AWS CLOUD-ALC -TEST29 : Question 1 of 45

You are building an automated transcription service in which Amazon EC2 worker instances process an uploaded audio file and generate a text file. You must store both of these files in the same durable storage until the text file is retrieved. You do not know what the storage capacity requirements are. Which storage option is both cost-efficient and scalable? You are building an automated transcription service in which Amazon EC2 worker instances process an uploaded audio file and generate a text file. You must store both of these files in the same durable storage until the text file is retrieved. You do not know what the storage capacity requirements are. Which storage option is both cost-efficient and scalable?

1 Mark(s)

Multiple Amazon EBS volume with snapshots
A single Amazon Glacier vault A single Amazon Glacier vault
A single Amazon S3 bucket A single Amazon S3 bucket
Multiple instance stores Multiple instance stores

Which of the following services natively encrypts data at rest within an AWS region? Which of the following services natively encrypts data at rest within an AWS region?

1 Mark(s)

AWS Storage Gateway, Amazon Glacier AWS Storage Gateway, Amazon Glacier
Amazon DynamoDB, Amazon CloudFront Amazon DynamoDB, Amazon CloudFront
Amazon CloudFront, Amazon Simple Queue Service
Amazon Simple Queue Service,Amazon DynamoDB

A customer is running a multi-tier web application farm in a virtual private cloud (VPC) that is not connected to their corporate network. They are connecting to the VPC over the Internet to manage all of their Amazon EC2 instances running in both the public and private subnets. They have only authorized the bastion-security-group with Microsoft Remote Desktop Protocol (RDP) access to the application instance security groups, but the company wants to further limit administrative access to all of the instances in the VPC. Which of the following Bastion deployment scenarios will meet this requirement? A customer is running a multi-tier web application farm in a virtual private cloud (VPC) that is not connected to their corporate network. They are connecting to the VPC over the Internet to manage all of their Amazon EC2 instances running in both the public and private subnets. They have only authorized the bastion-security-group with Microsoft Remote Desktop Protocol (RDP) access to the application instance security groups, but the company wants to further limit administrative access to all of the instances in the VPC. Which of the following Bastion deployment scenarios will meet this requirement?

1 Mark(s)

Deploy a Windows Bastion host on the corporate network that has RDP access to all instances in the VPC.
Deploy a Windows Bastion host with an Elastic IP address in the public subnet and allow SSH access to the bastion from anywhere.
Deploy a Windows Bastion host with an Elastic IP address in the private subnet, and restrict RDP access to the bastion from only the corporate public IP addresses.
Deploy a Windows Bastion host with an auto-assigned Public IP address in the public subnet, and allow RDP access to the bastion from only the corporate public IP addresses.

Which of the following approaches provides the lowest cost for Amazon Elastic Block Store snapshots while giving you the ability to fully restore data? Which of the following approaches provides the lowest cost for Amazon Elastic Block Store snapshots while giving you the ability to fully restore data?

1 Mark(s)

Maintain two snapshots: the original snapshot and the latest incremental snapshot.
Maintain a volume snapshot; subsequent snapshots will overwrite one another
Maintain a single snapshot the latest snapshot is both Incremental and complete.
Maintain the most current snapshot, archive the original and incremental to Amazon Glacier

You are designing a web application that stores static assets in an Amazon Simple Storage Service (S3) bucket. You expect this bucket to immediately receive over 150 PUT requests per second. What should you do to ensure optimal performance? You are designing a web application that stores static assets in an Amazon Simple Storage Service (S3) bucket. You expect this bucket to immediately receive over 150 PUT requests per second. What should you do to ensure optimal performance?

1 Mark(s)

Use multi-part upload. Use multi-part upload.
Add a random prefix to the key names. Add a random prefix to the key names.
Amazon S3 will automatically manage performance at this scale.
Use a predictable naming scheme, such as sequential numbers or date time sequences, in the key names

What is the minimum time Interval for the data that Amazon CloudWatch receives and aggregates? What is the minimum time Interval for the data that Amazon CloudWatch receives and aggregates?

1 Mark(s)

One second One second
Five seconds Five seconds
One minute One minute
Three minutes Three minutes

You have an Amazon EC2 instance in a VPC that is in a stopped state. Which of the following actions can you perform on this instance? You have an Amazon EC2 instance in a VPC that is in a stopped state. Which of the following actions can you perform on this instance?

1 Mark(s)

Change security groups Change security groups
Detach the network interface Detach the network interface
Attach to an Auto Scaling group Attach to an Auto Scaling group
Disable detailed monitoring Disable detailed monitoring

A company is deploying a two-tier, highly available web application to AWS. Which service provides durable storage for static content while utilizing lower Overall CPU resources for the web tier? A company is deploying a two-tier, highly available web application to AWS. Which service provides durable storage for static content while utilizing lower Overall CPU resources for the web tier?

1 Mark(s)

Amazon EBS volume Amazon EBS volume
Amazon S3 Amazon S3
Amazon EC2 instance store Amazon EC2 instance store
Amazon RDS instance Amazon RDS instance

A customer implemented AWS Storage Gateway with a gateway-cached volume at their main office. An event takes the link between the main and branch office offline. Which methods will enable the branch office to access their data? A customer implemented AWS Storage Gateway with a gateway-cached volume at their main office. An event takes the link between the main and branch office offline. Which methods will enable the branch office to access their data?

1 Mark(s)

Use a HTTPS GET to the Amazon S3 bucket where the files are located.
Launch a new AWS Storage Gateway instance AMI in Amazon EC2, and restore from a gateway snapshot.
Launch an AWS Storage Gateway virtual iSCSI device at the branch office, and restore from a gateway snapshot.
All of the above All of the above

Which AWS service allows you to collect and process e-commerce data for near real-time analysis? Which AWS service allows you to collect and process e-commerce data for near real-time analysis?

1 Mark(s)

Amazon ElasticCache Amazon ElasticCache
Amazon DynamoDB Amazon DynamoDB
Amazon Redshift Amazon Redshift
Amazon Elastic Map Reduce Amazon Elastic Map Reduce

A company is preparing to give AWS Management Console access to developers Company policy mandates identity federation and role-based access control. Roles are currently assigned using groups in the corporate Active Directory. What combination of the following will give developers access to the AWS console? A company is preparing to give AWS Management Console access to developers Company policy mandates identity federation and role-based access control. Roles are currently assigned using groups in the corporate Active Directory. What combination of the following will give developers access to the AWS console?

1 Mark(s)

AWS Directory Service AD Connector, AWS identity and Access Management roles
AWS Directory Service Simple AD AWS Directory Service Simple AD
AWS Identity and Access Management groups
AWS identity and Access Management users

You have a load balancer configured for VPC, and all back-end Amazon EC2 instances are in service. However, your web browser times out when connecting to the load balancer's DNS name. Which options are probable causes of this behavior? You have a load balancer configured for VPC, and all back-end Amazon EC2 instances are in service. However, your web browser times out when connecting to the load balancer's DNS name. Which options are probable causes of this behavior?

1 Mark(s)

The load balancer was not configured to use a public subnet with an Internet gateway configured. The security groups or network ACLs are not property configured
The Amazon EC2 instances do not have a dynamically allocated private IP address. The VPC does not have a VGW configured.
The VPC does not have a VGW configured. The VPC does not have a VGW configured.
The load balancer is not configured in a private subnet with a NAT instance. The Amazon EC2 instances do not have a dynamically allocated private IP address.

A company has an AWS account that contains three VPCs (Dev, Test, and Prod) in the same region. Test is peered to both Prod and Dev. All VPCs have non-overlapping CIDR blocks. The company wants to push minor code releases from Dev to Prod to speed up time to market. Which of the following options helps the company accomplish this? A company has an AWS account that contains three VPCs (Dev, Test, and Prod) in the same region. Test is peered to both Prod and Dev. All VPCs have non-overlapping CIDR blocks. The company wants to push minor code releases from Dev to Prod to speed up time to market. Which of the following options helps the company accomplish this?

