- (Exam Topic 1)
Which service enables customers to audit API calls in their AWS accounts?
Correct Answer:
A
AWS Audit Manager is integrated with AWS CloudTrail, a service that provides a record of actions taken by a user, role, or an AWS service in Audit Manager. CloudTrail captures all API calls for Audit Manager as events.
- (Exam Topic 1)
Which service is an AWS in-memory data store service?
Correct Answer:
D
- (Exam Topic 3)
A company needs to set up user authentication for a new application. Users must be able to sign in directly with a user name and password, or through a third-party provider.
Which AWS service should the company use to meet these requirements?
Correct Answer:
C
- (Exam Topic 3)
Which AWS services or features provide disaster recovery solutions for Amazon EC2 instances? (Select TWO.)
Correct Answer:
BC
https://docs.aws.amazon.com/whitepapers/latest/disaster-recovery-workloads-on-aws/disaster-recovery-options- You can back up Amazon EC2 instances used by your workload as Amazon Machine Images (AMIs). The AMI is created from snapshots of your instance's root volume and any other EBS volumes attached to your instance. You can use this AMI to launch a restored version of the EC2 instance
- (Exam Topic 1)
Which of the following are AWS best practice recommendations for the use of AWS Identity and Access Management (IAM)? (Select TWO.)
Correct Answer:
CE
If you do have an access key for your AWS account root user, delete it. If you must keep it, rotate (change) the access key regularly. To delete or rotate your root user access keys, go to the My Security Credentials page in the AWS Management Console and sign in with your account's email address and password. You can manage your access keys in the Access keys section. For more information about rotating access keys, see Rotating access keys.
