CCNA Clp Operations Support Questions

65 of 140 questions · Page 2/2 · Clp Operations Support topic · Answers revealed

76
MCQhard

A cloud engineer is configuring an auto-scaling policy for a batch processing application that takes about 10 minutes to initialize before it can start processing jobs. To avoid premature termination of instances that have just started, what should the engineer configure?

A.Disable scale-in for the first 10 minutes using a scheduled action
B.Use a lifecycle hook to put the instance in a 'wait' state until initialization is complete
C.Set the health check grace period to 600 seconds
D.Increase the cooldown period to 600 seconds
AnswerB

Lifecycle hooks allow you to perform custom actions and control the instance's lifecycle, preventing early termination.

Why this answer

A lifecycle hook can put instances in a pending state until they complete initialization. Cooldown periods prevent scaling actions but do not prevent termination of new instances.

77
Multi-Selectmedium

A cloud engineer is designing a patching strategy for a fleet of Windows servers running in AWS. The engineer needs to automate patching, define a maintenance window, and have the ability to roll back patches if issues occur. Which two AWS services or features should be used to meet these requirements? (Choose TWO.)

Select 2 answers
A.AWS Systems Manager Patch Manager
B.AWS Backup
C.AWS Systems Manager Maintenance Windows
D.AWS CloudFormation
E.AWS Config
AnswersA, C

Patch Manager automates patching.

Why this answer

AWS Systems Manager Patch Manager provides automated patching, and maintenance windows define schedules. Rollback can be handled via creating snapshots before patching (not a service but a feature). The correct two are Patch Manager and Maintenance Windows.

78
MCQeasy

A cloud engineer wants to receive real-time notifications when a CloudWatch Alarm enters the ALARM state. Which notification channel can be configured directly within the CloudWatch Alarm action?

A.PagerDuty
B.AWS Chatbot
C.Amazon Simple Notification Service (SNS)
D.Slack webhook
AnswerC

CloudWatch Alarms can directly notify an SNS topic.

Why this answer

CloudWatch Alarms can directly send notifications to an SNS topic, which can then deliver to email, SMS, etc.

79
MCQeasy

A cloud administrator wants to be notified immediately via email when a critical alert is triggered. Which notification channel should they configure?

A.Email
B.AWS Config
C.Amazon SNS
D.AWS CloudTrail
AnswerA

Email is a direct notification channel.

Why this answer

Email is a typical notification channel for alerts.

80
MCQmedium

A company's disaster recovery plan requires them to restore a database to a specific point in time. Which backup strategy should they use?

A.Continuous replication for DR
B.Cross-region replication
C.Full daily backup
D.Snapshot-based backup
AnswerA

Continuous replication allows recovery to any point in time.

Why this answer

Continuous replication enables point-in-time recovery by maintaining ongoing changes.

81
MCQeasy

A cloud administrator needs to view the console output of a VM that failed to boot. Which feature should they use to access the boot logs?

A.CloudWatch Logs agent
B.Console output / serial console
C.VM screenshot
D.System log from the hypervisor
AnswerB

Console output provides the boot log from the virtual machine.

Why this answer

Cloud providers offer console output or serial console access to view boot logs. Screenshots are also available but console output is the direct log. CloudWatch Logs might capture logs if the OS sends them, but for boot issues, console output is the native method.

82
MCQeasy

A company wants to centralize logs from multiple AWS services and analyze them using SQL-like queries. Which service should they use?

A.AWS CloudTrail
B.Amazon S3
C.Amazon CloudWatch Logs Insights
D.AWS Config
AnswerC

CloudWatch Logs Insights enables interactive querying of log data using a purpose-built query language.

Why this answer

Amazon CloudWatch Logs Insights allows querying log data using a SQL-like query language. CloudWatch Logs is the centralized log management service in AWS.

83
MCQeasy

A cloud administrator needs to ensure that log data is retained for one year to meet compliance requirements. Which action should be taken for the log group in CloudWatch Logs?

A.Set the log group's retention policy to 365 days
B.Create a CloudWatch Events rule to delete logs after one year
C.Increase the log group's data durability by enabling encryption
D.Export logs to Amazon S3 and delete the log group
AnswerA

This automatically deletes logs older than 365 days, meeting compliance.

Why this answer

CloudWatch Logs allows setting a retention policy on log groups to automatically expire log events after a specified number of days. Setting it to 365 days meets the one-year requirement.

84
Multi-Selectmedium

A cloud administrator is investigating a sudden increase in cost for a production environment. The administrator wants to identify the sources of the cost increase and implement a tagging strategy for cost allocation. Which TWO actions should the administrator take? (Choose two.)

Select 2 answers
A.Implement a rightsizing recommendation report.
B.Use the cloud provider's cost explorer to analyze cost drivers.
C.Enable detailed billing reports with resource tags.
D.Purchase Reserved Instances for all resources.
E.Create a budget alert for the total monthly cost.
AnswersB, C

Cost explorer helps identify which services or resources are driving costs.

Why this answer

To identify cost sources and improve allocation, the administrator should use the cloud provider's cost explorer (e.g., AWS Cost Explorer) to analyze usage and costs, and implement a tagging strategy with environment and project tags for granular cost attribution.

85
MCQeasy

A company wants to be notified when their monthly AWS spending exceeds $10,000. Which AWS service should they use to set up this alert?

A.AWS Trusted Advisor
B.AWS Budgets
C.AWS Cost Explorer
D.AWS CloudWatch Alarms
AnswerB

Budgets can send alerts when costs exceed a threshold.

Why this answer

AWS Budgets allows setting cost budget thresholds and sending alerts via email or SNS when spending exceeds the limit.

86
MCQhard

A cloud administrator notices that an auto-scaling group is frequently adding and removing instances due to brief spikes in CPU usage. What should be adjusted to stabilize the scaling activity?

A.Increase the cooldown period
B.Increase the maximum instance count
C.Decrease the minimum instance count
D.Decrease the cooldown period
AnswerA

A longer cooldown allows metrics to stabilize before further scaling.

Why this answer

Increasing the cooldown period or adjusting the evaluation period can prevent flapping.

87
MCQmedium

A cloud engineer is setting up automated patching for Linux instances in AWS. They need to define a maintenance window during which patches are applied. Which service should they use?

A.AWS Config
B.AWS OpsWorks
C.AWS Systems Manager Patch Manager
D.Amazon Inspector
AnswerC

Patch Manager automates patching with schedules.

Why this answer

AWS Systems Manager Patch Manager provides automated patching with maintenance windows.

88
MCQmedium

A cloud administrator notices that an Auto Scaling group is launching and terminating instances too frequently, causing instability. What should the administrator adjust to reduce this flapping behavior?

A.Disable the cooldown period
B.Decrease the cooldown period
C.Increase the scale-out threshold
D.Increase the cooldown period
AnswerD

A longer cooldown prevents rapid scaling actions.

Why this answer

Increasing the cooldown period gives instances time to stabilize before additional scaling actions, reducing flapping.

89
MCQhard

A company uses GCP and wants to ensure that log entries from Compute Engine instances are automatically exported to BigQuery for analysis. The logs must include structured JSON data. Which GCP service should be configured to route logs?

A.Cloud Audit Logs
B.Cloud Functions
C.Cloud Monitoring
D.Cloud Logging using sinks
AnswerD

Sinks export logs to destinations like BigQuery.

Why this answer

Cloud Logging can route logs to BigQuery using sinks. It accepts structured logs in JSON format.

90
MCQhard

A cloud engineer is troubleshooting a performance issue in a multi-tier application on AWS. The web tier shows high latency, but the application logs indicate no errors. The engineer wants to trace a request end-to-end across services. Which AWS service should be used?

A.VPC Flow Logs
B.Amazon CloudWatch Logs
C.AWS CloudTrail
D.AWS X-Ray
AnswerD

X-Ray provides end-to-end tracing to analyze and debug distributed applications.

Why this answer

AWS X-Ray provides distributed tracing, allowing you to trace requests as they travel through your application and identify performance bottlenecks.

91
MCQmedium

A cloud administrator notices that an application's latency has increased. The application is distributed across multiple microservices. Which tool can help trace requests across services to identify the bottleneck?

A.AWS CloudWatch Logs
B.Amazon Inspector
C.AWS X-Ray
D.AWS CloudTrail
AnswerC

X-Ray traces requests across services to identify latency sources.

Why this answer

AWS X-Ray provides end-to-end tracing of requests as they travel through your application, helping to pinpoint performance issues and errors.

92
MCQhard

During a disaster recovery drill, a cloud engineer discovers that the RTO for a critical application is not being met. The application runs on EC2 instances with data in EBS volumes. Which change would most likely improve the RTO?

A.Increase the frequency of EBS snapshots from daily to hourly
B.Enable cross-region replication for the EBS snapshots
C.Configure scheduled scaling to pre-warm instances in the recovery region
D.Increase the EC2 instance size in the recovery region
AnswerB

Having snapshots already in the recovery region eliminates the time needed to copy them during recovery.

Why this answer

Cross-region replication of EBS snapshots reduces the time to have data available in the recovery region. Changing replication frequency doesn't affect recovery time if snapshots are not pre-replicated. Using larger instances may not help if data transfer is the bottleneck.

