Cloud Basics · Complete Question Bank

All Cloud Basics Interview Questions

Practice the complete collection of Cloud Basics interview questions including theory, coding, MCQs and real interview problems.

Total Questions: 140Topics: 58Complete interview preparation

Overview

Questions

140

Full database

Topics

Categorised

Difficulty

Mixed Levels

Easy Hard

All Cloud Basics Interview Questions (140)

Scroll through every important Cloud Basics question asked in real interviews. Includes MCQs, subjective questions, and coding prompts.

1. What is cloud computing?

Difficulty: EasyType: MCQTopic: Cloud Basics

Using physical servers only
Delivering computing services over the internet
Running applications offline
Installing software manually

Cloud computing means accessing servers, storage, databases, networking, and software over the internet. It removes the need for owning hardware and allows flexible scaling.

Correct Answer: Delivering computing services over the internet

2. Which of the following is NOT a cloud service model?

Difficulty: EasyType: MCQTopic: Cloud Models

IaaS
PaaS
SaaS
RAAS

The three main cloud service models are Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). RAAS is not a standard model in cloud computing.

Correct Answer: RAAS

3. Which model provides virtualized computing resources such as servers and storage?

Difficulty: MediumType: MCQTopic: Cloud Models

SaaS
IaaS
PaaS
DaaS

IaaS (Infrastructure as a Service) delivers computing infrastructure like virtual machines, networks, and storage. Users manage OS and applications while the provider manages hardware.

Correct Answer: IaaS

4. Which cloud model is best suited for developers to build and deploy applications quickly?

Difficulty: MediumType: MCQTopic: Cloud Models

IaaS
PaaS
SaaS
DaaS

PaaS (Platform as a Service) provides ready environments for building, testing, and deploying apps. Developers can focus on code without worrying about servers or OS management.

Correct Answer: PaaS

5. Which of the following is an example of Software as a Service (SaaS)?

Difficulty: EasyType: MCQTopic: Cloud Models

Google Docs
Amazon EC2
Azure VM
Kubernetes

SaaS delivers software via the internet. Users can access it through a browser without installation. Examples include Google Docs, Gmail, and Salesforce.

Correct Answer: Google Docs

6. Which is NOT a recognized cloud deployment model?

Difficulty: MediumType: MCQTopic: Cloud Models

Public Cloud
Private Cloud
Hybrid Cloud
Distributed Cloud

The three main deployment models are Public, Private, and Hybrid Cloud. Distributed Cloud is an emerging concept but not part of the original NIST-defined models.

Correct Answer: Distributed Cloud

7. What is the main advantage of a hybrid cloud?

Difficulty: MediumType: MCQTopic: Hybrid Cloud

Cheaper than public cloud
Combines on-premises and public cloud flexibility
Used only for backup
Less secure than private cloud

Hybrid cloud allows workloads to move between private and public clouds. This provides balance between control, scalability, and cost efficiency.

Correct Answer: Combines on-premises and public cloud flexibility

8. In the shared responsibility model, what is the cloud provider responsible for?

Difficulty: MediumType: MCQTopic: Shared Model

Security of the cloud infrastructure
Customer data security
Application updates
User permissions

Cloud providers handle the security *of* the cloud — like data centers and networks. Users manage security *in* the cloud — like access control and data protection.

Correct Answer: Security of the cloud infrastructure

9. What is the difference between a region and an availability zone?

Difficulty: MediumType: MCQTopic: Regions AZ

They are the same thing
A region is a geographic area; zones are isolated data centers inside it
A zone contains multiple regions
Zones are only for backup

Regions represent physical geographic areas like 'us-east-1'. Each region contains multiple availability zones for redundancy and high availability.

Correct Answer: A region is a geographic area; zones are isolated data centers inside it

10. Explain the concept of elasticity in cloud computing.

Difficulty: MediumType: SubjectiveTopic: Scaling

Elasticity means automatically adjusting computing resources based on demand. For example, a web app can scale up during high traffic and scale down when idle — saving cost while maintaining performance.

11. What is scalability and how is it different from elasticity?

Difficulty: MediumType: SubjectiveTopic: Scaling

Scalability means the system can handle increasing workload by adding resources manually or automatically. Elasticity focuses on dynamic scaling — adding or removing resources automatically in real time.

12. What does multi-tenancy mean in cloud computing?

Difficulty: MediumType: SubjectiveTopic: Multi Tenancy

Multi-tenancy means multiple customers share the same physical resources securely. Each tenant’s data remains isolated even though they use shared hardware or virtual servers.

13. How does cloud computing support disaster recovery?

Difficulty: MediumType: SubjectiveTopic: Disaster Recovery

Cloud providers offer data replication across regions and automated backup solutions. In case of an outage, workloads can failover to another region with minimal downtime and no hardware replacement.

14. Describe the pay-as-you-go pricing model in cloud computing.

Difficulty: MediumType: SubjectiveTopic: Cloud Pricing

Pay-as-you-go means you pay only for the resources you actually use — such as compute hours or storage space. This model avoids large upfront costs and makes the cloud budget-friendly for startups and enterprises.

15. What does Amazon EC2 provide?

Difficulty: EasyType: MCQTopic: AWS Compute

Cloud storage service
Virtual servers to run applications
Database hosting only
Networking and DNS service

Amazon EC2 (Elastic Compute Cloud) provides scalable virtual machines called instances. You can choose CPU, memory, and storage configurations to deploy apps easily.

Correct Answer: Virtual servers to run applications

16. Which AWS service is mainly used for object storage?

Difficulty: EasyType: MCQTopic: Object Storage

Amazon S3 (Simple Storage Service) stores objects like images, videos, and backups. It’s highly durable and accessible via REST APIs from anywhere.

Correct Answer: S3

17. What is the primary purpose of AWS IAM?

Difficulty: MediumType: MCQTopic: IAM

Manage billing
Manage access and permissions for AWS resources
Host applications
Monitor server uptime

AWS IAM (Identity and Access Management) controls user authentication and authorization. You can create users, roles, and policies to define who can access what.

Correct Answer: Manage access and permissions for AWS resources

18. Which AWS service lets you create isolated private networks?

Difficulty: MediumType: MCQTopic: VPC

CloudFront
VPC
Route53
DirectConnect

Amazon VPC (Virtual Private Cloud) allows you to define custom private networks with subnets, routing, and firewalls. It’s the foundation for secure app hosting in AWS.

Correct Answer: VPC

19. Which AWS service provides monitoring and logging for resources?

Difficulty: MediumType: MCQTopic: Monitoring

CloudTrail
CloudWatch
Config
Inspector

Amazon CloudWatch monitors resource metrics like CPU, memory, and storage. You can set alarms and visualize trends for better operational insight.

Correct Answer: CloudWatch

20. What does AWS CloudTrail record?

Difficulty: MediumType: MCQTopic: Logging

API calls and account activity logs
Resource usage costs
Server health metrics
Traffic routing paths

AWS CloudTrail captures API activity across your account. It helps track changes, security audits, and user actions for compliance.

Correct Answer: API calls and account activity logs

21. Which service allows you to run code without provisioning or managing servers?

Difficulty: MediumType: MCQTopic: Serverless

Elastic Beanstalk
Lambda
Lightsail
Batch

AWS Lambda runs functions in response to triggers like API calls or S3 uploads. You pay only for compute time used — perfect for serverless architectures.

Correct Answer: Lambda

22. Which AWS pricing model charges only for what you use?

Difficulty: MediumType: MCQTopic: Cloud Pricing

Reserved Instances
Pay-as-you-go
Dedicated Host
Subscription

AWS follows the pay-as-you-go model for most services. You pay only for actual usage of compute, storage, or bandwidth without long-term contracts.

Correct Answer: Pay-as-you-go

23. What is an AWS Region?

Difficulty: MediumType: MCQTopic: Regions AZ

A physical data center
A collection of availability zones in a specific geographic area
A storage bucket location
A billing zone

An AWS Region is a cluster of data centers called availability zones. Each region is independent to support redundancy and disaster recovery.

Correct Answer: A collection of availability zones in a specific geographic area

24. Explain different types of EC2 instances.

Difficulty: MediumType: SubjectiveTopic: AWS Compute

EC2 instances come in families like General Purpose, Compute Optimized, Memory Optimized, and GPU instances. You choose types based on workload — for example, t2.micro for low-cost apps or c5.large for CPU-heavy tasks.

25. What are the different S3 storage classes and their use cases?

Difficulty: MediumType: SubjectiveTopic: Storage Classes

S3 has classes like Standard, Infrequent Access, Glacier, and Intelligent-Tiering. Standard is for frequent access, IA for backups, and Glacier for archiving long-term cold data at very low cost.

26. How are IAM policies structured in AWS?

Difficulty: MediumType: SubjectiveTopic: IAM

IAM policies are written in JSON format and include statements defining actions, resources, and effects (Allow or Deny). You can attach policies to users, groups, or roles for fine-grained access control.

27. List the main components of a VPC.

Difficulty: MediumType: SubjectiveTopic: VPC

A VPC includes subnets, route tables, internet gateways, NAT gateways, and security groups. These components work together to manage routing, connectivity, and isolation inside the AWS network.

28. Explain the difference between CloudWatch and CloudTrail.

Difficulty: MediumType: SubjectiveTopic: Monitoring

CloudWatch monitors performance metrics like CPU, memory, and disk utilization. CloudTrail records user activity and API calls. CloudWatch is about system health; CloudTrail is about accountability and security.

29. What is a Resource Group in Azure?

Difficulty: EasyType: MCQTopic: Resource Mgmt

A virtual machine cluster
A logical container for Azure resources
A physical data center
A user security group

A Resource Group is a logical container that holds related Azure resources such as VMs, databases, and storage accounts. It helps manage lifecycle, permissions, and monitoring as a single unit.

Correct Answer: A logical container for Azure resources

30. Which service provides virtual machines in Azure?

Difficulty: EasyType: MCQTopic: Compute

Azure Compute
Azure VM
Azure App Service
Azure Batch

Azure Virtual Machines allow you to deploy Windows or Linux instances in the cloud. They support scaling, snapshots, and integration with networking and storage.

Correct Answer: Azure VM

31. What type of storage is Azure Blob used for?

Difficulty: MediumType: MCQTopic: Object Storage

Structured database tables
Unstructured data like images and backups
Relational data
Virtual machine disks only

Azure Blob Storage is used for large-scale object storage. It supports storing text, images, videos, and backup files for web and analytics workloads.

Correct Answer: Unstructured data like images and backups

32. Which of these is NOT a type of Azure storage?

Difficulty: MediumType: MCQTopic: Storage Types

Blob
File
Queue
Stack

Azure provides Blob, File, Queue, and Table storage options. There is no service called 'Stack' in Azure’s storage offerings.

Correct Answer: Stack

33. What is Azure Active Directory primarily used for?

Difficulty: MediumType: MCQTopic: IAM

Virtual network creation
User identity and access management
File storage
Container orchestration

Azure Active Directory (Azure AD) manages user authentication and permissions across Microsoft cloud services. It supports single sign-on, MFA, and integration with on-prem directories.

