에 AWS Local Zone이라는 새로운 형태의 인프라를 공개합니다. AWS Local Zone은 주요 AWS 서비스를 특정 지리적 위치에 있는 사용자에게 낮은 대기 시간으로 서비스를 제공할 때 사용할 수 있습니다.  첫번째 Local Zone은 남부 캘리포니아의 로스앤젤레스 등지의 사용자들에게 제공하는 애플리케이션의 지연 시간을 크게 낮추도록(10밀리초 미만) 설계되었습니다. 지연 시간에 매우 민감한 수요가 많은 애플리케이션에 특히 유용할 것입니다. 예를 들어, 다음과 같은 요소가 포함됩니다.

65. A company wants to migrate its applications from its on-premises data center to a VPC in the AWS Cloud. These applications will need to access on-premises resources.
Which actions will meet these requirements? (Choose two.)

A. Use AWS Service Catalog to identify a list of on-premises resources that can be migrated.
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
C. Use an Amazon CloudFront distribution and configure it to accelerate content delivery close to the on-premises resources.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
E. Use Amazon CloudFront to restrict access to static web content provided through the on-premises web servers.
B,D

66.  A company wants to use the AWS Cloud to provide secure access to desktop applications that are running in a fully managed environment.
Which AWS service should the company use to meet this requirement?

A. Amazon S3
B. Amazon AppStream 2.0
C. AWS AppSync
D. AWS Outposts

B. Amazon appstream 2.0

AppStream 2.0 이란?
완전 관리형 어플리케이션 및 데스크톱 스트리밍 서비스
중앙에서 데스크톱 애플리케이션 관리
전세계  사용자가 사용할 수 있음
2019년 2월 Seoul Region 출시

67. A company wants to implement threat detection on its AWS infrastructure. However, the company does not want to deploy additional software.
Which AWS service should the company use to meet these requirements?

A. Amazon VPC
B. Amazon EC2
C. Amazon GuardDuty
D. AWS Direct Connect

C. Aws GuardDuty

1. Continuously monitor your AWS accounts, instances, container workloads, users, and storage for potential threats.  
2. Expose threats quickly using anomaly detection, machine learning, behavioral modeling, and threat intelligence feeds from AWS and leading third-parties.  
3. Mitigate threats early by initiating automated responses.

68. Which AWS service uses edge locations?

A. Amazon Aurora
B. AWS Global Accelerator
C. Amazon Connect
D. AWS Outpost

D랑 b 랑 헷갈린다.
AWS의 Global Accelerator(글로벌 액셀러레이터)는 AWS의 글로벌 네트워크 인프라를 통해 사용자 트래픽을 전송하여 인터넷 사용자 성능을 최대 60% 개선하는 네트워킹 서비스입니다.



Global Accelerator는 사용자와 가장 가까운 위치의 사용 가능한 정상 엔드포인트로 트래픽을 자동으로 재라우팅하여 엔드포인트 장애를 완화합니다. Global Accelerator의 자동 라우팅 최적화 기능은 인터넷이 혼잡할 때 패킷 손실, 지터 및 지연 시간을 일관적으로 낮게 유지합니다.

69. A company needs to install an application in a Docker container.
Which AWS service eliminates the need to provision and manage the container hosts?

A. AWS Fargate
B. Amazon FSx for Windows File Server
C. Amazon Elastic Container Service (Amazon ECS)
D. Amazon EC2

C . ecs

70. Which AWS service or feature checks access policies and offers actionable recommendations to help users set secure and functional policies?

A. AWS Systems Manager
B. AWS IAM Access Analyzer
C. AWS Trusted Advisor
D. Amazon GuardDuty

B. AWS IAM Access Analyzer
AWS IAM Access Analyzer는 클라우드 자원에 연결된 액세스 제어 정책을 수학적으로 분석하여, AWS 계정 내의 접근 제어의 전체적인 영향을 파악할 수 있으므로 외부의 의도하지 않은 액세스로부터 보호할 수 있습니다.

#71~80

71. A company has a fleet of cargo ships. The cargo ships have sensors that collect data at sea, where there is intermittent or no internet connectivity. The company needs to collect, format, and process the data at sea and move the data to AWS later.
Which AWS service should the company use to meet these requirements?

  • A. AWS IoT Core
  • B. Amazon Lightsail
  • C. AWS Storage Gateway
  • D. AWS Snowball Edge

D. AWS Snowball Edge 

Snowball 로 onpremise 데이터를 aws 로 옮길 수 있다.

 

72. A retail company needs to build a highly available architecture for a new ecommerce platform. The company is using only AWS services that replicate data across multiple Availability Zones.
Which AWS services should the company use to meet this requirement? (Choose two.)

  • A. Amazon EC2
  • B. Amazon Elastic Block Store (Amazon EBS)
  • C. Amazon Aurora
  • D. Amazon DynamoDB
  • E. Amazon Redshift

=> C,D

Data replication 관점에서 C,D 가 더 많다

 

73. Which characteristic of the AWS Cloud helps users eliminate underutilized CPU capacity?

  • A. Agility
  • B. Elasticity
  • C. Reliability
  • D. Durability

=> b.elasticity

Elasticity and Agility are pretty much the same thing but Elasticity is for resources (like CPU) and Agility is for services (EC2).

탄력성은 resource 와 관련되고 민첩성은 서비스와 관련되어있다.

 

74. Service control policies (SCPs) manage permissions for which of the following?

  • A. Availability Zones
  • B. AWS Regions
  • C. AWS Organizations
  • D. Edge locations

 => C. AWS Organizations

75. Which AWS service can be used to encrypt data at rest?

  • A. Amazon GuardDuty
  • B. AWS Shield
  • C. AWS Security Hub
  • D. AWS Key Management Service (AWS KMS)

=> D. AWS Key Management Service (AWS KMS)

 

76. Which characteristics are advantages of using the AWS Cloud? (Choose two.)

  • A. A 100% service level agreement (SLA) for all AWS services
  • B. Compute capacity that is adjusted on demand
  • C. Availability of AWS Support for code development
  • D. Enhanced security
  • E. Increases in cost and complexity

=>B,D

on-premise 환경이 100% SLA 이다. 

 

Service Level Agreement정보시스템 수요자와 공급자 사이의 상호 동의에 의하여 서비스 수준을 명시적으로 정의하고 이를 문서화한 약정서

 

77. A user is storing objects in Amazon S3. The user needs to restrict access to the objects to meet compliance obligations.
What should the user do to meet this requirement?

  • A. Use AWS Secrets Manager.
  • B. Tag the objects in the S3 bucket.
  • C. Use security groups.
  • D. Use network ACLs.

=> B. Tag the objects in the S3 bucket

"Object tags enable fine-grained access control of permissions. For example, you could grant an IAM user permissions to read-only objects with specific tags."

 

객체 태그를 단다. 

 

78. A company wants to convert video files and audio files from their source format into a format that will play on smartphones, tablets, and web browsers.
Which AWS service will meet these requirements?

  • A. Amazon Elastic Transcoder
  • B. Amazon Comprehend
  • C. AWS Glue
  • D. Amazon Rekognition

=> A. Amazon Elastic Transcoder

Amazon Elastic Transcoder는 클라우드에서 미디어를 트랜스코딩하는 서비스입니다. 확장성이 뛰어나고 사용하기 쉬우며 비용 효율적인 이 방법을 통해 개발자 및 비즈니스에서 소스 형식의 미디어 파일을 스마트폰, 태블릿, PC 등의 디바이스에서 재생되는 버전으로 변환(또는 "트랜스코딩")할 수 있습니다.

 

79. Which of the following are benefits of Amazon EC2 Auto Scaling? (Choose two.)

  • A. Improved health and availability of applications
  • B. Reduced network latency
  • C. Optimized performance and costs
  • D. Automated snapshots of data
  • E. Cross-Region Replication

=> A,C

80. A company has several departments. Each department has its own AWS accounts for its applications. The company wants all AWS costs on a single invoice to simplify payment, but the company wants to know the costs that each department is incurring.
Which AWS tool or feature will provide this functionality?

  • A. AWS Cost and Usage Reports
  • B. Consolidated billing
  • C. Savings Plans
  • D. AWS Budgets

=> B. Consolidated billing

consolidated : 통합

AWS Organizations의 통합 결제 기능을 사용하면 여러 AWS 계정 또는 여러 Amazon Internet Services Pvt. Ltd(AISPL) 계정의 청구 및 결제를 통합할 수 있습니다. AWS Organizations의 모든 조직에는 모든 멤버 계정의 비용을 지불하는 관리 계정이 하나씩 있습니다. 조직에 대한 자세한 내용은 AWS Organizations 사용 설명서를 참조하세요.

통합 결제의 장점:

  • 하나의 청구서 – 여러 계정에 대해 하나의 청구서를 받습니다.
  • 추적 용이 – 여러 계정에 걸쳐 요금을 추적하고 비용 및 사용량 데이터 합계를 다운로드할 수 있습니다.
  • 사용량 통합 – 조직 내 모든 계정에 걸쳐 사용량을 통합하여 대량 구매 요금 할인, 예약 인스턴스 할인 및 Savings Plans를 받을 수 있습니다. 이를 통해 프로젝트, 부서 또는 회사에 청구되는 요금이 개별 계정 요금보다 낮아집니다. 자세한 정보는 대량 구매 할인 단원을 참조하세요.
  • 추가 비용 없음 – 통합 결제는 추가 비용 없이 제공됩니다.

#81~90

81.A company runs its workloads on premises. The company wants to forecast the cost of running a large application on AWS.
Which AWS service or tool can the company use to obtain this information?

  • A. AWS Pricing Calculator
  • B. AWS Budgets
  • C. AWS Trusted Advisor
  • D. Cost Explorer

=> A. AWS Pricing Calculator

Anticipate / new app = Pricing Calculator

가격 예측은 pricing Calculator

 

82. A company wants to eliminate the need to guess infrastructure capacity before deployments. The company also wants to spend its budget on cloud resources only as the company uses the resources.
Which advantage of the AWS Cloud matches the company's requirements?

