Practice Free CLF-C02 Exam Online Questions
Question #111
A company is building a mobile app to provide shopping recommendations to its customers. The company wants to use a graph database as part of the shopping recommendation engine.
Which AWS database service should the company choose?
- A . Amazon DynamoDB
- B . Amazon Aurora
- C . Amazon Neptune
- D . Amazon DocumentDB (with MongoDB compatibility)
Correct Answer: C
C
Explanation:
Amazon Neptune is a service that provides a fully managed graph database that supports property graphs and RDF graphs. It can be used to build applications that work with highly connected datasets, such as shopping recommendations, social networks, fraud detection, and knowledge graphs2. Amazon DynamoDB is a service that provides a fully managed NoSQL database that delivers fast and consistent performance at any scale. Amazon Aurora is a service that provides a fully managed relational database that is compatible with MySQL and PostgreSQL. Amazon DocumentDB (with MongoDB compatibility) is a service that provides a fully managed document database that is compatible with MongoDB.
C
Explanation:
Amazon Neptune is a service that provides a fully managed graph database that supports property graphs and RDF graphs. It can be used to build applications that work with highly connected datasets, such as shopping recommendations, social networks, fraud detection, and knowledge graphs2. Amazon DynamoDB is a service that provides a fully managed NoSQL database that delivers fast and consistent performance at any scale. Amazon Aurora is a service that provides a fully managed relational database that is compatible with MySQL and PostgreSQL. Amazon DocumentDB (with MongoDB compatibility) is a service that provides a fully managed document database that is compatible with MongoDB.
Question #112
A company has a centralized group of users with large file storage requirements that have exceeded the space available on premises. The company wants to extend its file storage capabilities for this group while retaining the performance benefit of sharing content locally.
What is the MOST operationally efficient AWS solution for this scenario?
- A . Create an Amazon S3 bucket for each user. Mount each bucket by using an S3 file system mounting utility.
- B . Configure and deploy an AWS Storage Gateway file gateway. Connect each user’s workstation to the file gateway.
- C . Move each user’s working environment to Amazon Workspaces. Set up an Amazon WorkDocs account for each user.
- D . Deploy an Amazon EC2 instance and attach an Amazon Elastic Block Store (Amazon EBS)
Provisioned IOPS volume. Share the EBS volume directly with the users.
Correct Answer: B
B
Explanation:
AWS Storage Gateway is a hybrid cloud storage service that allows you to extend your on-premises file storage capabilities to the AWS Cloud. AWS Storage Gateway file gateway enables you to store and access your files in Amazon S3 using industry-standard file protocols such as NFS and SMB. File gateway caches frequently accessed files locally, providing low-latency access to your data. File gateway also optimizes the transfer of data between your on-premises environment and AWS, minimizing the amount of bandwidth consumed. By using file gateway, you can retain the performance benefit of sharing content locally while leveraging the scalability, durability, and cost-effectiveness of Amazon S3.
Reference: AWS Storage Gateway, File Gateway
B
Explanation:
AWS Storage Gateway is a hybrid cloud storage service that allows you to extend your on-premises file storage capabilities to the AWS Cloud. AWS Storage Gateway file gateway enables you to store and access your files in Amazon S3 using industry-standard file protocols such as NFS and SMB. File gateway caches frequently accessed files locally, providing low-latency access to your data. File gateway also optimizes the transfer of data between your on-premises environment and AWS, minimizing the amount of bandwidth consumed. By using file gateway, you can retain the performance benefit of sharing content locally while leveraging the scalability, durability, and cost-effectiveness of Amazon S3.
Reference: AWS Storage Gateway, File Gateway
Question #113
Which options are AWS Cloud Adoption Framework (AWS CAF) people perspective capabilities? (Select TWO.)
- A . Organizational alignment
- B . Portfolio management
- C . Organization design
- D . Risk management
- E . Modern application development
Correct Answer: A,C
A,C
Explanation:
The AWS Cloud Adoption Framework (AWS CAF) people perspective capabilities are the organizational skills and processes that enable effective cloud adoption.According to the AWS CAF people perspective whitepaper1, there are seven capabilities in this perspective, two of which are: Organizational alignment: This capability helps you align your organizational structure, roles, and responsibilities to support your cloud transformation goals and objectives.It involves assessing your current and desired state ofalignment, identifying gaps and misalignments, and designing and implementing changes to optimize your cloud performance1.
Organization design: This capability helps you design and evolve your organization to enable agility, innovation, and collaboration in the cloud.It involvesdefining your cloud operating model, identifying the skills and competencies needed for cloud roles, and creating career paths and development plans for your cloud workforce1.
The other options are not capabilities in the AWS CAF people perspective.Portfolio management, risk management, and modern application development are capabilities in the AWS CAF business perspective, governance perspective, and platform perspective respectively2.
1: AWS Cloud Adoption Framework: People Perspective – AWS Cloud Adoption Framework: People Perspective
2: AWS Cloud Adoption Framework – AWS Cloud Adoption Framework
A,C
Explanation:
The AWS Cloud Adoption Framework (AWS CAF) people perspective capabilities are the organizational skills and processes that enable effective cloud adoption.According to the AWS CAF people perspective whitepaper1, there are seven capabilities in this perspective, two of which are: Organizational alignment: This capability helps you align your organizational structure, roles, and responsibilities to support your cloud transformation goals and objectives.It involves assessing your current and desired state ofalignment, identifying gaps and misalignments, and designing and implementing changes to optimize your cloud performance1.
Organization design: This capability helps you design and evolve your organization to enable agility, innovation, and collaboration in the cloud.It involvesdefining your cloud operating model, identifying the skills and competencies needed for cloud roles, and creating career paths and development plans for your cloud workforce1.
The other options are not capabilities in the AWS CAF people perspective.Portfolio management, risk management, and modern application development are capabilities in the AWS CAF business perspective, governance perspective, and platform perspective respectively2.
1: AWS Cloud Adoption Framework: People Perspective – AWS Cloud Adoption Framework: People Perspective
2: AWS Cloud Adoption Framework – AWS Cloud Adoption Framework
Question #114
Which AWS service or resource can provide discounts on some AWS service costs in exchange for a spending commitment?
- A . Amazon Detective
- B . AWS Pricing
- C . Savings Plans
- D . Basic Support
Correct Answer: D
Question #115
Which of the following is a benefit of using an AWS managed service?
- A . Reduced operational overhead for a company’s IT staff
- B . Increased fixed costs that can be predicted by a finance team
- C . Removal of the need to have a backup strategy
- D . Removal of the need to follow compliance standards
Correct Answer: A
A
Explanation:
This is a benefit of using an AWS managed service, such as Amazon S3, Amazon DynamoDB, or AWS Lambda. AWS managed services are fully managed by AWS, which means that AWS handles the provisioning, scaling, patching, backup, and recovery of the underlying infrastructure and software. This reduces the operational overhead for the company’s IT staff, who can focus on their core business logic and innovation. You can learn more about the AWS managed services from this webpage or this digital course.
A
Explanation:
This is a benefit of using an AWS managed service, such as Amazon S3, Amazon DynamoDB, or AWS Lambda. AWS managed services are fully managed by AWS, which means that AWS handles the provisioning, scaling, patching, backup, and recovery of the underlying infrastructure and software. This reduces the operational overhead for the company’s IT staff, who can focus on their core business logic and innovation. You can learn more about the AWS managed services from this webpage or this digital course.
Question #116
A company deployed an Amazon EC2 instance last week. A developer realizes that the EC2 instance is no longer running. The developer reviews a list of provisioned EC2 instances, and the EC2 instance is no longer on the list.
What can the developer do to generate a recent history of the EC2 instance?
- A . Run Cost Explorer to identify the start time and end time of the EC2 instance.
- B . Use Amazon Inspector to find out when the EC2 instance was stopped.
- C . Perform a search in AWS CloudTrail to find all EC2 instance-related events.
- D . Use AWS Secrets Manager to display hidden termination logs of the EC2 instance.
Correct Answer: C
C
Explanation:
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of a customer’s AWS account. AWS CloudTrail allows customers to track user activity and API usage across their AWS infrastructure. AWS CloudTrail can also provide a history of EC2 instance events, such as launch, stop, terminate, and reboot. Cost Explorer is a tool that enables customers to visualize, understand, and manage their AWS costs and usage over time. Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. AWS Secrets Manager helps customers protect secrets needed to access their applications, services, and IT resources.
C
Explanation:
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of a customer’s AWS account. AWS CloudTrail allows customers to track user activity and API usage across their AWS infrastructure. AWS CloudTrail can also provide a history of EC2 instance events, such as launch, stop, terminate, and reboot. Cost Explorer is a tool that enables customers to visualize, understand, and manage their AWS costs and usage over time. Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. AWS Secrets Manager helps customers protect secrets needed to access their applications, services, and IT resources.
