Practice Free CLF-C02 Exam Online Questions
Question #131
A company wants to develop a shopping application that records customer orders. The application needs to use an AWS managed database service to store data.
Which AWS service should the company use to meet these requirements?
- A . Amazon RDS
- B . Amazon Redshift
- C . Amazon ElastiCache
- D . Amazon Neptune
Correct Answer: A
A
Explanation:
A is correct because Amazon RDS is the AWS service that provides a managed relational database service that supports various database engines, such as MySQL, PostgreSQL, Oracle, and SQL Server. B is incorrect because Amazon Redshift is the AWS service that provides a managed data warehouse service that is optimized for analytical queries. C is incorrect because Amazon ElastiCache is the AWS service that provides a managed in-memory data store service that supports Redis and Memcached. D is incorrect because Amazon Neptune is the AWS service that provides a managed graph database service that supports property graph and RDF models.
A
Explanation:
A is correct because Amazon RDS is the AWS service that provides a managed relational database service that supports various database engines, such as MySQL, PostgreSQL, Oracle, and SQL Server. B is incorrect because Amazon Redshift is the AWS service that provides a managed data warehouse service that is optimized for analytical queries. C is incorrect because Amazon ElastiCache is the AWS service that provides a managed in-memory data store service that supports Redis and Memcached. D is incorrect because Amazon Neptune is the AWS service that provides a managed graph database service that supports property graph and RDF models.
Question #132
Which AWS service or feature can be used to estimate costs before deployment?
- A . AWS Free Tier
- B . AWS Pricing Calculator
- C . AWS Billing and Cost Management
- D . AWS Cost and Usage Report
Correct Answer: B
B
Explanation:
AWS Pricing Calculator can be used to estimate costs before deployment. AWS Pricing Calculator is a tool that helps the user to compare the cost of AWS services for different use cases and configurations. The user can create estimates for various AWS services, such as Amazon EC2, Amazon S3, Amazon RDS, and more. The user can also adjust the parameters, such as region, instance type, storage size, and duration, to see how they affect the cost. AWS Pricing Calculator provides a detailed breakdown of the estimated cost, as well as a summary of the key drivers of the cost.
B
Explanation:
AWS Pricing Calculator can be used to estimate costs before deployment. AWS Pricing Calculator is a tool that helps the user to compare the cost of AWS services for different use cases and configurations. The user can create estimates for various AWS services, such as Amazon EC2, Amazon S3, Amazon RDS, and more. The user can also adjust the parameters, such as region, instance type, storage size, and duration, to see how they affect the cost. AWS Pricing Calculator provides a detailed breakdown of the estimated cost, as well as a summary of the key drivers of the cost.
4 1. Which of the following promotes AWS Cloud architectural best practices for designing and operating reliable, secure, efficient, and cost-effective systems?
Question #133
A company plans to perform a one-time migration of a large dataset with millions of files from its on-premises data center to the AWS Cloud.
Which AWS service should the company use for the migration?
- A . AWS Database Migration Service (AWS DMS)
- B . AWS DataSync
- C . AWS Migration Hub
- D . AWS Application Migration Service
Correct Answer: B
B
Explanation:
AWS DataSync is designed for large-scale data transfers, especially involving large datasets with millions of files from on-premises to AWS. It provides fast and efficient transfer capabilities, and supports a one-time migration. AWS DMS is specific to databases, while Migration Hub is for tracking migrations, and Application Migration Service is for continuous replication rather than one-time file migrations.
B
Explanation:
AWS DataSync is designed for large-scale data transfers, especially involving large datasets with millions of files from on-premises to AWS. It provides fast and efficient transfer capabilities, and supports a one-time migration. AWS DMS is specific to databases, while Migration Hub is for tracking migrations, and Application Migration Service is for continuous replication rather than one-time file migrations.
Question #134
A company wants to quickly implement a continuous integration/continuous delivery (CI/CD) pipeline.
Which AWS service will meet this requirement?
- A . AWS Config
- B . Amazon Cognito
- C . AWS DataSync
- D . AWS CodeStar
Correct Answer: D
D
Explanation:
AWS CodeStar is a service that enables you to quickly develop, build, and deploy applications on AWS. It provides a unified user interface for managing your application lifecycle, including code repositories, build pipelines, deployments, and project dashboards. AWS CodeStar also integrates with other AWS services, such as AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy, and AWS CodePipeline, to create a complete CI/CD pipeline for your application12.
References: AWS CodeStar AWS Certified Cloud Practitioner Exam Guide
D
Explanation:
AWS CodeStar is a service that enables you to quickly develop, build, and deploy applications on AWS. It provides a unified user interface for managing your application lifecycle, including code repositories, build pipelines, deployments, and project dashboards. AWS CodeStar also integrates with other AWS services, such as AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy, and AWS CodePipeline, to create a complete CI/CD pipeline for your application12.
References: AWS CodeStar AWS Certified Cloud Practitioner Exam Guide
Question #135
A company wants to migrate to AWS and use the same security software it uses on premises. The security software vendor offers its security software as a service on AWS. Where can the company purchase the security solution?
- A . AWS Partner Solutions Finder
- B . AWS Support Center
- C . AWS Management Console
- D . AWS Marketplace
Correct Answer: D
D
Explanation:
AWS Marketplace is an online store that helps customers find, buy, and immediately start using the software and services that run on AWS. Customers can choose from a wide range of software products in popular categories such as security, networking, storage, machine learning, business intelligence, database, and DevOps. Customers can also use AWS Marketplace to purchase software as a service (SaaS) solutions that are integrated with AWS. Customers can benefit from simplified procurement, billing, and deployment processes, as well as flexible pricing options and free trials. Customers can also leverage AWS Marketplace to discover and subscribe to solutions offered by AWS Partners, such as the security software vendor mentioned in the question.
References: AWS Marketplace, [AWS Marketplace: Software as a Service (SaaS)], [AWS Cloud Practitioner Essentials: Module 6 – AWS Pricing, Billing, and Support]
D
Explanation:
AWS Marketplace is an online store that helps customers find, buy, and immediately start using the software and services that run on AWS. Customers can choose from a wide range of software products in popular categories such as security, networking, storage, machine learning, business intelligence, database, and DevOps. Customers can also use AWS Marketplace to purchase software as a service (SaaS) solutions that are integrated with AWS. Customers can benefit from simplified procurement, billing, and deployment processes, as well as flexible pricing options and free trials. Customers can also leverage AWS Marketplace to discover and subscribe to solutions offered by AWS Partners, such as the security software vendor mentioned in the question.
References: AWS Marketplace, [AWS Marketplace: Software as a Service (SaaS)], [AWS Cloud Practitioner Essentials: Module 6 – AWS Pricing, Billing, and Support]
Question #136
What does "security of the cloud" refer to in the AWS shared responsibility model?
- A . Availability of AWS services such as Amazon EC2
- B . Security of the cloud infrastructure that runs all the AWS services
- C . Implementation of password policies for IAM users
- D . Security of customer environments by using AWS Network Firewall partners
Correct Answer: B
B
Explanation:
Security of the cloud refers to the security of the cloud infrastructure that runs all the AWS services. This includes the hardware, software, networking, and facilities that AWS operates and manages. AWS is responsible for protecting the security of the cloud as part of the AWS shared responsibility model. Availability of AWS services such as Amazon EC2 refers to the ability of the services to be up and running and to meet the expected performance. Availability is part of the reliability pillar of the AWS Well-Architected Framework and is a shared responsibility between AWS and the customer. Implementation of password policies for IAM users refers to the security of the customer data and applications in the cloud. This includes the configuration and management of IAM user permissions, encryption keys, security group rules, network ACLs, and other aspects of access management. The customer is responsible for protecting the security in the cloud as part of the AWS shared responsibility model. Security of customer environments by using AWS Network Firewall partners refers to the security of the customer data and applications in the cloud. AWS Network Firewall is a managed service that provides network protection for Amazon VPCs. It allows customers to use AWS Marketplace partners to implement firewall rules and policies. The customer is responsible for protecting the security in the cloud as part of the AWS shared responsibility model.
