Amazon AWS

AWS Certified Cloud Practitioner

CLF-C02
Popular

The AWS Certified Cloud Practitioner (CLF-C02) exam is designed for individuals who want to demonstrate their overall understanding of AWS Cloud. It covers basic AWS services and their benefits.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 31–40 of 486

Q31

Which AWS service provides managed Kubernetes?

  • A Amazon EKS
  • B Amazon ECS
  • C Amazon EC2
  • D AWS Lambda
Explanation Amazon EKS is specifically designed for Kubernetes, while the others serve different container or compute needs.
Q32

A company needs to securely share files with external users. Which service should they use?

  • A AWS S3 with public access
  • B AWS Transfer for SFTP
  • C AWS CodeCommit
  • D Amazon RDS
Explanation AWS Transfer for SFTP enables secure file sharing, while the others do not focus on secure external file transfers.
Q33

You are configuring an IAM policy. What happens if you set an 'Allow' statement and an 'Explicit Deny' for the same action?

  • A Deny takes precedence
  • B Allow takes precedence
  • C It creates a conflict error
  • D Only Deny applies
Explanation In AWS IAM, explicit denies always take precedence over allows.
Q34

Which AWS service automatically scales resources based on demand?

  • A Amazon EC2
  • B AWS Auto Scaling
  • C Amazon S3
  • D AWS CloudFormation
Explanation AWS Auto Scaling adjusts resource capacity automatically, while others do not.
Q35

A company needs to run a containerized application quickly. Which AWS service should they use?

  • A Amazon EC2
  • B Amazon ECS
  • C AWS Lambda
  • D Amazon EKS
Explanation Amazon ECS is optimized for running containerized applications, unlike EC2, Lambda, or EKS which are different use cases.
Q36

You are configuring a VPC with subnets. What happens if you mistakenly associate your public subnet with a private route table?

  • A Subnet remains public and functional.
  • B Subnet becomes private and isolated.
  • C All resources fail to connect.
  • D Route complete network traffic.
Explanation The subnet will behave like a private subnet, thus not allowing public internet access.
Q37

Which AWS service provides an immutable storage solution for data archiving?

  • A S3 Glacier
  • B S3 Intelligent-Tiering
  • C EBS Snapshots
  • D RDS Backups
Explanation S3 Glacier is designed for immutable archiving, while the others are for different types of storage or backups.
Q38

A company needs to automate EC2 instance scaling based on traffic. Which service should they use?

  • A Amazon CloudWatch
  • B AWS Lambda
  • C AWS Step Functions
  • D Amazon EC2 Auto Scaling
Explanation Amazon EC2 Auto Scaling is specifically designed to manage instance scaling automatically based on demand; others do not provide this function directly.
Q39

What happens when a user tries to access an S3 bucket without proper IAM permissions?

  • A Access granted with warning
  • B Access denied error returned
  • C Request gets logged only
  • D IAM role is automatically created
Explanation Access without proper IAM permissions returns an access denied error, while the other options are incorrect as they misrepresent IAM's functionality.
Q40

Which service allows you to run code without provisioning servers?

  • A AWS Lambda
  • B Amazon EC2
  • C AWS RDS
  • D Amazon S3
Explanation AWS Lambda allows serverless code execution; others involve server management.