Amazon AWS

AWS Certified AI Practitioner

AIF-C01

The AWS Certified AI Practitioner (AIF-C01) exam validates your ability to understand and use AI services on AWS. It is ideal for individuals looking to demonstrate their knowledge of AI concepts and AWS services.

504 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 411–420 of 504

Q411

What happens when an IAM policy explicitly denies access, but another grants it?

  • A Access is granted
  • B Access is explicitly denied
  • C Access is evaluated neutral
  • D Access is granted if allowed earlier
Explanation In AWS IAM, explicit denies take precedence over allows, enforcing security.
Q412

Which service is best for deploying machine learning models at scale?

  • A Amazon SageMaker
  • B AWS Glue
  • C Amazon RDS
  • D AWS CloudFormation
Explanation Amazon SageMaker is designed specifically for deploying machine learning models, while the others serve different purposes.
Q413

You are configuring an AWS Lambda function triggered by an S3 upload. What happens when the Lambda function encounters an error?

  • A Lambda retries automatically
  • B The upload fails
  • C Lambda logs the error only
  • D Function runs without executing
Explanation AWS Lambda automatically retries the invocation due to the error, while the other options do not reflect the service's error handling behavior.
Q414

A company needs to securely store sensitive data while maintaining fast access. Which AWS service combination should they use?

  • A Amazon S3 and Amazon Glacier
  • B Amazon RDS and EBS
  • C Amazon S3 with Server-Side Encryption
  • D AWS Secrets Manager only
Explanation Amazon S3 provides fast access and supports Server-Side Encryption for security, while the other options do not meet both criteria effectively.
Q415

Which AWS service provides serverless compute capabilities?

  • A AWS Lambda
  • B EC2
  • C S3
  • D RDS
Explanation AWS Lambda is the primary serverless compute service, while EC2 is for traditional servers, S3 is for storage, and RDS is for managed databases.
Q416

A company needs to securely share data across AWS accounts. What is the best approach?

  • A Use VPC Peering
  • B Use AWS Organizations
  • C Use S3 bucket policy
  • D Use CloudFront
Explanation S3 bucket policies allow specific permissions for shared data access, while VPC Peering does not directly help with data sharing.
Q417

What happens when an IAM policy denies a user access to an action?

  • A Access is granted if allowed elsewhere
  • B Access request is ignored
  • C Access is denied regardless of permissions
  • D User can override the denial
Explanation Deny policies take precedence in IAM, ensuring the action is denied regardless of other permissions.
Q418

Which AWS service provides a managed NoSQL database?

  • A DynamoDB
  • B RDS
  • C Redshift
  • D S3
Explanation DynamoDB is exclusively a fully managed NoSQL database; RDS and Redshift are for relational and data warehousing, respectively, while S3 is an object storage service.
Q419

A company needs to ensure their S3 bucket is accessible only from specific IP ranges. What should they use?

  • A Bucket Policy
  • B IAM Role
  • C CORS Configuration
  • D AWS Lambda
Explanation Bucket Policy allows fine-grained access control, unlike IAM roles, CORS, or AWS Lambda, which don't directly secure access by IP.
Q420

You are configuring an Amazon SageMaker model. What happens if you select a higher instance type for training?

  • A Longer training time
  • B Increased cost
  • C Lower accuracy
  • D No impact
Explanation Selecting a higher instance type may reduce training time but incur greater costs; accuracy is not directly tied to instance type.