Amazon Exam Practice Questions - Page 7

Amazon Practice Questions, Discussions & Exam Topics by our Authors

An Amazon EC2 instance previously used for development is inaccessible and no longer appears in the AWS Management Console.Which AWS service should be ...

To determine what action made an Amazon EC2 instance inaccessible and why it no longer appears in the AWS Management Console, we need to identify the service that tracks activities and changes in AWS resources. Let’s evaluate each option in terms of their functionality, effort, time, and relevance to the scenario. A) Amazon CloudWatch Logs: CloudWatch Logs is primarily used for monitoring and storing logs from applications, systems, and AWS resources. While CloudWatch can be helpful for troubleshooting performance issues or tracking application-level logs, it doesn't provide visibility into changes made to AWS resources like EC2 instances. It is not the best service for identifying which action specifically made the EC2 instance inaccessible. Therefore, this option is not ideal for this scenario. B) AWS Security Hub: AWS Security Hub provides a centralized view of security alerts and compliance status across AWS accounts. While it helps monitor and manage security findings, it doesn't track every individual action taken on AWS resources. It would not provide a detailed record of what specifically caused an EC2 instance to become inaccessible or why it no longer appears in the console. This service is more focused on security assessments and is not the best fit for tracking resource changes. C) Amazon Inspector: Amazon Inspector is a security assessment service that helps identify vulnerabilities in AWS resources and applications. It conducts automated securi...

Author: Sofia · Last updated May 15, 2026

A company's application developers need to quickly provision and manage AWS services by using scripts.Which AWS offering ...

To quickly provision and manage AWS services through scripts, the most suitable AWS offering should allow for automation, ease of management, and integration into existing developer workflows. Let's analyze each option based on the requirements: A) AWS CLI (Command Line Interface) - Use case: The AWS CLI is a command-line tool that allows developers to interact with AWS services by running commands in scripts. It provides direct access to almost all AWS services and can be used to automate tasks, such as provisioning, configuring, and managing resources. - Effort: Developers can quickly write scripts to automate tasks with minimal effort, as they are familiar with scripting and the command-line interface. - Time: The AWS CLI allows for fast execution of commands, enabling quick provisioning and management of services. - Cost: The AWS CLI is free to use. The cost depends on the AWS services being provisioned and used. - Why selected: This option is ideal for developers who need a quick and efficient way to manage AWS services using scripts. It supports a wide range of AWS services and allows for automation, which fits the need for rapid provisioning and management. - Rejected reasons for other options: Other options do not directly align with the need for a script-based solution for provisioning and management. B) AWS CodeBuild - Use case: AWS CodeBuild is a fully managed build service that compiles source code, runs tests, and produces deployable artifacts. While it is excellent for continuous integration (CI) and continuous delivery (CD) pipelines, it does not directly focus on the automation of provisioning and management of AWS services via scripts. - Effort: Developers would need to set up build projects and possibly create complex CI/CD pipelines, which adds more effort than using simple scripts. - Time: CodeBuild can be useful for automating build and deployment processes, but it is not directly aimed at provisioning and managing AWS services, which could make it less efficient for this scenario. - Cost: CodeBuild incurs charges based on the build time, which may add cost compared to using AWS CLI directly. - Why rejected: While CodeBuild is great for automation related to build and deployment, it does not directly fulfill the need to provision and manag...

Author: Emma · Last updated May 15, 2026

A company wants to migrate unstructured data to AWS. The data needs to be securely moved with inflight encryption and end-to-end data ...

To migrate unstructured data securely with inflight encryption and end-to-end data validation, we need an AWS service that facilitates efficient, secure data transfer and validation during the migration process. Let's analyze each option based on the given requirements. A) AWS Application Migration Service - Use case: AWS Application Migration Service is designed primarily for migrating entire applications, including their infrastructure and data, from on-premises environments to AWS. It automates much of the process for rehosting applications. - Effort: The service is not specifically tailored for migrating unstructured data or ensuring encryption and data validation during migration. - Time: While it can assist in the migration of applications, it is not focused on migrating unstructured data with encryption or validation. - Cost: It incurs costs depending on the amount of data and the complexity of the applications being migrated. - Why rejected: This service is not suitable for migrating unstructured data and does not focus on secure data transfer with inflight encryption and validation. It's geared more toward application migration rather than raw data migration. B) Amazon Elastic File System (Amazon EFS) - Use case: Amazon EFS is a scalable file storage service that provides file-level storage for applications. It is useful for hosting and storing data, but it is not a tool for migrating data from on-premises systems to AWS. - Effort: EFS can be used to store unstructured data, but it doesn’t provide an automated solution for securely moving data with encryption and validation. - Time: Setting up EFS is relatively quick, but it does not provide built-in functionality for securely migrating unstructured data or ensuring data validation during transfer. - Cost: Amazon EFS incurs storage charges based on usage, and you would also need additional services for secure migration and data validation, which increases costs. - Why rejected: EFS is not a migration service and does not offer encryption and validation features for data transfer. It is more for storing and sharing data, not moving it securely. C) AWS DataSync - Use...

Author: Zara1234 · Last updated May 15, 2026

A development team wants to deploy multiple test environments for an application in a fast, repeatable ...

The development team needs to deploy multiple test environments in a fast, repeatable manner. This suggests the need for an automated and consistent approach to setting up environments, ideally through infrastructure-as-code or container orchestration. Let’s analyze each option based on the requirements: A) Amazon EC2 - Use case: Amazon EC2 provides scalable compute resources that can be used to run virtual machines. While EC2 can host test environments, creating and configuring multiple test environments manually using EC2 can be time-consuming and error-prone, especially when needing repeatable setups. - Effort: Setting up EC2 instances manually for each test environment would require considerable effort, as the team would need to configure each environment individually, which is not very repeatable or fast. - Time: Provisioning and configuring EC2 instances for test environments could take significant time if done repeatedly. - Cost: Costs can accumulate based on the number of instances created and the amount of time they run. - Why rejected: EC2 can be used for test environments but does not provide a fast and repeatable mechanism for deployment. It lacks the automation and scalability features needed to fulfill the requirements effectively. B) AWS CloudFormation - Use case: AWS CloudFormation allows developers to define infrastructure as code (IaC) and automatically deploy and manage resources in a repeatable, consistent, and automated way. By defining templates, multiple test environments can be provisioned and managed efficiently. - Effort: CloudFormation requires an initial effort to write templates (JSON or YAML) that define the resources needed for test environments. Once the templates are ready, deploying multiple test environments is quick and repeatable. - Time: CloudFormation automates the deployment of environments, making the process fast and repeatable, which saves significant time in the long run. - Cost: CloudFormation itself does not have additional charges. The cost depends on the resources created during the deployment, but it's cost-efficient in terms of automation and repeatability. - Why selected: CloudFormation is designed to automate the creation and management of AWS resources, making it the best option for quickly and repeatably deploying multiple test environments. It ensures that the environments are consistent a...

Author: Stella · Last updated May 15, 2026

A company wants to quickly implement a continuous integration/continuous delivery (CI/CD) pipeline.W...

The company wants to quickly implement a continuous integration/continuous delivery (CI/CD) pipeline, which involves automating the process of building, testing, and deploying code. Let's evaluate the options based on these requirements. A) AWS Config - Use case: AWS Config is a service designed for monitoring and auditing resource configurations in AWS. It tracks changes to AWS resources and can help with compliance and governance. However, it is not designed for CI/CD pipelines. - Effort: Setting up AWS Config requires configuring resource monitoring, but it does not support the automation of software builds, testing, or deployment, which is central to CI/CD. - Time: AWS Config does not help with the CI/CD process, so it would not save time in implementing a pipeline. - Cost: AWS Config charges based on the number of configuration items recorded and the number of active resources, but it’s not relevant for CI/CD. - Why rejected: AWS Config is focused on resource tracking and compliance, not CI/CD. It does not provide any CI/CD-specific features. B) Amazon Cognito - Use case: Amazon Cognito is a service used for user authentication and authorization, providing user identity management for applications. It is not related to CI/CD pipelines. - Effort: While Cognito is useful for integrating authentication into applications, it does not help with automating build, test, or deployment processes. - Time: Cognito does not address the CI/CD requirements and would not contribute to speeding up the pipeline. - Cost: Costs are associated with user management and authentication, but Cognito is irrelevant for CI/CD purposes. - Why rejected: Amazon Cognito is for user authentication, not for CI/CD. It does not offer any features for automating code deployment. C) AWS DataSync - Use case: AWS DataSync is a service designed to automate the transfer of data between on-premises storage and AWS. It is not designed for CI/CD...

Author: Olivia Johnson · Last updated May 15, 2026

Which AWS Cloud deployment model uses AWS Outposts as part of the application deployment infrastruct...

When considering the AWS Cloud deployment model that uses AWS Outposts as part of the application deployment infrastructure, we need to understand the purpose of AWS Outposts and how it integrates with different deployment models. Understanding AWS Outposts: - AWS Outposts is a fully managed service that extends AWS infrastructure, services, APIs, and tools to virtually any on-premises facility. It provides a hybrid solution that enables customers to run AWS services locally while maintaining a seamless connection to the AWS Cloud for centralized management. - Outposts is designed to help businesses that need to run certain applications in their own data centers or on-premises while still benefiting from the flexibility and scalability of the AWS Cloud. Option A: On-premises - Rejected: The On-premises deployment model refers to using local hardware and software within the physical data center owned and managed by the company. While Outposts brings AWS services to an on-premises location, it does not fit under a pure on-premises model because it still relies on AWS infrastructure. Outposts integrates AWS cloud services locally, making it a hybrid solution rather than a fully on-premises one. Option B: Serverless - Rejected: The Serverless model involves running applications without provisioning or managing servers, relying on services like AWS Lambda and AWS Fargate. While Outposts can support serverless workloads by extending the AWS Cloud into on-premises environments, it is not specifically a serverless solution. Outposts is more focused o...

