• ホーム
  • ブログ
  • 検証済みのCLF-C01テスト問題集と解答で正確な542問 [Q294-Q313]

検証済みのCLF-C01テスト問題集と解答で正確な542問 [Q294-Q313]

Share

検証済みのCLF-C01テスト問題集と解答で正確な542問

Amazon CLF-C01テストエンジンPDFで全問無料問題集


Amazon CLF-C01 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Describe Basic Security and Compliance Aspects of the AWS Platform and the Shared Security Model
トピック 2
  • Identify Sources of Documentation or Technical Assistance (For Example: Whitepapers or Support Tickets)
トピック 3
  • Define the Billing, Account Management, and Pricing Models
トピック 4
  • Describe Basic AWS Cloud Architectural Principles
  • Describe the AWS Cloud Value Proposition
トピック 5
  • Define What the AWS Cloud is and the Basic Global Infrastructure
トピック 6
  • Describe Basic
  • Core Characteristics of Deploying and Operating in the AWS Cloud

 

質問 294
Under the AWS shared responsibility model, customer responsibilities include which one of the following?

  • A. Providing certificates, reports, and other documentation directly to AWS customers under NDA.
  • B. Obtaining industry certifications and independent third-party attestations.
  • C. Configuring the operating system, network, and firewall.
  • D. Securing the hardware, software, facilities, and networks that run all products and services.

正解: C

解説:
Explanation
Explanation/Reference: https://aws.amazon.com/compliance/shared-responsibility-model/

 

質問 295
What function do security groups serve related to Amazon Elastic Compute Cloud (Amazon EC2) instance security?

  • A. Act as a virtual firewall for the Amazon EC2 instance.
  • B. Use Amazon CloudFront to protect the Amazon EC2 instance.
  • C. Secure AWS user accounts with AWS Identity and Access Management (IAM) policies.
  • D. Provide DDoS protection with AWS Shield.

正解: A

解説:
Explanation
AWS Security Groups act like a firewall for your Amazon EC2 instances controlling both inbound and outbound traffic. When you launch an instance on Amazon EC2, you need to assign it to a particular security group.
After that, you can set up ports and protocols, which remain open for users and computers over the internet.
AWS Security Groups are very flexible. You can use the default security group and still customize it according to your liking (although we don't recommend this practice because groups should be named according to their purpose.) Or you can create a security group that you want for your specific applications. To do this, you can write the corresponding code or use the Amazon EC2 console to make the process easier.

 

質問 296
What helps a company provide a lower latency experience to its users globally?

  • A. Using a second Availability Zone in the AWS Region that is using used
  • B. Enabling caching in the AWS Region that is being used
  • C. Using an AWS Region that is central to all users
  • D. Using edge locations to put content closer to all users

正解: C

 

質問 297
Which services use AWS edge locations? (Choose two.)

  • A. Amazon CloudFront
  • B. Amazon RDS
  • C. Amazon EC2
  • D. Amazon ElastiCache
  • E. AWS Shield

正解: A,C

解説:
Explanation/Reference: https://www.edureka.co/community/600/what-is-an-edge-location-in-aws

 

質問 298
What function do security groups serve related to Amazon Elastic Compute Cloud (Amazon EC2) instance security?

  • A. Act as a virtual firewall for the Amazon EC2 instance.
  • B. Secure AWS user accounts with AWS Identity and Access Management (IAM) policies.
  • C. Provide DDoS protection with AWS Shield.
  • D. Use Amazon CloudFront to protect the Amazon EC2 instance.
    AWS Security Groups act like a firewall for your Amazon EC2 instances controlling both inbound and outbound traffic. When you launch an instance on Amazon EC2, you need to assign it to a particular security group.
    After that, you can set up ports and protocols, which remain open for users and computers over the internet.
    AWS Security Groups are very flexible. You can use the default security group and still customize it according to your liking (although we don't recommend this practice because groups should be named according to their purpose.) Or you can create a security group that you want for your specific applications. To do this, you can write the corresponding code or use the Amazon EC2 console to make the process easier.

正解: A

 

質問 299
A company wants to focus on business activities instead of managing compute and capacity
Which AWS service can be used to automatically add or remove Amazon EC2 instances based on demand)

  • A. Elastic Load Balancer
  • B. Amazon CloudFront
  • C. Amazon EC2 Auto Scaling
  • D. Amazon Route 53

正解: C

 

質問 300
Which AWS feature should a customer leverage to achieve high availability of an application?

  • A. Availability Zones
  • B. Amazon Virtual Private Cloud (Amazon VPC)
  • C. AWS Direct Connect
  • D. Data centers

正解: A

解説:
This is to achieve High Availability for any web application (in this case SwiftCode) deployed in AWS. The following features will be present:
* High availability across multiple instances/multiple availability zones.
* Auto Scaling of instances (scale up and scale down) based on number of requests coming in
* Additional Security to the instances/database that are in production
* No impact to end users during newer version of code deployment
* No Impact during patching the instances
Reference: https://betsol.com/2018/01/how-to-make-high-availability-web-applications-on-amazon-web- services/

 

質問 301
A company wants to build its new application workloads in the AWS Cloud instead of using on-premises resources.
What expense can be reduced using the AWS Cloud?

  • A. Writing specific test cases for third-party applications.
  • B. Penetration testing for security
  • C. The cost of writing custom-built Java or Node .js code
  • D. hardware required to support new applications

正解: D

解説:
Reference: https://aws.amazon.com/pricing/cost-optimization/

 

質問 302
To use the AWS CLI, users are required to generate:

  • A. a password policy.
  • B. an access/secret key.
  • C. an API key
  • D. a managed policy.

正解: B

 

質問 303
Which AWS managed service is used to host databases?

  • A. AWS Artifact
  • B. AWS Batch
  • C. Amazon RDS
  • D. AWS Data Pipeline

正解: C

解説:
Explanation
Explanation
Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.

 

質問 304
Which AWS service helps users meet contractual and regulatory compliance requirements for data security by using dedicated hardware appliances within the AWS Cloud?

  • A. AWS Key Management Service (AWS KMS)
  • B. AWS Secrets Manager
  • C. AWS CloudHSM
  • D. AWS Directory Service

正解: C

解説:
The AWS CloudHSM service helps you meet corporate, contractual, and regulatory compliance requirements for data security by using dedicated Hardware Security Module (HSM) instances within the AWS cloud. AWS and AWS Marketplace partners offer a variety of solutions for protecting sensitive data within the AWS platform, but for some applications and data subject to contractual or regulatory mandates for managing cryptographic keys, additional protection may be necessary. CloudHSM complements existing data protection solutions and allows you to protect your encryption keys within HSMs that are designed and validated to government standards for secure key management. CloudHSM allows you to securely generate, store, and manage cryptographic keys used for data encryption in a way that keys are accessible only by you.
Reference: https://aws.amazon.com/cloudhsm/faqs/

 

質問 305
Which documentation does AWS Artifact provide?

  • A. A list of previous-generation Amazon EC2 instance types
  • B. Amazon EC2 terms and conditions
  • C. AWS ISO certifications
  • D. A history of a company's AWS spending

正解: B

 

質問 306
Which feature adds elasticity to Amazon EC2 instances to handle the changing demand for workloads?

  • A. Amazon EC2 Auto Scaling
    Support for monitoring the health of each service independently, as health checks are defined at the target group level and many CloudWatch metrics are reported at the target group level. Attaching a target group to an Auto Scaling group enables you to scale each service dynamically based on demand.
  • B. Lifecycle policies
  • C. Resource groups
  • D. Application Load Balancer

正解: A

 

質問 307
The continual reduction of AWS Cloud pricing is due to:

  • A. reserved storage pricing.
  • B. pay-as-you go pricing.
  • C. the AWS global infrastructure.
  • D. economies of scale.

正解: D

 

質問 308
What is a characteristic of Amazon S3 cross-region replication?

  • A. The source and destination S3 buckets cannot be in different AWS Regions
  • B. Both source and destination S3 buckets must have versioning disabled
  • C. The source S3 bucket owner must have the source and destination AWS Regions disabled for their account
  • D. S3 buckets configured for cross-region replication can be owned by a single AWS account or by different accounts

正解: D

 

質問 309
Which disaster recovery scenario offers the lowest probability of down time?

  • A. Pilot light
  • B. Multi-site active-active
  • C. Backup and restore
  • D. Warm standby

正解: B

解説:
* Backup and Restore: a simple, straightforward, cost-effective method that backs up and restores data as needed. Keep in mind that because none of your data is on standby, this method, while cheap, can be quite time-consuming.
* Pilot Light: This method keeps critical applications and data at the ready so that it can be quickly retrieved if needed.
* Warm Standby: This method keeps a duplicate version of your business' core elements running on standby at all times, which makes for a little downtime and an almost seamless transition.
* Multi-Site Solution: Also known as a Hot Standby, this method fully replicates your company's data/ applications between two or more active locations and splits your traffic/usage between them. If a disaster strikes, everything is simply rerouted to the unaffected area, which means you'll suffer almost zero downtime. However, by running two separate environments simultaneously, you will obviously incur much higher costs.
Reference: https://cloudranger.com/best-practices-aws-disaster-recovery-planning/

 

質問 310
What are the advantages of Reserved Instances? (Choose two.)

  • A. They provide a discount over on-demand pricing.
  • B. Customers can upgrade instances as new types become available.
  • C. They provide additional networking capability.
  • D. They provide access to additional instance types.
  • E. Customers can reserve capacity in an Availability Zone.

正解: A,E

 

質問 311
Which AWS feature will reduce the customer's total cost of ownership (TCO)?

  • A. Elastic computing
  • B. Single tenancy
  • C. Encryption
  • D. Shared responsibility security model

正解: A

 

質問 312
How does AWS Trusted Advisor provide guidance to users of the AWS Cloud? (Select TWO )

  • A. It automatically corrects potential security issues caused by permissions settings on account resources
  • B. It identifies software vulnerabilities in applications running on AWS
  • C. It provides a list of cost optimization recommendations based on current AWS usage
  • D. It provides proactive alerting whenever an Amazon EC2 instance has been compromised
  • E. It detects potential security vulnerabilities caused by permissions settings on account resources

正解: C,E

 

質問 313
......

100%合格率保証付きの素晴らしいCLF-C01試験問題PDF:https://www.goshiken.com/Amazon/CLF-C01-mondaishu.html

手に入れよう!最新CLF-C01認定有効な試験問題集解答:https://drive.google.com/open?id=1mdUEFwzT9GISRkziXP5Qmn3knIK8k0UF

関するブログ

もっと
CLF-C01無料問題集