Amazon CLF-C02 Online Practice Questions and Exam Preparation

Amazon CLF-C02 Online Questions & Answers

• Question 181:

  Which AWS service uses speech-to-text conversion to help users create meeting notes?

  A. Amazon Polly
  B. Amazon Textract
  C. Amazon Rekognition
  D. Amazon Transcribe
  D. Amazon Transcribe

  ---

  Explanation

• Question 182:

  A company needs the ability to acquire resources when the resources are needed. The company also needs the ability to release the resources when the resources are no longer needed. Which AWS concept represents the company's goals?

  A. Scalability
  B. Sustainability
  C. Elasticity
  D. Operational excellence
  C. Elasticity

  ---

  Explanation

• Question 183:

  Which AWS service provides the ability to host a NoSQL database in the AWS Cloud?

  A. Amazon Aurora
  B. Amazon DynamoDB
  C. Amazon RDS
  D. Amazon Redshift
  B. Amazon DynamoDB

  ---

  Explanation

  Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability. It supports both key- value and document data models, and allows you to create tables that can store and retrieve any amount of data, and serve any level of request traffic. You can also use DynamoDB Streams to capture data modification events in DynamoDB tables.

• Question 184:

  According to the AWS shared responsibility model, which activities are the customer's responsibility for security in the AWS Cloud? (Select TWO.)

  A. Hardware maintenance
  B. Amazon EC2 operating system patching
  C. API access control for AWS resources
  D. Configuration management of infrastructure devices
  E. Maintenance of an Availability Zone
  B. Amazon EC2 operating system patching
  C. API access control for AWS resources

  ---

  Explanation

• Question 185:

  Which of the following are advantages of the AWS Cloud? (Choose two.)

  A. AWS management of user-owned infrastructure
  B. Ability to quickly change required capacity
  C. High economies of scale
  D. Increased deployment time to market
  E. Increased fixed expenses
  B. Ability to quickly change required capacity
  C. High economies of scale

  ---

  Explanation

  B. Ability to quickly change required capacity: With the AWS Cloud, users can easily scale their infrastructure up or down based on demand. This flexibility allows for rapid adjustment of resources to match application needs, enabling cost optimization and efficient resource utilization.

  C. High economies of scale: AWS operates at a large scale, serving millions of customers globally. This scale allows AWS to achieve cost efficiencies and pass on the benefits to customers. By leveraging AWS services, users can access enterprise-grade infrastructure and services without the need for significant upfront investment in hardware or infrastructure.

• Question 186:

  A company purchased Amazon EC2 Standard Reserved Instances (Rls) for a workload in the AWS Cloud. The company needs to move part of the workload to an instance family that does not match the instance family of these Standard RIs. How can the company take advantage of the Standard RIs that it no longer needs?

  A. Contact the AWS Support team, and ask the team to sell the Standard RIs.
  B. Sell the Standard RIs on the Amazon EC2 Reserved Instance Marketplace.
  C. Sell the Standard RIs as a third-party seller on the AWS Marketplace.
  D. Convert the Standard RIs to Savings Plans.
  B. Sell the Standard RIs on the Amazon EC2 Reserved Instance Marketplace.

  ---

  Explanation

  The Amazon EC2 Reserved Instance Marketplace allows customers to sell unused Standard Reserved Instances to other AWS users. This enables companies to recoup some of the costs if they no longer need certain RIs. Standard RIs cannot be converted to Savings Plans, and AWS Support does not facilitate the resale of RIs directly.

• Question 187:

  Which AWS service provides encryption at rest for Amazon RDS and for Amazon Elastic Block Store (Amazon EBS) volumes?

  A. AWS Lambda
  B. AWS Key Management Service (AWS KMS)
  C. AWSWAF
  D. Amazon Rekognition
  B. AWS Key Management Service (AWS KMS)

  ---

  Explanation

  AWS Key Management Service (AWS KMS) is a managed service that enables you to easily encrypt your data. AWS KMS provides you with centralized control of the encryption keys used to protect your data. You can use AWS KMS to encrypt data in Amazon RDS and Amazon EBS volumes12

• Question 188:

  A company wants to move its on-premises databases to managed cloud database services by using a simplified migration process.

  Which AWS service or tool can help the company meet this requirement?

  A. AWS Storage Gateway
  B. AWS Application Migration Service
  C. AWS DataSync
  D. AWS Database Migration Service (AWS DMS)
  D. AWS Database Migration Service (AWS DMS)

  ---

  Explanation

  AWS Database Migration Service (AWS DMS) is a cloud service that makes it possible to migrate relational databases, data warehouses, NoSQL databases, and other types of data stores. You can use AWS DMS to migrate your data into

  the AWS Cloud or between combinations of cloud and on-premises setups. With AWS DMS, you can discover your source data stores, convert your source schemas, and migrate your data. AWS DMS supports migration between 20-plus

  database and analytics engines, such as Oracle to Amazon Aurora MySQL-Compatible Edition, MySQL to Amazon Relational Database (RDS) for MySQL, Microsoft SQL Server to Amazon Aurora PostgreSQL-Compatible Edition, MongoDB

  to Amazon DocumentDB (with MongoDB compatibility), Oracle to Amazon Redshift, and Amazon Simple Storage Service (S3). You can perform one-time migrations or replicate ongoing changes to keep sources and targets in sync. AWS

  DMS automatically manages the deployment, management, and monitoring of all hardware and software needed for your migration. AWS DMS is a highly resilient, secure cloud service that provides database discovery, schema conversion,

  data migration, and ongoing replication to and from a wide range of databases and analytics systems.

  References:

  Database Migration - AWS Database Migration Service - AWS What is AWS Database Migration Service? - AWS Database Migration Service

• Question 189:

  Which AWS network services or features allow Cl DR block notation when providing an IP address range? (Select TWO.)

  A. Security groups
  B. Amazon Machine Image (AMI)
  C. Network access control list (network ACL)
  D. AWS Budgets
  E. Amazon Elastic Block Store (Amazon EBS)
  A. Security groups
  C. Network access control list (network ACL)

  ---

  Explanation

  Security groups and network access control lists (network ACLs) are two AWS network services or features that allow CIDR block notation when providing an IP address range. Security groups act as a firewall for associated Amazon EC2 instances, controlling both inbound and outbound traffic at the instance level. Network ACLs act as a firewall for associated subnets, controlling both inbound and outbound traffic at the subnet level. Both security groups and network ACLs use CIDR block notation to specify the IP address ranges that are allowed or denied

• Question 190:

  Which AWS service or feature gives users the ability to capture information about network traffic in a VPC?

  A. VPC Flow Logs
  B. Amazon Inspector
  C. VPC route tables
  D. AWS CloudTrail
  A. VPC Flow Logs

  ---

  Explanation

  VPC Flow Logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC. Flow log data can be published to Amazon CloudWatch Logs, Amazon S3, or Amazon Kinesis Data Firehose. You can use VPC Flow Logs to diagnose network issues, monitor traffic patterns, detect security anomalies, and comply with auditing requirements.

  References: Logging IP traffic using VPC Flow Logs - Amazon Virtual Private Cloud, New VPC Traffic Mirroring - Capturandp; Inspect Network Traffic | AWS News Blog