Amazon CLF-C02 Online Practice Questions and Exam Preparation

Amazon CLF-C02 Online Questions & Answers

• Question 701:

  A company is assessing its AWS Business Support plan to determine if the plan still meets the company's needs. The company is considering switching to AWS Enterprise Support.

  Which additional benefit will the company receive with AWS Enterprise Support?

  A. A full set of AWS Trusted Advisor checks
  B. Phone, email, and chat access to cloud support engineers 24 hours a day, 7 days a week
  C. A designated technical account manager (TAM) to assist in monitoring and optimization
  D. A consultative review and architecture guidance for the company's applications
  C. A designated technical account manager (TAM) to assist in monitoring and optimization

  ---

  Explanation

  The additional benefit that the company will receive with AWS Enterprise Support is

  C. A designated technical account manager (TAM) to assist in monitoring and optimization. A TAM is a dedicated point of contact who works with the customer to understand their use cases, applications, and goals, and provides proactive guidance and best practices to help them optimize their AWS environment. A TAM also helps the customer with case management, escalations, service updates, and feature requests12. A full set of AWS Trusted Advisor checks is available for customers with Business, Enterprise On-Ramp, or Enterprise Support plans1. Phone, email, and chat access to cloud support engineers 24/7 is available for customers with Business, Enterprise On-Ramp, or Enterprise Support plans1. A consultative review and architecture guidance for the company's applications is available for customers with Enterprise On-Ramp or Enterprise Support plans1. Therefore, these benefits are not exclusive to AWS Enterprise Support.

  1: AWS Support Plan Comparison | Developer, Business, Enterprise ...

• Question 702:

  A company hosts an application on multiple Amazon EC2 instances. The application uses Amazon Simple Notification Service (Amazon SNS) to send messages. Which AWS service or feature will give the application permission to access required AWS services?

  A. AWS Certificate Manager (ACM)
  B. IAM roles
  C. AWS Security Hub
  D. Amazon GuardDuty
  B. IAM roles

  ---

  Explanation

• Question 703:

  A company wants to establish a security layer in its VPC that will act as a firewall to control subnet traffic.

  Which AWS service or feature will meet this requirement?

  A. Routing tables
  B. Network access control lists (network ACLs)
  C. Security groups
  D. Amazon GuardDuty
  B. Network access control lists (network ACLs)

  ---

  Explanation

  Security groups are tied to an instance whereas Network ACLs are tied to the subnet.

  Network ACLs are applicable at the subnet level, so any instance in the subnet with an associated NACL will follow the rules of NACL. That’s not the case with security groups, security groups have to be assigned explicitly to the instance.

• Question 704:

  A company wants to launch its web application in a second AWS Region. The company needs to determine which services must be regionally configured for this launch.

  Which AWS services can be configured at the Region level? (Select TWO.)

  A. Amazon EC2
  B. Amazon Route 53
  C. Amazon CloudFront
  D. AWS WAF
  E. Amazon DynamoDB
  B. Amazon Route 53
  D. AWS WAF

  ---

  Explanation

  Amazon Route 53 and AWS WAF are AWS services that can be configured at the Region level. Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service that lets you register domain names, route traffic to resources, and check the health of your resources. AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits that may affect availability, compromise security, or consume excessive resources. Amazon EC2, Amazon CloudFront, and Amazon DynamoDB are AWS services that can be configured at the global level or the Availability Zone level .

• Question 705:

  A company plans to migrate its on-premises workload to AWS. Before the migration, the company needs to estimate its future AWS service costs.

  Which AWS service or tool should the company use to meet this requirement?

  A. AWS Trusted Advisor
  B. AWS Budgets
  C. AWS Pricing Calculator
  D. AWS Cost Explorer
  C. AWS Pricing Calculator

  ---

  Explanation

  AWS Pricing Calculator is the AWS service or tool that the company should use to estimate its future AWS service costs before the migration. AWS Pricing Calculator is a web-based tool that allows the company to create cost estimates for various AWS services and scenarios. AWS Pricing Calculator helps the company to compare the costs of running the workload on premises versus on AWS, and to optimize the costs by choosing the best options for the workload. AWS Pricing Calculator also provides a detailed breakdown of the cost components and a downloadable report. For more information, see [AWS Pricing Calculator] and [Getting Started with AWS Pricing Calculator].

