NEW QUESTION 1
Your department creates regular analytics reports from your company's log files. All log data is collected in Amazon S3 and processed by daily Amazon Elastic MapReduce (EMR) jobs that generate daily PDF reports and aggregated tables in CSV format for an Amazon Redshift data warehouse. Your CFO requests that you optimize the cost structure for this system.
Which of the following alternatives will lower costs without compromising average performance of the system or data integrity for the raw data?

• A. Use reduced redundancy storage (RRS) for all data In S3. Use a combination of Spot Instances and Reserved Instances for Amazon EMR job
• B. Use Reserved Instances for Amazon Redshift.
• C. Use reduced redundancy storage (RRS) for PDF and .csv data in S3. Add Spot Instances to EMR job
• D. Use Spot Instances for Amazon Redshift.
• E. Use reduced redundancy storage (RRS) for PDF and .csv data In Amazon S3. Add Spot Instances to Amazon EMR job
• F. Use Reserved Instances for Amazon Redshift.
• G. Use reduced redundancy storage (RRS) for all data in Amazon S3. Add Spot Instances to Amazon EMR job
• H. Use Reserved Instances for Amazon Redshift.

Answer: D

Explanation:
Reserved Instances (a.k.a. Reserved Nodes) are appropriate for steady-state production workloads, and offer significant discounts over On-Demand pricing.
https://aws.amazon.com/redshift
Q: What are some EMR best practices?
If you are running EMR in production you should specify an AMI version, Hive version, Pig version, etc. to make sure the version does not change unexpectedly (e.g. when EMR later adds support for a newer version). If your cluster is mission critical, only use Spot instances for task nodes because if the Spot price increases you may lose the instances. In development, use logging and enable debugging
to spot and correct errors faster. If you are using GZIP, keep your file size to 1–2 GB because GZIP files cannot be split. Click here to download the white paper on Amazon EMR best practices. https://aws.amazon.com/elasticmapreduce/faqs

NEW QUESTION 2
Your EBS volumes do not seem to be performing as expected and your team leader has requested you look into improving their performance. Which of the following is not a true statement relating to the performance of your EBS volumes?

• A. Frequent snapshots provide a higher level of data durability and they will not degrade the performance of your application while the snapshot is in progress.
• B. General Purpose (SSD) and Provisioned IOPS (SSD) volumes have a throughput limit of 128 MB/sper volume.
• C. There is a relationship between the maximum performance of your EBS volumes, the amount of I/O you are driving to them, and the amount of time it takes for each transaction to complete.
• D. There is a 5 to 50 percent reduction in IOPS when you first access each block of data on a newly created or restored EBS volume

Answer: A

Explanation:
Several factors can affect the performance of Amazon EBS volumes, such as instance configuration, I/O characteristics, workload demand, and storage configuration. Frequent snapshots provide a higher level of data durability, but they may slightly degrade the performance of your application while the snapshot is in progress. This trade off becomes critical when you have data that changes rapidly. Whenever possible, plan for snapshots to occur during off-peak times in order to minimize workload impact.

NEW QUESTION 3
An online gaming site asked you if you can deploy a database that is a fast, highly scalable NoSQL database service in AWS for a new site that he wants to build. Which database should you recommend?

• A. Amazon DynamoDB
• B. Amazon RDS
• C. Amazon Redshift
• D. Amazon SimpleDB

Answer: A

Explanation:
Amazon DynamoDB is ideal for database applications that require very low latency and predictable performance at any scale but don't need complex querying capabilities like joins or transactions. Amazon DynamoDB is a fully-managed NoSQL database service that offers high performance, predictable throughput and low cost. It is easy to set up, operate, and scale. With Amazon DynamoDB, you can start small, specify the throughput and storage you need, and easily scale your capacity requirements on the fly. Amazon DynamoDB automatically partitions data over a number of servers to meet your request capacity. In addition, DynamoDB automatically replicates your data synchronously across multiple Availability Zones within an AWS Region to ensure high-availability and data durability.

NEW QUESTION 4
You're trying to delete an SSL certificate from the IAM certificate store, and you're getting the message "Certificate: <certificate-id> is being used by CloudFront." Which of the following statements is probably the reason why you are getting this error?