1 Mark(s)

You manually launch a NAT AMI in a public subnet. The network is properly configured. Security groups and network access control lists are property configured. Instances in a private subnet can access the NAT. The NAT can access the Internet. However, private instances cannot access the Internet. What additional step is required to allow access from the private instances? You manually launch a NAT AMI in a public subnet. The network is properly configured. Security groups and network access control lists are property configured. Instances in a private subnet can access the NAT. The NAT can access the Internet. However, private instances cannot access the Internet. What additional step is required to allow access from the private instances?

1 Mark(s)

Enable Source/Destination Check on the private Instances.
Enable Source/Destination Check on the NAT instance.
Disable Source/Destination Check on the private instances.
Disable Source/Destination Check on the NAT instance.

Which set of Amazon S3 features helps to prevent and recover from accidental data loss? Which set of Amazon S3 features helps to prevent and recover from accidental data loss?

1 Mark(s)

Object lifecycle and service access logging
Object versioning and Multi-factor authentication
Access controls and server-side encryption
Website hosting and Amazon S3 policies Website hosting and Amazon S3 policies

Which of the following are use cases for Amazon DynamoDB? Which of the following are use cases for Amazon DynamoDB?

1 Mark(s)

Storing JSON documents. Storing JSON documents.
Running relational joins and complex updates.
Storing large amounts of infrequently accessed data.
All of these All of these

You established a virtual private cloud (VPC) peering relationship between VPC 1 and VPC 2. VPC 1 has routes to VPC 2, yet hosts in VPC1 cannot connect to hosts in VPC 2. Which of the following is a possible cause? You established a virtual private cloud (VPC) peering relationship between VPC 1 and VPC 2. VPC 1 has routes to VPC 2, yet hosts in VPC1 cannot connect to hosts in VPC 2. Which of the following is a possible cause?

1 Mark(s)

Security groups applied to VPC 2 are blocking the traffic
The network access control list applied to VPC 2 denies by default
The subnet route table in VPC 2 does not have routes to VPC 1
The VPCs have not been attached to a virtual private gateway

You have an Amazon EC2 instance with data stored in an Amazon Elastic Block Store (EBS) volume. You want to make the data available in another region. Which of the following methods should be used for making the data in the Amazon EBS volume available to the newly launched Amazon EC2 instance? You have an Amazon EC2 instance with data stored in an Amazon Elastic Block Store (EBS) volume. You want to make the data available in another region. Which of the following methods should be used for making the data in the Amazon EBS volume available to the newly launched Amazon EC2 instance?

1 Mark(s)

Snapshot the Amazon EBS volume, and copy it to the other region. Create a new Amazon EBS volume from the snapshot, and attach it to the newly launched Amazon EC2 instance.
Use AWS Import/Export to copy the Amazon EBS volume to the other region and attach it to newly launched instance. Copy the Amazon EBS volume to the other region, create a new Amazon EBS volume from that, and then attach it to newly launched Amazon EC2 instance.
Copy the Amazon EBS volume to the other region, create a new Amazon EBS volume from that, and then attach it to newly launched Amazon EC2 instance.
Detach the Amazon EBS volume and attach it to the newly launched Amazon EC2 instance.

You have an Amazon EC2 instance that belongs to two security groups. The first security group has a rule that allows ingress traffic to TCP port 80 from IP address 206.251.8.21, and the second security group has a rule that allows ingress traffic to TCP ports 80 and 443 from everywhere. Where traffic is allowed to the Amazon EC2 instance? You have an Amazon EC2 instance that belongs to two security groups. The first security group has a rule that allows ingress traffic to TCP port 80 from IP address 206.251.8.21, and the second security group has a rule that allows ingress traffic to TCP ports 80 and 443 from everywhere. Where traffic is allowed to the Amazon EC2 instance?

