The actual exam version for the AWS Certified Cloud Practitioner CLF-C02 Exam in 2024. I have just passed this exam and I want to share a very helpful website.
Source: AWS Certified Cloud Practitioner CLF-C02 Exam Part 5
Q241. Which of the following are benefits of using AWS Trusted Advisor? (Choose two.)
A. Providing high-performance container orchestration
B. Creating and rotating encryption keys
C. Detecting underutilized resources to save costs
D. Improving security by proactively monitoring the AWS environment
E. Implementing enforced tagging across AWS resources
Q242. A company wants to run a NoSQL database on Amazon EC2 instances. Which task is the responsibility of AWS in this scenario?
A. Update the guest operating system of the EC2 instances.
B. Maintain high availability at the database layer.
C. Patch the physical infrastructure that hosts the EC2 instances.
D. Configure the security group firewall.
Q243. Which AWS service or resource can provide discounts on some AWS service costs in exchange for a spending commitment?
A. Amazon Detective
B. AWS Pricing Calculator
C. Savings Plans
D. Basic Support
Q244. Which AWS service could an administrator use to provide desktop environments for several employees?
A. AWS Organizations
B. AWS Fargate
C. AWS WAF
D. AWS WorkSpaces
Q245. According to security best practices, how should an Amazon EC2 instance be given access to an Amazon S3 bucket?
A. Hard code an IAM user’s secret key and access key directly in the application, and upload the file.
B. Store the IAM user’s secret key and access key in a text file on the EC2 instance, read the keys, then upload the file.
C. Have the EC2 instance assume a role to obtain the privileges to upload the file.
D. Modify the S3 bucket policy so that any service can upload to it at any time.
Q246. A company has a centralized group of users with large file storage requirements that have exceeded the space available on premises. The company wants to extend its file storage capabilities for this group while retaining the performance benefit of sharing content locally. What is the MOST operationally efficient AWS solution for this scenario?
A. Create an Amazon S3 bucket for each user. Mount each bucket by using an S3 file system mounting utility.
B. Configure and deploy an AWS Storage Gateway file gateway. Connect each user’s workstation to the file gateway.
C. Move each user’s working environment to Amazon WorkSpaces. Set up an Amazon WorkDocs account for each user.
D. Deploy an Amazon EC2 instance and attach an Amazon Elastic Block Store (Amazon EBS) Provisioned IOPS volume. Share the EBS volume directly with the users.
Q247. Which benefit of cloud computing gives a company the ability to deploy applications to users all over the world through a network of AWS Regions, Availability Zones, and edge locations?
A. Economy of scale
B. Global reach
C. Agility
D. High availability
Q248. What does the Amazon S3 Intelligent-Tiering storage class offer?
A. Payment flexibility by reserving storage capacity
B. Long-term retention of data by copying the data to an encrypted Amazon Elastic Block Store (Amazon EBS) volume
C. Automatic cost savings by moving objects between tiers based on access pattern changes
D. Secure, durable, and lowest cost storage for data archival
Q249. A company wants to track tags, buckets, and prefixes for its Amazon S3 objects. Which S3 feature will meet this requirement?
A. S3 Inventory report
B. S3 Lifecycle
C. S3 Versioning
D. S3 ACLs
Q250. A company needs to deploy applications in the AWS Cloud as quickly as possible. The company also needs to minimize the complexity that is related to the management of AWS resources. Which AWS service should the company use to meet these requirements?
A. AWS Config
B. AWS Elastic Beanstalk
C. Amazon EC2
D. Amazon Personalize
Q251. Which AWS services make use of global edge locations? (Choose two.)
A. AWS Fargate
B. Amazon CloudFront
C. AWS Global Accelerator
D. AWS Wavelength
E. Amazon VPC
Q252. Which AWS feature provides a no-cost platform for AWS users to join community groups, ask questions, find answers, and read community-generated articles about best practices?
A. AWS Knowledge Center
B. AWS re:Post
C. AWS IQ
D. AWS Enterprise Support
Q253. An ecommerce company wants to use Amazon EC2 Auto Scaling to add and remove EC2 instances based on CPU utilization. Which AWS service or feature can initiate an Amazon EC2 Auto Scaling action to achieve this goal?
