Q1. - (Topic 3) 

The compliance department within your multi-national organization requires that all data for your customers that reside in the European Union (EU) must not leave the EU and also 

data for customers that reside in the US must not leave the US without explicit authorization. 

What must you do to comply with this requirement for a web based profile management application running on EC2? 

A. Run EC2 instances in multiple AWS Availability Zones in single Region and leverage an Elastic Load Balancer with session stickiness to route traffic to the appropriate zone to create their profile 

B. Run EC2 instances in multiple Regions and leverage Route 53's Latency Based Routing capabilities to route traffic to the appropriate region to create their profile 

C. Run EC2 instances in multiple Regions and leverage a third party data provider to determine if a user needs to be redirect to the appropriate region to create their profile 

D. Run EC2 instances in multiple AWS Availability Zones in a single Region and leverage a third party data provider to determine if a user needs to be redirect to the appropriate zone to create their profile 

View Answer

Q2. - (Topic 1) 

You use S3 to store critical data for your company Several users within your group currently have lull permissions to your S3 buckets You need to come up with a solution mat does not impact your users and also protect against the accidental deletion of objects. 

Which two options will address this issue? Choose 2 answers 

A. Enable versioning on your S3 Buckets 

B. Configure your S3 Buckets with MFA delete 

C. Create a Bucket policy and only allow read only permissions to all users at the bucket level 

D. Enable object life cycle policies and configure the data older than 3 months to be archived in Glacier 

View Answer

Q3. - (Topic 2) 

An organization has created 50 IAM users. The organization wants that each user can change their password but cannot change their access keys. How can the organization achieve this? 

A. The organization has to create a special password policy and attach it to each user 

B. The root account owner has to use CLI which forces each IAM user to change their password on first login 

C. By default each IAM user can modify their passwords 

D. The root account owner can set the policy from the IAM console under the password policy screen 

View Answer

Q4. - (Topic 3) 

A user has launched an EC2 Windows instance from an instance store backed AMI. The user has also set the Instance initiated shutdown behavior to stop. What will happen when the user shuts down the OS? 

A. It will not allow the user to shutdown the OS when the shutdown behaviour is set to Stop 

B. It is not possible to set the termination behaviour to Stop for an Instance store backed AMI instance 

C. The instance will stay running but the OS will be shutdown 

D. The instance will be terminated 

View Answer

Q5. - (Topic 3) 

A user has granted read/write permission of his S3 bucket using ACL. Which of the below mentioned options is a valid ID to grant permission to other AWS accounts (grantee. using ACL? 

A. IAM User ID 

B. S3 Secure ID 

C. Access ID 

D. Canonical user ID 

View Answer

Q6. - (Topic 1) 

You have been asked to propose a multi-region deployment of a web-facing application where a controlled portion of your traffic is being processed by an alternate region. 

Which configuration would achieve that goal? 

A. Route53 record sets with weighted routing policy 

B. Route53 record sets with latency based routing policy 

C. Auto Scaling with scheduled scaling actions set 

D. Elastic Load Balancing with health checks enabled 

View Answer

Q7. - (Topic 1) 

Your company Is moving towards tracking web page users with a small tracking 

Image loaded on each page Currently you are serving this image out of US-East, but are starting to get concerned about the time It takes to load the image for users on the west coast. 

What are the two best ways to speed up serving this image? 

Choose 2 answers 

A. Use Route 53's Latency Based Routing and serve the image out of US-West-2 as well as US-East-1 

B. Serve the image out through CloudFront 

C. Serve the image out of S3 so that it isn't being served oft of your web application tier 

D. Use EBS PIOPs to serve the image faster out of your EC2 instances 

View Answer

Q8. - (Topic 3) 

A sysadmin has created the below mentioned policy on an S3 bucket named cloudacademy. The bucket has both AWS.jpg and index.html objects. What does this policy define? 

"Statement": [{ 

"Sid": "Stmt1388811069831", 

"Effect": "Allow", 

"Principal": { "AWS": "*"}, 

"Action": [ "s3:GetObjectAcl", "s3:ListBucket", "s3:GetObject"], 

"Resource": [ "arn:aws:s3:::cloudacademy/*.jpg] 

}] 

A. It will make all the objects as well as the bucket public 

B. It will throw an error for the wrong action and does not allow to save the policy 

C. It will make the AWS.jpg object as public 

D. It will make the AWS.jpg as well as the cloudacademy bucket as public 

View Answer

Q9. - (Topic 2) 

A user wants to disable connection draining on an existing ELB. Which of the below mentioned statements helps the user disable connection draining on the ELB? 

A. The user can only disable connection draining from CLI 

B. It is not possible to disable the connection draining feature once enabled 

C. The user can disable the connection draining feature from EC2 -> ELB console or from CLI 

D. The user needs to stop all instances before disabling connection draining 

View Answer

Q10. - (Topic 3) 

A user has configured ELB with Auto Scaling. The user suspended the Auto Scaling terminate process only for a while. What will happen to the availability zone rebalancing process (AZRebalance. during this period? 

A. Auto Scaling will not launch or terminate any instances 

B. Auto Scaling will allow the instances to grow more than the maximum size 

C. Auto Scaling will keep launching instances till the maximum instance size 

D. It is not possible to suspend the terminate process while keeping the launch active 

View Answer