AWS - Certified Cloud Practitioner (CLF-C01) / Multiple Choices Test Bank.
AWS - Certified Cloud Practitioner (CLF-C01) / Multiple Choices Test Bank: answered correctly! 2023. Which of the following is not a common cloud characteristic as defined by the NIST? * On-demand self-service * Measured service * Broad network access * Dedicated hardware {Correct}- Dedicated hardware What is the term commonly used for the cloud's capability to scale outward and inward automatically based on demand? * Agility * Reliability * Elasticity * Fault tolerance {Correct}- Elasticity What is the very popular "as a Service" model that permits a cloud provider to make applications that are typically accessible from anywhere? * IaaS * Saas * PaaS * GaaS {Correct}- SaaS What is the main "virtual machine" creation technology available in AWS? * S3 * EC2 * Route 53 * ELB {Correct}- EC2 What is the object-based storage solution in AWS? * S3 * EC2 * VPC * IAM {Correct}- S3 Where are your own private subnets located in AWS? * IAM * EC2 * Lamda * VPC {Correct}- VPC What repalces CapEx as an advantage of the cloud? * FIFO * GARP * ROI * OpEx {Correct}- OpEx What model is often followed in order to charge for cloud usage? * Pay as you terminate * Pay as you go * Pay as you can * Pay as you will {Correct}- Pay as you go What is the large advantage to the cloud's emphasis on APIs? * Cost * Automation * Simple learning curve * Lack of traceability {Correct}- Automation Which of the following is not a major contributor to the agility that AWS provides? * Governance * Speed * The culture of innovation * Experimentation {Correct}- Governance What major global architecture component exists in regions? * Offline stores * Availability Zones * Hotspots * Clusters {Correct}- Availability Zones Which of the folllowing is not a form of ELB in AWS? * Application Load Balancer * Classic Load Balancer * Network Load Balancer * Virtual Load Balancer {Correct}- Virtual Load Balancer What service category does CloudFront fall under? * Compute Services * Storage * Networking and Content Delivery * Security, Identity, and Compliance {Correct}- Compute Services A region in AWS is broken up into what construct? * Primary and secondary data centers * Availability Zones * Vaults * Pods {Correct}- Availability Zones What Global infrastructure component of AWS serves CloudFront content? * Availability Zones * Edge Locations * Vaults * Cached Centers {Correct}- Edge Locations What component can you use to connect your VPC to the public Internet? * IGW * IDS * IPS * NACLs {Correct}- IGW Where can you place resources in a VPC to help ensure high availability? * Different regions * Different root accounts * Different storage tiers * Different AZs {Correct}- Different AZs What two protocols are commonly permitted in security groups in order to permit remote administration of systems? (Choose two.) * RDP * ICMP * SFTP * SSH {Correct}- RDP SSh Security groups in AWS protect what resources? * AZs * Subnets * EC2 instances(through ENIs) * Vaults {Correct}- EC2 instances (through ENIs) What is a serverless compute service of AWS? * Aurora * Snowball * Glacier * Lamda {Correct}- Lamda What is a PaaS service of AWS? * CloudFormation * CloudFront * Elastic Beanstalk * RDS {Correct}- Elastic Beanstalk What EC2 pricing model allows you to bid on availability capacity? * Temporary instances * Spot instances * Reserved instances * On-demand instances {Correct}- Spot instances What is a common use of EBS in AWS? * To receive and process streaming data for IoT * To provide serverless compute resources * To act as the boot volume for an EC2 server instance * To make files available to massive numbers of users and groups {Correct}- To act as the boot volume for an EC2 server instance How does S3 ensure the durability of your data? * Muliple high-speed Internet connections are made to every major directory you create * Data is storage-tiered by default * Data is automatically replicated to an alternate region * Multiple copies of your data are stored in separate Availability Zone {Correct}- Multiple copies of your data is stored in separate Availability Zones. What is archiving/warehousing solution within S3? * Glacier * Snowball * EFS * Aurora {Correct}- Glacier Which AWS database is a NoSQL database solution often being used with the IoT? * Aurora * Glacier * Snowball * DynamoDB {Correct}- DynamoDB Which of the following is a datawarehouse solution in AWS? * Redshift * Aurora * RDS * ElastiCache {Correct}- Redshift Which of the following is not one of the pillars of "The Well-Architected Framework? from Amazon? * Cost optimization * Security * Operational excellence * Speed {Correct}- Speed Ensuring that you have "traceability" is critical in AWS. This is typically under what AWS design pillar? * Cost optimization * Operational excellence * Performance efficiency * Security {Correct}- Security Which of the following is true regarding HA in your on-premises data center? * It is typically only reserved for the most mission-critical systems or data. * It is typically implemented at a lower cost than cloud. * It is typically implemented throughout the entire data center. * It is never truly achievable. {Correct}- It is typically only reserved for the most mission-critical systems or data. Which is not a typical service or tool associated with HA in AWS? * Auto Scaling * ELB * CloudWatch * CloudTrail {Correct}- CloudTrail What is the DNS service offered by AWS? * SQS * Route 53 * CloudFront * CloudFormation {Correct}- Route 53 Where should firewalling be accomplished in your web hosting design in AWS? * At the perimeter * At the core * Everywhere * For all access layer functions {Correct}- Everywhere The AWS Shared Responsibility model divides security responsibilities between which two parties? * The AWS customer * The AWS partner * The community cloud vendor * AWS {Correct}- The AWS customer AWS Client responsibilities will vary in the Shared Responsibility model based on what major factor? * The number of AWS employees in the region used by the customer * The amount of customer data intended for cloud storage * Which services the customer chooses to use AWS * How much money the customer is willing to spend on support {Correct}- Which services the customer chooses to use of AWS Which is not a common category of IT security controls in the AWS Shared Responsibility model? * Inherited * Deferred * Customer specific * Shared {Correct}- Deferred Which of the following is not an example of an