Amazon CLF-C02 Online Practice Questions and Exam Preparation

Amazon CLF-C02 Online Questions & Answers

• Question 501:

  Which of the following can be used to identity a specific user who slopped an Amazon EC2 instance?

  A. AWS CloudTrail
  B. Amazon inspector
  C. Amazon CloudWatch
  D. VPC Flow Logs
  A. AWS CloudTrail

  ---

  Explanation

• Question 502:

  Which AWS service is a fully hosted version control service?

  A. AWS CodeCommit
  B. AWS CodeBuild
  C. AWS CodeDeploy
  D. AWS CodeStar
  A. AWS CodeCommit

  ---

  Explanation

  CodeCommit is a secure, highly scalable, managed source control service that hosts private Git repositories. CodeCommit eliminates the need for you to manage your own source control system or worry about scaling its infrastructure. You can use CodeCommit to store anything from code to binaries. It supports the standard functionality of Git, so it works seamlessly with your existing Git-based tools.

• Question 503:

  Which AWS service or feature captures information about the network traffic to and from an Amazon EC2 instance?

  A. VPC Reachability Analyzer
  B. Amazon Athena
  C. VPC Flow Logs
  D. AWS X-Ray
  C. VPC Flow Logs

  ---

  Explanation

  The correct answer is C because VPC Flow Logs is an AWS service or feature that captures information about the network traffic to and from an Amazon EC2 instance. VPC Flow Logs is a feature that enables customers to capture information about the IP traffic going to and from network interfaces in their VPC. VPC Flow Logs can help customers to monitor and troubleshoot connectivity issues, such as traffic not reaching an instance or traffic being rejected by a security group. The other options are incorrect because they are not AWS services or features that capture information about the network traffic to and from an Amazon EC2 instance. VPC Reachability Analyzer is an AWS service or feature that enables customers to perform connectivity testing between resources in their VPC and identify configuration issues that prevent connectivity. Amazon Athena is an AWS service that enables customers to query data stored in Amazon S3 using standard SQL. AWS X-Ray is an AWS service that enables customers to analyze and debug distributed applications, such as those built using a microservices architecture.

  VPC Flow Logs

• Question 504:

  Which tasks are the customer's responsibility, according to the AWS shared responsibility model? (Choose two.)

  A. Establish the global infrastructure.
  B. Perform client-side data encryption.
  C. Configure IAM credentials.
  D. Secure edge locations.
  E. Patch Amazon RDS DB instances.
  B. Perform client-side data encryption.
  C. Configure IAM credentials.

  ---

  Explanation

• Question 505:

  A company has moved all its infrastructure to the AWS Cloud. To plan ahead for each quarter, the finance team wants to track the cost and usage data of all resources from previous months. The finance team wants to automatically generate reports that contains the data.

  Which AWS service or feature should the finance team use to meet these requirements?

  A. Amazon Detective
  B. AWS Pricing Calculator
  C. AWS Budgets
  D. AWS Savings Plans
  C. AWS Budgets

  ---

  Explanation

  AWS Budgets allows users to set custom cost and usage budgets and receive notifications when they exceed their thresholds. It provides detailed reports on cost and usage data for the past and current months, enabling the finance team to

  track and analyze spending.

  AWS Budgets can automatically generate cost and usage reports, which help the finance team plan ahead for each quarter based on historical data.

  Why other options are not suitable:

  Amazon Detective: A security service for analyzing and investigating AWS account activity for security purposes, not for cost tracking.

  AWS Pricing Calculator: A tool to estimate costs based on expected usage, not for tracking actual past usage.

  AWS Savings Plans: An offering to save costs on AWS usage, but it does not provide cost tracking or reporting features.

• Question 506:

  A company needs a repository that stores source code. The company needs a way to update the running software when the code changes.

  Which combination of AWS services will meet these requirements? (Select TWO.)

  A. AWS CodeCommit
  B. AWS CodeDeploy
  C. Amazon DynamoDB
  D. Amazon S3
  E. Amazon Elastic Container Service (Amazon ECS)
  A. AWS CodeCommit
  B. AWS CodeDeploy

  ---

  Explanation

  A and B are correct because AWS CodeCommit is the AWS service that provides a fully managed source control service that hosts secure Git-based repositories1, and AWS CodeDeploy is the AWS service that automates code deployments to any instance, including Amazon EC2 instances and servers running on-premises2. These two services can be used together to store source code and update the running software when the code changes. C is incorrect because Amazon DynamoDB is the AWS service that provides a fully managed NoSQL database service that supports key-value and document data models3. It is not related to storing source code or updating software. D is incorrect because Amazon S3 is the AWS service that provides object storage through a web service interface4. It can be used to store source code, but it does not provide source control features or update software. E is incorrect because Amazon Elastic Container Service (Amazon ECS) is the AWS service that allows users to run, scale, and secure Docker container applications. It can be used to deploy containerized software, but it does not store source code or update software.

• Question 507:

  Which of the following are advantages of moving to the AWS Cloud? (Select TWO.)

  A. The ability to turn over the responsibility for all security to AWS.
  B. The ability to use the pay-as-you-go model.
  C. The ability to have full control over the physical infrastructure.
  D. No longer having to guess what capacity will be required.
  E. No longer worrying about users access controls.
  B. The ability to use the pay-as-you-go model.
  D. No longer having to guess what capacity will be required.

  ---

  Explanation

  The advantages of moving to the AWS Cloud are the ability to use the pay- as-you-go model and no longer having to guess what capacity will be required. The pay-as- you-go model allows the user to pay only for the resources they use, without any upfront or long-term commitments. This reduces the cost and risk of over-provisioning or under- provisioning resources. No longer having to guess what capacity will be required means that the user can scale their resources up or down according to the demand, without wasting money on idle resources or losing customers due to insufficient capacity4.

• Question 508:

  A company needs to invoke an AWS Step Functions workflow each time an Amazon EC2 instance state changes to RUNNING.

  Which AWS service can the company use to meet this requirement?

  A. Amazon SageMaker
  B. Amazon Connect
  C. Amazon EventBridge
  D. AWS Fargate
  C. Amazon EventBridge

  ---

  Explanation

• Question 509:

  Which AWS service should users use to learn about AWS service availability and operations?

  A. Amazon EventBridge
  B. AWS Service Catalog
  C. AWS Control Tower
  D. AWS Health Dashboard
  D. AWS Health Dashboard

  ---

  Explanation

• Question 510:

  Treating infrastructure as code in the AWS Cloud allows users to:

  A. automate migration of on-premises hardware to AWS data centers.
  B. let a third party automate an audit of the AWS infrastructure.
  C. turn over application code to AWS so it can run on the AWS infrastructure.
  D. automate the infrastructure provisioning process.
  D. automate the infrastructure provisioning process.

  ---

  Explanation