AWS Cloud Practioner Exam Q17 to Q19

Transcript

00:00under the so we are going to resume our AWS practice exam for cloud practitioner

00:07AWS certificate so let's start with the 17th question under the shared AWS

00:12shared responsibility mental which security responsibility is always that

00:16of the customer physical security of data center no management of the

00:21underlining cloud infrastructure no security in the cloud yes and the

00:28security of the cloud no security in the cloud patching the guest operating system

00:34so what is guest operating system any operating system which is licensed and

00:38which you have installed on AWS environment which we have taken license

00:42from outside is called guests so basically yes maintaining the security in

00:46the cloud is AWS customer responsibility moving to 18th question when running an

00:52AWS RDS instance which task becomes an AWS responsibility compared to a

00:57running database EC2 so the answer for this is defining the database security

01:02group no managing the database credentials and users no patching the database

01:07engines and operating system yes managing the application no so C is the correct

01:12answer yes C the responsibility shift depending on the service for AWS RDS yes

01:21yes that is the responsibility of AWS so which two methods are recommended for

01:28protecting the AWS account root user creating an IEM group for the root user

01:34strong complex password B yes enabling multi-factor authentication yes using cross

01:43account IEM rules no E deleting no B and C so B and C is the correct answer

01:50protecting the root user account involves the following security based

01:54practices the security principle states users or services should only be granted the

02:04minimum permissions necessary

02:09ah

02:12uh

02:13uh

02:14uh

02:15uh

02:16uh

02:18uh

02:19uh

02:20uh

02:22uh

02:26uh

02:30uh

02:31uh

02:32uh

02:33uh