AWS S3 Quiz – 2
Question 1: Which S3 feature can be used to avoid content scraping and provide secure access to your S3 objects?
Option 1: MFA Delete Protection
Option 2: DENY Content Scraping settings at the bucket level
Option 3: DENY Content Scraping settings at the object level
Option 4: Pre Signed URLs. Also called Query String Authentication.
Answer: Option 4: Pre Signed URLs. Also called Query String Authentication.
Reference
Question 2: Which Amazon S3 capability uses Amazon CloudFront and enables fast uploads for objects?
Option 1: Multipart upload
Option 2: Cross region replication(CRR)
Option 3: BitTorrent
Option 4: Transfer Acceleration
Answer: Option 4: Transfer Acceleration
Reference
Question 3: What is the maximum number of vaults and AWS account can create in a region?
Option 1: 1
Option 2: 10
Option 3: 100
Option 4: 1000
Answer: Option 4: 1000
Reference
Question 4: Which S3 feature protects objects from being deleted?
Option 1: Amazon S3 Object Lock
Option 2: Versioning
Option 3: Tagging
Option 4: Cross region replication
Answer: Option 1: Amazon S3 Object Lock
Reference
Question 5: What type of consistency model is provided in Amazon S3 when you upload a new version of an object?
Option 1: Strong read after write consistency
Option 2: Eventual consistency
Answer: Option 1: Strong read after write consistency
Reference
Question 6: Which S3 feature allows you to move files between different S3 Storage Classes?
Option 1: S3 Life Cycle Configuration
Option 2: S3 Cross region replication
Option 3: S3 Bucket Policy
Option 4: S3 Object Policy
Answer: Option 1: S3 Life Cycle Configuration
Reference
Question 7: TRUE or FALSE – ACLs are primarily used to grant permissions to the public and other AWS accounts
Option 1: TRUE
Option 2: FALSE
Answer: Option 1: TRUE
Reference
Question 8: With Expedited Retrieval in S3 Glacier, an object can be retrieved in
Option 1: 10-100 ms
Option 2: 10-20 mins
Option 3: 1-2 hours
Option 4: 1-5 minutes
Answer: Option 4: 1-5 minutes
Reference
Question 9: Which type Amazon storage service uses standards-based REST web interfaces to manage objects?
Option 1: Amazon Elastic File System(EFS)
Option 2: Amazon Elastic Block Store (EBS)
Option 3: Amazon Simple Storage Service (S3)
Option 4: Amazon FSx for Windows File Server
Answer: Option 3: Amazon Simple Storage Service (S3)
Reference
Question 10: You are updating an already existing object in S3 using PUT. When you read again immediately, you are getting the old file. What could be the reason?
Option 1: S3 can be down some times and your PUT is not successful
Option 2: S3 is eventually consistent. PUT for old objects is sometimes not replicated to all locations immediately and this could result in getting an old copy of the data.
Option 3: S3 is READ AFTER WRITE consistency for old objects so it is a bug in S3
Answer: Option 2: S3 is eventually consistent. PUT for old objects is sometimes not replicated to all locations immediately and this could result in getting an old copy of the data.
Reference
Question 11: Which of the following is NOT correct in regard to Bucket Policies?
Option 1: Bucket policies are resource-based policies
Option 2: They are a subset of IAM policies
Option 3: They can only be attached to Amazon S3 buckets
Option 4: They use the AWS access policy langauge.
Answer: Option 2: They are a subset of IAM policies
Reference
Question 12: What can you implement to provide storage-based security for S3 objects?
Option 1: VPN
Option 2: IPSec
Option 3: L2TP
Option 4: Encryption
Answer: Option 4: Encryption
Reference
Question 13: How many tags can an S3 object have assigned to it?
Option 1: 1
Option 2: 5
Option 3: 10
Option 4: 20
Answer: Option 3: 10
Reference
Question 14: You are using S3 to store your archive files. We will have a 20-hour notice when we need anything from the archive files. Which storage class would you recommend to keep costs at a minimum?
Option 1: S3 Standard
Option 2: S3 Glacier
Option 3: S3 Glacier Deep Archive
Option 4: S3 Standard – IA
Answer: Option 3: S3 Glacier Deep Archive
Reference
Question 15: Which of these is NOT a valid destination for an S3 Event?
Option 1: SNS Topic
Option 2: SQS Queue
Option 3: Lambda function
Option 4: CloudWatch alarm
Answer: Option 4: CloudWatch alarm
Reference
Question 16: Which of the below CANNOT be configured at an individual object level?
Option 1: Storage class
Option 2: Encryption
Option 3: Object ACL’s
Option 4: Versioning
Answer: Option 4: Versioning
Reference
Question 17: What is the maximum file size allowed in Amazon S3?
Option 1: 5 terabytes
Option 2: 0 bytes
Option 3: 5 gigabytes
Option 4: Unlimited
Answer: Option 1: 5 terabytes
Reference
Question 18: What kind of storage gateway provides connectivity between on-premises storage and S3 buckets?
Option 1: No such gateway exists
Option 2: Tape Gateway
Option 3: Volume Gateway
Option 4: File Gateway
Answer: Option 4: File Gateway
Reference
Question 19: What is the expected recovery windows for a Glacier restore with standard access?
Option 1: 3-5 hours
Option 2: 3-5 minutes
Option 3: 5-12 hours
Option 4: Immediate
Answer: Option 1: 3-5 hours
Reference
Question 20: When you create a folder in an S3 bucket, what is actually created?
Option 1: Folder
Option 2: Prefix
Option 3: Directory
Option 4: Volume
Answer: Option 2: Prefix
Reference
Question 21: In an intelligent tiering configuration, between how many tiers can the system automatically move data?
Option 1: 2
Option 2: 3
Option 3: 4
Option 4: Unlimited
Answer: Option 1: 2
Reference
Question 22: What are tags?
Option 1: Key-Value pairs applied to S3 objects.
Option 2: Tagars are version numbers added to S3 when Versioning is enabled.
Option 3: Tags are secure keys added to S3 buckets.
Answer: Option 1: Key-Value pairs applied to S3 objects.
Reference
Question 23: What object property defines the performance you will get when reading and writing to the object?
Option 1: Tags
Option 2: Metadata
Option 3: Encryption
Option 4: Storage class
Answer: Option 4: Storage class
Reference
Question 24: A US based organization is concerned about uploading data to Amazon S3 as data sovereignty rules mean they cannot move their data outside of the US. What would you tell them?
Option 1: Data never leaves a region unless specifically configured to do so.
Option 2: Data will be replicated globally so they cannot use Amazon S3.
Answer: Option 1: Data never leaves a region unless specifically configured to do so.
Reference
Question 25: What is the primary benefit of storing virtual tapes in S3 Glacier Deep Archive?
Option 1: Reduced Cost
Option 2: Incresed access speed
Option 3: Decreased access speed
Option 4: Improved Security
Answer: Option 1: Reduced Cost
Reference
Question 26: How can you create a hierarchy that mimics a filesystem in Amazon S3?
Option 1: Create buckets within other buckets
Option 2: Use folders in your buckets.
Option 3: Upload objects within other objects
Option 4: Use lifecycle rules to tier your data.
Answer: Option 2: Use folders in your buckets.
Reference
Question 27: For compliance reasons, an organization needs to retain data for 7 years. If they need to retrieve data, they have 24 hours to do so. Which Amazon S3 storage class is most cost-effective?
Option 1: Amazon S3 One-Zone IA
Option 2: Amazon S3 Intelligent Tiering
Option 3: Amazon S3 Glacier
Option 4: Amazon S3 Glacier Deep Archive
Answer: Option 4: Amazon S3 Glacier Deep Archive
Reference
Question 28: TRUE or FALSE – Cross-Region Replication can be enabled only when versioning is enabled on Source and Destination Buckets
Option 1: TRUE
Option 2: FALSE
Answer: Option 1: TRUE
Reference
Question 29: What should you configure on S3 objects to limit the users who can access them?
Option 1: Security parameters
Option 2: Tags
Option 3: Descriptions
Option 4: Encryption
Answer: Option 1: Security parameters
Reference
