Which of the following is included in the aws trusted advisor checks select two

This part include 100% real AWS Certified Cloud Practitioner (CLF-C01) Exam Questions Part 4. It’s free for all and we highly recommend you should use this for your exam preparation.

Part 1: https://www.awslagi.com/aws-certified-cloud-practitioner
Part 2: https://www.awslagi.com/aws-certified-cloud-practitioner-p2
Part 3: https://www.awslagi.com/aws-certified-cloud-practitioner-p3
Part 4: https://www.awslagi.com/aws-certified-cloud-practitioner-p4
Part 5: https://www.awslagi.com/aws-certified-cloud-practitioner-p5
Part 6: https://www.awslagi.com/aws-certified-cloud-practitioner-p6
Part 7: https://www.awslagi.com/aws-certified-cloud-practitioner-p7
Part 8: https://www.awslagi.com/aws-certified-cloud-practitioner-p8
Part 9: https://www.awslagi.com/aws-certified-cloud-practitioner-p9
Part 10: https://www.awslagi.com/aws-certified-cloud-practitioner-p10
Part 11: https://www.awslagi.com/aws-certified-cloud-practitioner-p11
Part 12: https://www.awslagi.com/aws-certified-cloud-practitioner-part-12
Part 13: https://www.awslagi.com/aws-certified-cloud-practitioner-part-13

Video:

1. According to the AWS Well-Architected Framework, what change management steps should be taken to achieve reliability in the AWS Cloud? (Choose two.)

A. Use AWS Config to generate an inventory of AWS resources
B. Use service limits to prevent users from creating or making changes to AWS resources
C. Use AWS CloudTrail to record AWS API calls into an auditable log file
D. Use AWS Certificate Manager to whitelist approved AWS resources and services
E. Use Amazon GuardDuty to validate configuration changes made to AWS resources

Reveal

Answer: A C

2. Which service can be used to monitor and receive alerts for AWS account root user AWS Management Console sign-in events?

A. Amazon CloudWatch
B. AWS Config
C. AWS Trusted Advisor
D. AWS IAM

Reveal

Answer: A

3. Which design principle should be considered when architecting in the AWS Cloud?

A. Think of servers as non-disposable resources
B. Use synchronous integration of services
C. Design loosely coupled components
D. Implement the least permissive rules for security groups

Reveal

Answer: C

4. Which AWS services can be used to move data from on-premises data centers to AWS? (Choose two.)

A. AWS Snowball
B. AWS Lambda
C. AWS ElastiCache
D. AWS Database Migration Service (AWS DMS)
E. Amazon API Gateway

Reveal

Answer: A D

5. Which methods can be used to identify AWS costs by departments? (Choose two.)

A. Enable multi-factor authentication for the AWS account root user.
B. Create separate accounts for each department.
C. Use Reserved Instances whenever possible.
D. Use tags to associate each instance with a particular department.
E. Pay bills using purchase orders.

Reveal

Answer: B D

6. A batch workload takes 5 hours to finish on an Amazon EC2 instance. The amount of data to be processed doubles monthly and the processing time is proportional. What is the best cloud architecture to address this consistently growing demand?

A. Run the application on a bigger EC2 instance size.
B. Switch to an EC2 instance family that better matches batch requirements.
C. Distribute the application across multiple EC2 instances and run the workload in parallel.
D. Run the application on a bare metal EC2 instance.

Reveal

Answer: B

7. Each department within a company has its own independent AWS account and its own payment method. New company leadership wants to centralize departmental governance and consolidate payments. How can this be achieved using AWS services or features?

A. Forward monthly invoices for each account. Then create IAM roles to allow cross-account access.
B. Create a new AWS account. Then configure AWS Organizations and invite all existing accounts to join.
C. Configure AWS Organizations in each of the existing accounts. Then link all accounts together.
D. Use Cost Explorer to combine costs from all accounts. Then replicate IAM policies across accounts.

Reveal

Answer: B

8. The ability to horizontally scale Amazon EC2 instances based on demand is an example of which concept in the AWS Cloud value proposition?

A. Economy of scale
B. Elasticity
C. High availability
D. Agility

Reveal

Answer: B

9. An ecommerce company anticipates a huge increase in web traffic for two very popular upcoming shopping holidays.
Which AWS service or feature can be configured to dynamically adjust resources to meet this change in demand?

A. AWS CloudTrail
B. Amazon EC2 Auto Scaling
C. Amazon Forecast
D. AWS Config

Reveal

Answer: B

10. Which AWS service enables users to securely connect to AWS resources over the public internet?

A. Amazon VPC peering
B. AWS Direct Connect
C. AWS VPN
D. Amazon Pinpoint

Reveal

Answer: C

11. Amazon Route 53 enables users to:

A. encrypt data in transit
B. register DNS domain names
C. generate and manage SSL certificates
D. establish a dedicated network connection to AWS

Reveal

Answer: B

12. Which AWS service helps identify malicious or unauthorized activities in AWS accounts and workloads?

A. Amazon Rekognition
B. AWS Trusted Advisor
C. Amazon GuardDuty
D. Amazon CloudWatch

Reveal

Answer: C

13. A company wants to try a third-party ecommerce solution before deciding to use it long term. Which AWS service or tool will support this effort?

A. AWS Marketplace
B. AWS Partner Network (APN)
C. AWS Managed Services
D. AWS Service Catalog

Reveal

Answer: A

14. Which AWS service is a managed NoSQL database?

A. Amazon Redshift
B. Amazon DynamoDB
C. Amazon Aurora
D. Amazon RDS for MariaDB

Reveal

Answer: B

15. Which AWS service should be used to create a billing alarm?

A. AWS Trusted Advisor
B. AWS CloudTrail
C. Amazon CloudWatch
D. Amazon QuickSight

Reveal

Answer: C

16. A company is hosting a web application in a Docker container on Amazon EC2. AWS is responsible for which of the following tasks?

A. Scaling the web application and services developed with Docker
B. Provisioning or scheduling containers to run on clusters and maintain their availability
C. Performing hardware maintenance in the AWS facilities that run the AWS Cloud
D. Managing the guest operating system, including updates and security patches

Reveal

Answer: C

17. Users are reporting latency when connecting to a website with a global customer base. Which AWS service will improve the customer experience by reducing latency?

A. Amazon CloudFront
B. AWS Direct Connect
C. Amazon EC2 Auto Scaling
D. AWS Transit Gateway

Reveal

Answer: A

18. Which actions represent best practices for using AWS IAM? (Choose two.)

A. Configure a strong password policy
B. Share the security credentials among users of AWS accounts who are in the same Region
C. Use access keys to log in to the AWS Management Console
D. Rotate access keys on a regular basis
E. Avoid using IAM roles to delegate permissions

Reveal

Answer: A D

19. Which AWS feature or service can be used to capture information about incoming and outgoing traffic in an AWS VPC infrastructure?

A. AWS Config
B. VPC Flow Logs
C. AWS Trusted Advisor
D. AWS CloudTrail

Reveal

Answer: B

20. A company wants to use an AWS service to monitor the health of application endpoints, with the ability to route traffic to healthy regional endpoints to improve application availability. Which service will support these requirements?

A. Amazon Inspector
B. Amazon CloudWatch
C. AWS Global Accelerator
D. Amazon CloudFront

Reveal

Answer: C

21. A company is planning to migrate from on-premises to the AWS Cloud. Which AWS tool or service provides detailed reports on estimated cost savings after migration?

A. AWS Total Cost of Ownership (TCO) Calculator
B. Cost Explorer
C. AWS Budgets
D. AWS Migration Hub

Reveal

Answer: A

22. What can assist in evaluating an application for migration to the cloud? (Choose two.)

A. AWS Trusted Advisor
B. AWS Professional Services
C. AWS Systems Manager
D. AWS Partner Network (APN)
E. AWS Secrets Manager

Reveal

Answer: B D

23. Which AWS service helps users meet contractual and regulatory compliance requirements for data security by using dedicated hardware appliances within the AWS Cloud?

