• ホーム
  • ブログ
  • 100%無料CLF-C01試験問題集で試験を簡単に合格させます [Q219-Q244]

100%無料CLF-C01試験問題集で試験を簡単に合格させます [Q219-Q244]

Share

100%無料CLF-C01試験問題集で試験を簡単に合格させるGoShiken

無料CLF-C01試験問題CLF-C01実際のリアル試験問題


Amazon CLF-C01 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • 請求、アカウント管理、および価格設定モデルを定義する
トピック 2
  • AWSクラウドとは何かと基本的なグローバルインフラストラクチャを定義する
トピック 3
  • AWSクラウドの基本的なアーキテクチャの原則を説明する
  • AWSクラウドの価値提案を説明する
トピック 4
  • AWSプラットフォームと共有セキュリティモデルの基本的なセキュリティとコンプライアンスの側面を説明する
トピック 5
  • AWSプラットフォームの主要なサービスとその一般的なユースケースを説明する(例:コンピューティングと分析)
トピック 6
  • AWSクラウドでのデプロイと運用の基本
  • コア特性を説明する

 

質問 # 219
Using AWS Identity and Access Management (IAM) to grant access only to the resources needed to perform a task is a concept known as:

  • A. restricted access.
  • B. as-needed access.
  • C. token access.
  • D. least privilege access.

正解:D

解説:
When you create IAM policies, follow the standard security advice of granting least privilege, or granting only the permissions required to perform a task. Determine what users (and roles) need to do and then craft policies that allow them to perform only those tasks.
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html


質問 # 220
A web application running on AWS has been spammed with malicious requests from a recurring set of IP addresses.
Which AWS service can help secure the application and block the malicious traffic?

  • A. Amazon Simple Notification Service (Amazon SNS)
  • B. AWS WAF
  • C. AWS IAM
  • D. Amazon GuardDuty

正解:B

解説:
Explanation
AWS WAF is a web application firewall that helps protect web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. You can use AWS WAF to define customizable web security rules that control which traffic accesses your web applications. If you use AWS Shield Advanced, you can use AWS WAF at no extra cost for those protected resources and can engage the DRT to create WAF rules.
Reference:
https://aws.amazon.com/answers/networking/aws-ddos-attack-mitigation/


質問 # 221
Which principles are used to architect applications for reliability on the AWS Cloud? (Choose two.)

  • A. Test for moderate demand to ensure reliability
  • B. Use multiple Availability Zones
  • C. Design for automated failure recovery
  • D. Manage changes via documented processes
  • E. Backup recovery to an on-premises environment

正解:B、C

解説:
Explanation/Reference: https://aws.amazon.com/blogs/apn/the-5-pillars-of-the-aws-well-architected-framework/


質問 # 222
Which AWS service provides a simple and scalable shared file storage solution for use with Linux-based AWS and on-premises servers?

  • A. Amazon Glacier
  • B. Amazon S3
  • C. Amazon EFS
  • D. Amazon EBS

正解:C

解説:
Amazon Elastic File System (Amazon EFS) provides a simple, scalable, fully managed elastic NFS file system for use with AWS Cloud services and on-premises resources. It is built to scale on demand to petabytes without disrupting applications, growing and shrinking automatically as you add and remove files, eliminating the need to provision and manage capacity to accommodate growth.
Amazon EFS is designed to provide the throughput, IOPS, and low latency needed for Linux workloads.
Throughput and IOPS scale as a file system grows and can burst to higher throughput levels for short periods of time to support the unpredictable performance needs of file workloads. For the most demanding workloads, Amazon EFS can support performance over 10 GB/sec and up to 500,000 IOPS.


質問 # 223
The AWS Cloud's multiple Regions are an example of:

  • A. agility.
  • B. pay-as-you-go pricing.
  • C. global infrastructure.
  • D. elasticity.

正解:C

解説:
Explanation
https://aws.amazon.com/blogs/apn/architecting-multi-region-saas-solutions-on-aws/


質問 # 224
Which of the following can limit Amazon Simple Storage Service (Amazon S3) bucket access to specific users?

  • A. Security Groups
  • B. AWS Identity and Access Management (IAM) policies
  • C. Amazon Inspector
  • D. A public and private key-pair

正解:B

解説:
Explanation
To allow users to perform S3 actions on the bucket from the VPC endpoints or IP addresses, you must explicitly grant those user-level permissions. You can grant user-level permissions on either an AWS Identity and Access Management (IAM) policy or another statement in the bucket policy.


