Knowledge CheckModule 05

Quiz: Module 05: IAM - Roles & Federation

Test your understanding of the concepts covered in this module.

50 questions

  1. Question 1. Which of the following best describes how Amazon S3 stores data?

  2. Question 2. True or False: S3 bucket names must be globally unique across all AWS accounts and all Regions within a partition.

  3. Question 3. A developer creates a bucket named `my-app-data` in `us-east-1`. Another developer in a different AWS account tries to create a bucket with the same name in `eu-west-1`. What happens?

  4. Question 4. Which of the following are true about S3 objects? (Select TWO.)Select multiple

  5. Question 5. A company stores product images in S3 at the path `s3://catalog-bucket/images/products/shoe.jpg`. What is the key for this object?

  6. Question 6. Which S3 storage class is designed for frequently accessed data and provides the highest availability?

  7. Question 7. A data analytics team has a data lake with unpredictable access patterns. Some datasets are queried daily while others go months without being accessed. The team wants to minimize costs without managing storage class transitions manually. Which storage class is the best fit?

  8. Question 8. Which of the following S3 storage classes stores data in only a single Availability Zone?

  9. Question 9. A hospital needs to archive patient imaging records that are rarely accessed but must be retrievable within milliseconds when needed. Which S3 storage class is the best choice?

  10. Question 10. Match the retrieval time to the correct Glacier storage class. Which class has a standard retrieval time of up to 12 hours and a bulk retrieval time of up to 48 hours?

  11. Question 11. Which of the following statements about S3 storage class minimum storage durations are correct? (Select TWO.)Select multiple

  12. Question 12. True or False: All S3 storage classes provide the same 99.999999999% (eleven nines) durability.

  13. Question 13. What happens when you enable versioning on an S3 bucket and then upload a new file with the same key as an existing object?

  14. Question 14. A bucket has versioning enabled. A user deletes an object without specifying a version ID. What happens?

  15. Question 15. True or False: Once versioning is enabled on an S3 bucket, you can return the bucket to the unversioned state by disabling versioning.

  16. Question 16. Which of the following statements about MFA Delete is correct?

  17. Question 17. A company stores log files in S3 Standard. Logs are accessed frequently for the first 30 days, occasionally for the next 60 days, and never after 365 days. The company wants to minimize costs automatically. Which approach should they use?

  18. Question 18. Which of the following are valid S3 Lifecycle transition paths? (Select TWO.)Select multiple

  19. Question 19. A Lifecycle rule is configured to transition objects with the prefix `reports/` from S3 Standard to S3 Standard-IA after 30 days. An object `reports/q1-summary.pdf` was uploaded 45 days ago. What is the current storage class of this object?

  20. Question 20. True or False: You can use an S3 Lifecycle rule to transition objects from S3 Glacier Deep Archive back to S3 Standard.

  21. Question 21. In your own words, explain the difference between Lifecycle transition actions and Lifecycle expiration actions. Give an example of when you would use each.

    Free-response questions are self-assessed. Compare your answer with the sample response.

  22. Question 22. Which S3 server-side encryption method is applied by default to all new objects as of January 2023?

  23. Question 23. A financial services company needs an audit trail of every encryption key usage for regulatory compliance. Which S3 encryption method should they choose?

  24. Question 24. Which S3 encryption method requires the customer to provide the encryption key with every PUT and GET request, and does not store the key on the AWS side?

  25. Question 25. True or False: With SSE-C, if you lose the customer-provided encryption key, AWS can recover the key from its internal key store.

  26. Question 26. A developer wants to encrypt data before uploading it to S3 so that S3 never has access to the unencrypted data or the encryption key. Which approach should they use?

  27. Question 27. Which protocol does S3 use to encrypt data in transit?

  28. Question 28. Which of the following is a resource-based policy that you attach directly to an S3 bucket to control access?

  29. Question 29. A company wants to grant a partner AWS account read access to objects in a specific S3 bucket. Which access control mechanism is most appropriate?

  30. Question 30. What is the purpose of S3 Block Public Access?

  31. Question 31. Which of the following are settings provided by S3 Block Public Access? (Select TWO.)Select multiple

  32. Question 32. True or False: As of April 2023, new S3 buckets have ACLs disabled by default with the "Bucket owner enforced" setting.

  33. Question 33. A large organization has a shared data lake bucket accessed by multiple teams. Each team needs different permissions scoped to different prefixes. Instead of writing one complex bucket policy, what S3 feature can simplify access management?

  34. Question 34. To host a static website on S3, which of the following steps are required? (Select THREE.)Select multiple

  35. Question 35. What is the format of an S3 static website endpoint URL?

  36. Question 36. True or False: S3 static website endpoints support HTTPS natively without any additional AWS services.

  37. Question 37. A company wants to serve its S3-hosted static website over HTTPS with a custom domain name. Which AWS service should they place in front of the S3 bucket?

  38. Question 38. A media company needs to upload large video files (2 GB each) from offices in Tokyo to an S3 bucket in `us-east-1`. Uploads over the public internet are slow. Which S3 feature can improve upload performance?

  39. Question 39. For objects larger than 100 MB, AWS recommends using which upload method to improve performance and reliability?

  40. Question 40. Which of the following are valid targets for S3 event notifications? (Select THREE.)Select multiple

  41. Question 41. A company wants to automatically generate thumbnails whenever a new image is uploaded to an S3 bucket. Which combination of S3 features and AWS services should they use?

  42. Question 42. Which of the following are prerequisites for enabling S3 Cross-Region Replication (CRR)? (Select TWO.)Select multiple

  43. Question 43. True or False: S3 Same-Region Replication (SRR) does not require versioning to be enabled on the source and destination buckets.

  44. Question 44. A multinational company needs to replicate S3 data from `us-east-1` to `eu-west-1` for compliance with EU data residency requirements and to reduce latency for European users. Which S3 feature should they use?

  45. Question 45. A healthcare organization must store patient records in S3 with a retention policy that prevents any user, including the root account, from deleting or overwriting the records for seven years. Which S3 feature should they use?

  46. Question 46. What is the difference between S3 Object Lock Governance mode and Compliance mode?

  47. Question 47. In your own words, explain two key differences between Amazon S3 and Amazon EBS. Include a use case where each service is the better choice.

    Free-response questions are self-assessed. Compare your answer with the sample response.

  48. Question 48. Which of the following correctly describes a difference between Amazon S3 and Amazon EFS?

  49. Question 49. A solutions architect is designing a system that requires block-level storage with low-latency access for a database running on an EC2 instance. Which AWS storage service should they choose?

  50. Question 50. A company stores 50 TB of data in S3 Standard. Analysis shows that 80% of the data has not been accessed in over 90 days, but the company cannot predict which specific objects will be accessed next. The remaining 20% is accessed daily. The company wants to reduce storage costs without impacting access to frequently used data. Which approach best meets these requirements? (Select TWO.)Select multiple