0% found this document useful (0 votes)

430 views180 pages

CLF-C02 Examtopic

2023.09

Uploaded by

theresawym

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

430 views180 pages

CLF-C02 Examtopic

2023.09

Uploaded by

theresawym

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 180

*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

 Custom View Settings

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 1/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Topic 1 - Exam A

Question #1 Topic 1

A company plans to use an Amazon Snowball Edge device to transfer files to the AWS Cloud.

Which activities related to a Snowball Edge device are available to the company at no cost?

A. Use of the Snowball Edge appliance for a 10-day period

B. The transfer of data out of Amazon S3 and to the Snowball Edge appliance

C. The transfer of data from the Snowball Edge appliance into Amazon S3

D. Daily use of the Snowball Edge appliance after 10 days

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 3 days ago

Selected Answer: C

C looks correct
upvoted 1 times

  Krajkraj 2 weeks, 1 day ago

did you get all questions from this questionbank?
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Data transfer IN to Amazon S3 is $0.00 per GB (except for small files as explained below).
Data transfer OUT of Amazon S3 is priced by region.

https://aws.amazon.com/snowball/pricing/
upvoted 3 times

  GSMUTTA 2 weeks, 5 days ago

So, the answer should be B,C right?
upvoted 2 times

  Olixpin 3 weeks, 3 days ago

The transfer of data IN and OUT of Amazon S3 is FREE so far you are within the same REGION
upvoted 1 times

  ShivaNagarajan 1 month ago

Selected Answer: C

Its free to transfer data from SnowBall family of devices to a S3

upvoted 3 times

  Ailil 1 month, 1 week ago

Selected Answer: C

https://aws.amazon.com/snowball/pricing/

Data transfer IN to Amazon S3 is $0.00 per GB (free).

upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 2/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #2 Topic 1

A company has deployed applications on Amazon EC2 instances. The company needs to assess application vulnerabilities and must identify

infrastructure deployments that do not meet best practices.

Which AWS service can the company use to meet these requirements?

A. AWS Trusted Advisor

B. Amazon Inspector

C. AWS Config

D. Amazon GuardDuty

Correct Answer: B

Community vote distribution

B (100%)

  Olixpin 3 weeks, 3 days ago

Amazon Inspector is a Vulnerability Management Service which helps you to scan, assess risk score, identify high impact findings with dashboards.
upvoted 1 times

  Simonwub 3 weeks, 4 days ago

answer B: Amazon Inspector is an automated vulnerability management service that helps improve the security and compliance of applications
deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices. After
performing an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity.
upvoted 2 times

  Passexam4sure_com 1 month ago

Selected Answer: B

Amazon Inspector
upvoted 2 times

  SanShannu 1 month ago

Selected Answer: B

https://aws.amazon.com/inspector/
Software Vulnerability / Application Vulnerability
upvoted 4 times

  aragon_saa 1 month ago

AAAAAAAAAA
upvoted 1 times

  cnoodle 4 weeks, 1 day ago

it's B, especially when you see application vulnerabilities
upvoted 1 times

  inkedia3 1 month ago

It's B bro
upvoted 4 times

  Ailil 1 month, 1 week ago

Inspector is suitable to assess application vulnerabilities, but I think Trusted Advisor is the suitable tool for identify infrastructure deployments that
do not meet best practices
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 3/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #3 Topic 1

A company has a centralized group of users with large file storage requirements that have exceeded the space available on premises. The

company wants to extend its file storage capabilities for this group while retaining the performance benefit of sharing content locally.

What is the MOST operationally efficient AWS solution for this scenario?

A. Create an Amazon S3 bucket for each user. Mount each bucket by using an S3 file system mounting utility.

B. Configure and deploy an AWS Storage Gateway file gateway. Connect each user’s workstation to the file gateway.

C. Move each user’s working environment to Amazon WorkSpaces. Set up an Amazon WorkDocs account for each user.

D. Deploy an Amazon EC2 instance and attach an Amazon Elastic Block Store (Amazon EBS) Provisioned IOPS volume. Share the EBS volume

directly with the users.

Correct Answer: B

Community vote distribution

B (100%)

  GSMUTTA 2 weeks, 5 days ago

Looks like B is correct
upvoted 1 times

  SimonQY 3 weeks, 1 day ago

B is correct
AWS Storage Gateway: Connect [on premises] with [AWS S3]
file gateway:one of the AWS Storage Gateway's interface
upvoted 1 times

  kessio 3 weeks, 4 days ago

B is correct
upvoted 1 times

  Rotimija 1 month ago

B is correct
upvoted 2 times

  ShivaNagarajan 1 month ago

Selected Answer: B

AWS Storage Gateway is a hybrid storage service

upvoted 2 times

  ShivaNagarajan 1 month ago

AWS Storage Gateway is a hybrid storage service
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 4/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #4 Topic 1

According to security best practices, how should an Amazon EC2 instance be given access to an Amazon S3 bucket?

A. Hard code an IAM user’s secret key and access key directly in the application, and upload the file.

B. Store the IAM user’s secret key and access key in a text file on the EC2 instance, read the keys, then upload the file.

C. Have the EC2 instance assume a role to obtain the privileges to upload the file.

D. Modify the S3 bucket policy so that any service can upload to it at any time.

Correct Answer: C

Community vote distribution

C (83%) D (17%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer is C.
upvoted 1 times

  ASDFDSAFDFA 3 weeks ago

Selected Answer: C

C obviously
upvoted 1 times

  parrtner73 1 month ago

Selected Answer: C

C is the correct one

upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

You definitely need a role to access the S3 bucket as best practice!

https://repost.aws/knowledge-center/ec2-instance-access-s3-bucket#
upvoted 2 times

  Rotimija 1 month ago

C is correct
upvoted 2 times

  ShivaNagarajan 1 month ago

Selected Answer: D

https://repost.aws/knowledge-center/ec2-instance-access-s3-bucket#
upvoted 1 times

  Anyio 1 month ago

You mean C dude!
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 5/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #5 Topic 1

Which option is a customer responsibility when using Amazon DynamoDB under the AWS Shared Responsibility Model?

A. Physical security of DynamoDB

B. Patching of DynamoDB

C. Access to DynamoDB tables

D. Encryption of data at rest in DynamoDB

Correct Answer: C

Community vote distribution

C (68%) D (32%)

  SamSan 1 day ago

Answer C.

DynamoDB implements its encryption in:

Data at rest
Data in transit
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C. Acces to DynamoDB tables.

upvoted 2 times

  JitenV 2 weeks, 6 days ago

C. Access to DynamoDB tables
upvoted 1 times

  SimonQY 3 weeks, 1 day ago

Selected Answer: C

DynamoDB : fully managed Data service , encrypts data by default

Amazon RDS : encrypts data when user select it
upvoted 3 times

  AdrianMonter26 4 weeks ago

Selected Answer: C

It must be c, Dynamo encrypts data by default

upvoted 1 times

  Hewad 4 weeks, 1 day ago

C. Access to DynamoDB tables

Under the AWS Shared Responsibility Model, controlling and managing access to AWS services, including Amazon DynamoDB tables, is a customer
responsibility. While AWS takes care of the physical infrastructure, patching, and encryption of data at rest in DynamoDB, customers are
responsible for setting up proper access controls, authentication, and authorization to protect their data and resources
upvoted 2 times

  Mohammed_Kamal 1 month ago

Selected Answer: C

if people say it is D, so this mean aws responsible for access the table !? no sense + data is encrypted at rest by default
upvoted 3 times

  NayeraB 1 month ago

Selected Answer: C

It's C as you get to set your own IAM policy to allow access to a specific DynamoDB table, while encryption of data at rest (D) is a built-in feature in
DynamoDB
upvoted 2 times

  goushaa 1 month ago

Under the AWS Shared Responsibility Model, the customer's responsibilities when using Amazon DynamoDB include:

C. Access to DynamoDB tables

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 6/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

The customer is responsible for managing and controlling access to their DynamoDB tables. This includes defining appropriate permissions, user
access control, and authentication mechanisms to ensure that only authorized users or services can access the tables.

The other options are not customer responsibilities:

D. Encryption of data at rest in DynamoDB: AWS provides encryption of data at rest as a built-in feature for DynamoDB. The customer can enable
encryption for their tables, but AWS handles the actual implementation and management of the encryption process.

Therefore, the correct customer responsibility is C. Access to DynamoDB tables.

upvoted 3 times

  parrtner73 1 month ago

Selected Answer: D

Encryption is under customer responsibility.

https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 2 times

  juanbarrerd 1 month ago

Selected Answer: C

DynamoDB encrypts data at rest by default. https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html

upvoted 3 times

  juanbarrerd 1 month ago

DynamoDB encrypts data at rest by default. https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html
upvoted 2 times

  Anyio 1 month ago

Selected Answer: D

The correct answer is D. Encryption of data at rest in DynamoDB.

https://aws.amazon.com/compliance/shared-responsibility-
model/#:~:text=Customers%20are%20responsible%20for%20managing,also%20extends%20to%20IT%20controls.
upvoted 2 times

  Passexam4sure_com 1 month ago

Selected Answer: D

Encryption of data at rest in DynamoDB

upvoted 1 times

  SherifAbdelHameed 1 month ago

Selected Answer: D

Customers are responsible for managing their data (including encryption options), classifying their assets, and using IAM tools to apply the
appropriate permissions.
upvoted 3 times

  ShivaNagarajan 1 month ago

Selected Answer: C

Access to DB tables
upvoted 3 times

  inkedia3 1 month ago

This cannot be a responsibility.
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 7/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #6 Topic 1

Which option is a perspective that includes foundational capabilities of the AWS Cloud Adoption Framework (AWS CAF)?

A. Sustainability

B. Performance efficiency

C. Governance

D. Reliability

Correct Answer: C

Community vote distribution

C (100%)

  Snap67 1 week, 1 day ago

Selected Answer: C

Sorry, mixed up Cloud Adapter Framework (CAF) and Well Architected.

upvoted 1 times

  Snap67 3 weeks, 1 day ago

This question is outdated since document revision October 3, 2023
https://docs.aws.amazon.com/wellarchitected/latest/framework/document-revisions.html
Pillars:
- Operational excellence
- Security
- Reliability
- Performance efficiency
- Cost optimization
- Sustainability

"AWS CAF perspectives and foundational capabilities" is not used anymore.

upvoted 4 times

  Anyio 1 month ago

Selected Answer: C

C is the correct answer!

The 6 AWS CAF perspectives are: Business, People, Governance, Platform, Security and Operations.
https://abhi0751.medium.com/aws-cloud-adoption-framework-aws-caf-a512b89dbcba
upvoted 3 times

  Ailil 1 month, 1 week ago

Selected Answer: C

Only the c response perspective.

https://docs.aws.amazon.com/whitepapers/latest/aws-caf-governance-perspective/appendix-aws-caf-perspectives-and-foundational-
capabilities.html
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 8/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #7 Topic 1

A company is running and managing its own Docker environment on Amazon EC2 instances. The company wants an alternative to help manage

cluster size, scheduling, and environment maintenance.

Which AWS service meets these requirements?

A. AWS Lambda

B. Amazon RDS

C. AWS Fargate

D. Amazon Athena

Correct Answer: C

Community vote distribution

C (100%)

  Mefre7 6 days, 8 hours ago

Answer is c
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer is C. AWS Fargate.

upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

C is the correct answer!

AWS Fargate is a serverless, pay-as-you-go compute engine that lets you focus on building applications without managing servers. AWS Fargate is
compatible with both Amazon Elastic Container Service (Amazon ECS) and Amazon Elastic Kubernetes Service (Amazon EKS).
https://aws.amazon.com/fargate/
upvoted 2 times

  liubomir4o 1 month ago

C -Fargate https://aws.amazon.com/fargate/
upvoted 1 times

  aragon_saa 1 month ago

C
https://aws.amazon.com/ko/fargate/?nc2=type_a
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 9/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #8 Topic 1

A company wants to run a NoSQL database on Amazon EC2 instances.

Which task is the responsibility of AWS in this scenario?

A. Update the guest operating system of the EC2 instances.

B. Maintain high availability at the database layer.

C. Patch the physical infrastructure that hosts the EC2 instances.

D. Configure the security group firewall.

Correct Answer: C

Community vote distribution

C (91%) 9%

  MiniYang 1 week, 4 days ago

I thought B and C both are correct answer .
If I had to choose only one answer, I would choose option B, which is to maintain high availability at the database layer. This is because, while AWS
is responsible for patching the physical infrastructure that hosts the EC2 instances, maintaining high availability at the database layer is a critical
task that requires specialized knowledge and expertise. AWS provides a range of services and features to help ensure high availability, such as
automatic failover, data replication, and load balancing, which are specifically designed to help customers run highly available databases on their
EC2 instances.
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer is C. Physical infrastructure.

upvoted 1 times

  AdrianMonter26 4 weeks ago

Selected Answer: C

A is incorrect because when we set up an instance of ec2 we choose the operating system.
B is incorrect because we are configuring and running the database on the ec2 instances so that would be our responsibility.
D is incorrect because the firewall rules are our job.
C is correct because the physical infrastructure where the ec2 instances run is amazon's responsibility
upvoted 3 times

  cnoodle 4 weeks, 1 day ago

Selected Answer: C

the physical infrastructure of AWS is something that has to be done by AWS.

upvoted 3 times

  Mohammed_Kamal 1 month ago

Selected Answer: C

No mention for DynamoDB. so we can't assume data is replicated across AZs

upvoted 1 times

  parrtner73 1 month ago

Selected Answer: C

https://pupuweb.com/answer-explained-which-task-responsibility-aws-run-nosql-database-amazon-ec2-instances/
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The answer is C. Patch the physical infrastructure that hosts the EC2 instances.
Guest operating system is always responsibility of customer and host of AWS.
https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 1 times

  inkedia3 1 month ago

Selected Answer: B

Since you running the NoSQL AWS is only responsible for maintaining high availability ..
upvoted 1 times

  Anyio 1 month ago

NoSQL database on Amazon EC2 instances. This is no DynamoDB but its a NoSQL Database in an EC2 instance. AWS has no business with what
you host on an Instance particularly third party software....The Answer is C.
https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 10/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

upvoted 3 times

  adminj1 1 month ago

Answer: B
upvoted 2 times

  NayeraB 1 month ago

AWS provides the underlying infrastructure, but ensuring high availability at the database layer, such as implementing replication, clustering, or
failover mechanisms, is typically the responsibility of the user. So answer is C
upvoted 2 times

  maymaythar68 5 days, 17 hours ago

Got the point with the right answer!
upvoted 1 times

Question #9 Topic 1

Which AWS services or tools can identify rightsizing opportunities for Amazon EC2 instances? (Choose two.)

A. AWS Cost Explorer

B. AWS Billing Conductor

C. Amazon CodeGuru

D. Amazon SageMaker

E. AWS Compute Optimizer

Correct Answer: AE

Community vote distribution

AE (100%)

  passgreenearth 1 week ago

Selected Answer: AE

The answer is AE
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: AE

Answers AE are correct.

upvoted 1 times

  GSMUTTA 2 weeks, 4 days ago

hmm... AE
upvoted 1 times

  Hamdos 4 weeks, 1 day ago

What is billing conductor?
upvoted 1 times

  Anyio 1 month ago

Selected Answer: AE

The answer is AE.

https://docs.aws.amazon.com/cost-management/latest/userguide/ce-rightsizing.html
https://aws.amazon.com/compute-optimizer/
upvoted 1 times

  inkedia3 1 month ago

Selected Answer: AE

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 11/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #10 Topic 1

Which of the following are benefits of using AWS Trusted Advisor? (Choose two.)

A. Providing high-performance container orchestration

B. Creating and rotating encryption keys

C. Detecting underutilized resources to save costs

D. Improving security by proactively monitoring the AWS environment

E. Implementing enforced tagging across AWS resources

Correct Answer: CD

Community vote distribution

CD (100%)

  isaphiltrick Highly Voted  1 month ago

C & D are correct.

Benefits of Trusted Advisor:

• Cost optimization - Trusted Advisor can help you save cost with actionable recommendations by analyzing usage, configuration and spend.
• Performance - Trusted Advisor can help improve the performance of your services with actionable recommendations by analyzing usage and
configuration.
• Security - Trusted Advisor can help improve the security of your AWS environment by suggesting foundational security best practices curated by
security experts.
• Fault tolerance - Trusted Advisor can help improve the reliability of your services.
• Service quotas - Service quotas are the maximum number of resources that you can create in an AWS account.

Reference: https://aws.amazon.com/premiumsupport/technology/trusted-advisor/
upvoted 5 times

  lunamuller Most Recent  2 weeks, 4 days ago

Selected Answer: CD

Answers CD are correct.

upvoted 1 times

  Anyio 1 month ago

Selected Answer: CD

Answer is CD.
Reference: https://aws.amazon.com/premiumsupport/technology/trusted-advisor/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 12/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #11 Topic 1

Which of the following is an advantage that users experience when they move on-premises workloads to the AWS Cloud?

A. Elimination of expenses for running and maintaining data centers

B. Price discounts that are identical to discounts from hardware providers

C. Distribution of all operational controls to AWS

D. Elimination of operational expenses

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 3 days ago

Selected Answer: A

A looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is correct.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

A. Elimination of expenses for running and maintaining data centers.

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  isaphiltrick 1 month ago

A is correct.

Reference: https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 13/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #12 Topic 1

A company wants to manage deployed IT services and govern its infrastructure as code (IaC) templates.

Which AWS service will meet this requirement?

A. AWS Resource Explorer

B. AWS Service Catalog

C. AWS Organizations

D. AWS Systems Manager

Correct Answer: B

Community vote distribution

B (73%) D (27%)

  Anyio Highly Voted  1 month ago

Selected Answer: B

The answer is B.

AWS Service Catalog lets you centrally manage your cloud resources to achieve governance at scale of your infrastructure as code (IaC) templates,
written in CloudFormation or Terraform configurations. With AWS Service Catalog, you can meet your compliance requirements while making sure
your customers can quickly deploy the cloud resources they need.
https://aws.amazon.com/servicecatalog/
upvoted 5 times

  lunamuller Most Recent  2 weeks, 4 days ago

Selected Answer: B

Answer B is correct.
upvoted 1 times

  parrtner73 1 month ago

Selected Answer: B

Key word is govern.

https://docs.aws.amazon.com/servicecatalog/latest/adminguide/introduction.html
upvoted 2 times

  aragon_saa 1 month ago

B
https://aws.amazon.com/ko/servicecatalog/?nc1=h_ls
upvoted 2 times

  isaphiltrick 1 month ago

B - AWS Service Catalog is correct.

Reference: https://aws.amazon.com/servicecatalog/
upvoted 2 times

  Rotimija 1 month ago

Correct answer is B
upvoted 1 times

  Ailil 1 month, 1 week ago

Selected Answer: D

Service Catalog: Create, organize, and govern a curated catalog of AWS resources that can be shared at the permissions level so you can quickly
provision approved cloud resources without needing direct access to the underlying AWS services.

System Manager: AWS Systems Manager is the operations hub for your AWS applications and resources.
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 14/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #13 Topic 1

Which AWS service or tool helps users visualize, understand, and manage spending and usage over time?

A. AWS Organizations

B. AWS Pricing Calculator

C. AWS Cost Explorer

D. AWS Service Catalog

Correct Answer: C

Community vote distribution

C (100%)

  TylerKiro 20 hours, 45 minutes ago

What helps me is saying "to Explore is to visualize and a Calculator is to estimate."
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is correct.
upvoted 1 times

  Payal10 3 weeks, 1 day ago

Is this material is good for exam preparation?
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The answer is C.

AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time. Get started
quickly by creating custom reports that analyze cost and usage data. Analyze your data at a high level (for example, total costs and usage across all
accounts), or dive deeper into your cost and usage data to identify trends, pinpoint cost drivers, and detect anomalies.
https://aws.amazon.com/aws-cost-management/aws-cost-explorer/
upvoted 2 times

  isaphiltrick 1 month ago

C - AWS Cost Explorer is correct.

"AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time."

Reference: https://aws.amazon.com/aws-cost-management/aws-cost-explorer/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 15/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #14 Topic 1

A company is using a central data platform to manage multiple types of data for its customers. The company wants to use AWS services to

discover, transform, and visualize the data.

Which combination of AWS services should the company use to meet these requirements? (Choose two.)

A. AWS Glue

B. Amazon Elastic File System (Amazon EFS)

C. Amazon Redshift

D. Amazon QuickSight

E. Amazon Quantum Ledger Database (Amazon QLDB)

Correct Answer: AD

Community vote distribution

AD (100%)

  Anyio Highly Voted  1 month ago

Selected Answer: AD

The answer is AD.

AWS Glue is a serverless data integration service that makes it easier to discover, prepare, move, and integrate data from multiple sources for
analytics, machine learning (ML), and application development.
https://aws.amazon.com/glue/

Amazon QuickSight powers data-driven organizations with unified business intelligence (BI) at hyperscale. With QuickSight, all users can meet
varying analytic needs from the same source of truth through modern interactive dashboards, paginated reports, embedded analytics, and natural
language queries.
https://aws.amazon.com/quicksight/
upvoted 8 times

  asdfcdsxdfc Most Recent  1 week, 3 days ago

Selected Answer: AD

AD looks correct
upvoted 1 times

  bn04 1 week, 3 days ago

Answers are AD
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: AD

Answers AD are correct.

upvoted 1 times

  parrtner73 1 month ago

Selected Answer: AD

AD - Analytics
https://aws.amazon.com/big-data/datalakes-and-analytics/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 16/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #15 Topic 1

A global company wants to migrate its third-party applications to the AWS Cloud. The company wants help from a global team of experts to

complete the migration faster and more reliably in accordance with AWS internal best practices.

Which AWS service or resource will meet these requirements?

A. AWS Support

B. AWS Professional Services

C. AWS Launch Wizard

D. AWS Managed Services (AMS)

Correct Answer: B

Community vote distribution

B (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is correct.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The Correct answer is B.

The AWS Professional Services organization is a global team of experts that can help you realize your desired business outcomes when using the
AWS Cloud. We work together with your team and your chosen member of the AWS Partner Network (APN) to execute your enterprise cloud
computing initiatives.
https://aws.amazon.com/professional-services/
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 17/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #16 Topic 1

An e-learning platform needs to run an application for 2 months each year. The application will be deployed on Amazon EC2 instances. Any

application downtime during those 2 months must be avoided.

Which EC2 purchasing option will meet these requirements MOST cost-effectively?

A. Reserved Instances

B. Dedicated Hosts

C. Spot Instances

D. On-Demand Instances

Correct Answer: D

Community vote distribution

D (86%) 14%

  bn04 1 week, 3 days ago

Selected Answer: D

The correct answer is D

upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: D

Answer D is correct.
upvoted 1 times

  AdrianMonter26 3 weeks, 3 days ago

Selected Answer: D

It can´t be A because AWS offer terms of 1 or 3 years and only need 2 month at year. So it has to be D
upvoted 1 times

  cnoodle 4 weeks, 1 day ago

Selected Answer: D

On-Demand is the correct answer since this service cannot be interrupted. This is why we need On-Demand.
upvoted 2 times

  Givememore 1 month ago

Selected Answer: A

the correct answer is a

upvoted 1 times

  Anyio 1 month ago

Selected Answer: D

The correct answer is D.

Reference: https://aws.amazon.com/ec2/pricing/
upvoted 1 times

  isaphiltrick 1 month ago

D - On-Demand Instances is correct.

"On-Demand Instances are recommended for:

• Users that prefer the low cost and flexibility of EC2 without any upfront payment or long-term commitment
• Applications with short-term, spiky, or unpredictable workloads that cannot be interrupted
• Applications being developed or tested on EC2 for the first time"

Reference: https://aws.amazon.com/ec2/pricing/
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 18/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #17 Topic 1

A developer wants to deploy an application quickly on AWS without manually creating the required resources.

Which AWS service will meet these requirements?

A. Amazon EC2

B. AWS Elastic Beanstalk

C. AWS CodeBuild

D. Amazon Personalize

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B is correct
upvoted 1 times

  bn04 1 week, 3 days ago

Selected Answer: B

With Elastic Beanstalk, you can quickly deploy and manage applications in the AWS Cloud without having to learn about the infrastructure that runs
those applications. Elastic Beanstalk reduces management complexity without restricting choice or control. You simply upload your application, and
Elastic Beanstalk automatically handles the details of capacity provisioning, load balancing, scaling, and application health monitoring.
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: "deploy an application quickly on AWS without manually creating the required resources"
upvoted 1 times

  VirendraP 3 weeks, 2 days ago

Key question is "without creating resources", so that has be to Elastic Beanstalk.

B - AWS Elastic Beanstalk is correct.

upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The Correct answer is B.

https://aws.amazon.com/elasticbeanstalk/
upvoted 1 times

  isaphiltrick 1 month ago

B - AWS Elastic Beanstalk is correct.

"Deploy scalable web applications in minutes without the complexity of provisioning and managing underlying infrastructure."

Reference: https://aws.amazon.com/elasticbeanstalk/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 19/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #18 Topic 1

A company is storing sensitive customer data in an Amazon S3 bucket. The company wants to protect the data from accidental deletion or

overwriting.

Which S3 feature should the company use to meet these requirements?

A. S3 Lifecycle rules

B. S3 Versioning

C. S3 bucket policies

D. S3 server-side encryption

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: "protect the data from accidental deletion or overwriting"

upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The Correct answer is B.

Versioning in Amazon S3 is a means of keeping multiple variants of an object in the same bucket. You can use the S3 Versioning feature to
preserve, retrieve, and restore every version of every object stored in your buckets.
Versioning-enabled buckets can help you recover objects from accidental deletion or overwrite. For example, if you delete an object, Amazon S3
inserts a delete marker instead of removing the object permanently.
https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html
upvoted 4 times

  isaphiltrick 1 month ago

B - S3 Versioning is correct.

"Versioning-enabled buckets can help you recover objects from accidental deletion or overwrite."

Reference: https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 20/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #19 Topic 1

Which AWS service provides the ability to manage infrastructure as code?

