AWS Cloud Engineer - Basics Quiz
← Back to Quiz Home
This quiz covers fundamental AWS concepts, core services (EC2, S3, IAM), and global infrastructure.
What is a Region in AWS terms?
AWS Regions are separate geographic areas (like us-east-1, eu-west-1) that contain multiple isolated locations known as Availability Zones.
What is an Availability Zone (AZ)?
AZs are physical data centers within a Region. They are isolated from each other to prevent failures from spreading.
Which service provides resizable compute capacity in the cloud?
EC2 provides virtual servers (instances) that you can launch, configure, and manage.
S3 is an object storage service designed to store and retrieve any amount of data from anywhere.
Which IAM entity represents a person or application that interacts with AWS?
An IAM User represents a specific person or service that uses permanent credentials (password or access keys).
What is the primary function of IAM Roles?
Roles deal with temporary credentials. An EC2 instance or a Lambda function can "assume" a role to access resources securely.
What is the root user in AWS?
The root user is the account owner and has unrestricted access. It is best practice to secure it with MFA and rarely use it.
Which service is used to create a logically isolated network in the AWS cloud?
VPC lets you provision a private network where you can launch AWS resources in a virtual network that you define.
Classless Inter-Domain Routing (CIDR) blocks define the IP address range for your VPCs and Subnets.
Which AWS service is used for Content Delivery Network (CDN) to reduce latency?
CloudFront caches content at Edge Locations around the world to deliver data to users with lower latency.
What is the difference between a Public Subnet and a Private Subnet?
Routing to an Internet Gateway (IGW) makes a subnet "public," allowing resources to be accessible from the internet.
Which component allows an EC2 instance in a private subnet to access the internet for updates (download only)?
A NAT Gateway allows instances in a private subnet to connect to the internet (outbound) but prevents the internet from connecting to them (inbound).
What acts as a virtual firewall for your EC2 instances?
Security Groups are stateful firewalls that control inbound and outbound traffic at the instance level.
Which storage service is block-based and typically attached to EC2 instances?
EBS provides block-level storage volumes for use with EC2 instances, acting like a hard drive.
What is the default behavior of a Security Group?
By default, security groups block all incoming traffic (implicit deny) but allow all outgoing traffic.
Which service is a managed relational database service?
RDS makes it easy to set up, operate, and scale a relational database (MySQL, PostgreSQL, Oracle, etc.) in the cloud.
What is the pricing model for EC2 On-Demand instances?
On-Demand is the most flexible option, ideal for short-term, irregular workloads.
Which service allows you to run code without provisioning or managing servers?
Lambda is a serverless compute service that runs your code in response to events.
What is an Edge Location?
Edge Locations are separate from Regions and AZs, specifically designed for low-latency content delivery.
Which IAM policy document format is used to define permissions?
Access control policies in IAM are written in JSON (JavaScript Object Notation).
Quiz Progress
0 / 0 questions answered
(0%)
0 correct
Quiz Complete!
0%
📚 Study Guides
📬 Weekly DevOps, Cloud & Gen AI quizzes & guides