Scheduled scaling is unrelated to DR recovery.

93
Multi-Selecthard

A company uses Azure VMs and wants to automate patching with minimal downtime. The application is stateless and can tolerate instance restarts. The patch schedule must ensure that at least 2 instances remain available during the update. Which THREE actions should the administrator take? (Select THREE.)

Select 3 answers
A.Enable auto-scaling for the VM scale set
B.Use Azure Update Management to schedule patch deployments
C.Configure a maintenance window in the patch schedule
D.Create a custom script extension to apply patches
E.Place the VMs in an availability set
AnswersB, C, E

Update Management enables automated patching with scheduling.

Why this answer

Using an availability set ensures VMs are distributed across update domains, allowing rolling updates. Azure Update Management can schedule patches. Configuring a maintenance window is essential for controlling when patches are applied.

94
MCQmedium

A company uses Azure and wants to set up an alert that triggers when the average CPU of a virtual machine exceeds 90% for the past 15 minutes. The alert should send an email to the operations team. Which Azure resources are needed?

A.Azure Log Analytics and Logic App
B.Azure Monitor metric alert and action group with email
C.Azure Advisor recommendation
D.Azure Service Health alert
AnswerB

Metric alert evaluates CPU and action group sends email.

Why this answer

Azure Monitor alerts evaluate metrics and trigger actions like sending emails via action groups.

95
MCQmedium

A company wants to reduce costs by identifying underutilized EC2 instances. Which tool should they use to get rightsizing recommendations?

A.AWS Cost Explorer
B.AWS Trusted Advisor
C.AWS Compute Optimizer
D.AWS Budgets
AnswerC

Compute Optimizer gives rightsizing recommendations.

Why this answer

AWS Compute Optimizer analyzes instance usage and recommends optimal sizes.

96
MCQmedium

A cloud administrator needs to apply security patches to a group of Windows servers running in AWS. The patches should be applied during a maintenance window to minimize disruption. Which AWS service should be used?

A.Amazon Inspector
B.AWS Config
C.AWS OpsWorks
D.AWS Systems Manager Patch Manager
AnswerD

Patch Manager is designed for automated patching with maintenance windows.

Why this answer

AWS Systems Manager Patch Manager automates the process of patching managed instances with maintenance windows and approval rules.

97
MCQhard

A cloud architect is designing a disaster recovery plan for a critical application that requires an RPO of 15 minutes and an RTO of 1 hour. The application runs on GCP Compute Engine with persistent disks. Which backup strategy best meets these requirements?

A.Use gcloud compute instances move to move instances to another region
B.Use persistent disk synchronous replication to another zone
C.Schedule daily snapshots to a different region
D.Schedule snapshots every 15 minutes and store in a different region
AnswerD

Frequent snapshots achieve RPO of 15 minutes; cross-region storage supports DR.

Why this answer

Snapshot schedules can be as frequent as every 10 minutes, and snapshots can be restored quickly, meeting the RPO and RTO.

98
Multi-Selectmedium

A cloud operations team needs to automate patching of Linux servers. Which TWO services can be used? (Choose TWO)

Select 2 answers
A.Azure Update Management
B.AWS Systems Manager Patch Manager
C.AWS CloudTrail
D.AWS CloudFormation
E.AWS Config
AnswersA, B

Supports automated patching of Linux VMs.

Why this answer

AWS Systems Manager Patch Manager and Azure Update Management both support automated patching.

99
MCQhard

A company wants to implement a disaster recovery strategy with an RTO of 15 minutes and an RPO of 1 minute for a critical database. Which approach should be used?

A.Scheduled snapshots every hour
B.Daily snapshots copied to another region
C.Weekly full backups to tape stored offsite
D.Cross-region continuous replication with automatic failover
AnswerD

Continuous replication meets both RTO and RPO requirements.

Why this answer

Continuous replication with automatic failover provides near-zero RPO and fast RTO.

100
Multi-Selectmedium

A cloud administrator is configuring a notification channel for critical alerts. Which TWO of the following are commonly used notification channels in cloud monitoring systems? (Select TWO.)

Select 2 answers
A.Amazon CloudWatch Logs
B.Amazon Simple Notification Service (SNS)
C.Slack webhooks
D.AWS Organizations
E.AWS CloudTrail
AnswersB, C

SNS is a notification channel that can distribute messages to subscribers via email, SMS, etc.

Why this answer

Common notification channels include email (SMTP) and integration services like Slack webhooks. SNS is an AWS notification service that can send to email or other endpoints, but PagerDuty is also a common integration.