A. AWS CodePipeline

B. AWS CodeDeploy

C. AWS Direct Connect

D. AWS CloudFormation

Correct Answer: D

Community vote distribution

D (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: D

D looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: D

Answer D is Correct.

Key: "ability to manage infrastructure as code".

upvoted 1 times

  Anyio 1 month ago

Selected Answer: D

The Correct answer is D.

AWS CloudFormation lets you model, provision, and manage AWS and third-party resources by treating infrastructure as code.
https://aws.amazon.com/cloudformation/
upvoted 2 times

  isaphiltrick 1 month ago

D - AWS CloudFormation is correct.

"AWS CloudFormation lets you model, provision, and manage AWS and third-party resources by treating infrastructure as code."

Reference: https://aws.amazon.com/cloudformation/
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 21/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #20 Topic 1

An online gaming company needs to choose a purchasing option to run its Amazon EC2 instances for 1 year. The web traffic is consistent, and any

increases in traffic are predictable. The EC2 instances must be online and available without any disruption.

Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?

A. On-Demand Instances

B. Reserved Instances

C. Spot Instances

D. Spot Fleet

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B looks correct
upvoted 1 times

  bn04 1 week, 3 days ago

Selected Answer: B

You can purchase a Reserved Instance for a one-year or three-year commitment

upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: "instance for 1 year" "traffic is predictable" "available without any disruption"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The Correct answer is B.

Amazon EC2 Reserved Instances (RI) provide a significant discount (up to 72%) compared to On-Demand pricing and provide a capacity reservation
when used in a specific Availability Zone.
Terms (avg. discount off On-Demand) - 1yr (40%), 3yr (60%)
https://aws.amazon.com/ec2/pricing/reserved-instances/
upvoted 2 times

  parrtner73 1 month ago

Selected Answer: B

predictable, long term

upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 22/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #21 Topic 1

Which AWS service or feature allows a user to establish a dedicated network connection between a company’s on-premises data center and the

AWS Cloud?

A. AWS Direct Connect

B. VPC peering

C. AWS VPN

D. Amazon Route 53

Correct Answer: A

Community vote distribution

A (100%)

  Sreeni_A 6 days, 23 hours ago

A is Correct
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.

Key: "dedicated network connection between a company’s on-premises data center and the AWS Cloud"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

The Correct answer is A.

Create a dedicated network connection to AWS.

The AWS Direct Connect cloud service is the shortest path to your AWS resources. While in transit, your network traffic remains on the AWS global
network and never touches the public internet.
https://aws.amazon.com/directconnect/
upvoted 1 times

  inkedia3 1 month ago

Selected Answer: A

https://aws.amazon.com/directconnect/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 23/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #22 Topic 1

Which option is a physical location of the AWS global infrastructure?

A. AWS DataSync

B. AWS Region

C. Amazon Connect

D. AWS Organizations

Correct Answer: B

Community vote distribution

B (100%)

  demo4422 1 week, 2 days ago

B is correct answer

"AWS has the concept of a Region, which is a physical location around the world where we cluster data centers"

https://aws.amazon.com/about-aws/global-infrastructure/regions_az/
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct

Key: "physical location of the AWS global infrastructure"

upvoted 2 times

  edmacoar123 3 weeks, 1 day ago

Selected Answer: B

Region is a physical location around the world

upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The Correct answer is B.

AWS has the concept of a Region, which is a physical location around the world where we cluster data centers. We call each group of logical data
centers an Availability Zone. Each AWS Region consists of a minimum of three, isolated, and physically separate AZs within a geographic area.
https://aws.amazon.com/about-aws/global-infrastructure/regions_az/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 24/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #23 Topic 1

A company wants to protect its AWS Cloud information, systems, and assets while performing risk assessment and mitigation tasks.

Which pillar of the AWS Well-Architected Framework is supported by these goals?

A. Reliability

B. Security

C. Operational excellence

D. Performance efficiency

Correct Answer: B

Community vote distribution

B (100%)

  demo4422 1 week, 2 days ago

B is correct answer

This is conclusion of security pillar "help you build and operate architectures that protect information, systems, and assets while delivering business
value"

https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/conclusion.html
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct

Key: "protect its AWS Cloud information, systems, and assets while performing risk assessment and mitigation tasks"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The Correct answer is B.

Security - For Infrastructure Protection and Data Protection

https://abhi0751.medium.com/aws-cloud-adoption-framework-aws-caf-a512b89dbcba
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 25/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #24 Topic 1

What is the purpose of having an internet gateway within a VPC?

A. To create a VPN connection to the VPC

B. To allow communication between the VPC and the internet

C. To impose bandwidth constraints on internet traffic

D. To load balance traffic from the internet across Amazon EC2 instances

Correct Answer: B

Community vote distribution

B (100%)

  demo4422 1 week, 2 days ago

Selected Answer: B

B is correct answer

"Connect to the internet using an internet gateway"

https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Internet_Gateway.html
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The Correct answer is B.

https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Internet_Gateway.html
upvoted 1 times

  isaphiltrick 1 month ago

B is correct.

"An internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between your VPC and
the internet."

Reference: https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Internet_Gateway.html
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 26/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #25 Topic 1

A company is running a monolithic on-premises application that does not scale and is difficult to maintain. The company has a plan to migrate the

application to AWS and divide the application into microservices.

Which best practice of the AWS Well-Architected Framework is the company following with this plan?

A. Integrate functional testing as part of AWS deployment.

B. Use automation to deploy changes.

C. Deploy the application to multiple locations.

D. Implement loosely coupled dependencies.

Correct Answer: D

Community vote distribution

D (100%)

  Anyio Highly Voted  1 month ago

Selected Answer: D

The Correct answer is D.

Dependencies such as queuing systems, streaming systems, workflows, and load balancers are loosely coupled. Loose coupling helps isolate
behavior of a component from other components that depend on it, increasing resiliency and agility.
https://docs.aws.amazon.com/wellarchitected/latest/framework/rel_prevent_interaction_failure_loosely_coupled_system.html
upvoted 5 times

  TBone43 Most Recent  1 week, 1 day ago

Selected Answer: D

D: Loose Coupling is main advantage of moving from monolithic to microservices

upvoted 1 times

  demo4422 1 week, 2 days ago

Selected Answer: D

D is correct answer
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: D

D looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: D

Answer D is Correct.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 27/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #26 Topic 1

A company has an AWS account. The company wants to audit its password and access key rotation details for compliance purposes.

Which AWS service or tool will meet this requirement?

A. IAM Access Analyzer

B. AWS Artifact

C. IAM credential report

D. AWS Audit Manager

Correct Answer: C

Community vote distribution

C (100%)

  Anyio Highly Voted  1 month ago

Selected Answer: C

The Correct answer is C.

You can use credential reports to assist in your auditing and compliance efforts. You can use the report to audit the effects of credential lifecycle
requirements, such as password and access key updates.
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html
upvoted 5 times

  lunamuller Most Recent  2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.

Key: "audit its password and access key rotation details for compliance purposes"
upvoted 1 times

  inkedia3 1 month ago

Selected Answer: C

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 28/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #27 Topic 1

A company wants to receive a notification when a specific AWS cost threshold is reached.

Which AWS services or tools can the company use to meet this requirement? (Choose two.)

A. Amazon Simple Queue Service (Amazon SQS)

B. AWS Budgets

C. Cost Explorer

D. Amazon CloudWatch

E. AWS Cost and Usage Report

Correct Answer: BD

Community vote distribution

BD (88%) 13%

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: BD

BD look correct
upvoted 1 times

  bn04 1 week, 3 days ago

Selected Answer: BD

AWS Cost Explorer itself does not have built-in capabilities to send cost alerts or notifications directly.
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: BD

Answers BD are Correct.

upvoted 1 times

  NayeraB 1 month ago

Selected Answer: BD

B. AWS Budgets: AWS Budgets is a service that allows you to set custom cost and usage budgets for your AWS resources. You can configure a
budget with a specific threshold and define actions, such as sending notifications, when that threshold is reached.

D. Amazon CloudWatch: Amazon CloudWatch is a monitoring service that can be used to collect and track metrics, logs, and events from various
AWS resources. It supports setting up alarms based on cost metrics, so you can create an alarm for a specific cost threshold and configure it to
send notifications when the threshold is breached.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: BD

The Correct answer is BD.

upvoted 1 times

  Anyio 1 month ago

COST EXPLORER IS WRONG!
AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time. Create a
cost and usage forecast for a future time range for your report. You can use a forecast to estimate your AWS bill and SET ALARMS AND
BUDGETS BASED ON PREDICTIONS (AND NOT THRESHOLDS!).
upvoted 1 times

  parrtner73 1 month ago

Selected Answer: BD

https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/monitor_estimated_charges_with_cloudwatch.html
https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-controls.html
upvoted 1 times

  user1689 1 month ago

ref: The alarm triggers when your account billing exceeds the threshold you specify
upvoted 1 times

  Ailil 1 month ago

Selected Answer: BD

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 29/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Answer is correct, you can create billing alarm in CloudWatch

https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/monitor_estimated_charges_with_cloudwatch.html
upvoted 1 times

  Passexam4sure_com 1 month ago

Selected Answer: BC

Using AWS Budgets, you can set a budget that alerts you when you exceed (or are forecasted to exceed) your budgeted cost or usage amount.
upvoted 1 times

  Anyio 1 month ago

  LNHP 1 month ago

AB
https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-sns-policy.html
upvoted 1 times

  parrtner73 1 month ago

There is no SNS in the options, so the only option is to set the threshold on AWS Budgets and notifications via cloudwatch. Please correct me if
I'm wrong.
upvoted 1 times

  LNHP 1 month ago

Sorry its BC
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 30/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #28 Topic 1

Which AWS service or resource provides answers to the most frequently asked security-related questions that AWS receives from its users?

A. AWS Artifact

B. Amazon Connect

C. AWS Chatbot

D. AWS Knowledge Center

Correct Answer: A

Community vote distribution

D (100%)

  schasqui 4 days, 20 hours ago

Selected Answer: D

Correct answer is D
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: D

Its not A for sure. D looks correct

upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: D

Answer D is Correct.

Key: "service or resource provides answers to the most frequently asked security-related questions"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: D

The correct answer is D.

AWS Official Knowledge Center articles and videos covering the most frequent questions and requests that we receive from AWS customers.
https://repost.aws/knowledge-center
upvoted 3 times

  discutidor 1 month ago

Selected Answer: D

Answer should be D: AWS Official Knowledge Center

upvoted 3 times

  isaphiltrick 1 month ago

D is the correct answer.

"AWS re:Post includes AWS Official Knowledge Center articles and videos covering the most frequent questions and requests that we receive from
AWS customers."

Reference: https://repost.aws/knowledge-center
upvoted 1 times

  Redderdirector 1 month ago

Selected Answer: D

Answer should be Knowledge centre, because right in the official exam guide; section 2.4: Identifying where security information is available,
Knowledge centre is listed among AWS security centre and AWS security blog. Artifact is majorly for compliance reports and is unfortunately the
answer chatGPT will give you if you ask it
upvoted 2 times

  Redderdirector 1 month ago

  Ailil 1 month ago

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 31/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Selected Answer: D

AWS Knowledge Center

AWS Artifact portal contains AWS’ compliance documentation and AWS agreements
upvoted 1 times

  examtest01 1 month ago

Correct answer is D
upvoted 1 times

Question #29 Topic 1

Which tasks are customer responsibilities, according to the AWS shared responsibility model? (Choose two.)

A. Configure the AWS provided security group firewall.

B. Classify company assets in the AWS Cloud.

C. Determine which Availability Zones to use for Amazon S3 buckets.

D. Patch or upgrade Amazon DynamoDB.

E. Select Amazon EC2 instances to run AWS Lambda on.

Correct Answer: AB

Community vote distribution

AB (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: AB

AB look correct
upvoted 1 times

  Olixpin 3 weeks, 3 days ago

S3 is a REGIONAL service
upvoted 1 times

  user1689 1 month ago

No AZ option for S3, so C is wrong
upvoted 2 times

  parrtner73 1 month ago

Selected Answer: AB

https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 32/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #30 Topic 1

Which of the following are pillars of the AWS Well-Architected Framework? (Choose two.)

A. Availability

B. Reliability

C. Scalability

D. Responsive design

E. Operational excellence

Correct Answer: BE

Community vote distribution

BE (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: BE

BE are correct
upvoted 1 times

  bn04 1 week, 3 days ago

Selected Answer: BE

1. Operational Excellence
2. Security
3. Reliability
4. Performance Efficiency
5. Cost Optimization
upvoted 3 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: BE

Answers BE are Correct.

upvoted 1 times

  Anyio 1 month ago

Selected Answer: BE

The Correct answer is BE.

AWS Well-Architected helps cloud architects build secure, high-performing, resilient, and efficient infrastructure for a variety of applications and
workloads. Built around six pillars—operational excellence, security, reliability, performance efficiency, cost optimization, and sustainability.
upvoted 4 times

  Passexam4sure_com 1 month ago

Selected Answer: BE

operational excellence, security, reliability, performance efficiency, cost optimization, and sustainability
upvoted 1 times

  LNHP 1 month ago

Can be Reliability, Scalability and Operational Excellence.
upvoted 1 times

  LNHP 1 month ago

AE is correct
upvoted 1 times

  LNHP 1 month ago

Oops BE
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 33/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #31 Topic 1

Which AWS service or feature is used to send both text and email messages from distributed applications?

A. Amazon Simple Notification Service (Amazon SNS)

B. Amazon Simple Email Service (Amazon SES)

C. Amazon CloudWatch alerts

D. Amazon Simple Queue Service (Amazon SQS)

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.

Key: "send both text and email messages from distributed applications"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

The answer is A.

Amazon Simple Notification Service (Amazon SNS) sends notifications two ways, A2A and A2P. A2A provides high-throughput, push-based, many-
to-many messaging between distributed systems, microservices, and event-driven serverless applications. These applications include Amazon
Simple Queue Service (SQS), Amazon Kinesis Data Firehose, AWS Lambda, and other HTTPS endpoints. A2P functionality lets you send messages to
your customers with SMS texts, push notifications, and email.
https://aws.amazon.com/sns/
upvoted 3 times

  isaphiltrick 1 month ago

A - Amazon Simple Notification Service (Amazon SNS) is correct.

"Amazon Simple Notification Service (Amazon SNS) sends notifications two ways, A2A and A2P. A2A provides high-throughput, push-based, many-
to-many messaging between distributed systems, microservices, and event-driven serverless applications."

Reference: https://aws.amazon.com/sns/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 34/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #32 Topic 1

A user needs programmatic access to AWS resources through the AWS CLI or the AWS API.

Which option will provide the user with the appropriate access?

A. Amazon Inspector

B. Access keys

C. SSH public keys

D. AWS Key Management Service (AWS KMS) keys

Correct Answer: B

Community vote distribution

B (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: "programmatic access to AWS resources through the AWS CLI or the AWS API"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The answer is B.

"Access keys are long-term credentials for an IAM user or the AWS account root user. You can use access keys to sign programmatic requests to
the AWS CLI or AWS API (directly or using the AWS SDK)."
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 35/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #33 Topic 1

A company runs thousands of simultaneous simulations using AWS Batch. Each simulation is stateless, is fault tolerant, and runs for up to 3

hours.

Which pricing model enables the company to optimize costs and meet these requirements?

A. Reserved Instances

B. Spot Instances

C. On-Demand Instances

D. Dedicated Instances

Correct Answer: B

Community vote distribution

B (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: "Each simulation is stateless and is fault tolerant"

upvoted 1 times

  NayeraB 1 month ago

Selected Answer: B

Spot Instances are a good fit for stateless, fault-tolerant workloads that can be interrupted without any impact on the overall job.
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 36/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #34 Topic 1

What does the concept of agility mean in AWS Cloud computing? (Choose two.)

A. The speed at which AWS resources are implemented

B. The speed at which AWS creates new AWS Regions

C. The ability to experiment quickly

D. The elimination of wasted capacity

E. The low cost of entry into cloud computing

Correct Answer: AC

Community vote distribution

AC (100%)

  FMORADELL 1 day, 21 hours ago

C. The ability to experiment quickly
D. The elimination of wasted capacity
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: AC

Answers AC are Correct.

upvoted 1 times

  jeevamini 3 weeks ago

Agility - how quickly you can do things, so how soon you can setup your environment (A) and cloud benefit is how soon you can setup your eco
system to experiment (C)
upvoted 1 times

  aragon_saa 3 weeks, 5 days ago

https://www.examtopics.com/discussions/amazon/view/99721-exam-aws-certified-cloud-practitioner-topic-1-question-661/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 37/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #35 Topic 1

A company needs to block SQL injection attacks.

Which AWS service or feature can meet this requirement?

A. AWS WAF

B. AWS Shield

C. Network ACLs

D. Security groups

Correct Answer: A

Community vote distribution

A (100%)

  jeevamini Highly Voted  3 weeks ago

Confusion will come to choose between WAF or Shield. but all common web attack patterns (XSS, SQL Injection, etc...) dealt by WAF, special cases
which can't be handled by WAF - will be handled by Shield primarily DDoS
upvoted 8 times

  lunamuller Most Recent  2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

The answer is A.

AWS WAF helps you protect against common web exploits and bots that can affect availability, compromise security, or consume excessive
resources.
https://aws.amazon.com/waf/
upvoted 1 times

  discutidor 1 month ago

A: AWS WAF allows you to create custom rules to block SQL injection attempts.

Create a WebACL: Go to AWS WAF dashboard and create a new WebACL.

Add a Rule: Inside the WebACL, add a new rule.

SQLi Filter: Choose the rule type to look for SQLi patterns. AWS WAF has built-in SQLi filters.

Attach Resources: Attach the WebACL to a resource, such as an Application Load Balancer, Amazon CloudFront distribution, or an API Gateway.

Deploy: Save and deploy the WebACL.

upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 38/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #36 Topic 1

Which AWS service or feature identifies whether an Amazon S3 bucket or an IAM role has been shared with an external entity?

A. AWS Service Catalog

B. AWS Systems Manager

C. AWS IAM Access Analyzer

D. AWS Organizations

Correct Answer: C

Community vote distribution

C (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.

Key: "feature identifies whether an Amazon S3 bucket or an IAM role has been shared with an external entity"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The answer is C.

IAM Access Analyzer helps identify resources in your organization and accounts that are shared with an external entity.
https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 39/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #37 Topic 1

A cloud practitioner needs to obtain AWS compliance reports before migrating an environment to the AWS Cloud.

How can these reports be generated?

A. Contact the AWS Compliance team.

B. Download the reports from AWS Artifact.

C. Open a case with AWS Support.

D. Generate the reports with Amazon Macie.

Correct Answer: B

Community vote distribution

B (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is correct.

Key: "obtain AWS compliance reports"

upvoted 1 times

  NayeraB 1 month ago

Selected Answer: B

AWS Artifact is a portal that provides access to various compliance reports, including certifications, attestations, and other relevant documents. You
can download these reports directly from AWS Artifact.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The answer is B.

https://docs.aws.amazon.com/artifact/latest/ug/downloading-documents.html
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 40/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #38 Topic 1

An ecommerce company has migrated its IT infrastructure from an on-premises data center to the AWS Cloud.

Which cost is the company’s direct responsibility?

A. Cost of application software licenses

B. Cost of the hardware infrastructure on AWS

C. Cost of power for the AWS servers

D. Cost of physical security for the AWS data center

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

BCD are AWS responsibility. Correct answer is A

upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

The answer is A.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 41/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #39 Topic 1

A company is setting up AWS Identity and Access Management (IAM) on an AWS account.

Which recommendation complies with IAM security best practices?

A. Use the account root user access keys for administrative tasks.

B. Grant broad permissions so that all company employees can access the resources they need.

C. Turn on multi-factor authentication (MFA) for added security during the login process.

D. Avoid rotating credentials to prevent issues in production applications.

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: C

C is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 1 times

  felixlugo06 1 month ago

Turn on multi-factor authentication (MFA) for added security during the login process.

Enabling multi-factor authentication (MFA) for user accounts, especially for users with administrative or high-privilege access, is a crucial security
best practice. MFA adds an additional layer of security by requiring users to provide two or more verification factors (typically something they
know, like a password, and something they have, like a temporary MFA code from a hardware token or mobile app) before gaining access. This
significantly reduces the risk of unauthorized access, even if login credentials are compromised.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The answer is C.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 42/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #40 Topic 1

Elasticity in the AWS Cloud refers to which of the following? (Choose two.)

A. How quickly an Amazon EC2 instance can be restarted

B. The ability to rightsize resources as demand shifts

C. The maximum amount of RAM an Amazon EC2 instance can use

D. The pay-as-you-go billing model

E. How easily resources can be procured when they are needed

Correct Answer: BE

Community vote distribution

BE (86%) 14%

  Redderdirector Highly Voted  1 month ago

Selected Answer: BE

Elasticity is the ability to add and release resources as business needs change. It has nothing to do with pricing.
upvoted 7 times

  asdfcdsxdfc Most Recent  1 week, 2 days ago

Selected Answer: BE

BE are correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: BE

Answers BE are Correct.

upvoted 1 times

  Anyio 1 month ago

Selected Answer: BE

The answer is BE.

upvoted 3 times

  Ailil 1 month ago

Selected Answer: BD

Pay-as-you-go Pricing: Cloud elasticity lets organizations connect their IT spending to current demand. This means they only pay for the resources
they use at any given time.
upvoted 2 times

  NayeraB 1 month ago

The pay-as-you-go billing model is related to cost optimization and pricing, not related to elasticity.
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 43/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #41 Topic 1

Which service enables customers to audit API calls in their AWS accounts?

A. AWS CloudTrail

B. AWS Trusted Advisor

C. Amazon Inspector

D. AWS X-Ray

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A is correct
"CloudTrail: Track API calls made by users within account."
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.

Key: "audit API calls"

upvoted 1 times

  PorkChop1999 2 weeks, 5 days ago

Selected Answer: A

Cloud trail is used to track API calls to AWS account.

upvoted 1 times

  felixlugo06 1 month ago

AWS CloudTrail is a service that records all API calls made on your AWS account. It provides a detailed history of events, including who made the
call, what actions were performed, and from which IP address the call originated. This audit trail is valuable for security, compliance,
troubleshooting, and monitoring purposes, and it helps you maintain visibility into how your AWS resources are being used.
upvoted 1 times

  NayeraB 1 month ago

Selected Answer: A

CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. It records and logs all API
calls made within your account, including who made them, when they were made, and which resources were affected.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 44/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #42 Topic 1

What is a customer responsibility when using AWS Lambda according to the AWS shared responsibility model?

A. Managing the code within the Lambda function

B. Confirming that the hardware is working in the data center

C. Patching the operating system

D. Shutting down Lambda functions when they are no longer in use

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A Looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.
upvoted 1 times

  felixlugo06 1 month ago

In the AWS shared responsibility model, AWS is responsible for the infrastructure and security "of" the cloud, while customers are responsible for
the security "in" the cloud. When using AWS Lambda, customers are responsible for managing the code and configuration within the Lambda
function. This includes writing and updating the code, configuring the function's execution environment, and ensuring that the code complies with
security best practices and is free from vulnerabilities.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

The answer is A.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 45/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #43 Topic 1

A company has 5 TB of data stored in Amazon S3. The company plans to occasionally run queries on the data for analysis.

Which AWS service should the company use to run these queries in the MOST cost-effective manner?

A. Amazon Redshift

B. Amazon Athena

C. Amazon Kinesis

D. Amazon RDS

Correct Answer: B

Community vote distribution

B (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: "Amazon S3. The company plans to occasionally run queries on the data for analysis"
upvoted 3 times

  Anyio 1 month ago

Selected Answer: B

The answer is B.

Amazon Athena is a serverless, interactive analytics service built on open-source frameworks, supporting open-table and file formats. Athena
provides a simplified, flexible way to analyze petabytes of data where it lives. Analyze data or build applications from an Amazon Simple Storage
Service (S3) data lake and 30 data sources, including on-premises data sources or other cloud systems using SQL or Python. Athena is built on
open-source Trino and Presto engines and Apache Spark frameworks, with no provisioning or configuration effort required.
https://aws.amazon.com/athena/
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 46/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #44 Topic 1

Which AWS service can be used at no additional cost?

A. Amazon SageMaker

B. AWS Config

C. AWS Organizations

D. Amazon CloudWatch

Correct Answer: C

Community vote distribution

C (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The answer is C.

AWS Organizations is an account management service that enables you to consolidate multiple AWS accounts into an organization that you create
and centrally manage. AWS Organizations is offered at no additional charge. You are charged only for AWS resources that users and roles in your
member accounts use. For example, you are charged the standard fees for Amazon EC2 instances that are used by users or roles in your member
accounts.
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_introduction.html
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 47/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #45 Topic 1

Which AWS Cloud Adoption Framework (AWS CAF) capability belongs to the people perspective?

A. Data architecture

B. Event management

C. Cloud fluency

D. Strategic partnership

Correct Answer: C

Community vote distribution

C (100%)

  Anyio Highly Voted  1 month ago

Selected Answer: C

The answer is C.

Data architecture => Platform

Event management => Operations
Cloud fluency => People
Strategic partnership => Business
https://abhi0751.medium.com/aws-cloud-adoption-framework-aws-caf-a512b89dbcba
upvoted 11 times

  asdfcdsxdfc Most Recent  1 week, 2 days ago

Selected Answer: C

C looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 1 times

  ASDFDSAFDFA 3 weeks ago

Selected Answer: C

https://docs.aws.amazon.com/whitepapers/latest/overview-aws-cloud-adoption-framework/people-perspective.html
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 48/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #46 Topic 1

A company wants to make an upfront commitment for continued use of its production Amazon EC2 instances in exchange for a reduced overall

cost.

Which pricing options meet these requirements with the LOWEST cost? (Choose two.)

A. Spot Instances

B. On-Demand Instances

C. Reserved Instances

D. Savings Plans

E. Dedicated Hosts

Correct Answer: CD

Community vote distribution

CD (82%) Other

  lunamuller 2 weeks, 4 days ago

Selected Answer: CD

Answers CD are Correct.

Key: "upfront commitment"

upvoted 1 times

  NayeraB 1 month ago

Selected Answer: CD

We can rule out Spot instances since this is a production environment.

So the right answers are:
C. Reserved Instances: Reserved Instances provide a significant discount (up to 75%) compared to On-Demand pricing in exchange for a one-time
upfront payment and/or a lower hourly rate. The more you commit, the greater the discount.

D. Savings Plans: Savings Plans offer flexible pricing and savings on your AWS usage, with discounts of up to 72% compared to On-Demand
pricing. With Savings Plans, you commit to a certain amount of usage (measured in dollars per hour) for a one- or three-year term, and receive a
lower rate for that usage.
upvoted 4 times

  parrtner73 1 month ago

Selected Answer: CD

Key words: upfront commitment

upvoted 2 times

  RishaanAWS 1 month ago

C and D
upvoted 1 times

  Rickie007 1 month ago

Selected Answer: AC

The answer is AC
upvoted 1 times

  user1689 1 month ago

Selected Answer: AB

Try AB
upvoted 1 times

  Anyio 1 month ago

Selected Answer: CD

The answer is CD.

upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 49/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #47 Topic 1

A company wants to migrate its on-premises relational databases to the AWS Cloud. The company wants to use infrastructure as close to its

current geographical location as possible.

Which AWS service or resource should the company use to select its Amazon RDS deployment area?

A. Amazon Connect

B. AWS Wavelength

C. AWS Regions

D. AWS Direct Connect

Correct Answer: C

Community vote distribution

C (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 1 times

  user1689 1 month ago

Selected Answer: C

try c!
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 50/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #48 Topic 1

A company is exploring the use of the AWS Cloud, and needs to create a cost estimate for a project before the infrastructure is provisioned.

Which AWS service or feature can be used to estimate costs before deployment?

A. AWS Free Tier

B. AWS Pricing Calculator

C. AWS Billing and Cost Management

D. AWS Cost and Usage Report

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: " create a cost estimate for a project before the infrastructure is provisioned"
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The answer is B.

AWS Pricing Calculator is a web-based planning tool that you can use to create estimates for your AWS use cases. You can use it to model your
solutions before building them, explore the AWS service price points, and review the calculations behind your estimates.
https://docs.aws.amazon.com/pricing-calculator/latest/userguide/what-is-pricing-calculator.html
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 51/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #49 Topic 1

A company is building an application that needs to deliver images and videos globally with minimal latency.

Which approach can the company use to accomplish this in a cost effective manner?

A. Deliver the content through Amazon CloudFront.

B. Store the content on Amazon S3 and enable S3 cross-region replication.

C. Implement a VPN across multiple AWS Regions.

D. Deliver the content through AWS PrivateLink.

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.

Key: "deliver images and videos globally with minimal latency"

upvoted 1 times

  wooin992 3 weeks, 6 days ago

Selected Answer: A

the answer is A
upvoted 1 times

  wooin992 3 weeks, 6 days ago

the answer is A
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 52/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #50 Topic 1

Which option is a benefit of the economies of scale based on the advantages of cloud computing?

A. The ability to trade variable expense for fixed expense

B. Increased speed and agility

C. Lower variable costs over fixed costs

D. Increased operational costs across data centers

Correct Answer: C

Community vote distribution

C (73%) B (18%) 9%

  Ellbi 2 weeks, 3 days ago

Selected Answer: C

Correct answer is C

Benefit from massive economies of scale – By using cloud computing, you can achieve a lower variable cost than you can get on your own. Because
usage from hundreds of thousands of customers is aggregated in the cloud, providers such as AWS can achieve higher economies of scale, which
translates into lower pay as-you-go prices.

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 2 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 2 times

  PorkChop1999 2 weeks, 4 days ago

Selected Answer: C

C seems to be correct. it is the only one that reflects cost benefits which are asked in the question. While A also mentioned cost it is contradicting
the value of cloud which is trade capital expense for variable cost.
upvoted 1 times

  rebelfourkix 3 weeks ago

Selected Answer: C

Read the paragraph that starts with: Benefit from massive economies of scale.
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  ASDFDSAFDFA 3 weeks ago

Selected Answer: C

answer is C
1 - is reversed benefit "Trade fixed expense for variable expense" thus invalid
2 - speed and agility has nothing to do with economies of scale
4 - "Increased operational costs across data centers" is not a benefit
3 - Benefit from massive economies of scale – By using cloud computing, you can achieve a -------lower variable cost than you can get on your
own------. Because usage from hundreds of thousands of customers is aggregated in the cloud, providers such as AWS can achieve higher
economies of scale, which translates into lower pay as-you-go prices.
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 2 times

  petercorn 3 weeks, 1 day ago

Selected Answer: B

Beside B, all other answers are reversed answers of advantages of cloud computing.
upvoted 1 times

  shinzor 2 weeks, 5 days ago

The question is asking the benefit of economies of scales. Which is one of the six advantages of cloud computing. B is also an advantage of
cloud computing. So that can't be the answer.
upvoted 1 times

  aragon_saa 3 weeks, 5 days ago

AAAAAAAAAAAA
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 53/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

  WorkZ94 1 month ago

Selected Answer: B

Increase speed and agility – In a cloud computing environment, new IT resources are only a click away, which means that you reduce the time to
make those resources available to your developers from weeks to just minutes. This results in a dramatic increase in agility for the organization,
since the cost and time it takes to experiment and develop is significantly lower.
upvoted 1 times

  mehr112 3 weeks, 5 days ago

check this link
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 3 times

  felixlugo06 1 month ago

Selected Answer: A

A. One of the benefits of the economies of scale in cloud computing is the ability to trade variable expenses for fixed expenses. Cloud services
allow organizations to pay for the resources they use on a variable and scalable basis, rather than incurring the fixed costs associated with
maintaining physical data centers and infrastructure. This flexibility helps businesses better manage their costs, as they can scale up or down as
needed, reducing the need for large upfront investments in infrastructure.

In summary, both options A and C are relevant to the benefits of cloud computing, but option A specifically addresses the idea of trading variable
expenses for fixed expenses, which aligns with the concept of economies of scale.
upvoted 1 times

  shinzor 2 weeks, 5 days ago

A is incorrect if you read the answer again. You are trading fixed expenses for more variable expenses. What does economies of scale do? Lower
the variable expenses.
upvoted 1 times

  felixlugo06 1 month ago

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 54/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #51 Topic 1

Which of the following is a software development framework that a company can use to define cloud resources as code and provision the

resources through AWS CloudFormation?

A. AWS CLI

B. AWS Developer Center

C. AWS Cloud Development Kit (AWS CDK)

D. AWS CodeStar

Correct Answer: C

Community vote distribution

C (100%)

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 1 times

  felixlugo06 1 month ago

C. AWS Cloud Development Kit (AWS CDK)

AWS CDK is a software development framework that enables developers to define infrastructure as code (IaC) using familiar programming
languages like TypeScript, Python, Java, C#, and more. With AWS CDK, you can define cloud resources, their relationships, and provisioning logic in
your preferred programming language. AWS CDK also generates CloudFormation templates based on your code, making it easier to manage and
deploy infrastructure resources in AWS.
upvoted 2 times

  parrtner73 1 month ago

Selected Answer: C

https://aws.amazon.com/cdk/faqs/#:~:text=The%20AWS%20Cloud%20Development%20Kit,deploying%20it%20through%20AWS%20CloudFormati
on.
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 55/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #52 Topic 1

A company is developing an application that uses multiple AWS services. The application needs to use temporary, limited-privilege credentials for

authentication with other AWS APIs.

Which AWS service or feature should the company use to meet these authentication requirements?

A. Amazon API Gateway

B. IAM users

C. AWS Security Token Service (AWS STS)

D. IAM instance profiles

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: C

C is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.

Key: "application needs to use temporary, limited-privilege credentials for authentication with other AWS APIs"
upvoted 1 times

  felixlugo06 1 month ago

C. AWS Security Token Service (AWS STS)

AWS STS provides a way to grant temporary, limited-privilege credentials to users, applications, or services. These temporary credentials can be
used to access AWS resources securely without having to use long-term access keys or IAM user credentials.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The answer is C.

AWS provides AWS Security Token Service (AWS STS) as a web service that enables you to request temporary, limited-privilege credentials for users.
https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 56/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #53 Topic 1

Which AWS service is a cloud security posture management (CSPM) service that aggregates alerts from various AWS services and partner

products in a standardized format?

A. AWS Security Hub

B. AWS Trusted Advisor

C. Amazon EventBridge

D. Amazon GuardDuty

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A looks correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

"AWS Security Hub is a cloud security posture management (CSPM) service that performs automated, continuous security best practice checks
against your AWS resources to help you identify misconfigurations, and aggregates your security alerts (i.e. findings) in a standardized format so
that you can more easily enrich, investigate, and remediate them."

Reference: https://aws.amazon.com/security-hub/features/?nc=sn&loc=2
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 57/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #54 Topic 1

Which AWS service is always provided at no charge?

A. Amazon S3

B. AWS Identity and Access Management (IAM)

C. Elastic Load Balancers

D. AWS WAF

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

"IAM is a feature of your AWS account and is offered at no additional charge."

Reference: https://aws.amazon.com/iam/getting-started/?nc=sn&loc=3
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 58/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #55 Topic 1

To reduce costs, a company is planning to migrate a NoSQL database to AWS.

Which AWS service is fully managed and can automatically scale throughput capacity to meet database workload demands?

A. Amazon Redshift

B. Amazon Aurora

C. Amazon DynamoDB

D. Amazon RDS

Correct Answer: C

Community vote distribution

C (60%) 다 (20%) B (20%)

  jimoon 4 days, 5 hours ago

Selected Answer: 다

C is correct.
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: C

C is correct
upvoted 1 times

  Ellbi 2 weeks, 3 days ago

Selected Answer: C

Correct answer is C

"Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability."

https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Introduction.html
upvoted 1 times

  TheGreatestMK 2 weeks, 4 days ago

C is correct. DynamoDB is a non-relational database which means it is a NONSQL database.

Aurora and RDS are relational, as for Redshift that is for exabytes of data and complex queries.
upvoted 2 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.

Key: "NoSQL database" "fully managed and can automatically scale throughput capacity"
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: C

"Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability."

Reference: https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Introduction.html
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 59/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #56 Topic 1

A company is using Amazon DynamoDB.

Which task is the company’s responsibility, according to the AWS shared responsibility model?

A. Patch the operating system.

B. Provision hosts.

C. Manage database access permissions.

D. Secure the operating system.

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: C

C is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 1 times

  aragon_saa 3 weeks, 5 days ago

C
https://www.examtopics.com/discussions/amazon/view/101729-exam-aws-certified-cloud-practitioner-topic-1-question-629/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 60/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #57 Topic 1

A company has a test AWS environment. A company is planning on testing an application within AWS. The application testing can be interrupted

and does not need to run continuously.

Which Amazon EC2 purchasing option will meet these requirements MOST cost-effectively?

A. On-Demand Instances

B. Dedicated Instances

C. Spot Instances

D. Reserved Instances

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: C

C is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.

Key: "testing can be interrupted and does not need to run continuously"
upvoted 1 times

  wooin992 3 weeks, 5 days ago

Selected Answer: C

Spot Instances are a good fit for stateless, fault-tolerant workloads that can be interrupted without any impact on the overall job.
upvoted 1 times

  aragon_saa 3 weeks, 5 days ago

https://aws.amazon.com/ec2/spot/?nc1=h_ls
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 61/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #58 Topic 1

Which AWS service gives users the ability to discover and protect sensitive data that is stored in Amazon S3 buckets?

A. Amazon Macie

B. Amazon Detective

C. Amazon GuardDuty

D. AWS IAM Access Analyzer

Correct Answer: A

Community vote distribution

A (100%)

  rankocertified 18 hours, 34 minutes ago

Selected Answer: A

Amazon Macie - Amazon Macie is a fully managed data security and data privacy service that
uses machine learning and pattern matching to discover and protect your sensitive data in
AWS.
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A is correct
upvoted 1 times

  aragornfsm 2 weeks, 2 days ago

Can I pass the exam by just looking at these questions?
upvoted 3 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: A

Answer A is Correct.

Key: "ability to discover and protect sensitive data that is stored in Amazon S3 buckets"
upvoted 1 times

  ezeadnah 4 weeks, 1 day ago

Selected Answer: A

A : Amazon Macie is a data security service that discovers sensitive data using machine learning and pattern matching, provides visibility into data
security risks, and enables you to automate protection against those risks.

https://aws.amazon.com/macie/features/#:~:text=Amazon%20Macie%20is%20a%20data,automate%20protection%20against%20those%20risks.
upvoted 2 times

  felixlugo06 1 month ago

A. Amazon Macie

Amazon Macie is a security service that uses machine learning to automatically discover, classify, and protect sensitive data in Amazon S3. It helps
you identify and protect data such as personally identifiable information (PII), financial information, intellectual property, and more by monitoring
data access and alerting you to potential security risks
upvoted 2 times

  SeeMakbul 1 month ago

Answer is "A" Amazon Macie
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 62/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #59 Topic 1

Which of the following services can be used to block network traffic to an instance? (Choose two.)

A. Security groups

B. Amazon Virtual Private Cloud (Amazon VPC) flow logs

C. Network ACLs

D. Amazon CloudWatch

E. AWS CloudTrail

Correct Answer: AC

Community vote distribution

AC (100%)

  rankocertified 18 hours, 30 minutes ago

Selected Answer: AC

A is obvious: it is applied at instance level and controls traffic at instance level.

C is a bit tricky: NACL is applied at subnet level but it controls traffic based on source & destination. Here you can set a rule set for the instance
both "in" (destination) and "out" (source)
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: AC

Answers AC are Correct.

upvoted 1 times

  ezeadnah 4 weeks, 1 day ago

Selected Answer: AC

A: Security group limits access to the instance

C: blocks network access on the subnet level
upvoted 2 times

  felixlugo06 1 month ago

A. Security groups
C. Network ACLs

Security groups are stateful firewalls that control inbound and outbound traffic at the instance level. You can configure security groups to allow or
deny specific types of network traffic to and from your instances.

Network ACLs (Access Control Lists) are stateless firewalls that control traffic at the subnet level. Network ACLs define rules to allow or deny traffic
based on source and destination IP addresses, ports, and protocols.
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 63/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #60 Topic 1

Which AWS service can identify when an Amazon EC2 instance was terminated?

A. AWS Identity and Access Management (IAM)

B. AWS CloudTrail

C. AWS Compute Optimizer

D. Amazon EventBridge

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: B

B is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: B

Answer B is Correct.
upvoted 1 times

  ezeadnah 4 weeks, 1 day ago

Selected Answer: B

B: AWS CloudTrail enables auditing, security monitoring, and operational troubleshooting by tracking user activity and API usage.
upvoted 1 times

  felixlugo06 1 month ago

B. AWS CloudTrail

AWS CloudTrail is a service that records all API activity in your AWS account, including the termination of EC2 instances. It creates log entries for
various events, providing an audit trail of actions taken on resources. By reviewing CloudTrail logs, you can identify when an EC2 instance was
terminated, who initiated the termination, and other relevant details about the event.
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 64/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #61 Topic 1

Which of the following is a fully managed MySQL-compatible database?

A. Amazon S3

B. Amazon DynamoDB

C. Amazon Redshift

D. Amazon Aurora

Correct Answer: D

Community vote distribution

D (100%)

  Sreeni_A 1 week ago

D is correct.Amazon Aurora is a modern relational database service. It offers unparalleled high performance and high availability at global scale
with fully open-source MySQL- and PostgreSQL-compatible editions and a range of developer tools for building serverless and machine learning
(ML)-driven applications.
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: D

D is correct
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: D

Answer D is Correct.

Key: "fully managed MySQL-compatible database"

upvoted 1 times

  sanjana_050181 2 weeks, 6 days ago

D
Amazon Aurora is a fully managed relational database service built for the cloud that combines the performance and availability of high-end
commercial databases with the simplicity and cost-effectiveness of open source databases. Amazon Aurora is compatible with MySQL and
PostgreSQL, allowing existing applications and tools to run without modification.
upvoted 1 times

  felixlugo06 1 month ago

D. Amazon Aurora

Amazon Aurora is a relational database service that is compatible with MySQL and PostgreSQL. It is fully managed by AWS and is designed for high
availability, performance, and scalability while maintaining MySQL compatibility. Aurora offers features like automated backups, read replicas, and
seamless failover to ensure data durability and availability. It's a popular choice for applications that require a MySQL-compatible database with the
benefits of a fully managed service.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 65/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #62 Topic 1

Which AWS service supports a hybrid architecture that gives users the ability to extend AWS infrastructure, AWS services, APIs, and tools to data

centers, co-location environments, or on-premises facilities?

A. AWS Snowmobile

B. AWS Local Zones

C. AWS Outposts

D. AWS Fargate

Correct Answer: C

Community vote distribution

C (100%)

  felixlugo06 Highly Voted  1 month ago

C. AWS Outposts

AWS Outposts enables you to run AWS infrastructure and services on premises while seamlessly connecting to the AWS cloud. This service extends
the AWS ecosystem to your on-premises locations, allowing you to take advantage of cloud benefits while addressing the requirements of data
residency, low-latency applications, and specific regulatory needs in hybrid environments.
upvoted 5 times

  demo4422 Most Recent  5 days, 6 hours ago

Selected Answer: C

C is correct answer
upvoted 1 times

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: C

C is correct
"Hybrid Cloud: businesses that keep an onpremises
infrastructure alongside a cloud
infrastructure"
upvoted 1 times

  lunamuller 2 weeks, 4 days ago

Selected Answer: C

Answer C is Correct.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 66/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #63 Topic 1

Which AWS service can run a managed PostgreSQL database that provides online transaction processing (OLTP)?

A. Amazon DynamoDB

B. Amazon Athena

C. Amazon RDS

D. Amazon EMR

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 4 days, 12 hours ago

Selected Answer: C

C is correct
upvoted 1 times

  d119877j78koiua 1 week, 6 days ago

Selected Answer: C

C is correct
upvoted 1 times

  felixlugo06 1 month ago

C. Amazon RDS (Relational Database Service)

Amazon RDS supports various database engines, including PostgreSQL, and offers a managed database service suitable for OLTP workloads. With
Amazon RDS for PostgreSQL, you can easily set up, operate, and scale a PostgreSQL database without the administrative overhead of managing
the infrastructure.
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 67/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #64 Topic 1

A company wants to provide managed Windows virtual desktops and applications to its remote employees over secure network connections.

Which AWS services can the company use to meet these requirements? (Choose two.)

A. Amazon Connect

B. Amazon AppStream 2.0

C. Amazon WorkSpaces

D. AWS Site-to-Site VPN

E. Amazon Elastic Container Service (Amazon ECS)

Correct Answer: BC

Community vote distribution

BC (57%) CD (43%)

  zespaholti Highly Voted  2 weeks, 2 days ago

Selected Answer: BC

BC
in the context that:
- workspaces satisfies the virtual desktops
- appstream satisfies the virtual applications
upvoted 6 times

  tqiu654 Most Recent  12 hours, 22 minutes ago

Selected Answer: BC

GPT:
To provide managed Windows virtual desktops and applications to remote employees over secure network connections, the company can use the
following AWS services:

B. Amazon AppStream 2.0: Amazon AppStream 2.0 is a fully managed application streaming service that allows you to stream desktop applications
from AWS to any device with a web browser. It's suitable for providing access to applications without the need to manage full desktop
environments.

C. Amazon WorkSpaces: Amazon WorkSpaces is a managed, secure Desktop-as-a-Service (DaaS) solution that helps you provision Windows or
Linux desktops in just a few minutes. It's ideal for providing employees with a managed virtual desktop experience.
upvoted 1 times

  Mohamedsadat 3 days, 3 hours ago

correct is
CD
upvoted 1 times

  sohayb 5 days, 5 hours ago

Selected Answer: BC

Site-to-site VPN is intended to connect an on-premises VPN to AWS.

upvoted 1 times

  sohayb 5 days, 5 hours ago

Selected Answer: BC

Site-to-site VPN is intended to connect an on-premises VPN to AWS.

upvoted 2 times

  cucuff 1 week, 3 days ago

Selected Answer: BC

Going with BC.

There is no requirement (or mention) about using site to site VPN
https://docs.aws.amazon.com/workspaces/latest/adminguide/workspaces-network-requirements.html
upvoted 2 times

  GSMUTTA 2 weeks, 3 days ago

Selected Answer: CD

CD is right
upvoted 2 times

  Premji 3 weeks, 3 days ago

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 68/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Selected Answer: CD

CD is right.
Amazon AppStream 2.0 is a service for streaming desktop applications to a web browser, but it is different from full Windows virtual desktops
provided by Amazon WorkSpaces. - Is not right
upvoted 4 times

  rankocertified 18 hours, 14 minutes ago

"By default, instances that you launch into an Amazon VPC can't communicate with your own (remote) network. You can enable access to your
remote network from your VPC by creating an AWS Site-to-Site VPN (Site-to-Site VPN) connection, and configuring routing to pass traffic
through the connection."

So AWS Site-to-Site VPN is required when you connect from AWS VPC into your local network. When using a virtual desktop you connect from
local network to AWS and not from AWS to your local network. D is not correct in my opinion
upvoted 1 times

  wooin992 3 weeks, 5 days ago

Selected Answer: CD

maybe CD?
upvoted 3 times

  felixlugo06 1 month ago

B. Amazon AppStream 2.0: Amazon AppStream 2.0 is a service that enables you to stream desktop applications to users through web browsers. You
can deliver Windows applications securely to remote users without the need to provision and manage full virtual desktops.

C. Amazon WorkSpaces: Amazon WorkSpaces is a fully managed desktop-as-a-service (DaaS) solution that provides Windows desktops to users.
You can configure and manage virtual desktops for remote employees using WorkSpaces.
upvoted 3 times

  Premji 3 weeks, 3 days ago

Amazon AppStream 2.0 is a service for streaming desktop applications to a web browser, but it is different from full Windows virtual desktops
provided by Amazon WorkSpaces.
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 69/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #65 Topic 1

A company wants to monitor for misconfigured security groups that are allowing unrestricted access to specific ports.

Which AWS service will meet this requirement?

A. AWS Trusted Advisor

B. Amazon CloudWatch

C. Amazon GuardDuty

D. AWS Health Dashboard

Correct Answer: A

Community vote distribution

A (58%) C (26%) B (16%)

  morccini Highly Voted  2 weeks, 1 day ago

Based on Chat GPT:

C. Amazon GuardDuty

Amazon GuardDuty is an AWS service that is designed to monitor and detect potential security threats in your AWS environment. It helps to
identify unusual and unauthorized activities, including misconfigured security groups that may be allowing unrestricted access to specific ports.
GuardDuty uses machine learning and threat intelligence to analyze data and generate alerts, making it an effective tool for enhancing the security
of your AWS infrastructure.

While options like AWS Trusted Advisor and Amazon CloudWatch offer valuable monitoring capabilities, they do not specifically focus on detecting
security group misconfigurations. Therefore, in this scenario, Amazon GuardDuty is the most appropriate choice.
upvoted 6 times

  tqiu654 Most Recent  12 hours, 19 minutes ago

Selected Answer: A

GPT:
To monitor for misconfigured security groups that are allowing unrestricted access to specific ports, the most suitable AWS service is:

A. AWS Trusted Advisor: AWS Trusted Advisor is a service that analyzes your AWS environment and provides recommendations for saving money,
improving system performance, and closing security gaps. It includes checks for common misconfigurations in security groups, such as open ports
to the internet, which could pose a security risk. Trusted Advisor can alert you to these potential vulnerabilities, helping you ensure that your
security groups are configured properly.
upvoted 1 times

  rebelfourkix 3 days, 22 hours ago

  bn04 1 week, 2 days ago

Selected Answer: A

correct answer is A
upvoted 1 times

  AgPhyo 1 week, 6 days ago

The answer is B. Amazon cloudwatch
Amazon CloudWatch is the AWS service that allows you to monitor and collect data from various AWS resources and services. It provides the
capability to create custom alarms and dashboards to monitor specific events and metrics. In the context of the scenario described, CloudWatch is
the most suitable choice for monitoring misconfigured security groups that allow unrestricted access to specific ports.
upvoted 1 times

  Ellbi 2 weeks, 3 days ago

Selected Answer: A

I choose answer A

Security Groups – Unrestricted Access

Checks security groups for rules that allow unrestricted access to a resource.
Unrestricted access increases opportunities for malicious activity (hacking, denial-of-service attacks, loss of data).

For more information, see the Trusted Advisor FAQ

https://docs.aws.amazon.com/awssupport/latest/user/security-checks.html
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 70/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

  GSMUTTA 2 weeks, 3 days ago

C is correct:
Amazon GuardDuty is a threat detection service that continuously monitors for suspicious activity and unauthorized access within your AWS
environment, including identifying misconfigured security groups. It can detect unusual behavior related to network traffic, access patterns, and
security group rules, which can help identify and address security issues.
upvoted 3 times

  GSMUTTA 2 weeks, 3 days ago

Because it monitors and aws trusted advisor recommends
upvoted 1 times

  dmeen21 2 weeks, 4 days ago

Selected Answer: A

Keywords: "monitor of misconfigured security groups"

upvoted 1 times

  PorkChop1999 2 weeks, 4 days ago

Selected Answer: A

C is not good IMO: GuardDuty is capable of analyzing tens of billions of events across multiple AWS data sources, such as AWS CloudTrail event
logs, Amazon Virtual Private Cloud (VPC) Flow Logs, Amazon Elastic Kubernetes Service (EKS) audit and system-level logs, and DNS query logs.
upvoted 1 times

  jeevamini 2 weeks, 6 days ago

Selected Answer: A

Guard duty - account and workloads security against malicious activities.

