CLF-C01 : AWS Certified Cloud Practitioner : Part 07
-
How does AWS shorten the time to provision IT resources?
- It supplies an online IT ticketing platform for resource requests.
- It supports automatic code validation services.
- It provides the ability to programmatically provision existing resources.
- It automates the resource request process from a company’s IT vendor list.
-
What can AWS edge locations be used for? (Choose two.)
- Hosting applications
- Delivering content closer to users
- Running NoSQL database caching services
- Reducing traffic on the server by caching responses
- Sending notification messages to end users
Explanation:
CloudFront delivers your content through a worldwide network of data centers called edge locations. When a user requests content that you’re serving with CloudFront, the user is routed to the edge location that provides the lowest latency (time delay), so that content is delivered with the best possible performance. -
Which of the following can limit Amazon Simple Storage Service (Amazon S3) bucket access to specific users?
- A public and private key-pair
- Amazon Inspector
- AWS Identity and Access Management (IAM) policies
- Security Groups
Explanation:
To allow users to perform S3 actions on the bucket from the VPC endpoints or IP addresses, you must explicitly grant those user-level permissions. You can grant user-level permissions on either an AWS Identity and Access Management (IAM) policy or another statement in the bucket policy. -
A solution that is able to support growth in users, traffic, or data size with no drop in performance aligns with which cloud architecture principle?
- Think parallel
- Implement elasticity
- Decouple your components
- Design for failure
-
A company will be moving from an on-premises data center to the AWS Cloud.
What would be one financial difference after the move?
- Moving from variable operational expense (opex) to upfront capital expense (capex).
- Moving from upfront capital expense (capex) to variable capital expense (capex).
- Moving from upfront capital expense (capex) to variable operational expense (opex).
- Elimination of upfront capital expense (capex) and elimination of variable operational expense (opex).
-
How should a customer forecast the future costs for running a new web application?
- Amazon Aurora Backtrack
- Amazon CloudWatch Billing Alarms
- AWS Simple Monthly Calculator
- AWS Cost and Usage report
Explanation:
You can use Cost explorer which is part of Cost and Usage report to forecast future costs of running an application. -
Which is the MINIMUM AWS Support plan that provides technical support through phone calls?
- Enterprise
- Business
- Developer
- Basic
-
Which of the following tasks is the responsibility of AWS?
- Encrypting client-side data
- Configuring AWS Identity and Access Management (IAM) roles
- Securing the Amazon EC2 hypervisor
- Setting user password policies
Explanation:
In EC2, the AWS IaaS offering, everything from the hypervisor layer down is AWS’s responsibility. A customer’s poorly coded applications, misconfigured operating systems, or insecure firewall settings will not affect the hypervisor, it will only affect the customer’s virtual machines running on that hypervisor. -
One benefit of On-Demand Amazon Elastic Compute Cloud (Amazon EC2) pricing is:
- the ability to bid for a lower hourly cost.
- paying a daily rate regardless of time used.
- paying only for time used.
- pre-paying for instances and paying a lower hourly rate.
Explanation:
On-Demand Capacity Reservations are priced exactly the same as their equivalent (On-Demand) instance usage. If a Capacity Reservation is fully utilized, you only pay for instance usage and nothing towards the Capacity Reservation. If a Capacity Reservation is partially utilized, you pay for the instance usage and for the unused portion of the Capacity Reservation. -
An administrator needs to rapidly deploy a popular IT solution and start using it immediately.
Where can the administrator find assistance?
- AWS Well-Architected Framework documentation
- Amazon CloudFront
- AWS CodeCommit
- AWS Quick Start reference deployments
Explanation:
Quick Starts are built by AWS solutions architects and partners to help you deploy popular technologies on AWS, based on AWS best practices for security and high availability. These accelerators reduce hundreds of manual procedures into just a few steps, so you can build your production environment quickly and start using it immediately. -
Which of the following services is in the category of AWS serverless platform?
- Amazon EMR
- Elastic Load Balancing
- AWS Lambda
- AWS Mobile Hub
Explanation:
AWS provides a set of fully managed services that you can use to build and run serverless applications. Serverless applications don’t require provisioning, maintaining, and administering servers for backend components such as compute, databases, storage, stream processing, message queueing, and more. You also no longer need to worry about ensuring application fault tolerance and availability. Instead, AWS handles all of these capabilities for you. Serverless platform includes: AWS lambda, Amazon S3, DynamoDB, API gateway, Amazon SNS, AWS step functions, Amazon kinesis and developing tools and services. -
Which services are parts of the AWS serverless platform?
- Amazon EC2, Amazon S3, Amazon Athena
- Amazon Kinesis, Amazon SQS, Amazon EMR
- AWS Step Functions, Amazon DynamoDB, Amazon SNS
- Amazon Athena, Amazon Cognito, Amazon EC2
Explanation:
AWS provides a set of fully managed services that you can use to build and run serverless applications. Serverless applications don’t require provisioning, maintaining, and administering servers for backend components such as compute, databases, storage, stream processing, message queueing, and more. You also no longer need to worry about ensuring application fault tolerance and availability. Instead, AWS handles all of these capabilities for you. Serverless platform includes: AWS lambda, Amazon S3, DynamoDB, API gateway, Amazon SNS, AWS step functions, Amazon kinesis and developing tools and services. -
According to the AWS shared responsibility model, what is the sole responsibility of AWS?
- Application security
- Edge location management
- Patch management
- Client-side data
Explanation:
Client-side data, application security is the sole responsibility of the customer. Patch management is a shared responsibility. That leaves us with edge location management and since this out of the control of the customer, AWS is the one responsible for it. -
Which AWS IAM feature is used to associate a set of permissions with multiple users?
- Multi-factor authentication
- Groups
- Password policies
- Access keys
Explanation:
An IAM group is a collection of IAM users. You can use groups to specify permissions for a collection of users, which can make those permissions easier to manage for those users. For example, you could have a group called Admins and give that group the types of permissions that administrators typically need. -
Which of the following are benefits of the AWS Cloud? (Choose two.)
- Unlimited uptime
- Elasticity
- Agility
- Colocation
- Capital expenses
Explanation:
The most celebrated benefit of AWS cloud is elasticity since you can expand the services when you experience more traffic.
Agile developments in AWS Cloud through strategies are day by day becoming more established within the enterprises across the world. With so much improvement and call for optimization in the cloud, it is necessary that these strategies get established from the ground up within the organizations. It is highly important as already enterprises have a lot of bequest, politics and hierarchies which act as barriers in their businesses. -
Which of the following can a customer use to enable single sign-on (SSO) to the AWS Console?
- Amazon Connect
- AWS Directory Service
- Amazon Pinpoint
- Amazon Rekognition
Explanation:
Single sign-on only works when used on a computer that is joined to the AWS Directory Service directory. It cannot be used on computers that are not joined to the directory. -
What are the multiple, isolated locations within an AWS Region that are connected by low-latency networks called?
- AWS Direct Connects
- Amazon VPCs
- Edge locations
- Availability Zones
Explanation:
Each Region is completely independent. Each Availability Zone is isolated, but the Availability Zones in a Region are connected through low-latency links. A Local Zone is an AWS infrastructure deployment that places select services closer to your end users. A Local Zone is an extension of a Region that is in a different location from your Region. It provides a high-bandwidth backbone to the AWS infrastructure and is ideal for latency-sensitive applications, for example machine learning. -
Which of the following benefits does the AWS Compliance program provide to AWS customers? (Choose two.)
- It verifies that hosted workloads are automatically compliant with the controls of supported compliance frameworks.
- AWS is responsible for the maintenance of common compliance framework documentation.
- It assures customers that AWS is maintaining physical security and data protection.
- It ensures the use of compliance frameworks that are being used by other cloud providers.
- It will adopt new compliance frameworks as they become relevant to customer workloads.
-
Which of the following services provides on-demand access to AWS compliance reports?
- AWS IAM
- AWS Artifact
- Amazon GuardDuty
- AWS KMS
Explanation:
AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’ security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA). -
As part of the AWS shared responsibility model, which of the following operational controls do users fully inherit from AWS?
- Security management of data center
- Patch management
- Configuration management
- User and access management
Subscribe
0 Comments
Newest