Correct Answer: User identity and access management

34. Which Azure service allows hosting of web apps without managing infrastructure?

Difficulty: MediumType: MCQTopic: PaaS

Azure VM
App Service
AKS
Functions

Azure App Service is a fully managed PaaS offering to host web and mobile apps. It automatically handles scaling, load balancing, and security patches.

Correct Answer: App Service

35. What does ARM in Azure stand for?

Difficulty: MediumType: MCQTopic: IaC

Azure Resource Manager
Azure Recovery Module
Access Role Management
Active Resource Memory

Azure Resource Manager (ARM) is the deployment and management layer for Azure. It enables consistent creation and configuration of resources using templates or CLI.

Correct Answer: Azure Resource Manager

36. What is an Azure Region?

Difficulty: MediumType: MCQTopic: Regions AZ

A user subscription zone
A physical location containing data centers
A storage replication site only
A pricing tier for services

Azure Regions represent physical areas containing multiple data centers. They help achieve redundancy, data residency, and compliance across geographies.

Correct Answer: A physical location containing data centers

37. Which Azure pricing model is based on consumption?

Difficulty: MediumType: MCQTopic: Cloud Pricing

Reserved
Spot
Pay-as-you-go
Hybrid benefit

In the Pay-as-you-go model, you pay only for the compute and storage resources you use. It’s flexible and ideal for variable or experimental workloads.

Correct Answer: Pay-as-you-go

38. What are Azure Virtual Machine Scale Sets used for?

Difficulty: MediumType: SubjectiveTopic: Autoscaling

VM Scale Sets allow you to deploy and manage a group of identical VMs. They automatically increase or decrease the number of instances based on CPU load or demand, ensuring high availability and scalability.

39. Explain Azure Functions and when to use them.

Difficulty: MediumType: SubjectiveTopic: Serverless

Azure Functions is a serverless compute service that runs event-driven code without managing infrastructure. Use it for background jobs, file uploads, scheduled tasks, or API event handling.

40. What are Azure Resource Locks and why are they important?

Difficulty: MediumType: SubjectiveTopic: Resource Mgmt

Resource Locks prevent accidental modification or deletion of critical Azure resources. Two types exist — CanNotDelete (protects deletion) and ReadOnly (prevents changes).

41. What is an ARM template and what are its benefits?

Difficulty: MediumType: SubjectiveTopic: IaC

An ARM template is a JSON file that defines Azure infrastructure in code. It enables consistent deployments, version control, and automation using Infrastructure-as-Code principles.

42. Differentiate between Azure AD and traditional Active Directory.

Difficulty: MediumType: SubjectiveTopic: IAM

Traditional AD is for on-premises Windows domain environments. Azure AD is a cloud-based identity service for managing SaaS, Azure, and Microsoft 365 access. It supports OAuth and modern authentication protocols.

43. What is Google Cloud Platform (GCP)?

Difficulty: EasyType: MCQTopic: GCP Basics

A social media platform
A suite of cloud services by Google
A data visualization tool
An IoT device management software

GCP provides infrastructure, platform, and software services for compute, storage, networking, and AI. It powers products like YouTube and Gmail, and supports enterprise workloads.

Correct Answer: A suite of cloud services by Google

44. Which GCP service provides virtual machines similar to AWS EC2?

Difficulty: EasyType: MCQTopic: Compute

Cloud Run
Compute Engine
App Engine
Cloud Functions

Compute Engine is GCP’s Infrastructure-as-a-Service offering that provides customizable virtual machines. It supports both Linux and Windows instances with flexible machine types.

Correct Answer: Compute Engine

45. Which service in GCP allows developers to deploy web apps without managing servers?

Difficulty: MediumType: MCQTopic: PaaS

Compute Engine
App Engine
Cloud Run
Kubernetes Engine

App Engine is a fully managed Platform-as-a-Service for deploying scalable web apps. It automatically handles load balancing, scaling, and patching.

Correct Answer: App Engine

46. Which service in GCP provides object storage similar to Amazon S3?

Difficulty: MediumType: MCQTopic: Object Storage

Persistent Disk
Cloud Storage
Firestore
Filestore

Cloud Storage provides globally available object storage for files, media, and backups. It supports multi-region replication and lifecycle management.

Correct Answer: Cloud Storage

47. What is the main purpose of BigQuery in GCP?

Difficulty: MediumType: MCQTopic: Analytics

Hosting web apps
Running serverless data analysis
Managing VM networks
Storing unstructured data

BigQuery is GCP’s serverless data warehouse designed for large-scale analytics using SQL. It is optimized for high-speed query performance on petabytes of data.

Correct Answer: Running serverless data analysis

48. Which service allows you to execute code in response to events without managing servers?

Difficulty: MediumType: MCQTopic: Serverless

Compute Engine
Cloud Functions
Cloud Run
App Engine

Cloud Functions is GCP’s serverless compute service. You can run short pieces of code triggered by HTTP requests, storage changes, or Pub/Sub messages.

Correct Answer: Cloud Functions

49. What does a Virtual Private Cloud (VPC) in GCP provide?

Difficulty: MediumType: MCQTopic: VPC

Shared file storage
Network isolation and control
Cloud cost optimization
Machine learning automation

A VPC in GCP gives you private networking control for your compute and storage resources. You can define subnets, firewalls, and routes for secure communication.

Correct Answer: Network isolation and control

50. What is the function of Identity and Access Management (IAM) in GCP?

Difficulty: MediumType: MCQTopic: IAM

Resource billing
User authentication and permission control
Application deployment
Backup scheduling

IAM lets administrators define who can access which resources and what actions they can perform. It provides roles and policies for fine-grained access management.

Correct Answer: User authentication and permission control

51. Which statement best describes GCP's billing model?

Difficulty: MediumType: MCQTopic: Billing

Fixed monthly subscription
Pay-as-you-go for actual usage
Annual prepaid license
Per-user flat rate

GCP uses a consumption-based model — you only pay for what you use. You can combine sustained use discounts and committed use savings for better cost control.

Correct Answer: Pay-as-you-go for actual usage

52. What is the role of a Project in GCP?

Difficulty: MediumType: SubjectiveTopic: Resource Mgmt

A Project is the primary organizational unit in GCP that contains resources like VMs, storage, and APIs. Each project has its own billing, IAM policies, and unique project ID for tracking and permissions.

53. What is a Service Account in GCP and when is it used?

Difficulty: MediumType: SubjectiveTopic: IAM

A Service Account is a special Google account used by applications or services instead of users. It enables secure server-to-server communication and resource access through keys or tokens.

54. Differentiate between Cloud Run and App Engine.

Difficulty: MediumType: SubjectiveTopic: Serverless

Cloud Run is for containerized applications, offering flexibility in language and runtime. App Engine is for managed applications where the platform handles scaling and updates automatically.

55. Describe the storage classes available in Google Cloud Storage.

Difficulty: MediumType: SubjectiveTopic: Storage Classes

GCS provides Standard, Nearline, Coldline, and Archive classes. Standard is for frequent access, Nearline and Coldline for backups, and Archive for long-term low-cost storage.

56. What are the main benefits of using GCP?

Difficulty: MediumType: SubjectiveTopic: GCP Basics

GCP offers global scalability, strong data analytics tools, and AI integration. It provides flexible pricing, high security, and open-source compatibility across workloads.

57. What is a Virtual Private Cloud (VPC)?

Difficulty: EasyType: MCQTopic: VPC

A public internet service
An isolated network within the cloud
A backup storage area
A virtual machine configuration

A VPC is a logically isolated section of a cloud provider’s network. It lets you define subnets, routing tables, and firewalls to control communication between resources.

Correct Answer: An isolated network within the cloud

58. What is the purpose of a subnet in a VPC?

Difficulty: EasyType: MCQTopic: Subnetting

To host databases only
To divide a network into smaller sections
To control data encryption
To monitor CPU usage

Subnets divide your VPC into smaller address spaces for better organization and security. You can use public subnets for internet-facing resources and private ones for internal servers.

Correct Answer: To divide a network into smaller sections

59. Which of the following controls inbound and outbound traffic at the instance level?

Difficulty: MediumType: MCQTopic: Network Security

NACL
Firewall
Security Group
VPC Router

A Security Group acts as a virtual firewall for your instance. It controls inbound and outbound traffic based on defined port, protocol, and IP rules.

Correct Answer: Security Group

60. What is a Network Access Control List (NACL) used for?

Difficulty: MediumType: MCQTopic: Network Security

Encrypting data
Controlling traffic at the subnet level
Managing user access to the console
Connecting multiple regions

NACLs provide an additional security layer at the subnet level. They allow or deny traffic based on IP, protocol, and port, and apply before Security Groups.

Correct Answer: Controlling traffic at the subnet level

61. Why are VPNs used in cloud environments?

Difficulty: MediumType: MCQTopic: VPN

To reduce storage cost
To create secure encrypted connections
To increase CPU speed
To connect IoT devices

VPNs connect on-premise data centers to cloud networks securely. They use encrypted tunnels to ensure data privacy over public internet connections.

Correct Answer: To create secure encrypted connections

62. What does a load balancer do in cloud architecture?

Difficulty: MediumType: MCQTopic: Load Balancing

Balances storage utilization
Distributes traffic across multiple servers
Replicates data between regions
Monitors network security

A load balancer evenly distributes incoming traffic across multiple servers. This ensures high availability, performance, and fault tolerance for applications.

Correct Answer: Distributes traffic across multiple servers

63. What is the main purpose of encryption in cloud storage?

Difficulty: MediumType: MCQTopic: Encryption

To compress data
To protect data confidentiality
To improve upload speed
To remove duplicate files

Encryption protects data from unauthorized access by converting it into unreadable text. Most cloud providers support encryption both at rest and in transit.

Correct Answer: To protect data confidentiality

64. What does IAM stand for in cloud security?

Difficulty: MediumType: MCQTopic: IAM

Identity and Access Management
Information Analysis Module
Infrastructure Access Monitoring
Internet Authentication Method

IAM controls who can access which resources in the cloud. It enforces authentication (who you are) and authorization (what you can do).

Correct Answer: Identity and Access Management

65. Which term describes an attack that floods a service with fake traffic?

Difficulty: MediumType: MCQTopic: DDoS

SQL Injection
Man-in-the-middle
DDoS
Phishing

A Distributed Denial-of-Service (DDoS) attack overwhelms a server with excessive requests. Cloud providers offer built-in DDoS protection and rate limiting to defend against it.

Correct Answer: DDoS

66. How do firewall rules work in cloud environments?

Difficulty: MediumType: SubjectiveTopic: Network Security

Firewall rules define which traffic is allowed or denied to resources based on IP, port, and protocol. They can be configured at instance, subnet, or project level to ensure proper access control.

67. Explain the Shared Responsibility Model in cloud security.

Difficulty: MediumType: SubjectiveTopic: Shared Model

The Shared Responsibility Model defines who manages which part of security. The provider secures the infrastructure (data centers, hardware), while users secure their data, identities, and configurations.

68. What are some IAM best practices to follow in cloud environments?

Difficulty: MediumType: SubjectiveTopic: IAM

Use least privilege access, enable multi-factor authentication, and rotate credentials regularly. Group permissions with roles instead of assigning them individually for better security and management.