B
Explanation:
Security of the cloud refers to the security of the cloud infrastructure that runs all the AWS services. This includes the hardware, software, networking, and facilities that AWS operates and manages. AWS is responsible for protecting the security of the cloud as part of the AWS shared responsibility model. Availability of AWS services such as Amazon EC2 refers to the ability of the services to be up and running and to meet the expected performance. Availability is part of the reliability pillar of the AWS Well-Architected Framework and is a shared responsibility between AWS and the customer. Implementation of password policies for IAM users refers to the security of the customer data and applications in the cloud. This includes the configuration and management of IAM user permissions, encryption keys, security group rules, network ACLs, and other aspects of access management. The customer is responsible for protecting the security in the cloud as part of the AWS shared responsibility model. Security of customer environments by using AWS Network Firewall partners refers to the security of the customer data and applications in the cloud. AWS Network Firewall is a managed service that provides network protection for Amazon VPCs. It allows customers to use AWS Marketplace partners to implement firewall rules and policies. The customer is responsible for protecting the security in the cloud as part of the AWS shared responsibility model.
Question #137
A company wants to implement detailed tracking of its cloud costs by department and project .
Which AWS feature or service should the company use?
- A . Consolidated billing
- B . Cost allocation tags
- C . AWS Marketplace
- D . AWS Budgets
Correct Answer: B
B
Explanation:
Cost allocation tags are an AWS feature that allows for detailed tracking of cloud costs by tagging resources. These tags can be customized to represent departments, projects, or cost centers, enabling organizations to allocate and monitor expenses accurately. By using cost allocation tags, companies can create reports that break down costs by tag, providing granular insights into their cloud spending. This feature is critical for achieving detailed cost management and is a core part of AWS’s billing and cost management offerings.
B
Explanation:
Cost allocation tags are an AWS feature that allows for detailed tracking of cloud costs by tagging resources. These tags can be customized to represent departments, projects, or cost centers, enabling organizations to allocate and monitor expenses accurately. By using cost allocation tags, companies can create reports that break down costs by tag, providing granular insights into their cloud spending. This feature is critical for achieving detailed cost management and is a core part of AWS’s billing and cost management offerings.
71 1. A company wants to manage its cloud resources by using infrastructure as code (laC) template…..
Which AWS service should the company use to meet these requirements?
Question #138
Which AWS service can defend against DDoS attacks?
- A . AWS Firewall Manager
- B . AWS Shield Standard
- C . AWS WAF
- D . Amazon Inspector
Correct Answer: B
B
Explanation:
AWS Shield Standard is a service that provides protection against Distributed Denial of Service (DDoS) attacks for all AWS customers at no additional charge. It automatically detects and mitigates the most common and frequently occurring network and transport layer DDoS attacks that target AWS resources, such as Amazon EC2 instances, Elastic Load Balancers, Amazon CloudFront distributions, and Amazon Route 53 hosted zones. AWS Firewall Manager is a service that allows users to centrally configure and manage firewall rules across their AWS accounts and resources, such as AWS WAF web ACLs, AWS Shield Advanced protections, and Amazon VPC security groups. AWS WAF is a web application firewall that helps protect web applications from common web exploits, such as SQL injection, cross-site scripting, and bot attacks. Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. It analyzes the behavior of the applications and checks for vulnerabilities, exposures, and deviations from best practices.
