Amazon AWS

AWS Certified Cloud Practitioner

CLF-C02
Popular

The AWS Certified Cloud Practitioner (CLF-C02) exam is designed for individuals who want to demonstrate their overall understanding of AWS Cloud. It covers basic AWS services and their benefits.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 161–170 of 486

Q161

A company needs to centrally manage IAM user permissions. What is the best approach?

  • A Use IAM Roles only
  • B Create IAM Groups
  • C Assign S3 policies
  • D Use Multi-Factor Authentication
Explanation IAM Groups allow centralized management of permissions; Roles only allow temporary access, S3 policies apply only to buckets, and MFA adds security but does not manage permissions.
Q162

What happens when an EC2 instance is stopped and restarted?

  • A Elastic IP is released
  • B Instance changes its public IP
  • C Instance retains private IP
  • D Instance's data is lost
Explanation Stopped and restarted EC2 instances change their public IP addresses unless an Elastic IP is associated; private IPs are retained, and data remains on EBS volumes.
Q163

Which service can be used for serverless computing?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon S3
  • D Amazon RDS
Explanation AWS Lambda allows running code without provisioning servers; other options require server management.
Q164

A company needs to control access to AWS resources by defining permissions. What should they use?

  • A Security Groups
  • B IAM Policies
  • C VPC Peering
  • D CloudTrail
Explanation IAM Policies are specifically designed to manage permissions; Security Groups control access at the network level.
Q165

You are configuring an S3 bucket for static website hosting. What must be enabled for the bucket?

  • A Bucket Versioning
  • B Public Access Block
  • C Static Website Hosting
  • D Lifecycle Rule
Explanation Static Website Hosting must be explicitly enabled; other options are not required for hosting.
Q166

Which service provides serverless compute for applications?

  • A AWS Lambda
  • B EC2
  • C RDS
  • D S3
Explanation AWS Lambda executes code in response to events, while EC2, RDS, and S3 are not serverless.
Q167

A company needs to manage user access to AWS services. Which service should they use?

  • A AWS IAM
  • B AWS CloudTrail
  • C Amazon CloudWatch
  • D AWS VPC
Explanation AWS IAM is the service designed for user access and permissions management, unlike the others which serve different purposes.
Q168

What happens when you terminate an EC2 instance?

  • A Data is permanently lost
  • B Instance shuts down only
  • C The IP address is retained
  • D EBS volumes are also deleted
Explanation When terminating an EC2 instance, any instance store data is lost, and unless configured otherwise, the root EBS will also be deleted, which can lead to data loss.
Q169

Which AWS service allows for serverless execution of code?

  • A AWS Lambda
  • B Amazon EC2
  • C AWS Glue
  • D Amazon RDS
Explanation AWS Lambda enables execution of code without managing servers, while the others involve server management.
Q170

A company wants to restrict user access to specific S3 buckets. Which service should they use?

  • A AWS IAM
  • B Amazon SNS
  • C AWS CloudTrail
  • D Amazon CloudWatch
Explanation AWS IAM allows for fine-grained access control to resources, whereas the others do not manage permissions.