CLF-C02 Flashcards
A user deploys an Amazon RDS DB instance in multiple Availability Zones. This strategy involves which pillar of the AWS Well-Architected Framework?
A - Performance Efficiency
B - Reliability
C - Cost Optimization
D - Security
Reliability
The reliability pillar includes the ability of a workload to perform its intended function correctly and consistently when it is expected to do so. The deployment of Amazon RDS in multiple Availability Zones supports the goal of reliability because it reduces single points of failure.
A company has an on-premises Linux-based server with an Oracle database that runs on it. The company wants to migrate the database server to run on an Amazon EC2 instance in AWS. Which service should the company use to complete the migration?
A - AWS Database Migration Service (DMS)
B - AWS Migration Hub
C - AWS Application Migration Service (MGN)
D - AWS Application Discovery Service
AWS Application Migration Service (MGN)
AWS MGN is an automated lift-and-shift solution. This solution can migrate physical servers and any databases or applications that run on them to EC2 instances in AWS.
Which AWS service allows customers to purchase unused Amazon EC2 capacity at an often discounted rate?
A - Reserved Instances
B - On-Demand Instances
C - Dedicated Instances
D - Spot Instances
Spot Instances
With Spot Instances, you can access unused EC2 capacity. Spot Instances can be discounted.
A company requires a relational database on AWS that records new customer orders from a website. Which AWS service or feature will meet this requirement?
A - AWS Global Accelerator
B - Amazon DynamoDB
C - Amazon Aurora
D - Amazon Elastic Block Store (EBS)
Amazon Aurora
Aurora is a MySQL- and PostgreSQL-compatible relational database built for the cloud. Aurora combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases.
Which of the functionalities are characteristics of Amazon S3? (Select TWO.)
A - A Global File System
B - An Object Store
C - A Local File Store
D - A Network File System
E - A Durable Storage System
An Object Store & A Durable Storage System
Amazon S3 is an object storage service & Amazon S3 is a durable object storage service.
How does AWS charge for AWS Lambda usage once the free tier has been exceeded? (Select TWO.)
A - By the time it takes for the Lambda function to run
B - By the number of versions of a specific Lambda function
C - By the number of requests made for a given Lambda function
D- By the programming language that is used for the Lambda function
E - By the total number of Lambda functions in an AWS account
By the time it takes for the Lambda function to run & By the number of requests made for a given Lambda function
Lambda charges are dependent on the amount of time it takes to run the code & Lambda charges are dependent on the number of requests for your Lambda functions.
A company wants to create a learning application for students. The learning application must give students the option to choose a button to have the text read out loud to them. Which AWS machine learning service will meet this requirement?
A - Amazon Transcribe
B - Amazon Polly
C - Amazon Translate
D - Amazon Textract
Amazon Polly
Amazon Polly is a machine learning service that converts text to speech. This service provides the ability to read text out loud.
A company wants to establish a consistent and private connection from the company’s on-premises data center to the AWS Cloud. Which AWS service will meet these requirements?
A - AWS Client VPN
B - Amazon Connect
C - AWS Direct Connect
D - AWS Site-to-Site VPN
AWS Direct Connect
Direct Connect links your internal network to a Direct Connect location through a standard Ethernet fiber-optic cable. One end of the cable connects to your router. The other end of the cable connects to a Direct Connect router. AWS Direct Connect is consistent and private because your company is the only user of the cable.
A company requires an encrypted connection between the company’s on-premises servers and AWS. The connection must use the company’s existing internet connection. Which solution will meet these requirements?
A - AWS Direct Connect
B - Amazon Connect
C - Amazon CloudFront
D - AWS Site-to-Site VPN
AWS Site-to-Site VPN
Site-to-Site VPN creates an encrypted network path between your on-premises network and your AWS Cloud network. This connection between your on-premises network and your AWS Cloud network uses the internet.
A company is hosting a static website from a single Amazon S3 bucket. Which AWS service will achieve lower latency and high transfer speeds?
A - AWS Elastic Beanstalk
B - Amazon BynamoDB Accelerator (DAX)
C - Amazon Route 53
D - Amazon CloudFront
Amazon CloudFront
CloudFront is a web service that speeds up the distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users. Content is cached in edge locations. Content that is repeatedly accessed can be served from the edge locations instead of the source S3 bucket.
Which tasks are the customer’s responsibility according to the AWS shared responsibility model? (Select TWO.)
A - Patch the operating system that AWS Lambda functions use
B - Install patches on Amazon RDS DB instances
C - Control physical access to the data center that contains a customer’s VPC
D - Configure IAM users according to the principle of least privilege
E - Configure an Amazon S3 bucket to allow public access
**Configure IAM users according to the principle of least privilege & Configure an Amazon S3 bucket to allow public access **
AWS provides AWS Identity and Access Management (IAM) as a service. The customer defines IAM users and the access policies that apply to those users & The customer determines access permissions to S3 buckets that the customer owns.
A company is moving all of their development activities to AWS. The company wants a solution to store and manage their developers’ source code. Which AWS coding service will meet this requirement?
A - AWS CodeArtifact
B - AWS CodeBuild
C - AWS CodePipeline
D - AWS CodeCommit
AWS CodeCommit
CodeCommit is a source code version control service. CodeCommit helps users store and manage developers’ source code in AWS.
What is the MINIMUM AWS Support plan that provides technical support through phone calls?
A - Enterprise
B - Business
C - Developer
D - Basic
Business
You can call or chat with technical support by using the Business Support plan or the Enterprise Support plan. The Business Support plan is the minimum plan that provides this feature.
A company needs to monitor and receive alerts about AWS Management Console sign-in events that involve the AWS account root user. Which AWS service can the company use to meet these requirements?
A - Amazon CloudWatch
B - AWS Config
C - AWS Trusted Advisor
D - AWS Identity and Access Management (IAM)
Amazon CloudWatch
CloudWatch monitors your AWS resources and the applications that you run on AWS in real time. You can use CloudWatch with AWS CloudTrail to monitor and receive alerts about console sign-in events that involve the AWS account root user.
Which AWS service identifies security groups that allow unrestricted access to a user’s AWS resources?
A - AWS Trusted Advisor
B - AWS Config
C - Amazon CloudWatch
D - AWS CloudTrail
AWS Trusted Advisor
Trusted Advisor checks security groups for rules that allow unrestricted access to a resource. Unrestricted access increases opportunities for malicious activity, such as hacking, denial-of-service attacks, or loss of data.
What are the advantages of deploying an application with Amazon EC2 instances in multiple Availability Zones? (Select TWO.)
A - Preventing a single point of failure
B - Reducing the operational costs of the application
C - Allowing the application to serve cross-region users with low latency
D - Increasing the avilability of the application
E - Increasing the load of the application
Preventing a single point of failure & Increasing the availability of the application
The deployment of the EC2 instances in multiple Availability Zones prevents a single point of failure. Availability Zones are designed for physical redundancy and to provide resilience with uninterrupted performance & If you host all your instances in a single location that is affected by a failure, none of your instances would be available. Availability Zones are designed for physical redundancy and to provide resilience with uninterrupted performance.
Each department within a company has its own independent AWS account and its own payment method. The company needs to centralize departmental governance and consolidate payments. How can the company achieve these objectives by using AWS services or features?
A - Use AWS Cloud Map on each departmental account.
B - Create an organization in AWS Organizations with all features enabled within one account. Invite all accounts to join the organization.
C - Use AWS Systems Manager OpsCenter.
D - Use the AWS Cost and Usage Reports page of the AWS Billing and Cost Management console.
Create an organization in AWS Organizations with all features enabled within one account. Invite all accounts to join the organization.
Organizations provides centralized governance and billing for an AWS environment, including multiple accounts.
What are benefits of using the AWS Cloud for companies with customers in many countries around the world? (Select TWO.)
A - Companies can deploy applications in multiple AWS Regions to reduce latency.
B - Amazon Translate automatically translates third-party website interfaces into multiple languages.
C - Amazon CloudFront has multiple edge locations around the world to reduce latency.
D - Amazon Comprehend allows users to build applications that can respond to user requests in many languages
E - Elastic Load Balancing can distribute application web traffic to multiple AWS Regions around the world, which reduces latency
Companies can deploy applications in multiple AWS Regions to reduce latency & Amazon CloudFront has multiple edge locations around the world to reduce latency.
The use of Regions around the world will improve an application’s global performance and reduce latency for users. CloudFront is a content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to global customers with low latency and high transfer speeds.
Which credential components are required to gain programmatic access to an AWS account? (Select TWO.)
A - An access key ID
B - A primary key
C - A secret access key
D - A user ID
E - A secondary key
An access key ID & A secret access key
Programmatic access requires an access key ID and a secret access key that can be assigned to an AWS user.
A user needs to automatically discover, classify, and protect sensitive data stored in Amazon S3. Which AWS service can meet these requirements?
A - Amazon Inspector
B - Amazon Macie
C - Amazon GuardDuty
D - AWS Secrets Manager
Amazon Macie
Macie is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS.
What is cloud computing?
A - Backing up files that are stored on desktop and mobile devices to prevent data loss
B - Deploying applications connected to on-premises infrastructure
C - Running code without needing to manage or provision servers
D - On-demand delivery of IT resources and applications through the internet with pay-as-you-go pricing
On-demand delivery of IT resources and applications through the internet with pay-as-you-go pricing
What is another name for on-premises deployment?
A - Private cloud deployment
B - Cloud-based application
C - Hybrid deployment
D - AWS Cloud
Private cloud deployment
How does the scale of cloud computing help you to save costs?
A - You do not have to invest in technology resources before using them.
B - The aggregated cloud usage from a large number of customers results in lower pay-as-you-go prices.
C - Accessing services on-demand helps to prevent excess or limited capacity.
D - You can quickly deploy applications to customers and provide them with low latency.
The aggregated cloud usage from a large number of customers results in lower pay-as-you-go prices.
Which Amazon EC2 instance type is suitable for data warehousing applications?
A - Memory optimized
B - Storage optimized
C - General purpose
D - Compute optimized
Storage optimized