What principles does AWS recommend to remove single points of failure from your design?
|
AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification! Show
Follow us on LinkedIn, YouTube, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try! View Our AWS, Azure, and GCP Exam Reviewers Check out our FREE courses What our students say about us?I’m deeply impressed by the quality of the practice tests from Tutorial Dojo. They are extremely well-written, clean and on-par with the real exam questions. Their practice tests and cheat sheets were a huge help for me to achieve 958 / 1000 — 95.8 % on my first try for the AWS Certified Solution Architect Associate exam. Perfect 10/10 material. The best $14 I’ve ever spent! S. M. Shoaib Khulna, Bangladesh Given the enormous number of students and therefore the business success of Jon's courses, I was pleasantly surprised to see that Jon personally responds to many, including often the more technical questions from his students within the forums, showing that when Jon states that teaching is his true passion, he walks, not just talks the talk. I much respect and thank Jon Bonso.  Rowan Williams Brisbane, Australia The explanation to the questions are awesome. Lots of gap exposed in my learning. I used the practice tests along with the TD cheat sheets as my main study materials. This is a must training resource for the exam. Using the practice exam helped me to pass. I think I wouldn't have passed if not for Jon's practice sets. Jessica Chen Guangzhou, China
I can say that Tutorials Dojo is a leading and prime resource when it comes to the AWS Certification Practice Tests. I also tried other courses but only Tutorials Dojo was able to give me enough knowledge of Amazon Web Services. My favorite part of this course is explaining the correct and wrong answers as it provides a deep understanding in AWS Cloud Platform. The course I purchased at Tutorials Dojo has been a weapon for me to pass the AWS Certified Solutions Architect - Associate exam and to compete in Cloud World. A Big thank you to Team Tutorials Dojo and Jon Bonso for providing the best practice test around the globe!!! I highly recommend Jon and Tutorials Dojo!!! Mikelito Luistro Manila, Philippines Did you find our content helpful? Which of the following is an AWS Cloud architecture design principle?
Show Suggested Answer Hide Answer Suggested Answer: B
🗳️ What AWS cloud characteristic makes a resource almost immediately available to allocate when and where you need it? on-demand resourcing On-demand resourcing provides you with the ability to provision resources within seconds and minutes, instead of days or weeks that it may take within an on-premise environment, especially if you had to order the additional hardware first. For example, if you had a server in AWS and its CPU utilization was steadily increasing with demand, you would be able to deploy a second server, which would be ready within minutes to take some of the load off of the first. https://d0.awsstatic.com/whitepapers/aws-overview.pdf In Amazon EC2, if you no longer wish to be charged for your instance, you must ______ the instance to avoid being billed for additional time. stop or terminate https://aws.amazon.com/ec2/faqs/ What does the phrase 'stop guessing capacity' mean? Automate deployments based on performance metrics https://d1.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf What principles does AWS recommend to remove single points of failure from your design? (Choose 2 answers.) Data replication, Detect failure There are several types of data replication that can help reduce single points of failure: synchronous, asynchronous, and quorum-based. In addition, AWS systems should be set up to detect and repair issues that could potentially cause failures automatically. https://d0.awsstatic.com/whitepapers/AWS_Cloud_Best_Practices.pdf Which of the following is an IAM best practice? Assign permissions to groups and add users to that group Which choice below accurately describes the 'warm standby' disaster recovery method? A duplicate version of only your business-critical systems that is always running, in case you need to divert your workloads to them in the event of a disaster. Warm standby is essentially ready to go with all key services running in the most minimal possible way, essentially a smaller version of the production environment. In the event of a disaster, the standby environment will be scaled up for production load quickly and easily. DNS records will be changed to route all traffic to the AWS environment. https://d1.awsstatic.com/whitepapers/aws-disaster-recovery.pdf Which storage option is hosted by Amazon EC2 instances themselves? Amazon Instance Store Volumes Only Instance Store Volumes are hosted by and included as part of the EC2 service itself. http://docs.amazonwebservices.com/AWSEC2/latest/UserGuide/Storage.html What service is used to store the log files generated by CloudTrail? Amazon S3 https://aws.amazon.com/cloudtrail/ Which service below is not directly related to traceability? Trusted Advisor Traceability is the ability to audit, monitor and log your environment, and is key to establish automated responses to events. AWS Config is directly related to auditing and compliance, CloudTrail to logging, and CloudWatch to monitoring. Trusted Advisor is related to the implementation of security best practices, but is not related to tracing the cause of specific incidents in AWS. https://d1.