CV0-003 Free Practice Test

- (Topic 2)
A cloud administrator is responsible for managing a cloud-based content management solution. According to the security policy, any data that is hosted in the cloud must be protected against data exfiltration. Which of the following solutions should the administrator implement?

1. A. HIDS
2. B. FIM
3. C. DLP
4. D. WAF

Correct Answer: C
DLP (Data Loss Prevention) is what the administrator should implement to protect data against data exfiltration in a cloud-based content management solution. Data exfiltration is a process of transferring or stealing data from a system or network without authorization or permission. Data exfiltration can cause data breaches, leaks, or losses that may affect confidentiality, integrity, or availability of data. DLP is a tool or service that monitors and controls data movement and usage within a system or network. DLP can help to prevent data exfiltration by detecting and blocking any unauthorized or suspicious data
transfers or activities, as well as enforcing policies and rules for data classification, encryption, access, etc.

- (Topic 3)
A company is using a method of tests and upgrades in which a small set of end users are exposed to new services before the majority of other users. Which of the following deployment methods is being used?

1. A. Blue-green
2. B. Canary
3. C. Big bang
4. D. Rolling

Correct Answer: B
A canary deployment is a software deployment technique where a new feature or version is released to a small subset of users in production prior to releasing it to a larger subset or all the users. It is also sometimes termed a phased rollout or incremental release1. A canary deployment allows the developers to test the new service in a real environment and get feedback from the users before making it available to everyone. It also reduces the risk of failures and enables easy rollbacks if something goes wrong. A canary deployment is different from a blue-green deployment, where two identical environments are used to switch between the old and new versions of the service. A big bang deployment is where the new service is released to all the users at once, without any testing or gradual rollout. A rolling deployment is where the new service is installed in batches or stages, replacing the old service gradually until all the users are on the new version.

- (Topic 1)
A company has deployed a new cloud solution and is required to meet security compliance.
Which of the following will MOST likely be executed in the cloud solution to meet security requirements?

1. A. Performance testing
2. B. Regression testing
3. C. Vulnerability testing
4. D. Usability testing

Correct Answer: C
Vulnerability testing is a type of security testing that identifies and evaluates the weaknesses or flaws in a system or service that could be exploited by attackers. Vulnerability testing can help meet security compliance requirements when deploying a new cloud solution, as it can reveal any potential security risks or gaps in the cloud environment and provide recommendations for remediation or mitigation. Vulnerability testing can also help improve security posture and performance, as it can prevent or reduce the impact of cyberattacks, data breaches, or service disruptions.
References: CompTIA Cloud+ Certification Exam Objectives, page 14, section 2.7

- (Topic 3)
A cloud administrator has deployed several VM instances that are running the same applications on VDI nodes. Users are reporting that a role instance is looping between STARTED, INITIALIZING, BUSY, and stop. Upon investigation, the cloud administrator can see the status changing every few minutes. Which of the following should be done to resolve the issue?

1. A. Reboot the hypervisor.
2. B. Review the package and configuration file.
3. C. Configure service healing.
4. D. Disable memory swap.

Correct Answer: B
The best way to resolve the issue where a role instance is looping between STARTED, INITIALIZING, BUSY, and STOP after deploying several VM instances that are running the same applications on VDI nodes is to review the package and configuration file. The package and configuration file are the components that define the application and its settings for the VM instances. The package contains the application code, binaries, and dependencies, while the configuration file contains the parameters, values, and settings for the application. Reviewing these components can help identify and fix any errors or inconsistencies that may cause the role instance to loop or fail. Reference: CompTIA Cloud+ Certification Exam Objectives, Domain 4.0 Troubleshooting, Objective 4.4 Given a scenario, troubleshoot deployment issues.

- (Topic 1)
A cloud administrator is building a new VM for a network security appliance. The security appliance installer says the CPU clock speed does not meet the requirements.
Which of the following will MOST likely solve the issue?

1. A. Move the VM to a host with a faster CPU
2. B. Add more vCPUs to the VM
3. C. Enable CPU masking on the VM
4. D. Enable hyperthreading on the virtual host

Correct Answer: A
Moving the VM to a host with a faster CPU is the best way to solve the issue of the security appliance installer saying the CPU clock speed does not meet the requirements when building a new VM for a network security appliance. Moving the VM to a host with a faster CPU can ensure that the VM meets the minimum CPU clock speed requirement for the security appliance, as it can use the physical CPU resources of the host. Moving the VM to a host with a faster CPU can also improve the performance and reliability of the security appliance, as it can reduce latency, contention, and overhead.
References: CompTIA Cloud+ Certification Exam Objectives, page 11, section 1.6