AWS Certified Cloud Practitioner Part 7

AWS Cloud Practitioner

AWS Certified Cloud Practitioner Part 7

This part include 100% actual AWS Certified Cloud Practitioner (CLF-C01) Exam Questions Part 7 version 2021. It’s free for all and we highly recommend you should use this for your exam preparation.

For PDF Format:
Part 1: https://www.awslagi.com/aws-certified-cloud-practitioner/
Part 2: https://www.awslagi.com/aws-certified-cloud-practitioner-p2/
Part 3: https://www.awslagi.com/aws-certified-cloud-practitioner-p3/
Part 4: https://www.awslagi.com/aws-certified-cloud-practitioner-p4/
Part 5: https://www.awslagi.com/aws-certified-cloud-practitioner-p5/
Part 6: https://www.awslagi.com/aws-certified-cloud-practitioner-p6/
Part 7: https://www.awslagi.com/aws-certified-cloud-practitioner-p7/

1. When comparing AWS Cloud with on-premises Total Cost of Ownership, which expenses must be considered? (Choose two.)

A. Physical storage hardware
B. Operating system administration
C. Network infrastructure of data center
D. Project management
E. Database schema development

Answer: A Choose

2. A company uses Amazon EC2 infrastructure to host steady-state workloads and needs to achieve significant cost savings. Which EC2 instance pricing model should the company select?

A. Reserved Instances
B. On-Demand Instances
C. Spot Instances
D. Dedicated Hosts

Answer: A

3. Which guideline is a well-architected design principle for building cloud applications?

A. Keep static data closer to compute resources.
B. Provision resources for peak capacity.
C. Design for automated recovery from failure.
D. Use tightly coupled components.

Answer: C

4. A security officer wants a list of any potential vulnerabilities in Amazon EC2 security groups. Which AWS service should the officer use?

A. Amazon GuardDuty
B. AWS Trusted Advisor
C. AWS CloudTrail
D. AWS Artifact

Answer: B

5. A company has multiple departments. Each department uses its own AWS account. Which AWS service or tool can the company use to combine the billing for all accounts into one bill?

A. Amazon Forecast
B. AWS Budgets
C. AWS Organizations
D. AWS Marketplace

Answer: C

6. A cloud practitioner needs to obtain AWS compliance reports before migrating an environment to the AWS Cloud. How can these reports be generated?

A. Contact the AWS Compliance team
B. Download the reports from AWS Artifact
C. Open a case with AWS Support
D. Generate the reports with Amazon Macie

Answer: B

7. A large company has a workload that requires hardware to remain on premises. The company wants to use the same management and control plane services that it currently uses on AWS. Which AWS service should the company use to meet these requirements?

A. AWS Device Farm
B. AWS Fargate
C. AWS Outposts
D. AWS Ground Station

Answer: C

8. Which tasks require using AWS account root user credentials? (Choose two.)

A. Creating an Amazon EC2 key pair
B. Removing an IAM user from the administrators group
C. Changing the AWS Support plan
D. Creating an Amazon CloudFront key pair
E. Granting an IAM user full administrative access

Answer: C E

9. Which of the following are advantages of using Amazon EC2 instances over traditional on-premises servers? (Choose two.)

A. Pay-as-you-go pricing
B. Automation
C. Self-maintenance of servers
D. Agility
E. Access to physical hosts

Answer: A D

10. To avoid malicious compute activities, a user needs a quick way to determine if any Amazon EC2 instances have ports that allow unrestricted access. Which AWS service will support this requirement?

A. VPC Flow Logs
B. AWS WAF
C. AWS CloudTrail
D. AWS Trusted Advisor

Answer: D

11. What are the market advantages of running workloads in the AWS Cloud? (Choose two.)

A. Less staff time is required to deploy new workloads.
B. Increased time to market for new application features.
C. Higher acquisition costs to support peak workloads.
D. Increased productivity for application development teams.
E. A decrease in the average server CPU utilization.

