Practice Free CLF-C02 Exam Online Questions
Question #31
In which categories does AWS Trusted Advisor provide recommended actions? (Select TWO.)
- A . Operating system patches
- B . Cost optimization
- C . Repetitive tasks
- D . Service quotas
- E . Account activity records
Correct Answer: B,D
B,D
Explanation:
AWS Trusted Advisor is a service that provides real-time guidance to help you provision your resources following AWS best practices. AWS Trusted Advisor provides recommended actions in five categories: cost optimization, performance, security, fault tolerance, and service quotas. Cost optimization helps you reduce your overall AWS costs by identifying idle and underutilized resources. Service quotas helps you monitor and manage your usage of AWS service quotas and request quota increases. Operating system patches, repetitive tasks, and account activity records are not categories that AWS Trusted Advisor provides recommended actions for. Source: [AWS Trusted Advisor]
B,D
Explanation:
AWS Trusted Advisor is a service that provides real-time guidance to help you provision your resources following AWS best practices. AWS Trusted Advisor provides recommended actions in five categories: cost optimization, performance, security, fault tolerance, and service quotas. Cost optimization helps you reduce your overall AWS costs by identifying idle and underutilized resources. Service quotas helps you monitor and manage your usage of AWS service quotas and request quota increases. Operating system patches, repetitive tasks, and account activity records are not categories that AWS Trusted Advisor provides recommended actions for. Source: [AWS Trusted Advisor]
Question #32
A company wants to create a chatbot and integrate the chatbot with its current web application.
Which AWS service will meet these requirements?
- A . AmazonKendra
- B . Amazon Lex
- C . AmazonTextract
- D . AmazonPolly
Correct Answer: B
B
Explanation:
The AWS service that will meet the requirements of the company that wants to create a chatbot and integrate the chatbot with its current web application is Amazon Lex. Amazon Lex is a service that helps customers build conversational interfaces using voice and text. The company can use Amazon Lex to create a chatbot that can understand natural language and respond to user requests, using the same deep learning technologies that power Amazon Alexa. Amazon Lex also provides easy integration with other AWS services, such as Amazon Comprehend, Amazon Polly, and AWS Lambda, as well as popular platforms, such as Facebook Messenger, Slack, and Twilio. Amazon Lex helps customers create engaging and interactive chatbots for their web applications. Amazon Kendra, Amazon Textract, and Amazon Polly are not the best services to use for this purpose. Amazon Kendra is a service that helps customers provide accurate and natural answers to natural language queries using machine learning. Amazon Textract is a service that helps customers extract text and data from scanned documents using optical character recognition (OCR) and machine learning. Amazon Polly is a service that helps customers convert text into lifelike speech using deep learning. These services are more useful for different types of natural language processing and generation tasks, rather than creating and integrating chatbots.
B
Explanation:
The AWS service that will meet the requirements of the company that wants to create a chatbot and integrate the chatbot with its current web application is Amazon Lex. Amazon Lex is a service that helps customers build conversational interfaces using voice and text. The company can use Amazon Lex to create a chatbot that can understand natural language and respond to user requests, using the same deep learning technologies that power Amazon Alexa. Amazon Lex also provides easy integration with other AWS services, such as Amazon Comprehend, Amazon Polly, and AWS Lambda, as well as popular platforms, such as Facebook Messenger, Slack, and Twilio. Amazon Lex helps customers create engaging and interactive chatbots for their web applications. Amazon Kendra, Amazon Textract, and Amazon Polly are not the best services to use for this purpose. Amazon Kendra is a service that helps customers provide accurate and natural answers to natural language queries using machine learning. Amazon Textract is a service that helps customers extract text and data from scanned documents using optical character recognition (OCR) and machine learning. Amazon Polly is a service that helps customers convert text into lifelike speech using deep learning. These services are more useful for different types of natural language processing and generation tasks, rather than creating and integrating chatbots.
Question #33
A company wants to transport 100 TB of data from its data center to AWS without using internet.
Which AWS service will meet this requirement?
- A . AWS Snowcone
- B . AWS Snowball Edge
- C . AWS Data Exchange
- D . AWS DataSync
Correct Answer: B
B
Explanation:
AWS Snowball Edge is designed for large-scale data transfer tasks, allowing companies to transport significant amounts of data (up to petabytes) from their data centers to AWS without relying on the internet. With the ability to transfer 100 TB of data securely and efficiently, Snowball Edge is the ideal choice for this use case. AWS Snowcone is for smaller transfers, and AWS Data Exchange and DataSync are not designed for physical data transport.
B
Explanation:
AWS Snowball Edge is designed for large-scale data transfer tasks, allowing companies to transport significant amounts of data (up to petabytes) from their data centers to AWS without relying on the internet. With the ability to transfer 100 TB of data securely and efficiently, Snowball Edge is the ideal choice for this use case. AWS Snowcone is for smaller transfers, and AWS Data Exchange and DataSync are not designed for physical data transport.
Question #34
A company is configuring its AWS Cloud environment. The company’s administrators need to group users together and apply permissions to the group.
Which AWS service or feature can the company use to meet these requirements?
- A . AWS Organizations
- B . Resource groups
- C . Resource tagging
- D . AWS Identity and Access Management (IAM)
Correct Answer: D
D
Explanation:
The AWS service or feature that the company can use to group users together and apply permissions to the group is AWS Identity and Access Management (IAM). AWS IAM is a service that enables users to create and manage users, groups, roles, and permissions for AWS services and resources. Users can use IAM groups to organize multiple users that have similar access requirements, and attach policies to the groups that define the permissions for the users in the group. This simplifies the management and administration of user access
D
Explanation:
The AWS service or feature that the company can use to group users together and apply permissions to the group is AWS Identity and Access Management (IAM). AWS IAM is a service that enables users to create and manage users, groups, roles, and permissions for AWS services and resources. Users can use IAM groups to organize multiple users that have similar access requirements, and attach policies to the groups that define the permissions for the users in the group. This simplifies the management and administration of user access
Question #35
Which cloud computing advantage is a company applying when it uses AWS Regions to increase application availability to users in different countries?
- A . Pay-as-you-go pricing
- B . Capacity forecasting
- C . Economies of scale
- D . Global reach
Correct Answer: D
D
Explanation:
Global reach is a cloud computing advantage that a company can apply when it uses AWS Regions to increase application availability to users in different countries. Global reach refers to the ability to deploy applications and services in multiple geographic locations around the world, and to serve customers with low latency and high performance. AWS has the largest and most reliable global infrastructure of any cloud provider, with 25 Regions and 81 Availability Zones across the Americas, Europe, Asia Pacific, Africa, and the Middle East123. By using AWS Regions, a company can choose the best location for its application based on customer proximity, compliance requirements, and disaster recovery strategies23.
Reference: 1: AWS Global Infrastructure – Amazon Web Services (AWS), 2: Regions and Availability Zones – Amazon Elastic Compute Cloud, 3: AWS Infrastructure: Regions and Availability Zones Explained
D
Explanation:
Global reach is a cloud computing advantage that a company can apply when it uses AWS Regions to increase application availability to users in different countries. Global reach refers to the ability to deploy applications and services in multiple geographic locations around the world, and to serve customers with low latency and high performance. AWS has the largest and most reliable global infrastructure of any cloud provider, with 25 Regions and 81 Availability Zones across the Americas, Europe, Asia Pacific, Africa, and the Middle East123. By using AWS Regions, a company can choose the best location for its application based on customer proximity, compliance requirements, and disaster recovery strategies23.
Reference: 1: AWS Global Infrastructure – Amazon Web Services (AWS), 2: Regions and Availability Zones – Amazon Elastic Compute Cloud, 3: AWS Infrastructure: Regions and Availability Zones Explained
Question #36
Which of the following are features of network ACLs as they are used in the AWS Cloud? (Select TWO.)
- A . They are stateless.
- B . They are stateful.
- C . They evaluate all rules before allowing traffic.
- D . They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic.
- E . They operate at the instance level.
Correct Answer: B,D
Question #37
Which combination of AWS services can be used to move a commercial relational database to an Amazon-managed open-source database? (Select TWO.)