101
Multi-Selecthard

A company is performing a disaster recovery test for a critical application. The test reveals that the application's RTO of 1 hour is not being met due to slow database restoration. Which THREE actions could help improve the restoration time? (Select THREE.)

Select 3 answers
A.Implement continuous replication to a standby database
B.Pre-warm standby database instances in the recovery region
C.Disable encryption on the database to reduce overhead
D.Increase the retention period of automated backups
E.Use provisioned IOPS storage for the database volumes
AnswersA, B, E

Continuous replication keeps the standby database nearly in sync, reducing recovery time.

Why this answer

Pre-warming standby instances reduces launch time, using faster storage like Provisioned IOPS speeds up data access, and implementing continuous replication reduces the amount of data to restore.

102
MCQhard

A company wants to implement automated patching for their Windows and Linux servers in AWS. They need to schedule patching during a maintenance window and have a rollback plan. Which service should they use?

A.AWS OpsWorks
B.AWS Config
C.AWS Systems Manager Patch Manager
D.Amazon Inspector
AnswerC

Patch Manager automates patching with maintenance windows and rollback via AMI backups.

Why this answer

AWS Systems Manager Patch Manager automates patching with maintenance windows and allows creation of patching baselines. It also supports rollback by restoring from AMIs or using AWS Backup. Inspector is for vulnerability scanning, not patching.

Config is for compliance. OpsWorks is configuration management.

103
MCQmedium

A cloud engineer notices that an auto-scaling group is adding and removing instances too frequently, causing instability. Which configuration parameter should be adjusted to reduce this behavior?

A.Increase the health check grace period
B.Disable lifecycle hooks
C.Increase the cooldown period
D.Lower the scaling metric thresholds
AnswerC

A longer cooldown prevents rapid successive scaling actions.

Why this answer

Cooldown periods prevent auto-scaling from launching or terminating instances too rapidly after a scaling activity. Scaling thresholds affect when scaling triggers, but the issue is frequency. Lifecycle hooks are for custom actions during scaling events.

Health check grace period is for initial instance health.

104
MCQmedium

A company wants to implement a tagging strategy for their cloud resources to track costs by department and project. Tags must be applied to resources such as virtual machines and storage buckets. Which of the following is a best practice for cost attribution using tags?

A.Apply tags to resources only after creation to avoid governance issues.
B.Define a set of mandatory tag keys such as CostCenter, Project, and Environment with standardized values.
C.Use a single tag key 'Environment' with values 'Production' or 'Development'.
D.Use free-form text for tag values to allow flexibility.
AnswerB

Mandatory tags with controlled values ensure consistent cost attribution across all resources.

Why this answer

Using a consistent tagging strategy with key-value pairs (e.g., Department:Finance, Project:Alpha) allows cost allocation and reporting in billing dashboards.

105
MCQmedium

A cloud operations team wants to be notified when the average CPU utilization of an auto-scaling group exceeds 80% for 5 consecutive minutes. They also want to avoid notification storms. Which alerting configuration should they use?

A.Step scaling policy triggered by a CloudWatch Alarm with a threshold of 80% for 5 evaluation periods
B.Simple scaling policy with a cooldown period
C.Scheduled scaling action to increase capacity at peak times
D.Anomaly detection based on a band model with a sensitivity of 2
AnswerA

This setup alerts when CPU > 80% for 5 consecutive minutes, reducing false alarms.

Why this answer

CloudWatch Alarms can be set with a threshold and evaluation periods. Using 5 consecutive periods of 1 minute each with a static threshold of 80% ensures the condition persists before alerting, reducing noise.

106
MCQmedium

A cloud engineer is configuring a dashboard to monitor costs across multiple projects. The company uses tags to track costs by project, environment, and team. Which AWS tool allows the engineer to create custom cost and usage reports filtered by tags?

A.AWS Trusted Advisor
B.AWS Cost Explorer
C.AWS Budgets
D.AWS Billing Conductor
AnswerB

Cost Explorer provides customizable cost reports with tag filtering.

Why this answer

AWS Cost Explorer allows filtering by tags and creating custom reports for cost analysis.

107
MCQmedium

A cloud architect is designing an auto-scaling policy for a web application. The application's traffic spikes predictably every weekday at 9 AM and decreases after 5 PM. Which scaling policy is most cost-effective?

A.Step scaling policy that adds instances when CPU > 70%
B.Simple scaling policy with a cooldown of 300 seconds
C.Scheduled scaling policy that increases capacity at 8:45 AM and decreases at 5:15 PM
D.Target tracking policy with a target CPU of 50%
AnswerC

Scheduled scaling aligns capacity with predictable traffic patterns, optimizing cost.