B
Explanation:
AWS Shield Standard is a service that provides protection against Distributed Denial of Service (DDoS) attacks for all AWS customers at no additional charge. It automatically detects and mitigates the most common and frequently occurring network and transport layer DDoS attacks that target AWS resources, such as Amazon EC2 instances, Elastic Load Balancers, Amazon CloudFront distributions, and Amazon Route 53 hosted zones. AWS Firewall Manager is a service that allows users to centrally configure and manage firewall rules across their AWS accounts and resources, such as AWS WAF web ACLs, AWS Shield Advanced protections, and Amazon VPC security groups. AWS WAF is a web application firewall that helps protect web applications from common web exploits, such as SQL injection, cross-site scripting, and bot attacks. Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. It analyzes the behavior of the applications and checks for vulnerabilities, exposures, and deviations from best practices.
Question #139
Which tasks are responsibilities of the customer, according to the AWS shared responsibility model? (Select TWO.)
- A . Secure the virilization layer.
- B . Encrypt data and maintain data integrity.
- C . Patch the Amazon RDS operating system.
- D . Maintain identity and access management controls.
- E . Secure Availability Zones.
Correct Answer: B, D
B, D
Explanation:
Under the AWS Shared Responsibility Model, AWS manages security of the cloud (such as physical infrastructure and virtualization), while customers are responsible for security in the cloud. This means that customers are responsible for:
B. Encrypt data and maintain data integrity: Correct, as customers are responsible for securing their data, including encryption and maintaining its integrity.
D. Maintain identity and access management controls: Correct, as customers are responsible for managing access to their AWS resources, including creating and managing IAM users, roles, and permissions.
B, D
Explanation:
Under the AWS Shared Responsibility Model, AWS manages security of the cloud (such as physical infrastructure and virtualization), while customers are responsible for security in the cloud. This means that customers are responsible for:
B. Encrypt data and maintain data integrity: Correct, as customers are responsible for securing their data, including encryption and maintaining its integrity.
D. Maintain identity and access management controls: Correct, as customers are responsible for managing access to their AWS resources, including creating and managing IAM users, roles, and permissions.
Question #140
Which AWS service or tool helps users visualize, understand, and manage spending and usage over time?
- A . AWS Organizations
- B . AWS Pricing Calculator
- C . AWS Cost Explorer
- D . AWS Service Catalog
Correct Answer: C
C
Explanation:
AWS Cost Explorer is the AWS service or tool that helps users visualize, understand, and manage spending and usage over time. AWS Cost Explorer is a web-based interface that allows users to access interactive graphs and tables that display their AWS costs and usage data. Users can create custom reports that analyze cost and usage data by various dimensions, such as service, region, account, tag, and more. Users can also view historical data for up to the last 12 months, forecast future costs for up to the next 12 months, and get recommendations for cost optimization. AWS Cost Explorer also provides preconfigured views that show common cost and usage scenarios, such as monthly spend by service, daily spend by linked account, and Reserved Instance utilization. Users can use AWS Cost Explorer to monitor their AWS spending and usage trends, identify cost drivers and anomalies, and optimize their resource allocation and budget planning.
References: Cloud Cost Analysis – AWS Cost Explorer – AWS, Analyzing your costs with AWS Cost Explorer
C
Explanation:
AWS Cost Explorer is the AWS service or tool that helps users visualize, understand, and manage spending and usage over time. AWS Cost Explorer is a web-based interface that allows users to access interactive graphs and tables that display their AWS costs and usage data. Users can create custom reports that analyze cost and usage data by various dimensions, such as service, region, account, tag, and more. Users can also view historical data for up to the last 12 months, forecast future costs for up to the next 12 months, and get recommendations for cost optimization. AWS Cost Explorer also provides preconfigured views that show common cost and usage scenarios, such as monthly spend by service, daily spend by linked account, and Reserved Instance utilization. Users can use AWS Cost Explorer to monitor their AWS spending and usage trends, identify cost drivers and anomalies, and optimize their resource allocation and budget planning.
References: Cloud Cost Analysis – AWS Cost Explorer – AWS, Analyzing your costs with AWS Cost Explorer
51 1. A company is migrating its workloads to the AWS Cloud. The company must retain full control of
patch management for the guest operating systems that host its applications.
Which AWS service should the company use to meet these requirements?