CERTIFICATION PREPARATION WORKBOOK
CLOUD SERVICES MOCK TEST ITEMS
COMPLETE SOLUTIONS
◉ What are the three fundamentals of pricing in AWS? Answer:
Computer, storage and outbound data transfer
◉ Which of the following services is global in scope? IAM, EC2, RDS,
Lambda Answer: IAM (Identity Access Management)
◉ Which pricing model is highly flexible with no long-term
commitments or upfront payments? a. Dedicated instances, b. spot
instances, c. on-demand d. reservations Answer: On-Demand
◉ What is an AWS Region composed of? Answer: Two or more
availability zones
◉ Which of the following is an advantage of Cloud Computing? a.
trade capital expense for variable expense b. trade operational
expense for variable expense c. go global in days d. outsourced all
application development Answer: a. trade capital expense for
variable expense
,◉ Which AWS policy defines the prohibited uses of the AWS Cloud?
a. AWS End User Policy b. AWS Cloud Policy c. AWS Acceptable
Practices Policy d. AWS acceptable use policy Answer: d. AWS
Acceptable Use Policy
◉ Which of the following is NOT a cloud service model? a.
Infrastructure as a Service (IaaS)
b. Platform as a Service (PaaS)
c. Software as a Service (SaaS)
d. Computing as a Service (CaaS) Answer: d. Computing as a Service
(CaaS)
◉ An Access key ID and secret access key is associated with which
IAM entity?
a. User
b. Group
c. Role
d. Policy Answer: a. User
◉ What is the main credential for an AWS root account?
a. Administrator
b. Root
,c. The email address used to create the account
d. The account number Answer: c. The email address used to create
the account
◉ What does an ARN stand for? (Review)
a. Amazon Region Number
b. Amazon Region Name
c. Amazon Resource Number
d. Amazon Resource Name Answer: b. Amazon Region Name
◉ Which principle should be used when assigning permissions to
users or groups?
a. Most privilege
b. Least privilege
c. Nesting
d. Most restrictive Answer: b. Least privilege
◉ Which IAM entity can be used to delegate permissions? (Review)
a. User
b. Group
c. Role
d. Policy Answer: c. Role
, ◉ How can you add an extra level of security to your root account?
a. By adding an access key ID and secret access key
b. By adding multi-factor authentication (MFA)
c. By setting a strong password
d. By deleting the root account Answer: b. By adding multi-factor
authentication (MFA)
◉ Which of the following is NOT and IAM security best practice?
a. Use groups to assign permissions to IAM users
b. Configure a strong password policy for users
c. Grant most privilege
d. Rotate credentials regularly Answer: c. Grant most privilege
◉ By default, users are created with what permissions?
a. Full permissions
b. No permissions
c. Minimal permissions
d. No access to the AWS management console Answer: b. No
permissions
◉ What is a benefit of Amazon EC2 compared to traditional servers?