ExamGecko
Search Search Login
Home Home / Amazon / CLF-C02

Amazon CLF-C02 Practice Test - Questions Answers, Page 68

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which AWS service gives users on-demand, sell-service access to AWS compliance control reports?
Which AWS service provides storage-optimized and compute-optimized device configurations?
A company is running a reporting web server application on Amazon EC2 instances. The application runs once every week and once again at the end of the month. The EC2 instances can be shut down when they are not in use. What is the MOST cost-effective billing model for this use case?
A company needs to manage multiple logins across AWS accounts within the same organization in AWS Organizations. Which AWS service should the company use to meet this requirement?
Which design principle aligns with performance efficiency pillar of the AWS Well-Architected Framework?
According to the AWS shared responsibility model, which of the following are AWS responsibilities? (Select TWO.)
Which AWS service can create a private network connection from on premises to the AWS Cloud?
Which AWS service or feature allows users to securely store encrypted credentials and retrieve these credentials when required?
A company purchased Amazon EC2 Standard Reserved Instances (Rls) for a workload in the AWS Cloud. The company needs to move part of the workload to an instance family that does not match the instance family of these Standard RIs. How can the company take advantage of the Standard RIs that it no longer needs?
Which options does AWS make available for customers who want to learn about security in the cloud in an instructor-led setting? (Select TWO.)

Question 671

Report
Export
Collapse

Which task is the customer's responsibility, according to the AWS shared responsibility model?

A.
Patch a guest operating system that is deployed on an Amazon EC2 instance.
A.
Patch a guest operating system that is deployed on an Amazon EC2 instance.
Answers
B.
Control physical access to an AWS data center
B.
Control physical access to an AWS data center
Answers
C.
Control access to AWS underlying hardware.
C.
Control access to AWS underlying hardware.
Answers
D.
Patch a host operating system that is deployed on Amazon S3.
D.
Patch a host operating system that is deployed on Amazon S3.
Answers
Suggested answer: A

Explanation:

According to the AWS Shared Responsibility Model, the customer is responsible for managing the guest operating system (including patches and updates) and any applications that they run on their Amazon EC2 instances.

Why other options are not suitable:

B . Control physical access to an AWS data center: AWS is responsible for the physical security of its data centers.

C . Control access to AWS underlying hardware: AWS manages the hardware infrastructure.

D . Patch a host operating system that is deployed on Amazon S3: Amazon S3 is a managed storage service, and AWS manages the underlying infrastructure, including the operating system.

References:

AWS Shared Responsibility Model


Question 672

Report
Export
Collapse

Which AWS service allows for file sharing between multiple Amazon EC2 Instances?

A.
AWS Direct Connect
A.
AWS Direct Connect
Answers
B.
AWS Snowball Edge
B.
AWS Snowball Edge
Answers
C.
AWS Backup
C.
AWS Backup
Answers
D.
Amazon Elastic File System (Amazon EFS)
D.
Amazon Elastic File System (Amazon EFS)
Answers
Suggested answer: D

Question 673

Report
Export
Collapse

A company wants to migrate its on-premises infrastructure to the AWS Cloud.

Which advantage of cloud computing will help the company reduce upfront costs?

A.
Go global in minutes
A.
Go global in minutes
Answers
B.
Increase speed and agility
B.
Increase speed and agility
Answers
C.
Benefit from massive economies of scale
C.
Benefit from massive economies of scale
Answers
D.
Trade fixed expense for variable expense
D.
Trade fixed expense for variable expense
Answers
Suggested answer: D

Question 674

Report
Export
Collapse

Which AWS service or tool gives a company the ability to release application changes in an automated way?

A.
Amazon AppFlow
A.
Amazon AppFlow
Answers
B.
AWS CodeDeploy
B.
AWS CodeDeploy
Answers
C.
AWS PrivateLink
C.
AWS PrivateLink
Answers
D.
Amazon EKS Distro
D.
Amazon EKS Distro
Answers
Suggested answer: B

Question 675

Report
Export
Collapse

Which tasks are responsibilities of the customer, according to the AWS shared responsibility model? (Select TWO.)

A.
Secure the virilization layer.
A.
Secure the virilization layer.
Answers
B.
Encrypt data and maintain data integrity.
B.
Encrypt data and maintain data integrity.
Answers
C.
Patch the Amazon RDS operating system.
C.
Patch the Amazon RDS operating system.
Answers
D.
Maintain identity and access management controls.
D.
Maintain identity and access management controls.
Answers
E.
Secure Availability Zones.
E.
Secure Availability Zones.
Answers
Suggested answer: B, D

Explanation:

Under the AWS Shared Responsibility Model, AWS manages security of the cloud (such as physical infrastructure and virtualization), while customers are responsible for security in the cloud. This means that customers are responsible for:

B . Encrypt data and maintain data integrity: Correct, as customers are responsible for securing their data, including encryption and maintaining its integrity.

D . Maintain identity and access management controls: Correct, as customers are responsible for managing access to their AWS resources, including creating and managing IAM users, roles, and permissions.

A . Secure the virtualization layer: Incorrect, as AWS is responsible for securing the underlying virtualization layer.

C . Patch the Amazon RDS operating system: Incorrect, as AWS handles patching and maintenance of the managed service's underlying infrastructure.

E . Secure Availability Zones: Incorrect, as AWS is responsible for securing the physical infrastructure, including Availability Zones.

AWS Cloud References:

AWS Shared Responsibility Model

Question 676

Report
Export
Collapse

A company needs stateless network filtering for its VPC.

Which AWS service, tool, or feature will meet this requirement?

A.
AWS PrivateLink
A.
AWS PrivateLink
Answers
B.
Security group
B.
Security group
Answers
C.
Network access control list (ACL)
C.
Network access control list (ACL)
Answers
D.
AWS WAF
D.
AWS WAF
Answers
Suggested answer: C

Explanation:

A Network Access Control List (ACL) is a stateless network filtering mechanism provided by AWS for controlling traffic in and out of subnets within a VPC. Unlike security groups, which are stateful, network ACLs are stateless. This means that they do not automatically allow responses to inbound traffic unless explicitly specified. Network ACLs allow you to set rules for both inbound and outbound traffic, making them suitable for stateless filtering. Security groups, on the other hand, are stateful, while AWS WAF is primarily for web application-level security. AWS PrivateLink is used for privately connecting VPCs to AWS services without using an internet gateway. Therefore, for stateless network filtering, Network ACL is the correct choice.

Question 677

Report
Export
Collapse

Which AWS compute service gives users the ability to securely and reliably run containers at scale?

A.
Amazon Elastic Container Service (Amazon ECS)
A.
Amazon Elastic Container Service (Amazon ECS)
Answers
B.
Amazon Aurora
B.
Amazon Aurora
Answers
C.
Amazon Athena
C.
Amazon Athena
Answers
D.
Amazon Polly
D.
Amazon Polly
Answers
Suggested answer: A

Explanation:

Amazon Elastic Container Service (Amazon ECS) is a highly scalable, fast container management service that allows you to run, stop, and manage Docker containers on a cluster of Amazon EC2 instances or a serverless environment powered by AWS Fargate. It provides secure, reliable, and scalable operations for containers, allowing users to deploy containers in a highly secure and reliable manner. Amazon Aurora is a relational database service, Amazon Athena is an interactive query service, and Amazon Polly is a text-to-speech service. Therefore, the correct answer is Amazon ECS. References:

AWS Documentation on Amazon ECS

Question 678

Report
Export
Collapse

A company is planning to migrate applications to the AWS Cloud. During a system audit, the company finds that its content management system (CMS) application is incompatible with cloud environments.

Which migration strategies will help the company to migrate the CMS application with the LEAST effort? (Select TWO.)

A.
Retire
A.
Retire
Answers
B.
Rehost
B.
Rehost
Answers
C.
Repurchase
C.
Repurchase
Answers
D.
Replatform
D.
Replatform
Answers
E.
Refactor
E.
Refactor
Answers
Suggested answer: B, C

Explanation:

Rehosting ('lift and shift') is a migration strategy where applications are moved to the cloud with minimal changes, making it the least effort-intensive method for applications incompatible with the cloud. Repurchasing involves moving to a different product, often a SaaS solution, which can also minimize migration effort by avoiding the need for application-level changes. Retiring, replatforming, and refactoring require significant effort either in terms of analyzing and shutting down the application, making changes to the underlying platform, or redesigning the application architecture, respectively. References:

AWS Migration Strategies

Question 679

Report
Export
Collapse

A company wants to design its cloud architecture so that it can support development innovations, and continuously improve processes and procedures.

This is an example of which pillar of the AWS Well-Architected Framework?

A.
Security
A.
Security
Answers
B.
Performance efficiency
B.
Performance efficiency
Answers
C.
Operational excellence
C.
Operational excellence
Most voted
Answers (1)
Most voted
D.
Reliability
D.
Reliability
Answers
Suggested answer: D

Explanation:

'The Reliability pillar encompasses the ability of a workload to perform its intended function correctly and consistently when it's expected to. This includes the ability to operate and test the workload through its total lifecycle. ' https://docs.aws.amazon.com/wellarchitected/latest/framework/reliability.html

Question 680

Report
Export
Collapse

A company runs its production workload in the AWS Cloud. The company needs to choose one of the AWS Support Plans.

Which of the AWS Support Plans will meet these requirements at the LOWEST cost?

A.
Developer
A.
Developer
Answers
B.
Enterprise On-Ramp
B.
Enterprise On-Ramp
Answers
C.
Enterprise
C.
Enterprise
Answers
D.
Business
D.
Business
Answers
Suggested answer: A

Explanation:

The AWS Developer Support plan is the lowest-cost AWS Support plan that provides basic guidance and technical support for running production workloads. It offers 24/7 access to AWS customer service, documentation, whitepapers, and access to a limited set of Trusted Advisor checks. This plan is ideal for non-critical workloads or early development phases but provides lower levels of support compared to the Business, Enterprise On-Ramp, and Enterprise plans.

B . Enterprise On-Ramp: Incorrect, as it is a higher-cost support plan designed for production workloads needing more guidance and technical support.

C . Enterprise: Incorrect, as it is the most expensive support plan, providing a Technical Account Manager and other premium support features.

D . Business: Incorrect, as it provides comprehensive support for production workloads but is more expensive than the Developer plan.

AWS Cloud References:

AWS Support Plans

Total 789 questions
Go to page: of 79
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms