ExamGecko
Search Search Login
Home Home / Amazon / CLF-C02

Amazon CLF-C02 Practice Test - Questions Answers, Page 15

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which AWS service gives users on-demand, sell-service access to AWS compliance control reports?
Which AWS service provides storage-optimized and compute-optimized device configurations?
A company is running a reporting web server application on Amazon EC2 instances. The application runs once every week and once again at the end of the month. The EC2 instances can be shut down when they are not in use. What is the MOST cost-effective billing model for this use case?
A company needs to manage multiple logins across AWS accounts within the same organization in AWS Organizations. Which AWS service should the company use to meet this requirement?
Which design principle aligns with performance efficiency pillar of the AWS Well-Architected Framework?
According to the AWS shared responsibility model, which of the following are AWS responsibilities? (Select TWO.)
Which AWS service can create a private network connection from on premises to the AWS Cloud?
Which AWS service or feature allows users to securely store encrypted credentials and retrieve these credentials when required?
A company purchased Amazon EC2 Standard Reserved Instances (Rls) for a workload in the AWS Cloud. The company needs to move part of the workload to an instance family that does not match the instance family of these Standard RIs. How can the company take advantage of the Standard RIs that it no longer needs?
Which options does AWS make available for customers who want to learn about security in the cloud in an instructor-led setting? (Select TWO.)

Question 141

Report
Export
Collapse

A company needs to test a new application that was written in Python. The code will activate when new images are stored in an Amazon S3 bucket. The application will put a watermark on each image and then will store the images in a different S3 bucket.

Which AWS service should the company use to conduct the test with the LEAST amount of operational overhead?

A.
Amazon EC2
A.
Amazon EC2
Answers
B.
AWS CodeDeploy
B.
AWS CodeDeploy
Answers
C.
AWS Lambda
C.
AWS Lambda
Answers
D.
Amazon Lightsail
D.
Amazon Lightsail
Answers
Suggested answer: C

Explanation:

AWS Lambda is a compute service that lets you run code without provisioning or managing servers.

AWS Lambda executes your code only when needed and scales automatically, from a few requests per day to thousands per second. You pay only for the compute time you consume - there is no charge when your code is not running. With AWS Lambda, you can run code for virtually any type of application or backend service - all with zero administration. AWS Lambda runs your code on a highavailability compute infrastructure and performs all of the administration of the compute resources, including server and operating system maintenance, capacity provisioning and automatic scaling, code monitoring and logging

Question 142

Report
Export
Collapse

Which of the following are customer responsibilities under the AWS shared responsibility model?

(Select TWO.)

A.
Physical security of AWS facilities
A.
Physical security of AWS facilities
Answers
B.
Configuration of security groups
B.
Configuration of security groups
Answers
C.
Encryption of customer data on AWS
C.
Encryption of customer data on AWS
Answers
D.
Management of AWS Lambda infrastructure
D.
Management of AWS Lambda infrastructure
Answers
E.
Management of network throughput of each AWS Region
E.
Management of network throughput of each AWS Region
Answers
Suggested answer: B, C

Explanation:

The AWS shared responsibility model describes how AWS and the customer share responsibility for security and compliance of the AWS environment. AWS is responsible for the security of the cloud, which includes the physical security of AWS facilities, the infrastructure, hardware, software, and networking that run AWS services. The customer is responsible for security in the cloud, which includes the configuration of security groups, the encryption of customer data on AWS, the management of AWS Lambda infrastructure, and the management of network throughput of each AWS Region.

Question 143

Report
Export
Collapse

Which AWS service or tool can be used to consolidate payments for a company with multiple AWS accounts?

A.
AWS Cost and Usage Report
A.
AWS Cost and Usage Report
Answers
B.
AWS Organizations
B.
AWS Organizations
Answers
C.
Cost Explorer
C.
Cost Explorer
Answers
D.
AWS Budgets
D.
AWS Budgets
Answers
Suggested answer: B

Explanation:

AWS Organizations is an account management service that enables you to consolidate multiple AWS accounts into an organization that you create and centrally manage. AWS Organizations includes consolidated billing and account management capabilities that enable you to better meet the budgetary, security, and compliance needs of your business1.

Question 144

Report
Export
Collapse

How can an AWS user conduct security assessments of Amazon EC2 instances, NAT gateways, and Elastic Load Balancers in a way that is approved by AWS?

A.
Flood a target with requests.
A.
Flood a target with requests.
Answers
B.
Use Amazon Inspector.
B.
Use Amazon Inspector.
Answers
C.
Perform penetration testing.
C.
Perform penetration testing.
Answers
D.
Use the AWS Service Health Dashboard.
D.
Use the AWS Service Health Dashboard.
Answers
Suggested answer: B

Explanation:

Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices. After performing an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity2.

Question 145

Report
Export
Collapse

Which AWS service will help protect applications running on AWS from DDoS attacks?

A.
Amazon GuardDuty
A.
Amazon GuardDuty
Answers
B.
AWS WAF
B.
AWS WAF
Answers
C.
AWS Shield
C.
AWS Shield
Answers
D.
Amazon Inspector
D.
Amazon Inspector
Answers
Suggested answer: C

Explanation:

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection3.

Question 146

Report
Export
Collapse

A cloud engineer wants to know the percentage of the allocated compute units that are in use for a specific Amazon EC2 instance.

Which AWS service can provide this information?

A.
AWS CloudTrail
A.
AWS CloudTrail
Answers
B.
AWS Config
B.
AWS Config
Answers
C.
Amazon CloudWatch
C.
Amazon CloudWatch
Answers
D.
AWS Artifact
D.
AWS Artifact
Answers
Suggested answer: C

Explanation:

Amazon CloudWatch is a monitoring and observability service built for DevOps engineers, developers, site reliability engineers (SREs), and IT managers. CloudWatch provides you with data and actionable insights to monitor your applications, respond to system-wide performance changes, optimize resource utilization, and get a unified view of operational health. CloudWatch collects monitoring and operational data in the form of logs, metrics, and events, providing you with a unified view of AWS resources, applications, and services that run on AWS and on-premises servers

Question 147

Report
Export
Collapse

Which activity is a customer responsibility in the AWS Cloud according to the AWS shared responsibility model?

A.
Ensuring network connectivity from AWS to the internet
A.
Ensuring network connectivity from AWS to the internet
Answers
B.
Patching and fixing flaws within the AWS Cloud infrastructure
B.
Patching and fixing flaws within the AWS Cloud infrastructure
Answers
C.
Ensuring the physical security of cloud data centers
C.
Ensuring the physical security of cloud data centers
Answers
D.
Ensuring Amazon EBS volumes are backed up
D.
Ensuring Amazon EBS volumes are backed up
Answers
Suggested answer: D

Explanation:

The AWS shared responsibility model describes how AWS and the customer share responsibility for security and compliance of the AWS environment. AWS is responsible for the security of the cloud, which includes the physical security of AWS facilities, the infrastructure, hardware, software, and networking that run AWS services. The customer is responsible for security in the cloud, which includes the configuration of security groups, the encryption of customer data on AWS, the management of AWS Lambda infrastructure, and the management of network throughput of each AWS Region. One of the customer responsibilities is to ensure that Amazon EBS volumes are backed up.

Question 148

Report
Export
Collapse

Which AWS service meets this requirement?

A.
AWS CloudFormation
A.
AWS CloudFormation
Answers
B.
AWS Elastic Beanstalk
B.
AWS Elastic Beanstalk
Answers
C.
AWS Cloud9
C.
AWS Cloud9
Answers
D.
AWS CloudShell
D.
AWS CloudShell
Answers
Suggested answer: A

Explanation:

AWS CloudFormation is a service that gives developers and businesses an easy way to create a collection of related AWS and third-party resources, and provision and manage them in an orderly and predictable fashion. You can use AWS CloudFormation's sample templates or create your own templates to describe the AWS and third-party resources, and any associated dependencies or runtime parameters, required to run your application.

Question 149

Report
Export
Collapse

A company wants to use the AWS Cloud as an offsite backup location for its on-premises infrastructure.

Which AWS service will meet this requirement MOST cost-effectively?

A.
Amazon S3
A.
Amazon S3
Answers
B.
Amazon Elastic File System (Amazon EFS)
B.
Amazon Elastic File System (Amazon EFS)
Answers
C.
Amazon FSx
C.
Amazon FSx
Answers
D.
Amazon Elastic Block Store (Amazon EBS)
D.
Amazon Elastic Block Store (Amazon EBS)
Answers
Suggested answer: A

Explanation:

Amazon S3 is the most cost-effective service for storing offsite backups of on-premises infrastructure.

Amazon S3 offers low-cost, durable, and scalable storage that can be accessed from anywhere over the internet. Amazon S3 also supports lifecycle policies, versioning, encryption, and cross-region replication to optimize the backup and recovery process. Amazon EFS, Amazon FSx, and Amazon EBS are more suitable for storing data that requires high performance, low latency, and frequent access12

Question 150

Report
Export
Collapse

A company is building a serverless architecture that connects application data from multiple data sources. The company needs a solution that does not require additional code.

Which AWS service meets these requirements?

A.
AWS Lambda
A.
AWS Lambda
Answers
B.
Amazon Simple Queue Service (Amazon SQS)
B.
Amazon Simple Queue Service (Amazon SQS)
Answers
C.
Amazon CloudWatch
C.
Amazon CloudWatch
Answers
D.
Amazon EventBridge
D.
Amazon EventBridge
Answers
Suggested answer: D

Explanation:

Amazon EventBridge is the service that meets the requirements of building a serverless architecture that connects application data from multiple data sources without requiring additional code. Amazon EventBridge is a serverless event bus service that allows you to easily connect your applications with data from AWS services, SaaS applications, and your own applications. You can use Amazon EventBridge to create rules that match events and route them to targets such as AWS Lambda functions, Amazon SNS topics, Amazon SQS queues, or other AWS services. Amazon EventBridge handles the event ingestion, delivery, security, authorization, and error handling for you34

Total 789 questions
Go to page: of 79
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms