Pass AWS Certified Cloud Practitioner CLF-C02 in Just 3 Days – Stress-Free, No Study Needed!
Have questions? Contact us directly on WhatsApp for quick support!
A company hosts an intranet web application on Amazon EC2 instances behind an Application Load Balancer (ALB). Currently, users authenticate to the application against an internal user database.
The company needs to authenticate users to the application by using an existing AWS Directory Service for Microsoft Active Directory directory. All users with accounts in the directory must have access to the application.
Which solution will meet these requirements?
- A. Create a new app client in the directory. Create a listener rule for the ALB. Specify the authenticate-oidc action for the listener rule. Configure the listener rule with the appropriate issuer, client ID and secret, and endpoint details for the Active Directory service. Configure the new app client with the callback URL that the ALB provides.
- B. Configure an Amazon Cognito user pool. Configure the user pool with a federated identity provider (ldP) that has metadata from the directory. Create an app client. Associate the app client with the user pool. Create a listener rule for the ALSpecify the authenticate-cognito action for the listener rule. Configure the listener rule to use the user pool and app client.
- C. Add the directory as a new IAM identity provider (ldP). Create a new IAM role that has an entity type of SAML 2.0 federation. Configure a role policy that allows access to the ALB. Configure the new role as the default authenticated user role for the ldP. Create a listener rule for the ALB. Specify the authenticate-oidc action for the listener rule.
- D. Enable AWS IAM Identity Center (AWS Single Sign-On). Configure the directory as an external identity provider (ldP) that uses SAML. Use the automatic provisioning method. Create a new IAM role that has an entity type of SAML 2.0 federation. Configure a role policy that allows access to the ALB. Attach the new role to all groups. Create a listener rule for the ALB. Specify the authenticate-cognito action for the listener rule.
Which benefit of cloud computing gives a company the ability to deploy applications to users all over the world through a network of AWS Regions, Availability Zones, and edge locations?
- A. Economy of scale
- B. Global reach
- C. Agility
- D. High availability
Which AWS service makes it easier to monitor and troubleshoot application logs and cloud resources?
- A. Amazon EC2
- B. AWS Identity and Access Management (IAM)
- C. Amazon CloudWatch
- D. AWS CloudTrail
Which AWS service uses AWS Compute Optimizer to provide sizing recommendations based on workload metrics?
- A. Amazon EC2
- B. Amazon RDS
- C. Amazon Lightsail
- D. AWS Step Functions
Which AWS service will help a company plan a migration to AWS by collecting the configuration, usage, and behavior data of on-premises data centers?
- A. AWS Resource Groups
- B. AWS Application Discovery Service
- C. AWS Service Catalog
- D. AWS Systems Manager
Which AWS service uses a combination of publishers and subscribers?
- A. AWS Lambda
- B. Amazon Simple Notification Service (Amazon SNS)
- C. Amazon CloudWatch
- D. AWS CloudFormation
A company is in the early stages of planning a migration to AWS. The company wants to obtain the monthly predicted total AWS cost of ownership for future Amazon EC2 instances and associated storage.
Which AWS service or tool should the company use to meet these requirements?
- A. AWS Pricing Calculator
- B. AWS Compute Optimizer
- C. AWS Trusted Advisor
- D. AWS Application Migration Service
Which AWS service or tool will monitor AWS resources and applications in real time?
- A. AWS Trusted Advisor
- B. Amazon CloudWatch
- C. AWS CloudTrail
- D. AWS Cost Explorer
Which AWS Cloud Adoption Framework (AWS CAF) capability belongs to the business perspective?
- A. Program and project management
- B. Data science
- C. Observability
- D. Change and release management
Which AWS resource can help a company reduce its costs in exchange for a usage commitment when using Amazon EC2 instances?
- A. Compute Savings Plans
- B. Auto Scaling group
- C. On-Demand Instance
- D. EC2 instance store