Pass AWS Certified Cloud Practitioner CLF-C02 in Just 3 Days – Stress-Free, No Study Needed!
Have questions? Contact us directly on WhatsApp for quick support!
Which of the following are features of network ACLs as they are used in the AWS Cloud? (Choose two.)
- A. They are stateless.
- B. They are stateful.
- C. They evaluate all rules before allowing traffic.
- D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic.
- E. They operate at the instance level.
Which capabilities are in the platform perspective of the AWS Cloud Adoption Framework (AWS CAF)? (Choose two.)
- A. Performance and capacity management
- B. Data engineering
- C. Continuous integration and continuous delivery (CI/CD)
- D. Infrastructure protection
- E. Change and release management
According to the AWS shared responsibility model, the customer is responsible for applying the latest security updates and patches for which of the following?
- A. Amazon DynamoDB
- B. Amazon EC2 instances
- C. Amazon RDS instances
- D. Amazon S3
Which Amazon S3 storage class is MOST cost-effective for unknown access patterns?
- A. S3 Standard
- B. S3 Standard-Infrequent Access (S3 Standard-IA)
- C. S3 One Zone-Infrequent Access (S3 One Zone-IA)
- D. S3 Intelligent-Tiering
Which options are AWS Cloud Adoption Framework (AWS CAF) security perspective capabilities? (Choose two.)
- A. Observability
- B. Incident and problem management
- C. Incident response
- D. Infrastructure protection
- E. Availability and continuity
A company implements a containerized application by using Amazon Elastic Container Service (Amazon ECS) and Amazon API Gateway The application data is stored in Amazon Aurora databases and Amazon DynamoDB databases. The company automates infrastructure provisioning by using AWS CloudFormation. The company automates application deployment by using AWS CodePipeline.
A solutions architect needs to implement a disaster recovery (DR) strategy that meets an RPO of 2 hours and an RTO of 4 hours.
Which solution will meet these requirements MOST cost-effectively?
- A. Set up an Aurora global database and DynamoDB global tables to replicate the databases to a secondary AWS Region. In the primary Region and in the secondary Region, configure an API Gateway API with a Regional endpoint. Implement Amazon CloudFront with origin failover to route traffic to the secondary Region during a DR scenario.
- B. Use AWS Database Migration Service (AWS DMS), Amazon EventBridge, and AWS Lambda to replicate the Aurora databases to a secondary AWS Region. Use DynamoDB Streams, EventBridge. and Lambda to replicate the DynamoDB databases to the secondary Region. In the primary Region and in the secondary Region, configure an API Gateway API with a Regional endpoint. Implement Amazon Route 53 failover routing to switch traffic from the primary Region to the secondary Region.
- C. Use AWS Backup to create backups of the Aurora databases and the DynamoDB databases in a secondary AWS Region. In the primary Region and in the secondary Region, configure an API Gateway API with a Regional endpoint. Implement Amazon Route 53 failover routing to switch traffic from the primary Region to the secondary Region.
- D. Set up an Aurora global database and DynamoDB global tables to replicate the databases to a secondary AWS Region. In the primary Region and in the secondary Region, configure an API Gateway API with a Regional endpoint. Implement Amazon Route 53 failover routing to switch traffic from the primary Region to the secondary Region.
Who is responsible for managing IAM user access and secret keys according to the AWS shared responsibility model?
- A. IAM access and secret keys are static, so there is no need to rotate them.
- B. The customer is responsible for rotating keys.
- C. AWS will rotate the keys whenever required.
- D. The AWS Support team will rotate keys when requested by the customer.
A company needs to run a pre-installed third-party firewall on an Amazon EC2 instance.
Which AWS service or feature can provide this solution?
- A. Network ACLs
- B. Security groups
- C. AWS Marketplace
- D. AWS Trusted Advisor
Which AWS Cloud benefit gives a company the ability to quickly deploy cloud resources to access compute, storage, and database infrastructures in a matter of minutes?
- A. Elasticity
- B. Cost savings
- C. Agility
- D. Reliability
Which of the following is entirely the responsibility of AWS, according to the AWS shared responsibility model?
- A. Security awareness and training
- B. Development of an IAM password policy
- C. Patching of the guest operating system
- D. Physical and environmental controls