ExamGecko
Home / Amazon / CLF-C02 / List of questions
Ask Question

Amazon CLF-C02 Practice Test - Questions Answers, Page 57

List of questions

Question 561

Report
Export
Collapse

Which AWS service can a company use to visually design and build serverless applications?

AWS Lambda
AWS Lambda
AWS Batch
AWS Batch
AWS Application Composer
AWS Application Composer
AWS App Runner
AWS App Runner
Suggested answer: C

Explanation:

AWS Application Composer is a service that allows users to visually design and build serverless applications. Users can drag and drop components, such as AWS Lambda functions, Amazon API Gateway endpoints, Amazon DynamoDB tables, and Amazon S3 buckets, to create a serverless application architecture. Users can also configure the properties, permissions, and dependencies of each component, and deploy the application to their AWS account with a few clicks. AWS Application Composer simplifies the design and configuration of serverless applications, and reduces the need to write code or use AWS CloudFormation templates.Reference:AWS Application Composer,AWS releases Application Composer to make serverless 'easier' but initial scope is limited

asked 16/09/2024
Balanavaneethan Nitharsan
29 questions

Question 562

Report
Export
Collapse

A company wants to migrate to AWS and use the same security software it uses on premises. The security software vendor offers its security software as a service on AWS.

Where can the company purchase the security solution?

AWS Partner Solutions Finder
AWS Partner Solutions Finder
AWS Support Center
AWS Support Center
AWS Management Console
AWS Management Console
AWS Marketplace
AWS Marketplace
Suggested answer: D

Explanation:

AWS Marketplace is an online store that helps customers find, buy, and immediately start using the software and services that run on AWS. Customers can choose from a wide range of software products in popular categories such as security, networking, storage, machine learning, business intelligence, database, and DevOps. Customers can also use AWS Marketplace to purchase software as a service (SaaS) solutions that are integrated with AWS. Customers can benefit from simplified procurement, billing, and deployment processes, as well as flexible pricing options and free trials. Customers can also leverage AWS Marketplace to discover and subscribe to solutions offered by AWS Partners, such as the security software vendor mentioned in the question.Reference:AWS Marketplace, [AWS Marketplace: Software as a Service (SaaS)], [AWS Cloud Practitioner Essentials: Module 6 - AWS Pricing, Billing, and Support]

asked 16/09/2024
Roberto Pili
29 questions

Question 563

Report
Export
Collapse

A company has deployed an Amazon EC2 instance.

Which option is an AWS responsibility under the AWS shared responsibility model?

Managing and encrypting application data
Managing and encrypting application data
Installing updates and security patches of guest operating system
Installing updates and security patches of guest operating system
Configuration of infrastructure devices
Configuration of infrastructure devices
Configuration of security groups on each instance
Configuration of security groups on each instance
Suggested answer: C

Explanation:

According to the AWS shared responsibility model, AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud, such as data centers, hardware, software, networking, and facilities1.This includes the configuration of infrastructure devices, such as routers, switches, firewalls, and load balancers2.Customers are responsible for managing their data, applications, operating systems, security groups, and other aspects of their AWS environment1.Therefore, options A, B, and D are customer responsibilities, not AWS responsibilities.Reference:1: AWS Well-Architected Framework - Elasticity;2: Reactive Systems on AWS - Elastic

asked 16/09/2024
Yesaldine Salazar
42 questions

Question 564

Report
Export
Collapse

Elasticity in the AWS Cloud refers to which of the following? (Select TWO.)

How quickly an Amazon EC2 instance can be restarted
How quickly an Amazon EC2 instance can be restarted
The ability to rightsized resources as demand shifts
The ability to rightsized resources as demand shifts
The maximum amount of RAM an Amazon EC2 instance can use
The maximum amount of RAM an Amazon EC2 instance can use
The pay-as-you-go billing model
The pay-as-you-go billing model
How easily resources can be procured when they are needed
How easily resources can be procured when they are needed
Suggested answer: B, E

Explanation:

Elasticity in the AWS Cloud refers to the ability to acquire resources as you need them and release resources when you no longer need them.In the cloud, you want to do this automatically1. This means that you can rightsized resources as demand shifts, and you can easily procure resources when they are needed. Elasticity is not related to how quickly an Amazon EC2 instance can be restarted, the maximum amount of RAM an Amazon EC2 instance can use, or the pay-as-you-go billing model.These are aspects of scalability, performance, and cost, respectively2.

For more information on elasticity, you can refer to the following sources:

Elasticity - AWS Well-Architected Framework

Elastic - Reactive Systems on AWS

What is the difference between scalability and elasticity?

asked 16/09/2024
Anass Chadid ansari
38 questions

Question 565

Report
Export
Collapse

A company wants to migrate its PostgreSQL database to AWS. The company does not use the database frequently.

Which AWS service or resource will meet these requirements with the LEAST management overhead?

PostgreSQL on Amazon EC2
PostgreSQL on Amazon EC2
Amazon RDS for PostgreSQL
Amazon RDS for PostgreSQL
Amazon Aurora PostgreSQL-Compatible Edition
Amazon Aurora PostgreSQL-Compatible Edition
Amazon Aurora Serverless
Amazon Aurora Serverless
Suggested answer: D

Explanation:

Amazon Aurora Serverless is an on-demand, auto-scaling configuration for Amazon Aurora PostgreSQL-Compatible Edition. It is a fully managed service that automatically scales up and down based on the application's actual needs. Amazon Aurora Serverless is suitable for applications that have infrequent, intermittent, or unpredictable database workloads, and that do not require the full power and range of options provided by provisioned Aurora clusters. Amazon Aurora Serverless eliminates the need to provision and manage database instances, and reduces the management overhead associated with database administration tasks such as scaling, patching, backup, and recovery.Reference:Amazon Aurora Serverless,Choosing between Aurora Serverless and provisioned Aurora DB clusters, [AWS Cloud Practitioner Essentials: Module 4 - Databases in the Cloud]

asked 16/09/2024
Renats Fasulins
41 questions

Question 566

Report
Export
Collapse

A company is using Amazon DynamoDB for its application database.

Which tasks are the responsibility of AWS, according to the AWS shared responsibility model? (Select TWO.)

Classify data.
Classify data.
Configure access permissions.
Configure access permissions.
Manage encryption options.
Manage encryption options.
Provide public endpoints to store and retrieve data.
Provide public endpoints to store and retrieve data.
Manage the infrastructure layer and the operating system.
Manage the infrastructure layer and the operating system.
Suggested answer: D, E

Explanation:

According to the AWS shared responsibility model, AWS is responsible for security of the cloud, while customers are responsible for security in the cloud. This means that AWS is responsible for protecting the infrastructure that runs AWS services, such as hardware, software, networking, and facilities. Customers are responsible for managing their data, classifying their assets, and using IAM tools to apply the appropriate permissions. For abstracted services, such as Amazon DynamoDB, AWS operates the infrastructure layer, the operating system, and platforms, and provides customers with public endpoints to store and retrieve data. Customers are responsible for classifying their data, managing their encryption options, and configuring their access permissions.Reference:Shared Responsibility Model,Security and compliance in Amazon DynamoDB, [AWS Cloud Practitioner Essentials: Module 2 - Security in the Cloud]

asked 16/09/2024
Vladimir Kiseliov
37 questions

Question 567

Report
Export
Collapse

A company wants to create a globally accessible ecommerce platform for its customers. The company wants to use a highly available and scalable DNS web service to connect users to the platform.

Which AWS service will meet these requirements?

Amazon EC2
Amazon EC2
Amazon VPC
Amazon VPC
Amazon Route 53
Amazon Route 53
Amazon RDS
Amazon RDS
Suggested answer: C

Explanation:

Amazon Route 53 is a highly available and scalable Domain Name System (DNS) web service that can route internet traffic to the company's ecommerce platform1.Route 53 can also register domain names, check the health of resources, and provide global DNS features2.Route 53 can connect users to the platform by translating human-readable names like www.example.com into the numeric IP addresses that computers use to communicate with each other2.Reference:1: Amazon Route 53 | DNS Service | AWS;2: What is Amazon Route 53? - Amazon Route 53

asked 16/09/2024
Jordan Arribas Aranda
36 questions

Question 568

Report
Export
Collapse

Which maintenance task is the customer's responsibility, according to the AWS shared responsibility model?

Physical connectivity among Availability Zones
Physical connectivity among Availability Zones
Network switch maintenance
Network switch maintenance
Hardware updates and firmware patches
Hardware updates and firmware patches
Amazon EC2 updates and security patches
Amazon EC2 updates and security patches
Suggested answer: D

Explanation:

According to the AWS shared responsibility model, customers are responsible for managing their data, applications, operating systems, security groups, and other aspects of their AWS environment. This includes installing updates and security patches of the guest operating system and any application software or utilities installed by the customer on the instances. AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud, such as data centers, hardware, software, networking, and facilities. This includes the physical connectivity among Availability Zones, the network switch maintenance, and the hardware updates and firmware patches. Therefore, option D is the correct answer, and options A, B, and C are AWS responsibilities, not customer responsibilities.Reference: : AWS Well-Architected Framework - Elasticity; : Reactive Systems on AWS - Elastic

asked 16/09/2024
Joshin Ogele
35 questions

Question 569

Report
Export
Collapse

A company wants to monitor for misconfigured security groups that are allowing unrestricted access to specific ports. Which AWS service will meet this requirement?

AWS Trusted Advisor
AWS Trusted Advisor
Amazon CloudWatch
Amazon CloudWatch
Amazon GuardDuty
Amazon GuardDuty
AWS Health Dashboard
AWS Health Dashboard
Suggested answer: A

Explanation:

AWS Trusted Advisor is a service that provides real-time guidance to help optimize AWS resources, improve security, and maximize performance. It includes a Security category that can identify security group configurations that allow unrestricted access to specific ports.It offers recommendations and alerts to help remediate misconfigurations and ensure proper security practices1.Reference:

Amazon CLF-C02: Which AWS service monitor for misconfigured security groups allowing unrestricted access to specific ports - PUPUWEB

asked 16/09/2024
Tudy smith
22 questions

Question 570

Report
Export
Collapse

Which AWS service or tool gives users the ability to connect with AWS and deploy resources programmatically?

Amazon quickSight
Amazon quickSight
AWS PrivateLink
AWS PrivateLink
AWS Direct Connect
AWS Direct Connect
AWS SDKs
AWS SDKs
Suggested answer: D

Explanation:

AWS SDKs are a set of tools that allow users to connect with AWS and deploy resources programmatically. AWS SDKs provide libraries, code samples, documentation, and other resources to help users write code that interacts with AWS APIs. AWS SDKs support various programming languages, such as Java, Python, Ruby, .NET, Node.js, Go, and more. AWS SDKs make it easier for users to access AWS services, such as Amazon S3, Amazon EC2, Amazon DynamoDB, AWS Lambda, and more, from their applications. AWS SDKs also handle tasks such as authentication, error handling, retries, and data serialization, so users can focus on their application logic .

The other options are not AWS services or tools that give users the ability to connect with AWS and deploy resources programmatically.Amazon QuickSight is a business intelligence service that lets users create and share interactive dashboards and visualizations1.AWS PrivateLink is a service that enables users to securely access services hosted on AWS in a scalable and cost-effective manner2.AWS Direct Connect is a service that establishes a dedicated network connection between a user's premises and AWS3.

A network ACL (NACL) is an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets. You can create a network ACL and associate it with a subnet to apply rules that allow or deny traffic to or from the subnet. Network ACLs are stateless, meaning that they evaluate the source and destination IP addresses for both inbound and outbound traffic.You can also use network ACLs to block IP address ranges that are known to be malicious12.

The other options are not AWS services or tools that can be used to set up a firewall to control traffic going into and coming out of an Amazon VPC subnet. Security groups are another layer of security for your VPC that act as a firewall for your EC2 instances. Security groups are stateful, meaning that they automatically allow return traffic for allowed inbound traffic.Security groups can only filter traffic based on protocols, ports, and source or destination IP addresses, not on IP ranges3. AWS WAF is a web application firewall that helps protect your web applications from common web exploits. AWS WAF can filter web requests based on rules that you define, such as IP addresses, HTTP headers, HTTP body, or URI strings.AWS WAF does not apply to non-web traffic or to traffic within a VPC4. AWS Firewall Manager is a service that helps you centrally configure and manage firewall rules across your accounts and resources in AWS Organizations. You can use Firewall Manager to apply AWS WAF rules, AWS Network Firewall policies, and Amazon VPC security groups across your AWS accounts. AWS Firewall Manager does not provide a firewall service itself, but rather helps you manage other firewall services

asked 16/09/2024
Abdelilah BAKIR
27 questions
Total 798 questions
Go to page: of 80
Search

Related questions