A. Amazon Simple Queue Service (Amazon SQS)
B. Amazon Simple Notification Service (Amazon SNS)
C. AWS Systems Manager
D. Amazon CloudWatch alarm
Q254. A development team wants to deploy multiple test environments for an application in a fast, repeatable manner. Which AWS service should the team use?
A. Amazon EC2
B. AWS CloudFormation
C. Amazon QuickSight
D. Amazon Elastic Container Service (Amazon ECS)
Q255. What is a benefit of using AWS serverless computing?
A. Application deployment and management are not required.
B. Application security will be fully managed by AWS.
C. Monitoring and logging are not needed.
D. Management of infrastructure is offloaded to AWS.
Q256. Which of the following is an AWS Well-Architected Framework design principle for operational excellence in the AWS Cloud?
A. Go global in minutes.
B. Make frequent, small, reversible changes.
C. Implement a strong foundation of identity and access management
D. Stop spending money on hardware infrastructure for data center operations.
Q257. Which design principles support the reliability pillar of the AWS Well-Architected Framework? (Choose two.)
A. Perform operations as code.
B. Enable traceability.
C. Automatically scale to meet demand.
D. Deploy resources globally to improve response time.
E. Automatically recover from failure.
Q258. Which AWS services or features provide high availability and low latency by enabling failover across different AWS Regions? (Choose two.)
A. Amazon Route 53
B. Network Load Balancer
C. Amazon S3 Transfer Acceleration
D. AWS Global Accelerator
E. Application Load Balancer
Q259. A company wants durable storage for static content and infinitely scalable data storage infrastructure at the lowest cost. Which AWS service should the company choose?
A. Amazon Elastic Block Store (Amazon EBS)
B. Amazon S3
C. AWS Storage Gateway
D. Amazon Elastic File System (Amazon EFS)
Q260. A company wants to save costs by archiving data that is no longer frequently accessed by end users. Which Amazon S3 feature will meet this requirement?
A. S3 Versioning
B. S3 Lifecycle
C. S3 Object Lock
D. S3 Inventory
Q261. Which AWS services or features enable users to connect on-premises networks to a VPC? (Choose two.)
A. AWS VPN
B. Elastic Load Balancing
C. AWS Direct Connect
D. VPC peering
E. Amazon CloudFront
Q262. Which abilities are benefits of the AWS Cloud? (Choose two.)
A. Trade variable expenses for capital expenses.
B. Deploy globally in minutes.
C. Plan capacity in advance of deployments.
D. Take advantage of economies of scale.
E. Reduce dependencies on network connectivity.
Q263. A company wants a time-series database service that makes it easier to store and analyze trillions of events each day. Which AWS service will meet this requirement?
A. Amazon Neptune
B. Amazon Timestream
C. Amazon Forecast
D. Amazon DocumentDB (with MongoDB compatibility)
Q264. A company that has AWS Enterprise Support is launching a new version of a popular product in 2 months. The company expects a large increase in traffic to its website. The website is hosted on Amazon EC2 instances. Which action should the company take to assess its readiness to scale for this launch?
A. Replace the EC2 instances with AWS Lambda functions.
B. Use AWS Infrastructure Event Management (IEM) support.
C. Submit a request on AWS Marketplace to monitor the event.
D. Review the coverage reports in the AWS Cost Management console.
Q265. A company is using Amazon DynamoDB for its application database. Which tasks are the responsibility of AWS, according to the AWS shared responsibility model? (Choose two.)
A. Classify data.
B. Configure access permissions.
C. Manage encryption options.
D. Provide public endpoints to store and retrieve data.
E. Manage the infrastructure layer and the operating system.
Q266. Who enables encryption of data at rest for Amazon Elastic Block Store (Amazon EBS)?
A. AWS Support
B. AWS customers
C. AWS Key Management Service (AWS KMS)
D. AWS Trusted Advisor
Q267. Which AWS service uses AWS Compute Optimizer to provide sizing recommendations based on workload metrics?
A. Amazon EC2
B. Amazon RDS
C. Amazon Lightsail
D. AWS Step Functions
Q268. A company is migrating to the AWS Cloud and plans to run experimental workloads for 3 to 6 months on AWS. Which pricing model will meet these requirements?
