CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-Certified-Advanced-Networking-Specialty

Free AWS-Certified-Advanced-Networking-Specialty Exam Braindumps (page: 30)

Page 30 of 102
PDF with 407 Questions

You can use the __________page of the AWS Config console to look up resources that AWS Config has discovered,including deleted resources and resources that are not currently being recorded.

  1. snapshot listing
  2. configuration history
  3. resource inventory
  4. resource database

Answer(s): C

Explanation:

You can use the AWS Config console, AWS CLI, and AWS Config API to look up the resources that AWS Config has taken an inventory of, or discovered, including deleted resources and resources that AWS Config is not currently recording. AWS Config discovers supported resource types only. You can use the AWS Config console in the AWS Management console to look up these resources. The Resource Inventory page lets you perform this search.


Reference:

http://docs.aws.amazon.com/config/latest/developerguide/looking-up-discovered-resources.html



An AWS Config rule can be set to be evaluated if a certain set of resources undergoes a configuration change. The set of resources to which the rule applies can be restricted by the rule's __________, which can include a combination of a resource type and a resource ID, for example.

  1. trigger
  2. domain
  3. manifest
  4. scope

Answer(s): D

Explanation:

When you add an AWS Config rule to your account, you can specify when you want AWS Config to run the rule; this is called a trigger. AWS Config evaluates your resource configurations against the rule when the trigger occurs. You choose which resources trigger the evaluation by defining the rule's scope. The scope can include the following:

One or more resource types
A combination of a resource type and a resource ID A combination of a tag key and value.

When any recorded resource is created, updated, or deleted AWS Config runs the evaluation when it detects a change to a resource that matches the rule's scope. You can use the scope to constrain which resources trigger evaluations. Otherwise, evaluations are triggered when any recorded resource changes.


Reference:

http://docs.aws.amazon.com/config/latest/developerguide/evaluate-config-rules.html



Which other AWS service is used to track `Related Events' within the Configuration Item?

  1. AWS WAF
  2. SQS
  3. AWS CloudTrail
  4. S3

Answer(s): C

Explanation:

`Related Events' displays the AWS CloudTrail event ID that is related to the change that triggered the creation of the CI. There is a new CI made for every change made against a resource. As a result a different CloudTrail event IDs will be created. This allows you you to deep-dive into who or what and when made the change that triggered this CI. A great feature allowing for some great analysis to be taken, specifically when this affects security resources.


Reference:

http://docs.aws.amazon.com/config/latest/developerguide/resource-config-reference.html#config-item-table



Non-compliant resources identified through the use of AWS Config Rules are automatically removed from operational service.

  1. It depends on the Rule configuration
  2. Only if it remains non-compliant for more than 6 hours
  3. True
  4. False

Answer(s): D

Explanation:

Each time a change is made to one of your supported resources, AWS config will check its compliance against any Config Rules that you have in place. If there is a violation against these rules then AWS Config will send a message to the Configuration Stream via SNS and the resource will be marked as `noncompliant'.

It's important to note that this does not mean the resource will be taken out of service or it will stop working. It will continue to operate exactly as it is with its new configuration. AWS Config simply alerts you that there is a violation and it's up to you to take the appropriate action.


Reference:

http://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_view-compliance.html



Page 30 of 102



Post your Comments and Discuss Amazon AWS-Certified-Advanced-Networking-Specialty exam with other Community members:

Hello commented on September 04, 2024
awesome questions
Anonymous
upvote

Meenakshi commented on June 06, 2024
One of the best exam dumps site I have ever used. I have passed 3 of my exams with the help of this website.
INDIA
upvote