QUESTION 101
A cloud administrator shortens the amount of time a backup runs. An executive in the company requires a guarantee that the backups can be restored with no data loss. Which of the following backup features should the administrator test for?
A. Encryption
B. Retention
C. Schedule
D. Integrity
Correct Answer: D
QUESTION 102
A group of cloud administrators frequently uses the same deployment template to recreate a cloud-based development environment. The administrators are unable to go back and review the history of changes they have made to the template. Which of the following cloud resource deployment concepts should the administrator start using?
A. Drift detection
B. Repeatability
C. Documentation
D. Versioning
Correct Answer: D
QUESTION 103
A cloud engineer needs to integrate a new payment processor with an existing e-commerce website. Which of the following technologies is the best fit for this integration?
A. RPC over SSL
B. Transactional SQL
C. REST API over HTTPS
D. Secure web socket
Correct Answer: C
QUESTION 104
Users report being unable to access an application that uses TLS 1.1. The users are able to access other applications on the internet Which of the following is the most likely reason for this issue?
A. The security team modified user permissions.
B. Changes were made to address vulnerabilities.
C. Privileged access was implemented.
D. The network ACL was modified.
Correct Answer: B
QUESTION 105
Which of the following migration types is best to use when migrating a highly available application, which is normally hosted on a local VM cluster, for usage with an external user population?
A. Cloud to on-premises
B. Cloud to cloud
C. On-premises to cloud
D. On-premises to on-premises
Correct Answer: C
QUESTION 106
An engineer made a change to an application and needs to select a deployment strategy that meets the following requirements:
1. ls simple and fast
2. Can be performed on two identical platforms
Which of the following strategies should the engineer use?
A. Blue-green
B. Canary
C. Rolling
D. In-place
Correct Answer: A
QUESTION 107
A cloud solutions architect needs to have consistency between production, staging, and development environments. Which of the following options will best achieve this goal?
A. Using Terraform templates with environment variables
B. Using Grafana in each environment
C. Using the ELK stack in each environment
D. Using Jenkins agents in different environments
Correct Answer: A
QUESTION 108
Once a change has been made to templates, which of the following commands should a cloud architect use next to deploy an IaaS platform?
A. git pull
B. git fetch
C. git commit
D. git push
Correct Answer: D
QUESTION 109
A cloud deployment uses three different VPCs. The subnets on each VPC need to communicate with the others over private channels. Which of the following will achieve this objective?
A. Deploying a load balancer to send traffic to the private IP addresses
B. Creating peering connections between all VPCs
C. Adding BGP routes using the VPCs’ private IP addresses
D. Establishing identical routing tables on all VPCs
Correct Answer: B
QUESTION 110
Which of the following describes the main difference between public and private container repositories?
A. Private container repository access requires authorization, while public repository access does not require authorization.
B. Private container repositories are hidden by default and containers must be directly referenced, while public container repositories allow browsing of container image.
C. Private container repositories must use proprietary licenses, while public container repositories must have open-source licenses.
D. Private container repositories are used to obfuscate the content of the Dockerile, while public container repositories allow for Dockerile inspection.
Correct Answer: A
QUESTION 111
A cloud infrastructure administrator updated the IP tables to block incoming connections and outgoing responses to 104.225.110.203. Which of the following vulnerability management steps is this an example of?
A. Scanning scope
B. Remediation
C. Identification
D. Assessment
Correct Answer: B
QUESTION 112
A company uses containers to implement a web application. The development team completed internal testing of a new feature and is ready to move the feature to the production environment. Which of the following deployment models would best meet the company’s needs while minimizing cost and targeting a specific subset of its users?
A. Canary
B. Blue-green
C. Rolling
D. In-place
Correct Answer: A
QUESTION 113
A company’s content management system (CMS) service runs on an IaaS cluster on a public cloud. The CMS service is frequently targeted by a malicious threat actor using DDoS. Which of the following should a cloud engineer monitor to identify attacks?
A. Network flow logs
B. Endpoint detection and response logs
C. Cloud provider event logs
D. Instance syslog
Correct Answer: A
QUESTION 114
Which of the following is a field of computer science that enables computers to identify and understand objects and people in images and videos?
A. Image reconstruction
B. Facial recognition
C. Natural language processing
D. Computer vision
Correct Answer: D
QUESTION 115
Users report that in-house developed software has performance issues and behaves in unexpected ways following a recent update. The developers investigate and find buffer overflows and broken authentications. Which of the following best describes what caused this issue?
A. Leaked credentials
B. Poor coding practices
C. Cipher suite depreciation
D. Incompatible hardware
Correct Answer: B
QUESTION 116
A cloud engineer is troubleshooting intranet access for several VPN users who are having issues accessing the URL When the engineer sends a ping command from the users’ machines, an error message states that the host cannot be reached. The engineer can ping the intranet site from an internal computer. Which of the following best explains the reason the users cannot access the intranet?
A. Too much traffic is on the network.
B. DNS is misconfigured on the VPN server.
C. Split tunneling is enabled on the affected computers.
D. DHCP is not assigning the correct DNS server to every machine.
Correct Answer: C
QUESTION 117
A company just learned that the data in its object storage was accessed by an unauthorized party. Which of the following should the company have done to make the data unusable?
A. The company should have switched from object storage to file storage.
B. The company should have hashed the data.
C. The company should have changed the file access permissions.
D. The company should have encrypted the data at rest.
Correct Answer: D
QUESTION 118
An administrator used a script that worked in the past to create and tag five virtual machines. All of the virtual machines have been created; however, the administrator sees the following results:
[ tags: [}
Which of the following is the most likely reason for this result?
A. API throttling
B. Service quotas
C. Command deprecation
D. Compatibility issues
Correct Answer: C
QUESTION 119
A company operates a website that allows customers to upload, share, and retain full ownership of their photographs. Which of the following could affect image ownership as the website usage expands globally?
A. Sovereignty
B. Data classification
C. Litigation holds
D. Retention
Correct Answer: A
QUESTION 120
Department supervisors have requested a report that will help them understand the utilization of cloud resources, make decisions about budgeting for the following year, and reduce costs. Which of the following are the most important requisite steps to create the report? (Select two).
A. Set the desired retention of resource logs.
B. Configure application tracing.
C. Integrate email alerts with ticketing software.
D. Enable resource tagging.
E. Configure the collection of performance/utilization logs.
F. Configure metric threshold alerts.
Correct Answer: DE
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.