Answer: A D

12. Which Amazon S3 storage class allows users to store data backups for long periods of time at the LOWEST cost?

A. S3 Standard-Infrequent Access (S3 Standard-IA)
B. S3 Standard
C. S3 Glacier
D. S3 One Zone-Infrequent Access (S3 One Zone-IA)

Answer: D

13. Which of the following technologies provides a secure network connection from on-premises to AWS?

A. Virtual Private Network
B. AWS Snowball
C. Amazon Virtual Private Cloud (Amazon VPC)
D. AWS Mobile Hub

Answer: A

14. When using Amazon RDS, what is the customer responsible for?

A. Patching and maintenance of the underlying operating system.
B. Managing automatic backups of the database.
C. Controlling network access through security groups.
D. Replacing failed instances in the event of a hardware failure.

Answer: C

15. Which controls are shared under the AWS shared responsibility model? (Choose two.)

A. Awareness and training
B. Patching of Amazon RDS
C. Configuration management
D. Physical and environmental controls
E. Service and communications protection or security

Answer: A C

16. A company has decided to migrate its production workloads to the AWS Cloud. Which actions can help reduce operational costs as part of the migration? (Choose two.)

A. Reduce overprovisioned instances.
B. Rehost all third-party licenses on AWS.
C. Implement a highly available architecture.
D. Use managed services.
E. Improve application security.

Answer: A D

17. Which design principles are enabled by the AWS Cloud to improve the operation of workloads? (Choose two.)

A. Minimize upfront design
B. Loose coupling
C. Disposable resources
D. Server design and concurrency
E. Minimal viable product

Answer: B D

18. To optimize costs and resource usage, a company needs to monitor the operational health of its entire system of AWS Cloud resources. Which AWS service will meet these requirements?

A. AWS Organizations
B. Amazon CloudWatch
C. AWS CloudTrail
D. AWS Config

Answer: B

19. If a user has an AWS account with an Enterprise-level AWS Support plan, who is the primary point of contact for billing or account inquiries?

A. Solutions architect
B. AWS Concierge Support team
C. An AWS Marketplace seller
D. AWS Partner Network (APN) partner

Answer: B

20. Which AWS service will track user activity on AWS?

A. Amazon GuardDuty
B. AWS Trusted Advisor
C. AWS CloudTrail
D. Amazon CloudWatch

Answer: C

21. A cloud practitioner needs an effective method to decrease application latency and increase performance for end users. Which services will help? (Choose two.)

A. Amazon Elastic Container Service (Amazon ECS) for Kubernetes
B. Amazon S3
C. Amazon AppStrearn 2.0
D. Amazon ElastiCache
E. Amazon CloudFront

Answer: D E

22. A company is building a business intelligence solution and wants to use dashboards for reporting purposes. Which AWS service can be used?

A. Amazon Redshift
B. Amazon Elasticsearch Service (Amazon ES)
C. Amazon QuickSight
D. Amazon Athena

Answer: C

23. A company needs to transfer a large volume of data from an on-premises data center to the AWS Cloud. The companyג€™s internet connectivity is slow and unreliable. Which AWS service can facilitate this data transfer?

A. Amazon S3 Glacier
B. AWS Snowball
C. AWS Storage Gateway
D. Amazon Elastic File System (Amazon EFS)

Answer: B

24. Which pricing model will interrupt a running Amazon EC2 instance if capacity becomes temporarily unavailable?

A. On-Demand Instances
B. Standard Reserved Instances
C. Spot Instances
D. Convertible Reserved Instances

Answer: C

25. Which security-related task is the responsibility of the customer in the AWS Cloud?

A. Securing infrastructure at data centers
B. Maintaining firewall configurations at a hardware level
C. Maintaining networking among hardware components
D. Maintaining server-side encryption

Answer: D

26. Which AWS service acts as a data extract, transform, and load (ETL) tool to make it easy to prepare data for analytics?

A. Amazon QuickSight
B. Amazon Athena
C. AWS Glue
D. AWS Elastic Beanstalk

Answer: C

27. A company recently migrated to AWS and wants to enable intelligent threat protection and continuous monitoring across all of its AWS accounts. Which AWS service should the company use to achieve this goal?

A. Amazon Macie
B. Amazon GuardDuty
C. AWS Shield
D. Amazon Detective

Answer: B

28. A user can optimize Amazon EC2 costs by performing which of the following tasks? (Choose two.)

A. Implementing Auto Scaling groups to add and remove instances based on demand.
B. Creating a policy to restrict IAM users from creating new instances.
C. Setting a budget to limit spending on EC2 instances using AWS Budgets.
D. Purchasing Reserved Instances.
E. Adding EC2 instances to a second AWS Region that is geographically close to the end users.

Answer: A D

29. Which AWS services or features help decrease network latency for a globally dispersed user base? (Choose two.)

A. Amazon VPC
B. Elastic Load Balancer
C. Amazon CloudFront
D. AWS Direct Connect
E. AWS Global Accelerator

Answer: C E

30. AWS Trusted Advisor can monitor and provide advice on what characteristics of an AWS account? (Choose two.)

A. Compliance with security best practices
B. Application performance
C. Network utilization
D. Cost optimization
E. Compliance status

Answer: A D

31. Which AWS service would identify if unrestricted access to a resource has been allowed by a security group?

A. AWS Trusted Advisor
B. Amazon CloudWatch
C. VPC Flow Logs
D. AWS CloudTrail

Answer: A

32. Which AWS service or component allows inbound traffic from the internet to access a VPC?

A. Internet gateway
B. NAT gateway
C. AWS WAF
D. VPC peering

Answer: A

33. Which architecture concept describes the ability to deploy resources on demand and release resources when they are no longer needed?

A. High availability
B. Decoupled architecture
C. Resilience
D. Elasticity

Answer: D

34. According to the AWS shared responsibility model, which task is the customer’s responsibility?

A. Maintaining the infrastructure needed to run AWS Lambda
B. Updating the operating system of Amazon DynamoDB instances
C. Maintaining Amazon S3 infrastructure
D. Updating the guest operating system on Amazon EC2 instances

Answer: D

35. A company must process a large amount of data from social media accounts by making graphical queries with high throughput. Which AWS service will help the company design a cloud architecture that will meet these requirements?

A. Amazon RDS
B. Amazon DynamoDB
C. Amazon Neptune
D. Amazon Redshift

Answer: C

36. Which databases are available on Amazon RDS? (Choose two.)

A. Sybase
B. Microsoft SQL Server
C. IBM Db2
D. MongoDB
E. PostgreSQL

Answer: B E

37. Under the AWS shared responsibility model, what is the customer’s responsibility when using an AWS managed service?

A. Physical security of the data centers
B. Server-side encryption
C. Customer data
D. Operating system patching

Answer: C

38. Which service is an AWS-managed Hadoop framework that makes it easy, fast, and cost-effective to process large amounts of data across dynamically scalable Amazon EC2 instances?

A. Amazon EMR
B. Amazon EC2
C. AWS Elastic Beanstalk
D. Amazon Redshift

Answer: A

39. A company with AWS Enterprise Support needs help understanding its monthly AWS bill and wants to implement billing best practices. Which AWS tool or resource is available to accomplish these goals?

A. Resource tagging
B. AWS Concierge Support team
C. AWS Abuse team
D. AWS Support

Answer: B

40. A company spends several months upgrading its on-premises infrastructure every few years. The company wants to reduce infrastructure procurement time by migrating to the AWS Cloud. What is the main benefit of migrating to the AWS Cloud for this use case?

