Who has the responsibility to patch the host operating system of an Amazon EC2 instance, according to the AWS shared responsibility model?
Both AWS and the customer
The customer only Most Voted
The EC2 hardware manufacturer
AWS only
Answer is AWS only
Amazon EC2 provides a flexible compute service with a wide variety of virtual machines and bare metal instance types.
AWS is responsible for operating all levels up to hypervisor and host OS, giving you full access and control over the guest operating system. AWS also provides tools, features, and services that enable you to create a fully automated and self-managing infrastructure, such as AWS Auto Scaling and AWS Systems Manager.
A company is using an Amazon RDS DB instance for an application that is deployed in the AWS Cloud. The company needs regular patching of the operating system of the server where the DB instance runs.
What is the company's responsibility in this situation, according to the AWS shared responsibility model?
Open a support case to obtain administrative access to the server so that the company can patch the DB instance operating system.
Open a support case and request that AWS patch the DB instance operating system.
Use administrative access to the server, and apply the operating system patches during the regular maintenance window that is defined for the DB instance.
Establish a regular maintenance window that tells AWS when to patch the DB instance operating system.
Answer is Establish a regular maintenance window that tells AWS when to patch the DB instance operating system.
The Amazon RDS maintenance window
Every DB instance has a weekly maintenance window during which any system changes are applied. Think of the maintenance window as an opportunity to control when modifications and software patching occur.
Some maintenance items require that Amazon RDS take your DB instance offline for a short time. Maintenance items that require a resource to be offline include required operating system or database patching. Required patching is automatically scheduled only for patches that are related to security and instance reliability. Such patching occurs infrequently (typically once every few months) and seldom requires more than a fraction of your maintenance window.
Under the AWS shared responsibility model, which task is the customer's responsibility when managing AWS Lambda functions?
Creating versions of Lambda functions
Maintaining server and operating systems
Scaling Lambda resources according to demand
Updating the Lambda runtime environment
Answer is Creating versions of Lambda functions
Lambda provides support for these runtimes by continuously scanning for and deploying compatible updates and security patches, and by performing other runtime maintenance activity. This enables customers to focus on just the maintenance and security of any code included in their Function and Layer. You can create different versions to run on different EC2 instances to compare and contrast. You enable the versioning option. You delete the latest version if it has issues.
Which of the following is a benefit of moving from an on-premises data center to the AWS Cloud?
Compute instances can be launched and terminated as needed to optimize costs.
Compute costs can be viewed in the AWS Billing and Cost Management console.
Users retain full administrative access to their compute instances.
Users can optimize costs by permanently running enough instances at peak load.
Answer is Compute instances can be launched and terminated as needed to optimize costs.
Question 56
How does the AWS global infrastructure offer high availability and fault tolerance to its users?
The AWS infrastructure is made up of multiple AWS Regions within various Availability Zones located in areas that have low flood risk, and are interconnected with low-latency networks and redundant power supplies.
The AWS infrastructure consists of subnets containing various Availability Zones with multiple data centers located in the same geographic location.
AWS allows users to choose AWS Regions and data centers so that users can select the closest data centers in different Regions.
The AWS infrastructure consists of isolated AWS Regions with independent Availability Zones that are connected with low-latency networking and redundant power supplies.
Answer is The AWS infrastructure consists of isolated AWS Regions with independent Availability Zones that are connected with low-latency networking and redundant power supplies.
AWS achieves high availability and fault tolerance through its global infrastructure, which is designed to provide resiliency and minimize downtime. The infrastructure is built using isolated AWS Regions, which are separate geographic areas with their own set of data centers. Each Region consists of multiple Availability Zones, which are physically separate and isolated from each other. Availability Zones are equipped with redundant power supplies, networking, and cooling systems to ensure high availability.
By deploying resources across multiple Availability Zones within a Region, users can achieve fault tolerance and protect their applications from single points of failure. The low-latency networking between Availability Zones allows for fast and reliable communication between resources.
A: AWS Regions within various Availability Zones. "within"
Availability Zones are distinct locations within an AWS Region that are engineered to be isolated from failures in other Availability Zones.
D: AWS Regions with independent Availability Zones."With"
Question 57
A company is using Amazon EC2 Auto Scaling to scale its Amazon EC2 instances.
Which benefit of the AWS Cloud does this example illustrate?
High availability
Elasticity
Reliability
Global reach
Answer is Elasticity
Auto scaling means elasticity.
Using Amazon EC2 Auto Scaling to scale Amazon EC2 instances illustrates the benefit of elasticity in the AWS Cloud. Elasticity refers to the ability to automatically provision and de-provision compute resources as needed to handle changes in workload demand.
With Amazon EC2 Auto Scaling, the number of Amazon EC2 instances can be scaled up or down automatically based on the actual demand for resources. This ensures that the application can handle changes in traffic and workload without downtime or manual intervention.
High availability refers to the ability of an application or service to remain available even in the event of failures. Reliability refers to the ability of an application or service to function as expected over time. Global reach refers to the ability of an application or service to be accessed from anywhere in the world. While these are all important benefits of the AWS Cloud, the example given specifically illustrates elasticity.
Question 58
According to the AWS shared responsibility model, which task is the customer's responsibility?
Maintaining the infrastructure needed to run AWS Lambda
Updating the operating system of Amazon DynamoDB instances
Maintaining Amazon S3 infrastructure
Updating the guest operating system on Amazon EC2 instances
Answer is Updating the guest operating system on Amazon EC2 instances
According to the AWS shared responsibility model, updating the guest operating system on an Amazon EC2 instance is the customer's responsibility. Therefore, the correct answer is D.
AWS is responsible for the security of the cloud infrastructure, including the physical security of the data centers, the security of the hypervisor, and the security of the networking and storage infrastructure. However, the customer is responsible for the security of their own applications and data, including the guest operating system and any applications running on it.
Other tasks that are the customer's responsibility include securing access to AWS services and resources, configuring network security groups and firewalls, managing user access and permissions, and implementing security controls at the application layer.
Maintenance of AWS services such as AWS Lambda, Amazon DynamoDB, and Amazon S3 is the responsibility of AWS, not the customer.
Which design principle is achieved by following the reliability pillar of the AWS Well-Architected Framework?
Vertical scaling
Manual failure recovery
Testing recovery procedures
Changing infrastructure manually
Answer is Testing recovery procedures
The reliability pillar focuses on ensuring that a workload operates continuously and reliably, even in the face of failures. It emphasizes the implementation of mechanisms to automatically recover from failures, such as using redundancy, fault tolerance, and automated backup and restore processes.
As part of this pillar, it is important to test recovery procedures regularly to validate their effectiveness and ensure they function as expected during actual failure scenarios. By conducting regular testing and simulations, organizations can identify and address any issues or gaps in their recovery procedures, improving the overall reliability of their workload.
Which task is an AWS responsibility when a workload is running in Amazon RDS?
Creating the database table
Updating the database schema
Installing the database engine
Dropping the database records
Answer is Installing the database engine
Amazon RDS takes care of the underlying infrastructure and manages the installation, configuration, and patching of the database engine. Users can focus on managing their databases, including creating tables, updating the schema, and managing the data, while AWS handles the database engine administration.