Author: Sam · Last updated May 15, 2026

Which of the following is a fully managed graph database service on AWS?

To identify the fully managed graph database service on AWS, let's analyze each option based on their functionality, use cases, and relevance to graph databases specifically. Option A: Amazon Aurora - Purpose: Amazon Aurora is a fully managed relational database service that is compatible with MySQL and PostgreSQL. It is designed for high performance and availability with relational data. - Relevance: While Aurora is fully managed and highly available, it is not a graph database. It is used primarily for relational workloads, which involve structured data but do not support graph-specific queries or data models. - Effort, Time, Cost: Aurora is excellent for relational databases, but it is not the best choice for graph-based queries or relationships, which require a different data model and query language (like Gremlin or SPARQL). - Ideal Scenario: Suitable for applications requiring relational database capabilities, not for graph-based data modeling or queries. Option B: Amazon FSx - Purpose: Amazon FSx is a fully managed file storage service that supports Windows File Server and Lustre file systems. It provides scalable and high-performance file storage for a variety of workloads. - Relevance: FSx is focused on file storage and does not offer graph database capabilities. It is not related to graph databases and cannot be used for graph-based data modeling or queries. - Effort, Time, Cost: FSx is ideal for use cases that require file storage, but it is not suitable for graph-related use cases. - Ideal Scenario: Used for workloads requiring high-performance file systems, such as media processing or shared file storage, not for graph databases. Option C: Amazon DynamoDB - Purpose: Amazon DynamoDB is a fully managed NoSQL database service that supports key-value and document data models. ...

Author: CrystalWolfX · Last updated May 15, 2026

Which AWS service could an administrator use to provide desktop environments for several employees?

To provide desktop environments for several employees, the AWS service must allow administrators to create and manage virtual desktops that users can securely access. Let's evaluate each option in detail: Option A: AWS Organizations - Service Description: AWS Organizations is a service that allows you to centrally manage and govern multiple AWS accounts. It is primarily used for managing account hierarchies, policies, and consolidated billing across multiple accounts. - Performance: AWS Organizations is focused on account management, not on providing desktop environments. - Use Case: Ideal for managing AWS accounts, consolidating billing, and enforcing organization-wide policies, but not for providing desktop environments. - Rejection Reason: This service is not intended for virtual desktop provisioning, so it cannot be used to create desktop environments for employees. Option B: AWS Fargate - Service Description: AWS Fargate is a serverless compute engine for containers, allowing you to run containerized applications without managing the underlying EC2 instances. It simplifies the process of running containers but does not offer virtual desktop environments. - Performance: While Fargate is great for running microservices and containerized applications, it is not designed to provide desktop environments for users. - Use Case: Best for running containerized applications and microservices in a serverless manner, but not for providing desktop environments. - Rejection Reason: AWS Fargate is focused on containerized workloads and does not provide virtual desktop capabilities. Option C: AWS WAF - Service Description: AWS WAF (Web Application Firewall) is a security service used to protect web applications from common threats like ...

Author: Samuel · Last updated May 15, 2026

Which AWS service or feature gives users the ability to capture information about network traffic in...

To capture information about network traffic in a Virtual Private Cloud (VPC), the service or feature must be able to log traffic details like source, destination, and protocol usage. Let's evaluate each option based on these requirements. Option A: VPC Flow Logs - Service Description: VPC Flow Logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC. It can log the source and destination IP addresses, ports, protocol, traffic volume, and other relevant details about network traffic. - Performance: This service provides real-time logs of network traffic and allows you to monitor traffic patterns, diagnose issues, and troubleshoot network configurations. - Use Case: VPC Flow Logs are ideal for capturing network traffic details in a VPC and can be integrated with Amazon CloudWatch or stored in Amazon S3 for further analysis. - Cost: VPC Flow Logs incurs costs based on the volume of traffic captured and the storage used (if logs are stored in S3). - Selection Reason: This is the direct service for capturing network traffic in a VPC and meets the requirements outlined in the question. Option B: Amazon Inspector - Service Description: Amazon Inspector is a security assessment service that helps identify vulnerabilities or deviations from best practices in your applications and network configurations. It focuses on security assessments and not on capturing network traffic. - Performance: Inspector evaluates the security posture of your resources, but it does not capture or log network traffic. - Use Case: Best for conducting security assessments and vulnerability management. - Re...

Author: Madison · Last updated May 15, 2026

Which type of AWS storage is ephemeral and is deleted when an Amazon EC2 instance is stopped or term...

The question specifically asks for the type of AWS storage that is ephemeral and deleted when an Amazon EC2 instance is stopped or terminated. Let's analyze each option based on this requirement. A) Amazon Elastic Block Store (Amazon EBS) - Use case: Amazon EBS provides persistent block-level storage that can be attached to EC2 instances. Data stored on EBS volumes is persistent and remains intact even if an EC2 instance is stopped (unless the volume is explicitly deleted). - Effort: EBS is designed for persistent storage and requires extra effort to manage the lifecycle of the volumes, including manual deletion if needed. - Time: The data on EBS volumes persists beyond the lifecycle of the EC2 instance, so it doesn't meet the ephemeral storage requirement. - Cost: EBS incurs costs for storage, regardless of the state of the EC2 instance (running, stopped, or terminated). - Why rejected: Amazon EBS is persistent storage, not ephemeral. The data remains even if the EC2 instance is stopped or terminated, which makes it unsuitable for this requirement. B) Amazon EC2 instance store - Use case: Amazon EC2 instance store provides ephemeral storage that is physically attached to the host server running the EC2 instance. Data stored in the instance store is lost when the EC2 instance is stopped or terminated. - Effort: Instance store provides temporary storage that is automatically deleted when the instance is stopped or terminated, making it easy to use for temporary data storage that doesn’t need to persist beyond the lifetime of the EC2 instance. - Time: The instance store is ideal for temporary data, such as caches, buffers, or other ephemeral storage that does not require persistence. - Cost: EC2 instance store is typically included in the cost of the instance, but it may vary based on the instance type. - Why selected: EC2 instance store is the ephemeral storage that meets the requirement of being deleted when the EC2 instance is stopped or terminated. It’s a perfect fit for temporary data ...

Author: BlazingPhoenix22 · Last updated May 15, 2026

A company wants to provide access to Windows file shares in AWS from its on-premises workloads. The company does not want to provision any additional infrastructure or appl...

To determine the best AWS service for providing access to Windows file shares in AWS from on-premises workloads without provisioning any additional infrastructure or applications in the data center, we need to evaluate each option in terms of its capabilities, infrastructure requirements, cost, and alignment with the company's goals. Option A: Amazon FSx File Gateway Amazon FSx File Gateway provides access to Amazon FSx for Windows File Server from on-premises environments. It enables on-premises workloads to seamlessly connect to Amazon FSx file shares via standard SMB protocol, allowing access to Windows file shares in AWS. This solution doesn't require provisioning additional infrastructure or applications in the data center, as the gateway is a managed service that can be easily configured. It allows for transparent access to Windows file shares hosted in AWS. - Use case: Best for providing access to Windows file shares in AWS from on-premises workloads without needing to manage additional infrastructure or applications in the data center. It meets the company’s requirement effectively. Option B: AWS DataSync AWS DataSync is a data transfer service designed for moving large amounts of data between on-premises storage and AWS storage services. While DataSync is useful for transferring data to and from AWS, it does not offer real-time access to file shares from on-premises environments. It is typically used for one-time or scheduled data transfers rather than continuous file share access. - Use case: Best for moving data to AWS but not for continuous access to Windows file shares. It requires additional configur...

Author: Ming · Last updated May 15, 2026

A company wants durable storage for static content and infinitely scalable data storage infrastructure at the lowest...

To determine the most suitable AWS service for a company seeking durable storage for static content and infinitely scalable data storage infrastructure at the lowest cost, we need to consider various factors such as service features, cost, scalability, effort, and time involved in maintaining and scaling the infrastructure. A) Amazon Elastic Block Store (Amazon EBS) - Features: EBS is block storage designed for use with Amazon EC2 instances. It provides persistent storage with fast performance but is not designed for static content storage. - Scalability: EBS offers scalability but requires manual management of volumes. It is not infinitely scalable without manual intervention. - Cost: EBS can become expensive when handling large amounts of data due to its pricing model, which charges per provisioned capacity and I/O operations. - Effort & Time: Managing block storage on a larger scale requires careful planning, which increases operational overhead. - Suitability for Static Content: EBS is not ideal for static content storage like images, videos, or backups. It's better suited for use cases requiring high-performance block-level storage. Rejection: EBS is not optimal for storing static content in a cost-efficient, scalable manner. B) Amazon S3 (Simple Storage Service) - Features: S3 is an object storage service ideal for storing static content like images, videos, and backups. It offers high durability (99.999999999% durability), scalability, and performance. - Scalability: S3 is infinitely scalable, allowing you to store and retrieve any amount of data without worrying about storage limits. - Cost: S3 is cost-effective, with a pay-as-you-go model, making it cheaper than EBS for storing large amounts of data. It also offers storage classes like S3 Standard, S3 Intelligent-Tiering, and S3 Glacier, which allow optimization based on access frequency. - Effort & Time: S3 requires minimal management and can scale automatically without requiring manual intervention. - Suitability for Static Content: S3 is designed specifically for static content and is ideal for this use case due to its cost, scalability, and durability. Selection Reasoning: Given the company's need for low-cost, scalable, and durable storage for static content, S3 is the best choice. C)...