- A . AWS Database Migration Service (AWS DMS)
- B . AWS software development kits (SDKs)
- C . AWS Schema Conversion Tool
- D . AWS Systems Manager
- E . Amazon EMR
Correct Answer: A,C
A,C
Explanation:
AWS Database Migration Service (DMS) and AWS Schema Conversion Tool are the primary services for migrating a commercial relational database to an Amazon-managed open-source database. AWS DMS helps migrate the data, while the AWS Schema Conversion Tool converts the database schema from the source database format to the target format, including SQL code. AWS SDKs are for software development, AWS Systems Manager is for operational management, and Amazon EMR is for big data processing, which are not relevant to this use case.
A,C
Explanation:
AWS Database Migration Service (DMS) and AWS Schema Conversion Tool are the primary services for migrating a commercial relational database to an Amazon-managed open-source database. AWS DMS helps migrate the data, while the AWS Schema Conversion Tool converts the database schema from the source database format to the target format, including SQL code. AWS SDKs are for software development, AWS Systems Manager is for operational management, and Amazon EMR is for big data processing, which are not relevant to this use case.
Question #38
A developer has been hired by a large company and needs AWS credentials.
Which are security best practices that should be followed? (Select TWO.)
- A . Grant the developer access to only the AWS resources needed to perform the job.
- B . Share the AWS account root user credentials with the developer.
- C . Add the developer to the administrator’s group in AWS IAM.
- D . Configure a password policy that ensures the developer’s password cannot be changed.
- E . Ensure the account password policy requires a minimum length.
Correct Answer: A,E
A,E
Explanation:
The security best practices that should be followed are A and E.
A,E
Explanation:
The security best practices that should be followed are A and E.
Question #39
Which AWS service or feature can be used to create a private connection between an on-premises workload and an AWS Cloud workload?
- A . Amazon Route 53
- B . Amazon Macie
- C . AWS Direct Connect
- D . AWS PrivaleLink
Correct Answer: C
C
Explanation:
AWS Direct Connect is a service that establishes a dedicated network connection between your on-premises network and one or more AWS Regions. AWS Direct Connect can be used to create a private connection between an on-premises workload and an AWS Cloud workload, bypassing the public internet and reducing network costs, latency, and bandwidth issues. AWS Direct Connect can also provide increased security and reliability for your hybrid cloud applications and data transfers.
Reference: AWS Direct Connect
What is AWS Direct Connect?
AWS Direct Connect User Guide
C
Explanation:
AWS Direct Connect is a service that establishes a dedicated network connection between your on-premises network and one or more AWS Regions. AWS Direct Connect can be used to create a private connection between an on-premises workload and an AWS Cloud workload, bypassing the public internet and reducing network costs, latency, and bandwidth issues. AWS Direct Connect can also provide increased security and reliability for your hybrid cloud applications and data transfers.
Reference: AWS Direct Connect
What is AWS Direct Connect?
AWS Direct Connect User Guide
Question #40
A retail company is building a new mobile app. The company is evaluating whether to build the app at an on-premises data center or in the AWS Cloud.
Which of the following are benefits of building this app in the AWS Cloud? (Select TWO.)
- A . A large upfront capital expense and low variable expenses
- B . Increased speed for trying out new projects
- C . Complete control over the physical security of the infrastructure
- D . Flexibility to scale up in minutes as the application becomes popular
- E . Ability to pick the specific data centers that will host the application servers
Correct Answer: A,D
A,D
Explanation:
AWS Directory Service for Microsoft Active Directory is the AWS service that provides a managed Microsoft Active Directory in the AWS Cloud. It enables the user to use their existing Active Directory users, groups, and policies to access AWS resources, such as Amazon EC2 instances, Amazon S3 buckets, and AWS Single Sign-On. It also integrates with other Microsoft applications and services, such as Microsoft SQL Server, Microsoft Office 365, and Microsoft SharePoint
A,D
Explanation:
AWS Directory Service for Microsoft Active Directory is the AWS service that provides a managed Microsoft Active Directory in the AWS Cloud. It enables the user to use their existing Active Directory users, groups, and policies to access AWS resources, such as Amazon EC2 instances, Amazon S3 buckets, and AWS Single Sign-On. It also integrates with other Microsoft applications and services, such as Microsoft SQL Server, Microsoft Office 365, and Microsoft SharePoint