• A. Before you can delete an SSL certificate, you need to either rotate SSL certificates or revert from using a custom SSL certificate to using the default CloudFront certificate.
• B. You can't delete SSL certificate
• C. You need to request it from AWS.
• D. Before you can delete an SSL certificate, you need to set up the appropriate access level in IAM
• E. Before you can delete an SSL certificate you need to set up https on your serve

Answer: A

Explanation:
CloudFront is a web service that speeds up distribution of your static and dynamic web content, for example, .html, .css, .php, and image files, to end users. Every CloudFront web distribution must be associated either with the default CloudFront certificate or with a custom SSL certificate.
Before you can delete an SSL certificate, you need to either rotate SSL certificates (replace the
current custom SSL certificate with another custom SSL certificate) or revert from using a custom SSL certificate to using the default CloudFront certificate.

NEW QUESTION 5
Which of the CloudWatch services mentioned below is NOT a part of the AWS free tier?

• A. 10 alarms/month
• B. 1 million API request/month
• C. 10 metrics/month
• D. 15 detailed monitoring metrics

Answer: D

Explanation:
CloudWatch provides the basic monitoring metrics (at five-minute frequency), 10 metrics (applicable to detailed monitoring for the Amazon EC2 instances or custom metrics), 10 alarms, and 1 million API requests each month at no additional charge.
http://aws.amazon.com/cloudwatch/pricing/

NEW QUESTION 6
What does Amazon SES stand for?

• A. Simple Elastic Server
• B. Simple Email Service
• C. Software Email Solution
• D. Software Enabled Server

Answer: B

Explanation:
http://aws.amazon.com/ses/

NEW QUESTION 7
Using Amazon IAM, I can give permissions based on organizational groups?

• A. True
• B. False

Answer: A

NEW QUESTION 8
Spot instances are ideally designed for which purpose below?

• A. Running database instances that can scale up and down based on a specific workload.
• B. Running long duration and highly transactional applications.
• C. For building distributed fault tolerant databases under a tight deadline.
• D. Taking advantage of excess EC2 capacity at prices below standard on-demand rates, for short duration jobs.

Answer: D

Explanation:
There are four general categories of time-filexible and interruption-tolerant tasks that work well with Spot Instances: Delay able tasks, Optional tasks, Tasks that can be sped up by adding additional computing power and at the end, Tasks that require a large number of compute instances that you can't access any other way.
http://aws.amazon.com/ec2/spot-instances/

NEW QUESTION 9
You have just discovered that you can upload your objects to Amazon S3 using Multipart Upload API. You start to test it out but are unsure of the benefits that it would provide. Which of the following is not a benefit of using multipart uploads?

• A. You can begin an upload before you know the final object size.
• B. Quick recovery from any network issues.
• C. Pause and resume object uploads.
• D. It's more secure than normal uploa

Answer: D

Explanation:
Multipart upload in Amazon S3 allows you to upload a single object as a set of parts. Each part is a contiguous portion of the object's data. You can upload these object parts independently and in any order. If transmission of any part fails, you can re-transmit that part without affecting other parts. After all parts of your object are uploaded, Amazon S3 assembles these parts and creates the object. In general, when your object size reaches 100 MB, you should consider using multipart uploads instead of uploading the object in a single operation.
Using multipart upload provides the following advantages:
Improved throughput--You can upload parts in parallel to improve throughput. Quick recovery from any network issues--Smaller part size minimizes the impact of restarting a failed upload due to a network error.
Pause and resume object uploads--You can upload object parts over time. Once you initiate a multipart upload there is no expiry; you must explicitly complete or abort the multipart upload. Begin an upload before you know the final object size--You can upload an object as you are creating it.

NEW QUESTION 10
Amazon RDS supports SOAP only through _____ .

• A. HTTP or HTTPS
• B. TCP/IP
• C. HTTP
• D. HTTPS

Answer: D

Explanation:
Amazon RDS supports SOAP only through HTTPS
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/using-soap-api.html

NEW QUESTION 11
A customer wants to track access to their Amazon Simple Storage Service (S3) buckets and also use this information for their internal security and access audits. Which of the following will meet the Customer requirement?

