Practice questions · IT & Cloud
AWS Certified Cloud Practitioner (CLF-C02): Practice Questions
Original practice questions for the AWS Certified Cloud Practitioner (CLF-C02). Each answer is explained, including why the others are wrong. Filter by domain or difficulty. These are concept checks - not real exam questions.
Answered 0 · Correct 0
-
A core benefit of cloud computing over a traditional data center is:
Correct answer: D. The cloud replaces capital expenditure with pay-as-you-go operating cost. You do not buy or manage physical servers, and capacity is elastic, not fixed. -
Elasticity in the cloud means:
Correct answer: C. Elasticity is the ability to add or remove capacity as demand changes. The other options describe fixed capacity, encryption, or a pricing model, not elasticity. -
Which is NOT a customer responsibility in AWS?
Correct answer: C. AWS secures the physical data centers (security OF the cloud). Customers handle IAM, their data, and patching their own instances (security IN the cloud). -
Under the shared responsibility model, AWS is responsible for:
Correct answer: B. AWS secures the underlying infrastructure (security OF the cloud). Application code, credentials and bucket permissions are the customer's responsibility (security IN the cloud). -
AWS IAM is used to:
Correct answer: B. IAM manages identities and what they can do. Object storage is S3, global delivery is CloudFront, and serverless functions are Lambda. -
A recommended practice for the AWS account root user is to:
Correct answer: A. Protect the root user with MFA and reserve it for tasks that require it. Daily use, sharing and root access keys all increase risk. -
Amazon EC2 provides:
Correct answer: D. EC2 is resizable virtual server compute. Object storage is S3, the CDN is CloudFront, and the managed NoSQL service is DynamoDB. -
Amazon S3 is best described as:
Correct answer: C. S3 is durable, scalable object storage. Block storage is EBS, relational databases are RDS, and networking is VPC. -
Which AWS service is a managed relational database?
Correct answer: B. RDS runs managed relational databases (MySQL, PostgreSQL, etc.). S3 is object storage, Lambda is serverless compute, and CloudFront is a CDN. -
Amazon CloudFront is:
Correct answer: C. CloudFront caches and delivers content from edge locations near users. Databases, identity (IAM) and queues (SQS) are different services. -
Which tool helps you analyze and visualize AWS spending?
Correct answer: A. Cost Explorer analyses and visualises spend over time. EC2 is compute, IAM is access control, and SQS is messaging. -
The AWS Free Tier lets you:
Correct answer: B. The Free Tier offers limited free usage of many services (some for 12 months, some always-free within limits). It is not unlimited or forever-free for everything. -
Which best describes a Region and an Availability Zone?
Correct answer: B. A Region is a geographic area containing multiple isolated Availability Zones, each one or more data centers. They are not the same, and AZs sit inside Regions, not the reverse. -
Which AWS Support feature provides best practice checks for cost, security and performance?
Correct answer: C. Trusted Advisor checks your environment against best practices. S3 is storage, Lambda is compute, and VPC is networking. -
Compared with a traditional data center, cloud computing shifts spending toward:
Correct answer: D. The cloud trades a large upfront capital expense for a pay-as-you-go operating expense. It is not a large upfront capital expense (that is the traditional model), not a fixed multi-year license, and certainly not free. -
'High availability' in the cloud means a system:
Correct answer: A. High availability is about minimizing downtime. Encryption, cost and licensing are separate concerns. -
A key benefit of cloud 'agility' is that you can:
Correct answer: D. Agility means you can provision resources quickly and experiment at low cost. The cloud does not guarantee a profit, does not give unlimited free resources, and does not let you skip security. -
Under the shared responsibility model, the customer is responsible for:
Correct answer: C. Customers are responsible for security in the cloud, such as their data, configuration and access. The hypervisor, the physical data centers, and the global network hardware are all part of the infrastructure AWS secures. -
To follow least privilege, you should:
Correct answer: D. Least privilege grants the minimum needed. Broad admin rights, sharing root or disabling IAM all increase risk. -
Which AWS service stores and automatically rotates secrets such as database passwords?
Correct answer: C. Secrets Manager stores and rotates secrets. S3 is storage, EC2 is compute, and Lambda runs code. -
Where can you download AWS compliance reports such as SOC and ISO certifications?
Correct answer: B. AWS Artifact provides compliance reports. SNS sends notifications, Glue is ETL, and Polly is text-to-speech. -
Amazon DynamoDB is best described as:
Correct answer: A. DynamoDB is managed NoSQL. RDS is the relational service; CloudFront is the CDN; a VPN is networking. -
Amazon VPC provides:
Correct answer: D. A VPC is a logically isolated virtual network within AWS. A managed database is RDS, a monitoring dashboard is CloudWatch, and a content delivery network is CloudFront. -
To send notifications (email, SMS or to queues) to many subscribers, you use:
Correct answer: A. SNS is the pub/sub notification service. EBS is block storage, IAM is identity, and Route 53 is DNS. -
Amazon CloudWatch is used to:
Correct answer: A. CloudWatch provides monitoring, logs and alarms. Backups, identity and encryption are other services. -
Consolidated billing in AWS Organizations lets you:
Correct answer: B. Consolidated billing combines billing across multiple accounts and can share volume discounts. It does not disable monitoring, make services free, or avoid taxes. -
Which pricing option generally offers the largest discount for steady, long-term usage?
Correct answer: B. A 1- or 3-year commitment (Reserved/Savings Plans) gives the deepest steady-state discount. On-Demand is flexible but pricier; Spot suits interruptible work; the Free Tier is limited. -
A key advantage of AWS's global infrastructure of Regions is that you can:
Correct answer: A. Multiple Regions let you deploy close to users to reduce latency and meet data-residency needs. They do not make everything free, remove the need for security, or guarantee zero downtime automatically. -
AWS Auto Scaling helps you:
Correct answer: A. Auto Scaling automatically adjusts capacity to match demand, improving cost and availability. Managing DNS records is Route 53, storing secrets is Secrets Manager, and encrypting data at rest is handled by services like KMS. -
The AWS Well-Architected Framework is:
Correct answer: D. The Well-Architected Framework is a set of best-practice design pillars (such as security, reliability, performance, cost and operational excellence). It is not a programming language, a billing tool, or a managed database.
Practice questions FAQ
- Are these real CLF-C02 exam questions?
- No. These are original study questions written to test understanding. They are not real exam questions, exam dumps, or copied from any provider.
- How should I use these practice questions?
- Answer each one, read the explanation (including why the wrong options are wrong), and use the per-domain score below to focus your revision on weak areas. Revisit before exam day.
- How many questions should I do before the exam?
- Enough to score consistently across every domain, alongside full-length practice from official or reputable providers. Understanding why each answer is right matters more than raw volume.
- What score means I am ready?
- A good signal is consistently scoring around 80% or higher across all domains on questions you have not seen before, and being able to explain why the wrong options are wrong.
- Should I use exam dumps?
- No. Dumps (real or leaked questions) breach provider policy, can void your certification, and do not build the understanding the exam actually tests.