A. AWS Secrets Manager
B. AWS CloudHSM
C. AWS Key Management Service (AWS KMS)
D. AWS Directory Service

Reveal

Answer: B

24. Under the AWS shared responsibility model, the customer manages which of the following? (Choose two.)

A. Decommissioning of physical storage devices
B. Security group and ACL configuration
C. Patch management of an Amazon RDS instance operating system
D. Controlling physical access to data centers
E. Patch management of an Amazon EC2 instance operating system

Reveal

Answer: B E

25. Which AWS service is suitable for an event-driven workload?

A. Amazon EC2
B. AWS Elastic Beanstalk
C. AWS Lambda
D. Amazon Lumberyard

Reveal

Answer: C

26. What is a value proposition of the AWS Cloud?

A. AWS is responsible for security in the AWS Cloud
B. No long-term contract is required
C. Provision new servers in days
D. AWS manages user applications in the AWS Cloud

Reveal

Answer: B

27. What is a characteristic of Amazon S3 cross-region replication?

A. Both source and destination S3 buckets must have versioning disabled
B. The source and destination S3 buckets cannot be in different AWS Regions
C. S3 buckets configured for cross-region replication can be owned by a single AWS account or by different accounts
D. The source S3 bucket owner must have the source and destination AWS Regions disabled for their account

Reveal

Answer: C

28. What is a user responsible for when running an application in the AWS Cloud?

A. Managing physical hardware
B. Updating the underlying hypervisor
C. Providing a list of users approved for data center access
D. Managing application software updates

Reveal

Answer: D

29. A company that does business online needs to quickly deliver new functionality in an iterative manner, minimizing the time to market. Which AWS Cloud feature can provide this?

A. Elasticity
B. High availability
C. Agility
D. Reliability

Reveal

Answer: C

30. Which features or services can be used to monitor costs and expenses for an AWS account? (Choose two.)

A. AWS Cost and Usage report
B. AWS product pages
C. AWS Simple Monthly Calculator
D. Billing alerts and Amazon CloudWatch alarms
E. AWS Price List API

Reveal

Answer: A D

31. Which AWS services provide a user with connectivity between the AWS Cloud and on-premises resources? (Choose two.)

A. AWS VPN
B. Amazon Connect
C. Amazon Cognito
D. AWS Direct Connect
E. AWS Managed Services

Reveal

Answer: A D

32. Which AWS service is used to pay AWS bills, and monitor usage and budget costs?

A. AWS Billing and Cost Management
B. Consolidated billing
C. Amazon CloudWatch
D. Amazon QuickSight

Reveal

Answer: A

33. Which element of the AWS global infrastructure consists of one or more discrete data centers, each with redundant power, networking, and connectivity, which are housed in separate facilities?

A. AWS Regions
B. Availability Zones
C. Edge locations
D. Amazon CloudFront

Reveal

Answer: B

34. Which Amazon VPC feature enables users to capture information about the IP traffic that reaches Amazon EC2 instances?

A. Security groups
B. Elastic network interfaces
C. Network ACLs
D. VPC Flow Logs

Reveal

Answer: D

35. Which AWS service can be used to automatically scale an application up and down without making capacity planning decisions?

A. Amazon AutoScaling
B. Amazon Redshift
C. AWS CloudTrail
D. AWS Lambda

Reveal

Answer: A

36. AWS Enterprise Support users have access to which service or feature that is not available to users with other AWS Support plans?

A. AWS Trusted Advisor
B. AWS Support case
C. Concierge team
D. Amazon Connect

Reveal

Answer: C

37. A company wants to migrate a MySQL database to AWS but does not have the budget for Database Administrators to handle routine tasks including provisioning, patching, and performing backups. Which AWS service will support this use case?

A. Amazon RDS
B. Amazon DynamoDB
C. Amazon DocumentDB
D. Amazon ElastiCache

Reveal

Answer: A

38. A company wants to expand from one AWS Region into a second AWS Region. What does the company need to do to start supporting the new Region?

A. Contact an AWS Account Manager to sign a new contract
B. Move an Availability Zone to the new Region
C. Begin deploying resources in the second Region
D. Download the AWS Management Console for the new Region

Reveal

Answer: C

39. A user must meet compliance and software licensing requirements that state a workload must be hosted on a physical server. Which Amazon EC2 instance pricing option will meet these requirements?

A. Dedicated Hosts
B. Dedicated Instances
C. Spot Instances
D. Reserved Instances

Reveal

Answer: A

40. Which AWS service will provide a way to generate encryption keys that can be used to encrypt data? (Choose two.)

A. Amazon Macie
B. AWS Certificate Manager
C. AWS Key Management Service (AWS KMS)
D. AWS Secrets Manager
E. AWS CloudHSM

Reveal

Answer: C E

41. A company is planning to launch an ecommerce site in a single AWS Region to a worldwide user base. Which AWS services will allow the company to reach users and provide low latency and high transfer speeds? (Choose two.)