Question #117
A user wants to review all Amazon S3 buckets with ACLs and S3 bucket policies in the S3 console.
Which AWS service or resource will meet this requirement?
- A . S3 Multi-Region Access Points
- B . S3 Storage Lens
- C . AWS IAM Identity Center
- D . Access Analyzer for S3
Correct Answer: D
Question #118
A company has a workload that will run continuously for 1 year. The workload cannot tolerate service interruptions.
Which Amazon EC2 purchasing option will be MOST cost-effective?
- A . All Upfront Reserved Instances
- B . Partial Upfront Reserved Instances
- C . Dedicated Instances
- D . On-Demand Instances
Correct Answer: A
A
Explanation:
All Upfront Reserved Instances offer the most cost-effective solution for a workload that will run continuously for one year without interruption. By paying upfront, the user receives the maximum discount over the On-Demand pricing model. Partial Upfront Reserved Instances and Dedicated Instances are more expensive than All Upfront Reserved Instances. On-Demand Instances are not cost-effective for continuous long-term workloads due to their higher hourly rates.
A
Explanation:
All Upfront Reserved Instances offer the most cost-effective solution for a workload that will run continuously for one year without interruption. By paying upfront, the user receives the maximum discount over the On-Demand pricing model. Partial Upfront Reserved Instances and Dedicated Instances are more expensive than All Upfront Reserved Instances. On-Demand Instances are not cost-effective for continuous long-term workloads due to their higher hourly rates.
Question #119
A company is building an application in the AWS Cloud. The company wants to use temporary credentials for the application to access other AWS resources.
Which AWS service will meet these requirements?
- A . AWS Key Management Service (Aws KMS)
- B . AWS CloudHSM
- C . Amazon Cognito
- D . AWS Security Token Service (Aws STS)
Correct Answer: D
D
Explanation:
AWS Security Token Service (AWS STS) is a service that provides temporary security credentials to users or applications that need to access AWS resources. The temporarycredentials have a limited lifetime and can be configured to last from a few minutes to several hours. The credentials are not stored with the user or application, but are generated dynamically and provided on request. The credentials work almost identically to long-term access key credentials, but have the advantage of not requiring distribution, rotation, or revocation1.
AWS Key Management Service (AWS KMS) is a service that provides encryption and decryption services for data and keys. It does not provide temporary security credentials2.
AWS CloudHSM is a service that provides hardware security modules (HSMs) for cryptographic operations and key management. It does not provide temporary security credentials3.
Amazon Cognito is a service that provides user authentication and authorization for web and mobile applications. It can also provide temporary security credentials for authenticated users, but not for applications4.
D
Explanation:
AWS Security Token Service (AWS STS) is a service that provides temporary security credentials to users or applications that need to access AWS resources. The temporarycredentials have a limited lifetime and can be configured to last from a few minutes to several hours. The credentials are not stored with the user or application, but are generated dynamically and provided on request. The credentials work almost identically to long-term access key credentials, but have the advantage of not requiring distribution, rotation, or revocation1.
AWS Key Management Service (AWS KMS) is a service that provides encryption and decryption services for data and keys. It does not provide temporary security credentials2.
AWS CloudHSM is a service that provides hardware security modules (HSMs) for cryptographic operations and key management. It does not provide temporary security credentials3.
Amazon Cognito is a service that provides user authentication and authorization for web and mobile applications. It can also provide temporary security credentials for authenticated users, but not for applications4.
Question #120
Which pillar of the AWS Well-Architected Framework includes a design principle about measuring the overall efficiency of workloads in terms of business value?
- A . Operational excellence
- B . Security
- C . Reliability
- D . Cost optimization
Correct Answer: A
A
Explanation:
The operational excellence pillar of the AWS Well-Architected Framework includes a design principle about measuring the overall efficiency of workloads in terms of business value. This principle states that you should monitor and measure key performance indicators (KPIs) and set targets and thresholds that align with your business goals. You should also use feedback loops to continuously improve your processes and procedures1.
A
Explanation:
The operational excellence pillar of the AWS Well-Architected Framework includes a design principle about measuring the overall efficiency of workloads in terms of business value. This principle states that you should monitor and measure key performance indicators (KPIs) and set targets and thresholds that align with your business goals. You should also use feedback loops to continuously improve your processes and procedures1.