The latest Amazon Web Services CLF-C01 AWS Certified Cloud Practitioner certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the Amazon Web Services CLF-C01 AWS Certified Cloud Practitioner exam and earn Amazon Web Services CLF-C01 AWS Certified Cloud Practitioner certification.
Exam Question 361
If a customer needs to audit the change management of AWS resources, which of the following AWS services should the customer use?
A. AWS Config
B. AWS Trusted Advisor
C. Amazon CloudWatch
D. Amazon Inspector
Correct Answer:
A. AWS Config
Answer Description:
AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations. With Config, you can review changes in configurations and relationships between AWS resources, dive into detailed resource configuration histories, and determine your overall compliance against the configurations specified in your internal guidelines. This enables you to simplify compliance auditing, security analysis, change management, and operational troubleshooting.
Exam Question 362
Which is the MINIMUM AWS Support plan that allows for one-hour target response time for support cases?
A. Enterprise
B. Business
C. Developer
D. Basic
Correct Answer:
B. Business
Exam Question 363
Which of the following AWS features enables a user to launch a pre-configured Amazon Elastic Compute Cloud (Amazon EC2) instance?
A. Amazon Elastic Block Store (Amazon EBS)
B. Amazon Machine Image
C. Amazon EC2 Systems Manager
D. Amazon AppStream 2.0
Correct Answer:
B. Amazon Machine Image
Answer Description:
To use Amazon EC2, you simply:
Select a pre-configured, templated Amazon Machine Image (AMI) to get up and running immediately. Or create an AMI containing your applications, libraries, data, and associated configuration settings.
Configure security and network access on your Amazon EC2 instance.
Choose which instance type(s) you want, then start, terminate, and monitor as many instances of your AMI as needed, using the web service APIs or the variety of management tools provided.
Determine whether you want to run in multiple locations, utilize static IP endpoints, or attach persistent block storage to your instances.
Pay only for the resources that you actually consume, like instance-hours or data transfer.
Exam Question 364
Under the shared responsibility model, which of the following tasks are the responsibility of the AWS customer? (Choose two.)
A. Ensuring that application data is encrypted at rest
B. Ensuring that AWS NTP servers are set to the correct time
C. Ensuring that users have received security training in the use of AWS services
D. Ensuring that access to data centers is restricted
E. Ensuring that hardware is disposed of properly
Correct Answer:
A. Ensuring that application data is encrypted at rest
C. Ensuring that users have received security training in the use of AWS services
Exam Question 365
Which AWS service can be used to manually launch instances based on resource requirements?
A. Amazon EBS
B. Amazon S3
C. Amazon EC2
D. Amazon ECS
Correct Answer:
C. Amazon EC2
Exam Question 366
Which of the following is a component of the shared responsibility model managed entirely by AWS?
A. Patching operating system software
B. Encrypting data
C. Enforcing multi-factor authentication
D. Auditing physical data center assets
Correct Answer:
D. Auditing physical data center assets
Answer Description:
Of course, Amazon is responsible for auditing physical data center assets and resources since it is the property of Amazon Inc. Customers have no access to physical sites, hence they are not responsible for maintaining physical data center assets.
Exam Question 367
Which of the following features can be configured through the Amazon Virtual Private Cloud (Amazon VPC) Dashboard? (Choose two.)
A. Amazon CloudFront distributions
B. Amazon Route 53
C. Security Groups
D. Subnets
E. Elastic Load Balancing
Correct Answer:
C. Security Groups
D. Subnets
Answer Description:
Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define. You have complete control over your virtual networking environment, including selection of your own IP address range, creation of subnets, and configuration of route tables and network gateways. You can use both IPv4 and IPv6 in your VPC for secure and easy access to resources and applications.
You can easily customize the network configuration for your Amazon VPC. For example, you can create a public-facing subnet for your web servers that has access to the Internet, and place your backend systems such as databases or application servers in a private-facing subnet with no Internet access. You can leverage multiple layers of security, including security groups and network access control lists, to help control access to Amazon EC2 instances in each subnet.
Exam Question 368
If each department within a company has its own AWS account, what is one way to enable consolidated billing?
A. Use AWS Budgets on each account to pay only to budget.
B. Contact AWS Support for a monthly bill.
C. Create an AWS Organization from the payer account and invite the other accounts to join.
D. Put all invoices into one Amazon Simple Storage Service (Amazon S3) bucket, load data into Amazon Redshift, and then run a billing report.
Correct Answer:
C. Create an AWS Organization from the payer account and invite the other accounts to join.
Exam Question 369
In which scenario should Amazon EC2 Spot Instances be used?
A. A company wants to move its main website to AWS from an on-premises web server.
B. A company has a number of application services whose Service Level Agreement (SLA) requires 99.999% uptime.
C. A company’s heavily used legacy database is currently running on-premises.
D. A company has a number of infrequent, interruptible jobs that are currently using On-Demand Instances.
Correct Answer:
D. A company has a number of infrequent, interruptible jobs that are currently using On-Demand Instances.
Exam Question 370
Which AWS feature should a customer leverage to achieve high availability of an application?
A. AWS Direct Connect
B. Availability Zones
C. Data centers
D. Amazon Virtual Private Cloud (Amazon VPC)
Correct Answer:
B. Availability Zones
Answer Description:
This is to achieve High Availability for any web application (in this case SwiftCode) deployed in AWS. The following features will be present:
- High availability across multiple instances/multiple availability zones.
- Auto Scaling of instances (scale up and scale down) based on number of requests coming in
- Additional Security to the instances/database that are in production
- No impact to end users during newer version of code deployment
- No Impact during patching the instances