69. List some cloud-native tools used for monitoring and securing networks.

Difficulty: MediumType: SubjectiveTopic: Network Security

AWS offers VPC Flow Logs, Azure has Network Watcher, and GCP uses Cloud Armor for traffic analysis and DDoS protection. These tools track traffic patterns and detect suspicious activities automatically.

70. What is the Zero Trust model in cloud security?

Difficulty: MediumType: SubjectiveTopic: Zero Trust

Zero Trust means never trust by default — always verify every request. It enforces strict identity checks and segmentation, assuming that both internal and external networks can be compromised.

71. Which type of storage is used for storing unstructured data like images and backups?

Difficulty: EasyType: MCQTopic: Object Storage

Block storage
File storage
Object storage
Relational storage

Object storage keeps data as objects with metadata and a unique ID. It is ideal for storing files, logs, media, and backups at scale.

Correct Answer: Object storage

72. Which AWS service provides object storage?

Difficulty: EasyType: MCQTopic: Object Storage

EFS
EBS
S3
CloudFront

Amazon S3 (Simple Storage Service) is designed for storing and retrieving any amount of data. It’s highly durable, scalable, and accessible via the web.

Correct Answer: S3

73. What is Azure Blob Storage mainly used for?

Difficulty: EasyType: MCQTopic: Object Storage

Hosting virtual machines
Storing unstructured data like media files
Managing SQL databases
Running containerized apps

Azure Blob Storage is a scalable object store for unstructured data. It supports hot, cool, and archive tiers to optimize cost and access speed.

Correct Answer: Storing unstructured data like media files

74. Which GCP service provides managed relational databases?

Difficulty: MediumType: MCQTopic: Managed DB

Cloud Storage
BigQuery
Cloud SQL
Firestore

Cloud SQL offers managed MySQL, PostgreSQL, and SQL Server databases. It handles backups, replication, and automatic failover for high availability.

Correct Answer: Cloud SQL

75. Which AWS service is a fully managed NoSQL database?

Difficulty: MediumType: MCQTopic: NoSQL DB

RDS
Aurora
DynamoDB
Redshift

DynamoDB is a key-value and document-based NoSQL database. It provides fast and predictable performance with seamless scalability.

Correct Answer: DynamoDB

76. What does Amazon RDS help you manage?

Difficulty: MediumType: MCQTopic: Managed DB

Container orchestration
Relational databases like MySQL and PostgreSQL
Cloud file systems
Serverless functions

Amazon RDS automates setup, patching, and backups for relational databases. It supports multiple engines like MySQL, PostgreSQL, MariaDB, Oracle, and SQL Server.

Correct Answer: Relational databases like MySQL and PostgreSQL

77. Which of the following ensures data recovery after accidental deletion?

Difficulty: MediumType: MCQTopic: Backup

Snapshots
Replication
Scaling
Load balancing

Snapshots capture the current state of data or a database. They enable point-in-time recovery and easy restoration during failure or data loss.

Correct Answer: Snapshots

78. What is the purpose of storage classes in cloud object storage?

Difficulty: MediumType: MCQTopic: Storage Classes

To organize files alphabetically
To define pricing and access frequency
To set permission rules
To manage user roles

Storage classes allow data to be placed in cost-effective tiers. Frequently accessed data stays in hot storage, while infrequent data moves to cold or archive storage.

Correct Answer: To define pricing and access frequency

79. What is a storage lifecycle policy?

Difficulty: MediumType: MCQTopic: Storage Lifecycle

A rule for encrypting data
A rule for automatic data transition and deletion
A tool for file compression
A logging mechanism

Lifecycle policies automatically move or delete data based on age or access patterns. They help save costs and manage long-term data retention efficiently.

Correct Answer: A rule for automatic data transition and deletion

80. Why do cloud providers offer multi-region storage options?

Difficulty: MediumType: SubjectiveTopic: Storage Replication

Multi-region storage replicates data across geographically distant data centers. This improves availability, reduces latency for global users, and provides disaster recovery protection.

81. Differentiate between relational and NoSQL databases in the cloud.

Difficulty: MediumType: SubjectiveTopic: DB Basics

Relational databases like RDS and Cloud SQL use structured tables and relationships. NoSQL databases like DynamoDB or Firestore store data in flexible key-value or document formats for high scalability.

82. How is data secured in cloud storage?

Difficulty: MediumType: SubjectiveTopic: Encryption

Cloud providers offer encryption at rest using managed keys or customer-managed keys. Data in transit is secured with SSL or TLS to prevent interception and ensure privacy.

83. What are the main benefits of using managed database services like RDS or Cloud SQL?

Difficulty: MediumType: SubjectiveTopic: Managed DB

Managed databases handle routine operations like patching, scaling, backups, and failover. This saves time for DevOps teams and ensures consistent performance and security.

84. When should you use cold or archive storage?

Difficulty: MediumType: SubjectiveTopic: Cold Storage

Cold storage is ideal for data that is rarely accessed but must be retained for compliance or analysis. It costs much less than hot storage but retrieval times are slower.

85. Why is automation important in cloud environments?

Difficulty: EasyType: MCQTopic: Automation

To increase manual effort
To reduce human errors and improve consistency
To avoid scaling applications
To slow down deployments

Automation ensures repeatable, error-free configurations and faster deployments. It eliminates manual intervention for tasks like provisioning, scaling, and patching.

Correct Answer: To reduce human errors and improve consistency

86. Which AWS service is used for automating infrastructure deployment using templates?

Difficulty: EasyType: MCQTopic: IaC

CloudFormation
CodePipeline
OpsWorks
Elastic Beanstalk

AWS CloudFormation allows you to define and provision infrastructure using JSON or YAML templates. It treats infrastructure as code, ensuring consistency across environments.

Correct Answer: CloudFormation

87. Which open-source tool is commonly used for multi-cloud infrastructure automation?

Difficulty: MediumType: MCQTopic: IaC

Ansible
Terraform
Chef
SaltStack

Terraform by HashiCorp lets you manage infrastructure across AWS, Azure, and GCP. It uses declarative configuration files and tracks resource state for repeatable deployments.

Correct Answer: Terraform

88. Which tool is agentless and uses YAML playbooks for automation?

Difficulty: MediumType: MCQTopic: Config Mgmt

Chef
Ansible
Puppet
Jenkins

Ansible is an agentless automation tool that uses SSH to configure servers. Its YAML-based playbooks make it simple to read, write, and reuse across environments.

Correct Answer: Ansible

89. What is Jenkins primarily used for in DevOps?

Difficulty: MediumType: MCQTopic: CI CD

Database replication
Continuous Integration and Continuous Delivery
File storage
Monitoring network traffic

Jenkins automates building, testing, and deploying applications. It integrates with version control systems and cloud services to run complete CI/CD pipelines.

Correct Answer: Continuous Integration and Continuous Delivery

90. What does 'Infrastructure as Code' (IaC) mean?

Difficulty: MediumType: MCQTopic: IaC

Writing code inside servers
Defining infrastructure through configuration files
Manually setting up servers via console
Developing mobile apps for cloud

IaC allows you to provision and manage cloud resources using declarative code. This ensures repeatable, version-controlled, and auditable infrastructure management.

Correct Answer: Defining infrastructure through configuration files

91. Which AWS service provides a managed CI/CD pipeline?

Difficulty: MediumType: MCQTopic: CI CD

CodeDeploy
CodePipeline
CodeBuild
CodeCommit

AWS CodePipeline automates build, test, and deployment phases. It integrates with other AWS developer tools or third-party CI/CD systems.

Correct Answer: CodePipeline

92. What is Azure DevOps mainly used for?

Difficulty: MediumType: MCQTopic: CI CD

Data analytics
End-to-end software lifecycle management
Machine learning training
File backups

Azure DevOps offers tools for planning, coding, building, testing, and deploying software. It supports CI/CD pipelines, version control, and project tracking in one suite.

Correct Answer: End-to-end software lifecycle management

93. Which of the following is a major benefit of using automation in cloud deployment?

Difficulty: MediumType: MCQTopic: Automation

Increased manual errors
Slower deployment times
Faster and consistent provisioning
Higher infrastructure cost

Automation tools eliminate repetitive manual steps and ensure consistency. This leads to faster provisioning, predictable outcomes, and reduced operational costs.

Correct Answer: Faster and consistent provisioning

94. Explain how CI/CD works in cloud-based DevOps pipelines.

Difficulty: MediumType: SubjectiveTopic: CI CD

Continuous Integration merges code changes frequently and runs automated tests. Continuous Delivery automates deployment to staging or production, ensuring quick, reliable releases with minimal downtime.

95. Compare Terraform and CloudFormation.

Difficulty: MediumType: SubjectiveTopic: IaC

Terraform is a multi-cloud open-source tool that uses HCL syntax. CloudFormation is AWS-native and uses JSON or YAML. Terraform is more flexible across providers, while CloudFormation offers deeper AWS integration.

96. When would you use Ansible in a cloud project?

Difficulty: MediumType: SubjectiveTopic: Config Mgmt

Ansible is used for configuration management, app deployment, and environment setup. In cloud DevOps, it automates repetitive tasks like installing dependencies or updating servers after deployment.

97. How does cloud computing enhance DevOps practices?

Difficulty: MediumType: SubjectiveTopic: DevOps

Cloud platforms provide scalability, API-based provisioning, and managed services. This allows DevOps teams to deploy, test, and scale applications rapidly with minimal infrastructure overhead.

98. Give an example of real-world automation used in cloud DevOps.

Difficulty: MediumType: SubjectiveTopic: Automation

A common example is using Jenkins to trigger Terraform scripts after a Git push. This pipeline automatically provisions cloud servers, deploys code, and notifies the team via Slack upon completion.

99. Why is monitoring important in cloud environments?

Difficulty: EasyType: MCQTopic: Monitoring

To slow down systems
To detect issues and optimize performance
To increase manual work
To disable alerts

Monitoring helps track system health, usage, and errors. It ensures services stay available and allows early detection of performance problems.

Correct Answer: To detect issues and optimize performance

100. Which AWS service collects metrics and logs for monitoring?

Difficulty: EasyType: MCQTopic: Monitoring

CloudTrail
CloudWatch
GuardDuty
Inspector

Amazon CloudWatch gathers logs, metrics, and alarms for AWS resources. It helps visualize performance and trigger alerts automatically.

Correct Answer: CloudWatch

101. What is the monitoring tool in Google Cloud called?

Difficulty: EasyType: MCQTopic: Monitoring

StackDriver
OpsView
LogWatch
CloudTrail

StackDriver Monitoring (now Cloud Monitoring) provides visibility into GCP, AWS, and hybrid workloads. It offers dashboards, uptime checks, and alerting policies.

Correct Answer: StackDriver

102. Which Azure service centralizes metrics and logs?

Difficulty: MediumType: MCQTopic: Monitoring

Azure Advisor
Azure Monitor
Azure Sentinel
Log Analytics

Azure Monitor collects telemetry from resources and applications. It integrates with Log Analytics and Application Insights for deeper diagnostics.

