Amazon AWS

AWS Certified Cloud Practitioner

CLF-C02
Popular

The AWS Certified Cloud Practitioner (CLF-C02) exam is designed for individuals who want to demonstrate their overall understanding of AWS Cloud. It covers basic AWS services and their benefits.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 121–130 of 486

Q121

Which AWS service is best for managing application secrets?

  • A AWS Secrets Manager
  • B AWS Certificate Manager
  • C Amazon S3
  • D AWS Lambda
Explanation AWS Secrets Manager is specifically designed for managing application secrets; the other options serve different purposes.
Q122

A company requires a secure way to upload files to S3 directly from client browsers. Which approach should it take?

  • A Use AWS CloudFormation
  • B Create a pre-signed URL
  • C Increase S3 bucket size
  • D Use AWS EC2 instance
Explanation Creating a pre-signed URL provides secure temporary access for uploads, while other options do not address direct browser uploads.
Q123

What happens when you terminate an EC2 instance in a default VPC?

  • A All data is permanently lost
  • B Instance storage is preserved
  • C Elastic IP is retained
  • D Instance is stopped, not terminated
Explanation Terminating an EC2 instance in a default VPC loses all ephemeral data; Elastic IPs and stopped instances work differently.
Q124

Which service is best for real-time data streaming?

  • A Amazon Kinesis
  • B Amazon RDS
  • C Amazon S3
  • D Amazon DynamoDB
Explanation Amazon Kinesis is designed for real-time streaming, while the others serve different purposes like databases or storage.
Q125

A company needs secure access to AWS resources based on user roles. Which AWS service should they use?

  • A AWS IAM
  • B AWS VPC
  • C AWS CloudTrail
  • D AWS Lambda
Explanation AWS IAM enables secure access management based on roles; the others provide different functions unrelated to user access control.
Q126

What happens when you delete an EC2 instance?

  • A All associated EBS volumes are deleted.
  • B The instance can be recovered later.
  • C All data in instance store is lost.
  • D Elastic IP addresses are kept.
Explanation Instance store data is temporary and lost upon deletion, whereas EBS volumes and Elastic IPs can be retained.
Q127

Which service allows for globally distributed applications with low latency?

  • A Amazon Route 53
  • B AWS Direct Connect
  • C Amazon CloudFront
  • D AWS Lambda
Explanation Amazon CloudFront delivers content faster with edge locations, while Route 53 mainly handles DNS, Direct Connect is for dedicated networks, and Lambda runs code without specified latencies.
Q128

A company needs to automate the scaling of their EC2 instances based on performance metrics. What should they use?

  • A EC2 Auto Scaling Groups
  • B AWS Elastic Load Balancer
  • C AWS Lambda
  • D Amazon RDS
Explanation EC2 Auto Scaling Groups automatically adjust instance counts based on metrics, while the others serve different purposes including load balancing and database management.
Q129

What happens when an IAM user tries to delete an S3 bucket that they do not have permission to?

  • A The action is denied
  • B The action is logged
  • C The bucket is deleted
  • D The bucket is emptied
Explanation IAM policies prevent actions without permission, while logging and action outcomes behave differently without correct permissions.
Q130

Which service automates infrastructure provisioning?

  • A AWS CloudFormation
  • B AWS Lambda
  • C Amazon EC2
  • D Amazon RDS
Explanation AWS CloudFormation automates infrastructure provisioning, while others provide compute or database services.