1 Mark(s)

Only ingress traffic to TCP port 80 from everywhere
Only ingress traffic to TCP port 80 from 206.251.8.21
Only ingress traffic to TCP ports 80 and 443 from everywhere
Only ingress traffic to TCP ports 80 and 443 from 206.251.8.21

A company has configured and peered two VPCs: VPC-1 and VPC-2. VPC-1 contains only private subnets, and VPC-2 contains only public subnets. The company uses a single AWS Direct Connect connection and private virtual interface to connect their on-premises network with VPC-1. Which two methods increases the fault tolerance of the connection to VPC-1? A company has configured and peered two VPCs: VPC-1 and VPC-2. VPC-1 contains only private subnets, and VPC-2 contains only public subnets. The company uses a single AWS Direct Connect connection and private virtual interface to connect their on-premises network with VPC-1. Which two methods increases the fault tolerance of the connection to VPC-1?

1 Mark(s)

Establish a hardware VPN over the internet between VPC-2 and the on-premises network.
Establish a hardware VPN over the internet between VPC-1 and the on-premises network. Establish a new AWS Direct Connect connection and private virtual interface in the same region as VPC-2.
Establish a new AWS Direct Connect connection and private virtual interface in a different AWS region than VPC-1.
Establish a new AWS Direct Connect connection and private virtual interface in the same AWS region as VPC-1

A photo-sharing service stores pictures in Amazon Simple Storage Service (S3) and allows application sign-in using an OpenID Connect-compatible identity provider. Which AWS Security Token Service approach to temporary access should you use for the Amazon S3 operations? A photo-sharing service stores pictures in Amazon Simple Storage Service (S3) and allows application sign-in using an OpenID Connect-compatible identity provider. Which AWS Security Token Service approach to temporary access should you use for the Amazon S3 operations?

1 Mark(s)

SAML-based Identity Federation SAML-based Identity Federation
Cross-Account Access Cross-Account Access
AWS Identity and Access Management roles
Web Identity Federation Web Identity Federation

A US-based company is expanding their web presence into Europe. The company wants to extend their AWS infrastructure from Northern Virginia (us-east-1) into the Dublin (eu-west- 1) region. Which of the following options would enable an equivalent experience for users on both continents? A US-based company is expanding their web presence into Europe. The company wants to extend their AWS infrastructure from Northern Virginia (us-east-1) into the Dublin (eu-west- 1) region. Which of the following options would enable an equivalent experience for users on both continents?

1 Mark(s)

Use a public-facing load balancer per region to load-balance web traffic, and enable HTTP health checks.
Use a public-facing load balancer per region to load-balance web traffic, and enable
Use Amazon Route 53, and apply a geolocation routing policy to distribute traffic across both regions
Use Amazon Route 53, and apply a weighted routing policy to distribute traffic across both regions.

Which of the following notification endpoints or clients are supported by Amazon Simple Notification Service? Which of the following notification endpoints or clients are supported by Amazon Simple Notification Service?

1 Mark(s)

Email,Short Message Service Email,Short Message Service
CloudFront distribution, File Transfer Protocol
File Transfer Protocol , Simple Network Management Protocol
Simple Network Management Protocol, CloudFront distribution

A company is building software on AWS that requires access to various AWS services. Which configuration should be used to ensure mat AWS credentials (i.e., Access Key ID/Secret Access Key combination) are not compromised? A company is building software on AWS that requires access to various AWS services. Which configuration should be used to ensure mat AWS credentials (i.e., Access Key ID/Secret Access Key combination) are not compromised?

1 Mark(s)

Enable Multi-Factor Authentication for your AWS root account.
Assign an IAM role to the Amazon EC2 instance.
Store the AWS Access Key ID/Secret Access Key combination in software comments.
Assign an IAM user to the Amazon EC2 Instance.

