ExamGecko
Search Search Login
Home Home / Amazon / CLF-C01

Amazon CLF-C01 Practice Test - Questions Answers, Page 31

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company uses Amazon EC2 instances and wants to maintain high availability in geographically distributed locations Which choice should the company make for the location of its EC2 instances?
Which of the following is an AWS value proposition that describes a user's ability to scale infrastructure based on demand?
What does the AWS cloud provide to increase the speed and agility of execution for customers? (Select Two.)
Which tool or feature provides a report to forecast AWS billing costs for the next 3 months?
A company spends several months upgrading its on-premises infrastructure every few years The company wants to reduce infrastructure procurement time by migrating to the AWS Cloud. What is the main benefit of migrating to the AWS Cloud for this use case?
A user is comparing purchase options for an application that runs on Amazon EC2 and Amazon RDS. The application cannot sustain any interruption The application experiences a predictable amount of usage, including some seasonal spikes that last only a few weeks at a time It is not possible to modify the application. Which purchase option meets these requirements MOST cost-effectively?
A user wants to identify any security group that is allowing unrestricted incoming SSH traffic Which AWS service can be used to accomplish this goal?
Which of the following are customer responsibilities under the AWS shared responsibility model? (Select Two.)
A bank needs to store recordings of calls made to its contact center for 6 years. The recordings must be accessible within 48 hours from the time they are requested. Which AWS service will provide a secure and cost-effective solution for retaining these files?
Which AWS service is a highly available and scalable DNS web service?

Question 301

Report
Export
Collapse

Which AWS service offers the LEAST expensive means of storing static images?

A.
Amazon S3
A.
Amazon S3
Answers
B.
Amazon DynamoDB
B.
Amazon DynamoDB
Answers
C.
AWS Snowball
C.
AWS Snowball
Answers
D.
Amazon Elastic Block Store (Amazon EBS)
D.
Amazon Elastic Block Store (Amazon EBS)
Answers
Suggested answer: A

Explanation:

Explanation:

Question 302

Report
Export
Collapse

Which guideline is a well-architected design principle for building cloud applications?

A.
Keep static data closer to compute resources
A.
Keep static data closer to compute resources
Answers
B.
Provision resources for peak capacity
B.
Provision resources for peak capacity
Answers
C.
Design for automated recovery from failure
C.
Design for automated recovery from failure
Answers
D.
Use tightly coupled components
D.
Use tightly coupled components
Answers
Suggested answer: C

Question 303

Report
Export
Collapse

A developer is writing a new application that consists of multiple AWS microservices During quality assurance testing, the developer notices runtime errors in several areas of the application. Which AWS service should the developer use to help troubleshoot the errors?

A.
AWS CloudTrail
A.
AWS CloudTrail
Answers
B.
AWS X-Ray
B.
AWS X-Ray
Answers
C.
Amazon CloudWatch
C.
Amazon CloudWatch
Answers
D.
Amazon Cognito
D.
Amazon Cognito
Answers
Suggested answer: B

Question 304

Report
Export
Collapse

What are characteristics of AWS IAM users and groups? (Select TWO.)

A.
Groups can be nested and can contain other groups
A.
Groups can be nested and can contain other groups
Answers
B.
A user can be a member of multiple groups
B.
A user can be a member of multiple groups
Answers
C.
Groups can contain users only and cannot be nested
C.
Groups can contain users only and cannot be nested
Answers
D.
A user can only be a member of a single group at one time
D.
A user can only be a member of a single group at one time
Answers
E.
All new users are automatically added to a default group
E.
All new users are automatically added to a default group
Answers
Suggested answer: B, C

Question 305

Report
Export
Collapse

A company recently created its first AWS account.

Which AWS services will require the use of a VPC? (Select TWO.)

A.
Amazon S3
A.
Amazon S3
Answers
B.
Amazon Elastic File System (Amazon EFS)
B.
Amazon Elastic File System (Amazon EFS)
Answers
C.
Amazon Cognito
C.
Amazon Cognito
Answers
D.
Amazon DynamoDB
D.
Amazon DynamoDB
Answers
E.
Amazon EC2
E.
Amazon EC2
Answers
Suggested answer: D, E

Question 306

Report
Export
Collapse

Which of the following is an AWS value proposition that describes a user's ability to scale infrastructure based on demand?

A.
Speed of innovation
A.
Speed of innovation
Answers
B.
Resource elasticity
B.
Resource elasticity
Answers
C.
Decoupled architecture
C.
Decoupled architecture
Answers
D.
Global deployment
D.
Global deployment
Answers
Suggested answer: B

Question 307

Report
Export
Collapse

Which guidelines are best practices for using AWS Identity and Access Management (IAM)? (Select TWO.)

A.
Share access keys
A.
Share access keys
Answers
B.
Create individual IAM users
B.
Create individual IAM users
Answers
C.
Use inline policies instead of customer managed policies
C.
Use inline policies instead of customer managed policies
Answers
D.
Grant maximum privileges to IAM users
D.
Grant maximum privileges to IAM users
Answers
E.
Use groups to assign permissions to IAM users
E.
Use groups to assign permissions to IAM users
Answers
Suggested answer: C, E

Question 308

Report
Export
Collapse

Which AWS service can be used to run Amazon EC2 instances on-premises at a user site?

A.
AWS Snowball Edge
A.
AWS Snowball Edge
Answers
B.
Amazon CloudFront
B.
Amazon CloudFront
Answers
C.
Lambda@Edge
C.
Lambda@Edge
Answers
D.
AWS Lambda
D.
AWS Lambda
Answers
Suggested answer: A

Question 309

Report
Export
Collapse

A company wants to archive its media data as soon as the data is generated. The company needs to store the data for several years Two or three times each year the company must access some of the data within 10 minutes of a request. Which Amazon S3 solution will meet these requirements MOST cost-effectively?

A.
S3 Standard
A.
S3 Standard
Answers
B.
S3 Glacier with expedited retrievals
B.
S3 Glacier with expedited retrievals
Answers
C.
S3 Intelligent-Tiering
C.
S3 Intelligent-Tiering
Answers
D.
S3 Glacier Deep Archive
D.
S3 Glacier Deep Archive
Answers
Suggested answer: B

Question 310

Report
Export
Collapse

Which security service automatically recognizes and classifies sensitive data or intellectual property on AWS?

A.
Amazon GuardDuty
A.
Amazon GuardDuty
Answers
B.
Amazon Macie
B.
Amazon Macie
Answers
C.
Amazon Inspector
C.
Amazon Inspector
Answers
D.
AWS Shield
D.
AWS Shield
Answers
Suggested answer: B

Explanation:

Explanation:

Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS.

As organizations manage growing volumes of data, identifying and protecting their sensitive data at scale can become increasingly complex, expensive, and time-consuming. Amazon Macie automates the discovery of sensitive data at scale and lowers the cost of protecting your data. Macie automatically provides an inventory of Amazon S3 buckets including a list of unencrypted buckets, publicly accessible buckets, and buckets shared with AWS accounts outside those you have defined in AWS Organizations. Then, Macie applies machine learning and pattern matching techniques to the buckets you select to identify and alert you to sensitive data, such as personally identifiable information (PII). Macieís alerts, or findings, can be searched and filtered in the AWS Management Console and sent to Amazon EventBridge, formerly called Amazon CloudWatch Events, for easy integration with existing workflow or event management systems, or to be used in combination with AWS services, such as AWS Step Functions to take automated remediation actions. This can help you meet regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) and General Data Privacy Regulation (GDPR). You can get started with Amazon Macie by leveraging the 30-day free trial for bucket evaluation. The trial includes 30-days of Amazon S3 bucket inventory and bucket-level security and access control assessment at no cost. Note that sensitive data discovery is not included in the 30-day free trial for bucket evaluation. Benefits

Discover your sensitive data at scale

Amazon Macie uses machine learning and pattern matching to cost efficiently discover sensitive data at scale. Macie automatically detects a large and growing list of sensitive data types, including personal identifiable information (PII) such as names, addresses, and credit card numbers. The service also allows you to define your own custom sensitive data types so you can discover and protect the sensitive data that may be unique to your business or use case.

Visibility of your data security posture

Amazon Macie gives you constant visibility of the data security and data privacy of your data stored in Amazon S3. Macie automatically and continually evaluates all of your S3 buckets and alerts you to any unencrypted buckets, publicly accessible buckets, or buckets shared with AWS accounts outside those you have defined in the AWS Organizations. Macie provides native multi-account support so you can view your data security posture across your entire S3 environment from a single Macie administrator account.

Easy to setup and manage

Getting started with Amazon Macie is fast and easy with one-click in the AWS Management Console or a single API call. Macie provides multi-account support using AWS Organizations, so you can enable Macie across all of your accounts with a few clicks. Macie maintains a fully-managed set of sensitive data types, so there is no custom configuration required.

Total 944 questions
Go to page: of 95
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms