CLF-C01 Free Practice Test

- (Exam Topic 1)
Which of the following is the customer responsible for updating and patching, according to the AWS shared responsibility model?

1. A. Amazon FSx for Windows File Server
2. B. Amazon Workspaces virtual Windows desktop
3. C. AWS Directory Service for Microsoft Active Directory
4. D. Amazon RDS for Microsoft SQL Server

Correct Answer: B

- (Exam Topic 1)
Which of the following describes some of the core functionality of Amazon S3?

1. A. Amazon S3 is a high-performance block storage service that is designed for use with Amazon EC2
2. B. Amazon S3 is an object storage service that provides high-level performance, security, scalability, and data availability.
3. C. Amazon S3 is a fully managed, highly reliable, and scalable file storage system that is accessible over the industry-standard SMB protocol.
4. D. Amazon S3 is a scalable, fully managed elastic NFS for use with AWS Cloud services and on-premises resources.

Correct Answer: B
Amazon S3 is object storage built to store and retrieve any amount of data from anywhere. It’s a simple storage service that offers industry leading durability, availability, performance, security, and virtually unlimited scalability at very low costs.

- (Exam Topic 1)
Which AWS service offers threat detection and continuously monitors for malicious activity and unauthorized behavior in AWS accounts?

1. A. Amazon Made
2. B. AWS Config
3. C. Amazon GuardDuty
4. D. Amazon Inspector

Correct Answer: C

- (Exam Topic 2)
Which AWS service provides managed DDoS protection?

1. A. AWS Firewall Manager
2. B. AWS Shield
3. C. Amazon GuardDuty
4. D. Amazon Inspector

Correct Answer: B

- (Exam Topic 2)
A company recently mutated to AWS and wants to enable intelligent threat protection and continuous monitoring across all of its AWS accounts.
Which AWS service should the company use lo achieve this goal?

1. A. Amazon Macie
2. B. Amazon GuardDuty
3. C. AWS Shield
4. D. Amazon Detective

Correct Answer: B