A. AWS will help move the existing hardware to the AWS data centers.
B. The company will have increased agility with on-demand access to IT resources.
C. Enterprise support will be available to help with recurring application installation and setup.
D. The company will experience less downtime with Multi-AZ deployments.

Answer: B

41. According to the AWS shared responsibility model, when using Amazon RDS, who is responsible for scheduling and performing backups?

A. AWS is responsible for both tasks.
B. The customer is responsible for scheduling and AWS is responsible for performing backups.
C. The customer is responsible for both tasks.
D. AWS is responsible for scheduling and the user is responsible for performing backups.

Answer: B

42. Which of the following can be used to identify a specific user who stopped an Amazon EC2 instance?

A. AWS CloudTrail
B. Amazon Inspector
C. Amazon CloudWatch
D. VPC Flow Logs

Answer: A

43. A company has a managed IAM policy that does not grant the necessary permissions for users to accomplish required tasks. How can this be resolved?

A. Enable AWS Shield Advanced
B. Create a custom IAM policy
C. Use a third-party web application firewall (WAF) managed rule from the AWS Marketplace
D. Use AWS Key Management Service (AWS KMS) to create a customer-managed key

Answer: B

44. Which cloud computing advantage is a company applying when it uses AWS Regions to increase application availability to users in different countries?

A. Pay-as-you-go pricing
B. Capacity forecasting
C. Economies of scale
D. Global reach

Answer: D

45. A user has an AWS account with a Business-level AWS Support plan and needs assistance with handling a production service disruption. Which action should the user take?

A. Contact the dedicated AWS technical account manager (TAM).
B. Contact the dedicated AWS Concierge Support team.
C. Open a business-critical system down support case.
D. Open a production system down support case.

Answer: D

46. A company is looking for a way to encrypt data stored on Amazon S3. Which AWS managed service can be used to help to accomplish this?

A. AWS Certificate Manager (ACM)
B. AWS Secrets Manager
C. AWS Resource Access Manager
D. AWS Key Management Service (AWS KMS)

Answer: D

47. When a user wants to utilize their existing per-socket, per-core, or per-virtual machine software licenses for a Microsoft Windows server running on AWS, which Amazon EC2 instance type is required?

A. Spot Instances
B. Dedicated Instances
C. Dedicated Hosts
D. Reserved Instances

Answer: C

48. How can consolidated billing within AWS Organizations help lower overall monthly expenses?

A. By providing a consolidated view of monthly billing across multiple accounts
B. By pooling usage across multiple accounts to achieve a pricing tier discount
C. By automating the creation of new accounts through APIs
D. By leveraging service control policies (SCPs) for centralized service management

Answer: B

49. A solutions architect needs to maintain a fleet of Amazon EC2 instances so that any impaired instances are replaced with new ones. Which AWS service should the solutions architect use?

A. Amazon Elastic Container Service (Amazon ECS)
B. Amazon GuardDuty
C. AWS Shield
D. AWS Auto Scaling

Answer: D

50. An application deployed in the AWS Cloud has unpredictable usage patterns and is running workloads that cannot be interrupted. What is the MOST cost-effective Amazon EC2 pricing option for this application?

A. Dedicated Instances
B. Spot Instances
C. Reserved Instances
D. On-Demand Instances

Answer: D

51. A company is migrating its on-premises data center to AWS and wants to provide NFS access to its Linux clients. Which AWS service should the company use?

A. Amazon S3
B. Amazon Elastic File System (Amazon EFS)
C. Amazon Elastic Block Store (Amazon EBS)
D. Amazon S3 Glacier

Answer: B

52. An application is receiving SQL injection attacks from multiple external resources. Which AWS service or feature can help automate mitigation against these attacks?

A. AWS WAF
B. Security groups
C. Elastic Load Balancer
D. Network ACL

Answer: A

53. Which AWS service enables risk auditing of an AWS account by tracking and recording user actions and source IP addresses?

