Amazon Compute Exam— Questions and Answers

Photo by Pixabay

Question 1: Your organization wants to be able to deploy serverless applications by leveraging AWS CDK. What is the process of provisioning resources for the AWS CDK before you deploy AWS CDK apps into an AWS environment?

• Setting Boot Mode
• Hibernating
• Bootstrapping
• Using Elastic Beanstalk

Question 2: Your company wishes to utilize an open-source file system with your Amazon EC2 instance. Which file storage solution should they utilize?

• Amazon S3
• Amazon FSx
• Amazon RDS
• Amazon EFS

Question 3: The CIO of your company contacted you to investigate the AWS compute services that could be utilized to migrate on-premises workloads to AWS. He further stated he would like to have the flexibility to migrate or modernize each workload. Which compute services could be utilized? (Select Three)

• Amazon EC2
• AWS Lambda
• AWS VPC
• Amazon EBS
• Amazon ECS
• AWS Trusted Advisor

Question 4: A customer has a variety of workloads and is investigating what workload types would be a good fit for Amazon EC2 Spot Instances. Which of the following workloads should they consider using with Amazon EC2 Spot Instances?

• Both workloads that are stateful and intolerant
• Workloads that are flexible
• Workloads that are intolerant of occasional periods when the target capacity is not
  completely available
• Workloads that are stateful

Question 5: Your company is considering moving to the cloud. You are looking for a cloud provider that offers capabilities in multiple architectures. What architectures does Amazon support?

• x86,ARM, Mac
• Mac
• x86, Mac
• ARM, x86

Question 6: A development team wants to automate a workflow in AWS such that when someone uploads a file in Amazon Simple Storage Service (Amazon S3), an output with the object type is generated and sent to Amazon CloudWatch Logs. Which compute type is MOST appropriate for this workflow?

• AWS Fargate
• Amazon EC2 Instance
• Amazon Elastic Kubernetes Service (Amazon EKS) container
• AWS Lambda

Question 7: A company is looking to explore serverless computing solutions to eliminate operational overhead and lower costs. Which of the following is a serverless computing solution?

• Amazon Aurora
• Amazon Elastic Kubernetes Service
• On-Demand Capacity Reservations
• AWS Lambda

Question 8: A company wants to deploy a high-speed memory application for delivering fast-performance workloads processing large data sets in memory. What instance family will be BEST suited for this use case?

• M3
• T2
• C4
• R5

Question 9: Your company’s security team has informed you that a vulnerability exists with one of the EC2 instances that is allowing all traffic to access the operating system. They want you to secure the EC2 instance at the operating system level. Which of the following is used to allow or deny traffic at the operating system level on an EC2 instance?

• Firewall
• Security Group
• Subnet
• Network Address Translation (NAT) Gateway

Question 10: A company has deployed its internal web application on M5.4xlarge EC2 instance type. The system administrator has noticed reduced traffic to the EC2 instance and is considering rightsizing the instance type to make it more cost and resource-optimized. Which AWS service should the administrator use for making this decision?

• Personal Health Dashboard (PHD)
• CloudWatch Metrics
• AWS Compute Optimizer
• AWS Pricing Calculator

Question 11: All Amazon EC2 instances launched since 2018 are based on the Nitro system. Amazon EC2 instances provide protection from dimension 1 of Confidential Computing, wherein customer content remains protected from operators of the cloud service provider. Which design tenet enables this confidentiality from the first dimension?

• Compute without access
• access and management privileges
• No operator access
• Encryption of data

Question 12: You are the solutions architect for a large data processing company that has decided to move all workloads to the AWS Cloud. The workloads require graphics processing units (GPUs) and high processing capabilities, and you need to choose the correct EC2 instance type. Which instance family is the BEST option?

• X2idn instances
• Compute optimized instances
• Storage optimized instances
• Accelerated computing instances

Question 13: As the CFO of the IT firm, you need to conduct a comprehensive analysis of the company’s IT spending for the last 12 months. Which tools provided by AWS can be leveraged for analysis

• AWS Cost and Usage Reports
• AWS Cost Anomaly Detection
• AWS Lambda
• AWS Cost Explorer
• AWS Budget

Question 14: An organization plans to store data locally on an instance. This data needs to be accessed with very low latency, and it’s expected that many machines will be connecting at the same time. What instance type should the organization select?

• General Purpose Instance
• Storage Optimized Instance
• HPC Optimized
• Memory Optimized Instance

Question 15: A customer wants to purchase Savings Plans but anticipates their initial selection of AWS Region may change. Which Savings Plans option(s) should she select?

• Only EC2 Instances Savings Plans.
• EC2 Instances Savings Plans and Amazon SageMaker Savings Plans
• Compute Savings Plans and Amazon SageMaker Savings Plans
• Compute Savings Plans and EC2 Instances Savings Plans

Question 16: You created your first Lambda function that interacts with an S3 bucket to modify an object and re-upload. The S3 bucket invokes the Lambda function successfully, but the logs show an Access Denied message. Which of the following could be the source of the error?

• IAM User policy
• Execution Role
• Lambda Resource Policy
• Function Code

Question 17: You are asked to set up a new Amazon EC2 instance, and during setup, you notice that you can launch an instance with an instance store-backed AMI. Why would you choose an instance store-backed AMI over an EBS-backed AMI for your EC2 instance?

• Boot time is faster.
• Instance store-backed root device can be a larger size than EBS-backed.
• You are only charged for the EC2 instance usage and AMI storage, and not EBS volume storage.
• The instance on instance store-backed can be stopped.

Question 18: The operations team wants to monitor the metrics of a specific Amazon EC2 instance at 1-minute intervals to investigate performance bottlenecks. Which AWS tool can be used to get this granular level of data monitoring?

• Configure Amazon EC2 dimensions
• Enable Amazon EC2 Detailed Monitoring
• Enable Amazon EC2 Basic Monitoring
• Configure Amazon CloudWatch Alarms

Question 19: A medical device company is developing an application utilizing an Amazon EC2 Dedicated Host to meet the security and regulatory compliance requirements. What are the available purchasing options for this EC2 Dedicated Host? (Select TWO)

• Compute Savings Plans
• On Demand
• EC2 Reserved Instance
• EC2 Instance Savings Plan
• Spot Instance

Question 20: A systems engineer manages hundreds of Amazon EC2 instances across production and development environments. The engineer needs to analyze and patch all the Amazon EC2 instances to ensure they are not exposed to common vulnerabilities. Which is the MOST efficient way to achieve this?

• Use AWS Trusted Advisor to manage the patching.
• Install the AWS Systems Manager agent on all Instances and use Patch Manager to update the Instances with the latest patches.
• Deploy AWS Security Hub to deploy the missing patches directly to the instances.
• Log on to each instance and deploy the missing patches.

Question 21: A company comes to you with a list of serverless applications they want to deploy and test using an AWS-native solution. Which AWS service is commonly used for deploying and testing serverless applications?

• Amazon EC2
• Amazon RDS
• Amazon Lambda
• Amazon S3

Question 22: You have been asked to run a compute-intensive workload that requires a minimum of 8vCPUs and 32GiB of memory. Which instance type best fits this description?

• R6i.4xlarge
• R6a.4xlarge
• M7i.2xlarge
• C6a.xlarge

Question 23: AnyCompany is struggling with the wide variety of information and data types generated within their systems. They want to build a holistic approach to achieve observability in their environment. Which data sources should they consider to build an effective observability strategy to help meet their objective? (Select THREE)

• Notifications
• Dashboard
• Alarms
• Logs
• Traces
• Metrics

Question 24: A company is focused strictly on application development rather than maintaining infrastructure. The solution must be auto-scaling and cost-efficient, with zero administrative effort required for scalability, back-ups, or data center redundancy. What kind of compute service should the company use?

• AWS Lambda
• AWS Elastic Cloud Compute (AWS EC2)
• Amazon Elastic Container Service (ECS) and Amazon EKS (Elastic Kubernetes Service).
• AWS Relational Database Service (AWS RDS)

Question 25: The AWS Nitro system-based virtualization model abstracts away several classic virtualization functions from the host. This model isolates the host and ensures customer content remains protected from any AWS operator. In addition to this, the Nitro System also provides other benefits compared to the classic virtualization model. What are the top 3 benefits the Nitro System delivers to customers? (Select THREE)

• Increased Security
• Allows customers to modify an AWS server.
• Deliver up to 70% better compute performance
• Better performance
• Lower Cost
• Enhanced observability and monitoring

Question 26: The operations team wants to use Trusted Advisor to monitor and optimize the costs of the deployed Amazon EC2 instances. Which check should the team use to determine if Amazon EC2 instances are optimized and are not underutilized?

• Large Number of EC2 Security Group Rules Applied to an Instance
• High Utilization Amazon EC2 Instances
• Amazon EC2 to EBS Throughput Optimization
• Low Utilization Amazon EC2 Instances

Question 27: Your company has recently started using API calls to interact with AWS services, and they want to be able to audit the number and frequency of API calls. Which AWS service would you recommend for auditing API calls on AWS services and recording all the API actions made against the service?

• AWS Lambda Insights
• AWS CloudTrail
• AWS X-Ray
• Amazon CloudWatch

Question 28: You are the Cloud Financial Analyst for a large multinational corporation that has recently migrated a significant portion of its infrastructure to AWS (Amazon Web Services) to improve scalability and flexibility. The organization comprises various business units, each with AWS resources and services. The CFO is concerned about tracking costs effectively across these different business units to ensure budget accountability and optimize spending. You are tasked with implementing a cost-tracking solution for effective expense allocation across the various business units within your organization’s AWS infrastructure. What AWS mechanism can help you implement the tracking

• AWS Cost Allocation Tags
• AWS Cost Explorer
• AWS Cost Anomaly Detection
• AWS Budget

Question 29:

You have built an Amazon EC2 instance with all the required software packages, storage, and networking configuration your organization needs. Which AWS service could you use to save this EC2 configuration as a template to be used by other engineers to build EC2 instances in your organization?

• Amazon Machine Image
• Auto-Scaling Groups
• Amazon CloudFormation
• Amazon Instance Store

Question 30:

All modern Amazon EC2 instances are built on the Nitro System as their foundation. The AWS Nitro system combines purpose-built hardware, software, and firmware. AWS describes the Nitro virtualization model as one in which it has abstracted several functions from the host. What are the key components that make up the Nitro System?

• Nitro Cards, Nitro Security Chip, Nitro Hypervisor
• Nitro Cards, EBS, and Instance Storage
• Nitro Cards, NitroTPM, Nitro Security Module
• Nitro Cards, Nitro Enclaves, NitroTPM

Question 31: AnyCompany is exploring observability tools that can help gain insight into their environment. What tools BEST achieve this objective? (Select THREE)

• AWS Secrets Manager
• AWS Trusted Advisor
• Amazon CloudWatch
• Amazon SNS
• AWS CloudTrail
• AWS Control Tower

Question 32: You are the lead cloud architect at a rapidly growing e-commerce company that relies heavily on AWS for its online retail operations. Your company recently migrated a substantial portion of its workload to AWS, and you need to ensure that your Amazon EC2 resources are efficiently optimized to balance performance and cost-effectiveness. Which tool could help you right-size the EC2 instances?

• Cost Explorer
• AWS CUR
• AWS Budgets
• AWS Compute Optimizer

Question 33: A customer runs AWS Systems Manager Agent (SSM) in a hybrid environment behind a firewall. Your security team has contacted you to find out what ports need to be open to allow the SSM agent to manage these servers remotely. What ports are necessary for SSM to be utilized?

• Port 22 (SSH)
• All ports are required.
• TCP and UDP port 443
• SSM doesn’t require any inbound ports.

Question 34:

Your team manages a fleet of EC2 instances that serve a web application. You need a way to ensure these instances are consistently configured and up to date with security patches. Which Amazon Systems Manager feature can help you achieve this?

• Patch Manager
• Parameter Store
• Session Manager
• State Manager

Question 35: You are tasked to select an Amazon EC2 instance for your new workloads. You see there are two types of hypervisors available for use — original hypervisor and “Nitro hypervisor . What does the AWS Nitro hypervisor offer compared to the original hypervisor?

• Offload input and output (I/O) operations
• Shared network bandwidth
• Shared storage
• Better availability

Question 36: Your organization wants to build its Amazon EC2 instances in a consistent and repeatable manner. Your development team has asked to use an infrastructure-as-code approach. What are the best services to accomplish this? (Select TWO)

• Amazon Machine Image
• AWS CloudFormation
• AWS Management Console
• AWS Systems Manager
• AWS Cloud Development Kit

Question 37: As an application owner, you want to optimize cost and explore different options. Your application is a mix of Windows and Amazon Linux 2 operating systems. The application is deployed in three regions. The report generation feature of the application runs serverless on Lambda. Which option would give you the most cost-optimized solution?

• Amazon SageMaker Savings Plan
• Compute Savings Plan
• Reserved Instances
• EC2 Instance Savings Plan

Question 38: Your organization wants to be able to re-use Lambda functions and ensure the same result every time. What coding principle would you use to write your functions to ensure that your code properly validates events and handles duplicate events in the same way?

• Layers
• Idempotence
• Quotas
• Expressions

Question 39: Your organization is evaluating moving workloads to the AWS cloud. They have asked you to explain the advantages of cloud computing to balance cost and performance when selecting an Amazon EC2 instance type. What would be your BEST response? (Select TWO)

• Benefit from massive economies of scale
• Spend less time guessing capacity.
• Trade variable expense for fixed expense
• Increase speed but decrease agility.
• Stop guessing capacity

Question 40: As a solutions architect, you need to design an environment where the Amazon EC2 instances can exchange information seamlessly and transparently. AWS instance types come in various sizes, ranging from small to extra-large instances. What term refers to the ability of different instances or services to work together and exchange information seamlessly?

• Portability
• Interoperability
• Interchangeability
• Compatibility

Question 41: A software developer has launched an Amazon EC2 instance using Amazon Linux 2 AMI. The instance has a private IP address and your VPC is connected to your on-premises data center using AWS Site-to-Site VPN. When they try to connect using EC2 Instance Connect, the connection fails. What steps should they take so they can successfully connect to the EC2 instance using EC2 Instance Connect?

• Update AWS Identity and Access Management (IAM) policies and principals that control SSH access to the instance.
• Connect using public internet and Internet Gateway (IGW).
• Update configuration for AWS System Manager.
• Restart the EC2 instance from the AWS Management Console.

Question 42:As a consultant, you are asked to provide essential guidelines when writing code that makes it easier for other developers to understand, work together, and keep the code well-maintained over time. What would be your BEST response?

• Avoid comments to keep the code concise
• Avoid indentation and consistent formatting
• Use complex variable names to challenge fellow developers
• Select clear names of variables and functions that match their purpose

Question 43: You are the IT manager for a growing e-commerce company that relies heavily on AWS services to run its online store. As the company scales, keeping a tight grip on costs is crucial. You’ve been asked to implement a solution that helps you monitor and control your AWS spending effectively. In this scenario, which AWS service would you choose to set up and manage spending limits, track your AWS costs, and receive alerts when your expenditures exceed predefined thresholds?

• AWS Lambda
• AWS Budgets
• AWS Compute Optimizer
• AWS S3

Question 44: Anycompany wants to deploy 100 Amazon EC2 instances for their upcoming production workload. This deployment will stay for the next year before they migrate the workload to serverless solutions. Which is the BEST option from below to achieve the highest possible savings without interrupting workload operation?

• Purchase the On-Demand Capacity Reservations
• Amazon EC2 Reserved Instance
• Amazon EC2 Spot Instance
• Amazon EC2 On-Demand Instance

Question 45: An organization wants a multi-AZ, highly durable, and scalable object storage solution to store Amazon EC2 instance data backups. Cost is not a concern. Primarily, they want the data to be quickly and easily restored in the event of an instance failure. Which AWS service would be MOST efficient to accomplish this task?

• Amazon S3
• Instance Store
• Amazon Glacier
• Amazon Elastic Block Store (EBS)

Question 46: The finance department seeks your help determining the cost impact per application before and after any rightsizing activities. Each application has many Amazon EC2 instances. What is your BEST recommendation to meet the requirements?

• Recommend that all finance department instances are tagged with a tag called Finance with a unique tag value per application.
• Recommend that all finance department instances be tagged with a user-defined cost allocation tag called Finance with a unique tag value for each application.
• Use a unique instance naming scheme for each application.
• Recommend that the finance department use a system-defined cost allocation tag.

Question 47: An application team is trying to establish a connection from an Amazon EC2 instance in a public subnet to the EC2 Linux instance deployed in a private subnet. The security group and IAM role attached to both Amazon EC2 instances are correctly configured, but the team cannot access the EC2 Linux instance through SSH. What step should they take to successfully connect to the EC2 Linux instance?

• Configure the AWS Systems Manager agent on the Amazon EC2 application instance.
• Verify the inbound and outbound NACL rule. It should allow RDP port access from the bastion host.
• Verify the inbound and outbound NACL rule. It should allow SSH port access from the bastion host.
• Connect to the application EC2 Instance through public IP.

Question 48: Your company is planning a migration from on-premises to the AWS cloud. A lift and shift migration approach will be used, where virtual machines are migrated to Amazon EC2 instances. All of the workloads use Microsoft Windows, and there is an existing licensing agreement with Microsoft. The company has decided on a Bring-Your-Own-License (BYOL) approach, instead of using the licensed included AMI’s provided by AWS. What type of EC2 instance tenancy is typically used for BYOL?

• Dedicated Instance
• There are no BYOL considerations when migrating existing licenses to Amazon EC2. EC2 instances with existing licenses can be used with any tenancy.
• Dedicated Host
• Shared

Question 49: A company has a large fleet of Amazon EC2 instances with Amazon Elastic Block Storage (EBS). Several events have occurred where an accidental termination of EC2 instances has led to application outages. Which is the BEST solution to prevent accidental terminations?

• Use CloudWatch Alarms to notify management and then relaunch the AMIs
• Use CloudTrail to monitor management events and restrict users that terminate instances without approval.
• Enable termination protection on all EC2 instances.
• Enable termination protection on all EBS volumes.

Question 50: You are investigating the use of the AWS Systems Manager Session Manager to restrict access to your Amazon EC2 instances via the SSH or RDP protocol. What are some of the key benefits of using AWS System Manager Session Manager? (Select THREE)

• No need to open inbound SSH or RDP ports
• No port forwarding
• Integration with AWS Network Firewall.
• Centralized access control using AWS Identity and Access Management (IAM).
• cross-platform support for Linux, Windows, MacOS
• SSH key management

With the bold colour are marked correct answers.