Amazon CLF-C01 Online Practice Questions and Exam Preparation

Amazon CLF-C01 Online Questions & Answers

• Question 1971:

  A company needs to create graphs that show historical and current costs for the company's AWS account.

  Which AWS service or tool provides this functionality?

  A. AWS config
  B. AWS Cost and Usage Report
  C. AWS Budgets
  D. AWS Cost Explorer
  D. AWS Cost Explorer

  ---

  Explanation/Reference:

  D. AWS Cost Explorer

  AWS Cost Explorer is a service that allows a company to view and analyze their AWS costs and usage. It provides a wide range of cost and usage reports, including a cost graph that shows the historical and current costs for the company's AWS account. This service allows the company to view costs by service, by tag, by time, by linked account, and by other dimensions. Cost Explorer also enables the company to set custom budgets, alerts and to view trends and forecasts.

  A. AWS Config: AWS Config is a service that provides an inventory of AWS resources and configuration history. It is not a cost management service.

  B. AWS Cost and Usage Report: The AWS Cost and Usage Report provides detailed cost and usage information for all services and it's a great resource for cost allocation and for identifying trends. But it does not provide visualization capabilities

  C. AWS Budgets: AWS Budgets is a service that allows the company to set custom budgets and alerts for costs, usage, and RI utilization. It does not provide visualization capabilities.

• Question 1972:

  A company manages an on-premises MySQL database on a Windows server. The company wants to migrate the database to AWS and needs a solution that will reduce the administrative overhead of the database. Which AWS service will meet this requirement?

  A. Amazon Redshift
  B. Amazon ElastiCache
  C. Amazon RDS
  D. Amazon Elastic File System (Amazon EFS)
  C. Amazon RDS

• Question 1973:

  A company is running a workload in the AWS Cloud.

  Which AWS best practice ensures the MOST cost-effective architecture for the workload?

  A. Loose coupling
  B. Rightsizing
  C. Caching
  D. Redundancy
  B. Rightsizing

  ---

  Explanation/Reference:

  Right sizing is the process of matching instance types and sizes to your workload performance and capacity requirements at the lowest possible cost.

  Ref link: https://aws.amazon.com/aws-cost-management/aws-cost-optimization/right-sizing/#:~:text=Right %20sizing%20is%20the%20process,at%20the%20lowest%20possible%20cost.

• Question 1974:

  A company has a database server that is always running. The company hosts the server on Amazon EC2 instances. The instance sizes are suitable for the workload. The workload will run for 1 year.

  Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?

  A. Standard Reserved Instances
  B. On-Demand Instances
  C. Spot Instances
  D. Convertible Reserved Instances
  A. Standard Reserved Instances

• Question 1975:

  Which task can a user complete by using AWS Identity and Access Management (IAM)?

  A. Validate JSON syntax from an application configuration file
  B. Analyze logs from an Amazon API Gateway call
  C. Filter traffic to or from an Amazon EC2 instance
  D. Grant permissions to applications that run on Amazon EC2 instances
  D. Grant permissions to applications that run on Amazon EC2 instances

  ---

  Explanation/Reference:

  The task that a user can complete by using AWS Identity and Access Management (IAM) is:

  D. Grant permissions to applications that run on Amazon EC2 instances. AWS Identity and Access Management (IAM) is a web service that enables Amazon Web Services (AWS) customers to manage access to AWS services and resources securely. IAM enables you to create and manage AWS users and groups, and to grant permissions to access AWS resources. With IAM, you can control who can access your AWS resources, and what actions they can perform on those resources. IAM also enables you to set up access policies that grant permissions to AWS resources based on attributes such as user name, group membership, or tags. By using IAM, you can grant permissions to applications that run on Amazon EC2 instances, and control which AWS resources those applications can access.

• Question 1976:

  Which AWS service will help a company identify the user who deleted an Amazon EC2 instance yesterday?

  A. Amazon CloudWatch
  B. AWS Trusted Advisor
  C. AWS CloudTrail
  D. Amazon Inspector
  C. AWS CloudTrail

  ---

  Explanation/Reference:

  Reference: https://aws.amazon.com/cloudtrail/

• Question 1977:

  A company hosts its website on Amazon EC2 instances. The company needs to ensure that the website reaches a global audience and provides minimum latency to users. Which AWS service should the company use to meet these requirements?

  A. Amazon Route 53
  B. Amazon CloudFront
  C. Elastic Load Balancing
  D. AWS Lambda
  A. Amazon Route 53

  ---

  Explanation/Reference:

  Reference: https://aws.amazon.com/route53/faqs/

• Question 1978:

  An external auditor needs to verify the compliance and security of the AWS data center facilities where a company's data is stored. How should this request be addressed?

  A. Create a support case using the AWS account root user credentials requesting that a concierge accompany the auditor to the facility.
  B. Contact an AWS technical account manager and request access to the next scheduled facility tour.
  C. Access the AWS Artifact portal and download the required reports to provide to the auditor.
  D. Access the AWS Artifact portal and create an access URL for the auditor to download the required reports,
  A. Create a support case using the AWS account root user credentials requesting that a concierge accompany the auditor to the facility.

• Question 1979:

  A company wants to use an AWS service to continuously monitor the health of its application endpoints based on proximity to application users. The company also needs to route traffic to healthy Regional endpoints and to improve application availability and performance.

  Which service will meet these requirements?

  A. Amazon Inspector
  B. Amazon CloudWatch
  C. AWS Global Accelerator
  D. AWS Cloud Formation
  C. AWS Global Accelerator

  ---

  Explanation/Reference:

  Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.

  Amazon CloudWatch is a monitoring and management service that provides data and actionable insights for AWS, hybrid, and on-premises applications and infrastructure resources. With CloudWatch, you can collect and access all your performance and operational data in form of logs and metrics from a single platform.

  AWS Global Accelerator uses the vast, congestion-free AWS global network to route TCP and UDP traffic to a healthy application endpoint in the closest AWS Region to the user. If there's an application failure, AWS Global Accelerator provides instant failover to the next best endpoint.

  CloudFormation creates a bucket for each region in which you upload a template file. The buckets are accessible to anyone with Amazon Simple Storage Service (Amazon S3) permissions in your AWS account. If a bucket created by CloudFormation is already present, the template is added to that bucket.

• Question 1980:

  Fault tolerance refers to:

  A. the ability of an application to accommodate growth without changing design
  B. how well and how quickly an application's environment can have lost data restored
  C. how secure your application is
  D. the built-in redundancy of an application's components
  B. how well and how quickly an application's environment can have lost data restored