Amazon AWS Certified Cloud Practitioner CLF-C02
Prev

There are 411 results

Next
#151 (Accuracy: 100% / 5 votes)
Which AWS service allows users to download security and compliance reports about the AWS infrastructure on demand?
  • A. Amazon GuardDuty
  • B. AWS Security Hub
  • C. AWS Artifact
  • D. AWS Shield
#152 (Accuracy: 100% / 8 votes)
A company uses Amazon S3 to store records that can contain personally identifiable information (PII). The company wants a solution that can monitor all S3 buckets for PII and immediately alert staff about vulnerabilities.

Which AWS service will meet these requirements?
  • A. Amazon GuardDuty
  • B. Amazon Detective
  • C. Amazon Macie
  • D. AWS Shield
#153 (Accuracy: 100% / 1 votes)
Which AWS service can a company use to manage encryption keys in the cloud?
  • A. AWS License Manager
  • B. AWS Certificate Manager (ACM)
  • C. AWS CloudHSM
  • D. AWS Directory Service
#154 (Accuracy: 100% / 1 votes)
What does "security of the cloud” refer to in the AWS shared responsibility model?
  • A. Availability of AWS services such as Amazon EC2
  • B. Security of the cloud infrastructure that runs all the AWS services
  • C. Implementation of password policies for IAM users
  • D. Security of customer environments by using AWS Network Firewall partners
#155 (Accuracy: 100% / 1 votes)
A company wants to build an application that uses AWS Lambda to run Python code.

Under the AWS shared responsibility model, which tasks will be the company’s responsibility? (Choose two.)
  • A. Management of the underlying infrastructure.
  • B. Management of the operating system.
  • C. Writing the business logic code.
  • D. Installation of the computer language runtime.
  • E. Providing AWS Identity and Access Management (IAM) access to the Lambda service.
#156 (Accuracy: 97% / 12 votes)
A user wants to review all Amazon S3 buckets with ACLs and S3 bucket policies in the S3 console.
Which AWS service or resource will meet this requirement?
  • A. S3 Multi-Region Access Points
  • B. S3 Storage Lens
  • C. AWS IAM Identity Center (AWS Single Sign-On)
  • D. Access Analyzer for S3
#157 (Accuracy: 100% / 5 votes)
Which of the following services can be used to block network traffic to an instance? (Choose two.)
  • A. Security groups
  • B. Amazon Virtual Private Cloud (Amazon VPC) flow logs
  • C. Network ACLs
  • D. Amazon CloudWatch
  • E. AWS CloudTrail
#158 (Accuracy: 100% / 6 votes)
Which AWS service gives users the ability to discover and protect sensitive data that is stored in Amazon S3 buckets?
  • A. Amazon Macie
  • B. Amazon Detective
  • C. Amazon GuardDuty
  • D. AWS IAM Access Analyzer
#159 (Accuracy: 100% / 7 votes)
A company has a test AWS environment. A company is planning on testing an application within AWS. The application testing can be interrupted and does not need to run continuously.
Which Amazon EC2 purchasing option will meet these requirements MOST cost-effectively?
  • A. On-Demand Instances
  • B. Dedicated Instances
  • C. Spot Instances
  • D. Reserved Instances
#160 (Accuracy: 100% / 6 votes)
A company is using Amazon DynamoDB.
Which task is the company’s responsibility, according to the AWS shared responsibility model?
  • A. Patch the operating system.
  • B. Provision hosts.
  • C. Manage database access permissions.
  • D. Secure the operating system.