Why this answer

Scheduled scaling can add capacity before 9 AM and remove it after 5 PM, aligning capacity with predictable patterns without reacting to real-time metrics.

108
Multi-Selectmedium

A cloud operations team is setting up log-based alerting for security events. They want to use structured logging to facilitate querying. Which TWO practices support effective log-based alerting? (Choose TWO.)

Select 2 answers
A.Enable verbose logging for all services
B.Centralize logs in a log management system
C.Use random log formats for different applications
D.Send all logs to syslog servers
E.Output logs in JSON format
AnswersB, E

Centralization allows correlation and alerting across all sources.

Why this answer

Structured logging (JSON) makes logs machine-parseable and easier to query. Using a centralized logging platform enables search and alerting across all logs. Verbose logging generates noise.

Random log formats hinder querying. Syslog is not structured.

109
MCQeasy

A cloud administrator wants to troubleshoot network connectivity issues between two VPCs. Which AWS feature provides detailed logs of IP traffic for analysis?

A.AWS CloudTrail
B.VPC Route Tables
C.AWS CloudWatch Logs
D.VPC Flow Logs
AnswerD

VPC Flow Logs capture metadata of network traffic for troubleshooting.

Why this answer

VPC Flow Logs capture information about IP traffic going to and from network interfaces in a VPC. CloudTrail logs API calls. CloudWatch Logs is for application logs.

Route Tables define routing rules but don't log traffic.

110
MCQmedium

A company wants to optimize cloud costs by identifying underutilized EC2 instances. Which AWS service provides rightsizing recommendations?

A.AWS Trusted Advisor
B.AWS Cost Explorer
C.AWS Budgets
D.AWS Compute Optimizer
AnswerD

Compute Optimizer provides rightsizing recommendations based on utilization.

Why this answer

AWS Compute Optimizer analyzes resource utilization and provides recommendations to reduce cost and improve performance. AWS Cost Explorer is for cost visualization. AWS Trusted Advisor provides general best practice checks but not specific rightsizing.

AWS Budgets is for budget alerts.

111
MCQmedium

A cloud administrator needs to apply security patches to a fleet of 50 Linux servers running on AWS without interrupting business hours. Which approach should the administrator use to schedule patching during a maintenance window?

A.Use AWS Systems Manager Patch Manager with a maintenance window
B.Create a Lambda function that stops instances, patches them, and restarts
C.Manually SSH into each server and run yum update
D.Use AWS Config to apply patch baselines
AnswerA

Patch Manager automates patching and respects maintenance windows.

Why this answer

AWS Systems Manager Patch Manager allows defining maintenance windows for automated patching, minimizing disruption.

112
MCQmedium

A company uses AWS and wants to optimize costs by receiving recommendations to downsize over-provisioned EC2 instances. Which tool provides rightsizing recommendations?

A.AWS Budgets
B.AWS Trusted Advisor
C.AWS Cost Explorer
D.AWS Compute Optimizer
AnswerD

Compute Optimizer uses machine learning to recommend optimal instance types based on utilization.

Why this answer

AWS Compute Optimizer analyzes instance configurations and utilization to provide rightsizing recommendations, helping reduce costs by downsizing underutilized instances.

113
MCQeasy

A cloud engineer needs to troubleshoot network connectivity issues between two subnets. Which feature can help capture and analyze network traffic metadata?

A.Amazon Inspector
B.AWS Config
C.VPC Flow Logs
D.AWS CloudTrail
AnswerC

Flow Logs capture information about IP traffic going to and from network interfaces.

Why this answer

VPC Flow Logs capture IP traffic metadata for analysis.

114
MCQmedium

A systems administrator notices that an application is slow to respond. They want to analyze the latency of individual requests across microservices. Which tool should they use?

A.AWS X-Ray
B.CloudWatch Logs
C.VPC Flow Logs
D.AWS CloudTrail
AnswerA

X-Ray provides end-to-end tracing for request latency.

Why this answer

Distributed tracing tools like AWS X-Ray help identify latency across services.

115
MCQhard

A cloud engineer is configuring an auto-scaling group with a lifecycle hook to run a custom script when instances are launched. The script installs software and registers the instance with a load balancer. The engineer wants to ensure the instance does not receive traffic until the script completes successfully. What should the engineer do?

A.Set the lifecycle hook to 'terminating:wait' to delay termination.
B.Use a lifecycle hook with a 'pending:wait' state and then send a 'complete-lifecycle-action' signal after the script succeeds.
C.Configure the load balancer health check to fail until the script runs.
D.Configure the launch configuration with a user-data script that runs after the instance is in service.
AnswerB

This pauses the instance in a pending state until the custom action completes, preventing traffic until ready.

Why this answer

Lifecycle hooks pause the instance launch process until you complete an action and notify the auto-scaling group to continue. By setting the hook to 'pending:wait', the instance remains in a pending state and does not become healthy until you send a 'complete-lifecycle-action' signal.

116
MCQmedium

A company uses a multi-cloud environment with AWS and Azure. They want to centralize log collection and enable advanced querying for troubleshooting. Which combination of services should they use?

A.AWS CloudTrail and Azure Monitor
B.AWS CloudWatch Logs and Azure Log Analytics
C.AWS S3 and Azure Blob Storage
D.AWS CloudWatch and Azure Application Insights
AnswerB

CloudWatch Logs collects logs from AWS resources; Azure Log Analytics does the same for Azure resources.

Why this answer

AWS CloudWatch Logs and Azure Log Analytics are the centralized logging services for each cloud. They can be aggregated using third-party tools, but the question asks for the native services to use. CloudWatch Logs for AWS, Log Analytics for Azure.

CloudTrail is for API auditing, not general log collection.

117
MCQmedium

A company is using Azure VMs and wants to centralize logs from multiple applications for security analysis. The logs must be retained for 2 years. Which Azure service should they use?

A.Azure Activity Log
B.Azure Application Insights
C.Azure Log Analytics
D.Azure Storage Analytics
AnswerC

Log Analytics centralizes logs and supports long retention.

Why this answer

Azure Log Analytics (now part of Azure Monitor) provides centralized log management and configurable retention up to 2 years (or more with archive).

118
Multi-Selectmedium

A cloud administrator wants to choose an auto-scaling policy that can respond to changing demand patterns. Which TWO policy types support dynamic adjustments based on real-time metrics? (Choose TWO)

Select 2 answers
A.Predictive scaling
B.Target tracking scaling
C.Step scaling
D.Scheduled scaling
E.Simple scaling
AnswersB, C

Target tracking maintains a target metric value.

Why this answer

Target tracking and step scaling both adjust capacity dynamically based on real-time metrics.

119
MCQmedium

A cloud administrator needs to centralize logs from multiple AWS services, including VPC flow logs and application logs, to enable searching and querying. Which solution should be used?

A.AWS CloudTrail
B.Amazon S3 with Athena
C.AWS Config
D.Amazon CloudWatch Logs
AnswerD

CloudWatch Logs centralizes logs and supports querying with Logs Insights.

Why this answer

CloudWatch Logs is the central log service that can collect logs from various sources and allow querying with Logs Insights.

120
MCQmedium

A cloud engineer is troubleshooting a network connectivity issue between two VPCs in AWS. To analyze traffic patterns and identify dropped packets, which feature should be enabled?

A.VPC Flow Logs
B.AWS CloudTrail
C.Amazon Inspector
D.AWS X-Ray
AnswerA

Flow Logs capture network traffic metadata for troubleshooting.

Why this answer

VPC Flow Logs capture information about IP traffic going to and from network interfaces in a VPC, useful for troubleshooting connectivity and security issues.

121
MCQeasy

A cloud administrator is tasked with monitoring CPU utilization across a fleet of EC2 instances. Which AWS service should be used to collect and visualize this metric?

A.Amazon CloudWatch
B.AWS CloudTrail
C.AWS Config
D.AWS Trusted Advisor
AnswerA

CloudWatch collects and visualizes metrics from AWS resources.

Why this answer

Amazon CloudWatch is the native AWS monitoring service that collects and visualizes metrics such as CPU utilization.

122
MCQeasy

A company wants to track cloud spending by department and project. Which strategy should be implemented to enable cost attribution?

A.Use a single account for all workloads
B.Enable detailed billing reports
C.Implement a resource tagging strategy
D.Use AWS Organizations only
AnswerC

Tags like 'Department' and 'Project' enable cost allocation.

Why this answer

Resource tagging allows filtering and grouping costs by tags like department or project.

123
Multi-Selectmedium

A cloud administrator is setting up auto-scaling for a web application that uses an SQS queue for incoming requests. The administrator wants to scale the number of EC2 instances based on the queue depth. Which two metrics are appropriate for this auto-scaling policy? (Choose TWO.)

Select 2 answers
A.CPU utilization of instances
B.ApproximateNumberOfMessagesVisible (queue depth)
C.Memory utilization of instances
D.Network throughput
E.BacklogPerInstance (queue depth per instance)
AnswersB, E

This is the direct metric for the number of messages in the queue.

Why this answer

SQS queue depth (ApproximateNumberOfMessagesVisible) is a common metric. CPU utilization of instances is also relevant but not directly queue-related. The correct ones are ApproximateNumberOfMessagesVisible and BacklogPerInstance (which combines queue depth and instance count).

124
Multi-Selecthard

A company is experiencing intermittent performance issues in a microservices application. Which TWO tools can help diagnose latency problems through distributed tracing? (Choose TWO)

Select 2 answers
A.AWS CloudWatch Logs
B.Azure Monitor
C.Azure Application Insights
D.AWS CloudTrail
E.AWS X-Ray
AnswersC, E

Application Insights provides distributed tracing.

Why this answer

AWS X-Ray and Azure Application Insights provide distributed tracing capabilities.

125
MCQmedium

A cloud engineer is troubleshooting a web application that is experiencing slow response times. The engineer suspects a network bottleneck. Which tool should be used to analyze network traffic patterns and identify dropped packets?

A.AWS X-Ray
B.Amazon CloudWatch Logs
C.VPC Flow Logs
D.AWS CloudTrail
AnswerC

VPC Flow Logs capture network traffic metadata and can show dropped packets.

Why this answer

VPC Flow Logs capture information about IP traffic going to and from network interfaces in a VPC and can be used to analyze traffic patterns and identify issues like dropped packets.

126
MCQmedium

A cloud administrator needs to detect unusual spikes in CPU usage across a fleet of EC2 instances. Which AWS service should be used to create an alarm that triggers when CPU utilization exceeds an expected baseline?

A.AWS Config
B.AWS CloudTrail
C.AWS CloudWatch Alarms with anomaly detection
D.AWS Systems Manager
AnswerC

CloudWatch Alarms can use anomaly detection to trigger on deviations from expected baselines.

Why this answer

CloudWatch Alarms can use anomaly detection to automatically detect unusual patterns based on historical data.

127
MCQeasy

A cloud engineer wants to view a dashboard showing cost breakdown by department. Which tool provides pre-built billing dashboards?

A.AWS CloudWatch
B.AWS Cost Explorer
C.AWS Trusted Advisor
D.AWS Config
AnswerB

Cost Explorer provides cost visualization dashboards.

Why this answer

AWS Cost Explorer provides pre-built dashboards for cost analysis.

128
Multi-Selecthard

A company uses AWS and wants to implement a structured logging format to simplify querying and analysis of application logs. Which three best practices should be followed when implementing structured logging? (Choose THREE.)

Select 3 answers
A.Write logs in plain text to reduce storage costs
B.Include a unique request ID for each transaction
C.Use consistent key names across all services
D.Use JSON format for log entries
E.Embed binary data in log messages for performance
AnswersB, C, D

Request IDs allow tracing of individual transactions across services.

Why this answer

Structured logging typically uses JSON format, includes unique identifiers for tracing, and uses consistent key names for easy querying.

129
MCQeasy

A company wants to reduce cloud costs by identifying underutilized EC2 instances. Which AWS service provides rightsizing recommendations?

A.AWS Budgets
B.AWS Trusted Advisor
C.AWS Cost Explorer
D.AWS Compute Optimizer
AnswerD

Compute Optimizer uses machine learning to recommend optimal instance types.

Why this answer

AWS Compute Optimizer analyzes utilization and recommends instance type changes to save costs.

130
MCQeasy

A cloud engineer needs to apply security patches to a fleet of Windows servers without manual intervention. Which service can automate this process?

A.AWS Config
B.AWS CloudFormation
C.AWS Trusted Advisor
D.AWS Systems Manager Patch Manager
AnswerD

Patch Manager automates patching.

Why this answer

AWS Systems Manager Patch Manager automates the patching of managed instances.

131
MCQeasy

An organization wants to reduce cloud costs by identifying underutilized EC2 instances. Which AWS service provides rightsizing recommendations?

A.AWS Budgets
B.AWS Compute Optimizer
C.AWS Trusted Advisor
D.AWS Cost Explorer
AnswerB

Compute Optimizer uses machine learning to recommend optimal instance types.

Why this answer

AWS Compute Optimizer analyzes resource utilization and provides recommendations to optimize AWS resources. AWS Cost Explorer shows spending but not specific rightsizing recommendations.

132
MCQhard

An organization is using GCP and wants to receive notifications in a Slack channel when a new VM instance is created. Which combination of GCP services should be used?

A.Cloud Monitoring alert policy with Slack notification channel
B.Cloud Scheduler and Cloud Functions
C.Cloud Pub/Sub and Cloud Run
D.Cloud Logging log-based metric and Cloud Function with webhook
AnswerD

A log entry for VM creation can trigger a Cloud Function via a log-based metric, which then posts to Slack.

Why this answer

Cloud Logging can trigger a Cloud Function via a log-based metric when a VM is created, and the Cloud Function sends a message to Slack via webhook.

133
MCQmedium

A cloud administrator needs to apply security patches to a fleet of EC2 instances running Windows Server. The patches must be applied during a maintenance window to minimize downtime. Which AWS service can automate patching?

A.AWS CloudFormation
B.AWS Systems Manager Patch Manager
C.AWS Config
D.Amazon Inspector
AnswerB

Patch Manager automates OS patching and integrates with maintenance windows.

Why this answer

AWS Systems Manager Patch Manager automates the process of patching managed instances with security updates and allows you to define maintenance windows.

134
MCQmedium

A cloud administrator needs to perform a disaster recovery test for a critical application running in a different AWS region. The RTO is 1 hour, and the RPO is 15 minutes. Which replication strategy should be used to meet the RPO?

A.Hourly snapshot-based replication
B.Daily snapshot-based replication
C.Cross-region replication with eventual consistency
D.Continuous replication
AnswerD

Continuous replication provides near real-time data replication, easily meeting a 15-minute RPO.

Why this answer

Continuous replication ensures data is replicated with minimal lag, typically meeting a 15-minute RPO. Snapshot-based replication would have longer intervals.

135
Multi-Selecteasy

A cloud administrator wants to set up cost monitoring and receive alerts when spending exceeds the budget. Which TWO AWS services should they use? (Select TWO.)

Select 2 answers
A.Amazon CloudWatch Billing Metrics
B.AWS Trusted Advisor
C.AWS Budgets
D.AWS Cost Explorer
E.AWS Config
AnswersC, D

AWS Budgets can send alerts when actual or forecasted costs exceed budgeted amounts.

Why this answer

AWS Budgets allows you to set custom budgets and receive alerts when costs exceed thresholds. Cost Explorer provides visualization and analysis of costs and usage.

136
Multi-Selectmedium

A company wants to implement automated patching for their cloud resources. Which TWO services are designed for patch management?

Select 2 answers
A.Amazon Inspector
B.GCP Cloud Audit Logs
C.AWS Config
D.Azure Update Management
E.AWS Systems Manager Patch Manager
AnswersD, E

Update Management handles patching on Azure.

Why this answer

AWS Systems Manager Patch Manager and Azure Update Management are dedicated patch management services.

137
MCQhard

A cloud administrator is troubleshooting a performance issue where an application occasionally experiences high latency. The application runs on AWS and uses EC2, ELB, and RDS. Which combination of tools would best help trace the request flow and identify the bottleneck?

A.AWS X-Ray and VPC Flow Logs
B.AWS Trusted Advisor and AWS Personal Health Dashboard
C.Amazon CloudWatch Logs and AWS Shield
D.AWS CloudTrail and AWS Config
AnswerA

X-Ray traces requests across services; VPC Flow Logs show network latency.

Why this answer

AWS X-Ray provides end-to-end tracing, and VPC Flow Logs capture network traffic details, together helping pinpoint latency sources.

138
Multi-Selectmedium

A cloud operations team is designing a disaster recovery plan that includes regular testing. Which TWO activities should be part of the DR testing process? (Select TWO.)

Select 2 answers
A.Updating security patches
B.Reviewing billing reports
C.Chaos engineering experiments
D.Scheduled DR drills
E.Performing daily backups
AnswersC, D

Chaos engineering proactively tests system resilience.

Why this answer

Scheduled drills validate the plan, and chaos engineering tests resilience.

139
MCQeasy

A cloud architect needs to monitor CPU utilization across a fleet of EC2 instances and receive an alert when the average CPU exceeds 80% for 10 minutes. Which AWS service should be used to collect the metric and trigger the alert?

A.AWS Systems Manager
B.AWS Config
C.AWS CloudTrail
D.Amazon CloudWatch
AnswerD

CloudWatch collects metrics and can set alarms.

Why this answer

CloudWatch collects metrics and can trigger alarms based on thresholds.

140
Multi-Selectmedium

A cloud architect is designing a disaster recovery plan that includes testing. Which TWO activities are commonly performed as part of DR testing?

Select 2 answers
A.Reserved Instance planning
B.Rightsizing recommendations
C.Chaos engineering
D.Scheduled DR drills
E.Tagging resources
AnswersC, D

Chaos engineering injects failures to test resilience.

Why this answer

DR testing includes scheduled drills and chaos engineering to validate recovery procedures.

← PreviousPage 2 of 2 · 140 questions total

Ready to test yourself?

Try a timed practice session using only Clp Operations Support questions.