ExamGecko
Home / Amazon / CLF-C02 / List of questions
Ask Question

Amazon CLF-C02 Practice Test - Questions Answers, Page 24

List of questions

Question 231

Report
Export
Collapse

A company wants to create a chatbot and integrate the chatbot with its current web application.

Which AWS service will meet these requirements?

AmazonKendra
AmazonKendra
Amazon Lex
Amazon Lex
AmazonTextract
AmazonTextract
AmazonPolly
AmazonPolly
Suggested answer: B

Explanation:

The AWS service that will meet the requirements of the company that wants to create a chatbot and integrate the chatbot with its current web application is Amazon Lex. Amazon Lex is a service that helps customers build conversational interfaces using voice and text. The company can use Amazon Lex to create a chatbot that can understand natural language and respond to user requests, using the same deep learning technologies that power Amazon Alexa. Amazon Lex also provides easy integration with other AWS services, such as Amazon Comprehend, Amazon Polly, and AWS Lambda, as well as popular platforms, such as Facebook Messenger, Slack, and Twilio. Amazon Lex helps customers create engaging and interactive chatbots for their web applications. Amazon Kendra, Amazon Textract, and Amazon Polly are not the best services to use for this purpose. Amazon Kendra is a service that helps customers provide accurate and natural answers to natural language queries using machine learning. Amazon Textract is a service that helps customers extract text and data from scanned documents using optical character recognition (OCR) and machine learning. Amazon Polly is a service that helps customers convert text into lifelike speech using deep learning. These services are more useful for different types of natural language processing and generation tasks, rather than creating and integrating chatbots.

asked 16/09/2024
Christian Galea
40 questions

Question 232

Report
Export
Collapse

Which AWS service is used to temporarily provide federated security credentials to a__________

Amazon GuardDuty
Amazon GuardDuty
AWS Simple Token Service (AWS STS)
AWS Simple Token Service (AWS STS)
AWS Secrets Manager
AWS Secrets Manager
AWS Certificate Manager
AWS Certificate Manager
Suggested answer: B

Explanation:

The AWS service that is used to temporarily provide federated security credentials to a user is AWS Security Token Service (AWS STS). AWS STS is a service that enables customers to request temporary, limited-privilege credentials for AWS Identity and Access Management (IAM) users or for users that they authenticate (federated users). The company can use AWS STS to grant federated users access to AWS resources without creating permanent IAM users or sharing long-term credentials. AWS STS helps customers manage and secure access to their AWS resources for federated users. Amazon GuardDuty, AWS Secrets Manager, and AWS Certificate Manager are not the best services to use for this purpose. Amazon GuardDuty is a threat detection service that monitors for malicious activity and unauthorized behavior across the AWS accounts and resources. AWS Secrets Manager is a service that helps customers manage and rotate secrets, such as database credentials, API keys, and passwords. AWS Certificate Manager is a service that helps customers provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and internal connected resources. These services are more useful for different types of security and compliance tasks, rather than providing temporary federated security credentials to a user.

asked 16/09/2024
Sanaa CHOKIRI
45 questions

Question 233

Report
Export
Collapse

A company wants to securely store Amazon RDS database credentials and automatically rotate user passwords periodically.

Which AWS service or capability will meet these requirements?

Amazon S3
Amazon S3
AWS Systems Manager Parameter Store
AWS Systems Manager Parameter Store
AWS Secrets Manager
AWS Secrets Manager
AWS CloudTrail
AWS CloudTrail
Suggested answer: C

Explanation:

AWS Secrets Manager is a service that helps you protect access to your applications, services, and IT resources. This service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle1. Amazon S3 is a storage service that does not offer automatic rotation of credentials. AWS Systems Manager Parameter Store is a service that provides secure, hierarchical storage for configuration data management and secrets management2, but it does not offer automatic rotation of credentials. AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account3, but it does not store or rotate credentials.

asked 16/09/2024
Instel SL
28 questions

Question 234

Report
Export
Collapse

A company has an application that runs periodically in an on-premises environment. The application runs for a few hours most days, but runs for 8 hours a day for a week at the end of each month.

Which AWS service or feature should be used to host the application in the AWS Cloud?

Amazon EC2 Standard Reserved Instances
Amazon EC2 Standard Reserved Instances
Amazon EC2 On-Demand Instances
Amazon EC2 On-Demand Instances
AWS Wavelength
AWS Wavelength
Application Load Balancer
Application Load Balancer
Suggested answer: B

Explanation:

Amazon EC2 On-Demand Instances are instances that you pay for by the second, with no long-term commitments or upfront payments4. This option is suitable for applications that have unpredictable or intermittent workloads, such as the one described in the question. Amazon EC2 Standard Reserved Instances are instances that you purchase for a one-year or three-year term, and pay a lower hourly rate compared to On-Demand Instances. This option is suitable for applications that have steady state or predictable usage. AWS Wavelength is a service that enables developers to build applications that deliver ultra-low latency to mobile devices and users by deploying AWS compute and storage at the edge of the 5G network. This option is not relevant for the application described in the question. Application Load Balancer is a type of load balancer that operates at the application layer and distributes traffic based on the content of the request. This option is not a service or feature to host the application, but rather to balance the traffic among multiple instances.

asked 16/09/2024
victoria nagy
37 questions

Question 235

Report
Export
Collapse

A company is reviewing the design of an application that will be migrated from on premises to a single Amazon EC2 instance.

What should the company do to make the application highly available?

Provision additional EC2 instances in other Availability Zones.
Provision additional EC2 instances in other Availability Zones.
Configure an Application Load Balancer (ALB). Assign the EC2 instance as the ALB's target.
Configure an Application Load Balancer (ALB). Assign the EC2 instance as the ALB's target.
Use an Amazon Machine Image (AMI) to create the EC2 instance.
Use an Amazon Machine Image (AMI) to create the EC2 instance.
Provision the application by using an EC2 Spot Instance.
Provision the application by using an EC2 Spot Instance.
Suggested answer: A

Explanation:

Provisioning additional EC2 instances in other Availability Zones is a way to make the application highly available, as it reduces the impact of failures and increases fault tolerance. Configuring an Application Load Balancer and assigning the EC2 instance as the ALB's target is a way to distribute traffic among multiple instances, but it does not make the application highly available if there is only one instance. Using an Amazon Machine Image to create the EC2 instance is a way to launch a virtual server with a preconfigured operating system and software, but it does not make the application highly available by itself. Provisioning the application by using an EC2 Spot Instance is a way to use spare EC2 capacity at up to 90% off the On-Demand price, but it does not make the application highly available, as Spot Instances can be interrupted by EC2 with a two-minute notification.

asked 16/09/2024
Alessandro Cristofori
39 questions

Question 236

Report
Export
Collapse

Which AWS service provides a highly accurate and easy-to-use enterprise search service that is powered by machine learning (ML)?

Amazon Kendra
Amazon Kendra
Amazon SageMaker
Amazon SageMaker
Amazon Augmented Al (Amazon A2I)
Amazon Augmented Al (Amazon A2I)
Amazon Polly
Amazon Polly
Suggested answer: A

Explanation:

Amazon Kendra is a service that provides a highly accurate and easy-to-use enterprise search service that is powered by machine learning. Kendra delivers powerful natural language search capabilities to your websites and applications so your end users can more easily find the information they need within the vast amount of content spread across your company. Amazon SageMaker is a service that provides a fully managed platform for data scientists and developers to quickly and easily build, train, and deploy machine learning models at any scale. Amazon Augmented AI (Amazon A2I) is a service that makes it easy to build the workflows required for human review of ML predictions.

Amazon A2I brings human review to all developers, removing the undifferentiated heavy lifting associated with building human review systems or managing large numbers of human reviewers.

Amazon Polly is a service that turns text into lifelike speech, allowing you to create applications that talk, and build entirely new categories of speech-enabled products. None of these services provide an enterprise search service that is powered by machine learning.

asked 16/09/2024
ENET SOLUTIONS LOGICOM
35 questions

Question 237

Report
Export
Collapse

A company provides a software as a service (SaaS) application. The company has a new customer that is based in a different country.

The new customer's data needs to be hosted in that country.

Which AWS service or infrastructure component should the company use to meet this requirement?

AWS Shield
AWS Shield
Amazon S3 Object Lock
Amazon S3 Object Lock
AWS Regions
AWS Regions
Placement groups
Placement groups
Suggested answer: C

Explanation:

AWS Regions are geographic areas around the world where AWS has clusters of data centers. Each AWS Region consists of multiple, isolated, and physically separate AZ's within a geographic area. By hosting the customer's data in a specific AWS Region, the company can meet the requirement of hosting the data in the customer's country. AWS Shield is a service that provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection. Amazon S3 Object Lock is a feature that allows you to store objects using a write-once-read-many (WORM) model. You can use it to prevent an object from being deleted or overwritten for a fixed amount of time or indefinitely.

