Practice Free CLF-C02 Exam Online Questions
What is an AWS responsibility under the AWS shared responsibility model?
- A . Configure the security group rules that determine which ports are open on an Amazon EC2 Linux instance.
- B . Ensure the security of the internal network in the AWS data centers.
- C . Patch the guest operating system with the latest security patches on Amazon EC2.
- D . Turn on server-side encryption for Amazon S3 buckets.
A company wants to deploy its critical application on AWS and maintain high availability.
B
Explanation:
Under the AWS shared responsibility model, AWS is responsible for ensuring the security of the internal network in the AWS data centers, as well as the physical security of the hardware and facilities that run AWS services. AWS customers are responsible for configuring the security group rules that determine which ports are open on an EC2 Linux instance, patching the guest operating system with the latest security patches on EC2, and turning on server-side encryption for S3 buckets. Source: AWS Shared Responsibility Model
A company’s gaming application has been gaining popularity. There has been high demand for the gaming application in countries where the company does not currently deploy the application .
Which advantage of the AWS Cloud can help the company to deploy the application to more countries around the world?
- A . Increase speed and agility
- B . Go global in minutes
- C . Trade fixed expense for variable expense
- D . Benefit from massive economies of scale
B
Explanation:
The AWS Cloud’s global infrastructure enables rapid deployment across multiple geographic regions, allowing companies to extend applications to new markets quickly. This capability to "go global in minutes" is especially valuable for businesses looking to reach customers in new countries without building data centers. Other options, like speed and agility, are advantages but do not specifically address global deployment.
A company is learning about its responsibilities that are related to the management of Amazon EC2 instances.
Which tasks for EC2 instances are the company’s responsibility, according to the AWS shared responsibility model? (Select TWO.)
- A . Install and patch the machine hypervisor.
- B . Patch the guest operating system.
- C . Encrypt data at rest on associated storage.
- D . Install the physical hardware and cabling.
- E . Provide physical security for the EC2 instances.
B, C
Explanation:
Under the AWS Shared Responsibility Model, AWS manages the security of the cloud, while customers manage security in the cloud. For EC2 instances, it is the customer’s responsibility to manage the guest operating system, including patching and encrypting data stored on attached storage volumes. AWS is responsible for the underlying infrastructure, including physical security and hypervisor maintenance.
Which duties are the responsibility of a company that is using AWS Lambda? (Select TWO.)
- A . Security inside of code
- B . Selection of CPU resources
- C . Patching of operating system
- D . Writing and updating of code
- E . Security of underlying infrastructure
A, D
Explanation:
The duties that are the responsibility of a company that is using AWS Lambda are security inside of code and writing and updating of code. AWS Lambda is a serverless compute service that allows you to run code without provisioning or managing servers, scaling, or patching. AWS Lambda takes care of the security of the underlying infrastructure, such as the operating system, the network, and the firewall. However, the company is still responsible for the security of the code itself, such as encrypting sensitive data, validating input, and handling errors. The company is also responsible for writing and updating the code that defines the Lambda function, and choosing the runtime environment, such as Node.js, Python, or Java. AWS Lambda does not require the selection of CPU resources, as it automatically allocates them based on the memory configuration34
Which AWS service can run a managed PostgreSQL database that provides online transaction processing (OLTP)?
- A . Amazon DynamoDB
- B . Amazon Athena
- C . Amazon RDS
- D . Amazon EMR
C
Explanation:
Amazon RDS is a fully managed relational database service that supports several database engines, including PostgreSQL. Amazon RDS can run a managed PostgreSQL database that provides online transaction processing (OLTP), which is a type of database workload that handles frequent read and write operations on small amounts of data. Amazon RDS for PostgreSQL offers high performance, availability, scalability, security, and compatibility with the PostgreSQL community edition. Amazon RDS also provides automated backups, point-in-time recovery, encryption, monitoring, and maintenance for PostgreSQL databases.
References:
Hosted PostgreSQL – Amazon RDS for PostgreSQL
OLTP Database, MySQL And PostgreSQL Managed Database – Amazon Aurora
PostgreSQL options on AWS: Self- managed, managed, and serverless
A company wants to use AWS. The company has stringent requirements about low-latency access to on-premises systems and data residency.
Which AWS service should the company use to design a solution that meets these requirements?
- A . AWS Wavelength
- B . AWS Transit Gateway
- C . AWS Ground Station
- D . AWS Outposts
D
Explanation:
AWS Outposts extend AWS infrastructure and services to on-premises locations, providing low-latency access to AWS resources and ensuring data residency. This service is suitable for hybrid environments that require the same AWS services and infrastructure to be available locally.
Wavelength, Transit Gateway, and Ground Station do not specifically address low-latency access to on-premises resources or data residency.
A company has a workload that requires data to be collected, analyzed, and stored on premises. The company wants to extend the use of AWS services to run on premises with access to the company network and the company’s VPC.
Which AWS service meets this requirement?
- A . AWS Outposts
- B . AWS Storage Gateway
- C . AWS Direct Connect
- D . AWS Snowball
A
Explanation:
AWS Outposts is an AWS service that meets the requirement of running AWS services on premises with access to the company network and the company’s VPC. AWS Outposts is a fully managed service that extends AWS infrastructure, AWS services, APIs, and tools to virtually any datacenter, co-location space, or on-premises facility for a truly consistent hybrid experience. AWS Outposts is ideal for workloads that require low latency access to on-premises systems, local data processing, or local data storage2.
A company is migrating an application that includes an Oracle database to AWS. The company cannot rewrite the application.
To which AWS service could the company migrate the database?
- A . Amazon Athena
- B . Amazon DynamoDB
- C . Amazon RDS
- D . Amazon DocumentDB (with MongoDB compatibility)
C
Explanation:
Amazon Relational Database Service (Amazon RDS) is a service that provides fully managed relational database engines. Amazon RDS supports several database engines, including Oracle, MySQL, PostgreSQL, MariaDB, SQL Server, and Amazon Aurora. Amazon RDS can be used to migrate an application that includes an Oracle database to AWS without rewriting the application, as long as the application is compatible with the Oracle version and edition supported by Amazon RDS. Amazon RDS can also provide benefits such as high availability, scalability, security, backup and restore, and performance optimization. [Amazon RDS Overview] AWS Certified Cloud Practitioner – aws.amazon.com
12 1. Which of the following is an AWS value proposition that describes a user’s ability to scale infrastructure based on demand?
A company wants to launch multiple workloads on AWS. Each workload is related to a different business unit. The company wants to separate and track costs for each business unit.
Which solution will meet these requirements with the LEAST operational overhead?
- A . Use AWS Organizations and create one account for each business unit.
- B . Use a spreadsheet to control the owners and cost of each resource.
- C . Use an Amazon DynamoDB table to record costs for each business unit.
- D . Use the AWS Billing console to assign owners to resources and track costs.
A
Explanation:
AWS Organizations is a service that helps you centrally manage and govern your AWS
environment. You can use AWS Organizations to create multiple accounts for different business units, and group them into organizational units (OUs) that reflect your organizational structure 1. By doing so, you can separate and track costs for each business unit using the account ID as a cost allocation tag2. You can also use AWS Organizations to apply policies and controls to your accounts, such as service control policies (SCPs) and tag policies 1.
The other options are not suitable for meeting the requirements with the least operational overhead. Using a spreadsheet or a DynamoDB table to control and record costs for each business unit would require manual data entry and maintenance, which is prone to errors and inconsistencies. Using the AWS Billing console to assign owners to resources and track costs would also require manual tagging of each resource, which is time-consuming and inefficient.
References:
1: What Is AWS Organizations? – AWS Organizations
2: Cost Tagging and Reporting with AWS Organizations | AWS Cloud Financial Management
An independent software vendor wants to deliver and share its custom Amazon Machine images (AMIs) to prospective customers.
Which AWS service will meet these requirements?
- A . AWS Marketplace
- B . AWS Data Exchange
- C . Amazon EC2
- D . AWS Organizations
A
Explanation:
AWS Marketplace is an online store where independent software vendors (ISVs) can list and sell their software products, including custom Amazon Machine Images (AMIs). It allows vendors to share, distribute, and monetize their AMIs with a broad audience of AWS customers.
B. AWS Data Exchange: Incorrect, as it is a service for finding, subscribing to, and using third-party data in the cloud, not for delivering custom AMIs.
C. Amazon EC2: Incorrect, as it is the service for running instances, but it does not provide a marketplace for distributing AMIs.
D. AWS Organizations: Incorrect, as it is a service for managing multiple AWS accounts, not for
distributing software products like AMIs.
AWS Cloud References: AWS Marketplace
65 1. A company uses a third-party identity provider (IdP). The company wants to provide its employees with access to AWS accounts and services without requiring another set of login credentials.
Which AWS service will meet this requirement?