Amazon AWS

AWS Certified Cloud Practitioner

CLF-C02
Popular

The AWS Certified Cloud Practitioner (CLF-C02) exam is designed for individuals who want to demonstrate their overall understanding of AWS Cloud. It covers basic AWS services and their benefits.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 21–30 of 486

Q21

What happens when you exceed AWS support plan limits?

  • A You receive a warning
  • B Support is denied
  • C Automatic upgrade to next tier
  • D No additional charges
Explanation AWS automatically upgrades your support plan when limits are exceeded.
Q22

Which AWS service provides a fully managed message queuing service?

  • A Amazon SQS
  • B Amazon SNS
  • C AWS Lambda
  • D Amazon API Gateway
Explanation Amazon SQS is designed specifically for message queuing; others serve different purposes like notification or serverless functions.
Q23

A company needs to isolate resources across multiple environments. What should they use?

  • A AWS Regions
  • B AWS Availability Zones
  • C AWS Accounts
  • D AWS VPC Subnets
Explanation Using different AWS accounts provides resource isolation effectively; other options partly isolate but not as completely.
Q24

What happens when an IAM user is deleted in AWS?

  • A All permissions are revoked
  • B User can still access resources
  • C Access keys become inactive
  • D Enabled MFA remains active
Explanation Deleting an IAM user revokes all their permissions; access keys are also disabled but the key point is permissions come first.
Q25

Which AWS service is best for automating EC2 instance provisioning?

  • A AWS CloudFormation
  • B AWS Lambda
  • C AWS CodeDeploy
  • D AWS IAM
Explanation AWS CloudFormation automates the provisioning of resources in a defined manner, whereas other options serve different purposes.
Q26

A company needs a scalable NoSQL database. Which service should they choose?

  • A Amazon RDS
  • B Amazon DynamoDB
  • C Amazon Aurora
  • D Amazon Redshift
Explanation Amazon DynamoDB is a fully-managed NoSQL database, while the others are SQL databases.
Q27

What happens when you create a security group but forget to add any rules?

  • A No traffic is allowed.
  • B All traffic is allowed.
  • C SSH is enabled by default.
  • D Only inbound traffic is allowed.
Explanation By default, a security group denies all inbound traffic if rules are not specified, while the others incorrectly assume default allowances.
Q28

Which AWS service provides a serverless way to run code in response to events?

  • A AWS Lambda
  • B Amazon EC2
  • C AWS Fargate
  • D Amazon RDS
Explanation AWS Lambda allows execution of code without managing servers; EC2 requires server management, Fargate is for containers, and RDS is for databases.
Q29

A company needs to ensure that their users have access to the S3 bucket only if they are using MFA. Which IAM feature can they use?

  • A IAM Roles
  • B IAM Policies
  • C IAM Groups
  • D IAM Users
Explanation IAM Policies can enforce MFA requirements; Roles and Groups do not handle access constraints without policies, while Users are simply identities.
Q30

What happens when you create an Amazon VPC but do not associate any route tables or internet gateways?

  • A All traffic is allowed by default.
  • B Instances cannot communicate with the internet.
  • C It automatically creates a default gateway.
  • D Subnet creation is automatically disabled.
Explanation Without route tables or internet gateways, instances are isolated and cannot reach the internet; traffic is not allowed by default without proper configuration.