AWS Certified Cloud Practitioner CLF-C02 → CLF-C02 Part 2

CLF-C02 Part 2

1. A company has multiple AWS accounts and wants to simplify and consolidate its billing process.
Which AWS service will achieve this?

A. AWS Cost and Usage Reports
B. AWS Organizations
C. AWS Cost Explorer
D. AWS Budgets

2. A company is designing an application hosted in a single AWS Region serving end-users spread across the world. The company wants to provide the end-users low latency access to the application data. Which of the following services will help fulfill this requirement?

A. Amazon CloudFront
B. AWS Direct Connect
C. Amazon Route 53 global DNS
D. Amazon Simple Storage Service (Amazon S3) transfer acceleration

3. Which of the following deployment models enables customers to fully trade their capital IT expenses for operational expenses?

A. On-premises
B. Hybrid
C. Cloud
D. Platform as a service

4. How is asset management on AWS easier than asset management in a physical data center?

A. AWS provides a Configuration Management Database that users can maintain.
B. AWS performs infrastructure discovery scans on the customer’s behalf.
C. Amazon EC2 automatically generates an asset report and places it in the customer’s specified Amazon S3 bucket.
D. Users can gather asset metadata reliably with a few API calls.

5. What feature of Amazon RDS helps to create globally redundant databases?

A. Snapshots
B. Automatic patching and updating
C. Cross-Region read replicas
D. Provisioned IOPS

6. Using AWS Identity and Access Management (IAM) to grant access only to the resources needed to perform a task is a concept known as:

A. restricted access.
B. as-needed access.
C. least privilege access.
D. token access.

7. Which methods can be used to identify AWS costs by departments? (Choose two.)

A. Enable multi-factor authentication for the AWS account root user.
B. Create separate accounts for each department.
C. Use Reserved Instances whenever possible.
D. Use tags to associate each instance with a particular department.
E. Pay bills using purchase orders.

8. Under the AWS shared responsibility model, customer responsibilities include which one of the following?

A. Securing the hardware, software, facilities, and networks that run all products and services.
B. Providing certificates, reports, and other documentation directly to AWS customers under NDA.
C. Configuring the operating system, network, and firewall.
D. Obtaining industry certifications and independent third-party attestations.

9. Which managed AWS service provides real-time guidance on AWS security best practices?

A. AWS X-Ray
B. AWS Trusted Advisor
C. Amazon CloudWatch
D. AWS Systems Manager

10. Which feature adds elasticity to Amazon EC2 instances to handle the changing demand for workloads?

A. Resource groups
B. Lifecycle policies
C. Application Load Balancer
D. Amazon EC2 Auto Scaling

11. Under the AWS shared responsibility model, customers are responsible for which aspects of security in the cloud? (Choose two.)

A. Visualization management
B. Hardware management
C. Encryption management
D. Facilities management
E. Firewall management

12. Which AWS hybrid storage service enables on-premises applications to seamlessly use AWS Cloud storage through standard file-storage protocols?

A. AWS Direct Connect
B. AWS Snowball
C. AWS Storage Gateway
D. AWS Snowball Edge

13. What is a responsibility of AWS in the shared responsibility model?

A. Updating the network ACLs to block traffic to vulnerable ports.
B. Patching operating systems running on Amazon EC2 instances.
C. Updating the firmware on the underlying EC2 hosts.
D. Updating the security group rules to block traffic to the vulnerable ports.

14. Which architectural principle is used when deploying an Amazon Relational Database Service (Amazon RDS) instance in Multiple Availability Zone mode?

A. Implement loose coupling.
B. Design for failure.
C. Automate everything that can be automated.
D. Use services, not servers.

15. What does it mean to grant least privilege to AWS IAM users?

A. It is granting permissions to a single user only.
B. It is granting permissions using AWS IAM policies only.
C. It is granting AdministratorAccess policy permissions to trustworthy users.
D. It is granting only the permissions required to perform a given task.

16. What is a benefit of loose coupling as a principle of cloud architecture design?

A. It facilitates low-latency request handling.
B. It allows applications to have dependent workflows.
C. It prevents cascading failures between different components.
D. It allows companies to focus on their physical data center operations.

17. A company’s web application currently has tight dependencies on underlying components, so when one component fails the entire web application fails. Applying which AWS Cloud design principle will address the current design issue?

A. Implementing elasticity, enabling the application to scale up or scale down as demand changes.
B. Enabling several EC2 instances to run in parallel to achieve better performance.
C. Focusing on decoupling components by isolating them and ensuring individual components can function when other components fail.
D. Doubling EC2 computing resources to increase system fault tolerance.

18. A director has been tasked with investigating hybrid cloud architecture. The company currently accesses AWS over the public internet. Which service will facilitate private hybrid connectivity?