You are deploying an application to collect votes for a very popular television show. Millions of users will submit votes using mobile devices. The votes must be collected into a durable, scalable, and highly available data store for real-time public tabulation. Which service should you use? You are deploying an application to collect votes for a very popular television show. Millions of users will submit votes using mobile devices. The votes must be collected into a durable, scalable, and highly available data store for real-time public tabulation. Which service should you use?

1 Mark(s)

Amazon DynamoDB Amazon DynamoDB
Amazon Redshift Amazon Redshift
Amazon Kinesis Amazon Kinesis
Amazon Simple Queue Service Amazon Simple Queue Service

You need to pass a custom script to new Amazon Linux instances created in your Auto Scaling group. Which feature allows you to accomplish this? You need to pass a custom script to new Amazon Linux instances created in your Auto Scaling group. Which feature allows you to accomplish this?

1 Mark(s)

User data User data
EC2Config service EC2Config service
IAM roles IAM roles
AWS Config AWS Config

A company is building software on AWS that requires access to various AWS services. Which configuration should be used to ensure that AWS credentials (i.e., Access key ID/Secret Access Key combination) are not compromised? A company is building software on AWS that requires access to various AWS services. Which configuration should be used to ensure that AWS credentials (i.e., Access key ID/Secret Access Key combination) are not compromised?

1 Mark(s)

Enable Multi-Factor Authentication for your AWS root account.
Assign an IAM role to the Amazon EC2 instance.
Store the AWS Access Key ID/Secret Access Key combination in Software comments.
Assign an IAM user to the Amazon EC2 instance.

The Trusted Advisor service provides insight regarding which four categories of an AWS account? The Trusted Advisor service provides insight regarding which four categories of an AWS account?

1 Mark(s)

Security, fault tolerance, high availability, and connectivity
Security, access control, high availability, and performance
Performance, cost optimization, security, and fault tolerance
Performance, cost optimization, access control, and connectivity

A customer wants to track access to their Amazon Simple Storage Service (S3) buckets and also use this information for their internal security and access audits. Which of the following will meet the Customer requirement? A customer wants to track access to their Amazon Simple Storage Service (S3) buckets and also use this information for their internal security and access audits. Which of the following will meet the Customer requirement?

1 Mark(s)

Enable AWS CloudTrail to audit all Amazon S3 bucket access.
Enable server access logging for all required Amazon S3 buckets.
Enable the Requester Pays option to track access via AWS Billing
Enable Amazon S3 event notifications for Put and Post.

Which of the following are true regarding encrypted Amazon Elastic Block Store (EBS) volumes? Which of the following are true regarding encrypted Amazon Elastic Block Store (EBS) volumes?

1 Mark(s)

Supported on all Amazon EBS volume types.Snapshots are automatically encrypted
Available to all instance types Available to all instance types
Existing volumes can be encrypted Existing volumes can be encrypted
Shared volumes can be encrypted. Existing volumes can be encrypted

A customer is hosting their company website on a cluster of web servers that are behind a public-facing load balancer. The customer also uses Amazon Route 53 to manage their public DNS. How should the customer configure the DNS zone apex record to point to the load balancer? A customer is hosting their company website on a cluster of web servers that are behind a public-facing load balancer. The customer also uses Amazon Route 53 to manage their public DNS. How should the customer configure the DNS zone apex record to point to the load balancer?

1 Mark(s)

Create an A record pointing to the IP address of the load balancer
Create a CNAME record pointing to the load balancer DNS name.
Create a CNAME record aliased to the load balancer DNS name.
Create an A record aliased to the load balancer DNS name

The requirement is “off-site backup of this data, while maintaining low-latency access When will you incur costs with an Elastic IP address (EIP)? The requirement is “off-site backup of this data, while maintaining low-latency access When will you incur costs with an Elastic IP address (EIP)?

1 Mark(s)

When an EIP is allocated. When an EIP is allocated.
When it is allocated and associated with a running instance.
When it is allocated and associated with a stopped instance.
Costs are incurred regardless of whether the EIP is associated with a running instance.

Which of the following statements are true about Amazon Route 53 resource records? Which of the following statements are true about Amazon Route 53 resource records?

