ExamGecko
Search Search Login
Home Home / Amazon / CLF-C02

Amazon CLF-C02 Practice Test - Questions Answers, Page 29

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which AWS service gives users on-demand, sell-service access to AWS compliance control reports?
Which AWS service provides storage-optimized and compute-optimized device configurations?
A company is running a reporting web server application on Amazon EC2 instances. The application runs once every week and once again at the end of the month. The EC2 instances can be shut down when they are not in use. What is the MOST cost-effective billing model for this use case?
A company needs to manage multiple logins across AWS accounts within the same organization in AWS Organizations. Which AWS service should the company use to meet this requirement?
Which design principle aligns with performance efficiency pillar of the AWS Well-Architected Framework?
According to the AWS shared responsibility model, which of the following are AWS responsibilities? (Select TWO.)
Which AWS service can create a private network connection from on premises to the AWS Cloud?
Which AWS service or feature allows users to securely store encrypted credentials and retrieve these credentials when required?
A company purchased Amazon EC2 Standard Reserved Instances (Rls) for a workload in the AWS Cloud. The company needs to move part of the workload to an instance family that does not match the instance family of these Standard RIs. How can the company take advantage of the Standard RIs that it no longer needs?
Which options does AWS make available for customers who want to learn about security in the cloud in an instructor-led setting? (Select TWO.)

Question 281

Report
Export
Collapse

A company has an Amazon S3 bucket containing images of scanned financial invoices. The company is building an artificial intelligence (Al)-based application on AWS. The company wants the application to identify and read total balance amounts on the invoices.

Which AWS service will meet these requirements?

A.
Amazon Forecast
A.
Amazon Forecast
Answers
B.
Amazon Textract
B.
Amazon Textract
Answers
C.
Amazon Rekognition
C.
Amazon Rekognition
Answers
D.
Amazon Lex
D.
Amazon Lex
Answers
Suggested answer: B

Explanation:

Amazon Textract is a service that automatically extracts text and data from scanned documents.

Amazon Textract goes beyond simple optical character recognition (OCR) to also identify the contents of fields in forms and information stored in tables. Amazon Textract can analyze images of scanned financial invoices and extract the total balance amounts, as well as other relevant information, such as invoice number, date, vendor name, etc5.

Question 282

Report
Export
Collapse

A company migrated its core application onto multiple workloads in the AWS Cloud. The company wants to improve the application's reliability.

Which cloud design principle should the company implement to achieve this goal?

A.
Maximize utilization.
A.
Maximize utilization.
Answers
B.
Decouple the components.
B.
Decouple the components.
Answers
C.
Rightsize the resources.
C.
Rightsize the resources.
Answers
D.
Adopt a consumption model.
D.
Adopt a consumption model.
Answers
Suggested answer: B

Explanation:

Decoupling the components of an application means reducing the dependencies and interactions between them, which can improve the application's reliability, scalability, and performance. Decoupling can be achieved by using services such as Amazon Simple Queue Service (Amazon SQS), Amazon Simple Notification Service (Amazon SNS), and AWS Lambda1

Question 283

Report
Export
Collapse

A company is using AWS Organizations to configure AWS accounts.

A company is planning its migration to the AWS Cloud. The company is identifying its capability gaps by using the AWS Cloud Adoption Framework (AWS CAF) perspectives.

Which phase of the cloud transformation journey includes these identification activities?

A.
Envision
A.
Envision
Answers
B.
Align
B.
Align
Answers
C.
Scale
C.
Scale
Answers
D.
Launch
D.
Launch
Answers
Suggested answer: A

Explanation:

The Envision phase of the cloud transformation journey is where the company defines its vision, business drivers, and desired outcomes for the cloud adoption. The company also identifies its capability gaps by using the AWS Cloud Adoption Framework (AWS CAF) perspectives, which are business, people, governance, platform, security, and operations2.

Question 284

Report
Export
Collapse

Which aspect of security is the customer's responsibility, according to the AWS shared responsibility model?

A.
Patch and configuration management
A.
Patch and configuration management
Answers
B.
Service and communications protection or zone security
B.
Service and communications protection or zone security
Answers
C.
Physical and environmental controls
C.
Physical and environmental controls
Answers
D.
Awareness and training
D.
Awareness and training
Answers
Suggested answer: A

Explanation:

According to the AWS shared responsibility model, AWS is responsible for the security of the cloud, while the customer is responsible for the security in the cloud. This means that AWS provides the physical and environmental controls, the service and communications protection, and the awareness and training for its employees, while the customer provides the patch and configuration management, the identity and access management, the data encryption, and the firewall configuration for its resources3.

Question 285

Report
Export
Collapse

A developer needs to maintain a development environment infrastructure and a production environment infrastructure in a repeatable fashion.

Which AWS service should the developer use to meet these requirements?

A.
AWS Ground Station
A.
AWS Ground Station
Answers
B.
AWS Shield
B.
AWS Shield
Answers
C.
AWS loT Device Defender
C.
AWS loT Device Defender
Answers
D.
AWS CloudFormation
D.
AWS CloudFormation
Answers
Suggested answer: D

Explanation:

AWS CloudFormation is a service that allows you to model and provision your AWS and third-party application resources in a repeatable and predictable way. You can use AWS CloudFormation to create, update, and delete a collection of resources as a single unit, called a stack. You can also use AWS CloudFormation to manage your development and production environments in a consistent and efficient manner4.

Question 286

Report
Export
Collapse

A company wants to migrate its on-premises application to the AWS Cloud. The company is legally obligated to retain certain data in its onpremises data center.

Which AWS service or feature will support this requirement?

A.
AWS Wavelength
A.
AWS Wavelength
Answers
B.
AWS Local Zones
B.
AWS Local Zones
Answers
C.
VMware Cloud on AWS
C.
VMware Cloud on AWS
Answers
D.
AWS Outposts
D.
AWS Outposts
Answers
Suggested answer: D

Explanation:

AWS Outposts is a fully managed service that extends AWS infrastructure, AWS services, APIs, and tools to virtually any datacenter, co-location space, or on-premises facility for a truly consistent hybrid experience. AWS Outposts enables you to run AWS services in your on-premises data center, which can support the requirement of retaining certain data on-premises due to legal obligations5.

Question 287

Report
Export
Collapse

A company has set up a VPC in its AWS account and has created a subnet in the VPC. The company wants to make the subnet public.

Which AWS features should the company use to meet this requirement? (Select TWO.)

A.
Amazon VPC internet gateway
A.
Amazon VPC internet gateway
Answers
B.
Amazon VPC NAT gateway
B.
Amazon VPC NAT gateway
Answers
C.
Amazon VPC route tables
C.
Amazon VPC route tables
Answers
D.
Amazon VPC network ACL
D.
Amazon VPC network ACL
Answers
E.
Amazon EC2 security groups
E.
Amazon EC2 security groups
Answers
Suggested answer: A, C

Explanation:

To make a subnet public, the company should use an Amazon VPC internet gateway and an Amazon VPC route table. An internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between your VPC and the internet. A route table contains a set of rules, called routes, that are used to determine where network traffic from your subnet or gateway is directed. To enable internet access for a subnet, you need to attach an internet gateway to your VPC and add a route to the internet gateway in the route table associated with the subnet.

Question 288

Report
Export
Collapse

A company has a compliance requirement to record and evaluate configuration changes, as well as perform remediation actions on AWS resources.

Which AWS service should the company use?

A.
AWS Config
A.
AWS Config
Answers
B.
AWS Secrets Manager
B.
AWS Secrets Manager
Answers
C.
AWS CloudTrail
C.
AWS CloudTrail
Answers
D.
AWS Trusted Advisor
D.
AWS Trusted Advisor
Answers
Suggested answer: A

Explanation:

AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. AWS Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations.

With AWS Config, you can review changes in configurations and relationships between AWS resources, dive into detailed resource configuration histories, and determine your overall compliance against the configurations specified in your internal guidelines. This can help you simplify compliance auditing, security analysis, change management, and operational troubleshooting1.

Question 289

Report
Export
Collapse

A retail company has recently migrated its website to AWS. The company wants to ensure that it is protected from SQL injection attacks. The website uses an Application Load Balancer to distribute traffic to multiple Amazon EC2 instances.

Which AWS service or feature can be used to create a custom rule that blocks SQL injection attacks?

A.
Security groups
A.
Security groups
Answers
B.
AWS WAF
B.
AWS WAF
Answers
C.
Network ACLs
C.
Network ACLs
Answers
D.
AWS Shield
D.
AWS Shield
Answers
Suggested answer: B

Explanation:

AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits that may affect availability, compromise security, or consume excessive resources. AWS WAF gives you control over how traffic reaches your applications by enabling you to create security rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that filter out specific traffic patterns you define2. You can use AWS WAF to create a custom rule that blocks SQL injection attacks on your website.

Question 290

Report
Export
Collapse

A company has an application workload that is stateless by design and can sustain occasional downtime. The application performs massively parallel computations.

Which Amazon EC2 pricing model should the company choose for its application to reduce cost?

A.
On-Demand Instances
A.
On-Demand Instances
Answers
B.
Spot Instances
B.
Spot Instances
Answers
C.
Reserved Instances
C.
Reserved Instances
Answers
D.
Dedicated Instances
D.
Dedicated Instances
Answers
Suggested answer: B

Explanation:

Amazon EC2 Spot Instances let you take advantage of unused EC2 capacity in the AWS cloud. Spot Instances are available at up to a 90% discount compared to On-Demand prices. You can use Spot Instances for various stateless, fault-tolerant, or flexible applications such as big data, containerized workloads, CI/CD, web servers, high-performance computing (HPC), and other test & development workloads. Spot Instances are well-suited for massively parallel computations, as they can provide large amounts of compute capacity at a low cost, and can be interrupted with a two-minute notice3

Total 789 questions
Go to page: of 79
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms