ExamGecko
Home / Amazon / CLF-C01 / List of questions
Ask Question

Amazon CLF-C01 Practice Test - Questions Answers, Page 31

List of questions

Question 301

Report
Export
Collapse

Which AWS service offers the LEAST expensive means of storing static images?

Amazon S3
Amazon S3
Amazon DynamoDB
Amazon DynamoDB
AWS Snowball
AWS Snowball
Amazon Elastic Block Store (Amazon EBS)
Amazon Elastic Block Store (Amazon EBS)
Suggested answer: A

Explanation:

Explanation:

asked 16/09/2024
AXEL AXELOPOULOS
41 questions

Question 302

Report
Export
Collapse

Which guideline is a well-architected design principle for building cloud applications?

Keep static data closer to compute resources
Keep static data closer to compute resources
Provision resources for peak capacity
Provision resources for peak capacity
Design for automated recovery from failure
Design for automated recovery from failure
Use tightly coupled components
Use tightly coupled components
Suggested answer: C
asked 16/09/2024
Kishen Morar
45 questions

Question 303

Report
Export
Collapse

A developer is writing a new application that consists of multiple AWS microservices During quality assurance testing, the developer notices runtime errors in several areas of the application. Which AWS service should the developer use to help troubleshoot the errors?

AWS CloudTrail
AWS CloudTrail
AWS X-Ray
AWS X-Ray
Amazon CloudWatch
Amazon CloudWatch
Amazon Cognito
Amazon Cognito
Suggested answer: B
asked 16/09/2024
PHINIT LAORUNGRUANGDECH
44 questions

Question 304

Report
Export
Collapse

What are characteristics of AWS IAM users and groups? (Select TWO.)

Groups can be nested and can contain other groups
Groups can be nested and can contain other groups
A user can be a member of multiple groups
A user can be a member of multiple groups
Groups can contain users only and cannot be nested
Groups can contain users only and cannot be nested
A user can only be a member of a single group at one time
A user can only be a member of a single group at one time
All new users are automatically added to a default group
All new users are automatically added to a default group
Suggested answer: B, C
asked 16/09/2024
Mark Anthony Simon
38 questions

Question 305

Report
Export
Collapse

A company recently created its first AWS account.

Which AWS services will require the use of a VPC? (Select TWO.)

Amazon S3
Amazon S3
Amazon Elastic File System (Amazon EFS)
Amazon Elastic File System (Amazon EFS)
Amazon Cognito
Amazon Cognito
Amazon DynamoDB
Amazon DynamoDB
Amazon EC2
Amazon EC2
Suggested answer: D, E
asked 16/09/2024
Owais Mansoor
40 questions

Question 306

Report
Export
Collapse

Which of the following is an AWS value proposition that describes a user's ability to scale infrastructure based on demand?

Speed of innovation
Speed of innovation
Resource elasticity
Resource elasticity
Decoupled architecture
Decoupled architecture
Global deployment
Global deployment
Suggested answer: B
asked 16/09/2024
Alexandre BOUCHER
41 questions

Question 307

Report
Export
Collapse

Which guidelines are best practices for using AWS Identity and Access Management (IAM)? (Select TWO.)

Share access keys
Share access keys
Create individual IAM users
Create individual IAM users
Use inline policies instead of customer managed policies
Use inline policies instead of customer managed policies
Grant maximum privileges to IAM users
Grant maximum privileges to IAM users
Use groups to assign permissions to IAM users
Use groups to assign permissions to IAM users
Suggested answer: C, E
asked 16/09/2024
Herr Alexandre Fleider
39 questions

Question 308

Report
Export
Collapse

Which AWS service can be used to run Amazon EC2 instances on-premises at a user site?

AWS Snowball Edge
AWS Snowball Edge
Amazon CloudFront
Amazon CloudFront
Lambda@Edge
Lambda@Edge
AWS Lambda
AWS Lambda
Suggested answer: A
asked 16/09/2024
THARINDU AMARASINGHE
30 questions

Question 309

Report
Export
Collapse

A company wants to archive its media data as soon as the data is generated. The company needs to store the data for several years Two or three times each year the company must access some of the data within 10 minutes of a request. Which Amazon S3 solution will meet these requirements MOST cost-effectively?

S3 Standard
S3 Standard
S3 Glacier with expedited retrievals
S3 Glacier with expedited retrievals
S3 Intelligent-Tiering
S3 Intelligent-Tiering
S3 Glacier Deep Archive
S3 Glacier Deep Archive
Suggested answer: B
asked 16/09/2024
Tyrika Warren
39 questions

Question 310

Report
Export
Collapse

Which security service automatically recognizes and classifies sensitive data or intellectual property on AWS?

Amazon GuardDuty
Amazon GuardDuty
Amazon Macie
Amazon Macie
Amazon Inspector
Amazon Inspector
AWS Shield
AWS Shield
Suggested answer: B

Explanation:

Explanation:

Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS.

As organizations manage growing volumes of data, identifying and protecting their sensitive data at scale can become increasingly complex, expensive, and time-consuming. Amazon Macie automates the discovery of sensitive data at scale and lowers the cost of protecting your data. Macie automatically provides an inventory of Amazon S3 buckets including a list of unencrypted buckets, publicly accessible buckets, and buckets shared with AWS accounts outside those you have defined in AWS Organizations. Then, Macie applies machine learning and pattern matching techniques to the buckets you select to identify and alert you to sensitive data, such as personally identifiable information (PII). Macieís alerts, or findings, can be searched and filtered in the AWS Management Console and sent to Amazon EventBridge, formerly called Amazon CloudWatch Events, for easy integration with existing workflow or event management systems, or to be used in combination with AWS services, such as AWS Step Functions to take automated remediation actions. This can help you meet regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) and General Data Privacy Regulation (GDPR). You can get started with Amazon Macie by leveraging the 30-day free trial for bucket evaluation. The trial includes 30-days of Amazon S3 bucket inventory and bucket-level security and access control assessment at no cost. Note that sensitive data discovery is not included in the 30-day free trial for bucket evaluation. Benefits

Discover your sensitive data at scale

Amazon Macie uses machine learning and pattern matching to cost efficiently discover sensitive data at scale. Macie automatically detects a large and growing list of sensitive data types, including personal identifiable information (PII) such as names, addresses, and credit card numbers. The service also allows you to define your own custom sensitive data types so you can discover and protect the sensitive data that may be unique to your business or use case.

Visibility of your data security posture

Amazon Macie gives you constant visibility of the data security and data privacy of your data stored in Amazon S3. Macie automatically and continually evaluates all of your S3 buckets and alerts you to any unencrypted buckets, publicly accessible buckets, or buckets shared with AWS accounts outside those you have defined in the AWS Organizations. Macie provides native multi-account support so you can view your data security posture across your entire S3 environment from a single Macie administrator account.

Easy to setup and manage

Getting started with Amazon Macie is fast and easy with one-click in the AWS Management Console or a single API call. Macie provides multi-account support using AWS Organizations, so you can enable Macie across all of your accounts with a few clicks. Macie maintains a fully-managed set of sensitive data types, so there is no custom configuration required.

asked 16/09/2024
matthew kim
40 questions
Total 944 questions
Go to page: of 95