Exam (elaborations)
AWS Cloud Practitioner Certification Exam Questions and Answers
- Course
- Institution
AWS Cloud Practitioner Certification Exam Questions and Answers
[Show more]
Content preview
AWS Cloud Practitioner CertificationCloud benefits over on-premises - Answer-1. Trade capital expense for variable expense
2. Massive economies of scale
3. Stop guessing capacity
4. Increase speed and agility
5. Stop spending money on running and maintaining data centers
6. Go global in minutes
Basic benefits of the cloud - Answer-1. Scalability - ability to resize your resources as necessary.
2. Agility - increasing speed (via global reach), ease of experimentation (via access to new resources)
3. Innovation - experiment quickly
4. Efficiencies of Scale - deploy system in multiple regions around the world providing lower latency, and
a better experience for your customers at a minimal cost.
5. Reliability - ability to recover from infrastructure service failures
AWS Shared Responsibility Model - Answer-1. User Data
2. Applications
3. Guest Operating System
------------------------------
,4. Hypervisor (virtual machine monitor)
5. Network
6. Physical
AWS Cloud - Answer-Access to servers, database, storage, higher-level application components in
seconds. Treat them as temporary and disposable resources, free from the constraints of fixed and finite
IT infrastructure.
Reduce risks, auto scale, ensure reliable coverage even in the face of a natural disaster, and secure data.
Security Compliance - Responsibility of Customer - Answer-Customers are responsible for configuring in
secure and controlled way
1. Must review info/resources available to meet compliance requirements
2. Designs/Implements controls owned by outside parties
3. Verifies all control objectives are met
Security Compliance - Responsibility of AWS - Answer-AWS's approach to compliance: works with 3rd
party auditors/agents to provide customers compliant security.
1. Risk management = reevaluate 2x/year (at least) to identify the risk and address them
2. Control environment = internal and external assessments
3. Information security = establish framework and policies, formal progress to protect confidential data
Security Best Practices - Answer-a. Test often, patch quickly, and respond to incidents at a lightning
speed
b. Data Security: resilient infrastructure, highly secure, strong safeguards
c. Continual Improvement: constant evolving on IAM, logging, DDOS protection
d. Advanced Security Services: address real-time emerging risk, ops management
, e. Network Security: built-in firewalls, encryption in transit, private/dedicated connection, DDOS
mitigation
f. Inventory and Configuration Tools: deployment, template management, definitive tools
g. Data Encryption: encryption capabilities, key management options, hardware based key
h. Access Control: IAM, multi-factor authentication, integration and federation w/corporate discretion,
Amazon Cognito, SSO
i. Monitoring & Logging: visibility into API calls, log aggregation, alert notification
IAM - Answer-Identity and Access Management
Groups - Answer-collection of users, users can be in multiple groups
Users - Answer-permanent named operator. Credentialed or temporary. Human or machine.
Automated method.
Role - Answer-authentication method, operator, human or machine. Credentialed or temporary. Role ≠
permissions.
Policy Documents - Answer-Permissions. Json. Attached to either a role, group, or user. Looked at from
a single view.
i. Deny Statements: Override any Allow statements
ii. Implicit allow if there is not a deny statement
iii. Every API action (successful or denied) is recorded in Cloudtrail
If there are no policy documents attached to IAM, nothing happens but it gets tracked in CloudTrail
Amazon Inspector - Answer-Automated security assessment service. Eliminates security risks - runs
security benchmarks against specific EC2 instances.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Zanaya. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $17.49. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
79373 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now