Interactive practice set

Pick the best answer for each scenario. When you submit, you’ll get a percentage score plus rationales for every question.

    Answer key with rationales
    1. Enable S3 Transfer Acceleration on the destination bucket and upload with multipart transfers.
      Transfer Acceleration uses edge locations to speed long-distance uploads with almost no operational work.
    2. Query the data in place with Amazon Athena.
      Athena runs ad hoc SQL directly on S3 without extra ingestion or infrastructure.
    3. Add the aws:PrincipalOrgID condition to the bucket policy.
      The org ID condition key replaces long account ID lists and auto-covers all member accounts.
    4. Create a gateway VPC endpoint for S3.
      The gateway endpoint keeps S3 traffic on the AWS network without NAT or an internet gateway.
    5. Move the document store to Amazon EFS and have the app read/write there.
      EFS is a shared, multi-AZ file system both instances can access simultaneously.
    6. Create an AWS Snowball Edge job, copy the data to the device, return it for import to S3.
      Snowball Edge avoids network saturation and moves large datasets quickly.
    7. Publish to an Amazon SNS topic with multiple Amazon SQS subscriptions; have consumers read from their queues.
      SNS handles fan-out and SQS buffers bursts so consumers scale independently.
    8. Send jobs to an Amazon SQS queue and process with EC2 instances in an Auto Scaling group that scales on queue depth.
      SQS decouples dispatch and workers; Auto Scaling matches capacity to backlog.
    9. Use an S3 File Gateway and apply an S3 Lifecycle policy to transition objects to S3 Glacier Deep Archive after 7 days.
      File Gateway extends storage to S3 and lifecycle rules manage cold data cost-effectively.
    10. Integrate API Gateway with an SQS FIFO queue and trigger a Lambda function from that queue.
      FIFO queues enforce ordered, exactly-once processing.
    11. Store credentials in AWS Secrets Manager, attach an IAM role to instances, and enable automatic rotation.
      Secrets Manager centralizes and rotates DB credentials with least ops effort.
    12. Create a CloudFront distribution with the S3 bucket and ALB as origins; point Route 53 to the distribution.
      CloudFront accelerates both origins and Route 53 directs traffic to the nearest edge.
    13. Store credentials as secrets in AWS Secrets Manager, enable multi-Region secret replication, and schedule rotation.
      Secrets Manager automates rotation and keeps copies synced across Regions.
    14. Use Amazon Aurora MySQL with a Multi-AZ deployment and configure Aurora Auto Scaling with Aurora Replicas.
      Aurora provides managed replication and elastic reader capacity across AZs.
    15. AWS Network Firewall with rule groups for inspection and filtering.
      Network Firewall delivers managed, stateful traffic filtering at the VPC edge.
    16. Build analyses in Amazon QuickSight using datasets from both sources; publish dashboards and share with appropriate users/groups.
      QuickSight unifies sources and supports fine-grained access control.