• Question 706:

  An ecommerce company wants to use Amazon EC2 Auto Scaling to add and remove EC2 instances based on CPU utilization.

  Which AWS service or feature can initiate an Amazon EC2 Auto Scaling action to achieve this goal?

  A. Amazon Simple Queue Service (Amazon SQS)
  B. Amazon Simple Notification Service (Amazon SNS)
  C. AWS Systems Manager
  D. Amazon CloudWatch alarm
  D. Amazon CloudWatch alarm

  ---

  Explanation

  Amazon CloudWatch alarm is an AWS service or feature that can initiate an Amazon EC2 Auto Scaling action based on CPU utilization. Amazon CloudWatch is a monitoring and observability service that collects and tracks metrics, logs, events, and alarms for your AWS resources and applications. Amazon CloudWatch alarms are actions that you can configure to send notifications or automatically make changes to the resources you are monitoring based on rules that you define67. Amazon EC2 Auto Scaling is a service that helps you maintain application availability and allows you to automatically add or remove EC2 instances according to definable conditions. You can create dynamic scaling policies that track a specific CloudWatch metric, such as CPU utilization, and define what action to take when the associated CloudWatch alarm is in ALARM. When the policy is in effect, Amazon EC2 Auto Scaling adjusts the group's desired capacity up or down when the threshold of an alarm is breached.

• Question 707:

  Which AWS service can be used at no additional cost?

  A. Amazon SageMaker
  B. AWS Config
  C. AWS Organizations
  D. Amazon CloudWatch
  C. AWS Organizations

  ---

  Explanation

  AWS Organizations is a no-cost service that helps you centrally manage and govern your environment as you grow and scale your AWS resources. With AWS Organizations, you can create new AWS accounts, invite existing accounts to join your organization, and apply policies to groups of accounts for governance. While some features within AWS services incur additional costs, using AWS Organizations itself does not add any direct costs.

  A. Amazon SageMaker: Incorrect, as it is a fully managed service for building, training, and deploying machine learning models, and it is not free.

  B. AWS Config: Incorrect, as while it offers some free-tier usage, it generally incurs charges for recording and evaluating configuration changes.

  D. Amazon CloudWatch: Incorrect, as certain CloudWatch metrics, custom metrics, and alarms have associated costs beyond the free tier.

• Question 708:

  A company needs to block SOL injection attacks.

  Which AWS service or feature provides this functionality?

  A. AWS WAF
  B. Network ACLs
  C. Security groups
  D. AWS Trusted Advisor
  A. AWS WAF

  ---

  Explanation

  AWS WAF is a web application firewall that helps protect applications from SQL injection attacks and other common web exploits. By defining rules to block, allow, or monitor specific types of requests, AWS WAF provides an effective defense against SQL injection. Network ACLs and Security Groups provide network-level security but do not inspect web traffic for specific attack patterns like SQL injection.

• Question 709:

  A company wants to track the monthly cost and usage of all Amazon EC2 instances in a specific AWS environment. Which AWS service or tool will meet these requirements?

  A. AWS Cost Anomaly Detection
  B. AWS Budgets
  C. AWS Compute Optimizer
  D. AWS Trusted Advisor
  B. AWS Budgets

  ---

  Explanation

• Question 710:

  Which AWS benefit is demonstrated by on-demand technology services that enable companies to replace upfront fixed expenses with variable expenses?

  A. High availability
  B. Economies of scale
  C. Pay-as-you-go pricing
  D. Global reach
  C. Pay-as-you-go pricing

  ---

  Explanation

  Pay-as-you-go pricing is an AWS benefit that demonstrates the ability of users to replace upfront fixed expenses with variable expenses. With pay-as-you-go pricing, users only pay for the resources they consume, without any long-term contracts or commitments. This can lower the total cost of ownership and increase the return on investment. Pay-as-you-go pricing also provides flexibility and scalability, as users can adjust their resource usage according to their changing needs and demands. AWS Cloud Value FrameworkAWS Certified Cloud Practitioner - aws.amazon.com