A. Application Load Balancer
B. AWS Global Accelerator
C. AWS Direct Connect
D. Amazon CloudFront
E. AWS Lambda

Reveal

Answer: B D

42. Which AWS service or resource is serverless?

A. AWS Lambda
B. Amazon EC2 instances
C. Amazon Lightsail
D. Amazon ElastiCache

Reveal

Answer: A

43. Which of the following are components of Amazon VPC? (Choose two.)

A. Objects
B. Subnets
C. Buckets
D. Internet gateways
E. Access key

Reveal

Answer: B D

44. AWS Budgets can be used to:

A. prevent a given user from creating a resource
B. send an alert when the utilization of Reserved Instances drops below a certain percentage
C. set resource limits in AWS accounts to prevent overspending
D. split an AWS bill across multiple forms of payment

Reveal

Answer: B

45. Which of the following will enhance the security of access to the AWS Management Console? (Choose two.)

A. AWS Secrets Manager
B. AWS Certificate Manager
C. AWS Multi-Factor Authentication (AWS MFA)
D. Security groups
E. Password policies

Reveal

Answer: C E

46. The AWS Trusted Advisor checks include recommendations regarding which of the following? (Choose two.)

A. Information on Amazon S3 bucket permissions
B. AWS service outages
C. Multi-factor authentication enabled on the AWS account root user
D. Available software patches
E. Number of users in the account

Reveal

Answer: A C

47. Which functions can users perform using AWS KMS?

A. Create and manage AWS access keys for the AWS account root user
B. Create and manage AWS access keys for an AWS account IAM user
C. Create and manage keys for encryption and decryption of data
D. Create and manage keys for multi-factor authentication

Reveal

Answer: C

48. How does AWS Trusted Advisor provide guidance to users of the AWS Cloud? (Choose two.)

A. It identifies software vulnerabilities in applications running on AWS
B. It provides a list of cost optimization recommendations based on current AWS usage
C. It detects potential security vulnerabilities caused by permissions settings on account resources
D. It automatically corrects potential security issues caused by permissions settings on account resources
E. It provides proactive alerting whenever an Amazon EC2 instance has been compromised

Reveal

Answer: B C

49. Which of the following are advantages of the AWS Cloud? (Choose two.)

A. AWS manages the maintenance of the cloud infrastructure
B. AWS manages the security of applications built on AWS
C. AWS manages capacity planning for physical servers
D. AWS manages the development of applications on AWS
E. AWS manages cost planning for virtual servers

Reveal

Answer: A C

50. A user deploys an Amazon RDS DB instance in multiple Availability Zones. This strategy involves which pillar of the AWS Well-Architected Framework?

A. Performance efficiency
B. Reliability
C. Cost optimization
D. Security

Reveal

Answer: B

51. When designing a typical three-tier web application, which AWS services and/or features improve availability and reduce the impact failures? (Choose two.)

A. AWS Auto Scaling for Amazon EC2 instances
B. Amazon VPC subnet ACLs to check the health of a service
C. Distributed resources across multiple Availability Zones
D. AWS Server Migration Service (AWS SMS) to move Amazon EC2 instances into a different Region
E. Distributed resources across multiple AWS points of presence

Reveal

Answer: A C

52. Which cloud design principle aligns with AWS Cloud best practices?

A. Create fixed dependencies among application components
B. Aggregate services on a single instance
C. Deploy applications in a single Availability Zone
D. Distribute the compute load across multiple resources

Reveal

Answer: D

53. Which of the following are recommended practices for managing IAM users? (Choose two.)

A. Require IAM users to change their passwords after a specified period of time
B. Prevent IAM users from reusing previous passwords
C. Recommend that the same password be used on AWS and other sites
D. Require IAM users to store their passwords in raw text
E. Disable multi-factor authentication (MFA) for IAM users

Reveal

Answer: A B

54. A company is migrating from on-premises data centers to the AWS Cloud and is looking for hands-on help with the project. How can the company get this support? (Choose two.)

A. Ask for a quote from the AWS Marketplace team to perform a migration into the company’s AWS account.
B. Contact AWS Support and open a case for assistance
C. Use AWS Professional Services to provide guidance and to set up an AWS Landing Zone in the company’s AWS account
D. Select a partner from the AWS Partner Network (APN) to assist with the migration
E. Use Amazon Connect to create a new request for proposal (RFP) for expert assistance in migrating to the AWS Cloud.

Reveal

Answer: C D

55. How does the AWS Enterprise Support Concierge team help users?

A. Supporting application development
B. Providing architecture guidance
C. Answering billing and account inquires
D. Answering questions regarding technical support cases

Reveal

Answer: C

56. An application designed to span multiple Availability Zones is described as:

A. being highly available
B. having global reach
C. using an economy of scale
D. having elasticity

Reveal

Answer: A

57. A new service using AWS must be highly available. Yet, due to regulatory requirements, all of its Amazon EC2 instances must be located in a single geographic area. According to best practices, to meet these requirements, the EC2 instances must be placed in at least two:

A. AWS Regions
B. Availability Zones
C. subnets
D. placement groups

Reveal

Answer: B

58. Which AWS tool is used to compare the cost of running an application on-premises to running the application in the AWS Cloud?

A. AWS Trusted Advisor
B. AWS Simple Monthly Calculator
C. AWS Total Cost of Ownership (TCO) Calculator
D. Cost Explorer

Reveal

Answer: C

59. A company has multiple AWS accounts within AWS Organizations and wants to apply the Amazon EC2 Reserved Instances benefit to a single account only. Which action should be taken?

A. Purchase the Reserved Instances from master payer account and turn off Reserved Instance sharing.
B. Enable billing alerts in the AWS Billing and Cost Management console.
C. Purchase the Reserved Instances in individual linked accounts and turn off Reserved Instance sharing from the payer level.
D. Enable Reserved Instance sharing in the AWS Billing and Cost Management console.

Reveal

Answer: C

60. Which situation should be reported to the AWS Abuse team?

A. In Availability Zone has a service disruption
B. An intrusion attempt is made from an AWS IP address
C. A user has trouble accessing an Amazon S3 bucket from an AWS IP address
D. A user needs to change payment methods due to a compromise

Reveal

Answer: B

61. Which AWS feature allows a company to take advantage of usage tiers for services across multiple member accounts?

A. Service control policies (SCPs)
B. Consolidated billing
C. All Upfront Reserved Instances
D. AWS Cost Explorer

Reveal

Answer: B

62. What is one of the customer’s responsibilities according to the AWS shared responsibility model?

A. Virtualization infrastructure
B. Network infrastructure
C. Application security
D. Physical security of hardware

Reveal

Answer: C

63. What helps a company provide a lower latency experience to its users globally?

A. Using an AWS Region that is central to all users
B. Using a second Availability Zone in the AWS Region that is using used
C. Enabling caching in the AWS Region that is being used
D. Using edge locations to put content closer to all users

Reveal

Answer: D

64. How can the AWS Cloud increase user workforce productivity after migration from an on-premises data center?

A. Users do not have to wait for infrastructure provisioning.
B. The AWS Cloud infrastructure is much faster than an on-premises data center infrastructure.
C. AWS takes over application configuration management on behalf of users.
D. Users do not need to address security and compliance issues.

Reveal

Answer: A

65. Which AWS service provides a quick and automated way to create and manage AWS accounts?

A. AWS QuickSight
B. Amazon Lightsail
C. AWS Organizations
D. Amazon Connect

Reveal

Answer: C

66. Which Amazon RDS feature can be used to achieve high availability?

A. Multiple Availability Zones
B. Amazon Reserved Instances
C. Provisioned IOPS storage
D. Enhanced monitoring

Reveal

Answer: A

67. Where should users report that AWS resources are being used for malicious purposes?

A. AWS Abuse team
B. AWS Shield
C. AWS Support
D. AWS Developer Forums

Reveal

Answer: A

68. Which AWS service needs to be enabled to track all user account changes within the AWS Management Console?

Which of the following is included in the AWS Trusted Advisor checks?

Which support plans include access to all AWS Trusted Advisor checks select two?

Which of the following types of recommendation does AWS Trusted Advisor provide select two?

What are the 7 core checks in trusted advisor?