AWS CLOUD CERTIFICATION Exam 2024/2025 Real Exam
Questions And 100% Correct Answers .
What's included in a server - ANSWER..> -compute (CPU) - thinking
-memory (RAM) (temporary storage) = memories
-storage- data/files
-database (store data in structured way)
-network (routers, switch, DNS)
Router - ANSWER..> a networking device that forwards data packets
between computer networks (like post office)
-the Ethernet switch creates networks and the router allows for
connections between networks
Switch - ANSWER..> takes a packet and send it to the correct
server/client on your network
Private Cloud - ANSWER..> serves only one customer or organization
and can be located on the customer's premises or off the customer's
premises (NOT IN COURSE)
Public Cloud - ANSWER..> cloud resources owned and operated by a
3rd party cloud service provider delivered over the internet
Hybrid Cloud - ANSWER..> A combination of public and private clouds
-keep some servers on premises and extend some to the cloud
-control over sensistive assets in private infra
-flexibility and cost effectiveness of public cloud
5 Characteristics of cloud computing - ANSWER..> 1. on-demand self
service of compute power, db storage, apps and other resources
2. broad network access- accessed by diverse client platforms
,3. multi-tenancy and resource pooling
4. rapid elasticity and scalability
5. measured service- users pay correctly for what they use
6 advantages to cloud computing - ANSWER..> 1) Trade capital expense
for operational expense (don't own hardware)
- reduced Total cost of ownership and OPEX
2) Benefit from massive economies of scale (price goes down as AWS
becomes more efficient)
3) Stop guessing about capacity
4) Increase speed and agility
5) Stop spending money running and maintaining data centers
6) Go global in minutes
Infrastructure as a Service (IaaS) ex. EC2 - ANSWER..> -provide building
blocks for cloud IT
-provides networking, computers, data storage space
-highest level of flexibility
-easiest parallel with traditional on premise IT (migration)
you manage app, data, runtime, middleware, os
ex. ec2, azure, gcp
Platform as a Service (PaaS) - ANSWER..> -removes the need for your
organization to manage the underlying infrastructure
-focus on deployment and management of apps
you manage app and data
ex. EB
Software as a Service (SaaS) - ANSWER..> -completed product that is
run and managed by service provider
-more automated and inc. in rapid deployment
they manage app, data, runtime, middleware, os, virtualization, servers,
storage, networking
,ex. rekognition, gmail, dropbox
AWS pricing fundamentals (3) - ANSWER..> 1. compute - pay for
compute time ex lambda
2. storage - pay for data stored in the cloud ex s3
3. data transferred OUT of the cloud (in is free)
AWS Regions - ANSWER..> a cluster of data centers. most aws services
are region scoped.
- each region has many availability zones
How to choose AWS region - ANSWER..> - Compliance (legal
requirements)
- Proximity (closer to customer)
- Services availability (new services aren't available in every region)
- Price (pricing differs across regions)
Availability zones - ANSWER..> - Distinct locations from within an AWS
region that are engineered to be isolated from failures.
-connected with high bandwidth, ultra-low latency networking
- discrete data center with redundant power, networking and
connectivity, isolated from disasters
Points of Presence (Edge locations) - ANSWER..> -amazon has 216
points of presence (205 edge locations and 11 regional caches) in 84
cities across 42 countries
-content is delivered to end users with lower latency
-cannot deploy an application there
AWS global services - ANSWER..> -IAM
-route53 (DNS service- maps between names and #'s)
-CloudFront (content del. network)
-Web Application Firewall (WAF)
, AWS regional services - ANSWER..> -EC2 (IaaS)
-elastic beanstalk (PaaS)
-lambda (FaaS)
-rekognition (SaaS)
AWS Responsibility - ANSWER..> Security OF the cloud
Customer Responsibility - ANSWER..> Security IN the cloud
-customer data, IAM, OS, network and firewall config., client-side data
encryption
Identity and Access Management (IAM) - ANSWER..> -global service
- never use or share root account
-create users and assign them to groups (groups can only contain users,
not other groups)
IAM Permissions - ANSWER..> Users or Groups can be assigned JSON
documents called policies
-there are 300+ policies already made in AWS, but you can also create
your own
-apply principle of least privilege
-any user added to a group will inherit the permissions defined through
policies
-best practice for each user to be in a group (or multiple)
IAM Password Policy - ANSWER..> -set requirements for user passwords
- set password expiration, prevent reuse
-MFA:
1. virtual MFA device (google authenticator)
2. universal 2nd factor security key (physical device)
3. hardware key fob (3rd party)
4. hardware key fob MFA device for AWS GovCloud (3rd party)
Questions And 100% Correct Answers .
What's included in a server - ANSWER..> -compute (CPU) - thinking
-memory (RAM) (temporary storage) = memories
-storage- data/files
-database (store data in structured way)
-network (routers, switch, DNS)
Router - ANSWER..> a networking device that forwards data packets
between computer networks (like post office)
-the Ethernet switch creates networks and the router allows for
connections between networks
Switch - ANSWER..> takes a packet and send it to the correct
server/client on your network
Private Cloud - ANSWER..> serves only one customer or organization
and can be located on the customer's premises or off the customer's
premises (NOT IN COURSE)
Public Cloud - ANSWER..> cloud resources owned and operated by a
3rd party cloud service provider delivered over the internet
Hybrid Cloud - ANSWER..> A combination of public and private clouds
-keep some servers on premises and extend some to the cloud
-control over sensistive assets in private infra
-flexibility and cost effectiveness of public cloud
5 Characteristics of cloud computing - ANSWER..> 1. on-demand self
service of compute power, db storage, apps and other resources
2. broad network access- accessed by diverse client platforms
,3. multi-tenancy and resource pooling
4. rapid elasticity and scalability
5. measured service- users pay correctly for what they use
6 advantages to cloud computing - ANSWER..> 1) Trade capital expense
for operational expense (don't own hardware)
- reduced Total cost of ownership and OPEX
2) Benefit from massive economies of scale (price goes down as AWS
becomes more efficient)
3) Stop guessing about capacity
4) Increase speed and agility
5) Stop spending money running and maintaining data centers
6) Go global in minutes
Infrastructure as a Service (IaaS) ex. EC2 - ANSWER..> -provide building
blocks for cloud IT
-provides networking, computers, data storage space
-highest level of flexibility
-easiest parallel with traditional on premise IT (migration)
you manage app, data, runtime, middleware, os
ex. ec2, azure, gcp
Platform as a Service (PaaS) - ANSWER..> -removes the need for your
organization to manage the underlying infrastructure
-focus on deployment and management of apps
you manage app and data
ex. EB
Software as a Service (SaaS) - ANSWER..> -completed product that is
run and managed by service provider
-more automated and inc. in rapid deployment
they manage app, data, runtime, middleware, os, virtualization, servers,
storage, networking
,ex. rekognition, gmail, dropbox
AWS pricing fundamentals (3) - ANSWER..> 1. compute - pay for
compute time ex lambda
2. storage - pay for data stored in the cloud ex s3
3. data transferred OUT of the cloud (in is free)
AWS Regions - ANSWER..> a cluster of data centers. most aws services
are region scoped.
- each region has many availability zones
How to choose AWS region - ANSWER..> - Compliance (legal
requirements)
- Proximity (closer to customer)
- Services availability (new services aren't available in every region)
- Price (pricing differs across regions)
Availability zones - ANSWER..> - Distinct locations from within an AWS
region that are engineered to be isolated from failures.
-connected with high bandwidth, ultra-low latency networking
- discrete data center with redundant power, networking and
connectivity, isolated from disasters
Points of Presence (Edge locations) - ANSWER..> -amazon has 216
points of presence (205 edge locations and 11 regional caches) in 84
cities across 42 countries
-content is delivered to end users with lower latency
-cannot deploy an application there
AWS global services - ANSWER..> -IAM
-route53 (DNS service- maps between names and #'s)
-CloudFront (content del. network)
-Web Application Firewall (WAF)
, AWS regional services - ANSWER..> -EC2 (IaaS)
-elastic beanstalk (PaaS)
-lambda (FaaS)
-rekognition (SaaS)
AWS Responsibility - ANSWER..> Security OF the cloud
Customer Responsibility - ANSWER..> Security IN the cloud
-customer data, IAM, OS, network and firewall config., client-side data
encryption
Identity and Access Management (IAM) - ANSWER..> -global service
- never use or share root account
-create users and assign them to groups (groups can only contain users,
not other groups)
IAM Permissions - ANSWER..> Users or Groups can be assigned JSON
documents called policies
-there are 300+ policies already made in AWS, but you can also create
your own
-apply principle of least privilege
-any user added to a group will inherit the permissions defined through
policies
-best practice for each user to be in a group (or multiple)
IAM Password Policy - ANSWER..> -set requirements for user passwords
- set password expiration, prevent reuse
-MFA:
1. virtual MFA device (google authenticator)
2. universal 2nd factor security key (physical device)
3. hardware key fob (3rd party)
4. hardware key fob MFA device for AWS GovCloud (3rd party)