1 Mark(s)

An Alias record can map one DNS name to another Amazon Route 53 DNS name. An Amazon Route 53 CNAME record can point to any DNS record hosted anywhere.
A CNAME record can be created for your zone apex. An Amazon Route 53 Alias record can point to any DNS record hosted anywhere.
TTL can be set for an Alias record in Amazon Route 53
An Amazon Route 53 Alias record can point to any DNS record hosted anywhere. TTL can be set for an Alias record in Amazon Route 53

You have an application running on an Amazon Elastic Compute Cloud instance, that uploads 5 GB video objects to Amazon Simple Storage Service (S3). Video uploads are taking longer than expected, resulting in poor application performance. Which method will help improve performance of your application? You have an application running on an Amazon Elastic Compute Cloud instance, that uploads 5 GB video objects to Amazon Simple Storage Service (S3). Video uploads are taking longer than expected, resulting in poor application performance. Which method will help improve performance of your application?

1 Mark(s)

Enable enhanced networking Enable enhanced networking
Use Amazon S3 multipart upload Use Amazon S3 multipart upload
Leveraging Amazon CloudFront, use the HTTP POST method to reduce latency.
Use Amazon Elastic Block Store Provisioned IOPs and use an Amazon EBS-optimized instance

You have a distributed application that periodically processes large volumes of data across multiple Amazon EC2 Instances. The application is designed to recover gracefully from Amazon EC2 instance failures. You are required to accomplish this task in the most costeffective way. Which of the following will meet your requirements? You have a distributed application that periodically processes large volumes of data across multiple Amazon EC2 Instances. The application is designed to recover gracefully from Amazon EC2 instance failures. You are required to accomplish this task in the most costeffective way. Which of the following will meet your requirements?

1 Mark(s)

Spot Instances Spot Instances
Reserved instances Reserved instances
Dedicated instances Dedicated instances
On-Demand instances On-Demand instances

A t2.medium EC2 instance type must be launched with what type of Amazon Machine Image (AMI)? A t2.medium EC2 instance type must be launched with what type of Amazon Machine Image (AMI)?

1 Mark(s)

An Instance Store Hardware Virtual Machine AMI
An Instance store Paravirtual AMI An Instance store Paravirtual AMI
An Amazon EBS-backed Hardware Virtual Machine AMI
An Amazon EBS-backed Paravirtual AMI An Amazon EBS-backed Paravirtual AMI

Which of the following instance types are available as Amazon EBS-backed only? Which of the following instance types are available as Amazon EBS-backed only?

1 Mark(s)

General purpose T2
General purpose M3
Compute-optimized C4
Compute-optimized C3,Storage-optimized 12

A customer has a single 3-TB volume on-premises that is used to hold a large repository of images and print layout files. This repository is growing at 500 GB a year and must be presented as a single logical volume. The customer is becoming increasingly constrained with their local storage capacity and wants an off-site backup of this data, while maintaining low-latency access to their frequently accessed data. Which AWS Storage Gateway configuration meets the customer requirements? A customer has a single 3-TB volume on-premises that is used to hold a large repository of images and print layout files. This repository is growing at 500 GB a year and must be presented as a single logical volume. The customer is becoming increasingly constrained with their local storage capacity and wants an off-site backup of this data, while maintaining low-latency access to their frequently accessed data. Which AWS Storage Gateway configuration meets the customer requirements?

1 Mark(s)

Gateway-Cached volumes with snapshots scheduled to Amazon S3
Gateway-Stored volumes with snapshots scheduled to Amazon S3
Gateway-Virtual Tape Library with snapshots to Amazon S3
Gateway-Virtual Tape Library with snapshots to Amazon Glacier

You have a content management system running on an Amazon EC2 instance that is approaching 100% CPU utilization. Which option will reduce load on the Amazon EC2 instance? You have a content management system running on an Amazon EC2 instance that is approaching 100% CPU utilization. Which option will reduce load on the Amazon EC2 instance?

