CompTIA CV0-003 Online Practice Questions and Exam Preparation

CompTIA CV0-003 Online Questions & Answers

• Question 431:

  An organization is deploying development, quality assurance, and production environments with equal numbers of IP addresses to the cloud. The IP address range provided is 10.168.0.0/24, and it needs to be terminated on a firewall. Which of the following IP subnets and firewall IPS should be used for one of the environments?

  A. 10.168.0.0/26 and 10.168.0.63
  B. 10.168.0.64/26 and 10.168.0.64
  C. 10.168.0.128/26 and 10.168.0.190
  D. 10.168.0.128/26 and 10.168.0.194
  E. 10.168.0.192/26 and 10.168.0.191
  A. 10.168.0.0/26 and 10.168.0.63

  ---

  Explanation

  The IP address range 10.168.0.0/24 can be divided into four equal subnets of 64 addresses each by using a /26 mask. The subnets are 10.168.0.0/26, 10.168.0.64/26, 10.168.0.128/26, and 10.168.0.192/26. The last address in each subnet

  is the broadcast address, and the second-last address can be used as the gateway address for that subnet. Therefore, one of the possible subnets and firewall IPs for one of the environments is 10.168.0.0/26 and 10.168.0.63.

  References: [CompTIA Cloud+ Study Guide], page 178.

• Question 432:

  An organization has the following requirements that need to be met when implementing cloud services:

  1.SSO to cloud infrastructure

  2.On-premises directory service

  3.RBAC for IT staff

  Which of the following cloud models would meet these requirements?

  A. Public
  B. Community
  C. Hybrid
  D. Multitenant
  C. Hybrid

  ---

  Explanation

  A hybrid cloud is a type of cloud deployment model that combines two or more different types of clouds, such as public, private, or community clouds, into a single integrated environment. A hybrid cloud can meet the requirements for implementing cloud services with SSO to cloud infrastructure, on-premises directory service, and RBAC for IT staff, as it can provide flexibility, scalability, and security for cloud-based and on-premises resources. A hybrid cloud can also enable seamless and secure access to cloud infrastructure using SSO with directory service federation, as well as granular and consistent control over IT staff permissions using RBAC across different cloud environments.

  References: CompTIA Cloud+ Certification Exam Objectives, page 8, section 1.2

• Question 433:

  A systems administrator is informed that a database server containing PHI and PII is unencrypted. The environment does not support VM encryption, nor does it have a key management system. The server needs to be able to be rebooted for patching without manual intervention.

  Which of the following will BEST resolve this issue?

  A. Ensure all database queries are encrypted
  B. Create an IPSec tunnel between the database server and its clients
  C. Enable protocol encryption between the storage and the hypervisor
  D. Enable volume encryption on the storage
  E. Enable OS encryption
  D. Enable volume encryption on the storage

  ---

  Explanation

  Volume encryption is a type of encryption that protects data at the storage level by encrypting an entire disk or partition. Volume encryption can provide strong security for data at rest, as it prevents unauthorized access to the data even if the storage device is lost, stolen, or compromised. Volume encryption can also support automatic booting without manual intervention, as it can use a pre-boot authentication mechanism that does not require user input. Enabling volume encryption on the storage is the best way to resolve the issue of having an unencrypted database server containing PHI and PII, as it can protect the sensitive data without relying on VM encryption or a key management system.

  References: CompTIA Cloud+ Certification Exam Objectives, page 14, section 2.7

• Question 434:

  A company is using an IaC deployment model to a public cloud IaaS. The automation runs partially and then fails to build a VM in the IaaS environment. Upon further assessment, the connectivity to the IaaS is confirmed. Which of the following are the MOST likely causes of the failure? (Choose two.)

  A. Insufficient account balance
  B. Network settings
  C. Resource tagging
  D. API request limits
  E. Administrator access
  F. Inadequate storage
  B. Network settings
  E. Administrator access

  ---

  Explanation

  https://www.ibm.com/topics/iaas-paas-saas

• Question 435:

  The sales department is preparing to launch a high-demand product for purchase through the company's online store. The senior engineer asks the junior engineer to review the sales cloud resources to plan for a surge in online traffic:

  

  Given the metrics in the table above, which of the following resources should be adjusted to plan for future growth?

  A. Propose additional memory for cluster 1.
  B. Propose additional storage for cluster 1.
  C. Propose additional guests for cluster 2.
  D. Propose additional hosts for cluster 2.
  A. Propose additional memory for cluster 1.

  ---

  Explanation

• Question 436:

  A systems administrator has been asked to restore a VM from backup without changing the current VM's operating state. Which of the following restoration methods would BEST fit this scenario?

  A. Alternate location
  B. Rolling
  C. Storage live migration
  D. In-place
  D. In-place

  ---

  Explanation

• Question 437:

  A cloud administrator recently misconfigured the permission policy on a credential vault by granting public access to it. Which of the following should the administrator do? (Select two).

  A. Reduce the system resources.
  B. Delete the affected users.
  C. Revoke the misconfigured permission policy.
  D. Scan the systems for vulnerabilities.
  E. Change the affected credentials.
  F. Block public access to the application.
  C. Revoke the misconfigured permission policy.
  E. Change the affected credentials.

  ---

  Explanation

  C. Revoke the misconfigured permission policy: Reverting the incorrect policy ensures no further public access.

  E. Change the affected credentials: If credentials were exposed, they must be updated to prevent unauthorized use.

  References:

  CompTIA Cloud+ CV0-003 Study Guide Chapter 8: Data Security and Compliance Controls.

• Question 438:

  A large pharmaceutical company needs to ensure it is in compliance with the following requirements:

  1.An application must run on its own virtual machine.

  2.The hardware the application is hosted on does not change.

  Which of the following will BEST ensure compliance?

  A. Containers
  B. A firewall
  C. Affinity rules
  D. Load balancers
  C. Affinity rules

  ---

  Explanation

  https://www.cleo.com/blog/knowledge-base-on-premise-vs-cloud

• Question 439:

  A systems administrator is troubleshooting a VDI deployment that is used to run high- frame-rate rendering. Users are reporting frequent application crashes. After running a benchmark, the administrator discovers the following:

  

  Which of the following should the administrator do to resolve this issue?

  A. Configure the GPU to run in compute mode.
  B. Allocate more RAM in the VM template.
  C. Select a higher vGPU profile.
  D. Configure the GPU to run in graphics mode.
  C. Select a higher vGPU profile.

  ---

  Explanation

  The benchmark results show that the video RAM utilization is at 99%, which is likely causing the application crashes. Video RAM is used to store graphics data and textures that are processed by the GPU. Selecting a higher vGPU profile can help allocate more video RAM to the virtual machines, which can help resolve this issue. A vGPU profile is a predefined configuration that specifies the amount of video RAM, the number of display heads, and the maximum resolution that a virtual machine can use. By selecting a higher vGPU profile, the administrator can increase the performance and stability of the high- frame-rate rendering application.

  References: [CompTIA Cloud+ CV0-003 Study Guide], Chapter 4, Objective 4.2: Given a scenario, troubleshoot common virtualization issues.

• Question 440:

  A company has applications that need to remain available in the event of the data center being unavailable. The company's cloud architect needs to find a solution to maintain business continuity. Which of following should the company

  implement?

  A. A DR solution for the application between different data centers
  B. An off-site backup solution with a third-party vendor
  C. laC techniques to recreate the system at a new provider
  D. An HA solution for the application inside the data center
  A. A DR solution for the application between different data centers

  ---

  Explanation

  A disaster recovery (DR) solution is a set of policies, procedures, and tools that enable an organization to restore or continue its critical functions in the event of a natural or human-induced disaster. A DR solution for the application between different data centers means that the application is replicated or backed up to another location that is geographically separated from the primary data center. This way, if the primary data center becomes unavailable due to a power outage, fire, flood, cyberattack, or any other cause, the application can be switched over to the secondary data center and resume its operations with minimal downtime and data loss. This solution ensures business continuity and high availability for the application and its users.

  References: CompTIA Cloud+ CV0- 003 Study Guide, Chapter 5: Maintaining a Cloud Environment, page 221-222; Disaster recovery planning guide.