AWS Certified Cloud Practitioner (CLF-C01)Exam G

QUESTION 1 A user can optimise Amazon EC2 costs by performing which of the following tasks? (Select TWO )

A. Implementing Auto Scaling group, to add and remove instances based on demand

B. Purchasing Reserved Instances

C. Creating a policy to restrict IAM users from creating new instances

D. Setting a budget to limit spending on EC2 instances using AWS Budgets

E. Adding EC2 instances to a second AWS Region that is geographically close to the end users

Correct Answer: AB

QUESTION 2 Which AWS service would identify if unrestricted access to a resource has been allowed by a security group?

A. Amazon CloudWatch

B. AWS Trusted Advisor

C. VPC Flow Logs

D. AWS CloudTrail

Correct Answer: B

QUESTION 3 Which pillar of the AWS well-architected framework refers to the ability of a system to recover from infrastructure or service disruptions and dynamically acquire computing resources to meet demand?

A. Reliability

B. Security

C. Performance efficiency

D. Cost optimization

Correct Answer: A

QUESTION 4 Which of the following can be used to identify a specific user who stopped an amazon EC2 instance?

A. Amazon Inspector

B. AWS CloudTrail

C. Amazon CloudWatch

D. VPC Flow Logs

Correct Answer:B

QUESTION 5 Which security-related task is the responsibility of the customer in the AWS cloud?

A. Securing infrastructure at data centres

B. Maintaining firewall configurations at a hardware level

C. Maintaining server side encryption

D. Maintaining networking among hardware components

Correct Answer:C

QUESTION 6 Which amazon S3 storage class allows users to store data backups for long periods of time at the LOWEST cost?

A. S3 Standard -infrequent Access (S3 Standard IA)

B. S3 Standard

C. S3 One Zone Infrequent Access (S3 One Zone IA)

D. S3 Glacier

Correct Answer: D

QUESTION 7 A company is building a business intelligence solution and wants to use dashboards for reporting purposes. Which AWS service can be used?

A. Amazon Redshift

B. Amazon Elasticsearch Service (Amazon ES)

C. Amazon Althena

D. Amazon QuicKSight

Correct Answer: D

QUESTION 8 A company needs to transfer a large volume of data from an on-premises data centre to the AWS Cloud. The company’s internet connectivity is slow and unreliable.Which AWS service can facilitate this data transfer?

A. AW5 Snowball

B. Amazon S3 Glacier

C. AWS Storage Gateway

D. Amazon Elastic File System (Amazon EFS)

Correct Answer:A

QUESTION 9 Which of the following technologies provides a secure network connection from on-premises to AWS?

A. Virtual Private Network

B. AWS Snowball

C. AWS Mobile Hub

D. Amazon Virtual Private Cloud (Amazon VPC)

Correct Answer: D

QUESTION 10 Which AWS service or component allows inbound traffic from the internet to access a VPC?

A. NAT gateway

B. Internet gateway

C. AWS WAF

D. VPC peering

Correct Answer:B

QUESTION 11 A company has a managed IAM policy that does not grant the necessary permission for users to accomplish required tasks. How can this be resolved?

A. Create a custom 1AM policy

B. Enable AWS Shield Advanced

C. Use a third party web application firewall (WA( ) managed rule from the AWS Marketplace

D. Use AWS Key Management Service (AWS KMS) to create a customer managed key

Correct Answer:A

QUESTION 12 What are the market advantages of running workloads in the AWS cloud?

A. Increased time to market for new application features

B. Higher acquisition costs to support peak workloads

C. Less staff time is required to deploy new workloads

D. Increased productivity for application development teams

E. A decrease in the average server CPU utilisation

Correct Answer:CD

QUESTION 13 A company plans to create a data lake that uses Amazon S3. Which factor will have the MOST effect on cost?

A. Charges to transfer existing data into Amazon S3

B. The selection of S3 storage tiers

C. The addition of S3 bucket policies

D. S3 ingest fees for each request

Correct Answer:A

QUESTION 14 To optimise costs and resource usage, a company needs to monitor the operations health of its entire system of AWS Cloud resources.Which AWS service will meet these requirements?

A. Amazon CloudWatch

B. AWS Organizations

C. AWS CloudTrail

D. AWS Config

Correct Answer:A

QUESTION 15 Which cloud computing advantage is a company applying when it uses in different countries?

A. Pay-as-you go pricing

B. Capacity forecasting

C. Global reach

D. Economies of scale

Correct Answer:C

QUESTION 16 A cloud practitioner needs an effective method to decrease application latency and increase performance for end users. Which services will help?

A. Amazon ElastiCache

B. Amazon CloudFront

C. Amazon Elastic Container Service (Amazon ECS) for Kubernetes

D. Amazon S3

E. Amazon AppStream 2.0

Correct Answer: AB

QUESTION 17 Which of the following are benefits of the AWS business support plan?

A. Dedicated AWS technical account manager (TAM)

B. Response time of less than 15 minutes for business critical cases

C. Well-Architected reviews

D. Phone, email and chat support 24 hours a day 7 days a week

E. Full set of AWS trusted Advisor best practice checks

Correct Answer:DE

QUESTION 18 A customer is deploying a now serverless application running on AWS Lambda. Which of the following are the customer's responsibilities under the AWS shared responsibility model? (Select TWO )

A. Platform management

B. Storage infrastructure

C. AWS global infrastructure

D. Application management

E. Application identity and access

Correct Answer:DE

QUESTION 19 A company uses Amazon EC2 infrastructure to host steady-state workloads and needs to achieve significant cost savings. Which EC2 instance pricing model should the company select?

A. On Demand Instances

B. Reserved Instances

C. Spot Instances

D. Dedicated Hosts

Correct Answer:B

QUESTION 20 Which design principles are enabled by the AWS Cloud to improve the operation of workloads? (Choose two.)

A. Loose coupling

B. Minimal viable product

C. Disposable resources

D. Server design and concurrency

E. Minimise upfront design

Correct Answer:AB

QUESTION 21 A company previously lost data that was stored in an on-premises data centre. To protect against the future of data, the company wants to use AWS to automatically launch thousands of its machines in a fully provisioned state in minutes, in a format that supports data restoration.Which AWS service should the company use to meet these requirements?

A. AWS Direct Connect

B. Cloud Disaster Recovery

C. AWS Storage Gateway

D. AWS Backup

Correct Answer:B

QUESTION 22 Which tasks require using AWS account root user credentials? (Select TWO.)

A. Changing the AWS Support plan

B. Creating an Amazon CloudFront key pair

C. Creating an Amazon EC2 key pair

D. Removing an 1AM user from the administrators group

E. Granting an IAM user full administrative

Correct Answer:AB

QUESTION 23 If a user has an AWS account with an enterprise level AWS support plan, who is the primary point of contact for billing or account inquiries?

A. AWS Concierge Support team

B. Solutions architect

C. An AWS Marketplace seller

D. AWS Partner Network (APN) partner

Correct Answer:A

QUESTION 24 A company has existing software licences that it wants to bring to AWS, but the licensing model requires licensing physical cores.How can the company meet this requirement in the AWS cloud?

A. Launch an Amazon EC2 instance on a Dedicated Host

B. Launch an Amazon EC2 instance with default tenancy

C. Create an On-Demand Capacity Reservation

D. Purchase Dedicated Reserved Instances

Correct Answer:A

QUESTION 25 When using Amazon RDS, what is the customer responsible for?

A. Patching and maintenance of the underlying operating system

B. Managing automatic backups of the database

C. Replacing failed instances in the event of a hardware failure

D. Controlling network access through security groups

Correct Answer:D

QUESTION 26 A company wants an in-memory data store that is compatible with open source in the cloud. Which AWS service should the company use?

A. Amazon ElastiCache

B. Amazon DynamoDB

C. Amazon Elastic Block Store (Amazon EBS)

D. Amazon Redshift

Correct Answer:A

QUESTION 27 When comparing AWS cloud with premises total cost of ownership which expenses must be considered?

A. Physical storage hardware

B. Project management

C. Operating system administration

D. Network infrastructure of data centre

E. Database schema development

Correct Answer: AB

QUESTION 28 A company is required to store its data close to its primary users. Which benefit of the AWS Cloud supports this requirement?

A. Security

B. Global footprint

C. High availability

D. Elasticity

Correct Answer: B

QUESTION 29 A company has a globally distributed user base. The company needs its application to be highly available and have low latency for end users.Which AWS architectural approach will most effectively support these requirements?

A. Multi-Region, active-active architecture

B. Single-Region, Multi-AZ architecture

C. Multi-Region, active-password architecture

D. Sign-Region, Single-AZ architecture

Correct Answer:A

QUESTION 30 Which encryption types can be used to protect objects at rest amazon S3?

A. TLS

B. SSL

C. Transparent Data Encryption (TDE)

D. Server side encryption with S3 managed encryption keys (SSE-S3)

E. Server side encryption with AWS KMS managed encryption keys (SSE KMS)

Correct Answer:DE

QUESTION 31 According to the AWS shared responsibility model, when using amazon RDS who is responsible for scheduling and performing backups?

A. The customer is responsible for scheduling and AWS is responsible for performing backups

B. AWS is responsible for both tasks

C. The customer is responsible for both tasks

D. AWS is responsible for scheduling and the user is responsible lot performing backups

Correct Answer:B

QUESTION 32 A company with an AWS Business Support plan wants to identify Amazon EC2 Reserves that are scheduled to expire.Which AWS service or feature can the company use to accomplish this goal?

A. AWS Personal Health Dashboard

B. AWS Trusted Advisor

C. Elastic Load Balancing health checks

D. EC2 instance status checks

Correct Answer:B

QUESTION 33 Which pricing model will interrupt a running amazon EC2 instance if capacity becomes temporarily unavailable?

A. on-Demand Instances

B. Standard Reserved Instances

C. Convertible Reserved Instances

D. Spot Instances

Correct Answer:D

QUESTION 34 A company uses Amazon DynamoDB in its AWS Cloud architecture. According to the AWS shared responsibility model, which of the following are responsibilities of the company? (Select TWO )

A. Operating system patching and upgrades

B. Configuration of data encryption options

C. Application of appropriate permissions with IAM tools

D. Creation of DynamoDB endpoints

E. Infrastructure provisioning and maintenance

Correct Answer: AB

QUESTION 35 Which type of AWS infrastructure deployment puts AWS compute, storage database, and other select services closer to end users to run latency-sensitive applications?

A. AWS Regions

B. Availability Zones

C. Edge locations

D. Local Zones

Correct Answer:D

QUESTION 36 Which AWS service or feature natively provides an encrypted connection that can be used to move data from on premises infrastructure to the AWS Cloud?

A. VPC endpoint

B. AWS Direct Connect

C. AWS VPN

D. AWS PrivateLink

Correct Answer:A

QUESTION 37 According to the AWS shared responsibility model, which task is the customer's responsibility?

A. Maintaining the infrastructure needed to run AWS Lambda

B. Updating the operating system of Amazon DynamoDB instances

C. Updating the guest operating system on Amazon EC2 instances

D. Maintaining Amazon S3 infrastructure

Correct Answer:C

QUESTION 38 Which AWS service or tool simplifies the creation, maintenance, validation, sharing and deployment of Linux or Windows Server templates for use with Amazon EC2 and on premises VMs?

A. Amazon EC2 Image Builder

B. AWS CodePipeline

C. AWS CloudFormation

D. Amazon EC2 Amazon Machine Image (AMI)

Correct Answer: A

QUESTION 39 Which AWS service uses a combination of publishers and subscribers?

A. AWS Lambda

B. Amazon CloudWatch

C. Amazon Simple Notification Service (Amazon SNS)

D. AWS CloudFormation

Correct Answer:C

QUESTION 40 A company needs to improve the response rate of high-volume queries to its relational database. Which AWS service should the company use to offload requests to the database and improve overall response times?

A. Amazon ElastiCache

B. Amazon DynamoDB Accelerator (DAX)

C. Elastic Load Balancing

D. AWS Global Accelerator

Correct Answer:A

QUESTION 41 Which AWS service facilitates transporting 50 GB of data from an on-premises data center to an Amazon S3 bucket without using a network connection?

A. AWS Snowball

B. AWS Backup

C. AWS CodeDeploy

D. AWS Direct Connect

Correct Answer:C

QUESTION 42 A company wants to build a new architecture with AWS services. The company needs to compare service costs at various scales. Which AWS service, tool, or feature should the company use to meet the requirement?

A. AWS Pricing Calculator

B. AWS Compute Optimizer

C. AWS Trusted Advisor

D. Cost Explorer right sizing recommendations

Correct Answer:A

QUESTION 43 A company has performance and regulatory requirements that call for it to run its workload only in its on-premises data centre. Which AWS services or resources should the company use? (Select TWO )

A. Amazon Pinpoint

B. AWS Snowball Edge

C. AWS AppSync

D. Amazon WorkLink

E. AWS Outposts

Correct Answer:DE

QUESTION 44 Which AWS service acts as a data extract transform and load (ETL) tool to make it easy to prepare data for analytics?

A. Amazon QuickSight

B. Amazon Athena

C. AWS Elastic Beanstalk

D. AWS Glue

Correct Answer:D

QUESTION 45 Which AWS service does AWS snow does AWS Snowball Edge natively support?

A. AWS Server Migration Service (AWS SMS)

B. Amazon Aurora

C. Amazon EC2

D. AWS Trusted Advisor

Correct Answer:C

QUESTION 46 To avoid malicious computer activities, a user needs a quick way to determine if any Amazon EC2 instances have ports that allow unrestricted access.Which AWS service will support this requirement?

A. AWS WAI

B. VPC Flow Logs

C. AWS CloudTrail

D. AWS Trusted Advisor

Correct Answer:B

QUESTION 47 AWS trusted advisor can monitor and provide advice on what characteristics of an AWS account?

A. Application performance

B. Network utilisation

C. Cost optimization

D. Compliance status

E. Compliance with security best practices

Correct Answer:CE

QUESTION 48 Which AWS service uses a combination of publishers and subscribers?

A. AWS Lambda

B. Amazon CloudWatch

C. Amazon Simple Notification Service (Amazon SNS)

D. AWS CloudFormation

Correct Answer: C

QUESTION 49 Which duty is a responsibility to AWS under the AWS shared responsibility model?

A. Server-side encryption (SSE)

B. Identity and access management

C. Firewall configuration

D. Maintaining physical hardware

Correct Answer:B

QUESTION 50 Which AWS service enables risk auditing of an AWS account by tracking and recording user actions and source IP addresses?

A. AWS X-Ray

B. AWS Shield

C. AWS CloudTrail

D. AWS Trusted Advisor

Correct Answer:C

QUESTION 51 When comparing AWS to on-premises total cost of ownership (TCO), what costs are included with AWS?

A. Business analysis

B. Data centre security

C. Project management

D. Operating system administration

Correct Answer:B

QUESTION 52 Which of the following can be used to describe infrastructure as code in the AWS Clouds?

A. AWS CloudFormation

B. AWS CLI

C. AWS CodeDeploy

D. AWS Amplify

Correct Answer:A

QUESTION 53 Where can a user receive help with deploying popular technologies based on AWS best practices, including architecture and deployment instructions?

A. Amazon QuickSight

B. AWS Artefact

C. AWS Quick Starts

D. AWS Config

Correct Answer:C

QUESTION 54 Which architecture concept describes the ability to deploy resources on demand and release resources when they are no longer needed?

A. High availability

B. Decoupled architecture

C. Elasticity

D. Resilience

Correct Answer: C

QUESTION 55 Which task requires the use of AWS account root account user credentials?

A. Creating a log file

B. Closing an AWS account

C. Modifying IAM user permissions

D. Deleting IAM users

Correct Answer:B

QUESTION 56 In which of the following is Amazon CloudFront content cached?

A. Availability Zones

B. Local Zones

C. Edge locations

D. AWS Regions

Correct Answer: C

QUESTION 57 A. The company will NOT retrieve the data often. Which Amazon S3 storage class will MINIMISE the cost of the system?

A company is building a new archiving system on AWS that will store terabytes of data

B. S3 Glacier

C. S3 Standard-Infrequent Access (S3 Standard-IA)

D. S3 Intelligent-Tiering

E. S3 One Zone-Infrequent Access (S3 One Zone-IA)

Correct Answer:B

QUESTION 58 Management at a large company wants to avoid long-term contracts and is interested in AWS to move from fixed costs to variable costs. What is the value proposition of AWS for this company?

A. Volume discounts

B. Economy of scale

C. Pay-as-you-go pricing

D. Cost optimization

Correct Answer:A

QUESTION 59 Which AWS service provides the ability to quickly run one-time queries on data in Amazon S3?

A. Amazon EMR

B. Amazon DynamoDB

C. Amazon Athena

D. Amazon Redshift

Correct Answer:C

QUESTION 60 A company would like to host its MySQL databases on AWS and maintain full control over the operating system, database installation, and configuration. Which AWS service should the company use to host the databases?

A. Amazon EC2

B. Amazon RDS

C. Amazon DynamoDB

D. Amazon Aurora

Correct Answer: A

QUESTION 61 A company wants to use Amazon Elastic Compute Cloud (Amazon EC2) to deploy a global commercial application. The deployment solution should be built with the highest redundancy and fault tolerance.Based on this situation the Amazon EC2 instances should be deployed:

A. in a single Availability Zone in one AWS Region

B. across multiple Availability Zones tn two AWS Regions

C. with multiple Elastic Network Interfaces belonging to different subnets

D. across multiple Availability Zones m one AWS Region

Correct Answer:B

QUESTION 62 Which of the following are benefits of running a database on Amazon RDS compared to an on- premises database? (Select TWO)

A. RDS has no database engine licensing costs

B. RDS database compute capacity can be easily scaled

C. RDS backups are managed by AWS

D. RDS supports any relational database

E. RDS inbound traffic control (for example, security groups) is managed by AWS

Correct Answer:CD

QUESTION 63 A security officer wants a list of any potential vulnerabilities in Amazon EC2 security groups. Which AWS service should the officer use?

A. AWS Trusted Advisor

B. Amazon GuardDuty

C. AWS CloudTrail

D. AWS Artefact

Correct Answer: B

QUESTION 64 A company is considering a migration from on premises to the AWS Cloud. The company's IT team needs to offload support of the workload. What should the IT team do to accomplish this goal?

A. Build hardware refreshes into the operational calendar to ensure availability

B. Use Amazon Elastic Container Service (Amazon ECS) on Amazon EC2 instances

C. Use AWS Managed Services to provision run and support the company in infrastructure

D. Overprovision compute capacity for seasonal events and traffic spikes to prevent downtime

Correct Answer:C

QUESTION 65 A user has an AWS account with a Business-level AWS Support plan and needs assistance with handling a production service disruption. Which action should the user take?

A. Contact the dedicated AWS technical account manager (TAM)

B. Contact the dedicated AWS Concierge Support team

C. Open a production system down support case

D. Open a business-critical system down support case

Correct Answer:D

QUESTION 66 How can consolidated billing within AWS Organizations help lower overall monthly expenses?

A By pooling usage across multiple accounts to achieve a pricing tier discount

B. By providing a consolidated view of monthly billing across multiple accounts

C. By automating the creation of new accounts through APIs

D. By leveraging service control policies (SCPs) tor centralised service management

Correct Answer: A

QUESTION 67 A company with AWS Enterprise Support needs help understanding its monthly AWS bill and wants to implement billing best practices.Which AWS tool or resource is available to accomplish these goals?

A. AWS Concierge Support team

B. Resource lagging

C. AWS Abuse team

D. AWS Support

Correct Answer:A

QUESTION 68 A company needs 24/7 phone, email, and chat access, with a response time of less than 1 hour if a production system has a service interruption. Which AWS Support plan meets these requirements at the LOWEST cost?

A. Basic

B. Developer

C. Enterprise

D. Business

Correct Answer:D

QUESTION 69 A company is looking for a way to encrypt data stored on Amazon S3. Which AWS managed service can be used to help to accomplish this?

A. AWS Certificate Manager (ACM)

B. AWS Secrets Manager

C. AWS Key Management Service (AWS KMS)

D. AWS Resource Access Manager

Correct Answer:C

QUESTION 70 Which architecture concept describes the ability to deploy resources on demand and release resources when they are no longer needed?

A. High availability

B. Decoupled architecture

C. Elasticity

D. Resilience

Correct Answer:C

QUESTION 71 Which features and benefits do the AWS Organizations provide? (Select TWO)

A. Implementing consolidated billing

B. Enforcing the governance of AWS accounts

C. Establishing real-time communications between members of an internal team

D. Facilitating the use of NoSQL databases

E. Providing automated security checks

Correct Answer: AB

QUESTION 72 When a user wants to utilise their existing per-socket per-core, or per-virtual machine software licences for a Microsoft Windows server running on AWS, which Amazon EC2 instance type is required?

A. Spot Instances

B. Dedicated Hosts

C. Dedicated instances

D. Reserved Instances

Correct Answer:B

QUESTION 73 Which AWS services help to improve application performance by reducing latency while accessing content globally? (Select TWO.)

A. Amazon CloudFront

B. AWS Global Accelerator

C. AWS VPN

D. AWS Direct Connect

E. Amazon S3 Glacier

Correct Answer: AB

QUESTION 74 Which AWS service or feature allows a user to establish a dedicated network connection between a company's on-premises data centre and the AWS Cloud?

A. VPC peering

B. AWS Direct Connect

C. AWS VPN

D. Amazon Route 53

Correct Answer:B

QUESTION 75 Which AWS cloud architecture principle states that systems should reduce interdependencies?

A. Scalability

B. Loose coupling

C. Services not servers

D. Removing single points of failure

Correct Answer:B

QUESTION 76 Service control policies (SCPs) manage permissions for which of the following?

A. Availability Zones

B. AWS Regions

C. Edge locations

D. AWS Organizations

Correct Answer: D

QUESTION 77 A user needs to quickly deploy a nonrelational database on AWS. The user does not want to manage the underlying hardware or the database software. Which AWS service cart can be used to accomplish this?

A. Amazon DynamoDB

B. Amazon RDS

C. Amazon Aurora

D. Amazon Redshift

Correct Answer:A

QUESTION 78 An application is receiving SQL injection attacks from multiple external resources. Which AWS service or feature can help automate mitigation against these attacks?

A. Security groups

B. AWS WAF

C. Elastic Load Balancer

D. Network ACL

Correct Answer:B

QUESTION 79 How can a user achieve high availability for a web application hosted on AWS?

A. Use an Application Load Balancer across multiple Availability Zones in one AWS Region

B. Use a Classic Load Balancer across multiple AWS Regions

C. Set up automatic scaling and load balancing with another application instance running on premises

D. Use the AWS Region with the highest number of Availability Zones

Correct Answer:A

QUESTION 80 What AWS billing support resource is available to all support levels?

A. AWS Customer Service

B. AWS Support concierge

C. AWS technical account manager

D. AWS Business Support

Correct Answer:A

QUESTION 81 Which of the following contribute to the total cost of ownership of a workload running in the AWS Cloud?(Choose two.)

A. Hardware maintenance

B. Power and cooling

C. Storage costs

D. Network costs

E. Space for data centre

Correct Answer: CD

QUESTION 82 Using AWS Identity and Access Management (IAM), what can be attached to an Amazon EC2 instance to make service requests?

A. Role

B. Group

C. Policy

D. Access key

Correct Answer:A

QUESTION 83 A security officer wants to enable IPsec communications to securely connect users from on-premises networks to AWS. Which AWS service or feature should the officer use?

A. Amazon VPC

B. AWS Direct Connect

C. AWS VPN

D. Amazon Connect

Correct Answer:C

QUESTION 84 Which of the following are benefits of running a database on Amazon RDS compared to an on-premises database? (Choose two.)

A. RDS supports any relational database.

B. RDS backups are managed by AWS.

C. RDS database compute capacity can be easily scaled.

D. RDS has no database engine licensing costs.

E. RDS inbound traffic control (for example, security groups) is managed by AWS.

Correct Answer:BC

QUESTION 85 A company is building a new archiving system on AWS that will store terabytes of data. The company will NOT retrieve the data often.Which Amazon S3 storage class will MINIMISE the cost of the system?

A. S3 Glacier

B. S3 Standard-Infrequent Access (S3 Standard-IA)

C. S3 Intelligent-Tiering

D. S3 One Zone-Infrequent Access (S3 One Zone-IA)

Correct Answer:A

QUESTION 86 Which AWS service enables users to monitor for specific phrases, values, or patterns and set up alarms based on metrics?

A. AWS IQ

B. Amazon CloudWatch Logs

C. Amazon Comprehend

D. AWS CloudTrail

Correct Answer:B

QUESTION 87 A company wants durable storage for static content and infinitely scalable data storage infrastructure at the lowest cost.Which AWS service should the company choose?

A. Amazon S3

B. Amazon Elastic Block Store (Amazon EBS)

C. AWS Storage Gateway

D. Amazon Elastic File System (Amazon EFS)

Correct Answer:A

QUESTION 88 Which cloud computing advantage is a company applying when it uses AWS Regions to increase application availability to users in different countries?

A. Pay-as-you-go pricing

B. Capacity forecasting

C. Global reach

D. Economies of scale

Correct Answer:D

QUESTION 89 A user has an AWS account with a Business-level AWS Support plan and needs assistance with handling a production service disruption. Which action should the user take?

A. Contact the dedicated AWS technical account manager (TAM).

B. Contact the dedicated AWS Concierge Support team.

C. Open a production system down support case.

D. Open a business-critical system down support case.

Correct Answer:C

QUESTION 90 When a user wants to utilise their existing per-socket, per-core, or per-virtual machine software licences for a Microsoft Windows server running on AWS, which Amazon EC2 instance type is required?

A. Spot Instances

B. Dedicated Instances

C. Reserved Instances

D. Dedicated Hosts

Correct Answer:D

QUESTION 91 A solutions architect needs to maintain a fleet of Amazon EC2 instances so that any impaired instances are replaced with new ones.Which AWS service should the solutions architect use?

A. Amazon Elastic Container Service (Amazon ECS)

B. Amazon GuardDuty

C. AWS Auto Scaling

D. AWS Shield

Correct Answer:C

QUESTION 92 An application deployed in the AWS Cloud has unpredictable usage patterns and is running workloads that cannot be interrupted.What is the MOST cost-effective Amazon EC2 pricing option for this application?

A. Dedicated Instances

B. Spot Instances

C. On-Demand Instances

D. Reserved Instances

Correct Answer:C

QUESTION 93 A company is migrating its on-premises datacenter to AWS and wants to provide NFS access to its Linux clients.Which AWS service should the company use?

A. Amazon Elastic File System (Amazon EFS)

B. Amazon S3

C. Amazon Elastic Block Store (Amazon EBS)

D. Amazon S3 Glacier

Correct Answer:A

QUESTION 94 A company must process a large amount of data from social media accounts by making graphical queries with high throughput.Which AWS service will help the company design a cloud architecture that will meet these requirements?

A. Amazon RDS

B. Amazon Neptune

C. Amazon DynamoDB

D. Amazon Redshift

Correct Answer:B

QUESTION 95 Which databases are available on Amazon RDS? (Choose two.)

A. Sybase

B. Microsoft SQL Server

C. PostgreSQL

D. IBM Db2

E. MongoDB

Correct Answer: BC

QUESTION 96 Under the AWS shared responsibility model, what is the customer's responsibility when using an AWS managed service?

A. Server-side encryption

B. Physical security of the data centres

C. Customer data

D. Operating system patching

Correct Answer:B

QUESTION 97 A company spends several months upgrading its on-premises infrastructure every few years. The company wants to reduce infrastructure procurement time by migrating to the AWS Cloud. What is the main benefit of migrating to the AWS Cloud for this use case?

A. AWS will help move the existing hardware to the AWS data centres.

B. The company will have increased agility with on-demand access to IT resources.

C. The company will experience less downtime with Multi-AZ deployments.

D. Enterprise support will be available to help with recurring application installation and setup.

Correct Answer:D

QUESTION 98 A company has a managed IAM policy that does not grant the necessary permissions for users to accomplish required tasks.How can this be resolved?

A. Create a custom IAM policy

B. Enable AWS Shield Advanced

C. Use a third-party web application firewall (WAF) managed rule from the AWS Marketplace

D. Use AWS Key Management Service (AWS KMS) to create a customer-managed key

Correct Answer:A

QUESTION 99 Which AWS service acts as a data extract, transform, and load (ETL) tool to make it easy to prepare data for analytics?

A. Amazon QuickSight

B. Amazon Athena

C. AWS Elastic Beanstalk

D. AWS Glue

Correct Answer:D

QUESTION 100 A company recently migrated to AWS and wants to enable intelligent threat protection and continuous monitoring across all of its AWS accounts.Which AWS service should the company use to achieve this goal?

A. Amazon Macie

B. AWS Shield

C. Amazon GuardDuty

D. Amazon Detective

Correct Answer: C

QUESTION 101 A user can optimise Amazon EC2 costs by performing which of the following tasks? (Choose two.)

A. Implementing Auto Scaling groups to add and remove instances based on demand.

B. Purchasing Reserved Instances.

C. Adding EC2 instances to a second AWS Region that is geographically close to the end users.

D. Creating a policy to restrict IAM users from creating new instances.

E. Setting a budget to limit spending on EC2 instances using AWS Budgets.

Correct Answer:DE

QUESTION 102 Which controls are shared under the AWS shared responsibility model? (Choose two.)

A. Awareness and training

B. Configuration management

C. Patching of Amazon RDS

D. Physical and environmental controls

E. Service and communications protection or security

Correct Answer: AB

QUESTION 103 A company has decided to migrate its production workloads to the AWS Cloud. Which actions can help reduce operational costs as part of the migration? (Choose two.)

A. Rehost all third-party licences on AWS.

B. Reduce over provisioned instances.

C. Use managed services.

D. Implement a highly available architecture.

E. Improve application security.

Correct Answer: AC

QUESTION 104 A company has multiple departments. Each department uses its own AWS account. Which AWS service or tool can the company use to combine the billing for all accounts into one bill?

A. Amazon Forecast

B. AWS Organizations

C. AWS Budgets

D. AWS Marketplace

Correct Answer:B

QUESTION 105 A large company has a workload that requires hardware to remain on premises. The company wants to use the same management and control plane services that it currently uses on AWS.Which AWS service should the company use to meet these requirements?

A. AWS Device Farm

B. AWS Fargate

C. AWS Ground Station

D. AWS Outposts

Correct Answer:D

QUESTION 106 Which of the following are advantages of using Amazon EC2 instances over traditional on-premises servers? (Choose two.)

A. Automation

B. Pay-as-you-go pricing

C. Access to physical hosts

D. Self-maintenance of servers

E. Agility

Correct Answer: BC

QUESTION 107 When comparing AWS Cloud with on-premises Total Cost of Ownership, which expenses must be considered? (Choose two.)

A. Operating system administration

B. Project management

C. Database schema development

D. Physical storage hardware

E. Network infrastructure of data centre

Correct Answer:DE

QUESTION 108 Which guideline is a well-architected design principle for building cloud applications?

A. Keep static data closer to compute resources.

B. Provision resources for peak capacity.

C. Use tightly coupled components.

D. Design for automated recovery from failure.

Correct Answer:D

QUESTION 109 Which AWS service or tool helps identify underutilised Amazon EC2 instances and idle Amazon RDS DB instances at no additional charge?

