Amazon AWS

AWS Certified Generative AI Developer – Professional

AIP-C01

The AWS Certified Generative AI Developer – Professional (AIP-C01) exam tests your ability to build and deploy generative AI applications on AWS. It is designed for developers specializing in AI technologies.

498 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 51–60 of 498

Q51

You are configuring a VPC with a public and private subnet. What is essential for instances in a private subnet to access the internet?

  • A NAT Gateway
  • B Elastic Load Balancer
  • C Route 53
  • D Internet Gateway
Explanation A NAT Gateway allows instances in the private subnet to initiate outbound internet traffic, while an Elastic Load Balancer is not relevant for internet access.
Q52

Which AWS service is used for container orchestration?

  • A Amazon ECS
  • B AWS Lambda
  • C Amazon S3
  • D AWS IAM
Explanation Amazon ECS is specifically designed for container orchestration, while the others serve different purposes.
Q53

A company needs to run a web application globally with minimal latency. Which service should they choose?

  • A Amazon CloudFront
  • B AWS S3
  • C Amazon RDS
  • D AWS Lambda
Explanation Amazon CloudFront reduces latency by caching content globally, unlike the other services which serve different roles.
Q54

You are configuring AWS IAM roles for a Lambda function using resources. What happens if an executing role does not include sufficient permissions?

  • A Function executes with restricted access
  • B Function fails due to permission denied
  • C Function executes without any issue
  • D Function takes longer to execute
Explanation Insufficient permissions will lead to a permission denied error, impacting the function's ability to execute correctly.
Q55

Which service can automatically scale applications based on demand?

  • A AWS Auto Scaling
  • B Amazon RDS
  • C AWS Lambda
  • D Amazon EC2
Explanation AWS Auto Scaling adjusts resources based on demand; others do not directly provide this functionality.
Q56

A company needs to provide temporary access to AWS resources for third-party contractors. Which service should they use?

  • A IAM Roles
  • B AWS Organizations
  • C Amazon Cognito
  • D AWS CloudFormation
Explanation IAM Roles provide temporary security credentials for access; the others serve different purposes.
Q57

What happens when you attach an IAM policy with 'Deny' effect for all actions?

  • A No actions are allowed
  • B All actions are allowed
  • C Only certain actions are allowed
  • D Only allowing for some services
Explanation A 'Deny' policy overrides other permissions, blocking all actions; the other options contradict IAM policy functionality.
Q58

Which service is best for managing secrets?

  • A AWS Secrets Manager
  • B AWS Lambda
  • C AWS CodeBuild
  • D AWS S3
Explanation AWS Secrets Manager securely stores and manages secrets, while others serve different purposes.
Q59

A company needs to detect anomalous API calls in real-time. Which AWS service should they use?

  • A Amazon GuardDuty
  • B AWS CloudTrail
  • C Amazon Inspector
  • D AWS Config
Explanation Amazon GuardDuty provides threat detection, while the others do not focus on real-time anomaly detection.
Q60

What happens when an S3 bucket policy denies access?

  • A Access is granted if IAM allows
  • B Only specific IPs get access
  • C Access is denied regardless of IAM
  • D Empty bucket is deleted
Explanation An explicit deny in an S3 bucket policy overrides all other permissions, including IAM.