Challenge - 5 Problems

🎖️

Cloud Template Mastery

Get all challenges correct to earn this badge!

Test your skills under time pressure!

🧠 Conceptual

intermediate

2:00remaining

Identify the main sections of an AWS CloudFormation template

Which of the following lists correctly shows the main sections of a valid AWS CloudFormation template in JSON or YAML?

AParameters, Resources, Outputs, Mappings, Conditions, Transform, Metadata

BResources, Variables, Functions, Outputs, Conditions

CParameters, Resources, Scripts, Outputs, Policies

DResources, Outputs, Variables, Templates, Conditions

Attempts:

2 left

❓ Configuration

intermediate

1:30remaining

Determine the number of resources defined in this CloudFormation snippet

Given the following JSON snippet of a CloudFormation template, how many AWS resources are defined?

{
  "Resources": {
    "MyBucket": {
      "Type": "AWS::S3::Bucket"
    },
    "MyQueue": {
      "Type": "AWS::SQS::Queue"
    },
    "MyTopic": {
      "Type": "AWS::SNS::Topic"
    }
  }
}

Attempts:

2 left

❓ Architecture

advanced

2:30remaining

Choose the correct YAML template structure for conditional resource creation

Which YAML snippet correctly uses a condition to create an AWS resource only if a parameter value is 'true'?

Parameters:
  CreateBucket:
    Type: String
    AllowedValues: [true, false]
Conditions:
  ShouldCreateBucket: !Equals [!Ref CreateBucket, true]
Resources:
  MyBucket:
    Type: AWS::S3::Bucket
    Condition: ShouldCreateBucket

Parameters:
  CreateBucket:
    Type: Boolean
Conditions:
  ShouldCreateBucket: !Equals [!Ref CreateBucket, 'true']
Resources:
  MyBucket:
    Type: AWS::S3::Bucket
    Condition: ShouldCreateBucket

Parameters:
  CreateBucket:
    Type: String
    AllowedValues: [yes, no]
Conditions:
  ShouldCreateBucket: !Equals [!Ref CreateBucket, 'true']
Resources:
  MyBucket:
    Type: AWS::S3::Bucket
    Condition: ShouldCreateBucket

Parameters:
  CreateBucket:
    Type: String
    AllowedValues: [true, false]
Conditions:
  ShouldCreateBucket: !Equals [!Ref CreateBucket, 'true']
Resources:
  MyBucket:
    Type: AWS::S3::Bucket
    Condition: ShouldCreateBucket

Attempts:

2 left

❓ security

advanced

2:00remaining

Identify the security risk in this CloudFormation template snippet

Review the following JSON snippet. What is the main security risk?

{
  "Resources": {
    "MyBucket": {
      "Type": "AWS::S3::Bucket",
      "Properties": {
        "BucketName": "my-public-bucket",
        "AccessControl": "PublicRead"
      }
    }
  }
}

AThe bucket name is not unique, causing deployment failure

BThe AccessControl property is missing, so the bucket is private by default

CThe bucket is publicly readable, exposing data to anyone on the internet

DThe bucket does not have versioning enabled, risking data loss

Attempts:

2 left

❓ service_behavior

expert

3:00remaining

Predict the output of a CloudFormation stack update with a changed resource property

Given a CloudFormation template with an AWS::EC2::Instance resource, if you update the template to change the instance type from 't2.micro' to 't3.micro' and then update the stack, what will happen?

ACloudFormation updates the instance type in place without replacement or downtime

BCloudFormation replaces the instance with a new one of type 't3.micro', causing downtime

CCloudFormation fails the update because instance type cannot be changed

DCloudFormation creates a second instance of type 't3.micro' alongside the original

Attempts:

2 left