A. Cost Explorer

B. AWS Budgets

C. AWS Trusted Advisor

D. AWS Organizations

Correct Answer: C

QUESTION 110 Which of the following are customer responsibilities under the AWS shared responsibility model? (Choose two.)

A. Physical security of AWS facilities

B. Management of AWS Lambda infrastructure

C. Management of network throughput of each AWS Region

D. Configuration of security groups

E. Encryption of customer data on AWS

Correct Answer: DE

QUESTION 111 A user should contact the AWS Abuse team to report which situations? (Choose two.)

A. AWS resources are being used to host objectionable or illegal content.

B. A company’s resources are being used in a way that is inconsistent with corporate policy.

C. A DDoS attack is being made on an AWS resource.

D. A SQL injection attack is being made from an IP address that is not an AWS address.

E. A company is receiving HTTPS requests on a web server that is serving HTTP.

Correct Answer:AB

QUESTION 112 What should a user do to deploy an application in geographically separate locations?

A. Deploy the application in different placement groups.

B. Deploy the application to multiple AWS Regions.

C. Deploy the application to a VPC.

D. Deploy the application by using Amazon CloudFront.

Correct Answer:B

QUESTION 113 A company wants to rightsize its infrastructure to control costs. At which points should the company rightsize? (Choose two.)

A. Rightsize when AWS Support calls and explains that rightsizing is needed.

B. Rightsize when seasonal workloads are at their peak.

C. Rightsize before a migration occurs to the cloud.

D. Rightsize continuously after the cloud onboarding process.

E. Rightsize after purchasing all Reserved Instances.

Correct Answer:CD

QUESTION 114 Which tasks should a user perform if the user suspects that an AWS account has been compromised? (Choose two.)

A. Remove any multi-factor authentication (MFA) tokens.

B. Rotate and delete all AWS access keys.

C. Contact AWS Support.

D. Move resources to a different AWS Region.

E. Delete AWS CloudTrail resources.

Correct Answer: BC

QUESTION 115 A company needs a content delivery network that provides secure delivery of data, videos, applications, and APIs to users globally with low latency and high transfer speed. Which AWS service meets these requirements?

A. Elastic Load Balancing

B. Amazon S3

C. Amazon CloudFront

D. Amazon Elastic Transcoder

Correct Answer:C

QUESTION 116 Which AWS Cloud benefit is shown by an architecture’s ability to withstand failures with minimal downtime?

A. Agility

B. Elasticity

C. High availability

D. Scalability

Correct Answer:C

QUESTION 117 A company is moving its development and test environments to AWS to increase agility and reduce cost. Because these are not production workloads and the servers are not fully utilised, occasional unavailability is acceptable. What is the MOST cost-effective Amazon EC2 pricing model that will meet these requirements?

A. On-Demand Instances

B. Reserved Instances

C. Spot Instances

D. Dedicated Instances

Correct Answer:A

QUESTION 118 Which guidelines are key AWS architectural design principles? (Choose two.)

A. Design for fixed resources.

B. Build scalable architectures.

C. Use managed services when possible.

D. Use tightly coupled components.

E. Design for human interaction

Correct Answer: BC

QUESTION 119 What is the LEAST expensive AWS Support plan that provides 24-hour access to AWS customer service and AWS communities?

A. AWS Enterprise Support

B. AWS Business Support

C. AWS Basic Support

D. AWS Developer Support

Correct Answer:C

QUESTION 120 A company with AWS Enterprise Support has questions about its consolidated bill. Which AWS service, feature, or tool should the company use for assistance?

A. AWS Concierge Support

B. AWS Pricing Calculator

C. AWS Trusted Advisor

D. AWS Budgets

Correct Answer: A

QUESTION 121 A company needs to perform a one-time migration of 40TB of data from its on-premises storage servers to Amazon S3. The transfer must happen as quickly as possible while keeping costs to a minimum. The company has 100 Mbps internet connectivity. Which AWS service will meet these requirements?

A. AWS Direct Connect

B. AWS Snowball

C. AWS Storage Gateway

D. Amazon S3 Transfer Acceleration

Correct Answer:B

QUESTION 122 A company uses Amazon S3 buckets. One of the company’s departments enabled S3 Cross-Region Replication for those buckets to meet new requirements. The company’s bill for that month was larger than usual.Which AWS service or feature can the company use to confirm that the cost increase was caused by the data replication?

A. Cost Explorer

B. Consolidated billing

C. AWS Pricing Calculator

D. AWS Trusted Advisor

Correct Answer: A

techinsightslabs

AWS Certified Cloud Practitioner (CLF-C01)Exam G

Solverwp- WordPress Theme and Plugin