One of the 7 core checks in Trusted Advisor is to look for Security groups - specific ports unrestricted
upvoted 1 times

  anita_likes_cloud 2 weeks, 6 days ago

Selected Answer: C

key word: monitor

upvoted 1 times

  petercorn 3 weeks, 1 day ago

Selected Answer: A

Trusted Advisor can help improve the security of your AWS environment by suggesting foundational security best practices curated by security
experts. Examples include identifying RDS security group access risk, exposed access keys, and unnecessary S3 bucket permissions.
https://aws.amazon.com/premiumsupport/technology/trusted-advisor/
upvoted 1 times

  rebelfourkix 3 days, 22 hours ago

Amazon GuardDuty
Amazon GuardDuty Amazon GuardDuty is an AWS service that is designed to monitor and detect potential security threats in your AWS
environment. It helps to identify unusual and unauthorized activities, including misconfigured security groups that may be allowing unrestricted
access to specific ports.
upvoted 1 times

  Premji 3 weeks, 3 days ago

Selected Answer: C

Amazon GuardDuty is a threat detection service that continuously monitors for suspicious and unauthorized activity in your AWS environment. It
can help you identify security group misconfigurations that may lead to unrestricted access to specific ports, among other security issues.
upvoted 2 times

  Aman_JS 1 month ago

Selected Answer: A

https://docs.aws.amazon.com/awssupport/latest/user/security-checks.html#security-groups-specific-ports-unrestricted
upvoted 1 times

  felixlugo06 1 month ago

A. AWS Trusted Advisor

AWS Trusted Advisor is a service that provides recommendations for optimizing your AWS infrastructure. It includes checks for security best
practices, such as identifying security groups that have overly permissive rules, which would allow unrestricted access to specific ports. It offers
guidance on how to address these misconfigurations.
upvoted 2 times

  rebelfourkix 3 days, 22 hours ago

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 71/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

  parrtner73 1 month ago

A - https://aws.amazon.com/blogs/security/learn-and-use-13-aws-security-tools-to-implement-sec-recommended-protection-stored-customer-
data-cloud/
upvoted 1 times

  NayeraB 1 month ago

Selected Answer: C

While AWS Trusted Advisor (option A) provides recommendations for optimizing security, cost, performance, and fault tolerance of AWS resources,
it does not specifically focus on monitoring misconfigured security groups.

Amazon GuardDuty (option C), on the other hand, is a threat detection service that continuously monitors for malicious activities and unauthorized
behavior within your AWS environment, including detecting potential security group misconfigurations.

Therefore, in this case, Amazon GuardDuty (option C) is the more appropriate service for monitoring misconfigured security groups.
upvoted 1 times

  ezeadnah 4 weeks ago

Amazon GuardDuty is a threat detection service that monitors for malicious activity in AWS accounts. However, GuardDuty does not specifically
monitor for misconfigured security groups.
upvoted 1 times

Question #66 Topic 1

Which AWS service is a key-value database that provides sub-millisecond latency on a large scale?

A. Amazon DynamoDB

B. Amazon Aurora

C. Amazon DocumentDB (with MongoDB compatibility)

D. Amazon Neptune

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: A

A is correct
Fully Managed Highly available with replication across 3 AZ
• NoSQL database - not a relational database
• Scales to massive workloads, distributed “serverless” database
• Millions of requests per seconds, trillions of row, 100s of TB of storage
• Fast and consistent in performance
• Single-digit millisecond latency – low latency retrieval
• Integrated with IAM for security, authorization and administration
• Low cost and auto scaling capabilities
upvoted 1 times

  wooin992 3 weeks, 5 days ago

Selected Answer: A

the answer is A
upvoted 1 times

  Nutfrequency_01 1 month, 1 week ago

A- Because Amazon DynamoDB is a nonrelational database that delivers reliable performance at any scale. It's a fully managed, multi-region, multi-
master database that provides consistent single-digit millisecond latency, and offers built-in security, backup and restore, and in-memory caching.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 72/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #67 Topic 1

A company is deploying a machine learning (ML) research project that will require a lot of compute power over several months. The ML

processing jobs do not need to run at specific times.

Which Amazon EC2 instance purchasing option will meet these requirements at the lowest cost?

A. On-Demand Instances

B. Spot Instances

C. Reserved Instances

D. Dedicated Instances

Correct Answer: A

Community vote distribution

B (63%) A (38%)

  tqiu654 12 hours, 17 minutes ago

Selected Answer: B

GPT:
For a machine learning (ML) research project that requires a lot of compute power over several months, where the processing jobs do not need to
run at specific times, the most cost-effective Amazon EC2 instance purchasing option would be:

B. Spot Instances: Amazon EC2 Spot Instances offer the ability to purchase unused EC2 capacity at a significantly reduced rate compared to On-
Demand prices. Spot Instances are ideal for workloads that are flexible in terms of when they can run and can tolerate interruptions, such as batch
processing jobs in ML projects. Since your ML processing jobs do not need to run at specific times, Spot Instances can provide the necessary
compute power at a lower cost. However, it's important to note that Spot Instances can be terminated by AWS with a two-minute warning if AWS
needs the capacity back, so it's vital to design your applications to handle such interruptions.
upvoted 1 times

  plint 1 week, 5 days ago

you stupid guys solution is B !
upvoted 4 times

  morccini 2 weeks, 1 day ago

Based on Chat GPT:

B. Spot Instances

Spot Instances are the most cost-effective option for workloads that can be flexible about when they run. They allow you to use spare Amazon EC2
capacity at a significantly lower price compared to On-Demand Instances. Spot Instances are ideal for workloads like batch processing, data
analysis, and machine learning jobs that can be interrupted or scheduled flexibly
upvoted 1 times

  zespaholti 2 weeks, 2 days ago

Selected Answer: A

as it is not stated if the ops can be interrupted

upvoted 1 times

  Ellbi 2 weeks, 3 days ago

Selected Answer: B

I choose answer B

Amazon EC2 Spot Instances let you take advantage of unused EC2 capacity in the AWS cloud and are available at up to a 90% discount compared
to On-Demand prices.

Use cases:
Run big data and machine learning workloads
Fast-track big data and machine learning workloads by using Spot Instances with Amazon EMR, Hadoop, Spark, or Amazon Sagemaker to process
massive amounts of data.

https://aws.amazon.com/ec2/spot/
upvoted 3 times

  shinzor 2 weeks, 5 days ago

For me there are three key components in this question. 1. A lot of compute power over the 3 months, 2. Jobs do not need to run at specific times,
3. Lowest cost
The question didn't mention the exact amount of compute power and in what kind of setting. If i assume that a lot of compute power equals to a
large EC2 instance type compute optimized then the spot instance is much cheaper than a on-demand instance. Taking into consideration that you
do not need flexibility (key point 2) my answer would be B.
https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 73/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

upvoted 1 times

  petercorn 3 weeks, 1 day ago

Selected Answer: A

EC2 On demand can be used when you do not want to interrupt your application. You are not sure about the time and unsure about workloads
then use OnDemand.

EC2 Spot instances when you are flexible enough that your application can be interrupted or your application is stateless. You need a cheaper
solution for compute resources.
upvoted 1 times

  GSMUTTA 2 weeks, 3 days ago

No, on-demand will still charge even if its not in use. it's not lowest cost.
Answer should be B. spot instance
upvoted 1 times

  petercorn 1 week, 2 days ago

On-demand no charge when it is down.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Stop_Start.html
upvoted 1 times

  Premji 3 weeks, 3 days ago

Selected Answer: B

Spot Instances allow you to access spare EC2 capacity at a significantly lower price compared to On-Demand Instances. They are a cost-effective
choice for workloads that can be interrupted and are flexible regarding timing. Spot Instances can be ideal for ML processing jobs that do not have
strict timing requirements.
upvoted 2 times

  uugla_john 3 weeks, 4 days ago

Alright guys, I found this. Pretty sure it settles things.
https://naterar.medium.com/a-deep-dive-into-aws-instance-types-solving-high-cpu-workload-and-memory-spikes-57e8b5623777

Spot: Spot instances can be valuable for handling sporadic high CPU workloads and memory spikes. >>>However, the inherent uncertainty of
availability makes them less reliable for consistent, high-demand workloads.<<<

On-Demand: provide the necessary computational horsepower exactly when needed, making them ideal for dealing with unexpected CPU and
memory demands.

So, yeah, I'd say 'A'.

upvoted 1 times

  wooin992 3 weeks, 5 days ago

Selected Answer: B

the answer is B
upvoted 1 times

  MarkDillon1075 4 weeks, 1 day ago

Selected Answer: A

A - CPU power is needed. You don't get to choose with Spot Instances.
upvoted 2 times

  felixlugo06 1 month ago

B. Spot Instances

Spot Instances are a cost-effective choice when you have flexible workload requirements and can tolerate interruptions. They allow you to use
spare EC2 capacity at a significantly lower cost compared to On-Demand Instances. You can specify the maximum price you are willing to pay per
instance hour, and your instances will run as long as the current spot price is below your maximum price.
upvoted 1 times

  NayeraB 1 month ago

Selected Answer: A

On-Demand is the most suitable option here since there was no mention that the activity can be interrupted. I mean, there are no guarantees that
a Spot Instance will run for 3 months straight, that's given you found the right capacity in the first place with Spot Instances.
upvoted 1 times

  FedeLocoLette 1 month ago

Spot Instances

Spot Instances offer substantial cost savings compared to On-Demand Instances. They are well-suited for workloads that can be interrupted and
restarted, as they provide access to spare AWS capacity at lower prices. While Spot Instances can be interrupted if the capacity is needed elsewhere,
you can significantly reduce costs by using them for non-time-sensitive workloads like research and batch processing.
upvoted 1 times

  parrtner73 1 month ago

Selected Answer: A

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 74/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

This is HCP case, with a Spot Instance, you are not in control of how much capacity is available or allocated to you. So, it is cheaper, but does not
meet the requirements.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: B

The answer is B.

Amazon SageMaker makes it easy to train machine learning models using managed Amazon EC2 Spot instances. Managed spot training can
optimize the cost of training models up to 90% over on-demand instances. SageMaker manages the Spot interruptions on your behalf.
Managed Spot Training uses Amazon EC2 Spot instance to run training jobs instead of on-demand instances. You can specify which training jobs
use spot instances and a stopping condition that specifies how long SageMaker waits for a job to run using Amazon EC2 Spot instances.
https://docs.aws.amazon.com/sagemaker/latest/dg/model-managed-spot-training.html
upvoted 1 times

  parrtner73 1 month ago

SageMaker is not mentioned in the question.
upvoted 2 times

  discutidor 1 month ago

It's Spot instances. Cost effective and do not need to run at specific times. On-Demand also works but it's not cost effective.
upvoted 1 times

Question #68 Topic 1

Which AWS services or features provide disaster recovery solutions for Amazon EC2 instances? (Choose two.)

A. EC2 Reserved Instances

B. EC2 Amazon Machine Images (AMIs)

C. Amazon Elastic Block Store (Amazon EBS) snapshots

D. AWS Shield

E. Amazon GuardDuty

Correct Answer: BC

Community vote distribution

BC (100%)

  asdfcdsxdfc 1 week, 2 days ago

Selected Answer: BC

BC are correct
upvoted 1 times

  Premji 3 weeks, 3 days ago

Selected Answer: BC

B. EC2 Amazon Machine Images (AMIs): AMIs are used to create backups of EC2 instances, and they can be used to launch replacement instances
in the event of a disaster or data loss. AMIs are essential for creating recovery points for your EC2 instances.

C. Amazon Elastic Block Store (Amazon EBS) snapshots: EBS snapshots allow you to create point-in-time backups of your EBS volumes. These
snapshots can be used to restore data or create new EBS volumes, making them a key component of disaster recovery for EC2 instances.
upvoted 2 times

  wooin992 3 weeks, 5 days ago

Selected Answer: BC

yeah bc
upvoted 1 times

  felixlugo06 1 month ago

B. EC2 Amazon Machine Images (AMIs): You can create Amazon Machine Images of your EC2 instances, which serve as backups of the instances.
These AMIs can be used to launch new instances in the event of a failure or disaster, serving as a form of disaster recovery.

C. Amazon Elastic Block Store (Amazon EBS) snapshots: You can take snapshots of your Amazon EBS volumes attached to EC2 instances. These
snapshots are backups of your data, which can be used to restore or create new volumes in case of data loss or failure.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 75/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #69 Topic 1

Which AWS service provides command line access to AWS tools and resources directly from a web browser?

A. AWS CloudHSM

B. AWS CloudShell

C. Amazon WorkSpaces

D. AWS Cloud Map

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B is correct
"Using AWS CloudShell, a browser-based shell, you can quickly run scripts with the AWS Command Line Interface (CLI), experiment with service
APIs using the AWS CLI, and use other tools to increase your productivity. The CloudShell icon appears in AWS Regions where CloudShell is
available."
upvoted 1 times

Question #70 Topic 1

A network engineer needs to build a hybrid cloud architecture connecting on-premises networks to the AWS Cloud using AWS Direct Connect. The

company has a few VPCs in a single AWS Region and expects to increase the number of VPCs to hundreds over time.

Which AWS service or feature should the engineer use to simplify and scale this connectivity as the VPCs increase in number?

A. VPC endpoints

B. AWS Transit Gateway

C. Amazon Route 53

D. AWS Secrets Manager

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B is correct
upvoted 1 times

  Ellbi 2 weeks, 3 days ago

Selected Answer: B

I choose to answer B

AWS Transit Gateway connects your Amazon Virtual Private Clouds (VPCs) and on-premises networks through a central hub. This connection
simplifies your network and puts an end to complex peering relationships. Transit Gateway acts as a highly scalable cloud router—each new
connection is made only once.

https://aws.amazon.com/transit-gateway/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 76/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #71 Topic 1

A company wants to assess its operational readiness. It also wants to identify and mitigate any operational risks ahead of a new product launch.

Which AWS Support plan offers guidance and support for this kind of event at no additional charge?

A. AWS Business Support

B. AWS Basic Support

C. AWS Developer Support

D. AWS Enterprise Support

Correct Answer: A

Community vote distribution

D (86%) 14%

  rebelfourkix 3 days, 1 hour ago

https://aws.amazon.com/premiumsupport/plans/
"ahead of a new product launch"
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: D

D looks correct
upvoted 1 times

  bn04 1 week, 1 day ago

Selected Answer: D

I think the answer is D.

upvoted 1 times

  eloyus 1 week, 2 days ago

Selected Answer: D

I think is D
upvoted 1 times

  cucuff 1 week, 3 days ago

Selected Answer: A

Little confusing as every support plan from developer to enterprise offers general guidance in < 24 hs.
Going with Business as being ahead of a product launch implies production environment too.
upvoted 1 times

  Bockeworst 1 week, 5 days ago

Selected Answer: D

Shouldn't this be Enterprise support? Keywords "event" and "no additional cost"

AWS Infrastructure Event Management (IEM) offers architecture and scaling guidance and operational support during the preparation and
execution of planned events, such as shopping holidays, product launches, and migrations. For these events, AWS Infrastructure Event
Management will help you assess operational readiness, identify and mitigate risks, and execute your event confidently with AWS experts by your
side. The program is included in the Enterprise Support plan and is available to Business Support customers for an additional fee.
upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 77/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #72 Topic 1

A company wants to establish a schedule for rotating database user credentials.

Which AWS service will support this requirement with the LEAST amount of operational overhead?

A. AWS Systems Manager

B. AWS Secrets Manager

C. AWS License Manager

D. AWS Managed Services

Correct Answer: B

Community vote distribution

B (100%)

  voiz80 2 days, 22 hours ago

Selected Answer: B

B is correct
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 78/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #73 Topic 1

Which AWS service or feature can be used to create a private connection between an on-premises workload and an AWS Cloud workload?

A. Amazon Route 53

B. Amazon Macie

C. AWS Direct Connect

D. AWS PrivateLink

Correct Answer: D

Community vote distribution

C (90%) 10%

  dolpaz 1 day, 2 hours ago

Selected Answer: C

The keyword: PrivateLink

upvoted 1 times

  Amritrajalok 2 days, 2 hours ago

C IS CORRECT
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: C

C is correct
upvoted 1 times

  cucuff 1 week, 3 days ago

Selected Answer: C

AWS PrivateLink provides a private network connection between VPCs and AWS services, while AWS Direct Connect is a dedicated, private
connection between on-premises infrastructure and an AWS Location
upvoted 3 times

  ArchMelody 1 week, 6 days ago

Selected Answer: D

AWS PrivateLink provides private connectivity between virtual private clouds (VPCs), supported AWS services, and your on-premises networks
without exposing your traffic to the public internet.
upvoted 1 times

  rebelfourkix 3 weeks, 3 days ago

Answer is D Private Link.
https://aws.amazon.com/privatelink/#:~:text=AWS%20PrivateLink%20provides%20private%20connectivity,traffic%20to%20the%20public%20intern
et.
upvoted 2 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: C

Answer is C.
Direct connect is for private dedicated connection between on premise and AWS.
PrivateLink is used when you comunicate with third party VPC and it Requires a network load balancer (Service VPC) and ENI (Customer VPC)
upvoted 2 times

  Ailil 1 month ago

Selected Answer: C

AWS PrivateLink: Establish connectivity between VPCs and AWS services without exposing data to the internet

DirectConnect: Create a dedicated network connection to AWS

upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 79/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #74 Topic 1

Which AWS service is used to provide encryption for Amazon EBS?

A. AWS Certificate Manager

B. AWS Systems Manager

C. AWS KMS

D. AWS Config

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: C

C is correct
upvoted 1 times

  Gulfy 1 week, 2 days ago

C
AWS Key Management Service (AWS KMS) lets you create, manage, and control cryptographic keys across your applications and AWS services.
Ref: https://aws.amazon.com/kms/
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The answer is C.

Use Amazon EBS encryption as a straight-forward encryption solution for your EBS resources associated with your EC2 instances. With Amazon EBS
encryption, you aren't required to build, maintain, and secure your own key management infrastructure. Amazon EBS encryption uses AWS KMS
keys when creating encrypted volumes and snapshots.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 80/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #75 Topic 1

A company wants to manage its AWS Cloud resources through a web interface.

Which AWS service will meet this requirement?

A. AWS Management Console

B. AWS CLI

C. AWS SDK

D. AWS Cloud9

Correct Answer: A

Community vote distribution

A (100%)

  dolpaz 1 day, 1 hour ago

Selected Answer: A

The AWS Management Console is a web application that comprises and refers to a broad collection of service consoles for managing AWS
resources.

https://docs.aws.amazon.com/awsconsolehelpdocs/latest/gsg/learn-whats-new.html
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A is correct
upvoted 1 times

Question #76 Topic 1

Which of the following are advantages of the AWS Cloud? (Choose two.)

A. Trade variable expenses for capital expenses

B. High economies of scale

C. Launch globally in minutes

D. Focus on managing hardware infrastructure

E. Overprovision to ensure capacity

Correct Answer: BC

Community vote distribution

BC (100%)

  nocinfra 3 weeks, 4 days ago

Selected Answer: BC

B. Ability to quickly change required capacity: With the AWS Cloud, users can easily scale their infrastructure up or down based on demand. This
flexibility allows for rapid adjustment of resources to match application needs, enabling cost optimization and efficient resource utilization.

C. High economies of scale: AWS operates at a large scale, serving millions of customers globally. This scale allows AWS to achieve cost efficiencies
and pass on the benefits to customers. By leveraging AWS services, users can access enterprise-grade infrastructure and services without the need
for significant upfront investment in hardware or infrastructure.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 81/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #77 Topic 1

Which AWS Cloud benefit is shown by an architecture’s ability to withstand failures with minimal downtime?

A. Agility

B. Elasticity

C. Scalability

D. High availability

Correct Answer: C

Community vote distribution

D (100%)

  Mohamedsadat 3 days, 3 hours ago

Selected Answer: D

D is correct
upvoted 1 times

  Baral 4 days, 23 hours ago

Selected Answer: D

D is the correct answer.

upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: D

D looks correct
upvoted 1 times

  ArchMelody 1 week, 6 days ago

Selected Answer: D

Obviously D. Availability is about resolving any issues in no time for being always available, scalability is about adding/removing resources to suit a
company's needs.
upvoted 2 times

  Shymoon 2 weeks, 2 days ago

Selected Answer: D

D is correct
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: D

D is right.
upvoted 2 times

  MarkDillon1075 4 weeks, 1 day ago

Selected Answer: D

High availability
upvoted 1 times

  TIENPV 4 weeks, 1 day ago

I think is D
upvoted 1 times

  Anyio 1 month ago

Selected Answer: D

The correct answer is D.

High availability = minimal downtime = recovery quickly from failure.

Agility is about how quickly something is deployed.
https://aws.amazon.com/marketplace/solutions/infrastructure-software/high-availability
upvoted 1 times

  Ailil 1 month ago

Selected Answer: D

High availability
https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 82/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

upvoted 1 times

Question #78 Topic 1

A developer needs to maintain a development environment infrastructure and a production environment infrastructure in a repeatable fashion.

Which AWS service should the developer use to meet these requirements?

A. AWS Ground Station

B. AWS Shield

C. AWS IoT Device Defender

D. AWS CloudFormation

Correct Answer: D

Community vote distribution

D (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: D

D is correct
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: D

D. AWS CloudFormation

"AWS CloudFormation lets you model, provision, and manage AWS and third-party resources by treating infrastructure as code."
upvoted 2 times

Question #79 Topic 1

Which task is the customer’s responsibility, according to the AWS shared responsibility model?

A. Maintain the security of the AWS Cloud.

B. Configure firewalls and networks.

C. Patch the operating system of Amazon RDS instances.

D. Implement physical and environmental controls.

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 83/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #80 Topic 1

Which AWS service helps deliver highly available applications with fast failover for multi-Region and Multi-AZ architectures?

A. AWS WAF

B. AWS Global Accelerator

C. AWS Shield

D. AWS Direct Connect

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B looks correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

"Deliver highly available applications with fast failover for multi-Region and multi-AZ architectures."

Reference: https://aws.amazon.com/global-accelerator/
upvoted 1 times

Question #81 Topic 1

A company has a set of ecommerce applications. The applications need to be able to send messages to each other.

Which AWS service meets this requirement?

A. AWS Auto Scaling

B. Elastic Load Balancing

C. Amazon Simple Queue Service (Amazon SQS)

D. Amazon Kinesis Data Streams

Correct Answer: C

Community vote distribution

C (100%)

  schasqui 2 days, 14 hours ago

Selected Answer: C

Amazon Simple Queue Service (SQS): SQS is a fully managed message queuing service that enables you to decouple and scale microservices,
distributed systems, and serverless applications. It allows one application to send messages to a queue, and another application to retrieve those
messages from the queue. This can be helpful in scenarios where the sender and receiver are not required to interact with each other in real-time.
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: C

C looks correct. Through process of elimination

upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 84/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #82 Topic 1

What are the benefits of consolidated billing for AWS Cloud services? (Choose two.)

A. Volume discounts

B. A minimal additional fee for use

C. One bill for multiple accounts

D. Installment payment options

E. Custom cost and usage budget creation

Correct Answer: AC

Community vote distribution

AC (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: AC

AC are correct
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: AC

A,C its correct.

https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 85/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #83 Topic 1

A user wants to review all Amazon S3 buckets with ACLs and S3 bucket policies in the S3 console.

Which AWS service or resource will meet this requirement?

A. S3 Multi-Region Access Points

B. S3 Storage Lens

C. AWS IAM Identity Center (AWS Single Sign-On)

D. Access Analyzer for S3

Correct Answer: A

Community vote distribution

D (100%)

  tqiu654 1 day, 9 hours ago

Selected Answer: D

D looks correct
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: D

D looks correct
upvoted 1 times

  bn04 1 week, 1 day ago

Selected Answer: D

AM Access Analyzer for S3 alerts you to S3 buckets that are configured to allow access to anyone on the internet or other AWS accounts, including
AWS accounts outside of your organization.
upvoted 1 times

  Anyio 1 month ago

Selected Answer: D

The correct answer is D.

When reviewing an at-risk bucket in IAM Access Analyzer for S3, you can block all public access to the bucket with a single click. We recommend
that you block all access to your buckets unless you require public access to support a specific use case. Before you block all public access, ensure
that your applications will continue to work correctly without public access.
https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-analyzer.html
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: D

"IAM Access Analyzer for S3 might show that a bucket has read or write access provided through a bucket access control list (ACL), a bucket policy,
a Multi-Region Access Point policy, or an access point policy...IAM Access Analyzer for S3 is available at no extra cost on the Amazon S3 console."

Reference: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-analyzer.html
upvoted 3 times

  Ailil 1 month ago

Selected Answer: D

IAM Access Analyzer for S3

upvoted 3 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 86/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #84 Topic 1

What is the best resource for a user to find compliance-related information and reports about AWS?

A. AWS Artifact

B. AWS Marketplace

C. Amazon Inspector

D. AWS Support

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A is correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

"AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to security and
compliance reports from AWS and ISVs who sell their products on AWS Marketplace."

Reference: https://aws.amazon.com/artifact/
upvoted 1 times

Question #85 Topic 1

Which AWS service enables companies to deploy an application close to end users?

A. Amazon CloudFront

B. AWS Auto Scaling

C. AWS AppSync

D. Amazon Route 53

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A is correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

"Amazon CloudFront speeds up distribution of your static and dynamic web content, such as .html, .css, .php, image, and media files. When users
request your content, CloudFront delivers it through a worldwide network of edge locations that provide low latency and high performance."

Reference: https://docs.aws.amazon.com/cloudfront/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 87/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #86 Topic 1

Which AWS service or feature improves network performance by sending traffic through the AWS worldwide network infrastructure?

A. Route table

B. AWS Transit Gateway

C. AWS Global Accelerator

D. Amazon VPC

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: C

C is correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: C

"Improve application availability, performance, and security using the AWS global network"

Reference: https://aws.amazon.com/global-accelerator/
upvoted 2 times

Question #87 Topic 1

Which AWS service provides highly durable object storage?

A. Amazon S3

B. Amazon Elastic File System (Amazon EFS)

C. Amazon Elastic Block Store (Amazon EBS)

D. Amazon FSx

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A looks correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

"S3 Standard offers high durability, availability, and performance object storage for frequently accessed data."

Reference: https://aws.amazon.com/s3/storage-classes/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 88/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #88 Topic 1

Which responsibility belongs to AWS when a company hosts its databases on Amazon EC2 instances?