A. Use Savings Plans for a 3-year term.
B. Use Dedicated Hosts.
C. Buy Reserved Instances.
D. Use On-Demand Instances.
Q269. What can a user accomplish using AWS CloudTrail?
A. Generate an IAM user credentials report.
B. Record API calls made to AWS services.
C. Assess the compliance of AWS resource configurations with policies and guidelines.
D. Ensure that Amazon EC2 instances are patched with the latest security updates.
Q270. Which of the following are benefits of AWS Trusted Advisor? (Choose two.)
A. Access to Amazon Simple Queue Service (Amazon SQS)
B. Cost optimization recommendations
C. Hourly refresh of the service limit checks
D. Security checks
E. AWS Identity and Access Management (IAM) approval management
Q271. A company wants to store data in Amazon S3. The company rarely access the data, and the data can be regenerated if necessary. The company wants to store the data in the most cost-effective storage class. Which S3 storage class will meet this requirement?
A. S3 Standard
B. S3 Intelligent-Tiering
C. S3 Standard-Infrequent Access (S3 Standard-IA)
D. S3 One Zone-Infrequent Access (S3 One Zone-IA)
Q272. A company has an Amazon EC2 instance in a private subnet. The company wants to initiate a connection to the internet to pull operating system updates while preventing traffic from the internet from accessing the EC2 instance. Which AWS managed service allows this?
A. VPC endpoint
B. NAT gateway
C. Amazon PrivateLink
D. VPC peering
Q273. A developer wants AWS users to access AWS services by using temporary security credentials. Which AWS service or feature should the developer use to provide these credentials?
A. IAM policies
B. IAM user groups
C. AWS Security Token Service (AWS STS)
D. AWS IAM Identity Center (AWS Single Sign-On)
Q274. A company has a managed IAM policy that does not grant the necessary permissions for users to accomplish required tasks. How can this be resolved?
A. Enable AWS Shield Advanced.
B. Create a custom IAM policy.
C. Use a third-party web application firewall (WAF) managed rule from the AWS Marketplace.
D. Use AWS Key Management Service (AWS KMS) to create a customer-managed key.
Q275. A company needs to run a pre-installed third-party firewall on an Amazon EC2 instance. Which AWS service or feature can provide this solution?
A. Network ACLs
B. Security groups
C. AWS Marketplace
D. AWS Trusted Advisor
Q276. A company is in the early stages of planning a migration to AWS. The company wants to obtain the monthly predicted total AWS cost of ownership for future Amazon EC2 instances and associated storage. Which AWS service or tool should the company use to meet these requirements?
A. AWS Pricing Calculator
B. AWS Compute Optimizer
C. AWS Trusted Advisor
D. AWS Application Migration Service
Q277. Which AWS service uses a combination of publishers and subscribers?
A. AWS Lambda
B. Amazon Simple Notification Service (Amazon SNS)
C. Amazon CloudWatch
D. AWS CloudFormation
Q278. Which AWS service will help a company plan a migration to AWS by collecting the configuration, usage, and behavior data of on-premises data centers?
A. AWS Resource Groups
B. AWS Application Discovery Service
C. AWS Service Catalog
D. AWS Systems Manager
Q279. Which AWS service makes it easier to monitor and troubleshoot application logs and cloud resources?
A. Amazon EC2
B. AWS Identity and Access Management (IAM)
C. Amazon CloudWatch
D. AWS CloudTrail
Q280. Which architecture design principle describes the need to isolate failures between dependent components in the AWS Cloud?
A. Use a monolithic design.
B. Design for automation.
C. Design for single points of failure.
D. Loosely couple components.
Q281. Which AWS service is a relational database compatible with MySQL and PostgreSQL?
A. Amazon Redshift
B. Amazon DynamoDB
C. Amazon Aurora
D. Amazon Neptune
Q282. Which Amazon S3 feature or storage class uses the AWS backbone network and edge locations to reduce latencies from the end user to Amazon S3?
A. S3 Cross-Region Replication
B. S3 Transfer Acceleration
C. S3 Event Notifications
D. S3 Standard-Infrequent Access (S3 Standard-IA)
Q283. Which AWS service provides on-premises applications with low-latency access to data that is stored in the AWS Cloud?