Correct Answer: Azure Monitor

103. Which AWS service records API calls for auditing?

Difficulty: MediumType: MCQTopic: Logging

CloudTrail
CloudWatch
GuardDuty
Inspector

AWS CloudTrail logs every API call, including who made it and from where. It’s essential for auditing, compliance, and incident investigations.

Correct Answer: CloudTrail

104. What is an alert in a monitoring system?

Difficulty: MediumType: MCQTopic: Alerting

A database backup process
A notification triggered by predefined thresholds
A script that deletes logs
A manual report

Alerts notify teams when metrics exceed defined limits. They help respond quickly to downtime or resource overuse.

Correct Answer: A notification triggered by predefined thresholds

105. Where can AWS users view cost and usage reports?

Difficulty: MediumType: MCQTopic: Billing

Billing Dashboard
CloudWatch
QuickSight
Cost Analyzer

The AWS Billing Dashboard shows detailed spending reports and forecasted costs. It helps teams track budgets and detect abnormal spending early.

Correct Answer: Billing Dashboard

106. Which Azure tool gives cost-saving recommendations?

Difficulty: MediumType: MCQTopic: Cost Mgmt

Azure Advisor
Azure Sentinel
Cost Center
Budget Hub

Azure Advisor analyzes usage patterns and suggests optimizations. It covers cost, performance, security, and reliability recommendations.

Correct Answer: Azure Advisor

107. Which feature lets you set spending limits and receive alerts when exceeded?

Difficulty: MediumType: MCQTopic: Cost Mgmt

Cost Explorer
Budgets
Savings Plans
Reserved Instances

Budgets allow users to define monthly or project-based cost limits. Email or SNS alerts trigger when actual or forecasted costs exceed thresholds.

Correct Answer: Budgets

108. Why is centralized logging important in cloud environments?

Difficulty: MediumType: SubjectiveTopic: Logging

Centralized logging aggregates logs from multiple services into one location. It simplifies troubleshooting, security analysis, and compliance auditing by providing a single source of truth.

109. List some best practices for cost optimization in the cloud.

Difficulty: MediumType: SubjectiveTopic: Cost Mgmt

Use auto-scaling to match resources with demand, and shut down idle instances. Choose reserved or spot instances for predictable workloads, and enable budgets or alerts for cost tracking.

110. Which key metrics should DevOps teams monitor regularly?

Difficulty: MediumType: SubjectiveTopic: Monitoring

Monitor CPU, memory, disk I/O, and network utilization to ensure healthy performance. Also track latency, error rates, and request counts to detect bottlenecks early.

111. Explain the purpose of AWS Cost Explorer.

Difficulty: MediumType: SubjectiveTopic: Cost Mgmt

Cost Explorer visualizes historical and forecasted spending across AWS accounts. It helps identify cost trends, unused resources, and opportunities to use savings plans or reserved instances.

112. How can monitoring be integrated into CI/CD pipelines?

Difficulty: MediumType: SubjectiveTopic: Monitoring

Monitoring can trigger automated rollbacks or alerts when deployment errors occur. Integrating tools like Prometheus or CloudWatch ensures continuous visibility throughout the release cycle.

113. What does a multi-cloud strategy mean?

Difficulty: EasyType: MCQTopic: Multi Cloud

Using only one provider
Using multiple cloud providers at once
Migrating all data to on-premises
Running apps without the internet

A multi-cloud strategy uses services from more than one cloud vendor. It helps improve resilience, avoid vendor lock-in, and optimize performance by picking the best tools from each provider.

Correct Answer: Using multiple cloud providers at once

114. What is a hybrid cloud?

Difficulty: EasyType: MCQTopic: Hybrid Cloud

A mix of private and public clouds working together
A set of local servers only
Multiple data centers from one vendor
Cloud without networking

Hybrid cloud combines on-premise infrastructure with public or private cloud services. It allows secure data sharing and flexible scaling between both environments.

Correct Answer: A mix of private and public clouds working together

115. What does 'vendor lock-in' refer to?

Difficulty: MediumType: MCQTopic: Vendor Lockin

Using open-source software
Being dependent on one provider’s ecosystem
Running multiple providers together
Encrypting all files

Vendor lock-in happens when applications rely heavily on one provider’s tools and APIs. Switching providers becomes expensive and complex due to compatibility issues.

Correct Answer: Being dependent on one provider’s ecosystem

116. How do global load balancers help in a multi-cloud setup?

Difficulty: MediumType: MCQTopic: Load Balancing

They store backups
They distribute traffic across clouds
They create virtual machines
They monitor billing

Global load balancers manage incoming requests across multiple cloud regions or vendors. This improves fault tolerance and reduces latency for global applications.

Correct Answer: They distribute traffic across clouds

117. Which method keeps data consistent across hybrid environments?

Difficulty: MediumType: MCQTopic: Data Sync

Asynchronous replication
Manual uploads
Scheduled deletions
File compression

Asynchronous replication copies data between environments without blocking operations. It ensures near-real-time synchronization between cloud and on-prem systems.

Correct Answer: Asynchronous replication

118. Which service provides a private network connection between on-prem and cloud?

Difficulty: MediumType: MCQTopic: Hybrid Network

Direct Connect
CloudLink
Transit Gateway
VPC Peering

AWS Direct Connect and Azure ExpressRoute create dedicated private links. They offer better security and lower latency compared to public internet connections.

Correct Answer: Direct Connect

119. Which GCP service enables hybrid and multi-cloud Kubernetes management?

Difficulty: MediumType: MCQTopic: Hybrid Cloud

Cloud Run
Anthos
App Engine
Dataproc

Google Anthos allows consistent Kubernetes cluster management across on-prem and cloud providers. It standardizes policies and deployment pipelines across environments.

Correct Answer: Anthos

120. Which tool helps migrate virtual machines from on-prem to the cloud?

Difficulty: MediumType: MCQTopic: Migration

VM Import/Export
AWS S3
CloudFront
Kinesis

VM Import/Export allows transferring existing VMs to and from AWS. Similar tools exist in Azure (Migrate) and GCP (Migrate for Compute Engine).

Correct Answer: VM Import/Export

121. Which service allows syncing on-prem files with cloud storage?

Difficulty: MediumType: MCQTopic: Data Sync

Storage Gateway
CloudTrail
EBS
Lambda

AWS Storage Gateway connects on-prem applications with cloud storage. It provides hybrid data access for backups, archives, or file sharing.

Correct Answer: Storage Gateway

122. What are the key benefits of a multi-cloud approach?

Difficulty: MediumType: SubjectiveTopic: Multi Cloud

A multi-cloud setup avoids vendor lock-in and improves redundancy. It also lets organizations pick specialized services from each provider for performance or cost advantages.

123. Give a real-world use case of hybrid cloud deployment.

Difficulty: MediumType: SubjectiveTopic: Hybrid Cloud

A hospital might keep patient data on-prem for compliance but use public cloud for analytics. This mix ensures both security and flexibility without moving sensitive data outside control.

124. What challenges occur when migrating workloads between clouds?

Difficulty: MediumType: SubjectiveTopic: Migration

Common issues include incompatible APIs, data transfer costs, and re-architecting apps. Testing and phased migration help reduce downtime and risk during transitions.

125. Which tools simplify managing resources across multiple clouds?

Difficulty: MediumType: SubjectiveTopic: Integration

Tools like Terraform, Anthos, and Azure Arc provide unified management. They allow consistent policy enforcement, deployment, and monitoring across environments.

126. How can security be maintained in hybrid and multi-cloud setups?

Difficulty: MediumType: SubjectiveTopic: Hybrid Cloud

Implement unified IAM policies, encrypt data at rest and in transit, and use secure VPN or private links. Continuous monitoring and centralized logging keep visibility across all environments.

127. How can you design a highly available application on AWS?

Difficulty: MediumType: MCQTopic: High Availability

Deploy on a single instance
Use multiple Availability Zones with load balancing
Store data on a local disk
Use only one region

High availability comes from distributing workloads across multiple Availability Zones. If one zone fails, traffic automatically shifts to healthy instances through a load balancer.

Correct Answer: Use multiple Availability Zones with load balancing

128. Which service automatically adjusts compute capacity to match demand?

Difficulty: MediumType: MCQTopic: Scaling

CloudFormation
Auto Scaling
CloudTrail
S3 Transfer

Auto Scaling monitors metrics like CPU utilization and scales resources up or down. It ensures consistent performance while minimizing cost.

Correct Answer: Auto Scaling

129. What is a good backup strategy for critical databases?

Difficulty: MediumType: MCQTopic: Backup

Manual snapshots once a month
Automated daily backups with cross-region replication
No backups needed
Keeping data only in cache

Automating backups ensures data protection even if an entire region fails. Cross-region replication adds extra durability and disaster recovery coverage.

Correct Answer: Automated daily backups with cross-region replication

130. How can you balance cost and performance in cloud architecture?

Difficulty: MediumType: MCQTopic: Cost Mgmt

Use the largest instance type for all workloads
Mix reserved, spot, and on-demand instances based on usage
Run everything in multiple regions always
Disable auto-scaling

Combining instance types gives flexibility and savings. Critical services use on-demand or reserved capacity, while background tasks use cheaper spot instances.

Correct Answer: Mix reserved, spot, and on-demand instances based on usage

131. Which option provides the fastest recovery time in disaster recovery planning?

Difficulty: MediumType: MCQTopic: Disaster Recovery

Cold standby
Pilot light
Warm standby
Multi-site active-active

Active-active setups run workloads simultaneously in multiple regions. They provide near-zero downtime during outages but cost more to operate.

Correct Answer: Multi-site active-active

132. What factors influence region selection for deployment?

Difficulty: MediumType: MCQTopic: Regions AZ

Proximity to users and compliance requirements
Random choice
Where pricing is highest
Where servers look newer

Choose regions close to your customers for lower latency. Consider data residency laws, available services, and cost differences before deciding.

Correct Answer: Proximity to users and compliance requirements

133. Why are stateless applications preferred in auto-scaling environments?

Difficulty: MediumType: MCQTopic: Cloud Architecture

They consume more memory
They require no shared session data between servers
They must run only on one server
They are slower to deploy

Stateless apps make scaling easy because any instance can handle any request. Session data is stored in external caches or databases instead of local memory.

Correct Answer: They require no shared session data between servers

134. Which architecture separates UI, logic, and database layers?

Difficulty: MediumType: MCQTopic: Cloud Architecture

Single-tier
Two-tier
Three-tier
Serverless

A three-tier architecture separates presentation, application, and data layers. It improves scalability, maintainability, and fault isolation.

Correct Answer: Three-tier

135. What is one major advantage of using serverless architecture?

Difficulty: MediumType: MCQTopic: Serverless

You manage all servers manually
You pay only when the code runs
You must handle scaling manually
It increases idle costs

Serverless computing automatically handles scaling and billing per execution. This reduces costs for infrequent or unpredictable workloads.

Correct Answer: You pay only when the code runs

136. Why should DevOps teams simulate system failures in cloud environments?

Difficulty: MediumType: SubjectiveTopic: Chaos Testing

Failure testing, often called chaos engineering, reveals weak points in infrastructure. By practicing recovery, teams ensure faster response times and more resilient systems.

137. Outline a safe migration plan from on-premises to the cloud.

Difficulty: MediumType: SubjectiveTopic: Migration

Start with discovery to map dependencies, then move non-critical workloads first. Use hybrid connectivity like VPN or Direct Connect, test performance, and validate backups before full migration.

138. How do observability and monitoring differ in real deployments?

Difficulty: MediumType: SubjectiveTopic: Observability

Monitoring tracks predefined metrics, while observability allows deeper analysis from logs, traces, and metrics combined. Observability tools help understand unknown failures and complex microservice behaviors.

139. Describe the key security considerations when designing a cloud architecture.

Difficulty: MediumType: SubjectiveTopic: Security Design

Apply least-privilege IAM roles, encrypt data, enable logging, and segment networks. Also ensure patching automation and enforce multi-factor authentication for critical access.

140. What steps should a DevOps team take after a major production outage?

Difficulty: MediumType: SubjectiveTopic: Incident Response

First, restore service using rollback or backup. Then conduct a post-mortem to identify the root cause, update runbooks, and improve monitoring to prevent recurrence.

Related Subjects

HTML CSS Javascript Typescript SQL & Databases React

Continue your preparation

Browse more Cloud Basics questions, explore related subjects, or practice full interview sets to strengthen your preparation.

Cloud Basics subject page•All subjects

View subject page

Cloud Basics · Complete Question Bank

All Cloud Basics Interview Questions

Practice the complete collection of Cloud Basics interview questions including theory, coding, MCQs and real interview problems.

Total Questions: 140Topics: 58Complete interview preparation

Overview

Questions

140

Full database

Topics

Categorised

Difficulty

Mixed Levels

Easy Hard

All Cloud Basics Interview Questions (140)

Scroll through every important Cloud Basics question asked in real interviews. Includes MCQs, subjective questions, and coding prompts.

1. What is cloud computing?

Difficulty: EasyType: MCQTopic: Cloud Basics

Using physical servers only
Delivering computing services over the internet
Running applications offline
Installing software manually

Cloud computing means accessing servers, storage, databases, networking, and software over the internet. It removes the need for owning hardware and allows flexible scaling.

Correct Answer: Delivering computing services over the internet

2. Which of the following is NOT a cloud service model?

Difficulty: EasyType: MCQTopic: Cloud Models

IaaS
PaaS
SaaS
RAAS

The three main cloud service models are Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). RAAS is not a standard model in cloud computing.

Correct Answer: RAAS

3. Which model provides virtualized computing resources such as servers and storage?

Difficulty: MediumType: MCQTopic: Cloud Models

SaaS
IaaS
PaaS
DaaS

IaaS (Infrastructure as a Service) delivers computing infrastructure like virtual machines, networks, and storage. Users manage OS and applications while the provider manages hardware.

Correct Answer: IaaS

4. Which cloud model is best suited for developers to build and deploy applications quickly?

Difficulty: MediumType: MCQTopic: Cloud Models

IaaS
PaaS
SaaS
DaaS

PaaS (Platform as a Service) provides ready environments for building, testing, and deploying apps. Developers can focus on code without worrying about servers or OS management.

Correct Answer: PaaS

5. Which of the following is an example of Software as a Service (SaaS)?

Difficulty: EasyType: MCQTopic: Cloud Models

Google Docs
Amazon EC2
Azure VM
Kubernetes

SaaS delivers software via the internet. Users can access it through a browser without installation. Examples include Google Docs, Gmail, and Salesforce.

Correct Answer: Google Docs

6. Which is NOT a recognized cloud deployment model?

Difficulty: MediumType: MCQTopic: Cloud Models

Public Cloud
Private Cloud
Hybrid Cloud
Distributed Cloud

The three main deployment models are Public, Private, and Hybrid Cloud. Distributed Cloud is an emerging concept but not part of the original NIST-defined models.

Correct Answer: Distributed Cloud

7. What is the main advantage of a hybrid cloud?

Difficulty: MediumType: MCQTopic: Hybrid Cloud

Cheaper than public cloud
Combines on-premises and public cloud flexibility
Used only for backup
Less secure than private cloud

Hybrid cloud allows workloads to move between private and public clouds. This provides balance between control, scalability, and cost efficiency.

Correct Answer: Combines on-premises and public cloud flexibility

8. In the shared responsibility model, what is the cloud provider responsible for?

Difficulty: MediumType: MCQTopic: Shared Model

Security of the cloud infrastructure
Customer data security
Application updates
User permissions

Cloud providers handle the security *of* the cloud — like data centers and networks. Users manage security *in* the cloud — like access control and data protection.

Correct Answer: Security of the cloud infrastructure

9. What is the difference between a region and an availability zone?

Difficulty: MediumType: MCQTopic: Regions AZ

They are the same thing
A region is a geographic area; zones are isolated data centers inside it
A zone contains multiple regions
Zones are only for backup

Regions represent physical geographic areas like 'us-east-1'. Each region contains multiple availability zones for redundancy and high availability.

Correct Answer: A region is a geographic area; zones are isolated data centers inside it

10. Explain the concept of elasticity in cloud computing.

Difficulty: MediumType: SubjectiveTopic: Scaling

11. What is scalability and how is it different from elasticity?

Difficulty: MediumType: SubjectiveTopic: Scaling

12. What does multi-tenancy mean in cloud computing?

Difficulty: MediumType: SubjectiveTopic: Multi Tenancy

Multi-tenancy means multiple customers share the same physical resources securely. Each tenant’s data remains isolated even though they use shared hardware or virtual servers.

13. How does cloud computing support disaster recovery?

Difficulty: MediumType: SubjectiveTopic: Disaster Recovery

Cloud providers offer data replication across regions and automated backup solutions. In case of an outage, workloads can failover to another region with minimal downtime and no hardware replacement.

14. Describe the pay-as-you-go pricing model in cloud computing.

Difficulty: MediumType: SubjectiveTopic: Cloud Pricing

15. What does Amazon EC2 provide?

Difficulty: EasyType: MCQTopic: AWS Compute

Cloud storage service
Virtual servers to run applications
Database hosting only
Networking and DNS service

Amazon EC2 (Elastic Compute Cloud) provides scalable virtual machines called instances. You can choose CPU, memory, and storage configurations to deploy apps easily.

Correct Answer: Virtual servers to run applications

16. Which AWS service is mainly used for object storage?

Difficulty: EasyType: MCQTopic: Object Storage

Amazon S3 (Simple Storage Service) stores objects like images, videos, and backups. It’s highly durable and accessible via REST APIs from anywhere.

Correct Answer: S3

17. What is the primary purpose of AWS IAM?

Difficulty: MediumType: MCQTopic: IAM

Manage billing
Manage access and permissions for AWS resources
Host applications
Monitor server uptime

AWS IAM (Identity and Access Management) controls user authentication and authorization. You can create users, roles, and policies to define who can access what.

Correct Answer: Manage access and permissions for AWS resources

18. Which AWS service lets you create isolated private networks?

Difficulty: MediumType: MCQTopic: VPC

CloudFront
VPC
Route53
DirectConnect

Amazon VPC (Virtual Private Cloud) allows you to define custom private networks with subnets, routing, and firewalls. It’s the foundation for secure app hosting in AWS.

Correct Answer: VPC

19. Which AWS service provides monitoring and logging for resources?

Difficulty: MediumType: MCQTopic: Monitoring

CloudTrail
CloudWatch
Config
Inspector

Amazon CloudWatch monitors resource metrics like CPU, memory, and storage. You can set alarms and visualize trends for better operational insight.

Correct Answer: CloudWatch

20. What does AWS CloudTrail record?

Difficulty: MediumType: MCQTopic: Logging

API calls and account activity logs
Resource usage costs
Server health metrics
Traffic routing paths

AWS CloudTrail captures API activity across your account. It helps track changes, security audits, and user actions for compliance.

Correct Answer: API calls and account activity logs

21. Which service allows you to run code without provisioning or managing servers?

Difficulty: MediumType: MCQTopic: Serverless

Elastic Beanstalk
Lambda
Lightsail
Batch

AWS Lambda runs functions in response to triggers like API calls or S3 uploads. You pay only for compute time used — perfect for serverless architectures.

Correct Answer: Lambda

22. Which AWS pricing model charges only for what you use?

Difficulty: MediumType: MCQTopic: Cloud Pricing

Reserved Instances
Pay-as-you-go
Dedicated Host
Subscription

AWS follows the pay-as-you-go model for most services. You pay only for actual usage of compute, storage, or bandwidth without long-term contracts.

Correct Answer: Pay-as-you-go

23. What is an AWS Region?

Difficulty: MediumType: MCQTopic: Regions AZ

A physical data center
A collection of availability zones in a specific geographic area
A storage bucket location
A billing zone

An AWS Region is a cluster of data centers called availability zones. Each region is independent to support redundancy and disaster recovery.

Correct Answer: A collection of availability zones in a specific geographic area

24. Explain different types of EC2 instances.

Difficulty: MediumType: SubjectiveTopic: AWS Compute

25. What are the different S3 storage classes and their use cases?

Difficulty: MediumType: SubjectiveTopic: Storage Classes

S3 has classes like Standard, Infrequent Access, Glacier, and Intelligent-Tiering. Standard is for frequent access, IA for backups, and Glacier for archiving long-term cold data at very low cost.

26. How are IAM policies structured in AWS?

Difficulty: MediumType: SubjectiveTopic: IAM

27. List the main components of a VPC.

Difficulty: MediumType: SubjectiveTopic: VPC

A VPC includes subnets, route tables, internet gateways, NAT gateways, and security groups. These components work together to manage routing, connectivity, and isolation inside the AWS network.

28. Explain the difference between CloudWatch and CloudTrail.

Difficulty: MediumType: SubjectiveTopic: Monitoring

29. What is a Resource Group in Azure?

Difficulty: EasyType: MCQTopic: Resource Mgmt

A virtual machine cluster
A logical container for Azure resources
A physical data center
A user security group

A Resource Group is a logical container that holds related Azure resources such as VMs, databases, and storage accounts. It helps manage lifecycle, permissions, and monitoring as a single unit.

Correct Answer: A logical container for Azure resources

30. Which service provides virtual machines in Azure?

Difficulty: EasyType: MCQTopic: Compute

Azure Compute
Azure VM
Azure App Service
Azure Batch

Azure Virtual Machines allow you to deploy Windows or Linux instances in the cloud. They support scaling, snapshots, and integration with networking and storage.

Correct Answer: Azure VM

31. What type of storage is Azure Blob used for?

Difficulty: MediumType: MCQTopic: Object Storage

Structured database tables
Unstructured data like images and backups
Relational data
Virtual machine disks only

Azure Blob Storage is used for large-scale object storage. It supports storing text, images, videos, and backup files for web and analytics workloads.

Correct Answer: Unstructured data like images and backups

32. Which of these is NOT a type of Azure storage?

Difficulty: MediumType: MCQTopic: Storage Types

Blob
File
Queue
Stack

Azure provides Blob, File, Queue, and Table storage options. There is no service called 'Stack' in Azure’s storage offerings.