Author: Zara · Last updated May 15, 2026

An ecommerce company wants to use Amazon EC2 Auto Scaling to add and remove EC2 instances based on CPU utilization.Which AWS service or feature can ...

To address the requirement of using Amazon EC2 Auto Scaling to add or remove EC2 instances based on CPU utilization, it's essential to choose a service that can monitor EC2 metrics and trigger scaling actions. Let's analyze the options: Option A) Amazon Simple Queue Service (Amazon SQS): - Use case: Amazon SQS is primarily designed for message queuing, where messages are stored in a queue and can be processed by other services or systems. It doesn't directly interact with EC2 instances or manage auto-scaling based on performance metrics. - Why rejected: SQS does not have the capability to monitor CPU utilization or trigger EC2 Auto Scaling actions. It is not an appropriate choice for this use case. Option B) Amazon Simple Notification Service (Amazon SNS): - Use case: SNS is a messaging service that can send notifications to various endpoints, including email, SMS, or other services, when certain conditions are met. However, SNS itself doesn't have direct integration with EC2 Auto Scaling actions. - Why rejected: While SNS can notify users or other services about certain events, it doesn't directly monitor or scale EC2 instances based on performance metrics like CPU utilization. Thus, it's not suitable for triggering EC2 Auto Scaling a...

Author: Maya · Last updated May 15, 2026

A company wants to transform its workforce by attracting and developing a digitally fluent high-performance workforce. The company wants to attract a diverse and inclusive workforce with appropriate mix of technical and non-tech...

To address the company's goal of transforming its workforce by attracting and developing a digitally fluent, high-performance workforce, including attracting a diverse and inclusive workforce with an appropriate mix of technical and non-technical skills, we must focus on the AWS Cloud Adoption Framework (AWS CAF) perspectives. Let's evaluate each option: A) Business Perspective - Features: The Business perspective in AWS CAF focuses on aligning the cloud strategy with business goals, objectives, and outcomes. It includes the consideration of how cloud technologies can enhance business processes, improve revenue, and reduce costs. - Suitability: While the Business perspective is critical for defining the overall cloud strategy and ensuring alignment with business objectives, it does not directly address workforce transformation or attracting a diverse workforce with the appropriate skill mix. - Rejection Reason: The Business perspective is not directly concerned with building the right workforce, but rather with aligning business outcomes to cloud adoption goals. Thus, it is not the best fit for this scenario. B) People Perspective - Features: The People perspective in AWS CAF focuses on the organization’s ability to develop the right talent, establish skills, and build a workforce capable of supporting cloud adoption. It includes considerations for developing the technical and non-technical skills needed across various roles, fostering diversity, and creating an inclusive culture. - Suitability: This perspective directly addresses the company's goal of transforming its workforce by focusing on attracting and developing digitally fluent talent, supporting the development of both technical and non-technical skills, and fostering a diverse and inclusive workforce. It aligns well with the company's goals. - Rejection ...

Author: Victoria · Last updated May 15, 2026

A company wants to move its on-premises databases to managed cloud database services by using a simplified migration process.Which AWS ...

The company is looking to move its on-premises databases to managed cloud database services with a simplified migration process. Let’s analyze each AWS service or tool and its suitability for this requirement based on effort, time, cost, and other factors. A) AWS Storage Gateway - Features: AWS Storage Gateway is designed for hybrid cloud storage use cases. It facilitates the integration of on-premises environments with cloud storage for backup, archiving, and disaster recovery, but it is not specifically designed for database migrations. - Suitability: While Storage Gateway can help with storage solutions, it does not provide a streamlined or simplified approach to migrating databases. - Rejection Reason: AWS Storage Gateway is not designed for database migrations, especially for the scenario where managed cloud database services are the target. B) AWS Application Migration Service - Features: AWS Application Migration Service is designed for migrating entire applications and workloads from on-premises to AWS, including servers and associated data. It helps in re-hosting applications but is not specifically targeted at database migration. - Suitability: While useful for application migration, it is not tailored to move databases to managed database services like Amazon RDS or Aurora. - Rejection Reason: AWS Application Migration Service focuses on entire application migrations rather than simplifying the migration of databases specifically to managed cloud database services. C) AWS DataSync - Features: AWS DataSync is primarily used for automating and accelerating the transfer of large amounts of data between on-premises storage and AW...

Author: Sophia · Last updated May 15, 2026

A company needs a fully managed file server that natively supports Microsoft workloads and file systems. The file server must also support the SMB protocol....

To meet the company's requirement for a fully managed file server that natively supports Microsoft workloads and file systems, and also supports the SMB protocol, we need to evaluate the AWS services available to determine which one aligns with these specific needs, including compatibility with SMB protocol, Microsoft workloads, file systems, and the requirement for being fully managed. A) Amazon Elastic File System (Amazon EFS) - Features: Amazon EFS is a fully managed file storage service that provides scalable file storage that can be accessed by multiple Amazon EC2 instances. It supports NFS (Network File System) protocols for file access. - Suitability: While EFS is ideal for Linux-based workloads and file sharing using NFS, it does not support SMB protocol natively, nor is it optimized for Microsoft-specific workloads like Active Directory or Windows file systems. - Rejection Reason: Since the company requires SMB protocol support and native integration with Microsoft workloads, EFS is not the right choice. B) Amazon FSx for Lustre - Features: Amazon FSx for Lustre is a fully managed file system designed for high-performance workloads, often used for workloads that require low latency and high throughput, such as high-performance computing (HPC). - Suitability: FSx for Lustre supports high-performance use cases, but it is not designed for general-purpose file sharing or SMB protocol support. It does not offer native support for Microsoft workloads or SMB protocol, which is crucial for the company's needs. - Rejection Reason: FSx for Lustre is specialized for performance-intensive applications and does not meet the requirement of supporting SMB and Microsoft file systems. C) Amazon FSx for Windows File Server - Features: Amazon FSx for Windows File Server is a fully managed file storage...

Author: Benjamin · Last updated May 15, 2026

A company has been storing monthly reports in an Amazon S3 bucket. The company exports the report data into comma-separated values (.csv) files. A developer wants to write a simple query that can read all of these files and generate a summary report.Which AWS ser...

The correct service to meet the requirements with the least amount of operational overhead is: B) Amazon Athena Reasoning: The developer needs to query CSV files stored in an Amazon S3 bucket and generate a summary report. The goal is to achieve this with minimal operational overhead. Amazon Athena is an interactive query service that allows you to run SQL queries directly on data stored in Amazon S3 without the need for provisioning or managing infrastructure. - Amazon Athena: - Low operational overhead: Athena requires no infrastructure management because it's serverless. The developer can simply point Athena at the S3 bucket containing the CSV files and run SQL queries to analyze the data. - Cost-effectiveness: Athena charges based on the amount of data scanned, so if the CSV files are well-structured and partitioned, costs can be kept low. Since Athena uses SQL, the developer can easily write simple queries to summarize data across the files. - Ease of use: The developer can use standard SQL to query the CSV files directly from S3. No need for ETL processing or data movement. - Example scenario: The developer wants to quickly analyze monthly reports stored as CSV files in S3. Athena can read the data, run queries, and generate a summary report with minimal setup. Why Other Options Are Rejected: Option A: Amazon S3 Select - Not the best fit for complex queries: S3 Select allows for reading and filtering subsets of data from an S3 object (such as a CSV or JSON file) without having to download the entire file. However, it is limited to querying a single file at a time, which would not be ideal for querying across multiple CSV files. - Rejected reason: While useful for querying single files, S3 Select doesn't provide...

Author: RadiantJaguar56 · Last updated May 15, 2026

Which AWS feature provides a no-cost platform for AWS users to join community groups, ask questions, find answers, and re...

To answer the question about which AWS feature provides a no-cost platform for users to join community groups, ask questions, find answers, and read community-generated articles about best practices, let’s evaluate the options in terms of their functionality, effort, time, and cost. A) AWS Knowledge Center: The AWS Knowledge Center is a resource where AWS customers can find answers to frequently asked questions and troubleshooting information from AWS support. While useful for solving technical issues, it doesn’t offer a platform for community interaction, questions, or community-generated articles about best practices. This makes it not suitable for the purpose described in the question. B) AWS re:Post: AWS re:Post is a no-cost platform where AWS users can ask questions, find answers, and read community-generated articles and best practices. It is designed as a community-driven platform where individuals can interact, share knowledge, and contribute to solving issues. This aligns perfectly with the need for a platform where users can join community groups, ask questions, and read articles on best practices. This makes AWS re:Post the most appropriate choice for the scenario. C) AWS IQ: AWS IQ connects customers with AWS-certified freelancers and consultants for on-de...

Author: Aditya · Last updated May 15, 2026

A company needs to search for text in documents that are stored in Amazon S3.Which AWS service will ...

To search for text in documents stored in Amazon S3, the most appropriate service needs to be evaluated based on several key factors: cost, time, effort, suitability, and the underlying use case. Option Analysis: A) Amazon Kendra: - Description: Amazon Kendra is an intelligent search service powered by machine learning that allows you to search documents and data stored across multiple sources, including S3. It provides advanced capabilities such as natural language search, relevance tuning, and automated document indexing. - Suitability: This service is specifically designed for full-text search across multiple document repositories (including S3). It is ideal for businesses needing to enable text search and understand context, such as finding specific information in a document repository. - Effort/Time/Cost: Setting up Amazon Kendra can be straightforward but may require some effort for configuration and fine-tuning of the search index. It is cost-effective for businesses needing sophisticated search capabilities but could incur higher costs for larger datasets due to the machine learning-powered features. - Best Use Case: Ideal when there’s a need to search documents (PDFs, Word files, etc.) stored in S3, with advanced search capabilities like natural language understanding, relevancy ranking, and more. B) Amazon Rekognition: - Description: Amazon Rekognition is a computer vision service that provides image and video analysis capabilities, including object detection, facial recognition, and text extraction from images. - Suitability: Rekognition is not designed for text search within traditional text-based documents like PDFs or Word files. It focuses on analyzing visual content, such as detecting text within images or videos, but it does not index or search document-based content in S3 directly. - Best Use Case:...

Author: Noah · Last updated May 15, 2026

Which AWS services make use of global edge locations? (Choose two.)

To determine which AWS services make use of global edge locations, let's first understand what edge locations are. Edge locations are AWS data centers situated around the world that are used to deliver content and provide low-latency access to end users. They play a critical role in services that require content delivery, application acceleration, and low-latency access at the edge. Now, let’s evaluate each option based on the requirement: A) AWS Fargate - Features: AWS Fargate is a serverless compute engine for containers that works with Amazon ECS and EKS. It allows you to run containers without managing the underlying infrastructure. - Suitability: Fargate is a compute service, not directly associated with global edge locations. It is designed to run containers, but it does not rely on edge locations for its operation. - Rejection Reason: Fargate does not interact with edge locations. It operates on compute resources in AWS regions rather than at the global edge level. B) Amazon CloudFront - Features: Amazon CloudFront is a content delivery network (CDN) service that uses global edge locations to cache content closer to users and provide faster delivery. It is explicitly designed to make use of edge locations around the world for caching and serving content. - Suitability: CloudFront directly uses global edge locations to accelerate content delivery (static and dynamic content, streaming media, etc.), making it a perfect fit for this requirement. - Selection Reason: Amazon CloudFront is a service that relies on global edge locations to improve performance by caching and serving content at the edge of AWS’s global network. C) AWS Global Accelerator - Features: AWS Global Accelerator is a service that optimizes the path to your application by routing traffic to the nearest AWS edge location, improving performance and availability. It helps...

Author: Julian · Last updated May 15, 2026

A user needs a relational database but does not have the resources to manage the hardware, resiliency, and replication.Wh...

The user needs a relational database but lacks the resources to manage hardware, resiliency, and replication. This indicates that the user is looking for a managed solution that handles infrastructure concerns such as hardware provisioning, high availability, and failover without the need for manual intervention. Let's analyze each option: A) Run MySQL on Amazon Elastic Container Service (Amazon ECS) - Effort & Time: ECS can manage containers, but the user would still need to handle aspects like database setup, scaling, backups, replication, and high availability. This requires considerable operational effort. - Cost: While ECS itself is cost-effective, additional resources for setting up databases, managing persistent storage, and ensuring high availability will add to the complexity and cost. - Why Rejected: ECS is more suited for stateless applications, and managing a relational database on ECS still requires a significant operational overhead, which goes against the user's request to avoid handling hardware, resiliency, and replication. B) Run MySQL on Amazon EC2 - Effort & Time: Running MySQL on EC2 requires setting up the virtual machines, configuring MySQL, managing database backups, scaling, replication, and ensuring resiliency (e.g., multi-AZ deployments). This approach still requires significant manual intervention, which is contrary to the user's request. - Cost: EC2 costs will depend on the instance types and storage, but additional costs for setup, management, and replication might add complexity and operational overhead. - Why Rejected: EC2 provides flexibility but lacks the managed services that would relieve the user from managing the da...

Author: VioletCheetah55 · Last updated May 15, 2026

A company needs to deploy applications in the AWS Cloud as quickly as possible. The company also needs to minimize the complexity that is related to the management of AWS res...

To address the company's need to deploy applications in the AWS Cloud quickly while minimizing the complexity related to the management of AWS resources, we need to evaluate each option based on speed of deployment, ease of management, and overall complexity. Let's analyze each option: Option A: AWS Config AWS Config is a service that provides visibility into the configuration of AWS resources. It tracks configuration changes, helps assess compliance with regulations, and provides audit trails of resource configurations. While it is a useful service for monitoring and compliance, it is not designed for quick application deployment or minimizing complexity in the deployment and management of resources. Rejection Reason: AWS Config is more about auditing, monitoring, and compliance rather than deploying applications quickly. It does not directly assist in the quick and simplified deployment of applications in the cloud. Option B: AWS Elastic Beanstalk AWS Elastic Beanstalk is a fully managed service designed specifically for deploying and managing applications quickly. It abstracts much of the infrastructure management and automates provisioning, load balancing, scaling, and monitoring of the application environment. With Elastic Beanstalk, the company can focus on deploying the application code rather than managing the underlying resources, making it ideal for fast deployment with minimal complexity. Selected Reason: Elastic Beanstalk is a strong fit because it allows for rapid application deployment with minimal management overhead. It abstracts much of the complexity involved in resource provisioning, monitoring, and scaling, making it the best choice for quickly deploying ...

Author: Suresh · Last updated May 15, 2026

Which mechanism allows developers to access AWS services from application code?

The question asks which mechanism allows developers to access AWS services from application code. This implies that the developers need a way to interact programmatically with AWS services, typically by integrating it within the application code itself. Let's analyze each option: A) AWS Software Development Kit (SDK) - Effort & Time: The AWS SDK is a set of libraries that allow developers to interact with AWS services programmatically in various programming languages such as Java, Python, Ruby, and .NET. It provides high-level abstractions to simplify the interaction with AWS resources directly within the application code. - Cost: The SDK itself is free to use. The cost comes from using AWS services, not the SDK. - Why Selected: The AWS SDK is specifically designed to enable developers to programmatically access AWS services from within their application code. It is the most appropriate option because it is built for this exact use case. B) AWS Management Console - Effort & Time: The AWS Management Console is a web-based interface that allows users to interact with AWS services, but it is primarily designed for manual management and monitoring. It is not used for programmatically accessing AWS services from application code. - Cost: The console is free to use, but any actions performed via the console might lead to costs based on the services used. - Why Rejected: While it allows users to manage AWS resources, it does not provide a way for developers to integrate AWS services directly into their application code. The console is n...

Author: VenomousSerpent42 · Last updated May 15, 2026

A company is migrating to the AWS Cloud. The company wants to understand and identify potential security misconfigurations or unexpected behaviors. The company wants to prioritize any protective controls it might need.Which AW...

The question asks about which AWS Cloud Adoption Framework (AWS CAF) security perspective capability will help the company identify potential security misconfigurations or unexpected behaviors, with a focus on prioritizing protective controls. Let’s analyze each option: A) Identity and Access Management - Effort & Time: This capability focuses on managing user identities, roles, and permissions within the AWS environment to ensure that the right users have the appropriate level of access to resources. It is essential for controlling who can access what, but does not specifically address security misconfigurations or unexpected behaviors in the broader sense. - Cost: There are no direct costs for the IAM service, but improperly configured IAM roles and permissions could lead to costly security vulnerabilities. - Why Rejected: While IAM is crucial for securing access to resources, it is not specifically designed to identify potential security misconfigurations or behaviors in the infrastructure itself. IAM’s focus is on access control rather than a broader security posture. B) Threat Detection - Effort & Time: This capability focuses on monitoring and identifying threats, vulnerabilities, and unusual behaviors within the AWS environment. It includes tools such as Amazon GuardDuty, AWS Security Hub, and Amazon Macie, which help detect security misconfigurations, vulnerabilities, or unexpected behaviors like suspicious network traffic, compromised credentials, and policy violations. - Cost: While tools like GuardDuty and Security Hub are relatively low-cost for monitoring and threat detection, the cost depends on usage and the volume of data being analyzed. - Why Selected: This capability directly addresses the company's need to identify security misconfigurations or unexpected behaviors. It helps prioritize the protective controls necessary to address potential risks by activel...

Author: Leo · Last updated May 15, 2026

A company wants to establish a private network connection between AWS and its corporate network.Which AWS ...

The question asks about establishing a private network connection between AWS and its corporate network. This requires a service that facilitates secure, private connectivity between an on-premises network and AWS infrastructure. Let's analyze each option: A) Amazon Connect - Effort & Time: Amazon Connect is a cloud-based contact center service that helps businesses set up and manage customer support services. It does not provide networking capabilities and does not facilitate private network connections. - Cost: Costs are related to the usage of Amazon Connect for customer service operations but have no relevance to establishing private networking. - Why Rejected: This service is focused on customer support and not networking. It cannot fulfill the requirement of establishing a private network connection between AWS and a corporate network. B) Amazon Route 53 - Effort & Time: Amazon Route 53 is a highly available and scalable Domain Name System (DNS) web service. It is used to route end-user requests to the appropriate resources by translating domain names to IP addresses. While useful for DNS management, it does not establish private network connections. - Cost: Route 53 charges for DNS queries and health checks but doesn’t directly address private network connectivity. - Why Rejected: Although useful for routing traffic, Route 53 does not provide the private network connection needed between AWS and a corporate network. C) AWS Direct Connect - Effort & Time: AWS Direct Connect provides a dedicated network connection from your on-premises network to AWS. It creates a private, low-latency, a...

Author: Ahmed · Last updated May 15, 2026

Which AWS services or features give users the ability to create a network connection between two VPC...

