30 Free AWS CLF-C02 Practice Questions

CLF-C02 Practice Questions

1. Question 1.AWS allows users to manage their resources using a web based user interface. What is the name of this interface?

   • A.AWS CLI.
   • B.AWS API.
   • C.AWS SDK.
   • D.AWS Management Console.(correct answer)
   Show answer & explanationHide answer

   Correct answer: D

   AWS Management Console.

   Explanation

   The AWS Management Console is the web-based graphical user interface used to access and manage AWS resources.

2. Question 2.Which of the following is an example of horizontal scaling in the AWS Cloud?

   • A.Replacing an existing EC2 instance with a larger, more powerful one.
   • B.Increasing the compute capacity of a single EC< instance to address the growing demands of an application.
   • C.Adding more RAM capacity to an EC2 instance.
   • D.Adding more EC2 instances of the same size to handle an increase in traffic.(correct answer)
   Show answer & explanationHide answer

   Correct answer: D

   Adding more EC2 instances of the same size to handle an increase in traffic.

   Explanation

   Horizontal scaling (scaling out) involves adding more instances to your resource pool, while vertical scaling (scaling up) involves increasing the power (CPU, RAM) of an existing instance.

3. Question 3.You have noticed that several critical Amazon EC2 instances have been terminated. Which of the following AWS services would help you determine who took this action?

   • A.Amazon Inspector.
   • B.AWS CloudTrail.(correct answer)
   • C.AWS Trusted Advisor.
   • D.EC2 Instance Usage Report.
   Show answer & explanationHide answer

   Correct answer: B

   AWS CloudTrail.

   Explanation

   AWS CloudTrail records API calls and account activity, allowing you to track who performed specific actions (like terminating instances) in your AWS account.

4. Question 4.Which of the below options are related to the reliability of AWS? (Choose TWO)

   • A.Applying the principle of least privilege to all AWS resources.
   • B.Automatically provisioning new resources to meet demand.(correct answer)
   • C.All AWS services are considered Global Services, and this design helps customers serve their international users.
   • D.Providing compensation to customers if issues occur.
   • E.Ability to recover quickly from failures.(correct answer)
   Show answer & explanationHide answer

   Correct answer: B, E

   Automatically provisioning new resources to meet demand. / Ability to recover quickly from failures.

   Explanation

   Reliability in the cloud is defined as the ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues.

5. Question 5.Which statement is true regarding the AWS Shared Responsibility Model?

   • A.Responsibilities vary depending on the services used.(correct answer)
   • B.Security of the IaaS services is the responsibility of AWS.
   • C.Patching the guest OS is always the responsibility of AWS.
   • D.Security of the managed services is the responsibility of the customer.
   Show answer & explanationHide answer

   Correct answer: A

   Responsibilities vary depending on the services used.

   Explanation

   The Shared Responsibility Model divides responsibilities between AWS (security 'of' the cloud) and the customer (security 'in' the cloud). The specific division of tasks depends on whether a service is IaaS, PaaS, or SaaS.

6. Question 6.You have set up consolidated billing for several AWS accounts. One of the accounts has purchased a number of reserved instances for 3 years. Which of the following is true regarding this scenario?

   • A.The Reserved Instance discounts can only be shared with the master account.
   • B.All accounts can receive the hourly cost benefit of the Reserved Instances.(correct answer)
   • C.The purchased instances will have better performance than On-demand instances.
   • D.There are no cost benefits from using consolidated billing; It is for informational purposes only.
   Show answer & explanationHide answer

   Correct answer: B

   All accounts can receive the hourly cost benefit of the Reserved Instances.

   Explanation

   With consolidated billing in AWS Organizations, Reserved Instance (RI) discounts are shared across all linked accounts in the organization, allowing any account to benefit from the lower hourly rates if they have matching usage.

7. Question 7.A company has developed an eCommerce web application in AWS. What should they do to ensure that the application has the highest level of availability?

   • A.Deploy the application across multiple Availability Zones and Edge locations.
   • B.Deploy the application across multiple Availability Zones and subnets.
   • C.Deploy the application across multiple Regions and Availability Zones.(correct answer)
   • D.Deploy the application across multiple VPC's and subnets.
   Show answer & explanationHide answer

   Correct answer: C

   Deploy the application across multiple Regions and Availability Zones.

   Explanation

   The highest level of availability and fault tolerance is achieved by deploying applications across multiple AWS Regions and multiple Availability Zones within those regions, protecting against even a full regional outage.

8. Question 8.What does AWS Snowball provide? (Choose TWO)

   • A.Built-in computing capabilities that allow customers to process data locally.(correct answer)
   • B.A catalog of third-party software solutions that customers need to build solutions and run their businesses.
   • C.A hybrid cloud storage between on-premises environments and the AWS Cloud.
   • D.An Exabyte-scale data transfer service that allows you to move extremely large amounts of data to AWS.
   • E.Secure transfer of large amounts of data into and out of the AWS.(correct answer)
   Show answer & explanationHide answer

   Correct answer: A, E

   Built-in computing capabilities that allow customers to process data locally. / Secure transfer of large amounts of data into and out of the AWS.

   Explanation

   AWS Snowball is a petabyte-scale data transport solution that uses physical devices to transfer large amounts of data into and out of AWS safely. Snowball Edge also provides on-board computing power for local data processing.

9. Question 9.A company has an AWS Enterprise Support plan. They want quick and efficient guidance with their billing and account inquiries. Which of the following should the company use?

   • A.AWS Health Dashboard.
   • B.AWS Support Concierge.(correct answer)
   • C.AWS Customer Service.
   • D.AWS Operations Support.
   Show answer & explanationHide answer

   Correct answer: B

   AWS Support Concierge.

   Explanation

   The AWS Support Concierge is a team of billing and account experts available to Enterprise Support customers to provide quick and efficient guidance on billing and account inquiries.

10. Question 10.A Japanese company hosts their applications on Amazon EC2 instances in the Tokyo Region. The company has opened new branches in the United States, and the US users are complaining of high latency. What can the company do to reduce latency for the users in the US while minimizing costs?

    • A.Applying the Amazon Connect latency-based routing policy.
    • B.Registering a new US domain name to serve the users in the US.
    • C.Building a new data center in the US and implementing a hybrid model.
    • D.Deploying new Amazon EC2 instances in a Region located in the US.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    Deploying new Amazon EC2 instances in a Region located in the US.

    Explanation

    Deploying resources in a Region closer to your users (e.g., in the US for US-based users) is the most effective way to reduce network latency while leveraging the AWS global infrastructure.

11. Question 11.An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?

    • A.IAM roles.
    • B.IAM users.
    • C.IAM user groups.(correct answer)
    • D.AWS Organizations.
    Show answer & explanationHide answer

    Correct answer: C

    IAM user groups.

    Explanation

    An IAM user group is a collection of IAM users. User groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users in specific teams.

12. Question 12.A company has decided to migrate its Oracle database to AWS. Which AWS service can help achieve this without negatively impacting the functionality of the source database?

    • A.AWS OpsWorks.
    • B.AWS Database Migration Service.(correct answer)
    • C.AWS Server Migration Service.
    • D.AWS Application Discovery Service.
    Show answer & explanationHide answer

    Correct answer: B

    AWS Database Migration Service.

    Explanation

    AWS Database Migration Service (AWS DMS) helps you migrate databases to AWS quickly and securely. The source database remains fully functional during the migration, minimizing downtime to applications that rely on the database.

13. Question 13.Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?

    • A.Build security in every layer.
    • B.Parallelize tasks.
    • C.Implement elasticity.(correct answer)
    • D.Adopt monolithic architecture.
    Show answer & explanationHide answer

    Correct answer: C

    Implement elasticity.

    Explanation

    Elasticity is the ability to acquire resources as you need them and release them when they are no longer needed. In the cloud, this is often done automatically via Auto Scaling to match power with demand.

14. Question 14.What are the benefits of having infrastructure hosted in AWS? (Choose TWO)

    • A.Increasing speed and agility.(correct answer)
    • B.There is no need to worry about security.
    • C.Gaining complete control over the physical infrastructure.
    • D.Operating applications on behalf of customers.
    • E.All of the physical security and most of the data/network security are taken care of for you.(correct answer)
    Show answer & explanationHide answer

    Correct answer: A, E

    Increasing speed and agility. / All of the physical security and most of the data/network security are taken care of for you.

    Explanation

    Moving to AWS provides speed and agility by allowing you to deploy resources in minutes. It also offloads the burden of physical security and much of the fundamental network/data security to AWS (Security OF the Cloud).

15. Question 15.What is the advantage of the AWS-recommended practice of 'decoupling' applications?

    • A.Allows treating an application as a single, cohesive unit.
    • B.Reduces inter-dependencies so that failures do not impact other components of the application.
    • C.Allows updates of any monolithic application quickly and easily.(correct answer)
    • D.Allows tracking of any API call made to any AWS service.
    Show answer & explanationHide answer

    Correct answer: C

    Allows updates of any monolithic application quickly and easily.

