Practice Free CLF-C02 Exam Online Questions
Question #151
Which database engines does Amazon Aurora support? (Select TWO.)
- A . Oracle
- B . Microsoft SQL Server
- C . MySQL
- D . PostgreSQL
- E . MongoDB
Correct Answer: C,D
C,D
Explanation:
Amazon Aurora is a relational database service that is compatible with MySQL and PostgreSQL engines. It delivers up to five times the performance of MySQL and up to three times the performance of PostgreSQL. It also provides high availability, scalability, security, and durability1
C,D
Explanation:
Amazon Aurora is a relational database service that is compatible with MySQL and PostgreSQL engines. It delivers up to five times the performance of MySQL and up to three times the performance of PostgreSQL. It also provides high availability, scalability, security, and durability1
Question #152
Which credential allows programmatic access to AWS resources for use from the AWS CLI or the AWS API?
- A . User name and password
- B . Access keys
- C . SSH public keys
- D . AWS Key Management Service (AWS KMS) keys
Correct Answer: B
B
Explanation:
Access keys are long-term credentials that consist of an access key ID and a secret access key. You use access keys to sign programmatic requests that you make to AWS using the AWS CLI or AWS API1. User name and password are credentials that you use to sign in to the AWS Management Console or the AWS Management Console mobile app2. SSH public keys are credentials that you use to authenticate with EC2 instances that are launched from certain Linux AMIs3. AWS Key Management Service (AWS KMS) keys are customer master keys (CMKs) that you use to encrypt and decrypt your data and to control access to your data across AWS services and in your applications4.
B
Explanation:
Access keys are long-term credentials that consist of an access key ID and a secret access key. You use access keys to sign programmatic requests that you make to AWS using the AWS CLI or AWS API1. User name and password are credentials that you use to sign in to the AWS Management Console or the AWS Management Console mobile app2. SSH public keys are credentials that you use to authenticate with EC2 instances that are launched from certain Linux AMIs3. AWS Key Management Service (AWS KMS) keys are customer master keys (CMKs) that you use to encrypt and decrypt your data and to control access to your data across AWS services and in your applications4.
Question #153
A company that has multiple business units wants to centrally manage and govern its AWS Cloud environments. The company wants to automate the creation of AWS accounts, apply service control policies (SCPs), and simplify billing processes.
Which AWS service or tool should the company use to meet these requirements?
- A . AWS Organizations
- B . Cost Explorer
- C . AWS Budgets
- D . AWS Trusted Advisor
Correct Answer: A
A
Explanation:
AWS Organizations is an AWS service that enables you to centrally manage and govern your AWS Cloud environments across multiple business units. AWS Organizations allows you tocreate an organization that consists of AWS accounts that you create or invite to join. You can group your accounts into organizational units (OUs) and apply service control policies (SCPs) to them. SCPs are a type of policy that specify the maximum permissions for the accounts in your organization, and can help you enforce compliance and security requirements. AWS Organizations also simplifies billing processes by enabling you to consolidate and pay for all member accounts with a single payment method. You can also use AWS Organizations to automate the creation of AWS accounts by using APIs or AWS CloudFormation templates.
Reference: What is AWS Organizations?, Policy-Based Management – AWS Organizations
A
Explanation:
AWS Organizations is an AWS service that enables you to centrally manage and govern your AWS Cloud environments across multiple business units. AWS Organizations allows you tocreate an organization that consists of AWS accounts that you create or invite to join. You can group your accounts into organizational units (OUs) and apply service control policies (SCPs) to them. SCPs are a type of policy that specify the maximum permissions for the accounts in your organization, and can help you enforce compliance and security requirements. AWS Organizations also simplifies billing processes by enabling you to consolidate and pay for all member accounts with a single payment method. You can also use AWS Organizations to automate the creation of AWS accounts by using APIs or AWS CloudFormation templates.
Reference: What is AWS Organizations?, Policy-Based Management – AWS Organizations
Question #154
Which advantage of cloud computing allows users to scale resources up and down based on the amount of load that an application supports?
- A . Go global in minutes
- B . Stop guessing capacity
- C . Benefit from massive economies of scale
- D . Trade fixed expense for variable expense
Correct Answer: B
B
Explanation:
The ability to scale resources up and down based on application load is tied to the advantage of "Stop guessing capacity." This feature allows users to scale resources automatically to match the demand, thereby avoiding over-provisioning or under-provisioning of resources. "Go global in minutes," "Benefit from massive economies of scale," and "Trade fixed expense for variable expense" are other advantages of cloud computing, but they do not specifically address scaling resources up and down based on load.
B
Explanation:
The ability to scale resources up and down based on application load is tied to the advantage of "Stop guessing capacity." This feature allows users to scale resources automatically to match the demand, thereby avoiding over-provisioning or under-provisioning of resources. "Go global in minutes," "Benefit from massive economies of scale," and "Trade fixed expense for variable expense" are other advantages of cloud computing, but they do not specifically address scaling resources up and down based on load.
Question #155
A company plans to perform a one-time migration of a large dataset with millions of files from its on-premises data center to the AWS Cloud.
Which AWS service should the company use for the migration?
- A . AWS Database Migration Service (AWS DMS)
- B . AWS DataSync
- C . AWS Migration Hub
- D . AWS Application Migration Service
Correct Answer: B
B
Explanation:
AWS DataSync is designed for large-scale data transfers, especially involving large datasets with millions of files from on-premises to AWS. It provides fast and efficient transfer capabilities, and supports a one-time migration. AWS DMS is specific to databases, while Migration Hub is for tracking migrations, and Application Migration Service is for continuous replication rather than one-time file migrations.
B
Explanation:
AWS DataSync is designed for large-scale data transfers, especially involving large datasets with millions of files from on-premises to AWS. It provides fast and efficient transfer capabilities, and supports a one-time migration. AWS DMS is specific to databases, while Migration Hub is for tracking migrations, and Application Migration Service is for continuous replication rather than one-time file migrations.
Question #156
A company wants to set up a high-speed connection between its data center and its applications that run on AWS. The company must not transfer data over the internet.
Which action should the company take to meet these requirements?
- A . Transfer data to AWS by using AWS Snowball.
- B . Transfer data to AWS by using AWS Storage Gateway.
- C . Set up a VPN connection between the data center and an AWS Region.
- D . Set up an AWS Direct Connect connection between the company network and AWS.
Correct Answer: D
D
Explanation:
AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated network connection from a customer’s premises to AWS. AWS Direct Connect does not involve the public internet, and therefore can reduce network costs, increase bandwidth throughput, and provide a more consistent network experience than internet-based connections. AWS Snowball is a petabyte-scale data transport service that uses secure devices to transfer large amounts of data into and out of the AWS Cloud. AWS Storage Gateway is a hybrid cloud storage service that gives customers on-premises access to virtually unlimited cloud storage. A VPN connection enables customers to establish a secure and private connection between their network and AWS.
D
Explanation:
AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated network connection from a customer’s premises to AWS. AWS Direct Connect does not involve the public internet, and therefore can reduce network costs, increase bandwidth throughput, and provide a more consistent network experience than internet-based connections. AWS Snowball is a petabyte-scale data transport service that uses secure devices to transfer large amounts of data into and out of the AWS Cloud. AWS Storage Gateway is a hybrid cloud storage service that gives customers on-premises access to virtually unlimited cloud storage. A VPN connection enables customers to establish a secure and private connection between their network and AWS.
Question #157
A company wants to establish a private network connection between AWS and its corporate network.
Which AWS service or feature will meet this requirement?
- A . Amazon Connect
- B . Amazon Route 53
- C . AWS Direct Connect
- D . VPC peering
Correct Answer: C
C
Explanation:
AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated network connection from your premises to AWS. Using AWS Direct Connect, you can establish private connectivity between AWS and your datacenter, office, or colocation environment, which in many cases can reduce your network costs, increase bandwidth throughput, and provide a more consistent network experience than internet-based connections12.
Reference: 1: Dedicated Network Connection – AWS Direct Connect – AWS, 2: What is AWS Direct Connect? – AWS Direct Connect
C
Explanation:
AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated network connection from your premises to AWS. Using AWS Direct Connect, you can establish private connectivity between AWS and your datacenter, office, or colocation environment, which in many cases can reduce your network costs, increase bandwidth throughput, and provide a more consistent network experience than internet-based connections12.
Reference: 1: Dedicated Network Connection – AWS Direct Connect – AWS, 2: What is AWS Direct Connect? – AWS Direct Connect
Question #158
Which of the following is an AWS Well-Architected Framework design principle for operational excellence in the AWS Cloud?
