Knowledge Check - Management and Governance
Test your understanding of the key concepts from Module 3. Select the best answer for each question, then submit to see your results. You need to score at least 60% to pass.
Which statement best describes the key difference between an Administrator and a Contract Owner in IONOS Cloud?
The Contract Owner holds all privileges including exclusive control over the payment method, while Administrators share the same broad operational rights for managing resources and users but are specifically restricted from changing payment information. This distinction is covered in Section 2 of Unit 3.1. Options A, C, and D are incorrect because subcontract creation is a Contract Owner capability, Administrators have full edit rights by default, and the two roles differ precisely on financial controls.
A developer has Two-Factor Authentication (2FA) enabled on their IONOS Cloud account and needs to authenticate API calls from an automation script. What is the correct approach?
Token Manager is mandatory for accounts with 2FA enabled because API calls cannot use a password alone when 2FA is active. As described in Unit 3.2, Section 3, the developer generates a Bearer JWT from Menu - Management - Token Manager in the DCD, stores the token securely (it is shown only once), and places it in the Authorization header of every API call. Options A and B involve weakening security, and Option C is incorrect because SSH Key Manager handles VM access, not API authentication.
A Cost Alert is configured with a threshold of $1,000. Your contract reaches $1,000 in charges, triggering an email notification. Spending then continues to $1,200. How many total email notifications does the alert send?
As explained in Unit 3.3, Section 2.1, Cost Alerts send a single email notification the first time the threshold is reached or exceeded. The alert does not fire again even if spending continues to climb. This design prevents email flooding but means you should continue monitoring the Cost and Usage dashboard after receiving the initial alert. Options B, C, and D misrepresent how the notification mechanism works.
A security analyst is investigating a potential data breach and needs to determine which user account performed specific configuration changes on a virtual machine last Tuesday. Which IONOS Cloud service provides this information?
Activity Logs provide a read-only, chronological audit trail of every user action including resource provisioning, configuration changes, logins, and data access events, along with the user identity, timestamp, and source IP. This is exactly the "who did what and when" question described in Unit 3.4, Section 1. Flow Logs (Option A) capture network traffic patterns, not user actions. The Monitoring Service (Option B) tracks performance metrics, not user operations. The Logging Service (Option D) handles application and system logs, not user-action audits.
Under the IONOS Cloud shared responsibility model, which of the following is the customer's responsibility?
In the shared responsibility model covered in Unit 3.5, Section 1, IONOS is responsible for the physical infrastructure, network backbone, and hypervisor layer. Customers are responsible for everything they deploy on top of that foundation, including operating system hardening, application security, access control configuration, and data management. Options A, C, and D all describe infrastructure-layer responsibilities that IONOS owns entirely, not the customer.