Wich AWS services can be used to store files ?

Choose 2 options:

Amazon Cloudwatch

Amazon Simple Storage Service – S3

Amazon Elastic Block Store – EBS

AWS Config

Amazon Athena

Wich of the following services uses AWS edge locations ?

Amazon Virtual Private Cloud – VPC

Amazon CloudFront

Amazon Elastic Compute Cloud – EC2

AWS Storage Gateway

Wich of the following ia a benefit of amazon elastic compute cloud (EC2) over on-premise physical
servers ?

Automated backup

Paying only foir what you use

The ability to choose hardware vendors

Root/ Administrator Access

Wich AWS services provides infrastructure security optimization recommendation ?

AWS Application Programing Interface

Reserved Instances

AWS Trusted Advisor

Amazon Elastic Compute Cloud – Spot Fleet

Wich services allows for the collection and tracking of perfomance metrics for AWS services ?

Amazon CloudFront

Amazon CloudSearch

Amazon Cloudwatch

Amazon Machine Learning

A company needs to know wich user was responsible for terminating several critical Amazon
Elastic Compute Cloud EC2 Instances. Where can the customer find this information ?

AWS Trusted Advisor

Amazon EC2 instance usage report

Amazon CloudWatch

AWS Cloud Trail Logs

Wich services should na administrator use to register a new domain name with AWS ?

Amazon Route 53

Amazon CloudFront

Elastic Load Balancing

Amazon Private Cloud – VPC

What is the value of having AWS cloud services accessible trough na API ?

It Allows developers to work with AWS resources programmatically

AWS resources will always be cost-optimized

All application testing can be managed by AWS

Customer-owned, on-premises infrastructure becomes programmable

Wich of the following examples supports AWS Architecting for Cloud Best Practice Principle
“Desing for Failure and nothing will fail” ?

Adding na elastic load balancer in front of a single Amazon Elastic COmpute Cloud – EC2 instance

Creating and deploying the most cost-effective solution

Deploying an application in multiple Availbility Zone

Using Amazon CLoudWatch alerts to monitor perfomance

Wich services allows na administrator to create and modify AWS user permissions ?

AWS Config (Achei que era esse, mas ele faz toda a gestão de configuração e recursos da AWS)

AWS CloudTrail (Faz todo serviço e tracking de acesso dos recursos da AWS)

AWS Key Management Service (Faz a gestão de certificados digitais)

AWS Identity and Access Management (Primeiro Erro Atenção)

Witch AWS service automates infrastructure provisioning and administrative tasks for an
analytical data warehouse ?

Amazon Redshift (banco de dados colunar da aws para a criação de data warehouse, data
lakes para usar em big data)

Amazon DynamoDB (banco de dados NO-SQL, mais utilizado para IOT e mobile)

Amazon ElasticCache (banco de dados para amazenamento de cache de pesquisas)

Amazon Aurora (banco de dados relacional, baseado em MySQL)

Wich of the following is the responsibility of the AWS customer according to the Shared Security
Model ?

Managing AWS Identity and Acess Management IAM

Securing Edge Locations

Monitoring physical device security

Implementing service organization control (SOC) standards (Implementar padrões de serviços de

controle organizacional é função da AWS)

Where can a customer go to get more detail about Amazon EC2 billing activity that took place 3
months ago ?

Amazon EC2 Dashboard (Nem existe)

AWS Cost and Usage Reports

AWS Trusted Advisor

AWS CloudTrail Logs stored in Amazon S3 (Faz registro de acesso, não de custos)

Who has control of the data security in na AWS account ?

AWS support Team

AWS Account Owner

AWS Security Team

AWS Technical Account Manager – TAM

The main benefit of decoupling an application is to

Create a tightly integrated application

Reduce inter-dependencies so failures do not impact other components

Enable data synchronization across the web application layer

Have the ability to execute automated bootstrapping actions

Which of the following is a benefit of running an application across two Availability zones ?

Perfomance is improved over running in a single AZ

It is more secure than running in a single AZ (A segurança manterá a mesma, q é responsabilidade de

cliente)

It significantly reduces total cost of ownership versus running in a single AZ

It increases the availability of an application to running in a single AZ

Which of the following security requirements are managed by AWS customer ? (Select two)

Password policies

User permissions

Physical Security

Disk disposal

Hardware Patching

According the AWS the benefit of Elasticity is:

Minimize storage requirements by reducing longing and auditing activities

Create system that scale to the required capacity based on changes in demand

Enable AWS to automatically select the most cost-effective services

Accelerate the desing process because recovery from failure is automated, reducing the need for
testing
Amazon EC2 Spot instances would be most appropriate for wich of the following scenarios:

Workloads where the availability of the amazon EC2 instances can be flexible (Instancias Spot
podem ser flexiveis, por exemplo em um restaurante ele aumenta a capacidade durante o almoço e
depois diminui )

Workloads that need to run for long periods of time without interruption ( Exatamente o contrario,
pois o Spot te entrega o serviço e depois sai do ar, logo para este tipo de situação é inviavel, o ideal é
reserved instances)

Workloads that are critical and need Amazon EC2 instances with termination protection

What AWS feature enables a user to manage services throught a web-based user interface ?

AWS Management Console (Errei por q não li direito, ta falando no enunciado a aplicação que
permite o acesso via interface web dos serviços da amazon e não de um website criado na amazon)

AWS Application Programmimg Interface (API)

AWS Software Development Kit (SDK)

Amazon CloudWath

Wich tool can you use to forecast your AWS spending ?

AWS organizations

Amazon Dev Pay

AWS Trusted Advisor

AWS Cost Explorer

How can you protect your AWS account against unauthorized access ?

Apply Multi-Factor Authentication (MFA)

Set up a secondary password

Request root access privileges

Disable AWS console access

Wich AWS Cloud service is used to turn on Multi-Factor Authentication (MFA) ?

AWS Identity and Access Management (IAM)

Amazon Elastic Compute Cloud (Amazon EC2)

AWS Config

Amazon Inspector

A disaster recevery strategy on AWS should be based on launching resources ina a separate:

Subnet

AWS Region

Security Group

Amazon Virtual Private Cloud (Amazon VPC)

Which of the following is a factor when calculating Total Cost of Ownership (TCO) for the AWS
Cloud?

The number os servers migrated to AWS

The num of users migrated to AWS

The number of passwords migrated to AWS

The number of keys migrated to AWS

Which service is used to as a global Content Delivery Network (CDN) service in AWS ?

Amazon SES

Amazon CloudTrail

Amazon CloudFront

Amazon S3
Which of the following is a fully managed NoSQL database service available with AWS ?

AWS RDS (Banco de dados relacional )

AWS Redshift (banco de dados colunar para big data)

AWS DynamoDB

AWS MongoDB (Banco de dados NoSQL, porém não é totalmente gerenciavel)

A company wants to store files that are not frequently accessed. What is the most cost efficient
solution that should be considered ?

Amazon Storage Gateway (é um gateway e não um servico de controle de acesso )

Amazon Glacier (custa menos que o S3)

Amazon EBS (é o disco onde vai ser armazenado o sistema operacional da sua maquina virtual)

Amazon S3 (é um sistema de armazenamento porém para dados acessados com mais frequencia)

You are currently hosting an infrastructure and most of the EC2 instances are near 90-100 % utilized
and you expect this to continue for at least a year. What is the type of EC2 instances you would
utilize to ensure costs are minimized ?

Reserved Instances (vc aluga por 1 a 3 anos, é mais eficiente por q se vc vai utilizar toda a instancia e
já aluga ela por mais tempo sai bem mais barato)

On-Demand Instances ( não tem o custo efetivo)

Spot Instances (tem um baixo custo mas não garante que as instancias vao estar sempre sendo
utilizadas, como o caso é de 90% de utilização não se aplica)

Dedicated Host Instances (não tem redução de custos tem um host dedicado)
What is the AWS feature that enables fast, easy and secure transfers of files over long distances
between your client and your Amazon S3 bucket ?

File Transfer

HTTP Transfer

Transfer Acceleration

S3 Acceleration

As per the AWS Acceptable Use Policy, penetration testing of EC2 instances:

May be perfomed by AWS, and will be perfomed by AWS upon customer request (AWS não faz esse
servico)

May be performed by AWS, and is periodically performed by AWS (AWS não faz esse servico)

Are expressly prohibited under all circumstances

May be performed by the customer on their own instances with prior authorization from AWS (vc
aceita isso quando cria sua conta na AWS)

May be performed by the customer on their own instances, only if performed from EC2 instances
(precisa de autorização)

The trusted Advisor service provides insight regarding which four categories of na AWS account ?

Security, fault tolerance, high availability, connectivity and Service Limits

Security, access control, high availability, perfomance and Service limits

Perfomance, cost optimization, security, fault tolerance and service limits

Perfomance, cost optimization, access control, connectivity anb service limits

A company is deploying a three-tier, highly available web application to AWS. Wich service
provides durable storage for static content while utilizing lower Overall CPU resources for the
Business layer?

Amazon EBS Volume (Disco onde vai o sistema operacinal)

Amazon S3 (sistema de armazenamento com o proposito de colocar os dados estaticos de

aplicações)

Amazon Ec2 Instance Store (não existe)

Amazon RDS Instance (banco de dados relacional)

What best describles the “Principle of Least Privilege”? Choose the correct answer from the
options given below:

All users should have the same baseline permissions granted to them to use basic AWS services.

Users Should be granted permission to acess only resources they need to do their assigned job

Users should submit all access requests in written form so that there is a paper trail of who needs
access to different AWS resources

Users should always have a little more access granted to them then they need, just in case they end
up needed it in the future

Which of the below mentioned services can be used to host virtual servers on AWS ?

AWS IAM

AWS Server (não existe)

AWS EC2 (pra aprender a confiar mais em vc caralho)

AWS Regions
Wich of the following can be used to secure EC2 Instances hosted in AWS ? Choose 2 answers from
the options given below:

Usage of Security Groups (firewall para as instâncias)

Usage of AMI’s (AMI é a instancia EC2 em si, a imagem da instancia EC2)

Usage of Network Access Control Lists (controla que trafego pode entrar na rede, q pode fazer
acesso)

Usage of the Internet gateway (Garante acesso a internet, mas seguranca é firewall)

You work for a company that plans to use EC2 service. Currently, the company creates golden
images of their production Operating System. Wich of the following corresponds to a golden
image (imagem padrão) in AWS ?

EBS Volumes

EBS Snapshots

Amazon Machines Images (AMI)

EC2 Copies

You plan to deploy an application on the AWS. This application needs to be PCI Compliant. Wich of
the below steps are needed to ensure the compliance ? Choose 2

Choose AWS services wich are PCI compliant

Ensure the right steps are taken during application development for PCI Compliance

Ensure the AWS Services are made PCI Compliant

Do an audit after the deployment of the application for PCI Compliance

Wich of the below can be used to import data into amazon Glacier? Choose 3

AWS Glacier API

AWS Console

AWS Glacier SDK (imbutido em alguma aplicação q vai fazer o import)

AWS S3 Lifecycle policies (tira do s3 depois de um tempo e coloca no glacier)

Wich of the following in the AWS Support plans gives access to a support Concierge ?

Basic

Developer

Business

Enterprise

A company is planning to use AWS to host critical applications. Most of their systems are business
critical and need to have response times less than 15 minutes. Wich of the following support plans
should they consider ?

Basic

Developer

Business

Enterprise

Wich of the following is NOT a feature of na Edge Location ?

Distribute content to users

Cache common responses

Distribute load across multiple resources

Used in conjunction with the CloudFront service

There is a requirement (precisa atender) to store objects. The objects are downloaded via url. Wich
storage option would you choose ?

Amazon S3 (permite ter um url para cada um dos objetos armazenados)

Amazon Glacier

Amazon Storage gateway

Amazon EBS

There is a requirement to host a database for a minimum period pf one year. Wich of the following
would result in the least cost?

Spot Instances

On-Demand

No upfront costs Reserved

Partial Upfront costs Reserved (Pagando uma parte adiantada reduz o custo)

There is a requirement for a development and test environment for 3 months. Wich would you use ?

Spot instances (é leilão)

On-Demand ( única opção que permite 3 meses)

No Upfront costs reserved (instancias reservadas 1 a 3 anos)

Partial upfront cost reserved (instancias reservadas 1 a 3 anos)

When creating security groups, wich of the following is a responsability of the customer ? Choose
2

Giving a name and description for the security group

Defining the rules as per the customer reaquirements

Ensure the rules are applied immediately (responsabilidade da AWS)

Ensure the security groups are linked to the Elastic Network Interface (responsabilidade da AWS)

Wich of the following are advantages of having infrastructure hosted on the AWS Cloud ? Choose 2

Having complete control over the physical infrastructure

Having the pay as you go model

No upfront costs

Having no need to worry about security

There is na external audit being carried out on your company. The IT auditor needs to have a log of
all access to he AWS resources in the company’s account. Which of the below services can assist in
providing these details ?

AWS CloudWatch

AWS CloudTrail

AWS EC2

AWS SNS

Wich of the following features of RDS allows for data redundancy across regions ?

Cross region replication

Creating Read Replica’s

Using snapshots (não é relacionado a redundancia de dados)

Using Multi-AZ feature

Your company has a set of EC2 Instances hosted in AWS, There is a requirement to create snapshots
from the EBS volumes attached to these EC2 instances in another geographical location. As per this
requirement, where would you create the snapshots ?

In another Availability Azone

In another Region (é uma região geográfica)

In another data center

In another Edge location

A company wants to host a self-managed (gerenciado por ela) database in AWS. How would you
ideally implement this solution ?

Using the AWS DynamoBD service (gerenciado pela AWS)

Using the AWS RDS service (gerenciado pela AWS)

Hosting a database on na EC2 instance (como é gerenciado pelo cliente, vc intala no EC2)

Using the Amazon Aurora Service (gerenciado pela AWS, dentro do RDS)

Wich of the following is a compatible MySQL database wich also has the ability to grow in storage
size on its own ?

Aurora

DynamoDB

RDS Microsoft SQL Server

RDS MySQL (não tem a habilidade de crescer só)

Wich of the following statements are TRUE when it comes to elasticity ? Choose 2 (elasticidade tem
muito mais a ver com atender a sua demanda)

Diverting traffic to instances based on the demand (divisão do trafico nas instancias baseado na
demanda)

Diverting traffic to instances with the least load (divisão do tráfico para instancias que consigam
atender a carga minima necessária)

Diverting traffic across multiple regions

Diverting traffic to instances with higher capacity

Wich of the following is the concept of the Elastic load balancer ?

To distribute traffic to multiple EC2 instances (distribui o trafego para varias instancias de forma que
vc consiga atender minimamente a demanda)

To Scale up EC2 Instances

To distribute traffic to AWS resources across multiple regions

To increase the size of the EC2 instance based on demand (o elastic load balancer so distribui, ele
não aumenta o tamanho da instancia)

Wich of the following is the concept of autoscaling?

To scale up resources based on demand

To distribute traffic to multiple EC2 instances

To distribute traffic to AWS resources across multiple regions

To increase the size of the EC2 instance based on demand

Wich of the following is used to derive the costs for moving artifacts from a on-promise to AWS ?

AWS TCO calculator

AWS Config

AWS Cost Explorer

AWS Consolidating biling

Wich of the following is the responsibility of the customer when ensuring that data on EBS volumes
is left safe ?

Deleting the data when the device is destroyed

Creating EBS snapshots

Attaching volumes to EC2 instances

Creating copies of EBS volumes (faz sentido porém o nome do termo é snapshots)

Wich of the following can be used to call AWS services from programming languages ?

AWS SDK

AWS Console

AWS CLI (linha de comando)

AWS IAM (serviço de gestão de identidade)

Wich of the following is the secure way of using API to call AWS from EC2 Instances ?

IAM Roles (maneira de fazer acesso entre serviços da AWS sem ficar criando usuarios especificos)

IAM Users

IAM Groups

IAM Policies

Wich of the following are 2 ways that AWS allows to link Accounts ?

Consolidating billing (permite o agrupamento do faturamento das contas)

AWS Organizations (deixa colocar todas as contas da aws dentro de uma mesma organização)

Cost Explorer

IAM (cria usuarios mas não faz o link entre eles)

Wich of the following helps in DDos protection. Choose 2

CloudFront (ajuda o shield quando utilizado pelo cliente na proteção de ddos)

AWS Shield (serviço da aws que faz a proteção de ddos)

AWS EC2

AWS Config
Wich of the following services can be used as a web application firewall in AWS ?

AWS EC2

AWS WAF (web application firewall)

AWS Firewall (não existe)

AWS Protection (não existe)

You want to add na extra layer of protection to the current authentication mechanism of user
names and passwords for AWS. Wich of the fallowing can help in this regard ?

Using Password Policies

Using a mix of user names

Using AWS WAF

Using MFA

Wich of the following disaster recovery deployment mechanisms that has the lowest downtime ?

Pilot light

Warm standby

Backup Restore

DevOps

Wich of the following services allowns for object level storage on AWS ?

Amazon EBS

SES

Amazon S3

Amazon SQS (serviço de filas)

Wich of the following services allows you to analyze EC2 instances against pre-defined security
templates to check for vulnerabilities ?

AWS inspector

AWS Shield

AWS WAF

AWS Trusted Advisor

Your company is planning to host resources in the AWS Cloud. They want to use services wich can be
used to decouple resources hosted on the cloud. Wicch of the following services can help fulfil this
requirement ?

AWS EBS volumes

AWS SQS

AWS Glacier

AWS EBS snapshots

https://docs.aws.amazon.com/inspector/latest/userguide/inspector_introduction.html

https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/Welco
me.html
https://aws.amazon.com/snowball/?p=tile
https://aws.amazon.com/route53/
https://aws.amazon.com/elasticbeanstalk/?p=tile
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSVolumes.html
https://aws.amazon.com/s3/ https://aws.amazon.com/dynamodb/
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Aurora.Overview.html
https://aws.amazon.com/premiumsupport/compare-plans/
https://aws.amazon.com/disaster-recovery/