質問 # 225
Which service enables customers to audit and monitor changes in AWS resources?

  • A. AWS Config
  • B. AWS Trusted Advisor
  • C. Amazon Inspector
  • D. Amazon GuardDuty

正解:A

解説:
AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations. With Config, you can review changes in configurations and relationships between AWS resources, dive into detailed resource configuration histories, and determine your overall compliance against the configurations specified in your internal guidelines. This enables you to simplify compliance auditing, security analysis, change management, and operational troubleshooting.
Reference: https://aws.amazon.com/config/


質問 # 226
Which of the following are benefits of the AWS business support plan?

  • A. Response time of less than 15 minutes for business critical cases
  • B. Full set of AWS trusted Advisor best practice checks
  • C. Phone, email and chat support 24 hours a day 7 days a week
  • D. Dedicated AWS technical account manager (TAM)
  • E. Well-Architected reviews

正解:B、C


質問 # 227
Which AWS services can be used as infrastructure automation tools? (Select TWO.)

  • A. Amazon QuickSight
  • B. Amazon CloudFront
  • C. AWS OpsWorks
  • D. AWS CloudFormation
  • E. AWS Batch

正解:C、D


質問 # 228
Which of the following are valid ways for a customer to interact with AWS services? (Select TWO.)

  • A. Software-as-a-service
  • B. On-premises
  • C. Hybrid
  • D. Command line interface
  • E. Software Development Kits

正解:A、D


質問 # 229
A company is building an application that requires the ability to send, store, and receive messages between application components. The company has another requirement to process messages in first-in. first-out (FIFO) order.
Which AWS service should the company use?

  • A. Amazon Kinesis Data Streams
  • B. Amazon Simple Notification Service (Amazon SNS)
  • C. AWS Step Functions
  • D. Amazon Simple Queue Service (Amazon SQS)

正解:C


質問 # 230
Which AWS tools assist with estimating costs? (Select TWO.)

  • A. Detailed billing report
  • B. Cost Eliminator
  • C. AWS Simple Monthly Calculator
  • D. Cost allocation tags
  • E. AWS Total Cost of Ownership (TCO) Calculator

正解:D、E


質問 # 231
Which service enables risk auditing by continuously monitoring and logging account activity, including user actions in the AWS Management Console and AWS SDKs?

  • A. AWS Config
  • B. AWS CloudTrail
  • C. Amazon CloudWatch
  • D. AWS Health

正解:B


質問 # 232
A company has an on-premises Oracle database. The company spends a significant amount of time on database administration activities. The company is moving the database to AWS and needs to minimize the time that is requited lot these administration activities Which AWS service should the company use to meet this requirement''

  • A. Amazon RDS
  • B. Amazon DynamoDB
  • C. Amazon EC2
  • D. Amazon ElastiCache

正解:A


質問 # 233
An application runs on multiple Amazon EC2 instances that access a shared file system simultaneously Which AWS storage service should be used?

  • A. Amazon S3
  • B. Amazon EFS
  • C. Amazon EBS
  • D. AWS Artifact

正解:B


質問 # 234
Which of the following common IT tasks can AWS cover to free up company IT resources? (Choose two.)

  • A. Running penetration tests
  • B. Testing application releases
  • C. Patching databases software
  • D. Creating database schema
  • E. Backing up databases

正解:A、C


質問 # 235
Which AWS feature will reduce the customer's total cost of ownership (TCO)?

  • A. Elastic computing
  • B. Shared responsibility security model
  • C. Single tenancy
  • D. Encryption

正解:B


質問 # 236
Which AWS service provides a simple and scalable shared file storage solution for use with Linux-based AWS and on-premises servers?

  • A. Amazon Glacier
  • B. Amazon S3
  • C. Amazon EFS
  • D. Amazon EBS

正解:C

解説:
Explanation/Reference:
Explanation:
Amazon Elastic File System (Amazon EFS) provides a simple, scalable, fully managed elastic NFS file system for use with AWS Cloud services and on-premises resources. It is built to scale on demand to petabytes without disrupting applications, growing and shrinking automatically as you add and remove files, eliminating the need to provision and manage capacity to accommodate growth.
Amazon EFS is designed to provide the throughput, IOPS, and low latency needed for Linux workloads.
Throughput and IOPS scale as a file system grows and can burst to higher throughput levels for short periods of time to support the unpredictable performance needs of file workloads. For the most demanding workloads, Amazon EFS can support performance over 10 GB/sec and up to 500,000 IOPS.