To answer the question about creating a network connection between two VPCs, let's analyze the options provided based on their functionality, use cases, and the ability to link VPCs: Option A) VPC endpoints - Use case: VPC endpoints allow private connections between a VPC and supported AWS services without needing an internet gateway, NAT device, VPN connection, or AWS Direct Connect. - Reason for rejection: VPC endpoints enable communication with AWS services (like S3 or DynamoDB), not between VPCs. They are not designed for connecting two VPCs directly. Option B) Amazon Route 53 - Use case: Amazon Route 53 is a scalable Domain Name System (DNS) web service that can route traffic to various AWS resources, including EC2 instances, load balancers, and S3 buckets. - Reason for rejection: While Route 53 can route traffic, it does not create network connections between VPCs. It's a DNS service, not a networking solution for connecting VPCs. Option C) VPC peering - Use case: VPC peering allows two VPCs to communicate with each other privately as if they were within the same network. It establishes a network connection between VPCs in the same or different regions, enabling resource sharing between them. - Reason for selection: This is a direct way to connect two VPCs. VPC peering allows users to route traffic between VPCs, and it's commonly used for low-latency, high-throughput connections between VPCs. It is simple to set up but can become ...

Author: Mia · Last updated May 15, 2026

Which AWS service converts text to lifelike voices?

The question specifically asks for an AWS service that converts text to lifelike voices. Let's analyze the options based on their capabilities. A) Amazon Transcribe - Relevance: Amazon Transcribe is a service that automatically converts speech to text, not the other way around. It is primarily used for transcription purposes, such as transcribing audio recordings or real-time speech into text. - Reason for Rejection: This service does not meet the requirement of converting text to lifelike voices, as it focuses on speech-to-text conversion. B) Amazon Rekognition - Relevance: Amazon Rekognition is a computer vision service that allows you to analyze images and videos for objects, scenes, text, and facial recognition. It is not related to converting text to speech or lifelike voices. - Reason for Rejection: Amazon Rekognition does not offer any functionality related to text-to-speech conversion. C) Amazon Polly - Relevance: Amazon Polly is an AWS service that converts text to speech using lifelike voices. It provides high-quality, natural-sounding voice synthesis and supports a wide range of languages and voices, including regional accents. Polly...

Author: IronLion88 · Last updated May 15, 2026

A company wants to use application stacks to run a workload in the AWS Cloud. The company wants to use pre-configured inst...

The company wants to run a workload using application stacks and pre-configured instances in the AWS Cloud. Let's break down each option and analyze how they align with these requirements: A) Amazon Lightsail: - Management overhead: Low. Lightsail offers a simple interface for launching pre-configured virtual private servers (instances) with built-in application stacks like WordPress, LAMP, etc. - Effort: Minimal. Lightsail is designed to be user-friendly, providing pre-configured stacks and easy deployment with a focus on simplicity. - Time: Quick setup, as it offers predefined images for common applications. - Cost: Cost-effective for small to medium workloads due to predictable, low-cost pricing. - When to use: Ideal for small to medium businesses or individual developers who need simple pre-configured instances without complex configurations. - Not ideal for: Large, complex workloads or highly customized environments. B) Amazon Athena: - Management overhead: None. Athena is a serverless query service for analyzing data in Amazon S3 using SQL. - Effort: Low in terms of managing compute resources because it’s serverless, but it’s not designed for running application stacks or pre-configured instances. - Time: Fast for querying data stored in S3 but not relevant to running workloads with application stacks. - Cost: Based on the amount of data scanned by queries, not suitable for general workload management. - When to use: Athena is excellent for querying large datasets in S3, but not for running application stacks. - Not ideal for: Running application stacks on pre-configured instances. C) AWS Outposts: - Management overhead: Moderate to high. AWS Outposts extends AWS infrastructure to on-premises locations, which is ideal for hybrid cloud setups. - Effort: Higher, as it involves managing on-premises hardware and AWS services in a hybrid model. - Time: Longer setup due to the physical deployment of hardware. - Cost: High. Outposts is a premium offering aimed at hybrid cloud and on-premises integration, with higher costs associated with hardware and management. - When to use: Suitable for scenarios requiring a hy...

Author: IceDragon2023 · Last updated May 15, 2026

Which AWS services are supported by Savings Plans? (Choose two.)

Savings Plans Overview: AWS Savings Plans are a flexible pricing model that provides cost savings in exchange for committing to a certain amount of usage (measured in dollars per hour) over a one- or three-year term. These plans are available for certain services that generally involve predictable, long-term usage. When evaluating the available services, it is crucial to understand which AWS services support Savings Plans based on cost optimization and usage patterns. Option Analysis: A) Amazon EC2: - Description: Amazon EC2 (Elastic Compute Cloud) is a service that allows users to run virtual servers in the cloud. EC2 usage, especially for instances that run continuously or at predictable levels, can benefit from Savings Plans by locking in a lower hourly rate for compute capacity. - Suitability: EC2 supports Savings Plans, specifically Compute Savings Plans, which provide flexibility across instance families, operating systems, and regions. - Best Use Case: Businesses running steady workloads or with predictable EC2 usage can save significantly using Savings Plans. B) Amazon RDS: - Description: Amazon RDS (Relational Database Service) provides managed relational database instances in the cloud. It supports various database engines such as MySQL, PostgreSQL, and Oracle. - Suitability: RDS supports Savings Plans (specifically for usage on certain instance types and database engines). Like EC2, RDS usage can be predictable, so Savings Plans can provide cost savings. - Best Use Case: Companies with consistent database workloads can benefit from committing to a usage level to lower costs. C) Amazon SageMaker: - Description: Amazon SageMaker is a fully managed service for building, training, and deploying machine learning models. SageMaker provides various managed services such as notebooks, training jobs, and inference endpoints. - Suitability: SageMaker does not currently support Savings Plans. Pricing for SageMaker services is typically based on specific components (e.g., instance types, storage...

Author: Ethan Smith · Last updated May 15, 2026

Which AWS service or tool can provide rightsizing recommendations for Amazon EC2 resources at no add...

The question asks which AWS service or tool can provide rightsizing recommendations for Amazon EC2 resources at no additional cost. Rightsizing recommendations help optimize the performance and cost of EC2 instances by suggesting more appropriate instance types based on usage patterns. Let's evaluate the provided options: Option A: AWS Well-Architected Tool - Reasoning: The AWS Well-Architected Tool helps assess your workloads against AWS best practices, providing recommendations across multiple pillars, such as operational excellence, security, and cost optimization. While it includes recommendations for improving architecture, it is not specifically focused on providing rightsizing recommendations for EC2 instances. It is more about overall architectural health than specific EC2 instance optimizations. - Rejection: While valuable for general guidance, it does not focus on EC2 rightsizing. Option B: Amazon CloudWatch - Reasoning: Amazon CloudWatch is primarily a monitoring service that provides metrics, logs, and alarms for AWS resources. While CloudWatch helps track performance metrics for EC2 instances (e.g., CPU utilization), it does not offer rightsizing recommendations directly. It can provide data that might inform rightsizing decisions, but it does not generate automatic recommendations. - Rejection: CloudWatch is useful for monitoring, but it does not generate rightsizing recommendations for EC2 instances. Option C: AWS Cost Explorer - Reasoning: AWS Cost Explorer helps visualize, analyze, and manage AWS...

Author: Sofia · Last updated May 15, 2026

A company operates a petabyte-scale data warehouse to analyze its data. The company wants a solution that will not require manual hardware and soft...

The question asks for a solution that meets the requirement of analyzing petabyte-scale data with minimal manual hardware and software management. Let’s analyze each option in detail: A) Amazon DocumentDB (with MongoDB compatibility) - Effort & Time: Amazon DocumentDB is a managed NoSQL database service designed for document data models. While it is scalable and easy to manage, it is not designed for petabyte-scale data warehouses or analytic workloads. DocumentDB is optimized for transactional and document-based workloads rather than analytical data warehousing. - Cost: DocumentDB may be cost-effective for smaller, document-based datasets but would not be suitable for the heavy analytics and scale required by the company. - Why Rejected: This service is not designed for data warehousing or large-scale analytics. It is better suited for managing JSON-style document data rather than large datasets used for complex analytics. B) Amazon Redshift - Effort & Time: Amazon Redshift is a fully managed data warehouse service optimized for large-scale data analytics. It can easily scale to handle petabyte-scale data, and the service is designed to require minimal management of hardware and software. Redshift automates many administrative tasks, such as patching, backups, and scaling, making it ideal for large-scale, data-intensive workloads. - Cost: While Redshift may incur higher costs depending on the scale and usage, it is a well-suited solution for analytical workloads at petabyte scale. Its cost can be controlled using features like Reserved Instances and on-demand pricing. - Why Selected: Amazon Redshift is the best solution for a data warehouse at petabyte scale. It is designed for analytics and offers a fully managed service, meaning the company does not have to manage hardware or software manual...

Author: Benjamin · Last updated May 15, 2026

A library wants to automate the classification of electronic books based on the contents of the books.Which AWS servi...

To automate the classification of electronic books based on the contents, the library needs a solution that can analyze, understand, and categorize text data from the books. Let's evaluate each AWS service to determine the best fit based on the requirement. Option A: Amazon Redshift - Service Description: Amazon Redshift is a fully managed data warehouse designed for running complex queries on large datasets, especially for analytical workloads. - Performance: Redshift excels at querying large-scale data warehouses and performing business intelligence tasks, but it is not designed for natural language processing (NLP) or content classification. - Use Case: Primarily used for big data analytics and reporting. It is not suited for automating the classification of text based on content. - Rejection Reason: Not designed for text analysis or classification, making it unsuitable for the library’s requirement. Option B: Amazon CloudSearch - Service Description: Amazon CloudSearch is a managed search service that allows you to search through large volumes of data quickly. - Performance: It allows fast search capabilities across text data, but it is focused on indexing and searching rather than understanding and classifying content based on its meaning. - Use Case: Best suited for applications that require search functionality but not for automated classification of text. - Rejection Reason: CloudSearch does not offer automated classification or deep text analysis, which is required for categorizing books based on their content. Option C: Amazon Comprehend - Service Description: Amazon Comprehend is a natural language processing (NLP) service that uses machine learning to ...

Author: SilverBear · Last updated May 15, 2026

Which task is a responsibility of AWS, according to the AWS shared responsibility model?

According to the AWS shared responsibility model, the division of tasks between AWS and customers is clearly defined. AWS is responsible for managing security of the cloud infrastructure, while customers are responsible for managing security in the cloud, such as configuring services and securing data and applications. Let’s break down each option: A) Encryption of application data - This is generally the responsibility of the customer. AWS provides tools and services like AWS Key Management Service (KMS) to help with encryption, but the customer needs to implement and configure encryption for application data. While AWS makes it easier by offering encryption solutions, the decision to encrypt application data (and the implementation) falls on the customer. - Rejected because the responsibility lies with the customer to configure and manage the encryption. B) Authentication of application users - This is also the responsibility of the customer. Authentication is part of the application layer, and customers are responsible for setting up and managing authentication mechanisms, whether through services like Amazon Cognito, or custom methods. - Rejected because this is the customer’s responsibility in securing and managing user authentication for their appl...

Author: MoonlitPantherX · Last updated May 15, 2026

Which options are AWS Cloud Adoption Framework (AWS CAF) cloud transformation journey recommendation...

To answer the question about which options are part of the AWS Cloud Adoption Framework (AWS CAF) cloud transformation journey recommendations, let's first understand the specific phases involved in a typical cloud transformation process according to the AWS CAF. Option A: Envision phase The "Envision" phase is the initial step of the cloud transformation journey. During this phase, the organization sets its strategic vision and objectives for cloud adoption. This phase helps in clarifying business goals, understanding how the cloud can help achieve those goals, and defining the overall cloud strategy. It is essential for setting the foundation for successful cloud transformation but is not directly about execution or deeper transformation. Rejection Reason: While the Envision phase is crucial for setting the stage, it is more about planning and defining goals rather than actual transformation and execution. It doesn’t directly involve technical work or migration. Option B: Align phase The "Align" phase ensures that there is alignment between the business objectives and technology needs. During this phase, organizations focus on identifying the key stakeholders, ensuring that everyone has the same vision, and aligning business priorities with the technical roadmap. It is about creating buy-in and ensuring that technology efforts match business goals. Selected Reason: The Align phase is a key recommendation for the cloud transformation journey because it ensures that all stakeholders, both business and technical, are in alignment before moving forward with deeper execution steps. This alignment is crucial to ensure that the technical transformation supports and is guided by business objectives. Option C: Assess phase The "Assess" phase is about evaluating the existing environment, understanding the current on-premises infrastructure, identifying gaps, and assessing the readiness for cloud adoption. This phase helps organizations identify what needs to be moved to the cloud, how much it will cost, and what the cloud transition will involve. It’s a detailed analysis that forms the ...

Author: Kunal · Last updated May 15, 2026

A company wants to generate a list of IAM users. The company also wants to view the status of various credentials that are associated with the users, such as password, access keys, and multi-factor a...

To address the company's requirement of generating a list of IAM users and viewing the status of their associated credentials (passwords, access keys, and MFA devices), let's evaluate each option based on the service’s capabilities: A) IAM credential report - The IAM credential report is an AWS feature specifically designed for the task at hand. It provides detailed information about IAM users, including the status of their passwords, access keys, and MFA devices. The report includes whether passwords are set, when access keys were last used, and the MFA status for each user. - Key benefits: - Automated generation of a comprehensive list of IAM users and their credentials status. - Easy to download in CSV format for analysis. - Provides a full overview of users and their associated security configurations (passwords, keys, MFA). - Low effort, cost-efficient, and quick to generate without requiring deep configuration. - Selected because it directly meets the requirement to list IAM users and check credential statuses. B) AWS IAM Identity Center (AWS Single Sign-On) - AWS IAM Identity Center (previously known as AWS Single Sign-On) is a service for managing access to AWS accounts and applications through a central identity provider. While it supports identity management and MFA, it does not focus on providing credentia...

Author: David · Last updated May 15, 2026

A company is designing its AWS workloads so that components can be updated regularly and so that changes can be made in small, reversible increments.Which pi...

The correct option is C) Operational excellence. Here's why: Selected Option: C) Operational excellence The design described in the question—components that can be updated regularly and changes made in small, reversible increments—supports the Operational excellence pillar of the AWS Well-Architected Framework. This pillar emphasizes the ability to run and monitor systems to deliver business value while continuously improving processes and procedures. Specifically, it focuses on: - Frequent updates: Regularly deploying changes allows teams to improve, fix, and innovate on their workloads more efficiently. - Small, reversible increments: This approach aligns with continuous improvement and testing, enabling teams to make small changes that can be rolled back easily if needed, ensuring minimal impact in case of failures. - Automation: Automation of deployments and processes, which reduces manual intervention and error-prone activities, is a core principle of operational excellence. Why other options are rejected: 1. A) Security: - While security is a crucial aspect of any workload, the design mentioned in the question is not primarily focused on securing the components. Security in the AWS Well-Architected Framework relates more to the protection of data, integrity, and confidentiality. The question focuses on the operational process and update frequency rather than securing the system, so the se...

Author: NebulaEagle11 · Last updated May 15, 2026

A company wants to track tags, buckets, and prefixes for its Amazon S3 objects.Which S3 feature will...

To address the company's requirement of tracking tags, buckets, and prefixes for Amazon S3 objects, we need to focus on which feature allows for such detailed tracking and reporting of S3 objects. Let's evaluate each option: A) S3 Inventory report - S3 Inventory provides a way to generate reports on the objects stored in a bucket. It can include metadata such as tags, object prefixes, and bucket details. The inventory reports can be customized to track tags, prefixes, and other object-level metadata. The inventory is a powerful tool for auditing and managing data at scale, and it supports periodic reporting. - Key benefits: - Allows tracking of tags, object prefixes, and other metadata for objects stored in S3. - Supports custom reports, and can track objects across multiple buckets. - Provides scheduled, automated reports for ongoing monitoring. - Cost-effective for tracking and auditing large amounts of S3 data. - Selected because it meets the requirement of tracking tags, prefixes, and buckets efficiently. B) S3 Lifecycle - S3 Lifecycle is used to automate the process of transitioning or deleting objects based on rules (e.g., transitioning to Glacier or deleting objects after a certain time period). While it can be used to manage data over time, it does not provide functionality for tracking tags, p...

Author: Nia · Last updated May 15, 2026

A company wants to allow users to authenticate and authorize multiple AWS accounts by using a single set of credentials.Whi...

To solve the requirement where a company wants users to authenticate and authorize multiple AWS accounts using a single set of credentials, let's evaluate the options: A) AWS Organizations - AWS Organizations allows you to manage multiple AWS accounts in a centralized manner. It enables you to create and organize accounts into organizational units (OUs) and apply policies across accounts. However, AWS Organizations does not directly solve the issue of authentication and authorization with a single set of credentials across multiple accounts. It provides account management and policy enforcement but lacks integrated authentication services for users. - Reason for Rejection: While AWS Organizations helps in managing accounts, it doesn't directly address user authentication and authorization. For user authentication, an identity provider or a service like IAM Identity Center is needed. B) IAM User - IAM User allows individual users to be created within an AWS account. You can assign permissions to IAM users for specific resources within an AWS account. However, an IAM user is specific to one AWS account and would require a separate IAM user in each AWS account to allow users to authenticate and authorize across multiple accounts. - Reason for Rejection: This would not meet the requirement of using a single set of credentials across multiple AWS accounts. You would need to manage credentials separately for each account, which is cumbersome. C) AWS IAM Identity Center (AWS Single Sign-On) - AWS IAM Identity Center (AWS Single Sign-On) is the best fit for this scenario. It allows users to authenticate once and use the same credentials to access multiple AWS accounts. It in...

Author: Elizabeth · Last updated May 15, 2026

A company created an Amazon EC2 instance. The company wants to control the incoming and outgoing network traffic at the instance level...

To control the incoming and outgoing network traffic at the instance level for an Amazon EC2 instance, we need to focus on the service or resource that specifically allows for managing traffic flow to and from the EC2 instance. Let's evaluate each option: A) AWS Shield - AWS Shield is a managed DDoS (Distributed Denial of Service) protection service that safeguards applications from attacks. While it protects your resources from large-scale DDoS attacks, it does not directly manage or control the incoming and outgoing network traffic at the instance level. It works at a higher level of protection for the entire AWS infrastructure. - Rejected because AWS Shield is designed for protecting against DDoS attacks, not for controlling network traffic at the instance level. B) Security groups - Security groups are the correct resource for controlling incoming and outgoing network traffic to EC2 instances. They act as virtual firewalls at the instance level, allowing you to define rules that control traffic based on IP addresses, ports, and protocols. Security groups are stateful, meaning that if you allow incoming traffic to an EC2 instance, the return traffic is automatically allowed. - Key benefits: - Easy to configure and manage. - Statefully control both inbound and outbound traffic. - Can be applied directly to EC2 instances. - Highly flexible for controlling network traffic based on specific needs (e.g., ports, IP ranges). - Selected because it directly addresses the requ...

Author: Sara · Last updated May 15, 2026

A company wants to use the AWS Cloud to deploy an application globally.Which architecture deployment model s...

To meet the company's requirement of deploying an application globally on the AWS Cloud, we need to focus on an architecture deployment model that can provide global reach and ensure that the application is available across multiple geographic locations. Let's evaluate each option: A) Multi-Region - Multi-Region deployment means deploying resources and applications across multiple AWS regions worldwide. This architecture is ideal for global applications as it ensures low latency, high availability, and disaster recovery across different geographic locations. A multi-region approach enables the application to be accessible from various regions, reducing the impact of regional failures. - Key benefits: - Global reach with presence in multiple geographic locations. - Provides fault tolerance and disaster recovery by deploying across multiple AWS regions. - Reduces latency by serving traffic from the nearest AWS region to the end-users. - Selected because it allows the company to deploy an application globally, which aligns with the requirement of a global deployment. B) Single-Region - A Single-Region deployment involves using resources from only one AWS region. While this can be suitable for applications targeting a specific geographic area, it does not provide global reach. It would be inefficient for applications requiring global access or high availability across multiple regions. ...

Author: Lucas Carter · Last updated May 15, 2026

A company wants a web application to interact with various AWS services.Which AWS service or resourc...

To determine which AWS service or resource will meet the requirement for a web application to interact with various AWS services, let's assess each of the options provided in terms of their suitability for web applications. Option Analysis: 1. A) AWS CloudShell - Relevance: AWS CloudShell provides a browser-based shell for managing AWS resources. It is designed primarily for administrative and operational tasks in the AWS environment but is not specifically tailored for integrating a web application with AWS services. It provides a command-line interface in the browser but is not typically used by web applications to interact with services. - Key Factors: AWS CloudShell is more useful for developers or administrators to interact with AWS through the command line, not ideal for a web application to integrate with AWS services. - Scenario: A developer might use CloudShell for quick tasks or troubleshooting, but it isn't used in production to connect a web application with AWS services. 2. B) AWS Marketplace - Relevance: The AWS Marketplace is a platform where users can find, test, and deploy software solutions and services. While the Marketplace offers tools that a web application might use (such as third-party solutions), it does not directly provide a mechanism for a web application to interact with AWS services. - Key Factors: AWS Marketplace is more of a storefront for software, not a service or resource for integrating a web application with AWS services. - Scenario: A company might use the Marketplace to find third-party integrations for a web app, but it’s not the service that directly interacts with AWS resources. 3. C) AWS Management Console - Relevance: The AWS Management Console is a web-based user interface for managing AWS services. It allows users to interact with AWS resources, but it is intended for human users (administrators and developers) to configure and monitor services, not for web applications to aut...

Author: Sofia · Last updated May 15, 2026

A company is migrating its applications from on-premises to the AWS Cloud. The company wants to ensure that the applications are assigned only the minimum permissions that are nee...

To address the company's goal of ensuring that applications are assigned only the minimum permissions necessary to perform all operations, the most suitable AWS service is AWS Identity and Access Management (IAM). Let’s evaluate why this option is selected and the others are rejected. Option A: AWS Identity and Access Management (IAM) AWS IAM is a service that helps manage access to AWS resources securely. IAM allows the company to define permissions at a granular level, ensuring that each application or user only has the minimum permissions necessary to perform their tasks. This service is specifically designed for managing access control by creating and enforcing policies that follow the principle of least privilege. This principle ensures that users and applications have only the permissions they need and no more. With IAM, the company can: - Create users, roles, and policies. - Assign permissions based on roles. - Implement least privilege access. - Manage and audit policies to meet security requirements. Given that the company wants to ensure that applications have only the minimum required permissions, IAM is the best service as it directly addresses this need. Option B: Amazon CloudWatch Amazon CloudWatch is primarily a monitoring and observability service. It helps you collect and track metrics, logs, and events, providing insights into system performance and health. While CloudWatch can help you monitor the behavior of applications, it does not manage acce...

Author: Matthew · Last updated May 15, 2026

Which options are AWS Cloud Adoption Framework (AWS CAF) governance perspective capabilities? (Choos...

The correct options for AWS Cloud Adoption Framework (AWS CAF) governance perspective capabilities are: B) Cloud financial management C) Application portfolio management Reasoning: The AWS Cloud Adoption Framework (AWS CAF) organizes cloud adoption capabilities into six perspectives: Business, People, Governance, Platform, Security, and Operations. The Governance perspective specifically focuses on the management of cost, performance, compliance, and risk during the adoption of cloud technologies. Now, let’s break down the options based on this framework. Option B: Cloud financial management - Governance Perspective: Cloud financial management is a core capability of the Governance perspective in AWS CAF. It involves managing budgets, forecasting costs, monitoring spending, and optimizing cloud expenditures. This capability ensures that an organization can manage financial aspects efficiently while adopting cloud technology. - Effort, time, and cost: It requires constant effort to track, forecast, and optimize cloud spending. The customer will need to allocate resources to establish policies, budgeting tools, and monitoring capabilities (e.g., AWS Budgets, AWS Cost Explorer) to maintain cost governance in the cloud. - Example scenario: A company migrating to AWS would use cloud financial management to keep track of their cloud expenditures and ensure they’re staying within budget. Option C: Application portfolio management - Governance Perspective: Application portfolio management (APM) is part of the Governance perspective because it involves evaluating, organizing, and optimizing an organization's application portfolio for the cloud. It helps companies manage which applications to migrate to the cloud, modernize, or decommission. - Effort, time, and cost: APM involves strategic decision-making regarding existing applications. It may require significant time and effort to assess which applications should be cloud-native, rehosted, or refactored, depending on the company’s goals and financial constraints. - Example scenario: A company needs to assess and decide which of their legacy applications should move to AWS, which should be refactored,...

Author: Kai99 · Last updated May 15, 2026

Which AWS service provides a single location to track the progress of application migrations?

To determine which AWS service provides a single location to track the progress of application migrations, let's analyze each option carefully. Option A: AWS Application Discovery Service AWS Application Discovery Service helps organizations discover on-premises applications and gather information about their configurations and dependencies. While this service is useful for understanding the current state of applications before migration, it does not provide a centralized location for tracking the progress of application migrations. Instead, it focuses on the discovery phase, not the migration tracking phase. Therefore, it is not the best option for tracking migration progress. Option B: AWS Application Migration Service AWS Application Migration Service (formerly known as Server Migration Service) facilitates the actual migration of applications to AWS by automating the process of replicating on-premises servers to AWS. While it helps in the migration process itself, it does not provide a centralized view or dashboard to track the overall progress of multiple migrations. It is focused on the migration process for individual servers or applications, not for tracking the progress of a complete migration strategy. Option C: AWS Service Catalog AWS Service Catalog enables organizations to create and manage catalogs of AWS-approved services, products, and configurations for use within their accounts. While it helps streamline the deployment of predefined services, it is not specifica...

Author: Oscar · Last updated May 15, 2026

A company launched an Amazon EC2 instance with the latest Amazon Linux 2 Amazon Machine Image (AMI).Which actions can a system admini...

To connect to an Amazon EC2 instance that is running the latest Amazon Linux 2 Amazon Machine Image (AMI), let's evaluate the available options based on how they apply to EC2 instances, especially for Linux-based instances: A) Use Amazon EC2 Instance Connect Amazon EC2 Instance Connect is a feature that allows users to securely connect to their Amazon EC2 instances using an SSH connection. This option is available for Linux-based instances, such as the Amazon Linux 2 AMI, and does not require an external SSH client. It is a secure, browser-based way to establish a connection directly from the AWS Management Console. This option is ideal because it provides an easy and secure method to connect to the EC2 instance. B) Use a Remote Desktop Protocol (RDP) connection Remote Desktop Protocol (RDP) is primarily used to connect to Windows instances, not Linux instances. Since the EC2 instance in question is running Amazon Linux 2 (which is a Linux-based operating system), RDP would not be an appropriate method for connection. RDP is typically used for graphical user interface (GUI) access to Windows servers, and is not applicable for Linux instances. C) Use AWS Batch AWS Batch is a fully managed batch processing service that allows users to run large-scale parallel and high-performance computing (HPC) workloads on AWS. While AWS Batch is useful for running jobs on EC2 instances, it is not designed for interactive access to an EC2 instance. It does not allow the system administrator to directly connect to the instance for management purposes. Therefore, AWS ...

Author: RadiantPhoenixX · Last updated May 15, 2026

Which architecture concept describes the ability to deploy resources on demand and release resources...

To determine which architecture concept describes the ability to deploy resources on demand and release resources when they are no longer needed, let's evaluate each option in the context of cloud computing. Option A: High Availability High Availability (HA) refers to ensuring that a system or service is continuously operational and available, even in the event of failures or outages. While high availability is critical for maintaining uptime and ensuring services are resilient to failures, it does not directly relate to the ability to deploy and release resources on demand. High availability is about minimizing downtime, not about scaling resources dynamically based on need. Therefore, this is not the correct choice. Option B: Decoupled Architecture Decoupled Architecture refers to the design principle of loosely coupling the components of a system, so they can function independently. This allows components to be scaled, updated, or replaced without impacting other parts of the system. While decoupling is important for scalability and flexibility, it doesn’t specifically describe the ability to deploy and release resources based on demand. It is more focused on system design and component interactions rather than resource management. Therefore, this option is not the correct choice. Option C: Resilience Resilience refers to the ability of a system to recover quickly from failures and maintain functionality despite disruptions. While resilience is important for maintaining service continuity d...

