Scroll down to see your responses and detailed results
Prepare for the AWS Cloud Practitioner CLF-C02 exam with this free practice test. Randomly generated and customizable, this test allows you to choose the number of questions.
A company is looking for a highly available and durable storage service to archive their financial records, which they need to retain for 7 years for compliance reasons. The records will be accessed very infrequently and retrieval time can be of several hours. Which AWS storage service should the company use to meet these requirements most cost-effectively?
Amazon S3 Glacier
Amazon Elastic Block Store (EBS)
Amazon Relational Database Service (RDS)
Amazon S3 Standard
Amazon S3 Glacier is the correct answer because it is specifically designed for data archiving and long-term backup at very low costs. It supports retrieval times ranging from a few minutes to several hours, which aligns with the company's acceptable retrieval time frame. Amazon S3 Glacier provides high durability and availability, which is essential for storing important financial records.
Amazon S3 Standard, while also highly durable and available, is more expensive for storage and is typically used for frequently accessed data. Amazon EBS is designed for block-level storage volumes for EC2 instances and is not suited for archiving. Amazon RDS is a managed relational database service and is not used for archiving files.
Which benefit best describes why a company would choose AWS Cloud over maintaining their own physical data centers?
Longer time to deploy resources
Consistent resource utilization regardless of demand
Elasticity of resources to match demand
Higher initial expenditure on hardware
Elasticity refers to the AWS Cloud's ability to automatically scale resources up or down based on demand. This means that companies only pay for what they use, and they can easily handle changes in workload without manual intervention a benefit not typically found in traditional, physical data center environments.
A cloud architect is tasked with monitoring and analyzing the expenditures of a multi-account environment set up under a single organizational entity. The architect must be able to view both the comprehensive and individual breakdowns of spending. Which tool should the architect use to access detailed graphical analyses and generate reports that show cost allocation across all accounts in the organization?
The tool that provides advanced analytics for cost and usage across multiple accounts
The service that helps configure transparent billing for an individual account
The feature that allows setting limits and alerts for predicted costs and usage
The calculator used for estimating the prospective costs for services before they are deployed
The architect should use the tool designed to provide visual and detailed analyses of expenditures and usage, which can offer graphical reports and an integrated view across multiple accounts under one organization. The correct choice is known to provide features such as historical data analysis and forecasting, which is highly beneficial for identifying trends in spending. Other options mentioned either focus on pre-deployment cost estimations or do not offer the same depth of analysis and integrated reporting.
Which service provides a fully managed platform for secure hosting of private Git repositories to facilitate collaborative coding projects?
CodeDeploy
CodePipeline
CodeCommit
X-Ray
The correct answer is 'CodeCommit', which is designed to provide a secure, scalable, and managed source control service that stores Git repositories. The other options, 'CodeDeploy', 'CodePipeline', and 'X-Ray', serve different purposes: automated deployment, continuous integration and continuous delivery (CI/CD) workflows, and application performance monitoring and debugging, respectively.
Which service offered by the leading cloud provider allows users to obtain necessary governance-related reports and adhere to various contractual frameworks?
AWS Calc
SSL Taxonomy
AWS Artifact
Search Enhancement Service
AWS Artifact is the correct answer because it gives users on-demand access to governance, risk, and compliance documents and reports provided by the leading cloud provider. It’s a central resource for information on the compliance programs that apply to the cloud services, helping customers meet regulatory and policy objectives. The AWS Calc, SSL Taxonomy, and Search Enhancement Service are not actual services, and are included to misdirect your attention. Remember, distinguishing between real and fictitious services is key to correctly identifying the service used for compliance documentation.
Which of the following is a principle of the AWS Well-Architected Framework that emphasizes the need to keep track of the entire system, and automate changes to the environment?
Cost Optimization
Performance Efficiency
Reliability
Operational Excellence
The principle of Operational Excellence in the AWS Well-Architected Framework focuses on running and monitoring systems to deliver business value and continually improving processes and procedures. Automation is a key part of achieving operational excellence as it helps to ensure that changes are systematically enforced with less human intervention.
A company is looking to implement a memory-based, high-performance database to support sub-millisecond latency for their real-time gaming application. They require a managed service that allows them to maintain a leaderboards feature with frequent updates and retrievals. Which AWS service would be the BEST option for this use case?
Amazon ElastiCache for Redis
Amazon Relational Database Service (RDS)
Amazon DynamoDB Accelerator (DAX)
Amazon Aurora
Amazon ElastiCache for Redis is designed to be an in-memory data store that supports sub-millisecond latency, which is essential for real-time applications such as gaming leaderboards. It offers high performance with the flexibility to scale up or down to meet fluctuating demands. Amazon DynamoDB Accelerator (DAX) is specific to Amazon DynamoDB and is optimized for read-heavy and bursty workloads. Amazon Aurora is a relational database that, although performant, does not offer the in-memory capabilities of ElastiCache. Amazon RDS provides managed relational databases but also lacks the in-memory data handling optimized for the described use case.
A company requires detailed information on actions taken within their cloud environment, such as user actions and accesses, for compliance auditing. To address this need, which service should primarily be used to capture and record these interactions?
CloudWatch
Inspector
CloudTrail
Security Hub
The correct answer is AWS CloudTrail. It’s designed to capture and record all actions taken within an environment, like user accesses and API activities, which is crucial for auditing and compliance purposes. While Amazon CloudWatch provides monitoring and logging capabilities, it is not primarily used for recording API call history. AWS Security Hub focuses on security checks and consolidations of findings from various services but does not specifically track user actions or API calls. Amazon Inspector offers automated security assessment services and does not deal with logging and tracking of all interactions within an environment. Therefore, CloudTrail is the best fit for the requirement.
A startup is looking for a solution to automate the setup of their cloud-based infrastructure, ensuring they can easily replicate environments for different stages of their product lifecycle. Which option would allow them to define their web application's resources in code, offering a repeatable way to deploy and manage the infrastructure?
Utilize a container management service to orchestrate their deployment processes.
Use an application deployment service that abstracts away most of the underlying configuration details.
Implement a configuration management service to automate the platform setup.
Adopt a service that allows them to declare their infrastructure as code through templates.
Infrastructure as Code (IaC) is a key practice that enables automation, consistency, and repeatability in cloud environments. The correct service for defining infrastructure in templates and deploying it in an automated way is CloudFormation. It enables startups to version control their infrastructure, helping them scale out and replicate environments easily. ECS is a container orchestration service, not a provisioning tool; OpsWorks is a configuration management service; and Elastic Beanstalk provides an easier, less customizable approach to application deployment but does not inherently provide infrastructure templating and versioning capabilities.
A business is looking to implement a solution that would allow them to automate the setup of their computing resources for various environments such as development, testing, and production. The solution should support codification of infrastructure to enable consistent deployments. Which service should they use to best meet these requirements?
Management Console
Command Line Interface
Infrastructure as Code service
Auto Scaling service
The best service for meeting the requirements of automated, consistent deployment across multiple environments using codified templates is the Infrastructure as Code service provided by the cloud vendor. This service enables the definition of infrastructure in code format, which can then be used to create and manage cloud resources automatically. It ensures consistency and reduces the chance of human error associated with manual setups. The console, while user-friendly for manual operations, is not designed for automated, templated provisioning. The Command Line Interface facilitates scripting for automation but does not inherently provide templating or state management like the Infrastructure as Code service. Auto Scaling service is primarily used for adjusting resource capacity in response to traffic demands and does not cater to the requirement of environment setup through codification.
Amazon Route 53 can only route traffic for domains that are registered with AWS.
True
False
Amazon Route 53 is not limited to domains registered with AWS. It can be used to route traffic for any domain, regardless of where the domain is registered, by updating the DNS settings at the current registrar to point to Route 53 name servers. This flexibility is a key feature, as it allows for centralized management of DNS routing even for domains registered elsewhere.
An organization needs to execute code in response to incoming web requests from a mobile app without the overhead of provisioning or maintaining servers. The workload is prone to experience unpredictable increases in demand. Which service should be used to handle these requirements efficiently?
Elastic Container Service with a serverless engine
A messaging service for notifications
Lambda
Elastic Compute Cloud instances
Lambda is the optimal solution for executing code in response to incoming web requests without the need for server management, and it is well-suited to handle unpredictable demand due to its ability to scale automatically with each trigger. This makes it ideal for situations where there are unexpected spikes in traffic. The pricing model based on the number of requests and the duration of execution also aligns with the variable workload, offering cost efficiency during periods of varying traffic intensity.
Other options like EC2 and ECS with Fargate involve server management at some level, and although Fargate abstracts the server management, it still requires configuration for container execution. SNS is primarily a messaging and notification service and does not directly handle execution of code in response to HTTP requests.
A Cloud Practitioner has identified a website utilizing cloud infrastructure to conduct fraudulent activities. In order to notify the appropriate team within the cloud provider's organization about this malicious activity, which team should they reach out to and through which method should the concern be raised?
Reach out to the general support team with detailed documentation regarding the fraudulent site.
Submit an abuse report through the designated form handled by the team oversees Trust & Safety concerns.
Email the legal department with information and evidence concerning the malicious operations.
Inform the generic Helpdesk to seek immediate action against the reported incident.
The responsibility for handling reports of abuse in the cloud service provider's environment lies with the Trust & Safety team. Reporting such misuses should be done by submitting an abuse report through the correct form specifically designed for such instances, which is accessible on the provider's official website. General support focuses on technical and billing topics, legal departments address legal issues, and no specific 'Helpdesk' team is mentioned in the context of abuse reporting.
To establish a private and dedicated network pathway from a company's datacenter to their cloud environment, bypassing the public internet, which service should be utilized?
Amazon Virtual Private Network (VPN)
AWS Direct Connect
AWS Transit Gateway
Amazon Route 53
The correct response is 'AWS Direct Connect' as it provides a private route from an on-premises network to the cloud provider's network, resulting in better bandwidth throughput and a more reliable network experience than internet connections. The Virtual Private Network (VPN) employs the public internet and is therefore not dedicated. Amazon Route 53 is not a connectivity service; it is a DNS web service. While AWS Transit Gateway does aid in managing network connectivity, it does not offer a dedicated physical link.
A company needs to routinely update and manage a large number of cloud resources to keep up with the dynamic demands of its customers. Which method of resource management offers the most efficiency for this scenario?
Implementing infrastructure automation through scripting and the use of templates.
Creating custom, one-off deployment scripts for every individual update.
Executing command-line operations individually to manage each deployment requirement.
Manually interacting with the cloud provider's web interface for each deployment cycle.
Infrastructure as Code (IaC) provides the most efficiency for managing a dynamic and scalable cloud environment. IaC allows development teams to automate the setup, deployment, and configuration of resources in a repeatable and error-free manner, making it the ideal choice for frequent updates and management of a large number of resources.
Looks like that's it! You can go back and review your answers or click the button below to grade your test.
Join premium for unlimited access and more features