A. AWS X-Ray
B. AWS Shield
C. AWS Trusted Advisor
D. AWS CloudTrail

Answer: D

54. A company would like to host its MySQL databases on AWS and maintain full control over the operating system, database installation, and configuration. Which AWS service should the company use to host the databases?

A. Amazon RDS
B. Amazon EC2
C. Amazon DynamoDB
D. Amazon Aurora

Answer: B

55. What AWS billing support resource is available to all support levels?

A. AWS Support concierge
B. AWS Customer Service
C. AWS technical account manager
D. AWS Business Support

Answer: B

56. Which AWS services help to improve application performance by reducing latency while accessing content globally? (Choose two.)

A. Amazon CloudFront
B. AWS VPN
C. AWS Direct Connect
D. AWS Global Accelerator
E. Amazon S3 Glacier

Answer: A D

57. Which AWS service provides the ability to quickly run one-time queries on data in Amazon S3?

A. Amazon EMR
B. Amazon DynamoDB
C. Amazon Redshift
D. Amazon Athena

Answer: D

58. Which task requires the use of AWS account root account user credentials?

A. Closing an AWS account
B. Creating a log file
C. Modifying IAM user permissions
D. Deleting IAM users

Answer: A

59. Which AWS service does AWS Snowball Edge natively support?

A. AWS Server Migration Service (AWS SMS)
B. Amazon Aurora
C. AWS Trusted Advisor
D. Amazon EC2

Answer: D

60. A company is building a new archiving system on AWS that will store terabytes of data. The company will NOT retrieve the data often. Which Amazon S3 storage class will MINIMIZE the cost of the system?

A. S3 Standard-Infrequent Access (S3 Standard-IA)
B. S3 Glacier
C. S3 Intelligent-Tiering
D. S3 One Zone-Infrequent Access (S3 One Zone-IA)

Answer: B

61. Which type of AWS infrastructure deployment puts AWS compute, storage, database, and other select services closer to end users to run latency-sensitive applications?

A. AWS Regions
B. Availability Zones
C. Local Zones
D. Edge locations

Answer: C

62. Which AWS service enables users to monitor for specific phrases, values, or patterns and set up alarms based on metrics?

A. AWS IQ
B. Amazon Comprehend
C. AWS CloudTrail
D. Amazon CloudWatch Logs

Answer: D

63. A company wants durable storage for static content and infinitely scalable data storage infrastructure at the lowest cost. Which AWS service should the company choose?

A. Amazon Elastic Block Store (Amazon EBS)
B. Amazon S3
C. AWS Storage Gateway
D. Amazon Elastic File System (Amazon EFS)

Answer: B

64. Using AWS Identity and Access Management (IAM), what can be attached to an Amazon EC2 instance to make service requests?

A. Group
B. Role
C. Policy
D. Access key

Answer: B

65. A company previously lost data that was stored in an on-premises data center. To protect against future loss of data, the company wants to use AWS to automatically launch thousands of its machines in a fully provisioned state in minutes, in a format that supports data restoration. Which AWS service should the company use to meet these requirements?

A. AWS Direct Connect
B. AWS Storage Gateway
C. CloudEndure Disaster Recovery
D. AWS Backup

Answer: C

66. Which aspect of AWS infrastructure enables global deployment of compute and storage?

A. Availability Zones
B. Regions
C. Tags
D. Resource groups

Answer: B

67. A security officer wants to enable IPsec communications to securely connect users from on-premises networks to AWS. Which AWS service or feature should the officer use?

A. Amazon VPC
B. AWS VPN
C. AWS Direct Connect
D. Amazon Connect

Answer: B

68. Which of the following can be used to describe infrastructure as code in the AWS Cloud?

A. AWS CLI
B. AWS CloudFormation
C. AWS CodeDeploy
D. AWS Amplify

Answer: B

69. Which of the following are benefits of running a database on Amazon RDS compared to an on-premises database? (Choose two.)