A. Database backups

B. Database software patches

C. Operating system patches

D. Operating system installations

Correct Answer: D

Community vote distribution

C (57%) D (43%)

  tqiu654 11 hours, 58 minutes ago

Selected Answer: C

GPT:
When a company hosts its databases on Amazon EC2 (Elastic Compute Cloud) instances, the responsibility model followed is the shared
responsibility model. In this model, AWS is responsible for the infrastructure layer, while the customer is responsible for the management of the
operating system and above, including databases.

Among the listed responsibilities:

C. Operating system patches: This is the responsibility that belongs to AWS. When using EC2 instances, AWS takes care of the infrastructure layer,
which includes the physical hardware, the network, and the facilities that run the AWS Cloud. However, the customer is responsible for managing
the operating system installed on the EC2 instances. This includes applying operating system patches.
upvoted 1 times

  rankocertified 17 hours, 10 minutes ago

Selected Answer: D

by eliminating A,B,C
upvoted 1 times

  dolpaz 1 day, 1 hour ago

Selected Answer: D

I think D is correct because AWS is responsible for Installing the OS

upvoted 1 times

  Mohamedsadat 3 days, 3 hours ago

Selected Answer: C

c is correct
upvoted 2 times

  3isthemagicnumber 4 days, 14 hours ago

Selected Answer: D

D. AWS provides the infrastructure and services (like EC2) that include a range of Amazon Machine Images (AMIs) with pre-installed operating
systems. This means AWS is responsible for ensuring that these AMIs are available and that the underlying infrastructure to run these instances is
secure and reliable.

The other responsibilities listed - database backups (A), database software patches (B), and operating system patches (C) - are under the purview of
the customer when using Amazon EC2 instances.
upvoted 1 times

  3isthemagicnumber 4 days, 14 hours ago

Selected Answer: C

  Sreeni_A 6 days, 10 hours ago

D is Correct.When a company hosts its databases on Amazon EC2
instances, AWS is responsible for operating system installations. AWS provides and manages the underlying operating system for EC2 instances,
ensuring that it is installed and ready for customer use
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 89/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

  asdfcdsxdfc 1 week, 1 day ago

D does not look correct. can anyone confirm the correct answer?
upvoted 1 times

Question #89 Topic 1

Which of the following are advantages of moving to the AWS Cloud? (Choose two.)

A. The ability to turn over the responsibility for all security to AWS.

B. The ability to use the pay-as-you-go model.

C. The ability to have full control over the physical infrastructure.

D. No longer having to guess what capacity will be required.

E. No longer worrying about users access controls.

Correct Answer: BD

Community vote distribution

BD (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: BD

BD look correct
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 90/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #90 Topic 1

Which AWS service is a hybrid cloud storage service that provides on-premises users access to virtually unlimited cloud storage?

A. AWS DataSync

B. Amazon S3 Glacier

C. AWS Storage Gateway

D. Amazon Elastic Block Store (Amazon EBS)

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: C

C is correct
"Bridge between on-premise data and cloud
data in S3
• Hybrid storage service to allow onpremises
to seamlessly use the AWS
Cloud"
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: C

C. AWS Storage Gateway

AWS Storage Gateway is a hybrid cloud storage service that enables on-premises applications to seamlessly access AWS Cloud-based storage. It
provides a local cache for frequently accessed data to ensure low-latency access, while also storing data in the cloud for durability and scalability.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 91/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #91 Topic 1

A company plans to migrate to AWS and wants to create cost estimates for its AWS use cases.

Which AWS service or tool can the company use to meet these requirements?

A. AWS Pricing Calculator

B. Amazon CloudWatch

C. AWS Cost Explorer

D. AWS Budgets

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A is correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

"AWS Pricing Calculator is a web-based planning tool that you can use to create estimates for your AWS use cases. You can use it to model your
solutions before building them, explore the AWS service price points, and review the calculations behind your estimates. You can use it to help you
plan how you spend, find cost saving opportunities, and make informed decisions when using Amazon Web Services."

Reference: https://docs.aws.amazon.com/pricing-calculator/latest/userguide/what-is-pricing-calculator.html
upvoted 1 times

Question #92 Topic 1

Which tool should a developer use to integrate AWS service features directly into an application?

A. AWS Software Development Kit

B. AWS CodeDeploy

C. AWS Lambda

D. AWS Batch

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A looks correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 92/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #93 Topic 1

Which of the following is a recommended design principle of the AWS Well-Architected Framework?

A. Reduce downtime by making infrastructure changes infrequently and in large increments.

B. Invest the time to configure infrastructure manually.

C. Learn to improve from operational failures.

D. Use monolithic application design for centralization.

Correct Answer: C

Community vote distribution

C (100%)

  nocinfra 3 weeks, 4 days ago

Selected Answer: C

The answer is C

Learn from all operational failures: Drive improvement through lessons learned from all operational events and failures. Share what is learned
across teams and through the entire organization.

https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

Question #94 Topic 1

Using AWS Identity and Access Management (IAM) to grant access only to the resources needed to perform a task is a concept known as:

A. restricted access.

B. as-needed access.

C. least privilege access.

D. token access.

Correct Answer: C

Community vote distribution

C (67%) D (33%)

  bn04 1 week ago

Selected Answer: C

C is the correct answer.

https://www.examtopics.com/discussions/amazon/view/22228-exam-aws-certified-cloud-practitioner-topic-1-question-156/
upvoted 2 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: D

D looks correct, can anyone confirm?

upvoted 1 times

  asdfcdsxdfc 2 days, 8 hours ago

delete this comment plz
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

on second thought C might actually be right
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 93/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #95 Topic 1

Which AWS service or tool can be used to set up a firewall to control traffic going into and coming out of an Amazon VPC subnet?

A. Security group

B. AWS WAF

C. AWS Firewall Manager

D. Network ACL

Correct Answer: C

Community vote distribution

D (65%) A (35%)

  tqiu654 11 hours, 52 minutes ago

Selected Answer: D

GPT:
To set up a firewall to control traffic going into and coming out of an Amazon VPC subnet, the most appropriate AWS service or tool is:

D. Network ACL (Network Access Control List): Network ACLs act as a firewall for controlling traffic into and out of subnets within an Amazon VPC.
They provide a layer of security at the subnet level by allowing you to specify both inbound and outbound traffic rules. These rules can allow or
deny traffic based on protocol, source IP address, destination IP address, and port number.
upvoted 1 times

  rankocertified 16 hours, 52 minutes ago

Selected Answer: D

Cannot be C:
AWS Firewall Manager is a security management service that allows you to centrally configure and manage firewall rules across your accounts and
applications in AWS Organizations. As new applications are created, Firewall Manager makes it easier to bring new applications and resources into
compliance by enforcing a common set of security rules.
therefore the only valid answer is D as it pertains to subnets (VPC)
upvoted 1 times

  FMORADELL 1 day, 1 hour ago

Selected Answer: A

Security groups act as a virtual firewall for your instances, controlling inbound and outbound traffic at the instance level in an Amazon VPC. They
are the most appropriate choice for controlling traffic within a subnet.
upvoted 1 times

  Mohamedsadat 3 days, 3 hours ago

Selected Answer: D

D because it out of VPC

upvoted 1 times

  Blik 4 days, 3 hours ago

Selected Answer: D

SUBNET = NETWORK ACL

upvoted 1 times

  EssentialD 4 days, 14 hours ago

Selected Answer: D

subnet --> Network ACLs

upvoted 1 times

  Sreeni_A 1 week ago

D is correct . AWS Subnet level - Network ACLS
upvoted 1 times

  Sreeni_A 1 week ago

D is correct . AWS Subnet level - AWS Direct Connect
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: D

D is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 94/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

  MAKI1619 1 week, 6 days ago

Firewall Manager provides these benefits:

Helps to protect resources across accounts

Helps to protect all resources of a particular type, such as all Amazon CloudFront distributions

Helps to protect all resources with specific tags

Automatically adds protection to resources that are added to your account

Allows you to subscribe all member accounts in an AWS Organizations organization to AWS Shield Advanced, and automatically subscribes new in-
scope accounts that join the organization

Allows you to apply security group rules to all member accounts or specific subsets of accounts in an AWS Organizations organization, and
automatically applies the rules to new in-scope accounts that join the organization

Lets you use your own rules, or purchase managed rules from AWS Marketplace
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: D

Network ACLs are an optional layer of security that act as a firewall for controlling inbound and outbound traffic at the subnet level.

https://docs.aws.amazon.com/zh_tw/vpc/latest/userguide/VPC_Security.html#VPC_Security_Comparison
upvoted 2 times

  geloNSE 3 weeks, 5 days ago

Selected Answer: D

Since we are on a subnet level, D is the correct answer.

Network ACLs allow or deny inbound and outbound traffic at the subnet level.

Security groups allow inbound and outbound traffic for associated resources, such as EC2 instances.

https://docs.aws.amazon.com/vpc/latest/userguide/infrastructure-security.html#VPC_Security_Comparison
upvoted 1 times

  MarkDillon1075 4 weeks, 1 day ago

Selected Answer: D

D - Subnet level, not instance level

upvoted 1 times

  juneslayer 1 month ago

Selected Answer: D

A network access control list (ACL) allows or denies specific inbound or outbound traffic at the subnet level.
https://docs.aws.amazon.com/vpc/latest/userguide/vpc-network-acls.html
upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

The correct answer is A.

A security group acts as a firewall that controls the traffic allowed to and from the resources in your virtual private cloud (VPC). You can choose the
ports and protocols to allow for inbound traffic and for outbound traffic.
https://docs.aws.amazon.com/vpc/latest/userguide/security-groups.html
upvoted 3 times

  isaphiltrick 1 month ago

Selected Answer: A

"A security group acts as a firewall that controls the traffic allowed to and from the resources in your virtual private cloud (VPC). You can choose the
ports and protocols to allow for inbound traffic and for outbound traffic."

Reference: https://docs.aws.amazon.com/vpc/latest/userguide/security-groups.html
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 95/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #96 Topic 1

A company wants to operate a data warehouse to analyze data without managing the data warehouse infrastructure.

Which AWS service will meet this requirement?

A. Amazon Aurora

B. Amazon Redshift Serverless

C. AWS Lambda

D. Amazon RDS

Correct Answer: B

Community vote distribution

B (100%)

  Sreeni_A 5 days, 23 hours ago

Amazon Redshift Serverless makes it easy to run analytics workloads of any size without having to manage data warehouse infrastructure.
upvoted 1 times

  Sreeni_A 5 days, 23 hours ago

Answer B
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

"Amazon Redshift Serverless makes it easy to run analytics workloads of any size without having to manage data warehouse infrastructure."

Reference: https://aws.amazon.com/redshift/redshift-serverless/
upvoted 1 times

Question #97 Topic 1

How does AWS Cloud computing help businesses reduce costs? (Choose two.)

A. AWS charges the same prices for services in every AWS Region.

B. AWS enables capacity to be adjusted on demand.

C. AWS offers discounts for Amazon EC2 instances that remain idle for more than 1 week.

D. AWS does not charge for data sent from the AWS Cloud to the internet.

E. AWS eliminates many of the costs of building and maintaining on-premises data centers.

Correct Answer: BE

Community vote distribution

BE (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: BE

BE are correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 96/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #98 Topic 1

A company wants to grant users in one AWS account access to resources in another AWS account. The users do not currently have permission to

access the resources.

Which AWS service will meet this requirement?

A. IAM group

B. IAM role

C. IAM tag

D. IAM Access Analyzer

Correct Answer: B

Community vote distribution

B (100%)

  FMORADELL 1 day, 1 hour ago

Selected Answer: B

IAM role
upvoted 1 times

  Sreeni_A 6 days, 10 hours ago

IAM Role
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 97/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #99 Topic 1

Which task is the responsibility of AWS when using AWS services?

A. Management of IAM user permissions

B. Creation of security group rules for outbound access

C. Maintenance of physical and environmental controls

D. Application of Amazon EC2 operating system patches

Correct Answer: A

Community vote distribution

C (93%) 7%

  rankocertified 16 hours, 46 minutes ago

Selected Answer: C

Amazon is responsible for physical & environmental controls of their datacenters

upvoted 1 times

  FMORADELL 1 day, 1 hour ago

Selected Answer: C

AWS is responsible for maintaining the physical and environmental controls of its data centers, including the security and reliability of the
infrastructure. This includes aspects such as power, cooling, and physical security
upvoted 1 times

  Mohamedsadat 3 days, 3 hours ago

Selected Answer: D

DDDDDD
upvoted 1 times

  bn04 1 week ago

Selected Answer: C

for sure its Maintenance of physical and environmental controls

upvoted 1 times

  cucuff 1 week, 5 days ago

Selected Answer: C

All physical stuff is AWS responsability

upvoted 2 times

  ArchMelody 1 week, 6 days ago

Selected Answer: C

Maintenance is always AWS responsibility. It is pretty straightforward as everyone here indicated.

upvoted 2 times

  MAKI1619 1 week, 6 days ago

C without second thought
upvoted 2 times

  Twanvanhaalen1997 2 weeks, 6 days ago

Selected Answer: C

The words: "Infrastructure" and "physical" are ALWAYS a good clue to AWS responsibility.
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: C

C is the answer.
The words: "Infrastructure" and "physical" are ALWAYS a good clue to AWS responsibility.
upvoted 2 times

  ADIL_07 4 weeks, 1 day ago

answer is C
upvoted 1 times

  Anyio 1 month ago

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 98/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Selected Answer: C

Come on dude, how is that A?

The correct answer is C.

AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the
hardware, software, networking, and facilities that run AWS Cloud services.
https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 2 times

  isaphiltrick 1 month ago

Selected Answer: C

”AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the
hardware, software, networking, and facilities that run AWS Cloud services."

Reference: https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 1 times

Question #100 Topic 1

A company wants to automate infrastructure deployment by using infrastructure as code (IaC). The company wants to scale production stacks so

the stacks can be deployed in multiple AWS Regions.

Which AWS service will meet these requirements?

A. Amazon CloudWatch

B. AWS Config

C. AWS Trusted Advisor

D. AWS CloudFormation

Correct Answer: D

Community vote distribution

D (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: D

D looks correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: D

"AWS CloudFormation gives you an easy way to model a collection of related AWS and third-party resources, provision them quickly and
consistently, and manage them throughout their lifecycles, by treating infrastructure as code. A CloudFormation template describes your desired
resources and their dependencies so you can launch and configure them together as a stack. You can use a template to create, update, and delete
an entire stack as a single unit, as often as you need to, instead of managing resources individually. You can manage and provision stacks across
multiple AWS accounts and AWS Regions."

Reference: https://aws.amazon.com/cloudformation/features/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 99/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #101 Topic 1

Which option is an AWS Cloud Adoption Framework (AWS CAF) platform perspective capability?

A. Data architecture

B. Data protection

C. Data governance

D. Data science

Correct Answer: C

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A is correct
upvoted 1 times

  ArchMelody 1 week, 6 days ago

Selected Answer: A

Data Architecture is part of the Platform Perspective.

upvoted 1 times

  Ellbi 2 weeks, 3 days ago

Selected Answer: A

A is the right answer

Platform perspective helps you build an enterprise-grade, scalable, hybrid cloud platform, modernize existing workloads, and implement new
cloud-native solutions.
This includes DATA ARCHITECTURE
https://abhi0751.medium.com/aws-cloud-adoption-framework-aws-caf-a512b89dbcba
upvoted 1 times

  ylatif 4 weeks ago

Data governance is a methodology that ensures data is in the proper condition to support business initiatives and operations. Aligning data
governance to business initiatives has many benefits. Help to determine the right operating model, especially the level of centralization and
decentralization required.
upvoted 1 times

  NayeraB 1 month ago

Selected Answer: A

The right answer is Data Architecture

upvoted 1 times

  Anyio 1 month ago

Selected Answer: A

The correct answer is A.

https://abhi0751.medium.com/aws-cloud-adoption-framework-aws-caf-a512b89dbcba
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 100/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #102 Topic 1

A company is running a workload in the AWS Cloud.

Which AWS best practice ensures the MOST cost-effective architecture for the workload?

A. Loose coupling

B. Rightsizing

C. Caching

D. Redundancy

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B looks correct
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: B

Right sizing is the process of matching instance types and sizes to your workload performance and capacity requirements at the lowest possible
cost.

Ref link: https://aws.amazon.com/aws-cost-management/aws-cost-optimization/right-

sizing/#:~:text=Right%20sizing%20is%20the%20process,at%20the%20lowest%20possible%20cost.
upvoted 2 times

Question #103 Topic 1

A company is using a third-party service to back up 10 TB of data to a tape library. The on-premises backup server is running out of space. The

company wants to use AWS services for the backups without changing its existing backup workflows.

Which AWS service should the company use to meet these requirements?

A. Amazon Elastic Block Store (Amazon EBS)

B. AWS Storage Gateway

C. Amazon Elastic Container Service (Amazon ECS)

D. AWS Lambda

Correct Answer: B

  ylatif 4 weeks ago

AWS Storage Gateway is a hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage. Storage Gateway
provides a standard set of storage protocols such as iSCSI, SMB, and NFS, which allow you to use AWS storage without rewriting your existing
applications.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 101/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #104 Topic 1

Which AWS tool gives users the ability to plan their service usage, service costs, and instance reservations, and also allows them to set custom

alerts when their costs or usage exceed established thresholds?

A. Cost Explorer

B. AWS Budgets

C. AWS Cost and Usage Report

D. Reserved Instance reporting

Correct Answer: A

Community vote distribution

B (100%)

  Saurabhg7 3 days, 6 hours ago

While Budgets can help you get the required alerts, Cost Explorer is the platform to visualize the spends and also takes you to budget section.
upvoted 1 times

  bn04 1 week ago

Selected Answer: B

The correct answer is B.

upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: B

B. AWS Budgets
upvoted 2 times

  ylatif 4 weeks ago

  Anyio 1 month ago

Selected Answer: B

The correct answer is B.

"Using AWS Budgets, you can set a budget that alerts you when you exceed (or are forecasted to exceed) your budgeted cost or usage amount.
You can also set alerts based on your RI or Savings Plans Utilization and Coverage using AWS Budgets."
https://aws.amazon.com/aws-cost-management/aws-budgets/faqs/
upvoted 2 times

  isaphiltrick 1 month ago

Selected Answer: B

"With AWS Budgets, set custom budgets to track your costs and usage, and respond quickly to alerts received from email or SNS notifications if
you exceed your threshold."

Reference: https://aws.amazon.com/aws-cost-management/aws-budgets/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 102/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #105 Topic 1

Which tasks are the customer’s responsibility, according to the AWS shared responsibility model? (Choose two.)

A. Establish the global infrastructure.

B. Perform client-side data encryption.

C. Configure IAM credentials.

D. Secure edge locations.

E. Patch Amazon RDS DB instances.

Correct Answer: BC

Community vote distribution

BC (100%)

  Sreeni_A 5 days, 22 hours ago

BC are correct
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: BC

BC are correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 103/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #106 Topic 1

A developer has been hired by a large company and needs AWS credentials.

Which are security best practices that should be followed? (Choose two.)

A. Grant the developer access to only the AWS resources needed to perform the job.

B. Share the AWS account root user credentials with the developer.

C. Add the developer to the administrator’s group in AWS IAM.

D. Configure a password policy that ensures the developer’s password cannot be changed.

E. Ensure the account password policy requires a minimum length.

Correct Answer: AE

Community vote distribution

AE (75%) AD (25%)

  ABA2021 11 hours, 20 minutes ago

Selected Answer: AE

AE ARE COORECT
upvoted 1 times

  TheRealTrompie99 1 day, 19 hours ago

A and E are correct answers
upvoted 1 times

  EssentialD 4 days, 14 hours ago

Selected Answer: AE

A, E are correct answers.

upvoted 1 times

  peable 6 days, 19 hours ago

Selected Answer: AE

No root account required for development.

No admin required for AWS.
An employee should regularly (depending on corporate policy) change the password.
E seems correct, because one shouldn't use easy passwords.
upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: AD

I think AD are correct

upvoted 1 times

  aragon_saa 2 weeks, 6 days ago

https://www.examtopics.com/discussions/amazon/view/35036-exam-aws-certified-cloud-practitioner-topic-1-question-486/
upvoted 1 times

  TIENPV 4 weeks, 1 day ago

I think the correct answer is AD
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 104/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #107 Topic 1

A company has multiple AWS accounts that include compute workloads that cannot be interrupted. The company wants to obtain billing discounts

that are based on the company’s use of AWS services.

Which AWS feature or purchasing option will meet these requirements?

A. Resource tagging

B. Consolidated billing

C. Pay-as-you-go pricing

D. Spot Instances

Correct Answer: C

Community vote distribution

B (100%)

  hiranyagali Highly Voted  2 weeks, 4 days ago

this site has lot of wrong answers lol..

upvoted 7 times

  1VirtualO 2 weeks, 4 days ago

Yes, finding many incorrect answers
upvoted 2 times

  asdfcdsxdfc Most Recent  1 week, 1 day ago

Selected Answer: B

B is correct
upvoted 1 times

  ArchMelody 1 week, 5 days ago

Selected Answer: B

Consolidated billing is the correct answer

upvoted 1 times

  curiouscatman 2 weeks, 6 days ago

Selected Answer: B

B. Consolidated billing.

Consolidated billing allows you to combine multiple AWS accounts and aggregate the usage and spending across those accounts. This simplifies
billing and enables you to take advantage of volume discounts, which can lead to cost savings. Each account can still maintain its own resource
tagging and pricing options, so it's possible to manage compute workloads in individual accounts as needed.
upvoted 2 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: B

Vote for B
upvoted 1 times

  TIENPV 4 weeks, 1 day ago

The correct answer is B
upvoted 1 times

  juneslayer 1 month ago

Selected Answer: B

You can combine the usage across all accounts in the organization to share the volume pricing discounts
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 105/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

  Anyio 1 month ago

Selected Answer: B

The correct answer is B.

You can use the consolidated billing feature in AWS Organizations to consolidate billing and payment for multiple AWS accounts. You can combine
the usage across all accounts in the organization to share the volume pricing discounts, Reserved Instance discounts, and Savings Plans. This can
result in a lower charge for your project, department, or company than with individual standalone accounts.
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/consolidated-billing.html
upvoted 2 times

Question #108 Topic 1

A user wants to allow applications running on an Amazon EC2 instance to make calls to other AWS services. The access granted must be secure.

Which AWS service or feature should be used?

A. Security groups

B. AWS Firewall Manager

C. IAM roles

D. IAM user SSH keys

Correct Answer: A

Community vote distribution

C (100%)

  allcloudguru99 2 weeks, 6 days ago

Selected Answer: C

C - IAM Roles. Roles are used to allow users or services access to other AWS resources.
upvoted 2 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: C

C. IAM roles
upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The correct answer is C.

AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. With IAM, you can centrally
manage permissions that control which AWS resources users can access.
You can use IAM features to securely provide credentials for applications that run on EC2 instances. These credentials provide permissions for your
application to access other AWS resources.
https://docs.aws.amazon.com/IAM/latest/UserGuide/introduction.html
upvoted 2 times

  isaphiltrick 1 month ago

I agree with C - IAM Roles but not with your explanation or reference. Your explanation is about IAM in general whereas the answer C is specific
to IAM roles.

"You can use roles to delegate access to users, applications, or services that don't normally have access to your AWS resources."
Reference: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 106/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #109 Topic 1

A company wants a fully managed Windows file server for its Windows-based applications.

Which AWS service will meet this requirement?

A. Amazon FSx

B. Amazon Elastic Kubernetes Service (Amazon EKS)

C. Amazon Elastic Container Service (Amazon ECS)

D. Amazon EMR

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: A

A is correct
upvoted 1 times

  Gulfy 1 week, 3 days ago

A. With Amazon FSx, you can choose between four widely-used file systems: Lustre, NetApp ONTAP, OpenZFS, and Windows File Server.
upvoted 1 times

  ylatif 4 weeks ago

Amazon FSx lets you easily and securely backup, archive, or replicate your on-premises file storage to AWS in order to meet regulatory, data
retention, or disaster recovery requirements. Learn how to get started. Choosing an Amazon FSx File System.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 107/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #110 Topic 1

A company wants to migrate its NFS on-premises workload to AWS.

Which AWS Storage Gateway type should the company use to meet this requirement?

A. Tape Gateway

B. Volume Gateway

C. Amazon FSx File Gateway

D. Amazon S3 File Gateway

Correct Answer: D

Community vote distribution

D (60%) C (40%)

  tqiu654 8 hours, 14 minutes ago

Selected Answer: C

GPT:
For a company looking to migrate its NFS (Network File System) on-premises workload to AWS, the appropriate AWS Storage Gateway type to use
is:

C. Amazon FSx File Gateway: Amazon FSx File Gateway provides on-premises applications with a seamless way to access fully managed file shares
in the cloud using the industry-standard NFS and SMB protocols. It allows you to store and retrieve files in Amazon FSx for Windows File Server
and Amazon FSx for Lustre, making it suitable for NFS on-premises workloads that need to be migrated to AWS. FSx File Gateway optimizes the
transfer of data to AWS, providing low-latency access to data in AWS for on-premises applications.
upvoted 1 times

  bonbonda 1 day, 7 hours ago

Selected Answer: C

https://aws.amazon.com/storagegateway/file/fsx/
upvoted 1 times

  Aman_JS 1 day, 13 hours ago

Selected Answer: D

Amazon S3 File Gateway offers SMB or NFS-based access to data in Amazon S3 with local caching. It can be used for on-premises data-intensive
Amazon EC2-based applications that need file protocol access to S3 object storage.
upvoted 2 times

  EssentialD 1 week ago

Amazon S3 File Gateway" is designed to provide a file interface using the SMB protocol, not NFS. If the existing workload relies on NFS for file
access, using "Amazon FSx File Gateway" would be a more appropriate choice.

In summary, if the requirement is to migrate an NFS workload to AWS, "Amazon FSx File Gateway" is the preferred option. If the workload used
SMB, then "Amazon S3 File Gateway" could be considered.
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: D

"Amazon S3 File Gateway provides a seamless way to connect to the cloud in order to store application data files and backup images as durable
objects in Amazon S3 cloud storage. Amazon S3 File Gateway offers SMB or NFS-based access to data in Amazon S3 with local caching. It can be
used for on-premises data-intensive Amazon EC2-based applications that need file protocol access to S3 object storage."