Placement groups are logical grouping of instances within a single Availability Zone. Placement groups enable applications to participate in a low-latency, 10 Gbps network. None of these services or infrastructure components can help the company host the customer's data in a different country.

asked 16/09/2024
MIGUEL GAITERO GIL
40 questions

Question 238

Report
Export
Collapse

Which credential allows programmatic access to AWS resources for use from the AWS CLI or the AWS API?

User name and password
User name and password
Access keys
Access keys
SSH public keys
SSH public keys
AWS Key Management Service (AWS KMS) keys
AWS Key Management Service (AWS KMS) keys
Suggested answer: B

Explanation:

Access keys are long-term credentials that consist of an access key ID and a secret access key. You use access keys to sign programmatic requests that you make to AWS using the AWS CLI or AWS API1. User name and password are credentials that you use to sign in to the AWS Management Console or the AWS Management Console mobile app2. SSH public keys are credentials that you use to authenticate with EC2 instances that are launched from certain Linux AMIs3. AWS Key Management Service (AWS KMS) keys are customer master keys (CMKs) that you use to encrypt and decrypt your data and to control access to your data across AWS services and in your applications4.

asked 16/09/2024
Jaime Ramirez
28 questions

Question 239

Report
Export
Collapse

A company has developed a distributed application that recovers gracefully from interruptions. The application periodically processes large volumes of data by using multiple Amazon EC2 instances.

The application is sometimes idle for months.

Which EC2 instance purchasing option is MOST cost-effective for this use case?

Reserved Instances
Reserved Instances
Spot Instances
Spot Instances
Dedicated Instances
Dedicated Instances
On-Demand Instances
On-Demand Instances
Suggested answer: B

Explanation:

Spot Instances are instances that use spare EC2 capacity that is available for up to 90% off the On-Demand price. Because Spot Instances can be interrupted by EC2 with two minutes of notification when EC2 needs the capacity back, you can use them for applications that have flexible start and end times, or that can withstand interruptions5. This option is most cost-effective for the use case described in the question. Reserved Instances are instances that you purchase for a one-year or three-year term, and pay a lower hourly rate compared to On-Demand Instances. This option is suitable for applications that have steady state or predictable usage. Dedicated Instances are instances that run on hardware that's dedicated to a single customer within an Amazon VPC. This option is suitable for applications that have stringent regulatory or compliance requirements. On-Demand Instances are instances that you pay for by the second, with no long-term commitments or upfront payments. This option is suitable for applications that have unpredictable or intermittent workloads.

asked 16/09/2024
Tyler Henderson
35 questions

Question 240

Report
Export
Collapse

A company is running workloads for multiple departments within a single VPC. The company needs to be able to bill each department for its resource usage.

Which action should the company take to accomplish this goal with the LEAST operational overhead?

Add a department tag to each resource and configure cost allocation tags.
Add a department tag to each resource and configure cost allocation tags.
Move each department resource to its own VPC.
Move each department resource to its own VPC.
Move each department resource to its own AWS account.
Move each department resource to its own AWS account.
Use AWS Organizations to get a billing report for each department.
Use AWS Organizations to get a billing report for each department.
Suggested answer: A

Explanation:

Adding a department tag to each resource and configuring cost allocation tags is an action that can help you accomplish the goal of billing each department for its resource usage with the least operational overhead. Tags are simple labels consisting of a key and an optional value that you can assign to AWS resources. You can use tags to organize your resources and track your AWS costs on a detailed level. Cost allocation tags enable you to track your AWS costs on a detailed level. After you activate cost allocation tags, AWS uses the cost allocation tags to organize your resource costs on your cost allocation report, to make it easier for you to categorize and track your AWS costs2. Moving each department resource to its own VPC or its own AWS account is an action that can help you isolate and control the resources for each department, but it would incur more operational overhead than using tags. Using AWS Organizations to get a billing report for each department is an action that can help you consolidate billing and payment across multiple AWS accounts, but it would not help you bill each department for its resource usage within a single VPC.

asked 16/09/2024
Johan Benavides
42 questions
Total 798 questions
Go to page: of 80
Search

Related questions