CV0-003 Free Practice Test

- (Topic 3)
A systems administrator needs to implement a service to protect a web application from external attacks. The administrator must have session-based granular control of all HTTP traffic. Which of the following should the administrator configure?

1. A. IDS
2. B. WAF
3. C. DLP
4. D. NAC

Correct Answer: B
Reference: https://en.wikipedia.org/wiki/Web_application_firewall
A web application firewall (WAF) is a type of firewall that monitors and filters HTTP traffic to and from a web application. It can detect and block malicious requests, such as SQL injection, cross-site scripting, or denial-of-service attacks. It can also provide session-based granular control of HTTP traffic, such as allowing or denying access based on user identity, location, or behavior. Reference: CompTIA Cloud+ Certification Exam Objectives, Domain 2.0 Security, Objective 2.2 Given a scenario, implement appropriate network security controls for a cloud environment.

- (Topic 2)
Which of the following would be the BEST option for discussion of what individuals should do in an incident response or disaster recovery scenario?

1. A. A business continuity plan
2. B. Incident response/disaster recovery documentation
3. C. A tabletop exercise
4. D. A root cause analysis

Correct Answer: C
A tabletop exercise is the best option for discussion of what individuals should do in an incident response or disaster recovery scenario. A tabletop exercise is a simulated scenario that involves key stakeholders and decision-makers who review and discuss their roles and responsibilities in response to an emergency situation or event. A tabletop exercise can help to test and evaluate plans, procedures, policies, training, and communication.

- (Topic 1)
A systems administrator for an e-commerce company will be migrating the company’s main
website to a cloud provider. The principal requirement is that the website must be highly available.
Which of the following will BEST address this requirement?

1. A. Vertical scaling
2. B. A server cluster
3. C. Redundant switches
4. D. A next-generation firewall

Correct Answer: B
A server cluster is a group of servers that work together to provide high availability, load balancing, and scalability for applications or services. A server cluster can help ensure the high availability requirement for migrating an e-commerce company’s main website to a cloud provider, as it can prevent downtime or disruption in case of a server failure or outage by automatically switching the workload to another server in the cluster. A server cluster can also improve performance and reliability, as it can distribute the workload across multiple servers and handle increased traffic or demand. References: CompTIA Cloud+ Certification Exam Objectives, page 10, section 1.5

- (Topic 2)
A company is planning to migrate applications to a public cloud, and the Chief Information Officer (CIO) would like to know the cost per business unit for the applications in the cloud. Before the migration, which of the following should the administrator implement FIRST to assist with reporting the cost for each business unit?

1. A. An SLA report
2. B. Tagging
3. C. Quotas
4. D. Showback

Correct Answer: B
Tagging is what the administrator should implement first to assist with reporting the cost for each business unit for applications in a public cloud environment. Tagging is a technique that allows customers to assign metadata or labels to their cloud resources, such as applications, instances, volumes, etc., based on their attributes or criteria. Tagging can help customers to organize, manage, monitor, and report their cloud resources and costs by business unit, project, owner, environment, etc.

- (Topic 4)
A cloud engineer recently used a deployment script template to implement changes on a cloud-hosted web application. The web application communicates with a managed database on the back end. The engineer later notices the web application is no longer receiving data from the managed database. Which of the following is the most likely cause of the issue?

1. A. Misconfiguration in the user permissions
2. B. Misconfiguration in the routing traffic
3. C. Misconfiguration in the network ACL
4. D. Misconfiguration in the firewall

Correct Answer: D
A misconfiguration in the firewall is the most likely cause of the issue. A firewall is a security device or service that controls the incoming and outgoing network traffic based on predefined rules. A firewall can help protect the cloud-hosted web application and the managed database from unauthorized or malicious access. However, if the firewall rules are not configured properly, they can also block the legitimate communication between the web application and the database. For example, if the firewall rules deny the port or protocol that the web application uses to connect to the database, the web application will not be able to receive data from the database. To fix this issue, the cloud engineer should review and update the firewall rules to allow the necessary traffic between the web application and the database. References: CompTIA Cloud+ CV0-003 Certification Study Guide, Chapter 9, Objective 9.2: Given a scenario, troubleshoot common security issues.