Reference: https://aws.amazon.com/storagegateway/file/s3/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 108/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #111 Topic 1

A company needs to track the activity in its AWS accounts, and needs to know when an API call is made against its AWS resources.

Which AWS tool or service can be used to meet these requirements?

A. Amazon CloudWatch

B. Amazon Inspector

C. AWS CloudTrail

D. AWS IAM

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: C

C is correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: C

"CloudTrail enables auditing, security monitoring, and operational troubleshooting by tracking user activity and API usage. CloudTrail logs,
continuously monitors, and retains account activity related to actions across your AWS infrastructure, giving you control over storage, analysis, and
remediation actions."

Reference: https://aws.amazon.com/cloudtrail/faqs/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 109/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #112 Topic 1

A company has an uninterruptible application that runs on Amazon EC2 instances. The application constantly processes a backlog of files in an

Amazon Simple Queue Service (Amazon SQS) queue. This usage is expected to continue to grow for years.

What is the MOST cost-effective EC2 instance purchasing model to meet these requirements?

A. Spot Instances

B. On-Demand Instances

C. Savings Plans

D. Dedicated Hosts

Correct Answer: A

Community vote distribution

C (88%) 13%

  EssentialD 4 days, 14 hours ago

Selected Answer: C

Savings Plans is the correct one.

upvoted 1 times

  MAKI1619 1 week, 6 days ago

Key phrases to support C - Savings Plans: "uninterruptible application" and "usage is expected to continue to grow for years."
upvoted 1 times

  nocinfra 3 weeks, 4 days ago

Selected Answer: C

Answer C
upvoted 2 times

  Anuragh 1 month ago

Savings Plans are a flexible pricing model that offer low prices on EC2 usage, in exchange for a commitment to a consistent amount of usage,
measured in dollars per hour, for a term of 1 or 3 years. Savings Plans can reduce your EC2 costs by up to 72% compared to On-Demand prices.
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: C

Key phrases to support C - Savings Plans: "uninterruptible application" and "usage is expected to continue to grow for years."

Company can commit to 1 or 3 year plan to obtain savings.

upvoted 2 times

  Anyio 1 month ago

Selected Answer: C

The correct answer is C.

upvoted 1 times

  aragon_saa 1 month ago

C
Savings Plans is a flexible pricing model that can help you reduce your bill by up to 72% compared to On-Demand prices
upvoted 2 times

  Bleed 1 month ago

Selected Answer: B

Spot Instances can be interrupted.

upvoted 1 times

  Ailil 1 month ago

Selected Answer: C

uninterruptible application
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 110/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #113 Topic 1

A company wants an AWS service to provide product recommendations based on its customer data.

Which AWS service will meet this requirement?

A. Amazon Polly

B. Amazon Personalize

C. Amazon Comprehend

D. Amazon Rekognition

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B is correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

"Amazon Personalize accelerates your digital transformation with ML, making it easier to integrate personalized recommendations into existing
websites, applications, email marketing systems, and more."

Reference: https://aws.amazon.com/personalize/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 111/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #114 Topic 1

A company is planning its migration to the AWS Cloud. The company is identifying its capability gaps by using the AWS Cloud Adoption

Framework (AWS CAF) perspectives.

Which phase of the cloud transformation journey includes these identification activities?

A. Envision

B. Align

C. Scale

D. Launch

Correct Answer: B

Community vote distribution

B (100%)

  Aman_JS 1 day, 13 hours ago

Selected Answer: B

Align – identify capability gaps

upvoted 1 times

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B is correct
"Align – identify capability gaps across the 6 AWS CAF Perspectives
which results in an Action Plan."
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

"Align phase focuses on identifying capability gaps across the six AWS CAF perspectives, identifying cross-organizational dependencies, and
surfacing stakeholder concerns and challenges."

Reference: https://docs.aws.amazon.com/whitepapers/latest/overview-aws-cloud-adoption-framework/your-cloud-transformation-journey.html
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 112/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #115 Topic 1

A social media company wants to protect its web application from common web exploits such as SQL injections and cross-site scripting.

Which AWS service will meet these requirements?

A. Amazon Inspector

B. AWS WAF

C. Amazon GuardDuty

D. Amazon CloudWatch

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 1 week, 1 day ago

Selected Answer: B

B looks correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

"AWS WAF is a web application firewall that helps protect web applications from attacks by allowing you to configure rules that allow, block, or
monitor (count) web requests based on conditions that you define. These conditions include IP addresses, HTTP headers, HTTP body, URI strings,
SQL injection and cross-site scripting."

References: https://aws.amazon.com/waf/faqs/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 113/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #116 Topic 1

Which fully managed AWS service assists with the creation, testing, and management of custom Amazon EC2 images?

A. EC2 Image Builder

B. Amazon Machine Image (AMI)

C. AWS Launch Wizard

D. AWS Elastic Beanstalk

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 4 days, 10 hours ago

Selected Answer: A

A is correct
Used to automate the creation of Virtual Machines or container images
• => Automate the creation, maintain, validate and test EC2 AMIs
• Can be run on a schedule (weekly, whenever packages are updated, etc…)
• Free service (only pay for the underlying resources)
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

"EC2 Image Builder simplifies the creation, maintenance, validation, sharing, and deployment of Linux or Windows images for use with Amazon EC2
and on-premises."

Reference: https://aws.amazon.com/image-builder/faqs/
upvoted 1 times

Question #117 Topic 1

A company wants an automated process to continuously scan its Amazon EC2 instances for software vulnerabilities.

Which AWS service will meet these requirements?

A. Amazon GuardDuty

B. Amazon Inspector

C. Amazon Detective

D. Amazon Cognito

Correct Answer: B

Community vote distribution

B (100%)

  isaphiltrick 1 month ago

Selected Answer: B

"Amazon Inspector is an automated vulnerability management service that continually scans Amazon Elastic Compute Cloud (EC2), AWS Lambda
functions, and container workloads for software vulnerabilities and unintended network exposure."

Reference: https://aws.amazon.com/inspector/faqs/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 114/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #118 Topic 1

A company needs to perform data processing once a week that typically takes about 5 hours to complete.

Which AWS service should the company use for this workload?

A. AWS Lambda

B. Amazon EC2

C. AWS CodeDeploy

D. AWS Wavelength

Correct Answer: B

Community vote distribution

B (86%) 14%

  geloNSE 3 weeks, 5 days ago

Selected Answer: B

The best AWS service for a workload that needs to be processed once a week for about 5 hours is Amazon EC2.

AWS Lambda is a serverless computing service that runs your code without provisioning or managing servers. However, Lambda functions have a
maximum execution time of 15 minutes. Therefore, Lambda is not suitable for workloads that need to run for longer than 15 minutes.

Amazon EC2 is a scalable computing service that provides instances with varying capabilities and pricing options. You can choose an EC2 instance
that is right for your data processing job and then terminate the instance when the job is complete. This will help you to save money on your AWS
bill.
upvoted 4 times

  juneslayer 1 month ago

Selected Answer: B

Q: How long can an AWS Lambda function execute?

AWS Lambda functions can be configured to run up to 15 minutes per execution. You can set the timeout to any value between 1 second and 15
minutes.

https://aws.amazon.com/lambda/faqs/?nc1=h_ls
upvoted 2 times

  NayeraB 1 month ago

Selected Answer: A

AWS Lambda is the correst answer

upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 115/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #119 Topic 1

Which AWS service or feature provides log information of the inbound and outbound traffic on network interfaces in a VPC?

A. Amazon CloudWatch Logs

B. AWS CloudTrail

C. VPC Flow Logs

D. AWS Identity and Access Management (IAM)

Correct Answer: C

Community vote distribution

C (100%)

  Aman_JS 1 day, 13 hours ago

Selected Answer: C

VPC Flow Logs

upvoted 1 times

  Anyio 1 month ago

Selected Answer: C

The correct answer is C.

VPC flow logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC. Flow logs
data can be published to either Amazon CloudWatch Logs or Amazon S3. You can monitor your VPC flow logs to gain operational visibility about
your network dependencies and traffic patterns, detect anomalies and prevent data leakage, or troubleshoot network connectivity and
configuration issues.
https://aws.amazon.com/vpc/faqs/#:~:text=VPC%20flow%20logs%20is%20a,network%20interfaces%20in%20your%20VPC.
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 116/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #120 Topic 1

A company wants to design a centralized storage system to manage the configuration data and passwords for its critical business applications.

Which AWS service or capability will meet these requirements MOST cost-effectively?

A. AWS Systems Manager Parameter Store

B. AWS Secrets Manager

C. AWS Config

D. Amazon S3

Correct Answer: A

Community vote distribution

A (75%) B (25%)

  FMORADELL 1 day ago

Selected Answer: B

if your use case involves non-sensitive configuration data and you want a cost-effective solution, AWS Systems Manager Parameter Store might be
the preferred choice. If you need additional security features for sensitive information, AWS Secrets Manager could be more suitable despite
potentially higher costs.
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

"Parameter Store, a capability of AWS Systems Manager, provides secure, hierarchical storage for configuration data management and secrets
management. You can store data such as passwords, database strings, Amazon Machine Image (AMI) IDs, and license codes as parameter values."

Reference: https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-parameter-store.html
upvoted 2 times

  NayeraB 1 month ago

Selected Answer: A

A is correct...

AWS Systems Manager provides a centralized store to manage your configuration data, whether plain-text data such as database strings or secrets
such as passwords. This allows you to separate your secrets and configuration data from your code.

https://aws.amazon.com/systems-
manager/features/#:~:text=AppConfig%20feature%20page.-,Parameter%20Store,configuration%20data%20from%20your%20code.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 117/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #121 Topic 1

A company plans to deploy containers on AWS. The company wants full control of the compute resources that host the containers. Which AWS

service will meet these requirements?

A. Amazon Elastic Kubernetes Service (Amazon EKS)

B. AWS Fargate

C. Amazon EC2

D. Amazon Elastic Container Service (Amazon ECS)

Correct Answer: C

Community vote distribution

D (83%) C (17%)

  bonbonda 1 day, 7 hours ago

Selected Answer: D

Amazon ECS with EC2 Launch Type: ECS allows you to run containers on AWS. When you use the EC2 launch type with ECS, you have full control
over the underlying EC2 instances that host your containers. This means you can choose the instance types, configure the instances, and manage
the scaling and monitoring of these instances as per your requirements.
upvoted 1 times

  f77aad9 3 days, 20 hours ago

Selected Answer: C

C. Amazon EC2

Amazon EC2 (Elastic Compute Cloud) provides virtual machines (EC2 instances) that allow you to have full control over the compute resources.
When you deploy containers on EC2 instances, you have the flexibility to configure the instances according to your specific requirements, including
the type of instance, storage, networking, and other parameters.
upvoted 1 times

  bn04 5 days, 11 hours ago

Selected Answer: D

In both ECS and EKS, you define and manage the infrastructure (EC2 instances) where your containers run, giving you control over the compute
resources. The choice between ECS and EKS depends on whether you prefer a fully managed service (ECS) or if you want to manage the Kubernetes
control plane yourself (EKS).
upvoted 2 times

  asdfcdsxdfc 6 days, 13 hours ago

Selected Answer: D

D looks correct
upvoted 1 times

  eloyus 1 week ago

Selected Answer: D

Amazon ECS
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 118/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #122 Topic 1

Which AWS service or feature allows users to create new AWS accounts, group multiple accounts to organize workflows, and apply policies to

groups of accounts?

A. AWS Identity and Access Management (IAM)

B. AWS Trusted Advisor

C. AWS CloudFormation

D. AWS Organizations

Correct Answer: D

Community vote distribution

D (100%)

  isaphiltrick 1 month ago

Selected Answer: D

"AWS Organizations provides you with the capability to centrally manage and govern your cloud environment. You can manage and organize your
accounts under a single bill, set central policies and configuration requirements for your entire organization, create custom permissions or
capabilities within the organization, and delegate responsibilities to other accounts so they can manage on behalf of the organization."

Reference: https://aws.amazon.com/organizations/features/
upvoted 1 times

Question #123 Topic 1

A company wants to store and retrieve files in Amazon S3 for its existing on-premises applications by using industry-standard file system

protocols.

Which AWS service will meet these requirements?

A. AWS DataSync

B. AWS Snowball Edge

C. Amazon S3 File Gateway

D. AWS Transfer Family

Correct Answer: C

Community vote distribution

C (100%)

  isaphiltrick 1 month ago

Selected Answer: C

Reference: https://aws.amazon.com/storagegateway/file/s3/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 119/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #124 Topic 1

A company wants to block SQL injection attacks.

Which AWS service or feature should the company use to meet this requirement?

A. AWS WAF

B. Network ACLs

C. Security groups

D. AWS Certificate Manager (ACM)

Correct Answer: A

Community vote distribution

A (100%)

  Aman_JS 1 day, 13 hours ago

Selected Answer: A

AWS WAF
upvoted 1 times

  asdfcdsxdfc 6 days, 13 hours ago

Selected Answer: A

A is correct
"Protects from common attack - SQL injection and Cross-Site Scripting (XSS)"
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: A

References: https://aws.amazon.com/waf/faqs/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 120/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #125 Topic 1

A company wants a unified tool to provide a consistent method to interact with AWS services.

Which AWS service or tool will meet this requirement?

A. AWS CLI

B. Amazon Elastic Container Service (Amazon ECS)

C. AWS Cloud9

D. AWS Virtual Private Network (AWS VPN)

Correct Answer: A

Community vote distribution

A (100%)

  isaphiltrick 1 month ago

Selected Answer: A

"The AWS Command Line Interface (AWS CLI) is a unified tool to manage your AWS services. With just one tool to download and configure, you can
control multiple AWS services from the command line and automate them through scripts."

Reference: https://aws.amazon.com/cli/
upvoted 1 times

Question #126 Topic 1

A company needs to evaluate its AWS environment and provide best practice recommendations in five categories: cost, performance, service

limits, fault tolerance and security.

Which AWS service can the company use to meet these requirements?

A. AWS Shield

B. AWS WAF

C. AWS Trusted Advisor

D. AWS Service Catalog

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 6 days, 12 hours ago

Selected Answer: C

C is correct
Analyze your AWS accounts and provides
recommendation on 5 categories
• Cost optimization
• Performance
• Security
• Fault tolerance
• Service limits
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 121/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #127 Topic 1

Which perspective in the AWS Cloud Adoption Framework (AWS CAF) includes capabilities for configuration management and patch

management?

A. Platform

B. Operations

C. Security

D. Governance

Correct Answer: B

Community vote distribution

B (100%)

  Sreeni_A 5 days, 21 hours ago

Correct Answer B
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

AWS CAF Operations perspective capabilities

• Observability
• Event management (AIOps)
• Incident and problem management
• Change and release management
• Performance and capacity management
• Configuration management
• Patch management
• Availability and continuity management
• Application management

Reference: https://docs.aws.amazon.com/whitepapers/latest/overview-aws-cloud-adoption-framework/operations-perspective.html
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 122/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #128 Topic 1

A company has a compute workload that is steady, predictable, and uninterruptible.

Which Amazon EC2 instance purchasing options meet these requirements MOST cost-effectively? (Choose two.)

A. On-Demand Instances

B. Reserved Instances

C. Spot Instances

D. Saving Plans

E. Dedicated Hosts

Correct Answer: BE

Community vote distribution

BD (100%)

  Gulfy 1 week, 3 days ago

Selected Answer: BD

B & D for cost savings.

upvoted 1 times

  ArchMelody 1 week, 5 days ago

Selected Answer: BD

B&D, because it is predictable, non-interruptable (so non-Spot) and most cost-effective (dedicated & on-demand cost more).
upvoted 1 times

  nocinfra 3 weeks, 3 days ago

Selected Answer: BD

B&D is correct
upvoted 1 times

  juneslayer 1 month ago

Selected Answer: BD

E is not cost-effectively
upvoted 1 times

  Ailil 1 month ago

Selected Answer: BD

uninterruptable
upvoted 1 times

  Ailil 1 month ago

most cost effectives are B&D
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 123/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #129 Topic 1

Which Amazon EC2 pricing model is the MOST cost efficient for an uninterruptible workload that runs once a year for 24 hours?

A. On-Demand Instances

B. Reserved Instances

C. Spot Instances

D. Dedicated Instances

Correct Answer: C

Community vote distribution

A (64%) B (36%)

  asdfcdsxdfc 6 days, 11 hours ago

Selected Answer: A

A is correct
• On-Demand Instances – short workload, predictable pricing, pay by second
upvoted 1 times

  petercorn 1 week, 2 days ago

Selected Answer: A

the key word is run once a year

upvoted 1 times

  ArchMelody 1 week, 5 days ago

Selected Answer: A

On Demand (because Spot is unintteruptable and Reserved is expensive for the 1 year or 3 year contract)
upvoted 1 times

  hiranyagali 2 weeks, 4 days ago

Ans: On Demand (because Spot its uninttruptable, Reserved is expensive for the 1 year or 3 year contract and paying for 3 years to run 24hrs/year
job lol)
upvoted 1 times

  juneslayer 1 month ago

Selected Answer: B

B is correct.
The keyword is uninterruptable and 24 hours.
Amazon EC2 Reserved Instances (RI) provide a significant discount (up to 72%) compared to On-Demand pricing.
Savings Plans is a flexible pricing model that can help you reduce your bill by up to 72% compared to On-Demand prices, in exchange for a
commitment to a consistent amount of usage (measured in $/hour) for a 1- or 3-year term.
The best solution for this questions is using RI + Savings Plans
upvoted 2 times

  isaphiltrick 1 month ago

Selected Answer: A

C - Spot Instances is NOT correct because one of the requirements is "uninterruptible workload." "Spot Instances are a cost-effective choice if you
can be flexible about when your applications run and if your applications can be interrupted."
Reference: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-spot-instances.html

B - Reserved Instances is also NOT correct because the workload only "runs once a year for 24 hours." Why would you commit to either a 1 year or
3 year plan only to run it once?

The correct answer is A - On-Demand Instances. AWS "recommends that you use On-Demand Instances for applications with short-term, irregular
workloads that cannot be interrupted."
Reference: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-on-demand-instances.html
upvoted 2 times

  Anyio 1 month ago

Selected Answer: A

The Correct answer is A.

With On-Demand instances, you pay for compute capacity by the hour or the second depending on which instances you run. No longer-term
commitments or upfront payments are needed. You can increase or decrease your compute capacity depending on the demands of your
application and only pay the specified per hourly rates for the instance you use.
Reference:
https://aws.amazon.com/ec2/pricing/
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 124/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

  Ailil 1 month ago

Selected Answer: B

because uninterruptable
upvoted 2 times

Question #130 Topic 1

Which option is a shared responsibility between AWS and its customers under the AWS shared responsibility model?

A. Configuration of Amazon EC2 instance operating systems

B. Application file system server-side encryption

C. Patch management

D. Security of the physical infrastructure

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 6 days, 11 hours ago

Selected Answer: C

C is correct
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: C

Shared Controls
"AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and
applications."

Reference: https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 125/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #131 Topic 1

A company wants to migrate its on-premises workloads to the AWS Cloud. The company wants to separate workloads for chargeback to different

departments.

Which AWS services or features will meet these requirements? (Choose two.)

A. Placement groups

B. Consolidated billing

C. Edge locations

D. AWS Config

E. Multiple AWS accounts

Correct Answer: BE

Community vote distribution

BE (100%)

  3isthemagicnumber 4 days, 13 hours ago

Selected Answer: BE

B. Consolidated Billing

Consolidated billing is a feature of AWS Organizations that allows you to combine billing for multiple AWS accounts. With consolidated billing,
each department can have its own AWS account for tracking and managing its resources separately, while the company enjoys the convenience of
a single payment method for all these accounts. This setup makes it easier to track costs and implement chargeback mechanisms.
E. Multiple AWS Accounts

Creating multiple AWS accounts, one for each department, is an effective way to segregate resources, manage permissions, and track costs
separately. This approach enhances security by limiting the scope of access and impact of changes, and it simplifies the process of attributing costs
to the right department. Combined with consolidated billing, it provides both organizational flexibility and centralized financial control.
upvoted 1 times

Question #132 Topic 1

Which task is a responsibility of AWS, according to the AWS shared responsibility model?

A. Enable client-side encryption for objects that are stored in Amazon S3.

B. Configure IAM security policies to comply with the principle of least privilege.

C. Patch the guest operating system on an Amazon EC2 instance.

D. Apply updates to the Nitro Hypervisor.

Correct Answer: D

Community vote distribution

D (100%)

  isaphiltrick 1 month ago

Selected Answer: D

"AWS responsibility “Security of the Cloud” - AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS
Cloud. This infrastructure is composed of the hardware, software, networking, and facilities that run AWS Cloud services."

Reference: https://aws.amazon.com/compliance/shared-responsibility-model/
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 126/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #133 Topic 1

Which option is a benefit of using AWS for cloud computing?

A. Trade variable expense for fixed expense

B. Pay-as-you-go pricing

C. Decreased speed and agility

D. Spending money running and maintaining data centers

Correct Answer: A

Community vote distribution

B (90%) 10%

  EssentialD 4 days, 13 hours ago

Selected Answer: B

B Is the correct one

upvoted 1 times

  ArchMelody 1 week, 5 days ago

Selected Answer: B

Obviously B, pay-as-you-go pricing. It is the same in every cloud platform e.g. Azure, GCP, AWS.
Come on, we pay for this site here and they make so obvious mistakes... :(
upvoted 1 times

  isaphiltrick 1 month ago

Selected Answer: B

The answer is given In the doc "Six advantages of cloud computing." The benefit from massive economies of scale is pay-as-you-go pricing.

Reference: https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  Bleed 1 month ago

Selected Answer: A

Pay as you go isn't an option in the "Six advantages of cloud computing" document:
https://docs.aws.amazon.com/whitepapers/latest/aws-overview/six-advantages-of-cloud-computing.html
upvoted 1 times

  isaphiltrick 1 month ago

You should've read the entire 2nd bullet "Benefit from massive economies of scale." It reads "By using cloud computing, you can achieve a lower
variable cost than you can get on your own. Because usage from hundreds of thousands of customers is aggregated in the cloud, providers
such as AWS can achieve higher economies of scale, which translates into lower pay as-you-go prices."
upvoted 1 times

  Ailil 1 month ago

Yes but the first is on the link: Trade fixed expense for variable expense, answer A is the opposite of this
upvoted 3 times

  Anyio 1 month ago

Selected Answer: B

Definitely B. Pay-as-you-go.
upvoted 2 times

  Ailil 1 month ago

Selected Answer: B

Trade fixed expense for variable expense and not vice versa, so option B
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 127/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #134 Topic 1

Which option is an AWS Cloud Adoption Framework (AWS CAF) business perspective capability?

A. Culture evolution

B. Event management

C. Data monetization

D. Platform architecture

Correct Answer: A

Community vote distribution

C (89%) 11%

  3isthemagicnumber 4 days, 13 hours ago

Selected Answer: C

Data Monetization: This falls under the Business Perspective of the AWS CAF, which focuses on capabilities related to the financial aspects of cloud
adoption and the ability to transform data into valuable business insights, products, or services. Data monetization involves strategies to generate
measurable economic benefits from available data sources (including cloud-based data), which aligns with business objectives and outcomes.
upvoted 1 times

  Baral 4 days, 18 hours ago

Selected Answer: A

A is the correct answer. Culture evolution: This is a key capability from a business perspective as it involves the necessary cultural changes within an
organization to embrace cloud adoption.
upvoted 1 times

  Sreeni_A 5 days, 21 hours ago

https://docs.aws.amazon.com/whitepapers/latest/aws-caf-business-perspective/aws-caf-business-perspective.html
upvoted 1 times

  asdfcdsxdfc 6 days, 11 hours ago

Selected Answer: C

C is correct
upvoted 1 times

  ArchMelody 1 week, 5 days ago

Selected Answer: C

Data Monetization indeed: https://docs.aws.amazon.com/whitepapers/latest/aws-caf-business-perspective/aws-caf-business-perspective.html

upvoted 1 times

  juneslayer 1 month ago

Selected Answer: C

Culture evolution is people perspective

upvoted 1 times

  Ailil 1 month ago

Selected Answer: C

Data monetization
upvoted 4 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 128/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #135 Topic 1

A company is assessing its AWS Business Support plan to determine if the plan still meets the company’s needs. The company is considering

switching to AWS Enterprise Support.

Which additional benefit will the company receive with AWS Enterprise Support?

A. A full set of AWS Trusted Advisor checks

B. Phone, email, and chat access to cloud support engineers 24 hours a day, 7 days a week

C. A designated technical account manager (TAM) to assist in monitoring and optimization

D. A consultative review and architecture guidance for the company’s applications

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 6 days, 11 hours ago

Selected Answer: C

C is correct
upvoted 1 times

  Sreeni_A 6 days, 14 hours ago

Answer C as Enterprise support plan has TAM
upvoted 1 times

Question #136 Topic 1

Which pricing model will interrupt a running Amazon EC2 instance if capacity becomes temporarily unavailable?

A. On-Demand Instances

B. Standard Reserved Instances

C. Spot Instances

D. Convertible Reserved Instances

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 6 days, 11 hours ago

Selected Answer: C

C is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 129/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #137 Topic 1

Which options are AWS Cloud Adoption Framework (AWS CAF) security perspective capabilities? (Choose two.)

A. Observability

B. Incident and problem management

C. Incident response

D. Infrastructure protection

E. Availability and continuity

Correct Answer: CD

Community vote distribution

CD (100%)

  abbey0922 2 days, 2 hours ago

Selected Answer: CD

CD are correct because Observability, Incident & Problem Management and Availability & Continuity are from Operations Perspective.
upvoted 1 times

  Sreeni_A 6 days, 9 hours ago

CD - https://docs.aws.amazon.com/whitepapers/latest/overview-aws-cloud-adoption-framework/security-perspective.html
upvoted 1 times

  asdfcdsxdfc 6 days, 11 hours ago

Selected Answer: CD

CD look correct, can anyone confirm?

upvoted 1 times

Question #138 Topic 1

A company wants to run its workload on Amazon EC2 instances for more than 1 year. This workload will run continuously.