    Explanation

    Decoupling (using services like SQS or SNS) reduces the dependencies between different components of an application. If one component fails, the others can continue to function, increasing overall system resilience.

16. Question 16.Which of the following helps a customer view the Amazon EC2 billing activity for the past month?

    • A.AWS Budgets.
    • B.AWS Pricing Calculator.
    • C.AWS Systems Manager.
    • D.AWS Cost & Usage Reports.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    AWS Cost & Usage Reports.

    Explanation

    AWS Cost & Usage Reports (CUR) provide the most comprehensive set of AWS cost and usage data available, including metadata about AWS services, pricing, and reservations.

17. Question 17.What do you gain from setting up consolidated billing for five different AWS accounts under another master account?

    • A.AWS services' costs will be reduced to half the original price.
    • B.The consolidated billing feature is just for organizational purpose.
    • C.Each AWS account gets volume discounts.(correct answer)
    • D.Each AWS account gets five times the free-tier services capacity.
    Show answer & explanationHide answer

    Correct answer: C

    Each AWS account gets volume discounts.

    Explanation

    Consolidated billing allows you to combine the usage from all accounts in your organization to qualify for volume discounts for services like S3 and EC2 data transfer.

18. Question 18.What should you do in order to keep the data on EBS volumes safe? (Choose TWO)

    • A.Regularly update firmware on EBS devices.
    • B.Create EBS snapshots.(correct answer)
    • C.Ensure that EBS data is encrypted at rest.(correct answer)
    • D.Store a backup daily in an external drive.
    • E.Prevent any unauthorized access to AWS data centers.
    Show answer & explanationHide answer

    Correct answer: B, C

    Create EBS snapshots. / Ensure that EBS data is encrypted at rest.

    Explanation

    EBS snapshots provide point-in-time backups of your data. Encrypting EBS volumes at rest ensures that even if the underlying storage media were compromised, the data remains unreadable without the key.

19. Question 19.One of the most important AWS best-practices to follow is the cloud architecture principle of elasticity. How does this principle improve your architecture's design?

    • A.By automatically scaling your on-premises resources based on changes in demand.
    • B.By automatically scaling your AWS resources using an Elastic Load Balancer.
    • C.By reducing interdependencies between application components wherever possible.
    • D.By automatically provisioning the required AWS resources based on changes in demand.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    By automatically provisioning the required AWS resources based on changes in demand.

    Explanation

    Elasticity involves the automatic provisioning and de-provisioning of resources based on real-time demand, ensuring you have enough capacity when needed and saving money when demand is low.

20. Question 20.A startup company is operating on limited funds and is extremely concerned about cost overruns. Which of the below options can be used to notify the company when their monthly AWS bill exceeds $2000? (Choose TWO)

    • A.Setup a CloudWatch billing alarm that triggers an SNS notification when the threshold is exceeded.(correct answer)
    • B.Configure the Amazon Simple Email Service to send billing alerts to their email address on a daily basis.
    • C.Configure the AWS Budgets Service to alert the company when the threshold is exceeded.(correct answer)
    • D.Configure AWS CloudTrail to automatically delete all AWS resources when the threshold is exceeded.
    • E.Configure the Amazon Connect Service to alert the company when the threshold is exceeded.
    Show answer & explanationHide answer

    Correct answer: A, C

    Setup a CloudWatch billing alarm that triggers an SNS notification when the threshold is exceeded. / Configure the AWS Budgets Service to alert the company when the threshold is exceeded.

    Explanation

    CloudWatch Billing Alarms and AWS Budgets are the primary tools for tracking spending and receiving notifications when thresholds are met or forecasted to be met.

21. Question 21.What does Amazon CloudFront use to distribute content to global users with low latency?

    • A.AWS Global Accelerator.
    • B.AWS Regions.
    • C.AWS Edge Locations.(correct answer)
    • D.AWS Availability Zones.
    Show answer & explanationHide answer

    Correct answer: C

    AWS Edge Locations.

    Explanation

    Amazon CloudFront uses a global network of Edge Locations to cache and deliver content closer to users, thereby reducing latency and improving performance.

22. Question 22.What does the 'Principle of Least Privilege' refer to?

    • A.You should grant your users only the permissions they need when they need them and nothing more.(correct answer)
    • B.AllIAM users should have at least the necessary permissions to access the core AWS services.
    • C.All trusted IAM users should have access to any AWS service in the respective AWS account.
    • D.IAM users should not be granted any permissions; to keep your account safe.
    Show answer & explanationHide answer

    Correct answer: A

    You should grant your users only the permissions they need when they need them and nothing more.

