{

“Effect”:”Allow”, “Action”:[

“ec2:DescribeVpcs”, “ec2:DescribeSubnets”, “ec2:DescribeInternetGateways”, “ec2:DescribeCustomerGateways”, “ec2:DescribeVpnGateways”, “ec2:DescribeVpnConnections”, “ec2:DescribeRouteTables”, “ec2:DescribeAddresses”, “ec2:DescribeSecurityGroups”, “ec2:DescribeNetworkAcls”, “ec2:DescribeDhcpOptions”, “ec2:DescribeTags”, “ec2:DescribeInstances”

],

“Resource”:”*”

}

Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_IAM.html

 

 

 

 

Question: 66

What is the maximum length for an instance profile name in AWS IAM?

A.512 characters

B.128 characters

C.1024 characters

D.64 characters

 

 

 

 

Answer: B

Explanation:

The maximum length for an instance profile name is 128 characters.

Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html

 

 

 

 

Question: 67

Cognito Sync is an AWS service that you can use to synchronize user profile data across mobile devices without requiring your own backend. When the device is online, you can synchronize data. If you also set up push sync, what does it allow you to do?

A.Notify other devices that a user profile is available across multiple devices

B.Synchronize user profile data with less latency

C.Notify other devices immediately that an update is available

D.Synchronize online data faster

 

 

 

 

Answer: C

Explanation:

Cognito Sync is an AWS service that you can use to synchronize user profile data across mobile devices without requiring your own backend. When the device is online, you can synchronize data, and if you have also set up push sync, notify other devices immediately that an update is available.

Reference: http://docs.aws.amazon.com/cognito/devguide/sync/

 

 

 

 

Question: 68

An organization is planning to create a secure scalable application with AWS VPC and ELB. The organization has two instances already running and each instance has an ENI attached to it in addition to a primary network interface. The primary network interface and additional ENI both have an elastic IP attached to it.

If those instances are registered with ELB and the organization wants ELB to send data to a particular EIP of the instance, how can they achieve this?

A.The organization should ensure that the IP which is required to receive the ELB traffic is attached to a primary network interface.

B.It is not possible to attach an instance with two ENIs with ELB as it will give an IP conflict error.

C.The organization should ensure that the IP which is required to receive the ELB traffic is attached to an additional ENI.

D.It is not possible to send data to a particular IP as ELB will send to any one EIP.

 

 

 

 

Answer: A

Explanation:

Amazon Virtual Private Cloud (Amazon VPC) allows the user to define a virtual networking environment in a private, isolated section of the Amazon Web Services (AWS) cloud. The user has complete control over the virtual networking environment. Within this virtual private cloud, the user can launch AWS resources, such as an ELB, and EC2 instances. There are two ELBs available with VPC: internet facing and internal (private) ELB. For the internet facing ELB it is required that the ELB should be in a public subnet.

When the user registers a multi-homed instance (an instance that has an Elastic Network Interface (ENI) attached) with a load balancer, the load balancer will route the traffic to the IP address of the primary network interface (eth0).

Reference: http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/gs- ec2VPC.html

 

 

 

 

Question: 69

In Amazon Cognito, your mobile app authenticates with the Identity Provider (IdP) using the provider’s SDK. Once the end user is authenticated with the IdP, the OAuth or OpenID Connect token returned from the IdP is passed by your app to Amazon Cognito, which returns a new

for the user and a set of temporary, limited-privilege AWS credentials.

A.Cognito Key Pair

B.Cognito API

C.Cognito ID

D.Cognito SDK

 

 

 

 

 

Answer: C Explanation:

Your mobile app authenticates with the identity provider (IdP) using the provider’s SDK. Once the end user is authenticated with the IdP, the OAuth or OpenID Connect token returned from the IdP is passed by your app to Amazon Cognito, which returns a new Cognito ID for the user and a set of temporary, limited-privilege AWS credentials.

Reference: http://aws.amazon.com/cognito/faqs/

 

 

 

 

Question: 70

What is the maximum length for a certificate ID in AWS IAM?

A.1024 characters

B.512 characters

C.64 characters

D.128 characters

 

 

 

 

Answer: D Explanation:

The maximum length for a certificate ID is 128 characters.

Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html

 

 

发表评论

电子邮件地址不会被公开。 必填项已用*标注

error: Content is protected !!