Practice Free CLF-C02 Exam Online Questions
Question #241
At what support level do users receive access to a support concierge?
- A . Basic Support
- B . Developer Support
- C . Business Support
- D . Enterprise Support
Correct Answer: D
D
Explanation:
Users receive access to a support concierge at the Enterprise Support level. A support concierge is a team of AWS billing and account experts that specialize in working with enterprise accounts. They can help users with billing and account inquiries, cost optimization, FinOps support, cost analysis, and prioritized answers to billing questions. The support concierge is included as part of the Enterprise Support plan, which also provides access to a Technical Account Manager (TAM), Infrastructure Event Management, AWS Trusted Advisor, and 24/7 technical support.
Reference: AWS Support Plan Comparison, AWS Enterprise Support Plan, AWS Support Concierge
D
Explanation:
Users receive access to a support concierge at the Enterprise Support level. A support concierge is a team of AWS billing and account experts that specialize in working with enterprise accounts. They can help users with billing and account inquiries, cost optimization, FinOps support, cost analysis, and prioritized answers to billing questions. The support concierge is included as part of the Enterprise Support plan, which also provides access to a Technical Account Manager (TAM), Infrastructure Event Management, AWS Trusted Advisor, and 24/7 technical support.
Reference: AWS Support Plan Comparison, AWS Enterprise Support Plan, AWS Support Concierge
Question #242
A company has an application that runs periodically in an on-premises environment. The application runs for a few hours most days, but runs for 8 hours a day for a week at the end of each month.
Which AWS service or feature should be used to host the application in the AWS Cloud?
- A . Amazon EC2 Standard Reserved Instances
- B . Amazon EC2 On-Demand Instances
- C . AWS Wavelength
- D . Application Load Balancer
Correct Answer: B
B
Explanation:
Amazon EC2 On-Demand Instances are instances that let you pay for compute capacity by the hour or second (minimum of 60 seconds) with no long-term commitments. This frees you from the costs and complexities of planning, purchasing, and maintaining hardware and transforms what are commonly large fixed costs into much smaller variable costs. On-Demand Instances are suitable for applications with short-term, irregular, or unpredictable workloads that cannot be interrupted, such as periodic applications that run for a few hours most days, but run for 8 hours a day for a week at the end of each month2. Amazon EC2 Standard Reserved Instances are instances that provide you with a significant discount (up to 75%) compared to On-Demand Instance pricing. In exchange, you select a term and make an upfront payment to reserve a certain amount of compute capacity for that term. Reserved Instances are suitable for applications with steady state or predictable usage that require reserved capacity3. AWS Wavelength is a service that enables developers to build applications that deliver ultra-low latency to mobile devices and users by deploying AWS compute and storage at the edge of the 5G network. Wavelength is suitable for applications that requiresingle-digit millisecond latencies, such as game and live video streaming, machine learning inference at the edge, and augmented and virtual reality (AR/VR). Application Load Balancer is a service that operates at the request level (layer 7) and distributes incoming application traffic across multiple targets, such as EC2 instances, containers, Lambda functions, and IP addresses. Application Load Balancer is suitable for applications that need advanced routing capabilities, such as microservices or container-based architectures.
B
Explanation:
Amazon EC2 On-Demand Instances are instances that let you pay for compute capacity by the hour or second (minimum of 60 seconds) with no long-term commitments. This frees you from the costs and complexities of planning, purchasing, and maintaining hardware and transforms what are commonly large fixed costs into much smaller variable costs. On-Demand Instances are suitable for applications with short-term, irregular, or unpredictable workloads that cannot be interrupted, such as periodic applications that run for a few hours most days, but run for 8 hours a day for a week at the end of each month2. Amazon EC2 Standard Reserved Instances are instances that provide you with a significant discount (up to 75%) compared to On-Demand Instance pricing. In exchange, you select a term and make an upfront payment to reserve a certain amount of compute capacity for that term. Reserved Instances are suitable for applications with steady state or predictable usage that require reserved capacity3. AWS Wavelength is a service that enables developers to build applications that deliver ultra-low latency to mobile devices and users by deploying AWS compute and storage at the edge of the 5G network. Wavelength is suitable for applications that requiresingle-digit millisecond latencies, such as game and live video streaming, machine learning inference at the edge, and augmented and virtual reality (AR/VR). Application Load Balancer is a service that operates at the request level (layer 7) and distributes incoming application traffic across multiple targets, such as EC2 instances, containers, Lambda functions, and IP addresses. Application Load Balancer is suitable for applications that need advanced routing capabilities, such as microservices or container-based architectures.
Question #243
Which AWS service provides the ability to manage infrastructure as code?
