AWS Cloud Practitioner – Practice Test 1

Explanation: GuardDuty detects security threats like unusual login attempts. Shield and Inspector focus on DDoS protection and vulnerabilities, respectively. Cost Anomaly Detection monitors billing, not security.

Explanation: AWS’s global infrastructure enables rapid deployment across multiple regions without physical server management. The other options contradict cloud benefits.

Explanation: Reserved Instances offer predictable, discounted pricing for long-term commitments. Spot Instances are volatile, On-Demand is pay-as-you-go, and Savings Plans provide flexibility but not fixed rates.

Explanation: Cost Anomaly Detection identifies unexpected spending trends. Trusted Advisor provides best practice recommendations, CloudWatch monitors resources, and Resource Groups organize resources.

Explanation: Lambda triggers can process events, such as S3 uploads. Glue is for ETL, Redshift for data warehousing, and Cost Explorer for billing analysis.

Explanation: CloudTrail logs all API activity for compliance and auditing. CloudWatch is for monitoring, X-Ray traces requests, and Config tracks configuration changes, not API activity.

Explanation: S3 Glacier provides low-cost storage for archival data with optional retrieval times. S3 Standard and Intelligent-Tiering are more expensive for frequent access. EBS Magnetic is for block storage, not archival.

Explanation: DynamoDB supports low-latency NoSQL operations for real-time apps. RDS and Aurora are relational, and S3 is object storage.

Explanation: Organizations manage multiple accounts and centralize cost monitoring. CloudFormation is for IaC, Lambda for compute, and Inspector for security.

Explanation: Snowball is a physical device for transferring large amounts of data offline. Direct Connect establishes dedicated network connections, Transfer Acceleration speeds up online transfers, and DataSync is for continuous sync but requires internet.

Explanation: Cross-region replication ensures failover between regions. Multi-AZ is within a single region, ELB distributes traffic, and Auto Scaling adjusts resources but doesn’t replicate data.

Explanation: Auto Scaling dynamically adjusts compute resources based on traffic. Cost Explorer tracks costs, Elastic Beanstalk simplifies application deployment, and DataSync is for data transfer.

Explanation: Server-side encryption protects data in S3. Versioning tracks file changes, Transfer Acceleration speeds up uploads, and CloudWatch Logs is for monitoring.

Explanation: CloudFront is a CDN for distributing web content globally with low latency. Glacier is for archival storage, Route 53 handles DNS, and Lambda is serverless compute.

Explanation: Blue/Green deployments switch traffic between environments, minimizing downtime. Rolling updates can cause partial unavailability, manual updates risk errors, and recreate deployments disrupt service.

Explanation: RDS provides relational databases with automated backups. DynamoDB is NoSQL, S3 is object storage, and Redshift is a data warehouse, not a general-purpose relational database.

Explanation: Elasticity allows automatic scaling up or down based on demand, ensuring resources match traffic spikes. Fixed provisioning and manual scaling can’t handle unpredictable traffic effectively. High latency is unrelated.

Explanation: IAM enables fine-grained access control, implementing the least privilege principle effectively. Other services are not directly related to access control.

Explanation: CloudFormation automates provisioning and management of AWS resources using code templates. CodeDeploy focuses on application deployment, OpsWorks on configuration management, and EC2 provides compute instances but lacks infrastructure management.

Explanation: Cost Explorer helps analyze and forecast costs. Budgets set cost limits but don’t forecast. Artifact is for compliance, and Inspector is for security.