ExamGecko
Search Search Login
Home Home / Amazon / CLF-C01

Amazon CLF-C01 Practice Test - Questions Answers, Page 14

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following is an AWS value proposition that describes a user's ability to scale infrastructure based on demand?
A company uses Amazon EC2 instances and wants to maintain high availability in geographically distributed locations Which choice should the company make for the location of its EC2 instances?
A company spends several months upgrading its on-premises infrastructure every few years The company wants to reduce infrastructure procurement time by migrating to the AWS Cloud. What is the main benefit of migrating to the AWS Cloud for this use case?
What does the AWS cloud provide to increase the speed and agility of execution for customers? (Select Two.)
Which tool or feature provides a report to forecast AWS billing costs for the next 3 months?
A user is comparing purchase options for an application that runs on Amazon EC2 and Amazon RDS. The application cannot sustain any interruption The application experiences a predictable amount of usage, including some seasonal spikes that last only a few weeks at a time It is not possible to modify the application. Which purchase option meets these requirements MOST cost-effectively?
A user wants to identify any security group that is allowing unrestricted incoming SSH traffic Which AWS service can be used to accomplish this goal?
Which of the following are customer responsibilities under the AWS shared responsibility model? (Select Two.)
A bank needs to store recordings of calls made to its contact center for 6 years. The recordings must be accessible within 48 hours from the time they are requested. Which AWS service will provide a secure and cost-effective solution for retaining these files?
Which AWS service is a highly available and scalable DNS web service?

Question 131

Report
Export
Collapse

A user must meet compliance and software licensing requirements that state a workload must be hosted on a physical server. When Amazon EC2 instance pricing option will meet these requirements?

A.
Dedicated Hosts
A.
Dedicated Hosts
Answers
B.
Dedicated Instances
B.
Dedicated Instances
Answers
C.
Spot Instances
C.
Spot Instances
Answers
D.
Reserved Instances
D.
Reserved Instances
Answers
Suggested answer: A

Explanation:

Explanation:

Dedicated instances and dedicated hosts are separate offerings. The difference is that a dedicated instance is partitioned under a hypervisor on a dedicated server and can still share instances within your account, while a dedicated host is a complete physical machine with a single partition.

Dedicated Instance = a partition on a machine that will only host instances from your account Dedicated Host = a physical machine with a single partition The Dedicated Host is the physical server, while an instance is a server that is dedicated to your account that may contain multiple EC2 instances. https://aws.amazon.com/ec2/pricing/dedicated-instances/

Question 132

Report
Export
Collapse

What can users access from AWS Artifact?

A.
AWS security and compliance documents
A.
AWS security and compliance documents
Answers
B.
A download of configuration management details for all AWS resources
B.
A download of configuration management details for all AWS resources
Answers
C.
Training materials for AWS services
C.
Training materials for AWS services
Answers
D.
A security assessment of the applications deployed in the AWS Cloud
D.
A security assessment of the applications deployed in the AWS Cloud
Answers
Suggested answer: A

Question 133

Report
Export
Collapse

A company is planning to launch an ecommerce site in a single AWS Region to a worldwide user base Which AWS services will allow the company to reach users and provide low latency and high transfer speeds? (Select TWO.)

A.
Application Load Balancer
A.
Application Load Balancer
Answers
B.
AWS Global Accelerator
B.
AWS Global Accelerator
Answers
C.
AWS Direct Connect
C.
AWS Direct Connect
Answers
D.
Amazon CloudFront
D.
Amazon CloudFront
Answers
E.
AWS Lambda
E.
AWS Lambda
Answers
Suggested answer: B, D

Question 134

Report
Export
Collapse

A company's security policy requires the company to keep a record of all changes that are made to Amazon EC2 security groups. The record must include information about who made the change and when the change was made. Which AWS service will provide this information?

A.
AWS Lambda
A.
AWS Lambda
Answers
B.
Amazon CloudWatch
B.
Amazon CloudWatch
Answers
C.
AWS WAF
C.
AWS WAF
Answers
D.
AWS CloudTrail
D.
AWS CloudTrail
Answers
Suggested answer: D

Question 135

Report
Export
Collapse

Which design principles of the AWS Well-Architected Framework help increase reliability? (Select TWO.)