A. Amazon CloudFront
B. AWS Storage Gateway
C. AWS Backup
D. AWS DataSync
Q284. A solutions architect needs to maintain a fleet of Amazon EC2 instances so that any impaired instances are replaced with new ones. Which AWS service should the solutions architect use?
A. Amazon Elastic Container Service (Amazon ECS)
B. Amazon GuardDuty
C. AWS Shield
D. AWS Auto Scaling
Q285. When a user wants to utilize their existing per-socket, per-core, or per-virtual machine software licenses for a Microsoft Windows server running on AWS, which Amazon EC2 instance type is required?
A. Spot Instances
B. Dedicated Instances
C. Dedicated Hosts
D. Reserved Instances
Q286. Which of the following AWS services are serverless? (Choose two.)
A. AWS Outposts
B. Amazon EC2
C. Amazon Elastic Kubernetes Service (Amazon EKS)
D. AWS Fargate
E. AWS Lambda
Q287. A company needs to connect its on-premises data center to the AWS Cloud. The company needs a dedicated, low-latency connection with consistent network performance. Which AWS service will meet these requirements?
A. AWS Global Accelerator
B. Amazon CloudFront
C. AWS Direct Connect
D. AWS Managed VPN
Q288. Which of the following are pillars of the AWS Well-Architected Framework? (Choose two.)
A. Resource scalability
B. Performance efficiency
C. System elasticity
D. Agile development
E. Operational excellence
Q289. Which guideline is a well-architected design principle for building cloud applications?
A. Keep static data closer to compute resources.
B. Provision resources for peak capacity.
C. Design for automated recovery from failure.
D. Use tightly coupled components.
Q290. Which AWS service can companies use to create infrastructure from code?
A. Amazon Elastic Kubernetes Service (Amazon EKS)
B. AWS Outposts
C. AWS CodePipeline
D. AWS CloudFormation
Q291. A company is planning to migrate to the AWS Cloud. The company wants to identify measurable business outcomes that will explain the value of the company’s decision to migrate. Which phase of the cloud transformation journey includes these activities?
A. Envision
B. Align
C. Scale
D. Launch
Q292. A company needs Amazon EC2 instances for a workload that can tolerate interruptions. Which EC2 instance purchasing option meets this requirement with the LARGEST discount compared to On-Demand prices?
A. Spot Instances
B. Convertible Reserved Instances
C. Standard Reserved Instances
D. Dedicated Hosts
Q293. Which task requires a user to sign in as the AWS account root user?
A. The deletion of IAM users
B. The deletion of an AWS account
C. The creation of an organization in AWS Organizations
D. The deletion of Amazon EC2 instances
Q294. Which architecture concept describes the ability to deploy resources on demand and release resources when they are no longer needed?
A. High availability
B. Decoupled architecture
C. Resilience
D. Elasticity
Q295. A company wants to generate a list of IAM users. The company also wants to view the status of various credentials that are associated with the users, such as password, access keys, and multi-factor authentication (MFA) devices. Which AWS service or feature will meet these requirements?
A. IAM credential report
B. AWS IAM Identity Center (AWS Single Sign-On)
C. AWS Identity and Access Management Access Analyzer
D. AWS Cost and Usage Report
Q296. A library wants to automate the classification of electronic books based on the contents of the books. Which AWS service should the library use to meet this requirement?
A. Amazon Redshift
B. Amazon CloudSearch
C. Amazon Comprehend
D. Amazon Aurora
Q297. A company operates a petabyte-scale data warehouse to analyze its data. The company wants a solution that will not require manual hardware and software management. Which AWS service will meet these requirements?
A. Amazon DocumentDB (with MongoDB compatibility)
B. Amazon Redshift
C. Amazon Neptune
D. Amazon ElastiCache
Q298. Which AWS service or tool can provide rightsizing recommendations for Amazon EC2 resources at no additional cost?
A. AWS Well-Architected Tool
B. Amazon CloudWatch
C. AWS Cost Explorer
D. Amazon S3 analytics
Q299. Which AWS services are supported by Savings Plans? (Choose two.)
A. Amazon EC2
B. Amazon RDS
C. Amazon SageMaker
D. Amazon Redshift
E. Amazon DynamoDB
Q300. Which mechanism allows developers to access AWS services from application code?
A. AWS Software Development Kit
B. AWS Management Console
C. AWS CodePipeline
D. AWS Config