    Explanation

    The Principle of Least Privilege is a security best practice where users are granted only the minimum permissions required to perform their specific tasks, and nothing more.

23. Question 23.Which of the following does NOT belong to the AWS Cloud Computing models?

    • A.Platform as a Service (PaaS).
    • B.Infrastructure as a Service (IaaS).
    • C.Software as a Service (SaaS).
    • D.Networking as a Service (NaaS).(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    Networking as a Service (NaaS).

    Explanation

    The three common cloud computing service models are Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). 'Networking as a Service' is not a standard AWS cloud model.

24. Question 24.The identification process of an online financial services company requires that new users must complete an online interview with their security team. The completed recorded interviews are only required in the event of a legal issue or a regulatory compliance breach. What is the most cost-effective service to store the recorded videos?

    • A.S3 Intelligent-Tiering.
    • B.AWS Marketplace.
    • C.Amazon S3 Glacier Deep Archive.(correct answer)
    • D.Amazon EBS.
    Show answer & explanationHide answer

    Correct answer: C

    Amazon S3 Glacier Deep Archive.

    Explanation

    S3 Glacier Deep Archive is the lowest-cost storage class in AWS, specifically designed for data that is rarely accessed and can tolerate retrieval times of several hours, making it ideal for regulatory archives.

25. Question 25.Which service provides DNS in the AWS cloud?

    • A.Route 53.(correct answer)
    • B.AWS Config.
    • C.Amazon CloudFront.
    • D.Amazon EMR.
    Show answer & explanationHide answer

    Correct answer: A

    Route 53.

    Explanation

    Amazon Route 53 is a highly available and scalable Domain Name System (DNS) web service. It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet applications.

26. Question 26.Hundreds of thousands of DDoS attacks are recorded every month worldwide. What service does AWS provide to help protect AWS Customers from these attacks? (Choose TWO)

    • A.AWS Shield.(correct answer)
    • B.AWS Config.
    • C.Amazon Cognito.
    • D.AWS WAF.(correct answer)
    • E.AWS KMS.
    Show answer & explanationHide answer

    Correct answer: A, D

    AWS Shield. / AWS WAF.

    Explanation

    AWS Shield provides managed DDoS protection for applications running on AWS. AWS WAF is a web application firewall that helps protect web applications from common web exploits and DDoS attacks.

27. Question 27.A company is deploying a new two-tier web application in AWS. Where should the most frequently accessed data be stored so that the application's response time is optimal?

    • A.AWS OpsWorks.
    • B.AWS Storage Gateway.
    • C.Amazon EBS volume.
    • D.Amazon ElastiCache.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    Amazon ElastiCache.

    Explanation

    Amazon ElastiCache is an in-memory data store and cache that improves application performance by allowing you to retrieve data from fast, managed, in-memory caches instead of relying entirely on slower disk-based databases.

28. Question 28.You want to run a questionnaire application for only one day (without interruption), which Amazon EC2 purchase option should you use?

    • A.Reserved instances.
    • B.Spot instances.
    • C.Dedicated instances.
    • D.On-demand instances.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    On-demand instances.

    Explanation

    On-demand instances are ideal for short-term, irregular workloads that cannot be interrupted. You pay for computing capacity by the second or hour without any long-term commitments or upfront payments.

29. Question 29.You are working on a project that involves creating thumbnails of millions of images. Consistent uptime is not an issue, and continuous processing is not required. Which EC2 buying option would be the most cost-effective?

    • A.Reserved Instances.
    • B.On-demand Instances.
    • C.Dedicated Instances.
    • D.Spot Instances.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    Spot Instances.

    Explanation

    Spot Instances allow you to use spare AWS compute capacity at significant discounts compared to On-Demand prices. They are perfect for fault-tolerant, flexible background tasks like image processing.

30. Question 30.Which of the following can be described as a global content delivery network (CDN) service?

    • A.AWS VPN.
    • B.AWS Direct Connect.
    • C.AWS Regions.
    • D.Amazon CloudFront.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    Amazon CloudFront.

    Explanation

    Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency and high transfer speeds.

Frequently Asked Questions

Keep studying

Full exam

AWS Cloud Practitioner (CLF-C02) details

Free practice

AWS SAA-C03

Free practice

AWS DVA-C02

Free practice

AWS SOA-C03