  • A. Reliability
  • B. Global reach
  • C. Economies of scale
  • D. Pay-as-you-go pricing

=> D. Pay-as-you-go pricing

 

83. Which AWS service supports a hybrid architecture that gives users the ability to extend AWS infrastructure, AWS services, APIs, and tools to data centers, co- location environments, or on-premises facilities?

  • A. AWS Snowmobile
  • B. AWS Local Zones
  • C. AWS Outposts
  • D. AWS Fargate

=> C.  AWS Outposts

on-premise에서 aws 서비스 사용하게 하기 

aws outposts

 

84. A company has a physical tape library to store data backups. The tape library is running out of space. The company needs to extend the tape library's capacity to the AWS Cloud.
Which AWS service should the company use to meet this requirement?

  • A. Amazon Elastic Block Store (Amazon EBS)
  • B. Amazon S3
  • C. Amazon Elastic File System (Amazon EFS)
  • D. AWS Storage Gateway

=> D. Aws Storage Gateway

AWS Storage Gateway is a set of hybrid cloud storage services that provide on-premises access to virtually unlimited cloud storage.

Storage Gateway란?

  • 온프레미스를 클라우드 기반 스토리지와 연결하여, 온프레미스와 IT 환경과 AWS의 스토리지를 사용하는 서비스
  • 파일 기반, 볼륨 기반 및 테이프 기반 솔루션 제공

storage Gateway를 통해 온프레미스+ aws로 스토리지를 사용할 수 있다.

 

 

85. An online retail company has seasonal sales spikes several times a year, primarily around holidays. Demand is lower at other times. The company finds it difficult to predict the increasing infrastructure demand for each season.
Which advantages of moving to the AWS Cloud would MOST benefit the company? (Choose two.)

  • A. Global footprint
  • B. Elasticity
  • C. AWS service quotas
  • D. AWS shared responsibility model
  • E. Pay-as-you-go pricing

=>  B,E

86. Which AWS service can be used to turn text into lifelike speech?

  • A. Amazon Polly
  • B. Amazon Kendra
  • C. Amazon Rekognition
  • D. Amazon Connect

=> A. Amazon Polly 

"Amazon Polly is a service that turns text into lifelike speech"

polly는 텍스트를 사람 음성으로 바꿔준다. 

 

87. Which AWS service or tool can be used to capture information about inbound and outbound traffic in an Amazon VPC?

  • A. VPC Flow Logs
  • B. Amazon Inspector
  • C. VPC endpoint services
  • D. NAT gateway

=> A. VPC Flow Logs

AWS VPC Flow Logs는 VPC 내의 로그를 수집/저장하여 장애나 보안 문제 발생 시 원인 파악, 분석 등 다양한 용도로 활용할 수 있는 기능입니다.

88. A company wants to ensure that two Amazon EC2 instances are in separate data centers with minimal communication latency between the data centers.
How can the company meet this requirement?

  • A. Place the EC2 instances in two separate AWS Regions connected with a VPC peering connection.
  • B. Place the EC2 instances in two separate Availability Zones within the same AWS Region.
  • C. Place one EC2 instance on premises and the other in an AWS Region. Then connect them by using an AWS VPN connection.
  • D. Place both EC2 instances in a placement group for dedicated bandwidth.

=> B.Place the EC2 instances in two separate Availability Zones within the same AWS Region.

 

89. In which situations should a company create an IAM user instead of an IAM role? (Choose two.)

  • A. When an application that runs on Amazon EC2 instances requires access to other AWS services
  • B. When the company creates AWS access credentials for individuals
  • C. When the company creates an application that runs on a mobile phone that makes requests to AWS
  • D. When the company needs to add users to IAM groups
  • E. When users are authenticated in the corporate network and want to be able to use AWS without having to sign in a second time

=> B, D

 

90. Which AWS services should a company use to read and write data that changes frequently? (Choose two.)

  • A. Amazon S3 Glacier
  • B. Amazon RDS
  • C. AWS Snowball
  • D. Amazon Redshift
  • E. Amazon Elastic File System (Amazon EFS)

=> B,E

'aws' 카테고리의 다른 글

Amazon AWS Certified Cloud Practitioner 자격증 합격후기!  (1) 2023.01.06
Amazon AWS Certified Cloud Practitioner Exam Practice Questions | aws 클라우드 프랙티셔너 #91~120  (0) 2023.01.05
Amazon AWS Certified Cloud Practitioner Exam Practice Questions | aws 클라우드 프랙티셔너 문제 #31~60  (0) 2023.01.04
Amazon AWS Certified Cloud Practitioner Exam Practice Questions | aws 클라우드 프랙티셔너 문제 #1~30  (0) 2023.01.04
AWS Cloud Practitioner Essentials | 최종 평가  (1) 2023.01.03

+ Recent posts

티스토리툴바