Author: Nia · Last updated May 15, 2026

Which task requires a user to sign in as the AWS account root user?

To identify which task requires a user to sign in as the AWS account root user, we need to analyze the role of the root user in AWS and assess the specific requirements for each option. Option A: The deletion of IAM users IAM (Identity and Access Management) users can be deleted by an IAM user who has the necessary permissions (such as those granted through IAM policies). The root user has full access to all resources and operations, but deleting IAM users does not require signing in as the root user. An IAM user with appropriate permissions, such as the `iam:DeleteUser` permission, can perform this task. Therefore, the root user is not required here. Option B: The deletion of an AWS account The deletion of an AWS account is a highly sensitive operation that requires signing in as the root user. To close or delete an AWS account, the root user must be used because only the root user has the permissions needed to close or terminate an account. This action is permanent and can have significant consequences, so it is restricted to the root user for security and accountability reasons. This option does require the root user. Option C: The creation of an organization in AWS Organizations AWS Organizations...

Author: Sophia Clark · Last updated May 15, 2026

What does the Amazon S3 Intelligent-Tiering storage class offer?

Amazon S3 Intelligent-Tiering is designed to automatically optimize storage costs by moving data between different access tiers based on changes in access patterns. Let's break down the options and analyze them in the context of the question. Option A: Payment flexibility by reserving storage capacity - Analysis: This option does not directly relate to S3 Intelligent-Tiering, which focuses on automatic storage cost optimization based on access patterns, rather than reserving storage capacity for payment flexibility. - Rejection Reason: This option is not relevant to the functionality of S3 Intelligent-Tiering. Option B: Long-term retention of data by copying the data to an encrypted Amazon Elastic Block Store (Amazon EBS) volume - Analysis: Amazon EBS is a block storage service for EC2 instances, not part of the S3 storage solution. S3 Intelligent-Tiering is about moving objects between storage tiers in S3 itself, not copying data to an EBS volume. - Rejection Reason: This option is irrelevant to S3 Intelligent-Tiering, as it involves EBS, not S3 storage classes. Option C: Automatic cost savings by moving objects between tiers based on access pattern changes - Analysis: This is the core feature of S3 Intelligent-Tiering. It automatically moves o...

Author: Julian · Last updated May 15, 2026

A company needs Amazon EC2 instances for a workload that can tolerate interruptions.Which EC2 instance purchasing option meets this require...

The company needs Amazon EC2 instances for a workload that can tolerate interruptions, and the requirement is to find the option with the LARGEST discount compared to On-Demand prices. Let's analyze each purchasing option with respect to the key factors of cost, flexibility, and interruption tolerance: Option A: Spot Instances - Analysis: Spot Instances allow you to bid for unused EC2 capacity at significantly reduced prices compared to On-Demand instances (up to 90% less). The key trade-off is that these instances can be interrupted by AWS when the capacity is needed for On-Demand or Reserved Instances. Spot Instances are ideal for workloads that can tolerate interruptions and are highly cost-effective, offering the largest discount compared to On-Demand prices. - Acceptance Reason: Spot Instances meet the requirements perfectly since the workload can tolerate interruptions, and they offer the largest discount compared to On-Demand prices. Option B: Convertible Reserved Instances - Analysis: Convertible Reserved Instances offer flexibility to change instance types, families, or regions, but they still require a long-term commitment (1 or 3 years). They provide a discount compared to On-Demand instances, but the discount is generally lower than Spot Instances. Also, they do not provide the option for interruption tolerance. - Rejection Reason: Convertible Reserved Instances offer a discount but are less flexible than Spot Instances in terms of cost savings...

Author: Zara · Last updated May 15, 2026

A company is planning to migrate to the AWS Cloud. The company wants to identify measurable business outcomes that will explain the value of the company's decision to migrate...

To answer the question, let's break down each phase of the cloud transformation journey and determine which one involves identifying measurable business outcomes that explain the value of the company's decision to migrate. The focus is on understanding services, effort, time, cost, and other key factors. A) Envision In the Envision phase, the company assesses the overall goals for migration. This phase is dedicated to strategizing the transformation and aligning it with the company's business objectives. It involves identifying high-level measurable outcomes such as cost savings, increased scalability, improved agility, or better performance. This is the phase where the company defines its objectives and sets the stage for measurable business outcomes that justify the migration. B) Align The Align phase focuses on aligning business goals with the technical capabilities of the cloud. In this phase, the company ensures that its cloud strategy is well-aligned with both short-term and long-term business outcomes. Although measurable outcomes are refined here, the primary work is more about ensuring alignment between business and technical stakeholders, not initially identifying these outcomes. C) Scale The Scale phase refers to expanding cloud adoption across ...

Author: Harper · Last updated May 15, 2026

What Our Friends Say

What Our Friends Say

Amazon Practice Questions, Discussions & Exam Topics by our Authors

An Amazon EC2 instance previously used for development is inaccessible and no longer appears in the AWS Management Console.Which AWS service should be ...

A company's application developers need to quickly provision and manage AWS services by using scripts.Which AWS offering ...

A company wants to migrate unstructured data to AWS. The data needs to be securely moved with inflight encryption and end-to-end data ...

A development team wants to deploy multiple test environments for an application in a fast, repeatable ...

A company wants to quickly implement a continuous integration/continuous delivery (CI/CD) pipeline.W...

Which AWS Cloud deployment model uses AWS Outposts as part of the application deployment infrastruct...

Which of the following is a fully managed graph database service on AWS?

Which AWS service could an administrator use to provide desktop environments for several employees?

Which AWS service or feature gives users the ability to capture information about network traffic in...

Which type of AWS storage is ephemeral and is deleted when an Amazon EC2 instance is stopped or term...

A company wants to provide access to Windows file shares in AWS from its on-premises workloads. The company does not want to provision any additional infrastructure or appl...

A company wants durable storage for static content and infinitely scalable data storage infrastructure at the lowest...

An ecommerce company wants to use Amazon EC2 Auto Scaling to add and remove EC2 instances based on CPU utilization.Which AWS service or feature can ...

A company wants to transform its workforce by attracting and developing a digitally fluent high-performance workforce. The company wants to attract a diverse and inclusive workforce with appropriate mix of technical and non-tech...

A company wants to move its on-premises databases to managed cloud database services by using a simplified migration process.Which AWS ...

A company needs a fully managed file server that natively supports Microsoft workloads and file systems. The file server must also support the SMB protocol....

A company has been storing monthly reports in an Amazon S3 bucket. The company exports the report data into comma-separated values (.csv) files. A developer wants to write a simple query that can read all of these files and generate a summary report.Which AWS ser...

Which AWS feature provides a no-cost platform for AWS users to join community groups, ask questions, find answers, and re...

A company needs to search for text in documents that are stored in Amazon S3.Which AWS service will ...

Which AWS services make use of global edge locations? (Choose two.)

A user needs a relational database but does not have the resources to manage the hardware, resiliency, and replication.Wh...

A company needs to deploy applications in the AWS Cloud as quickly as possible. The company also needs to minimize the complexity that is related to the management of AWS res...

Which mechanism allows developers to access AWS services from application code?

A company is migrating to the AWS Cloud. The company wants to understand and identify potential security misconfigurations or unexpected behaviors. The company wants to prioritize any protective controls it might need.Which AW...

A company wants to establish a private network connection between AWS and its corporate network.Which AWS ...

Which AWS services or features give users the ability to create a network connection between two VPC...

Which AWS service converts text to lifelike voices?

A company wants to use application stacks to run a workload in the AWS Cloud. The company wants to use pre-configured inst...

Which AWS services are supported by Savings Plans? (Choose two.)

Which AWS service or tool can provide rightsizing recommendations for Amazon EC2 resources at no add...

A company operates a petabyte-scale data warehouse to analyze its data. The company wants a solution that will not require manual hardware and soft...

A library wants to automate the classification of electronic books based on the contents of the books.Which AWS servi...

Which task is a responsibility of AWS, according to the AWS shared responsibility model?

Which options are AWS Cloud Adoption Framework (AWS CAF) cloud transformation journey recommendation...

A company wants to generate a list of IAM users. The company also wants to view the status of various credentials that are associated with the users, such as password, access keys, and multi-factor a...

A company is designing its AWS workloads so that components can be updated regularly and so that changes can be made in small, reversible increments.Which pi...

A company wants to track tags, buckets, and prefixes for its Amazon S3 objects.Which S3 feature will...

A company wants to allow users to authenticate and authorize multiple AWS accounts by using a single set of credentials.Whi...

A company created an Amazon EC2 instance. The company wants to control the incoming and outgoing network traffic at the instance level...

A company wants to use the AWS Cloud to deploy an application globally.Which architecture deployment model s...

A company wants a web application to interact with various AWS services.Which AWS service or resourc...

A company is migrating its applications from on-premises to the AWS Cloud. The company wants to ensure that the applications are assigned only the minimum permissions that are nee...

Which options are AWS Cloud Adoption Framework (AWS CAF) governance perspective capabilities? (Choos...

Which AWS service provides a single location to track the progress of application migrations?

A company launched an Amazon EC2 instance with the latest Amazon Linux 2 Amazon Machine Image (AMI).Which actions can a system admini...

Which architecture concept describes the ability to deploy resources on demand and release resources...

Which task requires a user to sign in as the AWS account root user?

What does the Amazon S3 Intelligent-Tiering storage class offer?

A company needs Amazon EC2 instances for a workload that can tolerate interruptions.Which EC2 instance purchasing option meets this require...

A company is planning to migrate to the AWS Cloud. The company wants to identify measurable business outcomes that will explain the value of the company's decision to migrate...