Amazon Exam, CLF-C01 Exam Dumps, CLF-C01 Exam Questions, CLF-C01 PDF Dumps, CLF-C01 VCE Dumps

[March-2021]New Braindump2go CLF-C01 PDF Dumps and CLF-C01 VCE Dumps[Q763-Q787]

March/2021 Latest Braindump2go CLF-C01 Exam Dumps with PDF and VCE Free Updated Today! Following are some new CLF-C01 Real Exam Questions!

Which design principles of the AWS Well-Architected Framework help increase reliability? (Select TWO.)

A. Automatically recover from failure
B. Enable traceability.
C. Scale horizontally to increase workload availability.
D. Automate security best practices
E. Keep people away from data

Answer: AE

AWS services offer gateway VPC endpoints that can be used to avoid sending traffic over the internet? (Select TWO )

A. Amazon Simple Notification Service (Amazon SNS)
B. Amazon Simple Queue Service (Amazon SQS)
C. AWS CodeBuild
D. Amazon S3
E. Amazon DynamoDB

Answer: DE

Which AWS Cloud deployment model uses AWS Outposts as part of the application deployment infrastructure?

A. On-premises
B. Serverless
C. Cloud-native
D. Hybrid

Answer: D

Which are benefits of using Amazon RDS over Amazon EC2 when running relational databases on AWS? (Select TWO )

A. Automated backups
B. Schema management
C. Indexing of tables
D. Software patching
E. Extract, transform, and load (ETL) management

Answer: AD

A company wants to allow full access to an Amazon S3 bucket for a particular user.
Which element in the S3 bucket policy holds the user details that describe who needs access to the S3 bucket?

A. Principal
B. Action
C. Resource
D. Statement

Answer: A

Which AWS service should a company use to provision, manage, and deploy SSL/TLS certificates?

A. AWS Secrets Manager
B. Amazon Inspector
C. AWS CodeDeploy
D. AWS Certificate Manager (ACM)

Answer: D

A company wants to enhance security by launching a third-party ISP intrusion detection system from its AWS account.
Which AWS service or resource should the company use to meet this requirement?

A. AWS Security Hub
B. AWS Marketplace
C. AWS Quick Starts
D. AWS Security Center

Answer: D

Which of the following are benefits of using the AWS Cloud? (Select TWO )

A. 100% fault tolerance
B. Total control over underlying infrastructure
C. Fast provisioning of IT resources
D. Outsourcing all application coding to AWS
E. Ability to go global quickly

Answer: AB

Which AWS service requires the customer to patch the guest operating system?

A. AWS Lambda
B. Amazon Elasticsearch Service (Amazon ES)
C. Amazon EC2
D. Amazon ElastiCache

Answer: C

Which actions allow a company’s security team to improve the security procedures for employees accessing AWS resources? (Select TWO )

A. Create IAM users for groups of employees to share
B. Create IAM policies based on least privilege principles
C. Create IAM users in different Availability Zones
D. Enable multi-factor authentication for privileged users
E. Specify an individual IAM user for each Amazon EC2 instance

Answer: BD

A company is deploying a machine learning (ML) research project that will require a lot of compute power over several months.
The ML processing jobs do not need to run at specific times.
Which Amazon EC2 instance purchasing option will meet these requirements at the lowest cost?

A. On-Demand Instances
B. Spot Instances
C. Reserved Instances
D. Dedicated Instances

Answer: A

What does the AWS Cloud provide to increase the speed and agility of execution for customers? (Select TWO.)

A. Readily available resources with low provisioning times
B. Scalable compute capacity
C. Free Tier services usage
D. Access to AWS data centers
E. Lower resource provisioning cost

Answer: AB

A batch workload takes 5 hours to finish on an Amazon EC2 instance. The amount of data to be processed doubles monthly and the processing time is proportional.
What is the best cloud architecture to address this consistently growing demand?

A. Run the application on a bigger EC2 instance size.
B. Switch to an EC2 instance family that better matches batch requirements
C. Distribute the application across multiple EC2 instances and run the workload in parallel.
D. Run the application on a bare metal EC2 instance.

Answer: C

How can users protect against distributed denial of service (DDoS) attacks in the AWS Cloud?

A. Use Amazon CloudWatch monitoring.
B. Configure a firewall.
C. Use Amazon Redshift
D. Monitor AWS CloudTrail logging

Answer: B

Which AWS service or feature gives end users the ability to access AWS resources from any location by using an encrypted connection?

A. Amazon CloudFront
B. AWS Client VPN
C. AWS Direct Connect
D. AWS PrivateLink

Answer: A

Which AWS service provides recommendations for rightsizing AWS resources such as Amazon EC2 instances, Amazon Elastic Block Store (Amazon EBS) volumes and Amazon RDS databases to help users reduce costs?

A. Amazon Inspector
B. AWS Trusted Advisor
C. AWS Service Health Dashboard
D. Amazon Forecast

Answer: C

A company has an AWS environment that consists of a VPC. multiple subnets, and many Amazon EC2 instances in the subnets.
An engineer wants to restrict inbound traffic to one particular EC2 instance without affecting the other EC2 instances.
Which AWS service or feature should the engineer use to meet this requirement?

A. Network ACLs
B. Security groups
C. Amazon GuardDuty
D. AWS Shield

Answer: A

Which tasks require the use of the AWS account root user? (Select TWO )

A. Launching a new Amazon EC2 instance
B. Viewing AWS CloudTrail logs
C. Contacting AWS Support
D. Changing AWS Support plans
E. Changing billing currency

Answer: BE

Which AWS service enables users to identify the changes made to a resource over time?

A. AWS CloudFormation
B. AWSConfig
C. AWS Service Catalog
D. AWS Identity and Access Management (IAM)

Answer: A

A company has a MySQL database running on a single Amazon EC2 instance.
The company now requires higher availability in the event of an outage.
Which set of tasks would meet this requirement?

A. Add an Application Load Balancer in front of the EC2 instance
B. Configure EC2 Auto Recovery to move the instance to another Availability Zone.
C. Migrate to Amazon RDS and enable Multi-AZ.
D. Enable termination protection for the EC2 instance to avoid outages.

Answer: C

Which of the following are security best practices for using AWS Identity and Access Management (IAM)? (Select TWO)

A. Use AWS account root user credentials for IAM tasks
B. Rotate credentials regularly
C. Do not remove credentials, even if they are never used
D. Enable multi-factor authentication (MFA)
E. Use inline policies instead of customer managed policies

Answer: AB

A user is building an application on AWS that requires a backend database.
The application requires access to the operating system of the instance where the database is installed in order to run scripts.
Where should the database be hosted if the user’s goal is to create minimum management overhead?

A. On Amazon RDS
B. On Amazon EC2
C. On Amazon DynamoDB
D. On Amazon S3

Answer: B

Which feature of AWS Auto Scaling will forecast future traffic to schedule changes in the number of Amazon EC2 instances at the appropriate times?

A. Scheduled scaling
B. Predictive scaling
C. Target tracking scaling
D. Step scaling

Answer: A

A company wants to build an application for a new line of business.
According to the AWS Well-Architected Framework, what design principles should be implemented? (Select TWO.)

A. Consolidate multiple AWS accounts into a single account
B. Buy and host hardware in the AWS Cloud.
C. Decouple the AWS Cloud architecture to break up monolithic deployments.
D. Move on-premises network hardware to VPCs.
E. Design elasticity into the AWS Cloud design

Answer: CE

Which AWS Trusted Advisor check includes the verification of AWS CloudTrail logging?

A. Performance
B. Fault tolerance
C. Security
D. Service limits

Answer: A

Resources From:

1.2021 Latest Braindump2go CLF-C01 Exam Dumps (PDF & VCE) Free Share:

2.2021 Latest Braindump2go CLF-C01 PDF and CLF-C01 VCE Dumps Free Share:

3.2021 Free Braindump2go CLF-C01 Exam Questions Download:

Free Resources from Braindump2go,We Devoted to Helping You 100% Pass All Exams!