Practice Test

True or False: AWS S3 provides features to set up data retention policies.

  • True
  • False

Answer: True

Explanation: Amazon S3 supports lifecycle configurations for a bucket to manage objects during their lifetimes, which can be considered as a kind of data retention policy.

Data retention policy is not part of the IAM policy.

  • True
  • False

Answer: True

Explanation: Data retention policy and IAM policy are separately managed in AWS. IAM policy governs the permissions for user actions, while data retention policy governs how long data is stored and managed.

Multiple Choice: Which AWS service allows users to set data retention policies?

  • a) AWS Lambda
  • b) AWS S3
  • c) AWS EC2
  • d) AWS RDS

Answer: b) AWS S3

Explanation: AWS S3 allows users to create lifecycle policies and set data retention periods.

Amazon S3 Glacier is the best service for meeting data retention requirements.

  • True
  • False

Answer: True

Explanation: Amazon S3 Glacier provides inexpensive storage for data archiving and long-term backup, which can be best suited for data retention requirements.

Multiple Choice: AWS _____ helps you simplify the process of maintaining data compliance by automating the data retention lifecycle.

  • a) Keeper
  • b) DLM
  • c) AWS Shield
  • d) KMS

Answer: b) DLM

Explanation: AWS Data Lifecycle Manager (DLM) simplifies the process of creating, managing, and deleting EBS volume snapshots, which are an important part of data retention policies.

True or False: You can retrieve your data from Amazon S3 Glacier instantaneously.

  • True
  • False

Answer: False

Explanation: Retrieving data from Amazon S3 Glacier require a lead time and is not instantaneous.

In Amazon S3, data automatically transitioned to Glacier still honors the original retention policy set on the bucket.

  • True
  • False

Answer: True

Explanation: Yes, the data that was transitioned to Glacier still adheres to the original lifecycle policy set for that bucket.

True or False: Data retention policies only deal with how long data is stored.

  • True
  • False

Answer: False

Explanation: Data retention policies deal with how long data is stored, when it should be deleted or archived, and who has access to it during its lifetime.

Multiple Choice: The data retention policy set at the _____ level overrides the account level settings in AWS.

  • a) User
  • b) Bucket
  • c) Service
  • d) Region

Answer: b) Bucket

Explanation: In AWS S3, the data retention policies set at the bucket level govern the objects in that bucket and override account level settings.

Multiple Choice: Which of the following is not a reason for setting data retention policies in AWS?

  • a) Reducing storage cost
  • b) Maintaining data compliance
  • c) Increasing EC2 performance
  • d) Protecting important data

Answer: c) Increase EC2 performance

Explanation: While data retention policies help reduce storage costs, maintain compliance and protect data, they do not directly increase EC2 performance.

Deleted objects with object lock cannot be restored in S3 even within the retention period.

  • True
  • False

Answer: False

Explanation: AWS S3 object lock prevents the object from being deleted during its protection period. Therefore, even if someone attempts to delete the object, it will remain in the bucket until the retention period expires.

True or False: Retention period can be defined in days, weeks, months or years in AWS S3 lifecycle policy.

  • True
  • False

Answer: True

Explanation: Yes, in AWS S3 lifecycle rules, you can define the time period in days, weeks, months or years for each action in the lifecycle policy.

To permanently delete an S3 object version protected by the object lock feature, you need to delete the bucket altogether.

  • True
  • False

Answer: False

Explanation: No, the S3 object version protected by the object lock feature can be permanently deleted by waiting for the lock period to expire, not by deleting the bucket.

True or False: Amazon RDS has automatic backup retention of 1 day by default.

  • True
  • False

Answer: True

Explanation: By default, Amazon RDS has a backup retention period of one day. This can be changed as per user requirement.

Employing data retention policies can lead to some cost savings.

  • True
  • False

Answer: True

Explanation: Yes, by employing data retention policies, organizations can save costs by deleting irrelevant data and reclaiming storage space.

Interview Questions

What is a Data Retention Policy within AWS?

A Data Retention Policy in AWS determines the duration for how long AWS keeps backup data. Once this duration has passed, AWS automatically deletes the backup.

How does AWS S3 Lifecycle policies assist in data retention strategy?

AWS S3 Lifecycle policies enable automating tasks related to object lifecycle management. They help transition objects between different storage classes at defined times to optimize cost or configure objects to expire after a certain period, hence assisting in data retention strategy.

What AWS service would you use to automate the creation, retention, and deletion of backups?

The AWS Backup service can be used for the automation of the creation, retention, and deletion of backups.

In AWS, what is generally the maximum retention period for backup data?

The maximum retention period for backup data varies between AWS services. For services like Amazon RDS, it is 35 days. However, some services like S3 Glacier provide indefinite retention.

What AWS service lets you automatically delete objects that have a predefined “lifespan”?

AWS S3 Lifecycle policies allow you to automatically delete objects that have a predefined “lifespan”.

What is a snapshot in terms of data retention on AWS?

A snapshot is a point-in-time copy of data. It is a backup method primarily used with Amazon Elastic Block Store (EBS) volumes for data retention.

How are data retention periods defined in AWS CloudTrail?

In AWS CloudTrail, you can define data retention periods by choosing a CloudTrail trail and setting the “Log file validation” option to “Yes”. Actions taken by a user, role, or an AWS service are recorded as events in CloudTrail logs and are retained for 90 days.

Which AWS service would you use to control the data deletion after a certain period of time?

AWS S3 Lifecycle policies can be used to control the deletion of data after a predefined period.

Can AWS S3 Glacier’s data retention policies be customized?

Yes, AWS S3 Glacier’s data retention policies can be customized using lifecycle policies.

What is the best way to enforce a data retention policy across an entire AWS account?

The AWS Organizations service can be used to enforce a data retention policy across an entire AWS account.

How does AWS ensure the durability of stored data?

AWS achieves high durability by redundantly storing data across multiple facilities within a region.

Are AWS customers able to check the compliance of AWS data retention policies?

Yes, AWS customers can use AWS Artifact, a portal that provides access to AWS’s compliance reports.

How can versioning help in data retention and backup in AWS S3?

Versioning in AWS S3 can help in data retention and backup by keeping all versions of an object (including all writes and deletes) in the bucket.

How does encryption contribute to data retention policy in AWS?

Encryption helps secure the data at rest and in transit over the network, enforcing stronger control over data access, which is an integral part of data retention policy.

What can you use to control access to your data stored in AWS?

AWS Identity and Access Management (IAM) can be used to control access to data stored in AWS.

Leave a Reply

Your email address will not be published. Required fields are marked *