• A. Enable AWS CloudTrail to audit all Amazon S3 bucket access.
• B. Enable server access logging for all required Amazon S3 buckets.
• C. Enable the Requester Pays option to track access via AWS Billing
• D. Enable Amazon S3 event notifications for Put and Pos

Answer: B

Explanation:
References:
http://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html http://docs.aws.amazon.com/AmazonS3/latest/dev/cloudtrail-logging.html

NEW QUESTION 12
Is decreasing the storage size of a DB Instance permitted?

• A. Depends on the RDMS used
• B. Yes
• C. No

Answer: C

Explanation:
"note that you cannot reduce storage size once it has been allocated" Source: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuideCHAP_Storage.html#CHAP_Storage.Fact sAbout

NEW QUESTION 13
If I want my instance to run on a single-tenant hardware, which value do I have to set the instance's tenancy attribute to?

• A. dedicated
• B. isolated
• C. one
• D. reserved

Answer: A

Explanation:
http://aws.amazon.com/ec2/dedicated-hosts/

NEW QUESTION 14
Which Auto Scaling features allow you to scale ahead of expected increases in load? (Select TWO.)

• A. Cooldown period
• B. Lifecycle hooks
• C. Desired capacity
• D. Scheduled scaling
• E. Health check grace period
• F. Metric-based scaling

Answer: DF

NEW QUESTION 15
To retrieve instance metadata or userdata you will need to use the following IP Address;

• A. http://127.0.0.1
• B. http://192.168.0.254
• C. http://10.0.0.1
• D. http://169.254.169.254

Answer: D

NEW QUESTION 16
Out of the striping options available for the EBS volumes, which one has the following disadvantage : 'Doubles the amount of I/O required from the instance to EBS compared to RAID 0, because you're mirroring all writes to a pair of volumes, limiting how much you can stripe.' ?

• A. Raid 5
• B. Raid 6
• C. Raid 1
• D. Raid 2

Answer: C

NEW QUESTION 17
In Amazon CloudFront, to create signed URLs, an AWS account must have at least ____.

• A. one active CloudFront Trusted Signer
• B. one active CloudFront key pair
• C. one active CloudFront administrator user
• D. two CloudFront secret keys

Answer: B

Explanation:
In Amazon CloudFront, to create signed URLs, an AWS account must have at least one active CloudFront key pair. http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-valuesspecify. html

NEW QUESTION 18
A customer has a single 3-TB volume on-premises that is used to hold a large repository of images
and print layout files. This repository is growing at 500 GB a year and must be presented as a single logical volume. The customer is becoming increasingly constrained with their local storage capacity and wants an off-site backup of this data, while maintaining low-latency access to their frequently accessed data. Which AWS Storage Gateway configuration meets the customer requirements?

• A. Gateway-Cached volumes with snapshots scheduled to Amazon S3
• B. Gateway-Stored volumes with snapshots scheduled to Amazon S3
• C. Gateway-Virtual Tape Library with snapshots to Amazon S3
• D. Gateway-Virtual Tape Library with snapshots to Amazon Glacier

Answer: A

NEW QUESTION 19
A company is hosting EC2 instances which focuses on work-loads are on non-production and nonpriority batch loads. Also these processes can be interrupted at any time.
What is the best pricing model which can be used for EC2 instances in ülis case?

• A. Reserved Instances
• B. On-Demand Instances
• C. Spot Instances
• D. Regular Instances

Answer: C

Explanation:

NEW QUESTION 20
When will you incur costs with an Elastic IP address (EIP)?

• A. When an EIP is allocated.
• B. When it is allocated and associated with a running instance.
• C. When it is allocated and associated with a stopped instance.
• D. Costs are incurred regardless of whether the EIP is associated with a running instanc

Answer: C

Explanation:
You are allowed one EIP to be attached to a running instance at no charge. otherwise, it will incur a small fee. in this case, the instance is stopped, and thus, the EIP will be billed at the normal rate. http://aws.amazon.com/ec2/pricing/

NEW QUESTION 21
A Solutions Architect is designing a log-processing solution that requires storage that supports up to 500 MB/s throughput. The data is sequentially accessed by an Amazon EC2 instance.
Which Amazon storage type satisfies these requirements?