- A . AWS CodePipeline
- B . AWS CodeDeploy
- C . AWS Direct Connect
- D . AWS CloudFormation
Correct Answer: D
D
Explanation:
The AWS service that provides the ability to manage infrastructure as code is AWS CloudFormation. Infrastructure as code is a process of defining and provisioning AWS resources using code or templates, rather than manual actions or scripts. AWS CloudFormation allows you to create and update stacks of AWS resources based on predefined templates that describe the desired state and configuration of the resources. AWS CloudFormation automates and simplifies the deployment and management of AWS resources, and ensures consistency and repeatability across different environments and regions. AWS CloudFormation also supports rollback, change sets, drift detection, and nested stacks features that help you to monitor and control the changes to your infrastructure1.
D
Explanation:
The AWS service that provides the ability to manage infrastructure as code is AWS CloudFormation. Infrastructure as code is a process of defining and provisioning AWS resources using code or templates, rather than manual actions or scripts. AWS CloudFormation allows you to create and update stacks of AWS resources based on predefined templates that describe the desired state and configuration of the resources. AWS CloudFormation automates and simplifies the deployment and management of AWS resources, and ensures consistency and repeatability across different environments and regions. AWS CloudFormation also supports rollback, change sets, drift detection, and nested stacks features that help you to monitor and control the changes to your infrastructure1.
Question #244
Which tasks are the responsibility of AWS according to the AWS shared responsibility model? (Select TWO.)
- A . Configure AWS Identity and Access Management (IAM).
- B . Configure security groups on Amazon EC2 instances.
- C . Secure the access of physical AWS facilities.
- D . Patch applications that run on Amazon EC2 instances.
- E . Perform infrastructure patching and maintenance.
Correct Answer: C,E
C,E
Explanation:
The tasks that are the responsibility of AWS according to the AWS shared responsibility model are securing the access of physical AWS facilities and performing infrastructure patching and maintenance. The AWS shared responsibility model defines the division of responsibilities between AWS and the customer for security and compliance. AWS is responsible for the security of the cloud, which includes the physical security of the hardware, software, networking, and facilities that run the AWS services. AWS is also responsible for the maintenance and patching of the infrastructure that supports the AWS services. The customer is responsible for the security in the cloud, which includes the configuration and management of the AWS resources and applications that they use. Configuring AWS Identity and Access Management (IAM), configuring security groups on Amazon EC2 instances, and patching applications that run on Amazon EC2 instances are tasks that are the responsibility of the customer, not AWS.
C,E
Explanation:
The tasks that are the responsibility of AWS according to the AWS shared responsibility model are securing the access of physical AWS facilities and performing infrastructure patching and maintenance. The AWS shared responsibility model defines the division of responsibilities between AWS and the customer for security and compliance. AWS is responsible for the security of the cloud, which includes the physical security of the hardware, software, networking, and facilities that run the AWS services. AWS is also responsible for the maintenance and patching of the infrastructure that supports the AWS services. The customer is responsible for the security in the cloud, which includes the configuration and management of the AWS resources and applications that they use. Configuring AWS Identity and Access Management (IAM), configuring security groups on Amazon EC2 instances, and patching applications that run on Amazon EC2 instances are tasks that are the responsibility of the customer, not AWS.
Question #245
A company wants to centrally manage Its employee’s access to multiple AWS accounts.
Which AWS service or feature should the company use to meet this requirement?
- A . AWS Identity and Access Management Access Analyzer
- B . AWS Secrets Manager
- C . AWS IAM Identity Center
- D . AWS Security Token Service (AWS STS)
Correct Answer: C
C
Explanation:
AWS IAM Identity Center provides centralized access management across multiple AWS accounts, enabling organizations to manage employee access efficiently. It is specifically designed for this purpose within AWS Organizations. AWS STS provides temporary credentials but does not manage multiple account access centrally, while IAM Access Analyzer and Secrets Manager serve different purposes related to access and secret management.
C
Explanation:
AWS IAM Identity Center provides centralized access management across multiple AWS accounts, enabling organizations to manage employee access efficiently. It is specifically designed for this purpose within AWS Organizations. AWS STS provides temporary credentials but does not manage multiple account access centrally, while IAM Access Analyzer and Secrets Manager serve different purposes related to access and secret management.
Question #246
Which design principle is achieved by following the reliability pillar of the AWS Well-Architected Framework?
- A . Vertical scaling
- B . Manual failure recovery
- C . Testing recovery procedures
- D . Changing infrastructure manually
Correct Answer: C
C
Explanation:
Testing recovery procedures is the design principle that is achieved by following the reliability pillar of the AWS Well-Architected Framework. The reliability pillar focuses on the ability of a system to recover from failures and prevent disruptions. Testing recovery procedures helps to ensure that the system can handle different failure scenarios and restore normal operations as quickly as possible. Testing recovery procedures also helps to identify and mitigate any risks or gaps in the system design and implementation. For more information, see [Reliability Pillar] and [Testing for Reliability].
C
Explanation:
Testing recovery procedures is the design principle that is achieved by following the reliability pillar of the AWS Well-Architected Framework. The reliability pillar focuses on the ability of a system to recover from failures and prevent disruptions. Testing recovery procedures helps to ensure that the system can handle different failure scenarios and restore normal operations as quickly as possible. Testing recovery procedures also helps to identify and mitigate any risks or gaps in the system design and implementation. For more information, see [Reliability Pillar] and [Testing for Reliability].