A. Amazon Virtual Private Cloud (Amazon VPC) NAT Gateway
B. AWS Direct Connect
C. Amazon Simple Storage Service (Amazon S3) Transfer Acceleration
D. AWS Web Application Firewall (AWS WAF)

19. How can a customer increase security to AWS account logons? (Choose two.)

A. Configure AWS Certificate Manager
B. Enable Multi-Factor Authentication (MFA)
C. Use Amazon Cognito to manage access
D. Configure a strong password policy
E. Enable AWS Organizations

20. What AWS service would be used to centrally manage AWS access across multiple accounts?

A. AWS Service Catalog
B. AWS Config
C. AWS Trusted Advisor
D. AWS Organizations

21. Which AWS service can a customer use to set up an alert notification when the account is approaching a particular dollar amount?

A. AWS Cost and Usage reports
B. AWS Budgets
C. AWS Cost Explorer
D. AWS Trusted Advisor

22. What can users access from AWS Artifact?

A. AWS security and compliance documents
B. A download of configuration management details for all AWS resources
C. Training materials for AWS services
D. A security assessment of the applications deployed in the AWS Cloud

23. Which is the MINIMUM AWS Support plan that provides designated Technical Account Managers?

A. Enterprise
B. Business
C. Developer
D. Basic

24. Which of the following is an AWS Well-Architected Framework design principle related to reliability?

A. Deployment to a single Availability Zone
B. Ability to recover from failure
C. Design for cost optimization
D. Perform operations as code

25. Which type of AWS storage is ephemeral and is deleted when an instance is stopped or terminated?

A. Amazon EBS
B. Amazon EC2 instance store
C. Amazon EFS
D. Amazon S3

26. What is an advantage of using the AWS Cloud over a traditional on-premises solution?

A. Users do not have to guess about future capacity needs.
B. Users can utilize existing hardware contracts for purchases.
C. Users can fix costs no matter what their traffic is.
D. Users can avoid audits by using reports from AWS.

27. Which of the following is an AWS-managed compute service?

A. Amazon SWF
B. Amazon EC2
C. AWS Lambda
D. Amazon Aurora

28. Which of the following is an important architectural principle when designing cloud applications?

A. Store data and backups in the same region.
B. Design tightly coupled system components.
C. Avoid multi-threading.
D. Design for failure

29. Which mechanism allows developers to access AWS services from application code?

A. AWS Software Development Kit
B. AWS Management Console
C. AWS CodePipeline
D. AWS Config

30. Which Amazon EC2 pricing model is the MOST cost efficient for an uninterruptible workload that runs once a year for 24 hours?

A. On-Demand Instances
B. Reserved Instances
C. Spot Instances
D. Dedicated Instances

31. Which of the following services is a MySQL-compatible database that automatically grows storage as needed?

A. Amazon Elastic Compute Cloud (Amazon EC2)
B. Amazon Relational Database Service (Amazon RDS) for MySQL
C. Amazon Lightsail
D. Amazon Aurora

32. Which Amazon Virtual Private Cloud (Amazon VPC) feature enables users to connect two VPCs together?

A. Amazon VPC endpoints
B. Amazon Elastic Compute Cloud (Amazon EC2) ClassicLink
C. Amazon VPC peering
D. AWS Direct Connect

33. Which service’s PRIMARY purpose is software version control?

A. Amazon CodeStar
B. AWS Command Line Interface (AWS CLI)
C. Amazon Cognito
D. AWS CodeCommit

34. A company is considering migrating its applications to AWS. The company wants to compare the cost of running the workload on-premises to running the equivalent workload on the AWS platform. Which tool can be used to perform this comparison?

A. AWS Simple Monthly Calculator
B. AWS Total Cost of Ownership (TCO) Calculator
C. AWS Billing and Cost Management console
D. Cost Explorer

35. Which AWS service provides a secure, fast, and cost-effective way to migrate or transport exabyte-scale datasets into AWS?

A. AWS Batch
B. AWS Snowball
C. AWS Migration Hub
D. AWS Snowmobile

36. Which of the following BEST describe the AWS pricing model? (Choose two.)

A. Fixed-term
B. Pay-as-you-go
C. Colocation
D. Planned
E. Variable cost

37. Which load balancer types are available with Elastic Load Balancing (ELB)? (Choose two.)

A. Public load balancers with AWS Application Auto Scaling capabilities
B. F5 Big-IP and Citrix NetScaler load balancers
C. Classic Load Balancers
D. Cross-zone load balancers with public and private IPs
E. Application Load Balancers

38. Why should a company choose AWS instead of a traditional data center?

A. AWS provides users with full control over the underlying resources.
B. AWS does not require long-term contracts and provides a pay-as-you-go model.
C. AWS offers edge locations in every country, supporting global reach.
D. AWS has no limits on the number of resources that can be created.

39. Which solution provides the FASTEST application response times to frequently accessed data to users in multiple AWS Regions?

A. AWS CloudTrail across multiple Availability Zones
B. Amazon CloudFront to edge locations
C. AWS CloudFormation in multiple regions
D. A virtual private gateway over AWS Direct Connect

40. Which AWS service provides a self-service portal for on-demand access to AWS compliance reports?

A. AWS Config
B. AWS Certificate Manager
C. Amazon Inspector
D. AWS Artifact

41. Which of the following AWS services can be used to run a self-managed database?

A. Amazon Route 53
B. AWS X-Ray
C. AWS Snowmobile
D. Amazon Elastic Compute Cloud (Amazon EC2)

42. What exclusive benefit is provided to users with Enterprise Support?

A. Access to a Technical Project Manager
B. Access to a Technical Account Manager
C. Access to a Cloud Support Engineer
D. Access to a Solutions Architect

43. How can a user protect against AWS service disruptions if a natural disaster affects an entire geographic area?

A. Deploy applications across multiple Availability Zones within an AWS Region.
B. Use a hybrid cloud computing deployment model within the geographic area.
C. Deploy applications across multiple AWS Regions.
D. Store application artifacts using AWS Artifact and replicate them across multiple AWS Regions.

44. How does AWS MOST effectively reduce computing costs for a growing start-up company?

A. It provides on-demand resources for peak usage.
B. It automates the provisioning of individual developer environments.
C. It automates customer relationship management.
D. It implements a fixed monthly computing budget.

45. A startup is working on a new application that needs to go to market quickly. The application requirements may need to be adjusted in the near future.
Which of the following is a characteristic of the AWS Cloud that would meet this specific need?

A. Elasticity
B. Reliability
C. Performance
D. Agility

46. Which AWS Support plan provides a full set of AWS Trusted Advisor checks?

A. Business and Developer Support
B. Business and Basic Support
C. Enterprise and Developer Support
D. Enterprise and Business Support

47. Which of the following services have Distributed Denial of Service (DDoS) mitigation features? (Choose two.)

A. AWS WAF
B. Amazon DynamoDB
C. Amazon EC2
D. Amazon CloudFront
E. Amazon Inspector

48. When building a cloud Total Cost of Ownership (TCO) model, which cost elements should be considered for workloads running on AWS? (Choose three.)

A. Compute costs
B. Facilities costs
C. Storage costs
D. Data transfer costs
E. Network infrastructure costs
F. Hardware lifecycle costs

49. What time-savings advantage is offered with the use of Amazon Rekognition?

A. Amazon Rekognition provides automatic watermarking of images.
B. Amazon Rekognition provides automatic detection of objects appearing in pictures.
C. Amazon Rekognition provides the ability to resize millions of images automatically.
D. Amazon Rekognition uses Amazon Mechanical Turk to allow humans to bid on object detection jobs.

50. When comparing AWS with on-premises Total Cost of Ownership (TCO), what costs are included?

A. Data center security
B. Business analysis
C. Project management
D. Operating system administration

51. According to the AWS shared responsibility model, what is AWS responsible for?

A. Configuring Amazon VPC
B. Managing application code
C. Maintaining application traffic
D. Managing the network infrastructure

52. Which service should be used to estimate the costs of running a new project on AWS?

A. AWS TCO Calculator
B. AWS Simple Monthly Calculator
C. AWS Cost Explorer API
D. AWS Budgets

53. Which AWS tool will identify security groups that grant unrestricted Internet access to a limited list of ports?

A. AWS Organizations
B. AWS Trusted Advisor
C. AWS Usage Report
D. Amazon EC2 dashboard

54. Which AWS service can be used to generate alerts based on an estimated monthly bill?

A. AWS Config
B. Amazon CloudWatch
C. AWS X-Ray
D. AWS CloudTrail

55. Which Amazon EC2 pricing model offers the MOST significant discount when compared to On-Demand Instances?

A. Partial Upfront Reserved Instances for a 1-year term
B. All Upfront Reserved Instances for a 1-year term
C. All Upfront Reserved Instances for a 3-year term
D. No Upfront Reserved Instances for a 3-year term

56. Which of the following is the responsibility of AWS?

A. Setting up AWS Identity and Access Management (IAM) users and groups
B. Physically destroying storage media at end of life
C. Patching guest operating systems
D. Configuring security settings on Amazon EC2 instances

57. Which of the following is an advantage of using AWS?

A. AWS audits user data.
B. Data is automatically secure.
C. There is no guessing on capacity needs.
D. AWS manages compliance needs.

58. Which AWS service would a customer use with a static website to achieve lower latency and high transfer speeds?

A. AWS Lambda
B. Amazon DynamoDB Accelerator
C. Amazon Route 53
D. Amazon CloudFront

59. Which services manage and automate application deployments on AWS? (Choose two.)

A. AWS Elastic Beanstalk
B. AWS CodeCommit
C. AWS Data Pipeline
D. AWS CloudFormation
E. AWS Config

60. A user wants guidance on possible savings when migrating from on-premises to AWS. Which tool is suitable for this scenario?

A. AWS Budgets
B. Cost Explorer
C. AWS Total Cost of Ownership (TCO) Calculator
D. AWS Well-Architected Tool

Cart

Actual Exam Questions

Protect Your System: Understanding CVE-2024-3400 Zero-Day Vulnerability

AWS Certified Cloud Practitioner CLF-C02 Exam Part 6

Cart