Correct Answer: Stack

33. What is Azure Active Directory primarily used for?

Difficulty: MediumType: MCQTopic: IAM

Virtual network creation
User identity and access management
File storage
Container orchestration

Azure Active Directory (Azure AD) manages user authentication and permissions across Microsoft cloud services. It supports single sign-on, MFA, and integration with on-prem directories.

Correct Answer: User identity and access management

34. Which Azure service allows hosting of web apps without managing infrastructure?

Difficulty: MediumType: MCQTopic: PaaS

Azure VM
App Service
AKS
Functions

Azure App Service is a fully managed PaaS offering to host web and mobile apps. It automatically handles scaling, load balancing, and security patches.

Correct Answer: App Service

35. What does ARM in Azure stand for?

Difficulty: MediumType: MCQTopic: IaC

Azure Resource Manager
Azure Recovery Module
Access Role Management
Active Resource Memory

Azure Resource Manager (ARM) is the deployment and management layer for Azure. It enables consistent creation and configuration of resources using templates or CLI.

Correct Answer: Azure Resource Manager

36. What is an Azure Region?

Difficulty: MediumType: MCQTopic: Regions AZ

A user subscription zone
A physical location containing data centers
A storage replication site only
A pricing tier for services

Azure Regions represent physical areas containing multiple data centers. They help achieve redundancy, data residency, and compliance across geographies.

Correct Answer: A physical location containing data centers

37. Which Azure pricing model is based on consumption?

Difficulty: MediumType: MCQTopic: Cloud Pricing

Reserved
Spot
Pay-as-you-go
Hybrid benefit

In the Pay-as-you-go model, you pay only for the compute and storage resources you use. It’s flexible and ideal for variable or experimental workloads.

Correct Answer: Pay-as-you-go

38. What are Azure Virtual Machine Scale Sets used for?

Difficulty: MediumType: SubjectiveTopic: Autoscaling

39. Explain Azure Functions and when to use them.

Difficulty: MediumType: SubjectiveTopic: Serverless

Azure Functions is a serverless compute service that runs event-driven code without managing infrastructure. Use it for background jobs, file uploads, scheduled tasks, or API event handling.

40. What are Azure Resource Locks and why are they important?

Difficulty: MediumType: SubjectiveTopic: Resource Mgmt

Resource Locks prevent accidental modification or deletion of critical Azure resources. Two types exist — CanNotDelete (protects deletion) and ReadOnly (prevents changes).

41. What is an ARM template and what are its benefits?

Difficulty: MediumType: SubjectiveTopic: IaC

An ARM template is a JSON file that defines Azure infrastructure in code. It enables consistent deployments, version control, and automation using Infrastructure-as-Code principles.

42. Differentiate between Azure AD and traditional Active Directory.

Difficulty: MediumType: SubjectiveTopic: IAM

43. What is Google Cloud Platform (GCP)?

Difficulty: EasyType: MCQTopic: GCP Basics

A social media platform
A suite of cloud services by Google
A data visualization tool
An IoT device management software

GCP provides infrastructure, platform, and software services for compute, storage, networking, and AI. It powers products like YouTube and Gmail, and supports enterprise workloads.

Correct Answer: A suite of cloud services by Google

44. Which GCP service provides virtual machines similar to AWS EC2?

Difficulty: EasyType: MCQTopic: Compute

Cloud Run
Compute Engine
App Engine
Cloud Functions

Compute Engine is GCP’s Infrastructure-as-a-Service offering that provides customizable virtual machines. It supports both Linux and Windows instances with flexible machine types.

Correct Answer: Compute Engine

45. Which service in GCP allows developers to deploy web apps without managing servers?

Difficulty: MediumType: MCQTopic: PaaS

Compute Engine
App Engine
Cloud Run
Kubernetes Engine

App Engine is a fully managed Platform-as-a-Service for deploying scalable web apps. It automatically handles load balancing, scaling, and patching.

Correct Answer: App Engine

46. Which service in GCP provides object storage similar to Amazon S3?

Difficulty: MediumType: MCQTopic: Object Storage

Persistent Disk
Cloud Storage
Firestore
Filestore

Cloud Storage provides globally available object storage for files, media, and backups. It supports multi-region replication and lifecycle management.

Correct Answer: Cloud Storage

47. What is the main purpose of BigQuery in GCP?

Difficulty: MediumType: MCQTopic: Analytics

Hosting web apps
Running serverless data analysis
Managing VM networks
Storing unstructured data

BigQuery is GCP’s serverless data warehouse designed for large-scale analytics using SQL. It is optimized for high-speed query performance on petabytes of data.

Correct Answer: Running serverless data analysis

48. Which service allows you to execute code in response to events without managing servers?

Difficulty: MediumType: MCQTopic: Serverless

Compute Engine
Cloud Functions
Cloud Run
App Engine

Cloud Functions is GCP’s serverless compute service. You can run short pieces of code triggered by HTTP requests, storage changes, or Pub/Sub messages.

Correct Answer: Cloud Functions

49. What does a Virtual Private Cloud (VPC) in GCP provide?

Difficulty: MediumType: MCQTopic: VPC

Shared file storage
Network isolation and control
Cloud cost optimization
Machine learning automation

A VPC in GCP gives you private networking control for your compute and storage resources. You can define subnets, firewalls, and routes for secure communication.

Correct Answer: Network isolation and control

50. What is the function of Identity and Access Management (IAM) in GCP?

Difficulty: MediumType: MCQTopic: IAM

Resource billing
User authentication and permission control
Application deployment
Backup scheduling

IAM lets administrators define who can access which resources and what actions they can perform. It provides roles and policies for fine-grained access management.

Correct Answer: User authentication and permission control

51. Which statement best describes GCP's billing model?

Difficulty: MediumType: MCQTopic: Billing

Fixed monthly subscription
Pay-as-you-go for actual usage
Annual prepaid license
Per-user flat rate

GCP uses a consumption-based model — you only pay for what you use. You can combine sustained use discounts and committed use savings for better cost control.

Correct Answer: Pay-as-you-go for actual usage

52. What is the role of a Project in GCP?

Difficulty: MediumType: SubjectiveTopic: Resource Mgmt

53. What is a Service Account in GCP and when is it used?

Difficulty: MediumType: SubjectiveTopic: IAM

A Service Account is a special Google account used by applications or services instead of users. It enables secure server-to-server communication and resource access through keys or tokens.

54. Differentiate between Cloud Run and App Engine.

Difficulty: MediumType: SubjectiveTopic: Serverless

Cloud Run is for containerized applications, offering flexibility in language and runtime. App Engine is for managed applications where the platform handles scaling and updates automatically.

55. Describe the storage classes available in Google Cloud Storage.

Difficulty: MediumType: SubjectiveTopic: Storage Classes

GCS provides Standard, Nearline, Coldline, and Archive classes. Standard is for frequent access, Nearline and Coldline for backups, and Archive for long-term low-cost storage.

56. What are the main benefits of using GCP?

Difficulty: MediumType: SubjectiveTopic: GCP Basics

GCP offers global scalability, strong data analytics tools, and AI integration. It provides flexible pricing, high security, and open-source compatibility across workloads.

57. What is a Virtual Private Cloud (VPC)?

Difficulty: EasyType: MCQTopic: VPC

A public internet service
An isolated network within the cloud
A backup storage area
A virtual machine configuration

A VPC is a logically isolated section of a cloud provider’s network. It lets you define subnets, routing tables, and firewalls to control communication between resources.

Correct Answer: An isolated network within the cloud

58. What is the purpose of a subnet in a VPC?

Difficulty: EasyType: MCQTopic: Subnetting

To host databases only
To divide a network into smaller sections
To control data encryption
To monitor CPU usage

Subnets divide your VPC into smaller address spaces for better organization and security. You can use public subnets for internet-facing resources and private ones for internal servers.

Correct Answer: To divide a network into smaller sections

59. Which of the following controls inbound and outbound traffic at the instance level?

Difficulty: MediumType: MCQTopic: Network Security

NACL
Firewall
Security Group
VPC Router

A Security Group acts as a virtual firewall for your instance. It controls inbound and outbound traffic based on defined port, protocol, and IP rules.

Correct Answer: Security Group

60. What is a Network Access Control List (NACL) used for?

Difficulty: MediumType: MCQTopic: Network Security

Encrypting data
Controlling traffic at the subnet level
Managing user access to the console
Connecting multiple regions

NACLs provide an additional security layer at the subnet level. They allow or deny traffic based on IP, protocol, and port, and apply before Security Groups.

Correct Answer: Controlling traffic at the subnet level

61. Why are VPNs used in cloud environments?

Difficulty: MediumType: MCQTopic: VPN

To reduce storage cost
To create secure encrypted connections
To increase CPU speed
To connect IoT devices

VPNs connect on-premise data centers to cloud networks securely. They use encrypted tunnels to ensure data privacy over public internet connections.

Correct Answer: To create secure encrypted connections

62. What does a load balancer do in cloud architecture?

Difficulty: MediumType: MCQTopic: Load Balancing

Balances storage utilization
Distributes traffic across multiple servers
Replicates data between regions
Monitors network security

A load balancer evenly distributes incoming traffic across multiple servers. This ensures high availability, performance, and fault tolerance for applications.

Correct Answer: Distributes traffic across multiple servers

63. What is the main purpose of encryption in cloud storage?

Difficulty: MediumType: MCQTopic: Encryption

To compress data
To protect data confidentiality
To improve upload speed
To remove duplicate files

Encryption protects data from unauthorized access by converting it into unreadable text. Most cloud providers support encryption both at rest and in transit.

Correct Answer: To protect data confidentiality

64. What does IAM stand for in cloud security?

Difficulty: MediumType: MCQTopic: IAM

Identity and Access Management
Information Analysis Module
Infrastructure Access Monitoring
Internet Authentication Method

IAM controls who can access which resources in the cloud. It enforces authentication (who you are) and authorization (what you can do).

Correct Answer: Identity and Access Management

65. Which term describes an attack that floods a service with fake traffic?

Difficulty: MediumType: MCQTopic: DDoS

SQL Injection
Man-in-the-middle
DDoS
Phishing

A Distributed Denial-of-Service (DDoS) attack overwhelms a server with excessive requests. Cloud providers offer built-in DDoS protection and rate limiting to defend against it.

Correct Answer: DDoS

66. How do firewall rules work in cloud environments?

Difficulty: MediumType: SubjectiveTopic: Network Security

Firewall rules define which traffic is allowed or denied to resources based on IP, port, and protocol. They can be configured at instance, subnet, or project level to ensure proper access control.

67. Explain the Shared Responsibility Model in cloud security.

Difficulty: MediumType: SubjectiveTopic: Shared Model

68. What are some IAM best practices to follow in cloud environments?

Difficulty: MediumType: SubjectiveTopic: IAM

69. List some cloud-native tools used for monitoring and securing networks.

Difficulty: MediumType: SubjectiveTopic: Network Security

70. What is the Zero Trust model in cloud security?

Difficulty: MediumType: SubjectiveTopic: Zero Trust

Zero Trust means never trust by default — always verify every request. It enforces strict identity checks and segmentation, assuming that both internal and external networks can be compromised.

71. Which type of storage is used for storing unstructured data like images and backups?

Difficulty: EasyType: MCQTopic: Object Storage

Block storage
File storage
Object storage
Relational storage

Object storage keeps data as objects with metadata and a unique ID. It is ideal for storing files, logs, media, and backups at scale.

Correct Answer: Object storage

72. Which AWS service provides object storage?

Difficulty: EasyType: MCQTopic: Object Storage

EFS
EBS
S3
CloudFront

Amazon S3 (Simple Storage Service) is designed for storing and retrieving any amount of data. It’s highly durable, scalable, and accessible via the web.

Correct Answer: S3

73. What is Azure Blob Storage mainly used for?

Difficulty: EasyType: MCQTopic: Object Storage

Hosting virtual machines
Storing unstructured data like media files
Managing SQL databases
Running containerized apps

Azure Blob Storage is a scalable object store for unstructured data. It supports hot, cool, and archive tiers to optimize cost and access speed.

Correct Answer: Storing unstructured data like media files

74. Which GCP service provides managed relational databases?

Difficulty: MediumType: MCQTopic: Managed DB

Cloud Storage
BigQuery
Cloud SQL
Firestore

Cloud SQL offers managed MySQL, PostgreSQL, and SQL Server databases. It handles backups, replication, and automatic failover for high availability.

Correct Answer: Cloud SQL

75. Which AWS service is a fully managed NoSQL database?

Difficulty: MediumType: MCQTopic: NoSQL DB

RDS
Aurora
DynamoDB
Redshift

DynamoDB is a key-value and document-based NoSQL database. It provides fast and predictable performance with seamless scalability.

Correct Answer: DynamoDB

76. What does Amazon RDS help you manage?

Difficulty: MediumType: MCQTopic: Managed DB

Container orchestration
Relational databases like MySQL and PostgreSQL
Cloud file systems
Serverless functions

Amazon RDS automates setup, patching, and backups for relational databases. It supports multiple engines like MySQL, PostgreSQL, MariaDB, Oracle, and SQL Server.

Correct Answer: Relational databases like MySQL and PostgreSQL

77. Which of the following ensures data recovery after accidental deletion?

Difficulty: MediumType: MCQTopic: Backup

Snapshots
Replication
Scaling
Load balancing

Snapshots capture the current state of data or a database. They enable point-in-time recovery and easy restoration during failure or data loss.

Correct Answer: Snapshots

78. What is the purpose of storage classes in cloud object storage?

Difficulty: MediumType: MCQTopic: Storage Classes

To organize files alphabetically
To define pricing and access frequency
To set permission rules
To manage user roles

Storage classes allow data to be placed in cost-effective tiers. Frequently accessed data stays in hot storage, while infrequent data moves to cold or archive storage.

Correct Answer: To define pricing and access frequency

79. What is a storage lifecycle policy?

Difficulty: MediumType: MCQTopic: Storage Lifecycle

A rule for encrypting data
A rule for automatic data transition and deletion
A tool for file compression
A logging mechanism

Lifecycle policies automatically move or delete data based on age or access patterns. They help save costs and manage long-term data retention efficiently.

Correct Answer: A rule for automatic data transition and deletion

80. Why do cloud providers offer multi-region storage options?

Difficulty: MediumType: SubjectiveTopic: Storage Replication

Multi-region storage replicates data across geographically distant data centers. This improves availability, reduces latency for global users, and provides disaster recovery protection.

81. Differentiate between relational and NoSQL databases in the cloud.

Difficulty: MediumType: SubjectiveTopic: DB Basics

82. How is data secured in cloud storage?

Difficulty: MediumType: SubjectiveTopic: Encryption

Cloud providers offer encryption at rest using managed keys or customer-managed keys. Data in transit is secured with SSL or TLS to prevent interception and ensure privacy.

83. What are the main benefits of using managed database services like RDS or Cloud SQL?

Difficulty: MediumType: SubjectiveTopic: Managed DB

Managed databases handle routine operations like patching, scaling, backups, and failover. This saves time for DevOps teams and ensures consistent performance and security.

84. When should you use cold or archive storage?

Difficulty: MediumType: SubjectiveTopic: Cold Storage

Cold storage is ideal for data that is rarely accessed but must be retained for compliance or analysis. It costs much less than hot storage but retrieval times are slower.

85. Why is automation important in cloud environments?

Difficulty: EasyType: MCQTopic: Automation

To increase manual effort
To reduce human errors and improve consistency
To avoid scaling applications
To slow down deployments

Automation ensures repeatable, error-free configurations and faster deployments. It eliminates manual intervention for tasks like provisioning, scaling, and patching.

Correct Answer: To reduce human errors and improve consistency

86. Which AWS service is used for automating infrastructure deployment using templates?

Difficulty: EasyType: MCQTopic: IaC

CloudFormation
CodePipeline
OpsWorks
Elastic Beanstalk

AWS CloudFormation allows you to define and provision infrastructure using JSON or YAML templates. It treats infrastructure as code, ensuring consistency across environments.

Correct Answer: CloudFormation

87. Which open-source tool is commonly used for multi-cloud infrastructure automation?

Difficulty: MediumType: MCQTopic: IaC

Ansible
Terraform
Chef
SaltStack

Terraform by HashiCorp lets you manage infrastructure across AWS, Azure, and GCP. It uses declarative configuration files and tracks resource state for repeatable deployments.

Correct Answer: Terraform

88. Which tool is agentless and uses YAML playbooks for automation?

Difficulty: MediumType: MCQTopic: Config Mgmt

Chef
Ansible
Puppet
Jenkins

Ansible is an agentless automation tool that uses SSH to configure servers. Its YAML-based playbooks make it simple to read, write, and reuse across environments.

Correct Answer: Ansible

89. What is Jenkins primarily used for in DevOps?

Difficulty: MediumType: MCQTopic: CI CD

Database replication
Continuous Integration and Continuous Delivery
File storage
Monitoring network traffic

Jenkins automates building, testing, and deploying applications. It integrates with version control systems and cloud services to run complete CI/CD pipelines.

Correct Answer: Continuous Integration and Continuous Delivery

90. What does 'Infrastructure as Code' (IaC) mean?

Difficulty: MediumType: MCQTopic: IaC

Writing code inside servers
Defining infrastructure through configuration files
Manually setting up servers via console
Developing mobile apps for cloud

IaC allows you to provision and manage cloud resources using declarative code. This ensures repeatable, version-controlled, and auditable infrastructure management.

Correct Answer: Defining infrastructure through configuration files

91. Which AWS service provides a managed CI/CD pipeline?

Difficulty: MediumType: MCQTopic: CI CD

CodeDeploy
CodePipeline
CodeBuild
CodeCommit

AWS CodePipeline automates build, test, and deployment phases. It integrates with other AWS developer tools or third-party CI/CD systems.

Correct Answer: CodePipeline

92. What is Azure DevOps mainly used for?

Difficulty: MediumType: MCQTopic: CI CD

Data analytics
End-to-end software lifecycle management
Machine learning training
File backups

Azure DevOps offers tools for planning, coding, building, testing, and deploying software. It supports CI/CD pipelines, version control, and project tracking in one suite.

Correct Answer: End-to-end software lifecycle management

93. Which of the following is a major benefit of using automation in cloud deployment?

Difficulty: MediumType: MCQTopic: Automation

Increased manual errors
Slower deployment times
Faster and consistent provisioning
Higher infrastructure cost

Automation tools eliminate repetitive manual steps and ensure consistency. This leads to faster provisioning, predictable outcomes, and reduced operational costs.

Correct Answer: Faster and consistent provisioning

94. Explain how CI/CD works in cloud-based DevOps pipelines.

Difficulty: MediumType: SubjectiveTopic: CI CD

95. Compare Terraform and CloudFormation.

Difficulty: MediumType: SubjectiveTopic: IaC

96. When would you use Ansible in a cloud project?

Difficulty: MediumType: SubjectiveTopic: Config Mgmt

Ansible is used for configuration management, app deployment, and environment setup. In cloud DevOps, it automates repetitive tasks like installing dependencies or updating servers after deployment.

97. How does cloud computing enhance DevOps practices?

Difficulty: MediumType: SubjectiveTopic: DevOps

Cloud platforms provide scalability, API-based provisioning, and managed services. This allows DevOps teams to deploy, test, and scale applications rapidly with minimal infrastructure overhead.

98. Give an example of real-world automation used in cloud DevOps.

Difficulty: MediumType: SubjectiveTopic: Automation

A common example is using Jenkins to trigger Terraform scripts after a Git push. This pipeline automatically provisions cloud servers, deploys code, and notifies the team via Slack upon completion.

99. Why is monitoring important in cloud environments?

Difficulty: EasyType: MCQTopic: Monitoring

To slow down systems
To detect issues and optimize performance
To increase manual work
To disable alerts

Monitoring helps track system health, usage, and errors. It ensures services stay available and allows early detection of performance problems.

Correct Answer: To detect issues and optimize performance

100. Which AWS service collects metrics and logs for monitoring?

Difficulty: EasyType: MCQTopic: Monitoring

CloudTrail
CloudWatch
GuardDuty
Inspector

Amazon CloudWatch gathers logs, metrics, and alarms for AWS resources. It helps visualize performance and trigger alerts automatically.

Correct Answer: CloudWatch

101. What is the monitoring tool in Google Cloud called?

Difficulty: EasyType: MCQTopic: Monitoring

StackDriver
OpsView
LogWatch
CloudTrail

StackDriver Monitoring (now Cloud Monitoring) provides visibility into GCP, AWS, and hybrid workloads. It offers dashboards, uptime checks, and alerting policies.

Correct Answer: StackDriver

102. Which Azure service centralizes metrics and logs?

Difficulty: MediumType: MCQTopic: Monitoring

Azure Advisor
Azure Monitor
Azure Sentinel
Log Analytics

Azure Monitor collects telemetry from resources and applications. It integrates with Log Analytics and Application Insights for deeper diagnostics.

Correct Answer: Azure Monitor

103. Which AWS service records API calls for auditing?

Difficulty: MediumType: MCQTopic: Logging

CloudTrail
CloudWatch
GuardDuty
Inspector

AWS CloudTrail logs every API call, including who made it and from where. It’s essential for auditing, compliance, and incident investigations.

Correct Answer: CloudTrail

104. What is an alert in a monitoring system?

Difficulty: MediumType: MCQTopic: Alerting

A database backup process
A notification triggered by predefined thresholds
A script that deletes logs
A manual report

Alerts notify teams when metrics exceed defined limits. They help respond quickly to downtime or resource overuse.

Correct Answer: A notification triggered by predefined thresholds

105. Where can AWS users view cost and usage reports?

Difficulty: MediumType: MCQTopic: Billing

Billing Dashboard
CloudWatch
QuickSight
Cost Analyzer

The AWS Billing Dashboard shows detailed spending reports and forecasted costs. It helps teams track budgets and detect abnormal spending early.

Correct Answer: Billing Dashboard

106. Which Azure tool gives cost-saving recommendations?

Difficulty: MediumType: MCQTopic: Cost Mgmt

Azure Advisor
Azure Sentinel
Cost Center
Budget Hub

Azure Advisor analyzes usage patterns and suggests optimizations. It covers cost, performance, security, and reliability recommendations.

Correct Answer: Azure Advisor

107. Which feature lets you set spending limits and receive alerts when exceeded?

Difficulty: MediumType: MCQTopic: Cost Mgmt

Cost Explorer
Budgets
Savings Plans
Reserved Instances

Budgets allow users to define monthly or project-based cost limits. Email or SNS alerts trigger when actual or forecasted costs exceed thresholds.

Correct Answer: Budgets

108. Why is centralized logging important in cloud environments?

Difficulty: MediumType: SubjectiveTopic: Logging

Centralized logging aggregates logs from multiple services into one location. It simplifies troubleshooting, security analysis, and compliance auditing by providing a single source of truth.

109. List some best practices for cost optimization in the cloud.

Difficulty: MediumType: SubjectiveTopic: Cost Mgmt

Use auto-scaling to match resources with demand, and shut down idle instances. Choose reserved or spot instances for predictable workloads, and enable budgets or alerts for cost tracking.

110. Which key metrics should DevOps teams monitor regularly?

Difficulty: MediumType: SubjectiveTopic: Monitoring

Monitor CPU, memory, disk I/O, and network utilization to ensure healthy performance. Also track latency, error rates, and request counts to detect bottlenecks early.

111. Explain the purpose of AWS Cost Explorer.

Difficulty: MediumType: SubjectiveTopic: Cost Mgmt

Cost Explorer visualizes historical and forecasted spending across AWS accounts. It helps identify cost trends, unused resources, and opportunities to use savings plans or reserved instances.

112. How can monitoring be integrated into CI/CD pipelines?

Difficulty: MediumType: SubjectiveTopic: Monitoring

Monitoring can trigger automated rollbacks or alerts when deployment errors occur. Integrating tools like Prometheus or CloudWatch ensures continuous visibility throughout the release cycle.

113. What does a multi-cloud strategy mean?

Difficulty: EasyType: MCQTopic: Multi Cloud

Using only one provider
Using multiple cloud providers at once
Migrating all data to on-premises
Running apps without the internet

A multi-cloud strategy uses services from more than one cloud vendor. It helps improve resilience, avoid vendor lock-in, and optimize performance by picking the best tools from each provider.

Correct Answer: Using multiple cloud providers at once

114. What is a hybrid cloud?

Difficulty: EasyType: MCQTopic: Hybrid Cloud

A mix of private and public clouds working together
A set of local servers only
Multiple data centers from one vendor
Cloud without networking

Hybrid cloud combines on-premise infrastructure with public or private cloud services. It allows secure data sharing and flexible scaling between both environments.

Correct Answer: A mix of private and public clouds working together

115. What does 'vendor lock-in' refer to?

Difficulty: MediumType: MCQTopic: Vendor Lockin

Using open-source software
Being dependent on one provider’s ecosystem
Running multiple providers together
Encrypting all files

Vendor lock-in happens when applications rely heavily on one provider’s tools and APIs. Switching providers becomes expensive and complex due to compatibility issues.

Correct Answer: Being dependent on one provider’s ecosystem

116. How do global load balancers help in a multi-cloud setup?

Difficulty: MediumType: MCQTopic: Load Balancing

They store backups
They distribute traffic across clouds
They create virtual machines
They monitor billing

Global load balancers manage incoming requests across multiple cloud regions or vendors. This improves fault tolerance and reduces latency for global applications.

Correct Answer: They distribute traffic across clouds

117. Which method keeps data consistent across hybrid environments?

Difficulty: MediumType: MCQTopic: Data Sync

Asynchronous replication
Manual uploads
Scheduled deletions
File compression

Asynchronous replication copies data between environments without blocking operations. It ensures near-real-time synchronization between cloud and on-prem systems.

Correct Answer: Asynchronous replication

118. Which service provides a private network connection between on-prem and cloud?

Difficulty: MediumType: MCQTopic: Hybrid Network

Direct Connect
CloudLink
Transit Gateway
VPC Peering

AWS Direct Connect and Azure ExpressRoute create dedicated private links. They offer better security and lower latency compared to public internet connections.

Correct Answer: Direct Connect

119. Which GCP service enables hybrid and multi-cloud Kubernetes management?

Difficulty: MediumType: MCQTopic: Hybrid Cloud

Cloud Run
Anthos
App Engine
Dataproc

Google Anthos allows consistent Kubernetes cluster management across on-prem and cloud providers. It standardizes policies and deployment pipelines across environments.

Correct Answer: Anthos

120. Which tool helps migrate virtual machines from on-prem to the cloud?

Difficulty: MediumType: MCQTopic: Migration

VM Import/Export
AWS S3
CloudFront
Kinesis

VM Import/Export allows transferring existing VMs to and from AWS. Similar tools exist in Azure (Migrate) and GCP (Migrate for Compute Engine).

Correct Answer: VM Import/Export

121. Which service allows syncing on-prem files with cloud storage?

Difficulty: MediumType: MCQTopic: Data Sync

Storage Gateway
CloudTrail
EBS
Lambda

AWS Storage Gateway connects on-prem applications with cloud storage. It provides hybrid data access for backups, archives, or file sharing.

Correct Answer: Storage Gateway

122. What are the key benefits of a multi-cloud approach?

Difficulty: MediumType: SubjectiveTopic: Multi Cloud

A multi-cloud setup avoids vendor lock-in and improves redundancy. It also lets organizations pick specialized services from each provider for performance or cost advantages.

123. Give a real-world use case of hybrid cloud deployment.

Difficulty: MediumType: SubjectiveTopic: Hybrid Cloud

A hospital might keep patient data on-prem for compliance but use public cloud for analytics. This mix ensures both security and flexibility without moving sensitive data outside control.

124. What challenges occur when migrating workloads between clouds?

Difficulty: MediumType: SubjectiveTopic: Migration

Common issues include incompatible APIs, data transfer costs, and re-architecting apps. Testing and phased migration help reduce downtime and risk during transitions.

125. Which tools simplify managing resources across multiple clouds?

Difficulty: MediumType: SubjectiveTopic: Integration

Tools like Terraform, Anthos, and Azure Arc provide unified management. They allow consistent policy enforcement, deployment, and monitoring across environments.

126. How can security be maintained in hybrid and multi-cloud setups?

Difficulty: MediumType: SubjectiveTopic: Hybrid Cloud

Implement unified IAM policies, encrypt data at rest and in transit, and use secure VPN or private links. Continuous monitoring and centralized logging keep visibility across all environments.

127. How can you design a highly available application on AWS?

Difficulty: MediumType: MCQTopic: High Availability

Deploy on a single instance
Use multiple Availability Zones with load balancing
Store data on a local disk
Use only one region

High availability comes from distributing workloads across multiple Availability Zones. If one zone fails, traffic automatically shifts to healthy instances through a load balancer.

Correct Answer: Use multiple Availability Zones with load balancing

128. Which service automatically adjusts compute capacity to match demand?

Difficulty: MediumType: MCQTopic: Scaling

CloudFormation
Auto Scaling
CloudTrail
S3 Transfer

Auto Scaling monitors metrics like CPU utilization and scales resources up or down. It ensures consistent performance while minimizing cost.

Correct Answer: Auto Scaling

129. What is a good backup strategy for critical databases?

Difficulty: MediumType: MCQTopic: Backup

Manual snapshots once a month
Automated daily backups with cross-region replication
No backups needed
Keeping data only in cache

Automating backups ensures data protection even if an entire region fails. Cross-region replication adds extra durability and disaster recovery coverage.

Correct Answer: Automated daily backups with cross-region replication

130. How can you balance cost and performance in cloud architecture?

Difficulty: MediumType: MCQTopic: Cost Mgmt

Use the largest instance type for all workloads
Mix reserved, spot, and on-demand instances based on usage
Run everything in multiple regions always
Disable auto-scaling

Combining instance types gives flexibility and savings. Critical services use on-demand or reserved capacity, while background tasks use cheaper spot instances.

Correct Answer: Mix reserved, spot, and on-demand instances based on usage

131. Which option provides the fastest recovery time in disaster recovery planning?

Difficulty: MediumType: MCQTopic: Disaster Recovery

Cold standby
Pilot light
Warm standby
Multi-site active-active

Active-active setups run workloads simultaneously in multiple regions. They provide near-zero downtime during outages but cost more to operate.

Correct Answer: Multi-site active-active

132. What factors influence region selection for deployment?

Difficulty: MediumType: MCQTopic: Regions AZ

Proximity to users and compliance requirements
Random choice
Where pricing is highest
Where servers look newer

Choose regions close to your customers for lower latency. Consider data residency laws, available services, and cost differences before deciding.

Correct Answer: Proximity to users and compliance requirements

133. Why are stateless applications preferred in auto-scaling environments?

Difficulty: MediumType: MCQTopic: Cloud Architecture

They consume more memory
They require no shared session data between servers
They must run only on one server
They are slower to deploy

Stateless apps make scaling easy because any instance can handle any request. Session data is stored in external caches or databases instead of local memory.

Correct Answer: They require no shared session data between servers

134. Which architecture separates UI, logic, and database layers?

Difficulty: MediumType: MCQTopic: Cloud Architecture

Single-tier
Two-tier
Three-tier
Serverless

A three-tier architecture separates presentation, application, and data layers. It improves scalability, maintainability, and fault isolation.

Correct Answer: Three-tier

135. What is one major advantage of using serverless architecture?

Difficulty: MediumType: MCQTopic: Serverless

You manage all servers manually
You pay only when the code runs
You must handle scaling manually
It increases idle costs

Serverless computing automatically handles scaling and billing per execution. This reduces costs for infrequent or unpredictable workloads.

Correct Answer: You pay only when the code runs

136. Why should DevOps teams simulate system failures in cloud environments?

Difficulty: MediumType: SubjectiveTopic: Chaos Testing

Failure testing, often called chaos engineering, reveals weak points in infrastructure. By practicing recovery, teams ensure faster response times and more resilient systems.

137. Outline a safe migration plan from on-premises to the cloud.

Difficulty: MediumType: SubjectiveTopic: Migration

Start with discovery to map dependencies, then move non-critical workloads first. Use hybrid connectivity like VPN or Direct Connect, test performance, and validate backups before full migration.

138. How do observability and monitoring differ in real deployments?

Difficulty: MediumType: SubjectiveTopic: Observability

139. Describe the key security considerations when designing a cloud architecture.

Difficulty: MediumType: SubjectiveTopic: Security Design

Apply least-privilege IAM roles, encrypt data, enable logging, and segment networks. Also ensure patching automation and enforce multi-factor authentication for critical access.

140. What steps should a DevOps team take after a major production outage?

Difficulty: MediumType: SubjectiveTopic: Incident Response

First, restore service using rollback or backup. Then conduct a post-mortem to identify the root cause, update runbooks, and improve monitoring to prevent recurrence.

Related Subjects

HTML CSS Javascript Typescript SQL & Databases React

Continue your preparation

Browse more Cloud Basics questions, explore related subjects, or practice full interview sets to strengthen your preparation.

Cloud Basics subject page•All subjects