Question #247
Which AWS service or tool provides users with a graphical interface that they can use to manage AWS services?
- A . AWS Copilot
- B . AWS CLI
- C . AWS Management Console
- D . AWS software development kits (SDKs)
Correct Answer: C
C
Explanation:
The AWS Management Console provides a web-based graphical user interface (GUI) that allows users to manage AWS services. It is user-friendly and accessible, enabling users to control and configure resources without needing to interact with AWS through code or command-line interfaces. AWS CLI and SDKs are command-line and programming tools, respectively, and do not offer a graphical interface.
C
Explanation:
The AWS Management Console provides a web-based graphical user interface (GUI) that allows users to manage AWS services. It is user-friendly and accessible, enabling users to control and configure resources without needing to interact with AWS through code or command-line interfaces. AWS CLI and SDKs are command-line and programming tools, respectively, and do not offer a graphical interface.
Question #248
A company needs to set up user authentication for a new application. Users must be able to sign in directly with a user name and password, or through a third-party provider.
Which AWS service should the company use to meet these requirements?
- A . AWS IAM Identity Center (AWS Single Sign-On)
- B . AWS Signer
- C . Amazon Cognito
- D . AWS Directory Service
Correct Answer: C
C
Explanation:
Amazon Cognito is a service that provides user authentication and authorization for web and mobile applications. You can use Amazon Cognito to enable users to sign in directly with a user name and password, or through a third-party provider, such as Facebook, Google, or Amazon. You can also use Amazon Cognito to manage user profiles, preferences, and security settings3
C
Explanation:
Amazon Cognito is a service that provides user authentication and authorization for web and mobile applications. You can use Amazon Cognito to enable users to sign in directly with a user name and password, or through a third-party provider, such as Facebook, Google, or Amazon. You can also use Amazon Cognito to manage user profiles, preferences, and security settings3
Question #249
A company is assessing its AWS Business Support plan to determine if the plan still meets the company’s needs. The company is considering switching to AWS Enterprise Support.
Which additional benefit will the company receive with AWS Enterprise Support?
- A . A full set of AWS Trusted Advisor checks
- B . Phone, email, and chat access to cloud support engineers 24 hours a day, 7 days a week
- C . A designated technical account manager (TAM) to assist in monitoring and optimization
- D . A consultative review and architecture guidance for the company’s applications
Correct Answer: C
C
Explanation:
AWS Enterprise Support provides customers with a designated technical account manager (TAM) who is a single point of contact for all technical and operational issues. The TAM provides consultative architectural and operational guidance delivered in the context of the customer’s applications and use-cases to help them achieve the greatest value from AWS. The TAM also helps customers with proactive services, such as strategic business reviews, security improvement programs, guided Well-Architected reviews, cost optimization workshops, and more1.
A full set of AWS Trusted Advisor checks is not an additional benefit of AWS Enterprise Support, as it is also included in the AWS Business Support plan2. AWS Trusted Advisor is a tool that provides best practice recommendations for cost optimization, performance, security, fault tolerance, and service limits.
Phone, email, and chat access to cloud support engineers 24 hours a day, 7 days a week is not an additional benefit of AWS Enterprise Support, as it is also included in the AWS Business Support plan2. Cloud support engineers can help customers with technical issues, such as troubleshooting, configuration, usage, and service features.
A consultative review and architecture guidance for the company’s applications is not an additional benefit of AWS Enterprise Support, as it is also included in the AWS Business Support plan2. Customers can request a consultative review from a solutions architect who will provide best practices and recommendations based on the customer’s use-cases and goals.
C
Explanation:
AWS Enterprise Support provides customers with a designated technical account manager (TAM) who is a single point of contact for all technical and operational issues. The TAM provides consultative architectural and operational guidance delivered in the context of the customer’s applications and use-cases to help them achieve the greatest value from AWS. The TAM also helps customers with proactive services, such as strategic business reviews, security improvement programs, guided Well-Architected reviews, cost optimization workshops, and more1.
A full set of AWS Trusted Advisor checks is not an additional benefit of AWS Enterprise Support, as it is also included in the AWS Business Support plan2. AWS Trusted Advisor is a tool that provides best practice recommendations for cost optimization, performance, security, fault tolerance, and service limits.
Phone, email, and chat access to cloud support engineers 24 hours a day, 7 days a week is not an additional benefit of AWS Enterprise Support, as it is also included in the AWS Business Support plan2. Cloud support engineers can help customers with technical issues, such as troubleshooting, configuration, usage, and service features.
A consultative review and architecture guidance for the company’s applications is not an additional benefit of AWS Enterprise Support, as it is also included in the AWS Business Support plan2. Customers can request a consultative review from a solutions architect who will provide best practices and recommendations based on the customer’s use-cases and goals.