A.
Automatically recover from failure
A.
Automatically recover from failure
Answers
B.
Enable traceability.
B.
Enable traceability.
Answers
C.
Scale horizontally to increase workload availability.
C.
Scale horizontally to increase workload availability.
Answers
D.
Automate security best practices
D.
Automate security best practices
Answers
E.
Keep people away from data
E.
Keep people away from data
Answers
Suggested answer: A, C

Explanation:

Reliability The Reliability pillar encompasses the ability of a workload to perform its intended function correctly and consistently when itís expected to. This includes the ability to operate and test the workload through its total lifecycle. You can find prescriptive guidance on implementation in the ReliabilityPillar whitepaper.Design Principles There are five design principles for reliability in the cloud:

Automatically recover from failure Test recovery procedures Scale horizontally to increase aggregate workload availability Stop guessing capacity Manage change in automationhttps://aws.amazon.com/blogs/apn/the-6-pillars-of-the-awswell-architected-framework/

Question 136

Report
Export
Collapse

Which actions allow a company's security team to improve the security procedures for employees accessing AWS resources? (Select TWO.)

A.
Create IAM users for groups of employees to share
A.
Create IAM users for groups of employees to share
Answers
B.
Create IAM policies based on least privilege principles
B.
Create IAM policies based on least privilege principles
Answers
C.
Create IAM users in different Availability Zones
C.
Create IAM users in different Availability Zones
Answers
D.
Enable multi-factor authentication for privileged users
D.
Enable multi-factor authentication for privileged users
Answers
E.
Specify an individual IAM user for each Amazon EC2 instance
E.
Specify an individual IAM user for each Amazon EC2 instance
Answers
Suggested answer: B, D

Question 137

Report
Export
Collapse

How can users protect against distributed denial of service (DDoS) attacks in the AWS Cloud?

A.
Use Amazon CloudWatch monitoring.
A.
Use Amazon CloudWatch monitoring.
Answers
B.
Configure a firewall.
B.
Configure a firewall.
Answers
C.
Use Amazon Redshift
C.
Use Amazon Redshift
Answers
D.
Monitor AWS CloudTrail logging
D.
Monitor AWS CloudTrail logging
Answers
Suggested answer: B

Question 138

Report
Export
Collapse

What is an Availability Zone in AWS?

A.
One or more physical data centers
A.
One or more physical data centers
Answers
B.
A completely isolated geographic location
B.
A completely isolated geographic location
Answers
C.
One or more edge locations based around the world
C.
One or more edge locations based around the world
Answers
D.
A data center location with a single source of power and networking
D.
A data center location with a single source of power and networking
Answers
Suggested answer: A

Question 139

Report
Export
Collapse

What is a responsibility of AWS in the shared responsibility model?

A.
Updating the network ACLs to block traffic to vulnerable ports.
A.
Updating the network ACLs to block traffic to vulnerable ports.
Answers
B.
Patching operating systems running on Amazon EC2 instances.
B.
Patching operating systems running on Amazon EC2 instances.
Answers
C.
Updating the firmware on the underlying EC2 hosts.
C.
Updating the firmware on the underlying EC2 hosts.
Answers
D.
Updating the security group rules to block traffic to the vulnerable ports.
D.
Updating the security group rules to block traffic to the vulnerable ports.
Answers
Suggested answer: C

Explanation:

Explanation:

Reference: https://cloudacademy.com/blog/aws-shared-responsibility-model-security/

Question 140

Report
Export
Collapse

Which AWS service or feature allows a company to visualize, understand, and manage AWS costs and usage over time?

A.
AWS Budgets
A.
AWS Budgets
Answers
B.
AWS Cost Explorer
B.
AWS Cost Explorer
Answers
C.
AWS Organizations
C.
AWS Organizations
Answers
D.
Consolidated billing
D.
Consolidated billing
Answers
Suggested answer: B
Total 944 questions
Go to page: of 95
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms