问题
13:
正确
Access
Key
ID
and
Secret
Access
Key
are
tied
to
which
of the
following
AWS
Identity
and
Access
Management
(AWS
IAM)
entities?
IAM
Policy
IAM
Role
IAM
User
Group
IAM
User
(正确)
注解
Correct
option:
IAM
User
Access
keys
are
long-term
credentials
for
an
IAM
user
or
the
AWS
account
root
user.
You
can use
access
keys
to
sign
programmatic
requests
to
the
AWS
CLI
or
AWS
API
(directly
or
using
the
AWS
SDK).
Access
keys
consist
of
two
parts:
an
access
key
ID
(for
example,
AKIAIOSFODNN7EXAMPLE)
and
a
secret
access
key
(for
example,
wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY).
As
a
user
name
and
password,
you
must
use
both
the
access
key
ID
and
secret
access
key
together
to
authenticate
your
requests.
Access
Keys
are
secret,
just
like
a
password.
You
should
never share
them.
Incorrect
options:
IAM
Role
-
An
IAM
role
is
similar
to
an
IAM
user,
in
that
it is an
AWS
identity
with
permission
policies
that
determine
what
the identity
can
and
cannot
do
in
AWS.
However,
instead
of
being
uniquely
associated
with
one person,
a
role
is
intended
to
be
assumable
by
anyone
who
needs
it.
IAM
User
Group
-
An
IAM
User
Group
is a
collection
of
IAM
users.
Groups
let
you specify
permissions
for
multiple
users,
which
can
make
it
easier
to
manage
the
permissions
for
those
users.
IAM
Policy
-
You
manage
access
in
AWS
by
creating
policies
and
attaching
them
to
IAM
identities
(users,
groups
of
users,
or
roles)
or
AWS
resources.
A
policy is an
object
in
AWS
that,
when
associated
with
an identity
or
resource,
defines
their
permissions.
Access
keys
are
not
tied
to
the
IAM
role,
IAM
group,
or
AWS
policy.
So
all
three
options
are
incorrect.
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html
问题
14:
正确
Which
Amazon
Elastic
Compute
Cloud
(Amazon
EC2)
pricing
model
is the
most
cost-
effective
and
flexible
with
no
requirement
for
a
long
term
resource
commitment
or
upfront
payment
but still
guarantees
that
instance
would
not
be
interrupted?
Spot Instance
On-demand
Instance
(正确)
Reserved
Instance
(RI)
Dedicated
Host
注解
Correct
option:
On-demand
Instance
-
An
On-Demand
Instance
is an
instance
that
you use
on-demand.
You
have
full
control
over
its
lifecycle
—
you
decide
when
to
launch,
stop,
hibernate,
start,
reboot,
or
terminate
it.
There
is no
long-term
commitment
required
when
you
purchase
On-Demand
Instances.
There
is no
upfront
payment
and
you pay
only
for
the
seconds
that
your
On-Demand
Instances
are
running.
The
price per
second
for
running
an
On-
Demand
Instance
is
fixed.
On-demand
instances
cannot
be
interrupted.
EC2
Pricing
Options
Overview:
via
-
https://aws.amazon.com/ec2/pricing/
Incorrect
options:
Reserved
Instance
(RI)
-
Reserved
Instance
(RI)
provides
you
with significant
savings
on
your
Amazon
EC2
costs
compared
to
On-Demand
Instance
pricing.
Reserved
Instances
(RI)
are
not
physical
instances,
but
rather
a
billing
discount
applied
to
the
use
of
On-
Demand
Instances
in
your
account.
You
can
purchase
a
Reserved
Instance
(RI) for
a
one-
year
or
three-year
commitment,
with
the
three-year
commitment
offering
a
bigger
discount.
You
will
be
charged
for
the entire
duration, irrespective
of
your
usage.
So
this
剩余47页未读,继续阅读