A. RDS backups are managed by AWS.
B. RDS supports any relational database.
C. RDS has no database engine licensing costs.
D. RDS database compute capacity can be easily scaled.
E. RDS inbound traffic control (for example, security groups) is managed by AWS.

Answer: A D

70. Which AWS service is designed to help users who want to use machine learning for natural language processing (NLP) but do not have experience in machine learning?

A. Amazon Comprehend
B. Amazon SageMaker
C. AWS Deep Learning AMIs (DLAMI)
D. Amazon Rekognition

Answer: A

71. Which AWS service or feature allows a user to establish a dedicated network connection between a company’s on-premises data center and the AWS Cloud?

A. AWS Direct Connect
B. VPC peering
C. AWS VPN
D. Amazon Route 53

Answer: A

72. A company needs 24/7 phone, email, and chat access, with a response time of less than 1 hour if a production system has a service interruption. Which AWS Support plan meets these requirements at the LOWEST cost?

A. Basic
B. Developer
C. Business
D. Enterprise

Answer: C

73. How can a user achieve high availability for a web application hosted on AWS?

A. Use a Classic Load Balancer across multiple AWS Regions.
B. Use an Application Load Balancer across multiple Availability Zones in one AWS Region.
C. Set up automatic scaling and load balancing with another application instance running on premises.
D. Use the AWS Region with the highest number of Availability Zones.

Answer: B

74. Which of the following is an AWS best practice for managing an AWS account root user?

A. Keep the root user password with the security team.
B. Enable multi-factor authentication (MFA) for the root user.
C. Create an access key for the root user.
D. Keep the root user password consistent for compliance purposes.

Answer: B

75. A company wants to securely access an Amazon S3 bucket from an Amazon EC2 instance without accessing the internet. What should the company use to accomplish this goal?

A. VPN connection
B. Internet gateway
C. VPC endpoint
D. NAT gateway

Answer: C

76. Which statement is true about AWS global infrastructure?

A. Availability Zones can span multiple AWS Regions.
B. A VPC can have different subnets in different AWS Regions.
C. AWS Regions consist of multiple Availability Zones.
D. A single subnet can span multiple Availability Zones.

Answer: C

77. Which AWS service or feature provides information about ongoing or upcoming scheduled events that can affect an AWS account?

A. AWS Config
B. AWS Systems Manager
C. AWS Personal Health Dashboard
D. AWS Trusted Advisor

Answer: C

78. A bank needs to store recordings of calls made to its contact center for 6 years. The recordings must be accessible within 48 hours from the time they are requested. Which AWS service will provide a secure and cost-effective solution for retaining these files?

A. Amazon DynamoDB
B. Amazon S3 Glacier
C. Amazon Connect
D. Amazon ElastiCache

Answer: B

79. A media company wants to distribute video content to millions of users worldwide over the internet. The company wants to use the AWS global network backbone to distribute cached content with low latency and high data transfer speeds. Which AWS service will meet these requirements?

A. Amazon CloudFront
B. AWS Global Accelerator
C. AWS Direct Connect
D. Amazon Connect

Answer: A

80. The AWS global infrastructure consists of Regions, Availability Zones, and what else?

A. VPCs
B. Data centers
C. Dark fiber network links
D. Edge locations

Answer: D

81. Which AWS Trusted Advisor feature is available exclusively to users with AWS Business Support or AWS Enterprise Support?

A. Notification setup
B. Refresh checks
C. AWS Support API
D. Action links

Answer: C

82. A company is required to store its data close to its primary users. Which benefit of the AWS Cloud supports this requirement?

A. Security
B. High availability
C. Elasticity
D. Global footprint

Answer: B

83. Which of the following contribute to total cost of ownership of a workload running in the AWS Cloud? (Choose two.)

A. Hardware maintenance
B. Power and cooling
C. Storage costs
D. Space for data center
E. Network costs

Answer: C E

Share this post

Leave a Reply

Your email address will not be published. Required fields are marked *