質問 # 237
Which service provides a hybrid storage service that enables on-premises applications to seamlessly use cloud storage?

  • A. Amazon Glacier
  • B. AWS Storage Gateway
  • C. AWS Snowball
  • D. Amazon Elastic Block Storage (Amazon EBS)

正解:B

解説:
Explanation
AWS Storage Gateway is a hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage. Customers use Storage Gateway to simplify storage management and reduce costs for key hybrid cloud storage use cases. These include moving tape backups to the cloud, reducing on-premises storage with cloud-backed file shares, providing low latency access to data in AWS for on-premises applications, as well as various migration, archiving, processing, and disaster recovery use cases.


質問 # 238
Which of the following provides the ability to share the cost benefits of Reserved Instances across AWS accounts?

  • A. Amazon Elastic Compute Cloud (Amazon EC2) Reserved Instance Utilization Report
  • B. Linked accounts and consolidated billing
  • C. AWS Cost Explorer between AWS accounts
  • D. Amazon EC2 Instance Usage Report between AWS accounts

正解:B

解説:
The way that Reserved Instance discounts apply to accounts in an organization's consolidated billing family depends on whether Reserved Instance sharing is turned on or off for the account. By default, Reserved Instance sharing for all accounts in an organization is turned on. You can change this setting by Turning Off Reserved Instance Sharing for an account.
The capacity reservation for a Reserved Instance applies only to the account the Reserved Instance was purchased on, regardless of whether Reserved Instance sharing is turned on or off.
Reference: https://aws.amazon.com/premiumsupport/knowledge-center/ec2-ri-consolidated-billing/


質問 # 239
A company is using multiple Availability Zones to deploy AWS Cloud architecture.
Which design principle of the AWS Well-Architected Framework does this example represent?

  • A. Decouple architecture components
  • B. Implement elasticity
  • C. Thing parallel
  • D. Design for high availability

正解:D


質問 # 240
When building a cloud Total Cost of Ownership (TCO) model, which cost elements should be considered for workloads running on AWS? (Select THREE.)

  • A. Storage costs
  • B. Hardware lifecycle costs
  • C. Network infrastructure costs
  • D. Compute costs
  • E. Data transfer costs
  • F. Facilities costs

正解:A、C、D


質問 # 241
A company is planning to migrate to the AWS Cloud. The company is conducting organizational transformation and wants to become more responsive to customer inquiries and feedback.
Which task should the company perform to meet these requirements, accounting to the AWS Cloud Adoption Framework (AWS CAF)?

  • A. Migrate and modernize legacy infrastructure.
  • B. Create new value propositions with new products and services.
  • C. Use a new data and analytics platform to create actionable insights.
  • D. Realign teams to focus on products and value streams.

正解:B


質問 # 242
Who is responsible for managing IAM user access and secret keys according to the AWS shared responsibility model?

  • A. The AWS Support team will rotate keys when requested by the customer.
  • B. AWS will rotate the keys whenever required.
  • C. The customer is responsible for rotating keys.
  • D. IAM access and secret keys are static, so there is no need to rotate them

正解:C


質問 # 243
Mike is setting up the infrastructure for a web application that requires three EC2 instances to handle the expected demand. However, when testing the application, Mike find that all traffic to the application is being routed to only one of the servers. What AWS feature should he add to his application in order to have traffic evenly distributed between all three servers?
Choose the Correct answer:

  • A. Auto Scaling
  • B. Route 53
  • C. Elastic Load Balancer
  • D. CloudFront

正解:C

解説:
An Elastic Load Balancer is designed to evenly distribute incoming web traffic between all servers that are associated with it.


質問 # 244
......

最新100%合格率保証付きの素晴らしいCLF-C01試験問題PDF:https://www.goshiken.com/Amazon/CLF-C01-mondaishu.html

検証済みのCLF-C01問題集366格別な問題:https://drive.google.com/open?id=1nU1493jbrsAOzOXe1kbyW6lTjWPt0TQ7

関するブログ

もっと
CLF-C01無料問題集