Amazon AWS

AWS Certified Cloud Practitioner

CLF-C02
Popular

The AWS Certified Cloud Practitioner (CLF-C02) exam is designed for individuals who want to demonstrate their overall understanding of AWS Cloud. It covers basic AWS services and their benefits.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 221–230 of 486

Q221

A company needs to deploy an application with high availability. Which AWS solution should they implement?

  • A Amazon Glacier
  • B AWS Auto Scaling
  • C AWS Config
  • D Amazon Chime
Explanation AWS Auto Scaling automatically adjusts resources for high availability; the others do not address this need directly.
Q222

You are configuring an IAM policy. What happens when you deny access to an action in a policy?

  • A Access is granted regardless of allow rules
  • B Access is determined by specific users
  • C Access is denied by default
  • D Access is granted only to admins
Explanation Denying access takes precedence, meaning access is denied unless explicitly allowed, which makes options A, B, and D incorrect.
Q223

Which service provides serverless compute power?

  • A AWS Lambda
  • B Amazon EC2
  • C AWS CloudFormation
  • D Amazon RDS
Explanation AWS Lambda executes code in response to events, while the others are for different purposes.
Q224

A company needs to manage access permissions across multiple AWS accounts effectively. Which service should they use?

  • A AWS Identity and Access Management
  • B AWS Organizations
  • C Amazon Cognito
  • D AWS Shield
Explanation AWS Organizations centralizes management of accounts, while IAM manages permissions within a single account.
Q225

What happens when a user is assigned a policy that explicitly denies access to a resource?

  • A Access is granted
  • B Access is denied
  • C Access is granted with conditions
  • D No effect on permissions
Explanation Explicit denies always take precedence over allows, making access denied regardless of other policies.
Q226

Which AWS service scales automatically based on demand?

  • A Amazon EC2
  • B Amazon S3
  • C AWS Lambda
  • D Amazon RDS
Explanation AWS Lambda scales automatically based on request rates, while EC2 and RDS require manual intervention, and S3 is for storage.
Q227

A company needs to ensure secure remote access to its AWS environment. What service should they implement?

  • A AWS VPN
  • B AWS CloudTrail
  • C Amazon Detective
  • D AWS Config
Explanation AWS VPN provides secure remote connection, whereas the others focus on monitoring and compliance.
Q228

What happens when you delete an S3 bucket that contains objects?

  • A Objects remain until deleted manually
  • B Objects are deleted immediately
  • C Bucket is only marked for deletion
  • D Objects are archived in Glacier
Explanation Deleting an S3 bucket also deletes all its objects immediately, unlike other options which misrepresent the deletion process.
Q229

Which service allows for running code in response to events?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon S3
  • D AWS CloudFormation
Explanation AWS Lambda is designed for event-driven execution, while the others serve different functions.
Q230

A company needs to manage access to AWS resources. What should they use?

  • A AWS IAM
  • B AWS Direct Connect
  • C Amazon VPC
  • D AWS CloudWatch
Explanation AWS IAM is the correct service for access management; the others are not for access controls.