Amazon Exam Practice Questions - Page 12

Amazon Practice Questions, Discussions & Exam Topics by our Authors

Which AWS service provides serverless compute for use with containers?

To determine the most suitable AWS service that provides serverless compute for use with containers, we need to evaluate the specific services based on their characteristics, effort, time, cost, and other relevant factors. A) Amazon Simple Queue Service (Amazon SQS) - Purpose: Amazon SQS is a message queue service, designed for decoupling and scaling microservices, distributed systems, and serverless applications. It helps with message delivery between different components of your system but does not provide serverless compute capabilities. - Why Rejected: It is not a compute service, nor does it facilitate container management or orchestration. B) AWS Fargate - Purpose: AWS Fargate is a serverless compute engine for containers. It allows you to run Docker containers without managing the underlying EC2 instances. You only need to specify the resources your containers require, and AWS handles the infrastructure scaling and management for you. Fargate integrates with Amazon ECS (Elastic Container Service) and Amazon EKS (Elastic Kubernetes Service), simplifying container management. - Why Selected: Fargate provides a truly serverless environment for running containers. It handles the compute resources, scaling, and management of containers, minimizing operational overhead, and reducing costs by charging only for the resources actually used. - Scenario: Use AWS Fargate when you need to run containers without managing the underlying infrastructure, for example, in microservices architectures or automated workloads that scale based on demand. C) AWS Elastic Beanstalk - Purpose: AWS Elastic Beanstalk is a Platform-as-a-Service (PaaS) that simplifies deplo...

Author: Chloe · Last updated May 15, 2026

A company is using multiple AWS accounts for different business teams. The finance team wants to receive one bill for all of the company's accounts.Which AWS ...

To meet the requirement of receiving a consolidated bill for multiple AWS accounts, we need to evaluate the services and tools based on their purpose, effort, time, cost, and other key factors. A) AWS Organizations - Purpose: AWS Organizations enables you to manage multiple AWS accounts under one organization. It allows you to set up consolidated billing, which means the finance team can receive a single bill for all accounts within the organization. This can greatly simplify account management and billing. - Why Selected: AWS Organizations provides consolidated billing functionality, making it the most suitable option for the finance team's requirement to receive a single bill for all accounts. Additionally, it helps manage permissions, access, and compliance across multiple accounts. This reduces the complexity of managing individual billing for each account, optimizing cost management and reporting. - Scenario: AWS Organizations is ideal when you need to centralize billing across multiple AWS accounts for better financial oversight, especially in environments with multiple teams or departments. B) AWS Trusted Advisor - Purpose: AWS Trusted Advisor is an online resource to help AWS users reduce cost, increase performance, and improve security by providing real-time guidance. It offers recommendations for best practices but does not focus on billing or providing consolidated invoices. - Why Rejected: Trusted Advisor does not offer consolidated billing or the ability to receive a single bill for multiple accounts. It focuses on optimizing resource usage, security, and compliance. - Scenario: Use Trusted Advisor to review and ...

Author: Isabella · Last updated May 15, 2026

A company needs a firewall that will control network connections to and from a single Amazon EC2 instance. This firewall will not control network connections to and from other instances that are in the s...

To determine the best AWS service or feature for controlling network connections to and from a single EC2 instance while ensuring that the control does not affect other instances in the same subnet, let's evaluate the available options based on functionality, cost, and effort required. A) Network ACL - Purpose: Network ACLs (Access Control Lists) operate at the subnet level and control inbound and outbound traffic to and from the entire subnet. They apply rules to all instances in the subnet. - Why Rejected: Network ACLs cannot be applied to a single EC2 instance but rather affect all resources in the subnet. Therefore, they do not meet the requirement of controlling traffic for only a single EC2 instance without affecting others in the same subnet. - Scenario: Network ACLs are useful when you want to control traffic at the subnet level for multiple resources but are not appropriate for single-instance control. B) AWS WAF - Purpose: AWS WAF (Web Application Firewall) is used to protect web applications by filtering and monitoring HTTP/HTTPS requests. It is typically used with Amazon CloudFront, API Gateway, or Application Load Balancers. - Why Rejected: AWS WAF is focused on web application layer (HTTP/HTTPS) security and is not designed for controlling network-level connections to and from EC2 instances. It would not be appropriate for controlling all types of network traffic. - Scenario: AWS WAF is ideal for protecting web applications against malicious traffic and attacks at the HTTP/HTTPS level but is not suitable for controlling all network traffic for an EC2 instance....

Author: Sofia2021 · Last updated May 15, 2026

A company is planning to use the Amazon EC2 instances as web servers. Customers from around the world will use the web servers. Most customers will use the web servers only during certain hours of the day...

To achieve the lowest operational cost for deploying Amazon EC2 instances as web servers for customers around the world, where most customers use the servers during certain hours of the day, we need to choose an option that allows for efficient scaling, resource management, and cost savings based on usage patterns. Explanation: A) In multiple Availability Zones: - Functionality: Distributing EC2 instances across multiple Availability Zones (AZs) enhances fault tolerance and availability, as traffic can be redirected to healthy instances in other AZs in the event of failure. - Reason for Rejection: While this improves availability, it does not directly address the need for lowering operational costs when usage is intermittent (only during certain hours). It can increase costs by requiring resources to be available across multiple zones even if traffic is low during non-peak hours. - Scenario: Useful for ensuring high availability and fault tolerance, but it’s not the most cost-efficient for environments where usage is sporadic and can tolerate scaling down. B) In an Auto Scaling group: - Functionality: Auto Scaling allows the EC2 instances to automatically scale in or out based on demand. This means the number of instances will increase when traffic is high (during peak hours) and decrease when traffic is low (during off-peak hours), helping to reduce costs when fewer resources are needed. - Reason for Selection: Since the company expects customers to use the web servers during certain hours of the day, Auto Scaling ensures that the company only uses EC2 instances when needed, automatically adjusting the number of running instances based on traffic patterns. This dynamic scaling directly reduces operational costs as it avoids paying for idle resources during off-peak hours. - Scenario: Perfect for scenarios where demand fluctuates and resources should be provisioned efficientl...

Author: Sofia · Last updated May 15, 2026

Which benefit is always free of charge with AWS, regardless of a user=E2=80=99s AWS Support plan?

To determine which benefit is always free of charge with AWS, regardless of a user's AWS Support plan, we need to carefully evaluate the services and offerings related to AWS Support. Below is an assessment of each option, along with the reasoning behind selecting the correct one: A) AWS Developer Support - Description: AWS Developer Support is a paid support plan that provides resources such as 24/7 access to AWS Cloud Support Engineers for troubleshooting, guidance, and issue resolution. It is not free, and users must subscribe to this support plan to gain access to the benefits it offers. - Use Case: This is only available to users who are paying for the Developer Support plan, and therefore does not meet the requirement of being free of charge. - Effort and Cost: The Developer Support plan has a cost associated with it, so it cannot be considered a free benefit. B) AWS Developer Forums - Description: The AWS Developer Forums are a community-driven space where developers and users can ask questions, share knowledge, and collaborate on various AWS-related topics. Accessing the forums and participating in discussions is free for all AWS users, regardless of their support plan. - Use Case: The forums are ideal for self-service troubleshooting, collaboration, and knowledge-sharing with other AWS users. It’s an excellent resource for users looking for free support or to exchange ideas with the AWS community. - Effort and Cost: This is the only benefit that is always free of charge, regardless of the user's support plan. C) Programmatic Case Management - Description: Programmatic Case Management is a feature o...

Author: Emily · Last updated May 15, 2026

A company uses Amazon EC2 instances to run its application. The application needs to be available and running continuously for three or more years.What type of EC2 ...

To determine the best type of Amazon EC2 instance for a company that needs its application to be available and running continuously for three or more years with a discount on EC2 pricing, let's evaluate the available options based on cost, commitment, and flexibility. A) Reserved Instances - Purpose: Reserved Instances (RIs) allow you to commit to using EC2 instances for a one, three, or five-year term, offering significant discounts (up to 75%) compared to On-Demand pricing. RIs are ideal for predictable, steady-state workloads that need to run continuously. - Why Selected: Since the company requires its application to run continuously for three or more years, Reserved Instances are the best option because they provide a long-term discount (due to the commitment) while ensuring the availability and reliability of the EC2 instances for the required duration. This offers the lowest pricing compared to other options. - Scenario: Reserved Instances are perfect for applications with consistent, predictable usage over a long period (such as three or more years) where cost savings from long-term commitment are essential. B) Spot Instances - Purpose: Spot Instances allow you to bid for unused EC2 capacity at a significantly lower price, often up to 90% off the On-Demand pricing. However, Spot Instances can be terminated by AWS at any time if the capacity is needed elsewhere, making them unsuitable for critical, continuous workloads. - Why Rejected: Spot Instances are not ideal for applications that need to be continuously available and running for multiple years. The potential for termination, while cost-effective, introduces risk and uncertainty in maintaining availability. - Scenario: Spot Instances are best for flexible, interruptible workloads, such as batch processing or fault-tolerant applications where availability is not critical. ...

Author: Julian · Last updated May 15, 2026

A company needs to perform an audit of recent AWS account activity. The audit will investigate who initiated an event and what actions were performed.Wh...

To determine the best AWS service for performing an audit of recent AWS account activity, specifically investigating who initiated an event and what actions were performed, let’s evaluate the available options based on their purpose, functionality, and suitability for the requirements. A) AWS Config - Purpose: AWS Config is a service that provides a detailed inventory of your AWS resources and their configurations over time. It allows you to track configuration changes, but it does not log specific actions or identify who initiated events. - Why Rejected: While AWS Config helps track configuration changes and compliance, it does not provide detailed logs of user activities, such as who initiated an event or what actions were taken on resources. It’s not designed for auditing user activities or API calls. - Scenario: AWS Config is useful for tracking resource configuration changes, but it is not suited for auditing API activity or specific actions performed by users. B) Amazon Rekognition - Purpose: Amazon Rekognition is a machine learning-based service used for image and video analysis, such as identifying objects, people, and text in images or videos. - Why Rejected: Rekognition is unrelated to auditing AWS account activity or tracking user actions. It is used for visual content analysis, not for auditing events or API actions in an AWS account. - Scenario: Amazon Rekognition is best suited for analyzing images or video content but has no relevance to auditing user actions or API activity within AWS. C) AWS CloudTrail - Purpose: AWS CloudTrail is specifically designed to capture and log all API calls made within an AWS accou...

Author: NightmareDragon2025 · Last updated May 15, 2026

Which design principles are included in the reliability pillar of the AWS Well-Architected Framework...

In the AWS Well-Architected Framework, the Reliability Pillar focuses on ensuring that a system can recover from failures, meet demand, and maintain its availability under various conditions. Let's analyze the options based on key factors like cost, effort, time, and service reliability: Option A: Automatically recover from failure. - Selected reason: This option is aligned with the Reliability Pillar. One of the core principles of reliability is ensuring that systems can recover automatically from failures without requiring manual intervention. Automated recovery mechanisms, such as using services like Auto Scaling, Route 53 health checks, or Elastic Load Balancing, minimize downtime and improve system availability. This directly impacts system resilience and minimizes both effort and time needed for recovery, leading to higher system reliability. - Use case: In a high-availability architecture, automatic recovery can help the system maintain uptime and availability even if parts of it fail, ensuring business continuity. Option B: Grant everyone access to increase AWS service quotas. - Rejected reason: This option is not a reliability best practice. Granting blanket access to increase service quotas introduces security and operational risks. Instead, a well-designed system should plan capacity and request quota increases proactively through proper IAM roles. Allowing unfettered access to change quotas could lead to mismanagement and is not a reliability-enhancing approach. - Use case: The Reliability Pillar focuses on proactive, secure approaches rather than opening up broad access to prevent system inconsistencies. Option C: Stop guessing capacity. - Selected reason: This option is relevant to the Reliability Pillar. It suggests avoiding over-provisioning or under-provisioning by utilizing elastic services that scale with demand, such as Amazon EC2 Auto Scaling or Amazon RDS scaling. This principl...

Author: Chloe · Last updated May 15, 2026

A company needs to use AWS technology to deploy a static website.Which solution meets this requirement w...

To determine the best AWS solution for deploying a static website with the least amount of operational overhead, we need to consider factors like effort, time, cost, scalability, and ease of management. Let's evaluate each option: A) Deploy the website on Amazon EC2: - Effort: High. Amazon EC2 requires provisioning, managing, and maintaining virtual machines (instances). You'll need to set up the server environment (e.g., install a web server like Apache or Nginx) and manage scaling, monitoring, and security patches. - Time: More time-consuming. Setting up EC2 instances and configuring the environment takes more time. - Cost: Can be higher. EC2 instances are charged based on usage, and with a static website, you’re paying for resources you don't necessarily need. - Scalability: You'd have to configure auto-scaling manually, which adds complexity. - Why not: EC2 is designed for more dynamic workloads and comes with significant management overhead. It is not the most efficient or cost-effective option for a static website. B) Host the website on AWS Elastic Beanstalk: - Effort: Moderate. Elastic Beanstalk abstracts some of the operational overhead by managing the infrastructure for you. However, it's more suitable for dynamic web applications (e.g., those requiring back-end processing). - Time: Less time than EC2 because it automates some infrastructure management, but it’s still more time-consuming than other options for static websites. - Cost: Could be higher than necessary for a simple static site, since Elastic Beanstalk is geared more towards dynamic applications that need backend environments. - Scalability: It offers scalability, but it's more complex and involves managing application stacks (not needed for static content). - Why not: Elastic Beanstalk is designed for applications requiring a backend and dynamic content. For static websites, it introduces unnecessary complexity and overhead. C) Deploy the website with Amazon Lightsail: - Effort: Low to moderate. Lightsail is ea...

Author: Harper · Last updated May 15, 2026

Which recommendation can AWS Cost Explorer provide to help reduce cost?

AWS Cost Explorer is a tool that helps users understand and manage their AWS costs and usage. It provides recommendations that can help reduce costs by analyzing your spending patterns and identifying areas where cost savings can be achieved. Each option has a different impact based on services, effort, time, and cost, and here is a breakdown of each option: A) Use a specific database engine While choosing a specific database engine may help optimize costs in certain cases (e.g., choosing a more cost-efficient engine like Amazon Aurora over MySQL), this recommendation is not typically provided by AWS Cost Explorer in a direct sense. The choice of a database engine is more about application requirements, performance, and use case rather than cost alone. Cost Explorer primarily focuses on analyzing your usage and recommending actions based on your current setup, not recommending a specific engine. B) Change the programming language for an application Changing the programming language of an application has no direct impact on AWS costs. The cost of running an application in AWS is more dependent on the infrastructure and services used (e.g., EC2 instances, databases, storage) than the programming language. This change might affect the efficiency or scalability of an application, but it is not a specific recommendation that AWS Cost Explorer provides. C) Deploy a specific operating system Deploying a sp...

Author: Lucas · Last updated May 15, 2026

A company wants to deploy an application in multiple Availability Zones in a single AWS Region.Which benefi...

In the context of deploying an application across multiple Availability Zones (AZs) in a single AWS Region, it is important to evaluate how this choice impacts the application's resilience, availability, performance, cost, and scalability. Option A: Improved connection performance for global customers. - Rejected reason: While deploying in multiple Availability Zones can improve availability and fault tolerance within a region, it does not directly impact the connection performance for global customers. Global performance benefits are typically gained by deploying in multiple regions or using services like Amazon CloudFront (a content delivery network) to reduce latency across the globe. Simply using multiple AZs within a single region does not address the needs of global customer performance. - Use case: This option would apply to global performance improvements, but not specifically in a multi-AZ deployment within one region. Option B: Resilient architecture and a highly available solution. - Selected reason: This option directly addresses the benefits of deploying across multiple AZs. AWS regions are composed of multiple AZs, and by distributing resources (such as EC2 instances, RDS databases, etc.) across different AZs, the application becomes fault-tolerant and highly available. If one AZ experiences a failure (e.g., hardware issues or network disruptions), the other AZs can continue to operate, thus maintaining the availability of the application. This increases overall resilience, ensuring the system remains operational despite localized failures, which is a critical aspect for business continuity. - Use case: This is ideal for applications that need to ensure uptime and availability under various failure scenarios, such as critical business applications, e-co...

Author: SilverBear · Last updated May 15, 2026

What is the total volume of data that can be stored in Amazon S3?

Amazon S3 (Simple Storage Service) is designed to provide highly scalable, durable, and low-latency object storage, which can accommodate a vast amount of data. Let's evaluate each option based on the capabilities of Amazon S3: A) 10 PB - Explanation: While 10 PB (petabytes) is a large volume of data, this option underestimates the actual limits that Amazon S3 offers. AWS S3 is capable of storing much more than 10 PB. - Why rejected: The data volume supported by Amazon S3 exceeds 10 PB, so this option is not correct. B) 50 PB - Explanation: Similar to the 10 PB option, 50 PB is still far less than what Amazon S3 can handle. While Amazon S3 does support large data volumes, 50 PB is still not the maximum. - Why rejected: Amazon S3 supports storage much beyond 50 PB, so this is not the correct option either. C) 100 PB - Explanation: 100 PB is a significant volume of data, but even this underestimates the storage capacity provided by Amazon S3. S3 can easily accommodate more than 100 PB. - Why rejected: Amazo...

Author: Noah Williams · Last updated May 15, 2026

Which AWS service gives a company the ability to use a private, dedicated connection between a VPC a...

To answer the question regarding the AWS service that enables a private, dedicated connection between a VPC and an on-premises data center, we need to consider services that offer connectivity options for hybrid cloud environments. Option A: AWS Direct Connect - Selected reason: AWS Direct Connect is the correct service for establishing a private, dedicated connection between an on-premises data center and a Virtual Private Cloud (VPC) in AWS. This service bypasses the public internet, providing more reliable and secure connectivity, with low latency and high bandwidth. It is ideal for situations where a company needs to ensure consistent, high-performance communication between its on-premises infrastructure and the cloud. It also reduces data transfer costs compared to transferring data over the public internet. - Key benefits: Low latency, high throughput, private connection. - Use case: A company with an on-premises data center wanting to extend its infrastructure into the AWS cloud securely, with predictable performance and low data transfer costs. Option B: Amazon API Gateway - Rejected reason: Amazon API Gateway is a service designed to create and manage APIs for applications. It does not offer the functionality to establish a private, dedicated connection between a VPC and an on-premises data center. It is used for building and managing RESTful APIs and WebSocket APIs...

Author: David · Last updated May 15, 2026

A company is running big data analytics and massive parallel computations on its AWS test and development servers. The company can tolerate occasional downtime.What is th...

To determine the MOST cost-effective Amazon EC2 purchasing option for the company’s test and development servers running big data analytics and parallel computations, let’s analyze each option, considering the cost, flexibility, effort, and scenario fit based on the given requirement: the ability to tolerate occasional downtime. Explanation: A) On-Demand Instances: - Functionality: On-Demand Instances allow you to pay for EC2 capacity by the second, with no long-term commitment. You can start, stop, and scale instances as needed. - Reason for Rejection: While On-Demand Instances are highly flexible and require no commitment, they are more expensive compared to other purchasing options, such as Spot Instances, for workloads that can tolerate interruptions. Since the company can tolerate occasional downtime, On-Demand Instances would not be the most cost-effective choice in this scenario. - Scenario: On-Demand Instances are ideal for applications with unpredictable workloads or when there is a need for high flexibility, but they are not the most cost-effective option when downtime is tolerable. B) Spot Instances: - Functionality: Spot Instances allow you to bid for unused EC2 capacity, often at significantly lower prices than On-Demand Instances. However, Spot Instances can be terminated by AWS when capacity is needed elsewhere, which introduces the risk of downtime. - Reason for Selection: Since the company can tolerate occasional downtime, Spot Instances are the most cost-effective option because they offer the greatest price savings. The occasional interruptions caused by termination are acceptable in this case. Spot Instances are ideal for large-scale parallel computations, batch processing, and testing environments where temporary downtime does not significantly impact operations. - Scenario: Spot Instances are best for workloads that can handle interruptions and are looking for substantial cost savings, such as big data analytics or batch proc...

Author: NebulaEagle11 · Last updated May 15, 2026

A company runs Amazon EC2 instances in a research lab. The instances run for 3 hours each week and cannot be interrupted.What is the MOST cost-e...

In this scenario, the company has Amazon EC2 instances that run 3 hours per week, and they cannot be interrupted. The key factors to consider are: 1. Cost-effectiveness – The company needs to choose the option that is the least expensive while meeting their usage requirements. 2. Instance runtime – The instances are running for a small amount of time each week (3 hours), which suggests that the cost of running instances needs to be optimized without committing to long-term usage. 3. Non-interruption requirement – The instances cannot be interrupted, which rules out certain options that rely on interruption flexibility for lower costs. Let's evaluate each option: A) Compute Savings Plan - Purpose: A Compute Savings Plan provides flexibility in instance family, size, and region, offering savings in exchange for a 1- or 3-year commitment to consistent usage. - Cost: Compute Savings Plans offer significant cost savings, but they typically require commitment to usage over a longer term, such as one year or more. While this can be cost-effective for continuous usage, the company only runs instances for 3 hours per week, making a long-term commitment less appropriate. - Use case: Best suited for workloads that are used more regularly or consistently over a longer period. - Rejection: Given the low usage (3 hours/week) and the commitment involved, Compute Savings Plans are likely overkill and may not be as cost-effective for such infrequent use. B) On-Demand Instances - Purpose: On-Demand Instances are billed by the second or hour with no long-term commitment. You pay for what you use, and they provide maximum flexibility without any upfront costs. - Cost: On-Demand Instances are typically more expensive than reserved options since you are paying for instance usage at the standard rate. - Use case: Ideal for workloads that require flexibility with no long-term commitment and where usage is unpredictable. - Selection: On-...

Author: CrimsonViperX · Last updated May 15, 2026

A new AWS user needs to interact with AWS Support by using API calls.Which AWS Support plan will mee...

In this scenario, the requirement is that the new AWS user needs to interact with AWS Support by using API calls. We need to identify the most cost-effective AWS Support plan that will allow API access for interaction. Let’s evaluate each option: A) AWS Basic Support The AWS Basic Support plan is free and includes access to AWS customer service for general inquiries, but it does not include API access to AWS Support. This plan is designed for users who only need basic, non-technical support. Since the requirement is to interact with AWS Support via API calls, AWS Basic Support is not suitable because it lacks the necessary support features for API interactions. B) AWS Developer Support The AWS Developer Support plan offers access to AWS Support via email and allows API access for support, including the ability to make API calls to interact with AWS Support. It’s designed for developers who are working on projects and need basic troubleshooting and guidance. This plan is the most cost-effective option that still includes the ability to use API calls to interact with AWS Support. It’s typically sufficient for most developers working on non-production environments or small projects. C) A...

Author: Aarav · Last updated May 15, 2026

A company migrated to the AWS Cloud. Now the company pays for services on an as-needed basis.Which advantage of...

In the context of the company migrating to the AWS Cloud and paying for services on an as-needed basis, the key focus is on the financial model and how the company is billed for its cloud services. This payment model typically aligns with the variable expense nature of cloud computing. Option A: Stop spending money running and maintaining data centers. - Rejected reason: While this is a key benefit of cloud migration, the question specifically mentions that the company is paying for services on an as-needed basis, which focuses more on how the company is billed rather than the elimination of on-premises infrastructure. Option A relates to the broader idea of reducing capital expenditure for physical infrastructure, but it does not address the payment model mentioned in the question. Option B: Increase speed and agility. - Rejected reason: Cloud computing does indeed increase speed and agility by allowing rapid provisioning of resources. However, this advantage is not the direct focus of the scenario described, which specifically highlights the payment model (as-needed basis) and how the company benefits from a financial perspective, rather than from speed or agility. Speed and agility refer to provisioning and scaling, which is a different aspect of cloud benefits. Option C: Go global in minutes. - Rejected reason...

Author: Elizabeth · Last updated May 15, 2026

A company will run a predictable compute workload on Amazon EC2 instances for the next 3 years. The workload is critical for the company. The company wants to optimiz...

The company has a predictable compute workload for the next 3 years and is looking to optimize costs while running a critical workload. This indicates the company is looking for a solution that provides cost savings over a 3-year period while ensuring reliability and performance for a critical workload. Option A: Spot Instances - Rejected reason: Spot Instances allow companies to bid on unused EC2 capacity, typically at a significantly reduced cost. However, these instances can be interrupted by AWS with very little notice, which is not suitable for critical workloads. Since the workload is critical, the company cannot risk interruptions or failures. Spot Instances are best suited for flexible, fault-tolerant workloads. - Use case: This option is best for non-critical, batch-processing, or fault-tolerant applications, where cost savings are a priority over stability. Option B: Dedicated Hosts - Rejected reason: Dedicated Hosts provide physical servers dedicated to your use, which can help with compliance and licensing requirements. However, this option is typically more expensive than other EC2 pricing models and does not provide significant cost savings for a predictable workload that doesn't have specific compliance needs. Dedicated Hosts are often used when companies need control over the physical server or have specific licensing constraints. - Use case: This would be useful for legacy applications or workloads that require dedicated hardware for licensing or regulatory reasons but is not the best cost-saving option for predictable workloads. Option C: Savings Plans - Selected reason: Savings Plans offe...

Author: Amira99 · Last updated May 15, 2026

A company needs to run a workload that requires low-latency access to an on-premises data center. The company wants a fully managed service to extend its existing VPC ...

To address the company’s requirement of running a workload that demands low-latency access to an on-premises data center and the desire for a fully managed service to extend its existing Virtual Private Cloud (VPC) to local resources, let's analyze the available options: A) AWS Outposts - Use case: AWS Outposts is a fully managed service that extends an AWS region to on-premises environments, enabling hybrid cloud setups. It allows the company to run AWS services on-premises, providing low-latency connectivity between the on-premises infrastructure and the cloud. - Key benefits: - Provides a fully managed service. - Extends the existing VPC to on-premises infrastructure. - Suitable for workloads that require low-latency access to local resources. - Effort and cost: - Involves substantial initial setup effort and higher costs due to the need to deploy AWS hardware on-premises. - The service is typically used in environments where local processing power, storage, and direct integration with AWS cloud are critical. - Rejection rationale: This is the ideal solution because it aligns with the need to extend an existing VPC to on-premises resources and provides low-latency connectivity. However, it may come at a higher cost compared to other services. B) Amazon Connect - Use case: Amazon Connect is a cloud-based contact center service. - Key benefits: - Fully managed. - Scalable and easy to set up for call center and customer interaction use cases. - Rejection rationale: This option is irrelevant to the scenario because it focuses on customer service and...

Author: NightmareDragon2025 · Last updated May 15, 2026

A company wants to centrally manage its employee's access to multiple AWS accounts.Which AWS service or feature ...

To address the company’s requirement to centrally manage its employees' access to multiple AWS accounts, let’s analyze the available options in the context of managing user access across accounts, effort, time, and cost. A) AWS Identity and Access Management (IAM) Access Analyzer - Use case: IAM Access Analyzer helps identify unintended access to AWS resources by analyzing IAM policies, resource-based policies, and access configurations. It is primarily a security tool for auditing and reviewing access permissions. - Key benefits: - Helps to analyze and review access across AWS services. - Useful for identifying excessive permissions or access outside of intended boundaries. - Rejection rationale: While IAM Access Analyzer can help identify and manage access permissions, it is not designed to centrally manage employee access across multiple AWS accounts. It is more of a monitoring and auditing tool, not a solution for centralized user management. B) AWS Secrets Manager - Use case: AWS Secrets Manager is used to securely store and manage sensitive information such as passwords, API keys, and database credentials. - Key benefits: - Manages secrets and credentials securely. - Automates secret rotation and securely retrieves credentials. - Rejection rationale: While it secures sensitive data, Secrets Manager is not relevant for centrally managing user access across multiple AWS accounts. It is not designed for user authentication or identity management, which is the core need of this requirement. C) AWS IAM Identity Center (formerly AWS Single Sign-On) - Use case: AWS IAM Identity Center is designed to centrally manage user identities and permissions across multiple AWS accounts. It allows users to sign in to the AWS Management Console and acces...

Author: RadiantJaguar56 · Last updated May 15, 2026

A university receives a grant to conduct research by using AWS services. The research team needs to make sure the grant money lasts for the entire school year. The team has decided on a monthly allocation that adds up to the total gr...

The university’s goal is to ensure that the research team's spending stays within the grant’s monthly allocation and that they are notified if the spending exceeds the planned amount. Let’s evaluate each of the available options in the context of this need: A) AWS Budgets - Use case: AWS Budgets is a service that allows users to set custom cost and usage budgets for AWS resources. Users can create budgets based on cost, usage, or reserved instance utilization and receive alerts when their spending exceeds the defined threshold. - Key benefits: - Allows setting up monthly budget alerts, which is exactly what the research team needs. - Can send notifications via email or AWS SNS (Simple Notification Service) when the spending exceeds the set budget. - Provides flexibility to set specific thresholds and receive timely alerts, which helps in keeping track of the grant allocation. - Effort and cost: - Relatively easy to set up and configure. - Notifications are free, though a small cost may be associated with using AWS SNS for notifications in certain cases. - Rejection rationale: This is the most suitable option as it directly addresses the need to track spending and receive notifications if the spending exceeds the planned budget. It is designed for cost control and monitoring. B) Cost Explorer - Use case: AWS Cost Explorer helps visualize, analyze, and track AWS costs and usage over time. It provides detailed cost analysis, which can be used to identify trends and patterns in AWS spending. - Key benefits: - Useful for analyzing past spending and identifying cost trends. - Provides insights into where costs are coming from. - Rejection rationale: While Cost Explorer is great for analyzing and understanding past usage, it does n...

Author: Sophia · Last updated May 15, 2026

A company has migrated its workload to the AWS Cloud. The company wants to optimize existing Amazon EC2 resources.Which AWS serv...

To optimize existing Amazon EC2 resources, the most appropriate AWS services are D) AWS Compute Optimizer and B) AWS Cost Explorer. Option analysis: 1. A) AWS Elastic Beanstalk: - Purpose: AWS Elastic Beanstalk is a Platform-as-a-Service (PaaS) offering that simplifies application deployment and management. It automatically handles the provisioning of underlying resources like EC2 instances, but its main focus is on simplifying application deployment rather than directly optimizing EC2 resources. - Why not selected: While Elastic Beanstalk simplifies the management of EC2 instances as part of application deployment, it doesn’t focus specifically on optimizing EC2 instances themselves. It’s more geared toward deployment and management, not resource optimization. 2. B) AWS Cost Explorer: - Purpose: AWS Cost Explorer helps visualize and analyze costs and usage patterns of AWS resources. It allows users to track how much they are spending on EC2 instances and other AWS services and identify opportunities for cost savings. - Why selected: AWS Cost Explorer is useful for identifying underutilized or over-provisioned EC2 instances, which can be key to optimizing existing resources. It helps companies understand where they can cut costs or make adjustments to their EC2 usage. 3. C) Amazon Detective: - Purpose: Amazon Detective is a security service used to investigate and analyze security-related events and potential security issues within AWS workloads. It focuses on security incidents rather than resource optimization. - Why not selected: While Amazon Detective is useful for security investigations, it does not provide insights into EC2 resource optimization, which is the core requ...

Author: Rohan · Last updated May 15, 2026

A company with multiple accounts and teams wants to set up a new multi-account AWS environment.Which...

The company needs to set up a multi-account AWS environment, where multiple accounts and teams can be managed efficiently. Let's evaluate the available options in this context: A) AWS CloudFormation - Use case: AWS CloudFormation is a service used for automating the deployment of AWS resources by defining templates that specify the resources and their configurations. - Key benefits: - Automates resource provisioning and management. - Enables Infrastructure as Code (IaC) for AWS resources. - Rejection rationale: While CloudFormation is an excellent tool for provisioning and managing AWS resources, it is not specifically designed for managing multiple accounts or setting up a multi-account environment. It helps automate resource deployment but doesn’t address the broader need of managing multiple AWS accounts across teams. B) AWS Control Tower - Use case: AWS Control Tower is a service designed to set up and govern a secure, multi-account AWS environment based on AWS best practices. It automates the setup of multiple accounts and organizational units (OUs) and applies governance controls. - Key benefits: - Specifically designed for setting up a multi-account AWS environment. - Automates the creation of new AWS accounts, applies security and compliance guardrails, and ensures governance across accounts. - Reduces manual effort by providing blueprints for account creation and management. - Includes features like AWS Organizations, centralized logging, and security controls. - Effort and cost: - Minimal effort for setting up the environment as Control Tower automates most of the processes. - Can be cost-effective, as it simplifies governance and management across accounts. - R...

Author: SolarFalcon11 · Last updated May 15, 2026

A company needs access to checks and recommendations that help the company follow AWS best practices for cost optimization, security, fault tolerance, performance, and service quotas.Which combination ...

Option A: AWS Trusted Advisor with AWS Developer Support AWS Trusted Advisor helps with cost optimization, security, fault tolerance, performance, and service quotas by providing recommendations. However, AWS Developer Support provides basic technical support, which does not include full support for proactive monitoring and best practices insights, which are required in this case. Developer Support focuses on less critical issues and has limited access to AWS Trusted Advisor features compared to higher-level support plans. Reason for rejection: While Trusted Advisor is suitable, AWS Developer Support does not provide the level of proactive guidance and access to best practices that are needed for comprehensive recommendations in the areas outlined by the question. Scenario: This option could be suitable for development teams working in non-production environments with fewer requirements for best practice adherence. --- Option B: AWS Health Dashboard with AWS Enterprise Support AWS Health Dashboard provides personalized alerts and guidance about AWS events affecting the infrastructure, but it does not provide proactive recommendations on cost optimization, security, fault tolerance, or service quotas, which are key in the original requirements. AWS Enterprise Support, however, offers a higher level of support, including access to best practices, architectural guidance, and proactive recommendations, which would help meet the requirements for cost optimization, security, fault tolerance, performance, and service quotas. Reason for rejection: While AWS Enterprise Support is suitable for high-priority support and guidance, AWS Health Dashboard is not focused on providing best practices for the mentioned areas. It’s more suited to alerting customers about ongoing or upcoming AWS events, rather than guiding them through best practices. Scenario: This option could be useful for customers who need deep, real-time health alerts and enterprise-level support but not proactive best practices advice. --- ...

Author: Zara1234 · Last updated May 15, 2026

Which AWS service helps users plan and track their server and application inventory migration data t...

To help users plan and track their server and application inventory migration data to AWS, we need to consider services that specifically focus on migration planning, tracking, and management. Let's evaluate each service based on its functionality, effort, time, cost, and other key factors: 1. Amazon CloudWatch - Functionality: Amazon CloudWatch is primarily a monitoring and observability service for AWS resources and applications. It collects and visualizes logs, metrics, and events to help monitor application performance. However, it does not specifically focus on tracking server and application inventory migration data to AWS. - Effort: Minimal effort required to configure monitoring. - Time: Real-time monitoring and alerting, but not related to migration tracking. - Cost: Based on the number of metrics, logs, and events being monitored. - Limitations: CloudWatch is not designed to track or manage the migration of servers or application data to AWS. Rejected: Not relevant for migration planning or inventory tracking. 2. AWS DataSync - Functionality: AWS DataSync is a data transfer service that automates the moving of large amounts of data between on-premises storage and AWS services. While it helps with the transfer of data, it does not focus on planning or tracking the migration of servers and applications. - Effort: Moderate effort to set up data transfers between systems. - Time: Time depends on the data volume and network speed, but it’s mainly for data migration. - Cost: Pricing depends on the amount of data transferred. - Limitations: DataSync is focused on transferring data, not on planning and tracking the full server/application migration process. Rejected: Not focused on planning or tracking server and application migration. 3. AWS Migration Hub - Functionality: AWS Migration Hub helps users plan, track, and manage their migration process to AWS. It provides a centralized place to track the status of application migrations, including server inventory, and integrates with other AWS mig...

Author: Sofia · Last updated May 15, 2026

A company needs to purchase Amazon EC2 instances to support an application that will run continuously for more than 1 year.Which EC2 instance pu...

The company needs to purchase Amazon EC2 instances for an application that will run continuously for more than 1 year. Let's assess the most cost-effective EC2 instance purchasing options in this context, considering factors like pricing, commitment, and use case: A) Dedicated Instances - Use case: Dedicated Instances are Amazon EC2 instances that run on hardware dedicated to a single customer, providing isolation at the hardware level. - Key benefits: - Provides isolation for workloads requiring hardware dedication. - Rejection rationale: Dedicated Instances are more expensive than regular EC2 instances and are typically used for workloads that require specific compliance or isolation needs, not for general-purpose, cost-effective computing. This is less cost-effective for an application that runs continuously for a year. B) Spot Instances - Use case: Spot Instances allow users to bid on unused EC2 capacity, often resulting in a significant cost reduction (up to 90% off the On-Demand price). - Key benefits: - Very cost-effective for non-critical, flexible workloads. - Suitable for applications that can tolerate interruptions. - Rejection rationale: Spot Instances are not suitable for an application that runs continuously for over a year because they are subject to interruptions when AWS needs the capacity. For a long-running, consistent workload, Spot Instances would not meet the availability or reliability requirements. C) Reserved Instances - Use case: Reserved Instances (RIs) allow you to commit to a 1-year or 3-year term for EC2 in...

Author: Scarlett · Last updated May 15, 2026

Which programming languages does AWS Cloud Development Kit (AWS CDK) currently support? (Choose two....

The AWS Cloud Development Kit (AWS CDK) is a framework used for defining cloud infrastructure using code, with a focus on simplifying the deployment and management of cloud resources. Let's evaluate the options based on the following factors: language support by AWS CDK, ecosystem adoption, ease of use, and typical use cases for each language. Option A: Python - Reasoning: Python is one of the officially supported languages for AWS CDK. It's highly popular in the AWS ecosystem for automating cloud infrastructure with its readability and large community support. - Scenario: Python is often used for automation, DevOps tasks, and writing infrastructure-as-code for AWS, making it a common choice for cloud engineers and developers working with CDK. Option B: Swift - Reasoning: Swift is not officially supported by AWS CDK at the moment. While it's a powerful language for developing iOS and macOS applications, it doesn’t have a significant presence in cloud infrastructure management. - Scenario: It’s generally not used for cloud infrastructure as it lacks the native support in AWS CDK. Option C: TypeScript - Reasoning: TypeScript is one of the core languages supported by AWS CDK. TypeScript builds on JavaScript and offers static typing, which is valuable for large-scale cloud infrastructure projects. The AWS CDK is designed with strong support for JavaScript/TypeScript, and much of the AWS CDK documentation and examples are written in TypeScript. - Scenario: TypeScrip...

Author: CrystalWolfX · Last updated May 15, 2026

Which AWS service or feature gives users the ability to provision AWS infrastructure programmaticall...

The question asks for the AWS service or feature that enables users to provision AWS infrastructure programmatically. Let's evaluate each option: Option A: AWS Cloud Development Kit (AWS CDK) - Reasoning: The AWS Cloud Development Kit (AWS CDK) is specifically designed to allow users to define and provision AWS infrastructure programmatically. It provides high-level constructs that enable developers to use popular programming languages like TypeScript, Python, Java, and C to write infrastructure code. This allows for a more dynamic and flexible approach compared to traditional infrastructure-as-code methods such as CloudFormation templates. - Scenario: AWS CDK is used when developers want to define infrastructure using code in a familiar programming language, integrating infrastructure provisioning into the software development lifecycle. It simplifies the process of managing and deploying AWS resources. Option B: Amazon CodeGuru - Reasoning: Amazon CodeGuru is a machine learning-powered service designed for code reviews and providing recommendations to improve code quality, security, and best practices. It doesn't deal with infrastructure provisioning but rather with the analysis of application code. - Scenario: CodeGuru would be used in a scenario where developers want to impro...

Author: Sofia · Last updated May 15, 2026

Which AWS service or feature allows a company to have its own logically isolated section of the AWS ...

The question asks which AWS service or feature allows a company to have its own logically isolated section of the AWS Cloud. Let's evaluate each option based on this requirement: Option A: AWS VPN - Reasoning: AWS VPN (Virtual Private Network) allows a secure connection between a company's on-premises network and AWS, but it does not provide a logically isolated section of the AWS Cloud itself. It is mainly used for securely extending an on-premises network to AWS, not for isolating resources within the AWS cloud. - Scenario: AWS VPN would be used when a company needs to securely connect its on-premises network to AWS but not for creating an isolated cloud environment. Option B: Availability Zones - Reasoning: Availability Zones (AZs) refer to distinct locations within an AWS Region that are engineered to be isolated from failures in other AZs. They are used for high availability and fault tolerance but do not provide a "logically isolated" section of the AWS Cloud. Instead, they are part of the physical infrastructure of AWS regions. - Scenario: Availability Zones are used when you want to design highly available applications but not for isolating an entire cloud environment. Option C: Amazon Virtual Private Cloud (Amazon VPC) - Reasoning: Amazon Virtual Private Cloud (Amazon VPC) is the AWS servi...

Author: James · Last updated May 15, 2026

Which of the following actions are controlled with AWS Identity and Access Management (IAM)? (Choose...

The question asks which actions are controlled with AWS Identity and Access Management (IAM). IAM is a service that enables users to manage access to AWS services and resources securely. Let's analyze each option in the context of IAM's capabilities: Option A: Control access to AWS service APIs and to other specific resources - Reasoning: This is exactly what AWS IAM is designed to do. IAM allows administrators to control who can access AWS services, specific APIs, and resources such as S3 buckets, EC2 instances, etc., by creating and managing user policies and roles. IAM enables you to grant or deny permissions based on policies. - Scenario: IAM is used when you need to control access to different AWS services or resources, ensuring that only authorized users can interact with specific APIs or services. Option B: Provide intelligent threat detection and continuous monitoring - Reasoning: This action is handled by other AWS services like Amazon GuardDuty and AWS CloudTrail, not IAM. GuardDuty provides threat detection, and CloudTrail monitors API calls and account activity. - Scenario: Use GuardDuty or CloudTrail for threat detection and monitoring, not IAM. Option C: Protect the AWS environment using multi-factor authentication (MFA) - Reasoning: IAM allows you to enable Multi-Factor Authentication (MFA) for users, which provides an additio...

Author: Amira99 · Last updated May 15, 2026

Why are AWS CloudFormation templates used?

To understand why AWS CloudFormation templates are used, we need to assess how the tool functions and the advantages it provides in various scenarios. CloudFormation is a service that allows users to automate the deployment and management of AWS resources by defining them in configuration files (templates). Here's an evaluation of each option in relation to this: A) To reduce provisioning time by using automation - Description: AWS CloudFormation allows you to define infrastructure as code using templates (in JSON or YAML format). This enables the automation of resource provisioning, which significantly reduces the time required to manually create or configure AWS services. - Use Case: CloudFormation is ideal for automating complex infrastructure deployments, ensuring consistency across environments, and reducing the time spent on manual configuration. Automation of repetitive tasks and faster provisioning are key reasons why organizations use it. - Effort and Cost: By automating the process, CloudFormation reduces manual effort, minimizes human error, and cuts down on time and operational costs in the long run. B) To transfer existing infrastructure to another company - Description: CloudFormation templates are primarily used to define infrastructure within AWS. While templates can help document and define resources, they are not specifically designed to facilitate the transfer of infrastructure from one company to another. - Use Case: This is not a typical use case for CloudFormation. Transferring infrastructure typically involves considerations around data migration, access permissions, and other elements that go beyond infrastructure definitions, which CloudFormation templates don't directly address. - Effort and Cost: CloudFormation does not provide mechanisms for transferring resources between companies. Tools like AWS Migration Hub or other migration services are more appropriate for this scenario. C) To reuse on-premises infrastructure in the AWS Cloud - Description: While CloudFormation helps automate the creation of cloud resources, it doesn't direc...

Author: Zara1234 · Last updated May 15, 2026

A company is using AWS Identity and Access Management (IAM).Who can manage the access keys of the AW...

The question asks who can manage the access keys of the AWS account root user using AWS Identity and Access Management (IAM). Let's evaluate each option based on the capabilities of IAM: Option A: IAM users in the same account that have been granted permission - Reasoning: IAM users in the same account can manage resources within the account, but they cannot directly manage the access keys of the root user. IAM policies cannot grant permissions to manage the access keys of the root user due to security considerations. The root user has special privileges, and access to its keys is tightly controlled. - Scenario: This option would be used for managing permissions for normal IAM users, but it does not apply to managing the root user's access keys. Option B: IAM roles in any account that have been granted permission - Reasoning: IAM roles are used for delegating permissions within or across accounts, but they cannot manage the access keys of the AWS account root user. Similar to IAM users, IAM roles cannot directly modify or manage the access keys of the root user. - Scenario: Roles are useful for cross-account access but not for managing root user credentials. Option C: IAM users and roles that have been granted ...

Author: Manish · Last updated May 15, 2026

Which group shares responsibility with AWS for security and compliance of AWS accounts and resources...

The correct option is B) Customers. Explanation: - AWS Security Responsibility Model defines the shared responsibility between AWS and its customers. AWS manages security of the cloud, which includes the infrastructure, network, and hardware, while customers are responsible for security in the cloud, which involves managing access control, data encryption, configuration, and monitoring of their AWS resources. Breakdown of Factors: 1. Services: - AWS provides security services like IAM (Identity and Access Management), CloudTrail, CloudWatch, and KMS (Key Management Service) to help customers protect their resources. - Customers must utilize these services properly to secure their environments, for example by setting IAM roles, configuring CloudWatch alarms for unusual activity, or managing encryption keys. 2. Effort: - AWS ensures the physical security of data centers and manages hypervisor security, but customers need to take responsibility for securing their virtual machines, data storage, and network traffic in the cloud. - This requires continuous effort from customers in terms of configurations, monitoring, and updates. 3. Time: - AWS handles the underlying infrastructure security immediately, while customers must spend time setting up, configuring, and maintaining the security of their resources. 4. Cost: - The security tools provided by AWS might come with additional costs for customers, such as using IAM features, CloudWatch logs, or encryption. However, customers are responsible for budgeting th...

Author: Zara · Last updated May 15, 2026

A company needs an event history of which AWS resources the company has created.Which AWS service wi...

The correct option is B) AWS CloudTrail. Explanation: - AWS CloudTrail is specifically designed to log, monitor, and retain account activity across AWS infrastructure. It provides a comprehensive event history of AWS resource creation and modifications made by users, applications, or AWS services. CloudTrail captures detailed event logs, including the creation, modification, and deletion of AWS resources, along with who performed the action, when it was performed, and from where. Breakdown of Factors: 1. Services: - AWS CloudTrail provides a detailed history of all API calls made in your AWS account, including the creation of AWS resources like EC2 instances, S3 buckets, IAM roles, etc. It is the service specifically tailored for auditing and tracking AWS resource activity. - Services like CloudWatch, Aurora, and EventBridge focus on different aspects of cloud operations (e.g., monitoring, event-driven architecture, databases) and do not provide event histories of resource creation. 2. Effort: - With CloudTrail, the setup is straightforward. Once enabled, it logs and stores events automatically, requiring minimal ongoing effort from users to maintain the event logs. - For CloudWatch or EventBridge, while they might log specific application-level or operational metrics, they do not provide the historical audit trail of resource creation and changes that CloudTrail does. 3. Time: - CloudTrail provides real-time or near-real-time logging of API activity. Historical event data is stored for a default of 90 days (or longer if configured) and is immediately available for querying. - CloudWatch primarily focuses on operational monitoring and alerting, not resource creation history. EventBridge focuses on event-driven applications and event routing, and Aurora is a database service unrelated to logging event histories of AWS resource creation. ...

Author: MoonlitPantherX · Last updated May 15, 2026

A company wants to run relationship databases in the AWS Cloud. The company wants to use a managed service that will install the database and run regula...

The company needs a managed service for running relational databases that will handle the installation of the database and the regular software updates. Let's break down each of the options in terms of these requirements: A) Amazon S3 Amazon S3 (Simple Storage Service) is a highly scalable object storage service, designed to store and retrieve any amount of data at any time. While it is great for unstructured data, backups, and file storage, S3 is not a relational database service and doesn't provide any managed database functionality such as installation or software updates. Therefore, this option doesn't meet the company's requirement for running relational databases. B) Amazon RDS Amazon RDS (Relational Database Service) is a managed database service that supports several relational database engines, such as MySQL, PostgreSQL, MariaDB, Oracle, and SQL Server. It automates the installation, patching, and software updates for these database engines, which perfectly matches the company's requirement to use a managed service. RDS handles regular updates and maintenance, saving the company the effort of managing these tasks manually. Additionally, RDS allows for automated backups, scaling, and high availability configurations, making it a highly efficient option f...

Author: FrozenWolf2022 · Last updated May 15, 2026

Which AWS service provides a fully managed graph database for highly connected datasets?

The correct option is C) Amazon Neptune. Explanation: - Amazon Neptune is a fully managed graph database service designed specifically to handle highly connected datasets. It supports two popular graph models: Property Graph (using TinkerPop) and RDF (Resource Description Framework), which are ideal for managing relationships and connections between data points, such as social networks, recommendation engines, fraud detection systems, and knowledge graphs. Breakdown of Factors: 1. Services: - Amazon Neptune is optimized for graph-based queries and analytics. It is purpose-built for handling complex relationships between data, making it the best choice for highly connected datasets. - Other options like Amazon DynamoDB, Amazon RDS, and Amazon Aurora are not designed specifically for graph databases. DynamoDB is a NoSQL database primarily used for key-value and document data, while RDS and Aurora are relational databases that manage structured data using tables and rows. 2. Effort: - Amazon Neptune offers a fully managed solution, meaning that AWS takes care of the underlying infrastructure, backups, and scaling. Users can focus on their graph-based applications and queries with minimal effort required for database management. - DynamoDB, RDS, and Aurora require more custom configurations if you need to represent relationships or graph-like data. They may not perform as efficiently as Neptune for graph-based queries. 3. Time: - Neptune is designed to handle graph queries efficiently with fast traversals and complex relationship analysis. Setting up and running graph queries in Neptune is optimized, whereas relational databases (RDS, Aurora) would require more time and complex schema design to achieve similar results. 4. Cost: - The cost for Amazon Neptune is based on instances, storage, and data transfer, which is competitive for graph database applications. - DynamoDB has a different pricing model based on throughput and storage but is n...

Author: Julian · Last updated May 15, 2026

A company's cloud environment includes Amazon EC2 instances and Application Load Balancers. The company wants to improve protections for its cloud resources against DDoS attacks. The company also wants to have ...

The correct option is C) AWS Shield Advanced. Explanation: - AWS Shield Advanced is a managed DDoS (Distributed Denial of Service) protection service that provides enhanced protection for AWS resources, including EC2 instances and Application Load Balancers (ALBs). It offers real-time visibility into ongoing DDoS attacks, automatic mitigation of large-scale attacks, and detailed attack diagnostics. Shield Advanced also includes cost protection for extra resources that might be consumed during a DDoS attack, and integrates with CloudWatch to provide alerts and insights into attacks. Breakdown of Factors: 1. Services: - AWS Shield Advanced offers proactive DDoS detection and mitigation, tailored specifically to AWS environments. It works seamlessly with services like Amazon EC2 and Application Load Balancers, ensuring that the resources are protected from both common and sophisticated DDoS attacks. - AWS Shield Standard is a free, basic DDoS protection service, but it lacks the advanced protections, real-time visibility, and diagnostics offered by Shield Advanced. While Shield Standard protects against most common attacks, it doesn't meet the specific needs for real-time attack visibility or enhanced attack protection that Shield Advanced provides. 2. Effort: - AWS Shield Advanced provides automatic protection without requiring significant manual configuration, although it allows for custom configurations and response options if desired. The service reduces effort by automatically mitigating most attacks and providing detailed insights through CloudWatch metrics and AWS WAF (Web Application Firewall) integration. - AWS Firewall Manager helps manage firewalls at scale, but it is primarily used for centralizing and automating the configuration of firewalls (such as AWS WAF) across AWS accounts. It does not directly address DDoS mitigation and real-time visibility as Shield Advanced does. 3. Time: - Shield Advanced delivers near-instantaneous mitigation of DDoS attacks and provides real-time visibility through integration with CloudWatch, CloudTrail, and other AWS services. - AWS Firewall Manager helps with firewall management but does not offer the speed or detailed visibility of DDoS attack detection and mitigation. Similarly, GuardDuty offers threat detection, but it focuses on identifying security threats like compromised instances rather than preventing DDoS attacks. 4. Cost: - Shield Advanced is a paid service but provides significant value throug...

Author: Isabella1 · Last updated May 15, 2026

A company wants to update its online data processing application by implementing container-based services that run for 4 hours at a time. The company does not want to provisio...

The company wants to update its online data processing application using container-based services that run for 4 hours at a time and does not want to provision or manage server instances. Let’s evaluate the options to determine which best meets these requirements. A) AWS Lambda - Description: AWS Lambda is a serverless compute service that runs code in response to events. It is designed for short-duration tasks, with a maximum execution time of 15 minutes. - Why it's not a good fit: AWS Lambda is not suitable for tasks that require long execution times, as the maximum runtime per function invocation is 15 minutes. Since the application runs for 4 hours, Lambda will not work for this use case. B) AWS Fargate - Description: AWS Fargate is a serverless compute engine for containers. It allows you to run containers without managing the underlying server instances. You simply specify the container requirements, and Fargate automatically manages the infrastructure. - Why it’s a good fit: AWS Fargate is perfect for this scenario, as it allows the company to run containerized applications without provisioning or managing server instances. It is designed for long-running container tasks, including tasks that run for several hours, like the 4-hour duration required. It abstracts away server management, which is exactly what the company wants. C) Amazon EC2 - Description: Amazon EC2 provides scalable compute instances where users can deploy applications, including containerized applications. - Why it's not a good fit: While EC2 can run contain...

Author: Arjun · Last updated May 15, 2026

Which AWS service enables users to create copies of resources across AWS Regions?

The question asks for an AWS service that enables users to create copies of resources across AWS Regions. To determine the correct service, let's examine each option in terms of their functionalities and how they align with the ability to copy resources across regions. Analyzing the options: A) Amazon ElastiCache: - Explanation: Amazon ElastiCache is a fully managed in-memory caching service that supports Redis and Memcached. It’s used to improve the performance of applications by caching data. It does not focus on creating copies of resources across regions. - Reason for rejection: ElastiCache is used for caching purposes and doesn’t facilitate replicating or copying resources across regions. - Why not: ElastiCache is not designed for cross-region replication of resources, so it does not fulfill the requirement in the question. B) AWS CloudFormation: - Explanation: AWS CloudFormation allows you to define and provision AWS infrastructure as code. You can create and manage AWS resources using templates. CloudFormation stacks can be deployed in different regions, and with a few configurations, you can replicate infrastructure resources in another region. - Reason for selection: CloudFormation enables the automation of deploying identical resources across multiple regions by defining the infrastructure as code. By creating CloudFormation templates and deploying them in other regions, users can replicate their resources in different AWS regions. - Why selected: CloudFormation is designed for resource provisionin...

Author: Ava · Last updated May 15, 2026

Which task is the responsibility of AWS, according to the AWS shared responsibility model?

The AWS Shared Responsibility Model outlines the division of responsibilities between AWS (the cloud provider) and the customer. It categorizes tasks based on whether AWS manages them or the customer must handle them. Understanding which tasks fall under AWS's responsibility is crucial for optimizing operational practices. Let's evaluate each option in the context of the AWS Shared Responsibility Model: A) Apply guest operating system patches to Amazon EC2 instances: - Explanation: In the AWS Shared Responsibility Model, AWS is responsible for the security of the cloud (hardware, networking, and facilities). However, the customer is responsible for the security in the cloud, including the operating system and software running on EC2 instances. - Reason for rejection: The customer is responsible for applying patches and maintaining the operating system on EC2 instances. AWS only manages the underlying infrastructure, not the guest OS. - Why not: This is a customer responsibility according to the shared responsibility model. B) Provide monitoring of human resources information management (HRIM) systems: - Explanation: Monitoring specific applications, including HRIM systems, is generally the responsibility of the customer. While AWS provides monitoring tools (e.g., Amazon CloudWatch), it is up to the customer to configure and use these tools to monitor applications like HRIM systems. - Reason for rejection: This task falls under the customer’s responsibility, as it pertains to monitoring their specific applications. - Why not: This is not AWS's responsibility but rather the customer’s. C) Perform automate...

Author: Max · Last updated May 15, 2026

A user needs to perform a one-time backup of an Amazon Elastic Block Store (Amazon EBS) volume that is attached to an Amazon EC2 instance.What i...