- A . Go global in minutes
- B . Make frequent, small, reversible changes
- C . Implement a strong foundation of identity and access management
- D . Stop spending money on hardware infrastructure for data center operations
Correct Answer: B
B
Explanation:
Making frequent, small, reversible changes is one of the design principles for operational excellence in the AWS Cloud, as defined by the AWS Well-Architected Framework. This principle means that you should design your workloads to allow for rapid and safe changes, such as deploying updates, rolling back failures, and experimenting with new features. By making small and reversible changes, you can reduce the risk of errors, minimize the impact of failures, and increase the speed of
recovery2.
Reference: 2: AWS Documentation – AWS Well-Architected Framework – Operational Excellence Pillar
B
Explanation:
Making frequent, small, reversible changes is one of the design principles for operational excellence in the AWS Cloud, as defined by the AWS Well-Architected Framework. This principle means that you should design your workloads to allow for rapid and safe changes, such as deploying updates, rolling back failures, and experimenting with new features. By making small and reversible changes, you can reduce the risk of errors, minimize the impact of failures, and increase the speed of
recovery2.
Reference: 2: AWS Documentation – AWS Well-Architected Framework – Operational Excellence Pillar
Question #159
Which AWS Support plan provides the full set of AWS Trusted Advisor checks at the LOWEST cost?
- A . AWS Developer Support
- B . AWS Business Support
- C . AWS Enterprise On-Ramp Support
- D . AWS Enterprise Support
Correct Answer: B
B
Explanation:
The AWS Support plan that provides the full set of AWS Trusted Advisor checks at the lowest cost is theAWS Business Supportplan. The AWS Business Support plan includes access to the complete set of Trusted Advisor checks, which cover areas such as cost optimization, security, performance, fault tolerance, and service limits. This plan is specifically designed to support production workloads and includes 24/7 access to cloud support engineers, response times for impaired systems, and other enhanced technical support features.
AWS Developer Support, while more affordable, only provides limited Trusted Advisor checks, specifically around Service Limits and basic Security checks. Full access to all Trusted Advisor checks is only available with Business Support and higher-tier plans, such as Enterprise On-Ramp and Enterprise Support
B
Explanation:
The AWS Support plan that provides the full set of AWS Trusted Advisor checks at the lowest cost is theAWS Business Supportplan. The AWS Business Support plan includes access to the complete set of Trusted Advisor checks, which cover areas such as cost optimization, security, performance, fault tolerance, and service limits. This plan is specifically designed to support production workloads and includes 24/7 access to cloud support engineers, response times for impaired systems, and other enhanced technical support features.
AWS Developer Support, while more affordable, only provides limited Trusted Advisor checks, specifically around Service Limits and basic Security checks. Full access to all Trusted Advisor checks is only available with Business Support and higher-tier plans, such as Enterprise On-Ramp and Enterprise Support
Question #160
A company wants to migrate its Microsoft SQL Server database management system from on premises to the AWS Cloud.
Which AWS service should the company use to reduce management overhead for this environment?
- A . Amazon Elastic Container Service (Amazon ECS)
- B . Amazon SageMaker
- C . Amazon RDS
- D . Amazon Athena
Correct Answer: C
C
Explanation:
Amazon Relational Database Service (Amazon RDS) is the AWS service that the company should use to migrate its Microsoft SQL Server database management system from on premises to the AWS Cloud. Amazon RDS is a fully managed service that provides a scalable, secure, and high-performance relational database platform. Amazon RDS supports several database engines, including Microsoft SQL Server. Amazon RDS reduces the management overhead for the database environment by taking care of tasks such as provisioning, patching, backup, recovery, andmonitoring. For more information, see What is Amazon Relational Database Service (Amazon RDS)? and Amazon RDS for SQL Server.
C
Explanation:
Amazon Relational Database Service (Amazon RDS) is the AWS service that the company should use to migrate its Microsoft SQL Server database management system from on premises to the AWS Cloud. Amazon RDS is a fully managed service that provides a scalable, secure, and high-performance relational database platform. Amazon RDS supports several database engines, including Microsoft SQL Server. Amazon RDS reduces the management overhead for the database environment by taking care of tasks such as provisioning, patching, backup, recovery, andmonitoring. For more information, see What is Amazon Relational Database Service (Amazon RDS)? and Amazon RDS for SQL Server.