• A. EBS Provisioned IOPS SSD (io1)
• B. EBS General Purpose SSD (gp2)
• C. EBS Throughput Optimized HDD (st1)
• D. EBS Cold HDD (sc1)

Answer: C

Explanation:
Reference https://aws.amazon.com/ebs/faqs/

NEW QUESTION 22
You work for a market analysis firm who are designing a new environment. They will ingest large amounts of market data via Kinesis and then analyze this data using Elastic Map Reduce. The data is then imported in to a high performance NoSQL Cassandra database which will run on EC2 and then be accessed by traders from around the world. The database volume itself will sit on 2 EBS volumes that will be grouped into a RAID 0 volume. They are expecting very high demand during peak times, with an IOPS performance level of approximately 15,000. Which EBS volume should you recommend?

• A. Magnetic
• B. General Purpose SSD
• C. Provisioned IOPS (PIOPS)
• D. Turbo IOPS (TIOPS)

Answer: C

Explanation:

NEW QUESTION 23
A customer needs corporate IT governance and cost oversight of all AWS resources consumed by its divisions. The divisions want to maintain administrative control of the discrete AWS resources they consume and keep those resources separate from the resources of other divisions. Which of the following options, when used together will support the autonomy/control of divisions while enabling corporate IT to maintain governance and cost oversight? (Choose two.)

• A. Use AWS Consolidated Billing and disable AWS root account access for the child accounts.
• B. Enable IAM cross-account access for all corporate IT administrators in each child account.
• C. Create separate VPCs for each division within the corporate IT AWS account.
• D. Use AWS Consolidated Billing to link the divisions' accounts to a parent corporate account.
• E. Write all child AWS CloudTrail and Amazon CloudWatch logs to each child account's Amazon S3 'Log' bucket.

Answer: BD

Explanation:
B & D are correct when used in combination with each other.
C is theoretically correct by itself, but does not work well with the other choices since it involves only a single AWS account, and the other possibly correct choices (B & D) both involve separate AWS accounts. The question specifically states “Which of the following options, when used together”. So C is out.
A is incorrect because you don’t want to disable root access to the child accounts (well, except for their access keys for API calls, deleting those is OK).
E is incorrect because it’s the exact opposite of a best practice to centralize logs/security audit info across multiple corporate AWS accounts. http://docs.aws.amazon.com/IAM/latest/UserGuide/tutorial_cross-account-with-roles.html http://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html

NEW QUESTION 24
You are a student currently learning about the different AWS services. Your employer asks you to tell him a bit about Amazon's glacier service. Which of the following best describes the use cases for Glacier?

• A. Infrequently accessed data & data archives
• B. Hosting active databases
• C. Replicating Files across multiple availability zones and regions
• D. Frequently Accessed Data

Answer: A

NEW QUESTION 25
A user has configured a website and launched it using the Apache web server on port 80. The user is using ELB with the EC2 instances for Load Balancing. What should the user do to ensure that the EC2 instances accept requests only from ELB?

• A. Configure the security group of EC2, which allows access to the ELB source security group
• B. Configure the EC2 instance so that it only listens on the ELB port
• C. Open the port for an ELB static IP in the EC2 security group
• D. Configure the security group of EC2, which allows access only to the ELB listener

Answer: A

Explanation:
When a user is configuring ELB and registering the EC2 instances with it, ELB will create a source security group. If the user wants to allow traffic only from ELB, he should remove all the rules set for the other requests and open the port only for the ELB source security group.

NEW QUESTION 26
You are a solutions architect who has been asked to do some consulting for a US company that produces re-useable rocket parts. They have a new web application that needs to be built and this application must be stateless. Which three services could you use to achieve this?

• A. AWS Storage Gateway, Elasticache & ELB
• B. ELB, Elasticache & RDS
• C. Cloudwatch, RDS & DynamoDb
• D. RDS, DynamoDB & Elasticach

Answer: D

NEW QUESTION 27
......