The correct option is C) Create an EBS snapshot of the volume. Explanation: - EBS snapshots provide an operationally efficient, cost-effective, and quick way to back up the contents of an Amazon Elastic Block Store (EBS) volume. Snapshots are incremental, meaning only the changes since the last snapshot are backed up, making the process fast and reducing storage costs. Once taken, snapshots are stored in Amazon S3 and can be used to restore the volume or create new EBS volumes. Breakdown of Factors: 1. Services: - EBS Snapshot: Amazon EBS snapshots are a fully managed feature specifically designed for creating backups of EBS volumes. The process is simple and can be initiated directly from the AWS Management Console, CLI, or SDK, with minimal effort. - Other options like creating custom scripts or using external servers are not optimized for the use case of creating a quick, one-time backup of an EBS volume. 2. Effort: - Creating an EBS snapshot requires very little effort. It can be initiated in a few clicks or commands, and it doesn’t require managing additional infrastructure. - The other options involve additional steps and infrastructure, such as attaching another EBS volume (A), transferring data to external servers (B), or manually copying data to S3 (D). These all require more manual intervention and setup. 3. Time: - EBS snapshots are highly efficient. Once initiated, they are typically completed quickly and can be taken even while the EBS volume is in use (hot backups). The time involved is minimal compared to other options. - Other options, like copying the EBS contents to a different location, would require more time and might involve copying large amounts of data. 4. Cost: - EBS snapshots are cost-effective because they are incremental. You only pay for the data that changes since the last snapshot, minimizing storage costs compared to full backups. - The other options may involve higher costs, such as additional storage, compute...

Author: VenomousSerpent42 · Last updated May 15, 2026

A developer who has no AWS Cloud experience wants to use AWS technology to build a web application.Which AWS service should...

When a developer with no AWS Cloud experience is looking to build a web application, the choice of service depends on factors like ease of use, the level of abstraction, scalability, cost, time, and effort involved in setting up and maintaining the application. Let’s analyze the options: A) Amazon SageMaker - Purpose: Amazon SageMaker is primarily designed for building, training, and deploying machine learning models. It is highly specialized for machine learning workflows. - Reason for Rejection: Since the developer has no AWS Cloud experience and is looking to build a standard web application (and not focused on machine learning), SageMaker is not a good fit. Additionally, it involves more complexity and overhead related to ML workflows. Scenario for Use: SageMaker is ideal for machine learning use cases but is irrelevant for general web application development. B) AWS Lambda - Purpose: AWS Lambda allows you to run code in response to events without provisioning or managing servers. It is serverless, making it highly scalable and cost-effective for running backend logic. - Reason for Rejection: While AWS Lambda is great for serverless applications and can handle specific components of a web application, it requires understanding event-driven architectures and more detailed configuration. Additionally, Lambda by itself does not provide full infrastructure for a web application (e.g., hosting, databases, etc.), and additional services would be needed. Scenario for Use: Lambda is best used for specific tasks such as backend functions (e.g., handling API calls), but it would not be the most suitable starting point for an entire web application, especially for someone new to AWS. C) Amazon Lightsail - Purpose: Amazon Lightsail provides an easy-to-use platform that simplifies cloud infrastructure. It offers virtual private servers (VPS), managed database...

Author: Deepak · Last updated May 15, 2026

A company wants to manage access and permissions for its third-party software as a service (SaaS) applications. The company wants to use a portal where end users can access assigned AWS accounts and AWS ...

To manage access and permissions for third-party software as a service (SaaS) applications and provide a portal where end users can access assigned AWS accounts and AWS Cloud applications, we need a service that supports centralized identity and access management for both AWS resources and external SaaS applications. Let’s analyze the options in detail. Explanation: A) Amazon Cognito: - Functionality: Amazon Cognito provides user sign-up, sign-in, and access control for web and mobile applications. It integrates with external identity providers (such as Google or Facebook) and can also be used for federating access to AWS services. - Reason for Rejection: While Amazon Cognito is excellent for managing authentication and user access for web and mobile applications, it doesn’t provide a centralized portal specifically designed to manage access to both AWS accounts and AWS Cloud applications for end users. It is more focused on app-level user authentication and doesn't offer a comprehensive single sign-on (SSO) experience across AWS and third-party applications. - Scenario: Amazon Cognito is useful for applications that require authentication but doesn’t provide a unified portal for managing AWS access and third-party SaaS applications. B) AWS IAM Identity Center (AWS Single Sign-On): - Functionality: AWS IAM Identity Center (formerly AWS Single Sign-On) provides a centralized way to manage access to AWS accounts, cloud applications, and third-party SaaS applications. It allows you to create a single portal where users can access all their assigned applications and services, including AWS services and supported third-party applications. - Reason for Selection: This service is designed specifically for managing access to AWS accounts and applications, as well as integrating with third-party SaaS apps. It provides a user-friendly portal for end users to access assigned AWS resources and external applications, which directly aligns with the company’s requirements for managing access and permissions. - Scenario: AWS IAM Identity Center is ideal for organizations that need to manage access to AWS accounts, cloud ap...

Author: Zara · Last updated May 15, 2026

Which AWS service is designed for users running workloads that include a NoSQL database?

When considering the best AWS service designed for users running workloads that include a NoSQL database, it's important to focus on the specific requirements of NoSQL databases—namely, scalability, flexibility, and performance for unstructured or semi-structured data. Let's break down the options in light of this. A) Amazon RDS Description: Amazon RDS (Relational Database Service) is a managed service for relational databases, supporting engines like MySQL, PostgreSQL, MariaDB, Oracle, and SQL Server. - Why rejected: Amazon RDS is optimized for relational databases, not NoSQL. NoSQL databases are typically schema-less and optimized for different use cases like horizontal scaling, flexibility, and handling semi-structured data, which are not the focus of RDS. Scenario: RDS is suitable for structured data that benefits from relational schema, such as financial systems, customer relationship management (CRM) systems, and transactional databases. B) Amazon S3 Description: Amazon S3 (Simple Storage Service) is a scalable object storage service designed for storing large amounts of unstructured data such as images, videos, backups, and logs. - Why rejected: While S3 is great for storing data, it is not a database service. It does not support querying or running workloads involving a NoSQL database. S3 is a storage solution, not a database solution. Scenario: S3 is ideal for storing static files, backups, logs, or any large, unstructured data but is not suited for managing NoSQL databases or running database workloads. C) Amazon Redshift Description: Amazon Redshift is a managed data warehouse service designed for performing complex queries and an...

Author: Ava · Last updated May 15, 2026

A company has a website on AWS. The company wants to deliver the website to a worldwide audience and provide low-latency response times for ...

When a company wants to deliver a website to a worldwide audience with low-latency response times, the solution should address global distribution and caching to reduce latency for users from different regions. Let's analyze each AWS service option based on this scenario: A) AWS CloudFormation - Purpose: AWS CloudFormation is an infrastructure-as-code service used to provision and manage AWS resources in a repeatable manner. - Reason for Rejection: CloudFormation is not designed for delivering content to users or optimizing response times. It is used to manage infrastructure, not to improve global delivery or reduce latency. Scenario for Use: CloudFormation is ideal for automating and managing the creation of AWS resources but does not directly impact website delivery or latency for global users. B) Amazon CloudFront - Purpose: Amazon CloudFront is a content delivery network (CDN) that distributes content globally through a network of edge locations. It caches copies of your website’s content at edge locations around the world to deliver it with low-latency to end users, regardless of their geographic location. - Reason for Selection: CloudFront is specifically designed to reduce latency by caching content at locations closer to users. It accelerates content delivery for static and dynamic web pages, images, and videos, making it the most suitable service for providing low-latency response times to a global audience. - Effort and Cost: CloudFront is easy to set up, and it scales automatically as traffic increases. Pricing is pay-as-you-go, meaning that you pay for what you use. The setup effort is minimal compared to managing infrastructure at multiple data centers. Scenario for Use: CloudFront is ideal when the goal is to provide a website to a worldwi...

Author: Ethan Smith · Last updated May 15, 2026

A company wants to add a conversational chatbot to its website.Which AWS service can the company use...

When a company wants to add a conversational chatbot to its website, the ideal AWS service should be capable of handling natural language understanding, dialog management, and integration with website interfaces. Let’s analyze each option based on the company’s need to implement a chatbot. A) Amazon Textract - Purpose: Amazon Textract is a service for automatically extracting text and data from scanned documents, PDFs, and images. - Reason for Rejection: While Textract is excellent for extracting textual information from documents, it does not have any capabilities related to building or managing conversational chatbots. This service is not designed to handle natural language processing (NLP) or dialog management required for chatbot functionality. Scenario for Use: Textract is useful when you need to extract text from documents, but it is irrelevant for building a conversational chatbot. B) Amazon Lex - Purpose: Amazon Lex is a service for building conversational interfaces using voice and text. It is the foundation of chatbots and virtual assistants and uses natural language understanding (NLU) and automatic speech recognition (ASR) to interact with users. - Reason for Selection: Lex is specifically designed for creating chatbots. It allows developers to build conversational agents that can handle user queries, manage dialogues, and integrate with other services (like AWS Lambda) to provide dynamic responses. It’s a powerful tool for building chatbots that can integrate seamlessly into a website or application. - Effort and Cost: Setting up Amazon Lex is straightforward with minimal setup for a ba...

Author: Daniel · Last updated May 15, 2026

Which AWS service or feature can be used to monitor for potential disk write spikes on a system that...

