ExamGecko
Home / Amazon / CLF-C01 / List of questions
Ask Question

Amazon CLF-C01 Practice Test - Questions Answers, Page 14

List of questions

Question 131

Report
Export
Collapse

A user must meet compliance and software licensing requirements that state a workload must be hosted on a physical server. When Amazon EC2 instance pricing option will meet these requirements?

Dedicated Hosts
Dedicated Hosts
Dedicated Instances
Dedicated Instances
Spot Instances
Spot Instances
Reserved Instances
Reserved Instances
Suggested answer: A

Explanation:

Explanation:

Dedicated instances and dedicated hosts are separate offerings. The difference is that a dedicated instance is partitioned under a hypervisor on a dedicated server and can still share instances within your account, while a dedicated host is a complete physical machine with a single partition.

Dedicated Instance = a partition on a machine that will only host instances from your account Dedicated Host = a physical machine with a single partition The Dedicated Host is the physical server, while an instance is a server that is dedicated to your account that may contain multiple EC2 instances. https://aws.amazon.com/ec2/pricing/dedicated-instances/

asked 16/09/2024
Robert Fox
50 questions

Question 132

Report
Export
Collapse

What can users access from AWS Artifact?

AWS security and compliance documents
AWS security and compliance documents
A download of configuration management details for all AWS resources
A download of configuration management details for all AWS resources
Training materials for AWS services
Training materials for AWS services
A security assessment of the applications deployed in the AWS Cloud
A security assessment of the applications deployed in the AWS Cloud
Suggested answer: A
asked 16/09/2024
Rannie Dayapan
42 questions

Question 133

Report
Export
Collapse

A company is planning to launch an ecommerce site in a single AWS Region to a worldwide user base Which AWS services will allow the company to reach users and provide low latency and high transfer speeds? (Select TWO.)

Application Load Balancer
Application Load Balancer
AWS Global Accelerator
AWS Global Accelerator
AWS Direct Connect
AWS Direct Connect
Amazon CloudFront
Amazon CloudFront
AWS Lambda
AWS Lambda
Suggested answer: B, D
asked 16/09/2024
Jesserey Joseph
44 questions

Question 134

Report
Export
Collapse

A company's security policy requires the company to keep a record of all changes that are made to Amazon EC2 security groups. The record must include information about who made the change and when the change was made. Which AWS service will provide this information?

AWS Lambda
AWS Lambda
Amazon CloudWatch
Amazon CloudWatch
AWS WAF
AWS WAF
AWS CloudTrail
AWS CloudTrail
Suggested answer: D
asked 16/09/2024
Lonely Sayi
30 questions

Question 135

Report
Export
Collapse

Which design principles of the AWS Well-Architected Framework help increase reliability? (Select TWO.)

Automatically recover from failure
Automatically recover from failure
Enable traceability.
Enable traceability.
Scale horizontally to increase workload availability.
Scale horizontally to increase workload availability.
Automate security best practices
Automate security best practices
Keep people away from data
Keep people away from data
Suggested answer: A, C

Explanation:

Reliability The Reliability pillar encompasses the ability of a workload to perform its intended function correctly and consistently when itís expected to. This includes the ability to operate and test the workload through its total lifecycle. You can find prescriptive guidance on implementation in the ReliabilityPillar whitepaper.Design Principles There are five design principles for reliability in the cloud:

Automatically recover from failure Test recovery procedures Scale horizontally to increase aggregate workload availability Stop guessing capacity Manage change in automationhttps://aws.amazon.com/blogs/apn/the-6-pillars-of-the-awswell-architected-framework/

asked 16/09/2024
michael brooks
37 questions

Question 136

Report
Export
Collapse

Which actions allow a company's security team to improve the security procedures for employees accessing AWS resources? (Select TWO.)

Create IAM users for groups of employees to share
Create IAM users for groups of employees to share
Create IAM policies based on least privilege principles
Create IAM policies based on least privilege principles
Create IAM users in different Availability Zones
Create IAM users in different Availability Zones
Enable multi-factor authentication for privileged users
Enable multi-factor authentication for privileged users
Specify an individual IAM user for each Amazon EC2 instance
Specify an individual IAM user for each Amazon EC2 instance
Suggested answer: B, D
asked 16/09/2024
Khalid Laghmami
26 questions

Question 137

Report
Export
Collapse

How can users protect against distributed denial of service (DDoS) attacks in the AWS Cloud?

Use Amazon CloudWatch monitoring.
Use Amazon CloudWatch monitoring.
Configure a firewall.
Configure a firewall.
Use Amazon Redshift
Use Amazon Redshift
Monitor AWS CloudTrail logging
Monitor AWS CloudTrail logging
Suggested answer: B
asked 16/09/2024
Fatmata Kabba
51 questions

Question 138

Report
Export
Collapse

What is an Availability Zone in AWS?

One or more physical data centers
One or more physical data centers
A completely isolated geographic location
A completely isolated geographic location
One or more edge locations based around the world
One or more edge locations based around the world
A data center location with a single source of power and networking
A data center location with a single source of power and networking
Suggested answer: A
asked 16/09/2024
Nicolas Pintrel
35 questions

Question 139

Report
Export
Collapse

What is a responsibility of AWS in the shared responsibility model?

Updating the network ACLs to block traffic to vulnerable ports.
Updating the network ACLs to block traffic to vulnerable ports.
Patching operating systems running on Amazon EC2 instances.
Patching operating systems running on Amazon EC2 instances.
Updating the firmware on the underlying EC2 hosts.
Updating the firmware on the underlying EC2 hosts.
Updating the security group rules to block traffic to the vulnerable ports.
Updating the security group rules to block traffic to the vulnerable ports.
Suggested answer: C

Explanation:

Explanation:

Reference: https://cloudacademy.com/blog/aws-shared-responsibility-model-security/

asked 16/09/2024
Daniel Martos
44 questions

Question 140

Report
Export
Collapse

Which AWS service or feature allows a company to visualize, understand, and manage AWS costs and usage over time?

AWS Budgets
AWS Budgets
AWS Cost Explorer
AWS Cost Explorer
AWS Organizations
AWS Organizations
Consolidated billing
Consolidated billing
Suggested answer: B
asked 16/09/2024
Morten Sivertsen
30 questions
Total 944 questions
Go to page: of 95