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf In the most recent company meeting, your CEO focused on the fact that everyone in the organization needs to make sure that all of the infrastructure that is built is truly scalable. Which statement in reference to scalable architecture is incorrect? A scalable architecture won't be cost effective as it grows. http://media.amazonwebservices.com/AWS_Cloud_Best_Practices.pdf Which statement about Auto Scaling is false? One auto scaling group can launch instances in different regions. Auto Scaling provides an option to scale up and scale down based on certain conditions or triggers from CloudWatch. A user can configure such that one auto scaling group can launch instances across availability zones, but it cannot span across regions. http://docs.aws.amazon.com/AutoScaling/latest/DeveloperGuide/as-dg.pdf Auto Scaling does not perform which of the following operations? Changing instance types http://docs.aws.amazon.com/autoscaling/latest/userguide/create-lc-with-instanceID.html Which of the following payment methods can be used when signing up with AWS? Credit card http://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/whatisbilling.html Where is an object stored in Amazon S3? in a Bucket Every object in Amazon S3 is stored in a bucket. Before you can store data in Amazon S3, you must create a bucket. AWS uses the term __________ to describe the ability to scale computing resources up and down easily, with minimal friction. Elastic Amazon AWS is based on the concept of elasticity: it means that you can use instances and other AWS resources without any restrictions on scalability or limits on the amount of available resources. http://aws.amazon.com/ec2/ Which answer accurately describes reliability, one of the five pillars of the Well-Architected Framework? How to maintain the stability of your environment, recover from failures, and automatically meet resource demands https://d1.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf If your AWS data must meet specific regulations such as the EU Data protection laws, what must you do? Architect your environment to meet these security requirements https://cloudacademy.com/cloud-computing/internal-business-effects-of-the-cloud-course/business-risks.html Complete the three definitions:___________ is the process of defining an identity and the verification of that identity___________ determines what resources an identity can access within a system once it has been authenticated.___________ is the method and process of how access is granted to a secure resource. Authentication; Authorization; Access Control https://cloudacademy.com/amazon-web-services/understanding-aws-authentication-authorization-accounting-course/authentication-authorization-and-access-control.html In regards to disaster recovery, what is a recovery point objective (RPO)? It is the acceptable amount of data loss measured in time. The recovery point objective (RPO) is the amount of acceptable data loss measured in time. For example, a transactional business cannot afford a great deal of data loss, so its RPO is likely less than one hour because an hour is a great expense in terms of data loss. However, for a more isolated website with minimal customer interaction, an RPO of a day may be acceptable because this represents a tolerable amount of data loss. https://d1.awsstatic.com/whitepapers/Storage/Backup_and_Recovery_Approaches_Using_AWS.pdf Are generators and cooling equipment shared across Availability Zones? No Each Availability Zone is engineered to be isolated from failures in other Availability Zones and to provide inexpensive, low-latency network connectivity to other zones in the same region. By launching instances in separate Availability Zones, you can protect your applications from the failure of a single location. A user is planning to define his own information security management system (ISMS) for AWS. Which of the following security models should the user be familiar with to define the ISMS for AWS? AWS Shared Responsibility Model A user is uploading a backup of data to S3 Glacier for the purpose of disaster recovery (DR). The data stored in S3 Glacier is part of a larger data recovery plan that involves other AWS services. There is a relatively small set of data (100 MB) that needs to be restored immediately when a DR plan is executed, and the organization is planning RTO of 1 hour. Assuming the data size meets the requirements for any of the given retrieval options below, which S3 Glacier data retrieval option would you plan in a DR situation? Use Expedited Retrievals with Provisioned Capacity There are three retrieval options with Amazon S3 Glacier: Which of the following is not a benefit of AWS cloud computing? increase workload consistency The only choice listed that is not a direct benefit of AWS cloud computing is improved system workload/traffic consistency. In fact, the inconsistent nature of many online applications and business systems is a reason why cloud computing can be beneficial to many companies. The other choices listed are all established benefits listed by AWS. When using the AWS Billing and Cost Management console dashboard, you can check various graphs that show different breakdowns of your AWS usage. Which of the following graphs can you check on your dashboard? Month-to-Date Spend by Service; Month-to-Date Top Services by Spend; Spend Summary Which of the following traditional disaster recovery methods runs your site in AWS as well as on your existing on-site infrastructure, in an active-active configuration? Multi-site solution Auto Scaling provides what kind of scaling service? Horizontal Auto Scaling adds new resources or terminates the existing resources seamlessly. Depending on the user's infrastructure, vertical scaling may involve changes to server configurations every time it scales. With horizontal scaling, Auto Scaling increases or decreases the number of instances according to the policy or the application's demand. Auto Scaling is ideally suited for applications that experience hourly, daily or weekly changes in the usage and need to automatically scale horizontally to keep up with the usage variability. One way to save on the cost of running instances in Amazon EC2 is to make use of ____ instances, which enable you to bid on unused EC2 instances, provided your workloads can withstand potential interruptions. Spot Spot instances enable you to bid on unused EC2 instances, which can lower your Amazon EC2 costs significantly. The price (per-second or per-hour) for a Spot instance (of each instance type in each Availability Zone) is set by Amazon EC2, and fluctuates depending on the supply of and demand for Spot instances. Your Spot instance runs whenever your bid exceeds the current market price. Spot instances are a cost-effective choice if you can be flexible about when your applications run and if your applications can be interrupted. Important functions of an organization's application are impaired or degraded, and you can't work around the problem, but the overall business is not affected. You decide that you need some support from AWS. You have an Enterprise Support Plan with AWS. Which of the following severity levels do you think would be an appropriate choice for this issue? Production system impaired Which statement regarding AWS regions is incorrect? Each AWS region includes an identical number of availability zones to host EC2 instances. What does the AWS best practice "designing for failure" mean? To design systems to anticipate failure and recover automatically Designing for failure essentially means adopting Murphy's Law into your design, that what can go wrong will go wrong. Design your infrastructure to respond to potential outages of multiple kinds with an automated recovery process in place. You have a time-sensitive development question and you decide that you need some support from AWS. Which of the following severity levels will be an appropriate choice for you to resolve the issue? System impaired Which of the following services should be used if you need low latency or frequent access to your data? Amazon S3 You have a general development question and you decide that you need some support from AWS. Which of the following severity levels do you think would be an appropriate choice for this issue? Guidance What is the meaning of pay-as-you-go, when related to Amazon Web Services? You have no upfront costs, but rather pay on a monthly basis, based on usage. What is Amazon CloudFront? A global content delivery network Amazon CloudFront is a global content delivery network (CDN) service that accelerates delivery of your websites, APIs, video content or other web assets through CDN caching. It integrates with other Amazon Web Services products to give developers and businesses an easy way to accelerate content to end users with no minimum usage commitments. https://aws.amazon.com/cloudfront/ Network Access Control Lists (NACLs) are _______. stateless Network ACLs are stateless; responses to allowed inbound traffic are subject to the rules for outbound traffic (and vice versa). Unlike an IAM user, an IAM role ____. is not associated with a specific person An IAM user is an identity within your AWS account that has specific custom permissions; e.g., permissions to create a cache cluster in ElastiCache. An IAM role is another IAM identity you can create in your account that has specific permissions. However, unlike an IAM user, an IAM role is not associated with a specific person. Amazon _____ monitors your AWS resources and applications that you run in AWS in real time, providing you the ability to collect and track metrics as well as setup alarms to send notifications based on rules you define. CloudWatch Amazon CloudWatch monitors your Amazon Web Services (AWS) resources and the applications you run on AWS in real time. You can use CloudWatch to collect and track metrics, which are variables you can measure for your resources and applications. CloudWatch alarms send notifications or automatically make changes to the resources you are monitoring based on rules that you define Which of the following is true of the security of your origin server in Amazon Cloudfront? You are responsible for ensuring the security of your origin server. When processing workloads on specific Amazon EC2 instances that require a higher level of durability, and the ability for an instance to quickly retrieve the data, the recommended option is to use ______________. Amazon EBS volumes How do I get rid of single point of failure in AWS?To eliminate a region as a SPOF, you use a global service like Route53 to distribute application access across multiple regions, with load balancers and autoscaling groups in each region.
Which of the following are important design principles you should adopt when designing systems on AWS?Design Principles. Implement a strong identity foundation.. Enable traceability.. Apply security at all layers.. Automate security best practices.. Protect data in transit and at rest.. Keep people away from data.. Prepare for security events.. How does AWS help to mitigate each failures in operations?AWS builds to guard against outages and incidents, and accounts for them in the design of AWS services—so when disruptions do occur, their impact on customers and the continuity of services is as minimal as possible. To avoid single points of failure, AWS minimizes interconnectedness within our global infrastructure.
Which of these architectural principles helps you to maintain good performance even if one or more components fail while architecting your cloud applications?Therefore, cloud-native architecture focuses on achieving resilience and scale though horizontal scaling, distributed processing, and automating the replacement of failed components.
|