Which option offers a discounted hourly rate compared to the hourly rate of On-Demand Instances?

A. AWS Graviton processor

B. Dedicated Hosts

C. EC2 Instance Savings Plans

D. Amazon EC2 Auto Scaling instances

Correct Answer: C

Community vote distribution

C (100%)

  EssentialD 3 days, 3 hours ago

Selected Answer: C

EC2 Instance Savings Plans should be the right one

upvoted 1 times

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: C

C looks correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 130/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #139 Topic 1

Which characteristic of the AWS Cloud helps users eliminate underutilized CPU capacity?

A. Agility

B. Elasticity

C. Reliability

D. Durability

Correct Answer: B

Community vote distribution

B (100%)

  EssentialD 3 days, 3 hours ago

Selected Answer: B

B it's the right one

upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 131/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #140 Topic 1

Which AWS services can a company use to achieve a loosely coupled architecture? (Choose two.)

A. Amazon WorkSpaces

B. Amazon Simple Queue Service (Amazon SQS)

C. Amazon Connect

D. AWS Trusted Advisor

E. AWS Step Functions

Correct Answer: BD

Community vote distribution

BE (100%)

  EssentialD 3 days, 3 hours ago

Selected Answer: BE

B and E are correct

upvoted 1 times

  keeping95 3 days, 6 hours ago

Selected Answer: BE

**B. Amazon Simple Queue Service (Amazon SQS):** SQS is a fully managed message queuing service that enables decoupling of the components
in a distributed system. It allows components to communicate asynchronously, promoting loose coupling.

**E. AWS Step Functions:** Step Functions is a serverless function orchestrator that allows you to coordinate multiple AWS services into serverless
workflows. It helps in creating loosely coupled, flexible systems by defining workflows that connect various services.

So, the correct choices are B and E.

upvoted 1 times

  ArchMelody 3 days, 11 hours ago

Selected Answer: BE

BE for micro-services communication

upvoted 1 times

  Bockeworst 4 days, 3 hours ago

Selected Answer: BE

SQS with Step Functions (Lambda)

upvoted 1 times

Question #141 Topic 1

Which AWS Cloud service can send alerts to customers if custom spending thresholds are exceeded?

A. AWS Budgets

B. AWS Cost Explorer

C. AWS Cost Allocation Tags

D. AWS Organizations

Correct Answer: A

  tyx8099 3 days, 4 hours ago

A. AWS Budgets is the AWS Cloud service that allows users to set custom spending thresholds and receive alerts when those thresholds are
exceeded. It helps users to keep track of their AWS spending by providing notifications based on their budget limits.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 132/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #142 Topic 1

A company plans to migrate to the AWS Cloud. The company wants to use the AWS Cloud Adoption Framework (AWS CAF) to define and track

business outcomes as part of its cloud transformation journey.

Which AWS CAF governance perspective capability will meet these requirements?

A. Benefits management

B. Risk management

C. Application portfolio management

D. Cloud financial management

Correct Answer: A

Community vote distribution

C (100%)

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: C

C is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 133/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #143 Topic 1

A company needs to quickly and securely move files over long distances between its client and an Amazon S3 bucket.

Which S3 feature will meet this requirement?

A. S3 Versioning

B. S3 Transfer Acceleration

C. S3ACLs

D. S3 Intelligent-Tiering

Correct Answer: B

Community vote distribution

B (100%)

  tyx8099 3 days, 4 hours ago

B. S3 Transfer Acceleration

S3 Transfer Acceleration is a feature that utilizes Amazon CloudFront's globally distributed edge locations to accelerate the upload of objects to an
S3 bucket. It optimizes data transfer by using Amazon's backbone network, reducing latency and improving speeds when transferring files over
long distances.
upvoted 1 times

  tyx8099 3 days, 4 hours ago

A. Benefits management

The Benefits management capability within the AWS CAF governance perspective focuses on defining, tracking, and realizing the business
outcomes or benefits that an organization aims to achieve through its cloud adoption and transformation initiatives.
upvoted 1 times

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: B

B is correct
Increase transfer speed by transferring file to an AWS edge location
which will forward the data to the S3 bucket in the target region
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 134/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #144 Topic 1

A company needs to continuously run an experimental workload on an Amazon EC2 instance and stop the instance after 12 hours.

Which instance purchasing option will meet this requirement MOST cost-effectively?

A. On-Demand Instances

B. Reserved Instances

C. Spot Instances

D. Dedicated Instances

Correct Answer: A

Community vote distribution

A (100%)

  EssentialD 3 days, 3 hours ago

Selected Answer: A

Key Sentence " needs to continuously run" - so continuously and most cost effective is On Demand
upvoted 1 times

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: A

A is correct
upvoted 1 times

Question #145 Topic 1

Which cloud transformation journey phase of the AWS Cloud Adoption Framework (AWS CAF) focuses on demonstrating how the cloud helps

accelerate business outcomes?

A. Scale

B. Envision

C. Align

D. Launch

Correct Answer: B

Community vote distribution

B (100%)

  tyx8099 3 days, 4 hours ago

A. Scale

The "Scale" phase in the AWS CAF concentrates on demonstrating the value and benefits of the cloud by showcasing how cloud adoption
accelerates and amplifies business outcomes. It involves measuring and evaluating the impact of cloud adoption on the organization's goals,
productivity, efficiency, agility, and innovation.
upvoted 1 times

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: B

B is correct
Envision – demonstrate how the Cloud will accelerate business
outcomes by identifying transformation opportunities and create a
foundation for your digital transformation
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 135/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #146 Topic 1

Which option is a customer responsibility under the AWS shared responsibility model?

A. Maintenance of underlying hardware of Amazon EC2 instances

B. Application data security

C. Physical security of data centers

D. Maintenance of VPC components

Correct Answer: B

Community vote distribution

B (100%)

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: B

B is correct
upvoted 1 times

Question #147 Topic 1

A company wants its Amazon EC2 instances to operate in a highly available environment, even if there is a natural disaster in a particular

geographic area.

Which approach will achieve this goal?

A. Use EC2 instances in multiple AWS Regions.

B. Use EC2 instances in multiple Amazon CloudFront locations.

C. Use EC2 instances in multiple edge locations.

D. Use EC2 instances in AWS Local Zones.

Correct Answer: A

Community vote distribution

A (100%)

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: A

A looks correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 136/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #148 Topic 1

A company wants to modernize and convert a monolithic application into microservices. The company wants to move the application to AWS.

Which migration strategy should the company use?

A. Rehost

B. Replatform

C. Repurchase

D. Refactor

Correct Answer: D

Community vote distribution

D (100%)

  EssentialD 3 days, 3 hours ago

Selected Answer: D

It should be D. Refactor:

Lift and shift—moving applications to the cloud as-is. This is also sometimes referred to as rehosting. Refactor—modifying applications to better
support the cloud environment.Replatform—moving applications to the cloud without major changes, but taking advantage of benefits of the
cloud environment.Rebuild—rewrite the application from scratch.Replace—retire the application and replace it with a new cloud-native application.
upvoted 1 times

  asdfcdsxdfc 3 days, 6 hours ago

is it D? can anyone confirm?
upvoted 1 times

Question #149 Topic 1

A systems administrator created a new IAM user for a developer and assigned the user an access key instead of a user name and password. What

is the access key used for?

A. To access the AWS account as the AWS account root user

B. To access the AWS account through the AWS Management Console

C. To access the AWS account through a CLI

D. To access all of a company’s AWS accounts

Correct Answer: C

Community vote distribution

C (100%)

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: C

C is correct
"Use Access Keys for Programmatic Access (CLI / SDK)"
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 137/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #150 Topic 1

Which option is an environment that consists of one or more data centers?

A. Amazon CloudFront

B. Availability Zone

C. VPC

D. AWS Outposts

Correct Answer: B

Question #151 Topic 1

A company is moving an on-premises data center to the AWS Cloud. The company must migrate 50 petabytes of file storage data to AWS with the

least possible operational overhead.

Which AWS service or resource should the company use to meet these requirements?

A. AWS Snowmobile

B. AWS Snowball Edge

C. AWS Data Exchange

D. AWS Database Migration Service (AWS DMS)

Correct Answer: A

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: A

A is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 138/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #152 Topic 1

A company has an application with robust hardware requirements. The application must be accessed by students who are using lightweight, low-

cost laptops.

Which AWS service will help the company deploy the application without investing in backend infrastructure or high-end client hardware?

A. Amazon AppStream 2.0

B. AWS AppSync

C. Amazon WorkLink

D. AWS Elastic Beanstalk

Correct Answer: A

  asdfcdsxdfc 3 days, 6 hours ago

Selected Answer: A

A is correct
upvoted 1 times

Question #153 Topic 1

A company wants to query its server logs to gain insights about its customers’ experiences.

Which AWS service will store this data MOST cost-effectively?

A. Amazon Aurora

B. Amazon Elastic File System (Amazon EFS)

C. Amazon Elastic Block Store (Amazon EBS)

D. Amazon S3

Correct Answer: D

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 139/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #154 Topic 1

Which of the following is a recommended design principle for AWS Cloud architecture?

A. Design tightly coupled components.

B. Build a single application component that can handle all the application functionality.

C. Make large changes on fewer iterations to reduce chances of failure.

D. Avoid monolithic architecture by segmenting workloads.

Correct Answer: D

  jimoon 2 days, 6 hours ago

Selected Answer: D

D 가 정답입니다.
upvoted 1 times

Question #155 Topic 1

Which AWS service helps users audit API activity across their AWS account?

A. AWS CloudTrail

B. Amazon Inspector

C. AWS WAF

D. AWS Config

Correct Answer: A

Question #156 Topic 1

Which task is a customer’s responsibility, according to the AWS shared responsibility model?

A. Management of the guest operating systems

B. Maintenance of the configuration of infrastructure devices

C. Management of the host operating systems and virtualization

D. Maintenance of the software that powers Availability Zones

Correct Answer: A

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 140/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #157 Topic 1

A company wants to automatically add and remove Amazon EC2 instances. The company wants the EC2 instances to adjust to varying workloads

dynamically.

Which service or feature will meet these requirements?

A. Amazon DynamoDB

B. Amazon EC2 Spot Instances

C. AWS Snow Family

D. Amazon EC2 Auto Scaling

Correct Answer: D

  asdfcdsxdfc 3 days, 5 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #158 Topic 1

A user wants to securely automate the management and rotation of credentials that are shared between applications, while spending the least

amount of time on managing tasks.

Which AWS service or feature can be used to accomplish this?

A. AWS CloudHSM

B. AWS Key Management Service (AWS KMS)

C. AWS Secrets Manager

D. Server-side encryption

Correct Answer: C

  abbey0922 3 days, 1 hour ago

Selected Answer: C

AWS Secrets Manager makes it easier to rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.
upvoted 1 times

  asdfcdsxdfc 3 days, 5 hours ago

Selected Answer: C

C is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 141/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #159 Topic 1

Which security service automatically recognizes and classifies sensitive data or intellectual property on AWS?

A. Amazon GuardDuty

B. Amazon Macie

C. Amazon Inspector

D. AWS Shield

Correct Answer: B

  asdfcdsxdfc 3 days, 5 hours ago

Selected Answer: B

B is correct
upvoted 1 times

Question #160 Topic 1

Which actions are best practices for an AWS account root user? (Choose two.)

A. Share root user credentials with team members.

B. Create multiple root users for the account, separated by environment.

C. Enable multi-factor authentication (MFA) on the root user.

D. Create an IAM user with administrator privileges for daily administrative tasks, instead of using the root user.

E. Use programmatic access instead of the root user and password.

Correct Answer: CD

  asdfcdsxdfc 3 days, 5 hours ago

Selected Answer: CD

CD are correct
upvoted 2 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 142/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #161 Topic 1

A company is running a critical workload on an Amazon RDS DB instance. The company needs the DB instance to be highly available with a

recovery time of less than 5 minutes.

Which solution will meet these requirements?

A. Create a read replica of the DB instance.

B. Create a template of the DB instance by using AWS CloudFormation.

C. Take frequent snapshots of the DB instance. Store the snapshots in Amazon S3.

D. Modify the DB instance to be a Multi-AZ deployment.

Correct Answer: D

  jimoon 2 days, 5 hours ago

Selected Answer: D

D is correct.

https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.MultiAZSingleStandby.html#Concepts.MultiAZ.Failover
upvoted 1 times

  asdfcdsxdfc 3 days, 5 hours ago

D looks correct can anyone confirm?
upvoted 1 times

Question #162 Topic 1

A company plans to migrate its application to AWS and run the application on Amazon EC2 instances. The application will have continuous usage

for 1 year.

Which EC2 instance purchasing option will meet these requirements MOST cost-effectively?

A. Reserved Instances

B. Spot Instances

C. On-Demand Instances

D. Dedicated Hosts

Correct Answer: A

  asdfcdsxdfc 3 days, 5 hours ago

Selected Answer: A

A is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 143/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #163 Topic 1

A company needs to transfer data between an Amazon S3 bucket and an on-premises application.

Who is responsible for the security of this data, according to the AWS shared responsibility model?

A. The company

B. AWS

C. Firewall vendor

D. AWS Marketplace partner

Correct Answer: A

  asdfcdsxdfc 3 days, 5 hours ago

Shouldn't it be B?
upvoted 1 times

Question #164 Topic 1

Which pillar of the AWS Well-Architected Framework refers to the ability of a system to recover from infrastructure or service disruptions and

dynamically acquire computing resources to meet demand?

A. Security

B. Reliability

C. Performance efficiency

D. Cost optimization

Correct Answer: B

  asdfcdsxdfc 3 days, 5 hours ago

B is correct
"Ability of a system to recover from infrastructure or service disruptions,
dynamically acquire computing resources to meet demand, and mitigate
disruptions such as misconfigurations or transient network issues."
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 144/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #165 Topic 1

A company wants to identify Amazon S3 buckets that are shared with another AWS account.

Which AWS service or feature will meet these requirements?

A. AWS Lake Formation

B. IAM credential report

C. Amazon CloudWatch

D. IAM Access Analyzer

Correct Answer: D

  asdfcdsxdfc 2 days, 12 hours ago

Selected Answer: D

D is correct
upvoted 1 times

  asdfcdsxdfc 3 days, 5 hours ago

D is correct
"IAM Access Analyzer:
• Find out which resources are shared
externally
• S3 Buckets
• IAM Roles
• KMS Keys
• Lambda Functions and Layers
• SQS queues
• Secrets Manager Secrets"
upvoted 1 times

Question #166 Topic 1

Which AWS service gives users the ability to build interactive business intelligence dashboards that include machine learning insights?

A. Amazon Athena

B. Amazon Kendra

C. Amazon QuickSight

D. Amazon Redshift

Correct Answer: C

  asdfcdsxdfc 3 days, 5 hours ago

Selected Answer: C

C is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 145/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #167 Topic 1

Which of the following is an AWS value proposition that describes a user’s ability to scale infrastructure based on demand?

A. Speed of innovation

B. Resource elasticity

C. Decoupled architecture

D. Global deployment

Correct Answer: B

Question #168 Topic 1

Which action is a security best practice for access to sensitive data that is stored in an Amazon S3 bucket?

A. Enable S3 Cross-Region Replication (CRR) on the S3 bucket.

B. Use IAM roles for applications that require access to the S3 bucket.

C. Configure AWS WAF to prevent unauthorized access to the S3 bucket.

D. Configure Amazon GuardDuty to prevent unauthorized access to the S3 bucket.

Correct Answer: B

  tqiu654 1 day, 7 hours ago

Selected Answer: B

ChatGPT: A security best practice for managing access to sensitive data stored in an Amazon S3 bucket is B. Use IAM roles for applications that
require access to the S3 bucket.

Here's an explanation of the options:

B. Use IAM roles for applications that require access to the S3 bucket: This is a recommended practice for security. IAM roles provide a secure way
to grant permissions that applications require to access AWS resources, including S3 buckets. The use of IAM roles ensures that access is granted
with the principle of least privilege, reducing the risk of unauthorized access.
upvoted 1 times

  asdfcdsxdfc 3 days, 5 hours ago

B looks correct can anyone confirm?
upvoted 1 times

  tqiu654 1 day, 7 hours ago

ChatGPT: A security best practice for managing access to sensitive data stored in an Amazon S3 bucket is B. Use IAM roles for applications that
require access to the S3 bucket.

Here's an explanation of the options:

B. Use IAM roles for applications that require access to the S3 bucket: This is a recommended practice for security. IAM roles provide a secure
way to grant permissions that applications require to access AWS resources, including S3 buckets. The use of IAM roles ensures that access is
granted with the principle of least privilege, reducing the risk of unauthorized access.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 146/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #169 Topic 1

A company wants to know more about the benefits offered by cloud computing. The company wants to understand the operational advantage of

agility. How does AWS provide agility for users?

A. The ability the ensure high availability by deploying workloads to multiple regions

B. A pay-as-you-go model for many services and resources

C. The ability to transfer infrastructure management to the AWS Cloud

D. The ability to provision and deprovision resources quickly with minimal effort

Correct Answer: D

Question #170 Topic 1

A company needs a central user portal so that users can log in to third-party business applications that support Security Assertion Markup

Language (SAML) 2.0.

Which AWS service will meet this requirement?

A. AWS Identity and Access Management (IAM)

B. Amazon Cognito

C. AWS IAM Identity Center (AWS Single Sign-On)

D. AWS CLI

Correct Answer: C

  abbey0922 3 days, 1 hour ago

Selected Answer: C

Web-based single sign-on (SSO) to the AWS Management Console from your organization. Users can sign in to a portal in your organization
hosted by a SAML 2.0–compatible IdP, select an option to go to AWS, and be redirected to the console without having to provide additional sign-in
information. You can use a third-party SAML IdP to establish SSO access to the console or you can create a custom IdP to enable console access for
your external users.
upvoted 1 times

  asdfcdsxdfc 3 days, 5 hours ago

Selected Answer: C

C is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 147/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #171 Topic 1

Which AWS service should users use to learn about AWS service availability and operations?

A. Amazon EventBridge

B. AWS Service Catalog

C. AWS Control Tower

D. AWS Health Dashboard

Correct Answer: D

  tqiu654 1 day, 7 hours ago

Selected Answer: D

ChatGPT: For learning about AWS service availability and operations, users should use D. AWS Health Dashboard.

The AWS Health Dashboard provides real-time information on the health of AWS services. It offers a personalized view of the performance and
availability of the AWS services that an account uses, along with alerts about scheduled maintenance, security vulnerabilities, and other important
events. This makes it the ideal choice for staying informed about the operational status and health of AWS services.
upvoted 1 times

  asdfcdsxdfc 3 days ago

Selected Answer: B

Should be B
upvoted 1 times

  tqiu654 1 day, 7 hours ago

ChatGPT: For learning about AWS service availability and operations, users should use D. AWS Health Dashboard.

The AWS Health Dashboard provides real-time information on the health of AWS services. It offers a personalized view of the performance and
availability of the AWS services that an account uses, along with alerts about scheduled maintenance, security vulnerabilities, and other
important events. This makes it the ideal choice for staying informed about the operational status and health of AWS services.
upvoted 1 times

Question #172 Topic 1

Which AWS service or tool can be used to capture information about inbound and outbound traffic in an Amazon VPC?

A. VPC Flow Logs

B. Amazon Inspector

C. VPC endpoint services

D. NAT gateway

Correct Answer: A

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 148/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #173 Topic 1

What is the customer ALWAYS responsible for managing, according to the AWS shared responsibility model?

A. Software licenses

B. Networking

C. Customer data

D. Encryption keys

Correct Answer: C

  asdfcdsxdfc 2 days, 12 hours ago

Selected Answer: C

C is correct
upvoted 1 times

Question #174 Topic 1

Which AWS service can be used to retrieve compliance reports on demand?

A. AWS Secrets Manager

B. AWS Artifact

C. AWS Security Hub

D. AWS Certificate Manager

Correct Answer: B

Question #175 Topic 1

Which AWS service enables users to check for vulnerabilities on Amazon EC2 instances by using predefined assessment templates?

A. AWS WAF

B. AWS Trusted Advisor

C. Amazon Inspector

D. AWS Shield

Correct Answer: C

  asdfcdsxdfc 2 days, 12 hours ago

Selected Answer: C

C is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 149/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #176 Topic 1

A company plans to migrate to the AWS Cloud. The company is gathering information about its on-premises infrastructure and requires

information such as the hostname, IP address, and MAC address.

Which AWS service will meet these requirements?

A. AWS DataSync

B. AWS Application Migration Service

C. AWS Application Discovery Service

D. AWS Database Migration Service (AWS DMS)

Correct Answer: C

  asdfcdsxdfc 2 days, 23 hours ago

Selected Answer: C

C is correct
upvoted 1 times

  abbey0922 3 days, 1 hour ago

Selected Answer: C

AWS Application Discovery Service collects both server and database configuration information. Server information includes hostnames, IP
addresses, MAC addresses, as well as the resource allocation and utilization details of key resources such as CPU, network, memory, and disk.
upvoted 1 times

Question #177 Topic 1

Which action will help increase security in the AWS Cloud?

A. Enable programmatic access for all IAM users.

B. Use IAM users instead of IAM roles to delegate permissions.

C. Rotate access keys on a reoccurring basis.

D. Use inline policies instead of customer managed policies.

Correct Answer: C

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 150/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #178 Topic 1

A company is planning to migrate its application to the AWS Cloud.

Which AWS tool or set of resources should the company use to analyze and assess its readiness for migration?

A. AWS Cloud Adoption Framework (AWS CAF)

B. AWS Pricing Calculator

C. AWS Well-Architected Framework

D. AWS Budgets

Correct Answer: A

  tyx8099 1 day, 4 hours ago

Answer is C.
upvoted 1 times

  asdfcdsxdfc 2 days, 23 hours ago

shouldn't it be C?
upvoted 1 times

  tqiu654 1 day, 7 hours ago

ChatGPT: For a company planning to migrate its application to the AWS Cloud and looking to analyze and assess its readiness for migration, the
most appropriate tool is A. AWS Cloud Adoption Framework (AWS CAF).

A. AWS Cloud Adoption Framework (AWS CAF): This framework helps organizations understand how cloud adoption transforms the way they
work and provides a structure to identify and address gaps in skills and processes. It offers guidance that supports each business unit's cloud
adoption journey, helping to create and implement an efficient and effective plan for the cloud migration.
C. AWS Well-Architected Framework: This framework helps cloud architects build secure, high-performing, resilient, and efficient infrastructure
for their applications. It focuses more on the architectural best practices than on organizational readiness for cloud adoption.
upvoted 1 times

Question #179 Topic 1

Which of the following describes some of the core functionality of Amazon S3?

A. Amazon S3 is a high-performance block storage service that is designed for use with Amazon EC2.

B. Amazon S3 is an object storage service that provides high-level performance, security, scalability, and data availability.

C. Amazon S3 is a fully managed, highly reliable, and scalable file storage system that is accessible over the industry-standard SMB protocol.

D. Amazon S3 is a scalable, fully managed elastic NFS for use with AWS Cloud services and on-premises resources.

Correct Answer: B

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 151/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #180 Topic 1

Which AWS benefit is demonstrated by on-demand technology services that enable companies to replace upfront fixed expenses with variable

expenses?

A. High availability

B. Economies of scale

C. Pay-as-you-go pricing

D. Global reach

Correct Answer: C

Question #181 Topic 1

Which AWS services or features enable users to connect on-premises networks to a VPC? (Choose two.)

A. AWS VPN

B. Elastic Load Balancing

C. AWS Direct Connect

D. VPC peering

E. Amazon CloudFront

Correct Answer: AC

  asdfcdsxdfc 2 days, 23 hours ago

AC looks correct, can anyone confirm?
upvoted 2 times

Question #182 Topic 1

A user needs to quickly deploy a nonrelational database on AWS. The user does not want to manage the underlying hardware or the database

software.

Which AWS service can be used to accomplish this?

A. Amazon RDS

B. Amazon DynamoDB

C. Amazon Aurora

D. Amazon Redshift

Correct Answer: B

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 152/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #183 Topic 1

Which actions are examples of a company’s effort to rightsize its AWS resources to control cloud costs? (Choose two.)

A. Switch from Amazon RDS to Amazon DynamoDB to accommodate NoSQL datasets.

B. Base the selection of Amazon EC2 instance types on past utilization patterns.

C. Use Amazon S3 Lifecycle policies to move objects that users access infrequently to lower-cost storage tiers.

D. Use Multi-AZ deployments for Amazon RDS.

E. Replace existing Amazon EC2 instances with AWS Elastic Beanstalk.

Correct Answer: BC

Question #184 Topic 1

Which AWS service or feature can a company use to apply security rules to specific Amazon EC2 instances?

A. Network ACLs

B. Security groups

C. AWS Trusted Advisor

D. AWS WAF

Correct Answer: B

  asdfcdsxdfc 2 days, 23 hours ago

Selected Answer: B

B is correct
upvoted 1 times

Question #185 Topic 1

Which design principles support the reliability pillar of the AWS Well-Architected Framework? (Choose two.)

A. Perform operations as code.

B. Enable traceability.

C. Automatically scale to meet demand.

D. Deploy resources globally to improve response time.

E. Automatically recover from failure.

Correct Answer: CE

  asdfcdsxdfc 2 days, 23 hours ago

Selected Answer: CE

CE are correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 153/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #186 Topic 1

A company that uses AWS needs to transfer 2 TB of data.

Which type of transfer of that data would result in no cost for the company?

A. Inbound data transfer from the internet

B. Outbound data transfer to the internet

C. Data transfer between AWS Regions

D. Data transfer between Availability Zones

Correct Answer: A

Question #187 Topic 1

A company wants to create templates that the company can reuse to deploy multiple AWS resources.

Which AWS service or feature can the company use to meet this requirement?

A. AWS Marketplace

B. Amazon Machine Image (AMI)

C. AWS CloudFormation

D. AWS OpsWorks

Correct Answer: C

  asdfcdsxdfc 2 days, 23 hours ago

Selected Answer: C

C is correct
upvoted 1 times

Question #188 Topic 1

A company is building an application that requires the ability to send, store, and receive messages between application components. The

company has another requirement to process messages in first-in, first-out (FIFO) order.

Which AWS service should the company use?

A. AWS Step Functions

B. Amazon Simple Notification Service (Amazon SNS)

C. Amazon Kinesis Data Streams

D. Amazon Simple Queue Service (Amazon SQS)

Correct Answer: D

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 154/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #189 Topic 1

Which AWS service or feature is a browser-based, pre-authenticated service that can be launched directly from the AWS Management Console?

A. AWS API

B. AWS Lightsail

C. AWS Cloud9

D. AWS CloudShell

Correct Answer: D

  asdfcdsxdfc 2 days, 23 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #190 Topic 1

A company wants to migrate its database to a managed AWS service that is compatible with PostgreSQL.

Which AWS services will meet these requirements? (Choose two.)

A. Amazon Athena

B. Amazon RDS

C. Amazon EC2

D. Amazon DynamoDB

E. Amazon Aurora

Correct Answer: BE

  asdfcdsxdfc 2 days, 23 hours ago

Selected Answer: BE

BE are correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 155/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #191 Topic 1

A company has a fleet of cargo ships. The cargo ships have sensors that collect data at sea, where there is intermittent or no internet

connectivity. The company needs to collect, format, and process the data at sea and move the data to AWS later.

Which AWS service should the company use to meet these requirements?

A. AWS IoT Core

B. Amazon Lightsail

C. AWS Storage Gateway

D. AWS Snowball Edge

Correct Answer: D

  asdfcdsxdfc 2 days, 23 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #192 Topic 1

A company hosts an application on multiple Amazon EC2 instances. The application uses Amazon Simple Notification Service (Amazon SNS) to

send messages.

Which AWS service or feature will give the application permission to access required AWS services?

A. AWS Certificate Manager (ACM)

B. IAM roles

C. AWS Security Hub

D. Amazon GuardDuty

Correct Answer: B

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 156/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #193 Topic 1

A user has limited knowledge of AWS services, but wants to quickly deploy a scalable Node.js application in the AWS Cloud.

Which service should be used to deploy the application?

A. AWS CloudFormation

B. AWS Elastic Beanstalk

C. Amazon EC2

D. AWS OpsWorks

Correct Answer: B

  abbey0922 2 days, 3 hours ago

Selected Answer: B

Yes B is the correct answer.

AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, . NET, PHP, Node. js,
Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and Internet Information Services (IIS).
upvoted 1 times

Question #194 Topic 1

A company needs a content delivery network that provides secure delivery of data, videos, applications, and APIs to users globally with low

latency and high transfer speeds.

Which AWS service meets these requirements?

A. Amazon CloudFront

B. Elastic Load Balancing

C. Amazon S3

D. Amazon Elastic Transcoder

Correct Answer: A

Question #195 Topic 1

A company needs to use third-party software for its workload on AWS.

Which AWS service or feature can the company use to purchase the software?

A. AWS Resource Access Manager

B. AWS Managed Services

C. AWS License Manager

D. AWS Marketplace

Correct Answer: D

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 157/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #196 Topic 1

A company needs fully managed, highly reliable, and scalable file storage that is accessible over the Server Message Block (SMB) protocol.

Which AWS service will meet these requirements?

A. Amazon S3

B. Amazon Elastic File System (Amazon EFS)

C. Amazon FSx for Windows File Server

D. Amazon Elastic Block Store (Amazon EBS)

Correct Answer: C

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: C

C is correct
upvoted 1 times

Question #197 Topic 1

A company needs to centrally configure and manage Amazon VPC security groups across multiple AWS accounts within an organization in AWS

Organizations.

Which AWS service should the company use to meet these requirements?

A. AWS Firewall Manager

B. Amazon GuardDuty

C. Amazon Detective

D. AWS WAF

Correct Answer: A

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: A

A is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 158/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #198 Topic 1

Which task is a responsibility of AWS, according to the AWS shared responsibility model?

A. Configure identity and access management for applications.

B. Manage encryption options for data that is stored on AWS.

C. Configure security groups for Amazon EC2 instances.

D. Maintain the physical hardware of the infrastructure.

Correct Answer: D

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #199 Topic 1

A company has an Amazon EC2 instance in a private subnet. The company wants to initiate a connection to the internet to pull operating system

updates while preventing traffic from the internet from accessing the EC2 instance.

Which AWS managed service allows this?

A. VPC endpoint

B. NAT gateway

C. Amazon PrivateLink

D. VPC peering

Correct Answer: B

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: B

B is correct
"NAT Gateways (AWS-managed) &
NAT Instances (self-managed) allow
your instances in your Private Subnets
to access the internet while remaining
private"
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 159/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #200 Topic 1

Which actions are the responsibility of AWS, according to the AWS shared responsibility model? (Choose two.)

A. Securing the virtualization layer

B. Patching the operating system on Amazon EC2 instances

C. Enforcing a strict password policy for IAM users

D. Patching the operating system on Amazon RDS instances

E. Configuring security groups and network ACLs

Correct Answer: AD

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: AD

AD are correct
upvoted 1 times

Question #201 Topic 1

A company is storing data that will not be frequently accessed in the AWS Cloud. If the company needs to access the data, the data needs to be

retrieved within 12 hours. The company wants a solution that is cost-effective for storage costs for each gigabyte.

Which Amazon S3 storage class will meet these requirements?

A. S3 Standard

B. S3 Glacier Flexible Retrieval

C. S3 One Zone-Infrequent Access (S3 One Zone-IA)

D. S3 Standard-Infrequent Access (S3 Standard-IA)

Correct Answer: B

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: B

B is correct
Amazon S3 Glacier Flexible Retrieval (formerly Amazon S3 Glacier):
• Expedited (1 to 5 minutes), Standard (3 to 5 hours), Bulk (5 to 12 hours) – free
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 160/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #202 Topic 1

Which AWS service or resource can be used to identify services that have been used by a user within a specified date range?

A. Amazon S3 access control lists (ACLs)

B. AWS Certificate Manager (ACM)

C. Network Access Analyzer

D. AWS Identity and Access Management Access Analyzer

Correct Answer: D

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: D

D looks correct
upvoted 1 times

Question #203 Topic 1

A company needs to engage third-party consultants to help maintain and support its AWS environment and the company’s business needs.

Which AWS service or resource will meet these requirements?

A. AWS Support

B. AWS Organizations

C. AWS Service Catalog

D. AWS Partner Network (APN)

Correct Answer: D

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: D

D is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 161/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #204 Topic 1

A company wants to create Amazon QuickSight dashboards every week by using its billing data.

Which AWS feature or tool can the company use to meet these requirements?

A. AWS Budgets

B. AWS Cost Explorer

C. AWS Cost and Usage Report

D. AWS Cost Anomaly Detection

Correct Answer: C

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: C

C looks correct
upvoted 1 times

Question #205 Topic 1

A company is planning to move data backups to the AWS Cloud. The company needs to replace on-premises storage with storage that is cloud-

based but locally cached.

Which AWS service meets these requirements?

A. AWS Storage Gateway

B. AWS Snowcone

C. AWS Backup

D. Amazon Elastic File System (Amazon EFS)

Correct Answer: A

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: A

A is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 162/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #206 Topic 1

A company needs to organize its resources and track AWS costs on a detailed level. The company needs to categorize costs by business

department, environment, and application.

Which solution will meet these requirements?

A. Access the AWS Cost Management console to organize resources, set an AWS budget, and receive notifications of unintentional usage.

B. Use tags to organize the resources. Activate cost allocation tags to track AWS costs on a detailed level.

C. Create Amazon CloudWatch dashboards to visually organize and track costs individually.

D. Access the AWS Billing and Cost Management dashboard to organize and track resource consumption on a detailed level.

Correct Answer: B

Question #207 Topic 1

A company needs to plan, schedule, and run hundreds of thousands of computing jobs on AWS.

Which AWS service can the company use to meet this requirement?

A. AWS Step Functions

B. AWS Service Catalog

C. Amazon Simple Queue Service (Amazon SQS)

D. AWS Batch

Correct Answer: D

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: D

D is correct
"AWS Batch
Fully managed batch processing at any scale
• Efficiently run 100,000s of computing batch jobs on AWS
• A “batch” job is a job with a start and an end (opposed to continuous)
• Batch will dynamically launch EC2 instances or Spot Instances
• AWS Batch provisions the right amount of compute / memory"
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 163/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #208 Topic 1

Which AWS services or features provide high availability and low latency by enabling failover across different AWS Regions? (Choose two.)

A. Amazon Route 53

B. Network Load Balancer

C. Amazon S3 Transfer Acceleration

D. AWS Global Accelerator

E. Application Load Balancer

Correct Answer: AD

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: AD

AD are correct
upvoted 1 times

Question #209 Topic 1

Which of the following is a way to use Amazon EC2 Auto Scaling groups to scale capacity in the AWS Cloud?

A. Scale the number of EC2 instances in or out automatically, based on demand.

B. Use serverless EC2 instances.

C. Scale the size of EC2 instances up or down automatically, based on demand.

D. Transfer unused CPU resources between EC2 instances.

Correct Answer: A

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: A

A is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 164/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #210 Topic 1

Which abilities are benefits of the AWS Cloud? (Choose two.)

A. Trade variable expenses for capital expenses.

B. Deploy globally in minutes.

C. Plan capacity in advance of deployments.

D. Take advantage of economies of scale.

E. Reduce dependencies on network connectivity.

Correct Answer: BD

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: BD

BD are correct
upvoted 1 times

Question #211 Topic 1

Which AWS security service protects applications from distributed denial of service attacks with always-on detection and automatic inline

mitigations?

A. Amazon Inspector

B. AWS Web Application Firewall (AWS WAF)

C. Elastic Load Balancing (ELB)

D. AWS Shield

Correct Answer: D

  asdfcdsxdfc 2 days, 22 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #212 Topic 1

Which AWS service allows users to model and provision AWS resources using common programming languages?

A. AWS CloudFormation

B. AWS CodePipeline

C. AWS Cloud Development Kit (AWS CDK)

D. AWS Systems Manager

Correct Answer: C

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 165/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #213 Topic 1

Which Amazon EC2 instance pricing model can provide discounts of up to 90%?

A. Reserved Instances

B. On-Demand

C. Dedicated Hosts

D. Spot Instances

Correct Answer: D

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #214 Topic 1

Which of the following acts as an instance-level firewall to control inbound and outbound access?

A. Network access control list

B. Security groups

C. AWS Trusted Advisor

D. Virtual private gateways

Correct Answer: B

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: B

B is correct
"Security Groups: Firewall attached to the EC2 instance"
upvoted 1 times

Question #215 Topic 1

A company must be able to develop, test, and launch an application in the AWS Cloud quickly.

Which advantage of cloud computing will meet these requirements?

A. Stop guessing capacity

B. Trade fixed expense for variable expense

C. Achieve economies of scale

D. Increase speed and agility

Correct Answer: D

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 166/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #216 Topic 1

A company has teams that have different job roles and responsibilities. The company’s employees often change teams. The company needs to

manage permissions for the employees so that the permissions are appropriate for the job responsibilities.

Which IAM resource should the company use to meet this requirement with the LEAST operational overhead?

A. IAM user groups

B. IAM roles

C. IAM instance profiles

D. IAM policies for individual users

Correct Answer: B

Currently there are no comments in this discussion, be the first to comment!

Question #217 Topic 1

Which AWS service can a company use to securely store and encrypt passwords for a database?

A. AWS Shield

B. AWS Secrets Manager

C. AWS Identity and Access Management (IAM)

D. Amazon Cognito

Correct Answer: B

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: B

B is correct
upvoted 1 times

Question #218 Topic 1

What can a cloud practitioner use to retrieve AWS security and compliance documents and submit them as evidence to an auditor or regulator?

A. AWS Certificate Manager

B. AWS Systems Manager

C. AWS Artifact

D. Amazon Inspector

Correct Answer: C

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: C

C is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 167/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #219 Topic 1

Which encryption types can be used to protect objects at rest in Amazon S3? (Choose two.)

A. Server-side encryption with Amazon S3 managed encryption keys (SSE-S3)

B. Server-side encryption with AWS KMS managed keys (SSE-KMS)

C. TLS

D. SSL

E. Transparent Data Encryption (TDE)

Correct Answer: AB

  asdfcdsxdfc 2 days, 11 hours ago

Are the given answers correct? can anyone confirm
upvoted 1 times

Question #220 Topic 1

A company wants to integrate its online shopping website with social media login credentials.

Which AWS service can the company use to make this integration?

A. AWS Directory Service

B. AWS Identity and Access Management (IAM)

C. Amazon Cognito

D. AWS IAM Identity Center (AWS Single Sign-On)

Correct Answer: C

Question #221 Topic 1

Which AWS service is used to track, record, and audit configuration changes made to AWS resources?

A. AWS Shield

B. AWS Config

C. AWS IAM

D. Amazon Inspector

Correct Answer: B

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: B

B is correct
"AWS Config
• Helps with auditing and recording compliance of your AWS resources
• Helps record configurations and changes over time"
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 168/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #222 Topic 1

A customer runs an On-Demand Amazon Linux EC2 instance for 3 hours, 5 minutes, and 6 seconds.

For how much time will the customer be billed?

A. 3 hours, 5 minutes

B. 3 hours, 5 minutes, and 6 seconds

C. 3 hours, 6 minutes

D. 4 hours

Correct Answer: C

  Bushie 2 days, 11 hours ago

For On-Demand instances in Amazon EC2, you are billed for the entire hour, regardless of how much of that hour you use. In this case, since the
customer runs the instance for 3 hours, 5 minutes, and 6 seconds, they will be billed for 4 hours.

So, the correct answer is:

D. 4 hours
upvoted 1 times

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: B

B is correct
"On-demand instances:
• Minimum of 60s
• Pay per second (Linux/Windows) or per hour (other)"
upvoted 1 times

Question #223 Topic 1

A company website is experiencing DDoS attacks.

Which AWS service can help protect the company website against these attacks?

A. AWS Resource Access Manager

B. AWS Amplify

C. AWS Shield

D. Amazon GuardDuty

Correct Answer: C

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 169/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #224 Topic 1

A company wants a customized assessment of its current on-premises environment. The company wants to understand its projected running

costs in the AWS Cloud.

Which AWS service or tool will meet these requirements?

A. AWS Trusted Advisor

B. Amazon Inspector

C. AWS Control Tower

D. Migration Evaluator

Correct Answer: D

Question #225 Topic 1

A company that has multiple business units wants to centrally manage and govern its AWS Cloud environments. The company wants to automate

the creation of AWS accounts, apply service control policies (SCPs), and simplify billing processes.

Which AWS service or tool should the company use to meet these requirements?

A. AWS Organizations

B. Cost Explorer

C. AWS Budgets

D. AWS Trusted Advisor

Correct Answer: A

Question #226 Topic 1

A company is hosting an application in the AWS Cloud. The company wants to verify that underlying AWS services and general AWS infrastructure

are operating normally.

Which combination of AWS services can the company use to gather the required information? (Choose two.)

A. AWS Personal Health Dashboard

B. AWS Systems Manager

C. AWS Trusted Advisor

D. AWS Service Health Dashboard

E. AWS Service Catalog

Correct Answer: AD

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 170/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #227 Topic 1

A company needs to migrate a PostgreSQL database from on-premises to Amazon RDS.

Which AWS service or tool should the company use to meet this requirement?

A. Cloud Adoption Readiness Tool

B. AWS Migration Hub

C. AWS Database Migration Service (AWS DMS)

D. AWS Application Migration Service

Correct Answer: C

Question #228 Topic 1

Which cloud concept is demonstrated by using AWS Compute Optimizer?

A. Security validation

B. Rightsizing

C. Elasticity

D. Global reach

Correct Answer: B

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: B

B is correct
upvoted 1 times

Question #229 Topic 1

A company hosts a large amount of data in AWS. The company wants to identify if any of the data should be considered sensitive.

Which AWS service will meet the requirement?

A. Amazon Inspector

B. Amazon Macie

C. AWS Identity and Access Management (IAM)

D. Amazon CloudWatch

Correct Answer: B

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 171/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #230 Topic 1

A user has a stateful workload that will run on Amazon EC2 for the next 3 years.

What is the MOST cost-effective pricing model for this workload?

A. On-Demand Instances

B. Reserved Instances

C. Dedicated Instances

D. Spot Instances

Correct Answer: B

Question #231 Topic 1

Who enables encryption of data at rest for Amazon Elastic Block Store (Amazon EBS)?

A. AWS Support

B. AWS customers

C. AWS Key Management Service (AWS KMS)

D. AWS Trusted Advisor

Correct Answer: B

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: B

B is correct
upvoted 1 times

Question #232 Topic 1

What can a user accomplish using AWS CloudTrail?

A. Generate an IAM user credentials report.

B. Record API calls made to AWS services.

C. Assess the compliance of AWS resource configurations with policies and guidelines.

D. Ensure that Amazon EC2 instances are patched with the latest security updates.

Correct Answer: B

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 172/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #233 Topic 1

A company is planning to host its workloads on AWS.

Which AWS service requires the company to update and patch the guest operating system?

A. Amazon DynamoDB

B. Amazon S3

C. Amazon EC2

D. Amazon Aurora

Correct Answer: C

Question #234 Topic 1

Which AWS service or feature will search for and identify AWS resources that are shared externally?

A. Amazon OpenSearch Service

B. AWS Control Tower

C. AWS IAM Access Analyzer

D. AWS Fargate

Correct Answer: C

  asdfcdsxdfc 2 days, 21 hours ago

Selected Answer: C

C is correct
upvoted 1 times

Question #235 Topic 1

A company is migrating its workloads to the AWS Cloud. The company must retain full control of patch management for the guest operating

systems that host its applications.

Which AWS service should the company use to meet these requirements?

A. Amazon DynamoDB

B. Amazon EC2

C. AWS Lambda

D. Amazon RDS

Correct Answer: B

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 173/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #236 Topic 1

At what support level do users receive access to a support concierge?

A. Basic Support

B. Developer Support

C. Business Support

D. Enterprise Support

Correct Answer: D

  asdfcdsxdfc 2 days, 20 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #237 Topic 1

Which AWS service can a company use to visually design and build serverless applications?

A. AWS Lambda

B. AWS Batch

C. AWS Application Composer

D. AWS App Runner

Correct Answer: C

  asdfcdsxdfc 2 days, 20 hours ago

Selected Answer: C

C is correct
"AWS Application Composer helps you visually compose and configure AWS services into serverless applications backed by infrastructure as code."
upvoted 1 times

  abbey0922 4 days, 1 hour ago

Selected Answer: C

AWS Application Composer helps to streamline and accelerate the architecture, configuration, and build of serverless applications.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 174/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #238 Topic 1

A company wants to migrate to AWS and use the same security software it uses on premises. The security software vendor offers its security

software as a service on AWS.

Where can the company purchase the security solution?

A. AWS Partner Solutions Finder

B. AWS Support Center

C. AWS Management Console

D. AWS Marketplace

Correct Answer: D

  asdfcdsxdfc 2 days, 20 hours ago

Selected Answer: D

D is correct
upvoted 1 times

Question #239 Topic 1

A company has deployed an Amazon EC2 instance.

Which option is an AWS responsibility under the AWS shared responsibility model?

A. Managing and encrypting application data

B. Installing updates and security patches of guest operating system

C. Configuration of infrastructure devices

D. Configuration of security groups on each instance

Correct Answer: C

Question #240 Topic 1

A company wants to migrate its PostgreSQL database to AWS. The company does not use the database frequently.

Which AWS service or resource will meet these requirements with the LEAST management overhead?

A. PostgreSQL on Amazon EC2

B. Amazon RDS for PostgreSQL

C. Amazon Aurora PostgreSQL-Compatible Edition

D. Amazon Aurora Serverless

Correct Answer: D

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 175/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #241 Topic 1

A company is using Amazon DynamoDB for its application database.

Which tasks are the responsibility of AWS, according to the AWS shared responsibility model? (Choose two.)

A. Classify data.

B. Configure access permissions.

C. Manage encryption options.

D. Provide public endpoints to store and retrieve data.

E. Manage the infrastructure layer and the operating system.

Correct Answer: DE

Question #242 Topic 1

A company wants to create a globally accessible ecommerce platform for its customers. The company wants to use a highly available and

scalable DNS web service to connect users to the platform.

Which AWS service will meet these requirements?

A. Amazon EC2

B. Amazon VPC

C. Amazon Route 53

D. Amazon RDS

Correct Answer: C

Question #243 Topic 1

Which maintenance task is the customer’s responsibility, according to the AWS shared responsibility model?

A. Physical connectivity among Availability Zones

B. Network switch maintenance

C. Hardware updates and firmware patches

D. Amazon EC2 updates and security patches

Correct Answer: D

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 176/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #244 Topic 1

A company wants to improve its security posture by reviewing user activity through API calls.

Which AWS service will meet this requirement?

A. AWS WAF

B. Amazon Detective

C. Amazon CloudWatch

D. AWS CloudTrail

Correct Answer: D

Question #245 Topic 1

A company is migrating to the AWS Cloud and plans to run experimental workloads for 3 to 6 months on AWS.

Which pricing model will meet these requirements?

A. Use Savings Plans for a 3-year term.

B. Use Dedicated Hosts.

C. Buy Reserved Instances.

D. Use On-Demand Instances.

Correct Answer: D

Question #246 Topic 1

A company that has AWS Enterprise Support is launching a new version of a popular product in 2 months. The company expects a large increase

in traffic to its website. The website is hosted on Amazon EC2 instances.

Which action should the company take to assess its readiness to scale for this launch?

A. Replace the EC2 instances with AWS Lambda functions.

B. Use AWS Infrastructure Event Management (IEM) support.

C. Submit a request on AWS Marketplace to monitor the event.

D. Review the coverage reports in the AWS Cost Management console.

Correct Answer: B

  asdfcdsxdfc 2 days, 20 hours ago

Selected Answer: B

B is correct
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 177/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #247 Topic 1

A company wants to launch multiple workloads on AWS. Each workload is related to a different business unit. The company wants to separate and

track costs for each business unit.

Which solution will meet these requirements with the LEAST operational overhead?

A. Use AWS Organizations and create one account for each business unit.

B. Use a spreadsheet to control the owners and cost of each resource.

C. Use an Amazon DynamoDB table to record costs for each business unit.

D. Use the AWS Billing console to assign owners to resources and track costs.

Correct Answer: A

Question #248 Topic 1

A company wants a time-series database service that makes it easier to store and analyze trillions of events each day.

Which AWS service will meet this requirement?

A. Amazon Neptune

B. Amazon Timestream

C. Amazon Forecast

D. Amazon DocumentDB (with MongoDB compatibility)

Correct Answer: B

  asdfcdsxdfc 2 days, 20 hours ago

Selected Answer: B

B is correct
"Amazon Timestream is a fast, scalable, and serverless time-series database service that makes it easier to store and analyze trillions of events per
day up to 1,000 times faster. Amazon Timestream automatically scales up or down to adjust capacity and performance, so that you don’t have to
manage the underlying infrastructure."
upvoted 1 times

  abbey0922 4 days, 2 hours ago

Selected Answer: B

Amazon Timestream is a fast, scalable, and serverless time series database service for IoT and operational applications that makes it easy to store
and analyze trillions of events per day up to 1,000 times faster and at as little as 1/10th the cost of relational databases.
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 178/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #249 Topic 1

Which option is a shared control between AWS and the customer, according to the AWS shared responsibility model?

A. Configuration management

B. Physical and environmental controls

C. Data integrity authentication

D. Identity and access management

Correct Answer: D

  asdfcdsxdfc 2 days, 10 hours ago

Selected Answer: A

A is correct
"Shared controls:
• Patch Management, Configuration Management, Awareness & Training"
upvoted 1 times

  abbey0922 3 days, 3 hours ago

Selected Answer: A

Shared Controls – Controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In
a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within
their use of AWS services.

Examples include:
Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their
guest OS and applications.

Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring their own
guest operating systems, databases, and applications.

Awareness & Training - AWS trains AWS employees, but a customer must train their own employees.
upvoted 1 times

Question #250 Topic 1

A company often does not use all of its current Amazon EC2 capacity to run stateless workloads. The company wants to optimize its EC2 costs.

Which EC2 instance type will meet these requirements?

A. Spot Instances

B. Dedicated Instances

C. Reserved Instances

D. On-Demand Instances

Correct Answer: A

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 179/180
*** AWS Certified Cloud Practitioner CLF-C02 Exam – Free Exam Q&As, Page 1 | ExamTopics

Question #251 Topic 1

A company wants to store data in Amazon S3. The company rarely access the data, and the data can be regenerated if necessary. The company

wants to store the data in the most cost-effective storage class.

Which S3 storage class will meet this requirement?

A. S3 Standard

B. S3 Intelligent-Tiering

C. S3 Standard-Infrequent Access (S3 Standard-IA)

D. S3 One Zone-Infrequent Access (S3 One Zone-IA)

Correct Answer: D

Question #252 Topic 1

A company has migrated its workloads to AWS. The company wants to adopt AWS at scale and operate more efficiently and securely. Which AWS

service or framework should the company use for operational support?

A. AWS Support

B. AWS Cloud Adoption Framework (AWS CAF)

C. AWS Managed Services (AMS)

D. AWS Well-Architected Framework

Correct Answer: D

  tqiu654 1 day, 6 hours ago

Selected Answer: B

B. AWS Cloud Adoption Framework (AWS CAF)

To adopt AWS at scale and operate more efficiently and securely, the company should use the AWS Cloud Adoption Framework (AWS CAF). The
AWS Cloud Adoption Framework is a comprehensive guide that helps organizations plan, strategize, and implement their cloud adoption journey
effectively. It provides a structured approach for organizations to build a secure, efficient, and well-architected environment in AWS.
upvoted 1 times

  abbey0922 4 days, 2 hours ago

Selected Answer: C

AWS Managed Services (AMS) helps you adopt AWS at scale and operate more efficiently and securely. We leverage standard AWS services and
offer operational guidance with specialized automations, skills, and experience that are contextual to your environment and applications
upvoted 1 times

https://www.examtopics.com/exams/amazon/aws-certified-cloud-practitioner-clf-c02/custom-view/ 180/180