To monitor for potential disk write spikes on a system running on Amazon EC2, the best service to use is Amazon CloudWatch. Explanation of the Options: - A) AWS CloudTrail: AWS CloudTrail records API calls made within your AWS account, providing a history of AWS API activity for security auditing, operational troubleshooting, and compliance. However, CloudTrail focuses on tracking API requests and logs related to AWS services and resources, rather than monitoring system performance or disk activity (such as disk write spikes). Therefore, it is not designed for monitoring disk usage or performance metrics on EC2 instances. Scenario: CloudTrail is useful for security and auditing but not for performance monitoring like disk write spikes. - B) AWS Health Dashboard: The AWS Health Dashboard provides insights into the health of AWS services and your resources, such as AWS outages, planned maintenance, and service issues. While useful for tracking the overall health of AWS infrastructure, it does not provide the capability to monitor system-level metrics like disk write activity on EC2 instances. Scenario: The Health Dashboard is important for AWS service status, but it does not monitor disk activity on EC2 instances. - C) AWS Trusted Advisor: AWS Trusted Advisor provides best practices and recommendat...

Author: VenomousSerpent42 · Last updated May 15, 2026

A company has applications that control on-premises factory equipment.Which AWS service should the company use t...

To determine the AWS service that would be best suited for running applications that control on-premises factory equipment with the least latency, let's evaluate the options in the context of performance, latency, integration with on-premises systems, and cost: Option A) AWS Outposts: - Use case: AWS Outposts extends AWS infrastructure to your on-premises data center, providing a hybrid cloud solution where you can run AWS services locally. It can reduce latency by running AWS services on-premises. - Why selected: Since the application controls on-premises factory equipment, AWS Outposts would be a strong choice because it enables running AWS services locally, minimizing network latency between the applications and the equipment. By keeping the workload on-premises, it provides the lowest possible latency for controlling factory equipment, while still allowing integration with AWS services. Option B) Amazon EC2: - Use case: Amazon EC2 provides scalable compute resources in the cloud, but running EC2 instances for controlling on-premises equipment would involve network communication over the internet, which could introduce additional latency. - Why rejected: While EC2 offers powerful compute resources, running applications remotely in the cloud may introduce higher latency compared to solutions that are run on-premises or integrated directly into on-premises systems (e.g., through AWS Outposts). This would not be ideal for controlling equipment that requires the least possible latency. Option C) AWS Lambda: - Use case: AWS Lambda is a serv...

Author: Noah Williams · Last updated May 15, 2026

Which AWS Cloud Adoption Framework (AWS CAF) perspective focuses on organizing an inventory of data ...

The correct option for the AWS Cloud Adoption Framework (AWS CAF) perspective that focuses on organizing an inventory of data products in a data catalog is: B) Governance Reasoning: The AWS Cloud Adoption Framework (AWS CAF) defines perspectives to guide organizations in their cloud adoption journey. The Governance perspective specifically addresses how to manage data, security, compliance, and other operational and strategic aspects during cloud adoption. Organizing data products in a catalog, ensuring their proper management, and establishing governance practices for data access, compliance, and quality are critical in the Governance perspective. - Governance Perspective: - It involves organizing, tracking, and governing resources like data products across the organization. This includes ensuring data cataloging, metadata management, data classification, compliance, and auditing are handled efficiently. A data catalog helps organize the inventory of data products and allows governance mechanisms to be enforced, ensuring the correct use and access to data. - Effort, time, and cost: Setting up data governance, including organizing data in a catalog, requires significant effort. It involves defining standards for data management, utilizing tools like AWS Glue Data Catalog or AWS Lake Formation, and ensuring compliance with organizational policies. The cost could involve investment in governance tools and additional resources to maintain the catalog. - Example scenario: A company migrating to AWS may need to organize its large dataset into a well-defined catalog for easier discovery, access control, and management in accordance with data governance policies. Why Other Options Are Rejected: Option A: Operations - Not focused on data cataloging: The Operations perspective is focused on managing th...

Author: Noah Williams · Last updated May 15, 2026

A company runs its production workload in the AWS Cloud. The company needs to choose one of the AWS Support Plans.Which of the AWS Supp...

Let's evaluate the AWS Support Plans based on the requirements: Key Considerations: - The company runs its production workload, so the support plan must be appropriate for production environments. - The goal is to select the plan that meets these requirements at the lowest cost. --- Option A: Developer Support - Service Description: AWS Developer Support is the lowest-cost AWS support plan. It includes email-based support and best practices guidance, but it lacks 24/7 support, and quick response times, which are often required for production workloads. - Rejection: Developer Support is not appropriate for a production workload because it does not offer 24/7 support or fast enough response times for critical issues. It is better suited for development and testing environments rather than production. --- Option B: Enterprise On-Ramp - Service Description: Enterprise On-Ramp is a lower-cost version of Enterprise Support. It includes 24/7 support, including email and chat, as well as some proactive support features and technical guidance. It is designed for production environments at a more affordable price than full Enterprise Support. - Selection Justification: Enterprise On-Ramp is the most cost-effective option for a production workload that still requires 24/7 support and enhanced guidance. It provides production-ready support without the high cost of Enterprise Support, making it the best option to meet both cost an...

Author: John · Last updated May 15, 2026

What Our Friends Say

What Our Friends Say

Amazon Practice Questions, Discussions & Exam Topics by our Authors

Which AWS service provides serverless compute for use with containers?

A company is using multiple AWS accounts for different business teams. The finance team wants to receive one bill for all of the company's accounts.Which AWS ...

A company needs a firewall that will control network connections to and from a single Amazon EC2 instance. This firewall will not control network connections to and from other instances that are in the s...

A company is planning to use the Amazon EC2 instances as web servers. Customers from around the world will use the web servers. Most customers will use the web servers only during certain hours of the day...

Which benefit is always free of charge with AWS, regardless of a user=E2=80=99s AWS Support plan?

A company uses Amazon EC2 instances to run its application. The application needs to be available and running continuously for three or more years.What type of EC2 ...

A company needs to perform an audit of recent AWS account activity. The audit will investigate who initiated an event and what actions were performed.Wh...

Which design principles are included in the reliability pillar of the AWS Well-Architected Framework...

A company needs to use AWS technology to deploy a static website.Which solution meets this requirement w...

Which recommendation can AWS Cost Explorer provide to help reduce cost?

A company wants to deploy an application in multiple Availability Zones in a single AWS Region.Which benefi...

What is the total volume of data that can be stored in Amazon S3?

Which AWS service gives a company the ability to use a private, dedicated connection between a VPC a...

A company is running big data analytics and massive parallel computations on its AWS test and development servers. The company can tolerate occasional downtime.What is th...

A company runs Amazon EC2 instances in a research lab. The instances run for 3 hours each week and cannot be interrupted.What is the MOST cost-e...

A new AWS user needs to interact with AWS Support by using API calls.Which AWS Support plan will mee...

A company migrated to the AWS Cloud. Now the company pays for services on an as-needed basis.Which advantage of...

A company will run a predictable compute workload on Amazon EC2 instances for the next 3 years. The workload is critical for the company. The company wants to optimiz...

A company needs to run a workload that requires low-latency access to an on-premises data center. The company wants a fully managed service to extend its existing VPC ...

A company wants to centrally manage its employee's access to multiple AWS accounts.Which AWS service or feature ...

A university receives a grant to conduct research by using AWS services. The research team needs to make sure the grant money lasts for the entire school year. The team has decided on a monthly allocation that adds up to the total gr...

A company has migrated its workload to the AWS Cloud. The company wants to optimize existing Amazon EC2 resources.Which AWS serv...

A company with multiple accounts and teams wants to set up a new multi-account AWS environment.Which...

A company needs access to checks and recommendations that help the company follow AWS best practices for cost optimization, security, fault tolerance, performance, and service quotas.Which combination ...

Which AWS service helps users plan and track their server and application inventory migration data t...

A company needs to purchase Amazon EC2 instances to support an application that will run continuously for more than 1 year.Which EC2 instance pu...

Which programming languages does AWS Cloud Development Kit (AWS CDK) currently support? (Choose two....

Which AWS service or feature gives users the ability to provision AWS infrastructure programmaticall...

Which AWS service or feature allows a company to have its own logically isolated section of the AWS ...

Which of the following actions are controlled with AWS Identity and Access Management (IAM)? (Choose...

Why are AWS CloudFormation templates used?

A company is using AWS Identity and Access Management (IAM).Who can manage the access keys of the AW...

Which group shares responsibility with AWS for security and compliance of AWS accounts and resources...

A company needs an event history of which AWS resources the company has created.Which AWS service wi...

A company wants to run relationship databases in the AWS Cloud. The company wants to use a managed service that will install the database and run regula...

Which AWS service provides a fully managed graph database for highly connected datasets?

A company's cloud environment includes Amazon EC2 instances and Application Load Balancers. The company wants to improve protections for its cloud resources against DDoS attacks. The company also wants to have ...

A company wants to update its online data processing application by implementing container-based services that run for 4 hours at a time. The company does not want to provisio...

Which AWS service enables users to create copies of resources across AWS Regions?

Which task is the responsibility of AWS, according to the AWS shared responsibility model?

A user needs to perform a one-time backup of an Amazon Elastic Block Store (Amazon EBS) volume that is attached to an Amazon EC2 instance.What i...

A developer who has no AWS Cloud experience wants to use AWS technology to build a web application.Which AWS service should...

A company wants to manage access and permissions for its third-party software as a service (SaaS) applications. The company wants to use a portal where end users can access assigned AWS accounts and AWS ...

Which AWS service is designed for users running workloads that include a NoSQL database?

A company has a website on AWS. The company wants to deliver the website to a worldwide audience and provide low-latency response times for ...

A company wants to add a conversational chatbot to its website.Which AWS service can the company use...

Which AWS service or feature can be used to monitor for potential disk write spikes on a system that...

A company has applications that control on-premises factory equipment.Which AWS service should the company use t...

Which AWS Cloud Adoption Framework (AWS CAF) perspective focuses on organizing an inventory of data ...

A company runs its production workload in the AWS Cloud. The company needs to choose one of the AWS Support Plans.Which of the AWS Supp...