1 Mark(s)

Create a load balancer, and register the Amazon EC2 instance with it
Create a CloudFront distribution, and configure the Amazon EC2 instance as the origin
Create an Auto Scaling group from the instance using the CreateAutoScalingGroup action
Create a launch configuration from the instance using the CreateLaunchConfiguration action

A company needs to deploy services to an AWS region which they have not previously used. The company currently has an AWS identity and Access Management (IAM) role for the Amazon EC2 instances, which permits the instance to have access to Amazon DynamoDB. The company wants their EC2 instances in the new region to have the same privileges. How should the company achieve this? A company needs to deploy services to an AWS region which they have not previously used. The company currently has an AWS identity and Access Management (IAM) role for the Amazon EC2 instances, which permits the instance to have access to Amazon DynamoDB. The company wants their EC2 instances in the new region to have the same privileges. How should the company achieve this?

1 Mark(s)

Create a new IAM role and associated policies within the new region
Assign the existing IAM role to the Amazon EC2 instances in the new region
Copy the IAM role and associated policies to the new region and attach it to the instances
Create an Amazon Machine Image (AMI) of the instance and copy it to the desired region using the AMI Copy feature

Which of the following are true regarding AWS CloudTrail? Which of the following are true regarding AWS CloudTrail?

1 Mark(s)

CloudTrail is enabled on a per-region basis
CloudTrail is enabled on a per-service basis.
Logs can be delivered to a single Amazon S3 bucket for aggregation.
All of the above All of the above

You have confirmed that the network and security group rules are configured correctly and the instance is passing status checks. What steps should you take to identify the source of the behavior? You have confirmed that the network and security group rules are configured correctly and the instance is passing status checks. What steps should you take to identify the source of the behavior?

1 Mark(s)

Verify that the private key file corresponds to the Amazon EC2 key pair assigned at launch. Verify that you are connecting with the appropriate user name for your AMI.
Verify that your IAM user policy has permission to launch Amazon EC2 instances. Verify that the Amazon EC2 Instance was launched with the proper IAM role.
Verify that the Amazon EC2 Instance was launched with the proper IAM role.
Verify that your federation trust to AWS has been established. Verify that the Amazon EC2 Instance was launched with the proper IAM role.

An existing application stores sensitive information on a non-boot Amazon EBS data volume attached to an Amazon Elastic Compute Cloud instance. Which of the following approaches would protect the sensitive data on an Amazon EBS volume? An existing application stores sensitive information on a non-boot Amazon EBS data volume attached to an Amazon Elastic Compute Cloud instance. Which of the following approaches would protect the sensitive data on an Amazon EBS volume?

1 Mark(s)

A company is deploying a new two-tier web application in AWS. The company has limited staff and requires high availability, and the application requires complex queries and table joins. Which configuration provides the solution for the company's requirements? A company is deploying a new two-tier web application in AWS. The company has limited staff and requires high availability, and the application requires complex queries and table joins. Which configuration provides the solution for the company's requirements?

1 Mark(s)

Amazon Simple Email Service Amazon Simple Email Service
Amazon CloudWatch, Amazon Simple Notification Service
Amazon Simple Queue Service Amazon Simple Queue Service
Amazon Route 53 Amazon Route 53

You are deploying an application to track GPS coordinates of delivery trucks in the United States. Coordinates are transmitted from each delivery truck once every three seconds. You need to design an architecture that will enable real-time processing of these coordinates from multiple consumers. Which service should you use to implement data ingestion? You are deploying an application to track GPS coordinates of delivery trucks in the United States. Coordinates are transmitted from each delivery truck once every three seconds. You need to design an architecture that will enable real-time processing of these coordinates from multiple consumers. Which service should you use to implement data ingestion?

1 Mark(s)

Amazon Kinesis Amazon Kinesis
AWS Data Pipeline AWS Data Pipeline
Amazon AppStream Amazon AppStream
Amazon Simple Queue Service Amazon Simple Queue Service