AWS Certified Cloud Practitioner CLF-C02 Flash Cards
Study online at https://quizlet.com/_bmn0tt
1. A change or a failure in one component should not cascade to other compo-
nents.: Loose coupling
2. A gateway that enables your Amazon EC2 instances in the public subnet to
connect to the public Internet.: Internet Gateway
3. A gateway that enables your EC2 instances in the private subnet to connect
to the public Internet.: NAT Gateway
4. A security management tool to configure your AWS WAF rules across your
accounts.: AWS Firewall Manager
5. Compliance-related documents in AWS such as Service Organization Controls
(SOC) reports: AWS Artifact
6. An IAM identity that uses access keys to manage cloud resources via AWS
CLI.: IAM User
7. A role that grants temporary access to your AWS resources.: IAM Role
8. Manages the common access permissions to a large number of IAM users in
AWS.: IAM Group
9. A resource-based policy that you can use to grant access permissions to your
bucket and the objects in it.: Bucket Policy
10. Provides AWS credentials to grant your users access to other AWS services.-
: Amazon Cognito Identity Pools
11. A service that discovers, classifies, and protects sensitive data such as per-
sonally identifiable information (PII) or intellectual property.: Amazon Macie
12. A threat detection service that continuously monitors for malicious activity
to protect your AWS account.: Amazon GuardDuty
13. An authentication method that prevents unauthorized deletion of Amazon
S3 objects.: Multi-Factor Authentication (MFA)
14. It acts as a virtual firewall in AWS that controls the traffic at the EC2 instance
level.: Security Group
15. An automated security assessment service to improve the security and com-
pliance of your applications.: Amazon Inspector
16. An AWS global network that improves availability of deployed applications
on AWS using an anycast static IP address.: AWS Global Accelerator
1/8
, AWS Certified Cloud Practitioner CLF-C02 Flash Cards
Study online at https://quizlet.com/_bmn0tt
17. A data transport service that securely moves petabyte-scale data into and
out of the AWS Cloud.: AWS Snowball
18. A service that allows you to continuously monitor and log account activities
such as the user actions made from the AWS Management Console and AWS
SDKs.: AWS CloudTrail
19. A source control service that allows you to host Git-based repositories.: AWS
CodeCommit
20. A type of an EC2 instance that allows you to use your existing server-bound
software licenses.: Dedicated Host
21. A highly available and scalable cloud DNS web service in AWS.: Amazon Route 53
22. Automatically scale the capacity of an AWS cloud resource based on the
incoming traffic to improve availability and reduce failures.: AWS Auto Scaling
23. Automatically transfer your infrequently accessed data in your S3 bucket to
a more cost-effective storage class.: S3 Lifecycle Policy
24. A designated technical point of contact that will maintain an operationally
healthy AWS environment.: Technical Account Manager (TAM)
25. A tool that inspects your AWS environment and makes recommendations
that follows AWS best practices.: AWS Trusted Advisor
26. Set coverage targets and receive alerts when your utilization drops.: AWS
Budgets
27. A type of Reserved Instance that allows you to change its instance family,
instance type, platform, scope, or tenancy.: Convertible RI
28. Forecast future costs and usage of your AWS resources based on your past
consumption.: AWS Cost Explorer
29. Categorize and track AWS costs on a detailed level.: Cost allocation tags
30. The most cost-effective option when you purchase a Reserved Instance for
a 1-year term.: All Upfront
31. This service simplifies setting up, managing, and scaling distributed in-mem-
ory cache setups in the AWS Cloud. It eliminates the complexity of deploying
and operating a distributed cache system and offers a high-performance,
resizable, cost-effective, and in-memory cache.: Amazon ElastiCache
2/8
Study online at https://quizlet.com/_bmn0tt
1. A change or a failure in one component should not cascade to other compo-
nents.: Loose coupling
2. A gateway that enables your Amazon EC2 instances in the public subnet to
connect to the public Internet.: Internet Gateway
3. A gateway that enables your EC2 instances in the private subnet to connect
to the public Internet.: NAT Gateway
4. A security management tool to configure your AWS WAF rules across your
accounts.: AWS Firewall Manager
5. Compliance-related documents in AWS such as Service Organization Controls
(SOC) reports: AWS Artifact
6. An IAM identity that uses access keys to manage cloud resources via AWS
CLI.: IAM User
7. A role that grants temporary access to your AWS resources.: IAM Role
8. Manages the common access permissions to a large number of IAM users in
AWS.: IAM Group
9. A resource-based policy that you can use to grant access permissions to your
bucket and the objects in it.: Bucket Policy
10. Provides AWS credentials to grant your users access to other AWS services.-
: Amazon Cognito Identity Pools
11. A service that discovers, classifies, and protects sensitive data such as per-
sonally identifiable information (PII) or intellectual property.: Amazon Macie
12. A threat detection service that continuously monitors for malicious activity
to protect your AWS account.: Amazon GuardDuty
13. An authentication method that prevents unauthorized deletion of Amazon
S3 objects.: Multi-Factor Authentication (MFA)
14. It acts as a virtual firewall in AWS that controls the traffic at the EC2 instance
level.: Security Group
15. An automated security assessment service to improve the security and com-
pliance of your applications.: Amazon Inspector
16. An AWS global network that improves availability of deployed applications
on AWS using an anycast static IP address.: AWS Global Accelerator
1/8
, AWS Certified Cloud Practitioner CLF-C02 Flash Cards
Study online at https://quizlet.com/_bmn0tt
17. A data transport service that securely moves petabyte-scale data into and
out of the AWS Cloud.: AWS Snowball
18. A service that allows you to continuously monitor and log account activities
such as the user actions made from the AWS Management Console and AWS
SDKs.: AWS CloudTrail
19. A source control service that allows you to host Git-based repositories.: AWS
CodeCommit
20. A type of an EC2 instance that allows you to use your existing server-bound
software licenses.: Dedicated Host
21. A highly available and scalable cloud DNS web service in AWS.: Amazon Route 53
22. Automatically scale the capacity of an AWS cloud resource based on the
incoming traffic to improve availability and reduce failures.: AWS Auto Scaling
23. Automatically transfer your infrequently accessed data in your S3 bucket to
a more cost-effective storage class.: S3 Lifecycle Policy
24. A designated technical point of contact that will maintain an operationally
healthy AWS environment.: Technical Account Manager (TAM)
25. A tool that inspects your AWS environment and makes recommendations
that follows AWS best practices.: AWS Trusted Advisor
26. Set coverage targets and receive alerts when your utilization drops.: AWS
Budgets
27. A type of Reserved Instance that allows you to change its instance family,
instance type, platform, scope, or tenancy.: Convertible RI
28. Forecast future costs and usage of your AWS resources based on your past
consumption.: AWS Cost Explorer
29. Categorize and track AWS costs on a detailed level.: Cost allocation tags
30. The most cost-effective option when you purchase a Reserved Instance for
a 1-year term.: All Upfront
31. This service simplifies setting up, managing, and scaling distributed in-mem-
ory cache setups in the AWS Cloud. It eliminates the complexity of deploying
and operating a distributed cache system and offers a high-performance,
resizable, cost-effective, and in-memory cache.: Amazon ElastiCache
2/8