Amazon responsibility in the AWS Shared Responsibility model? * Physical security of the data center * Cloud software * Edge locations * IAM policies {Correct}- IAM policies Which of the following is not an example of a client responsibility in the AWS Shared Responsibility model? * Data integrity authentication * Guest operating system * Virtualization software on the host * Customer data {Correct}- Virtualization software on the host Amazon is interested in offering you high levels of confidentiality with your data in AWS. What is the key technoloy area that accomodate this? * Authentication * Hasing * Encryption * Fault tolerance {Correct}- Encryption What service in AWS assists your security efforts using roles, users, and groups? * S3 * IAM * EC2 * Glacier {Correct}- IAM Amazon seeks out attestations from organizations that are what? (Choose two.) * Dependent * Independent * Third party * Subsidiary {Correct}- Independent Third party Which of the following is not something Amazon typically provides to AWS customers in the area of compliance? * Mapping documents * Compliance playbooks * Security features * Physical host security playbooks {Correct}- Physical host security playbooks IAM can permit access to accounts that have already been authenticated in another domain or application. What is this called? * Proxy trust * Role Sharing * Proxy * Federation {Correct}- Federation What identity in IAM is very similar to a user account but has no credentials associated with it? * Groups * Roles * Proxy users * Principles {Correct}- Roles Why might you create many different accounts for one of your AWS engineers? * To follow the concept of least privilege * To reduce the resources required by IAM * To provide back doors into the system * To ensure you can log activity {Correct}- To follow the concept of least privilege In a high security environment, what should you do with privileged user accounts? * Store credentials in an S3 bucket * Create roles that mimic the accounts * Use MFA with these accounts * Share the access keys with other accounts that require access {Correct}- Use MFA with these accounts What is a central resource for compliance-related AWS information? * CodeLearn * Lambda * Artifact * ProtectGuard {Correct}- Artifact What acts like your own cloud expert in AWS, providing recommendations for greater security based on your existing configurations? * Trusted Advisor * Artifact * EC2 * Cognito {Correct}- Trusted Advisor What Learning Path is recommended for those in compliance roles in your AWS architecture? * Code Learning Path * SysOps Learning Path * Architect Learning Path * Auditor Learning Path {Correct}- Auditor Learning Path From where does Amazon often draws information for certification exam questions? * Case studies * Security blogs * Security bulletins * FAWS {Correct}- FAQs Why is automation so easily accommodated in AWS? * Because CloudTrail provides automation templates automatically for you * Because multiple regions facilitate code deployment * Because physical systems host the EC2 instances you work with daily * Because all actions can be implemented through API calls {Correct}- Because all actions can be implemented through API calls Which of the following is not considered a benefit of automation? * Reduction in required security measures * Lowered operating costs * Simpler and faster code deployment * Reduction in the potential errors {Correct}- Reduction in required security measures What is the result of orchestration? * An architecture guaranteed to be free of eros * Alignment of all required tasks in an independent execution environment * A consolidated process or workflow * An environment that can be replicated easily on any public cloud platform {Correct}- A consolidated process or workflow Which is not considered a benefit of orchestration? * The lowering of overall IT costs * The elimination of the need for experimentation * Improved delivery times * Reduced friction between different teams {Correct}- The elimination of the need for experimentation CloudWatch falls into which category of management options? * Provisioning * Managed Services for Configuration * Operations Management * Monitoring and Logging {Correct}- Monitoring and Logging What is the fully managed configuration management service in AWS? * CloudTrail * OpsWorks * CloudFormation * CloudWatch {Correct}- OpsWorks How many Availability Zones (AZs) are located in regions in the AWS Global Infrastructure? * At least two * One * Two * Three {Correct}- At least two What is an Edge Location used for in an AWS region? * CloudFormation * RDS * S3 * CloudFront {Correct}- CloudFront Which statement regarding regions in AWS is not correct? * Regions in North America rely on the presence of the other North American regions. * Regions are connected with fast connections to other regions * Edge Locations exist inside of regions * Availability Zones exist inside of regions {Correct}- Regions in North America rely on the presence of the other North American regions. How many discrete data centers are located in an AZ in the AWS Global Infrastructure? * At least one * At least two * At least three * At least four {Correct}- At least one How does Amazon design each AZ in the AWS Global Infrastructure? * To be located at the largest city in a region * To exist outside of a region * As an independent failure domain * As dependent on at least one other AZ {Correct}- As an independent failure domain How is a typical AZ given power in the AWS Global Infrastructure? * Via different grids from independent utilities * From generators powered by Amazon * From a single grid from highest performance utility * From a shared public power station {Correct}- Via different grids from independent utilities What component allows you to connect privately from your Virtual Private Cloud (VPC) to services you need? * VPC endpoint * Direct Connect * VPN * CloudFront {Correct}- VPC endpoint **Cont.....................
Connected book
- 2020
- 9781119756705
- Unknown
- 2020
- 9781119756705
- Unknown
Written for
- Institution
- AWS - Certified Cloud Practitioner
- Module
- AWS - Certified Cloud Practitioner
Document information
- Uploaded on
- November 20, 2022
- Number of pages
- 85
- Written in
- 2022/2023
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
-
aws certified cloud practitioner clf c01
-
aws certified cloud practitioner clf c01 exam
-
aws certified cloud practitioner clf c01 multiple choices
-
which of the following is not a common cl
