MoreExam
1. Question Content...
EXPLANATION
Answer: X - EXPLANATION Content.
Question1: A manufacturing company's current security policy mandates PII is not stored in the SaaS solution. Which of the following configuration controls should be used to block sensitive information from being stored in the SaaS solution?
Question2: A consultant is helping a large company migrate its development environment to a public cloud provider.The developers are working on a VDI solution. The development tools that employees utilize require greater control of the OS environment. Which of the following cloud types should the consultant implement?
Question3: A cloud administrator is provisioning five VMs, each with a minimum of 8GB of RAM and a varying load throughout the day. The hypervisor has only 32GB of RAM. Which of the following features should the administrator use?
Question4: A customer wants a cloud systems administrator to adjust the backup schedule after month-end to ensure the data can be restored as fast as possible while minimizing the time needed to perform the backup.Which of the following backup types should be scheduled?
Question5: A hospital is deploying a web-based application in its private cloud to service multiple facilities in a region.This application is used by employees of the hospital, as well as the patients and their families. Which of the following security configurations is MOST likely to be deployed to secure the information from the application?
Question6: A company has an SLA of 15ms for storage latency.Given the above metrics, which of the following is the MOST appropriate change to the environment?
Question7: The CASB report indicates several unsanctioned SaaS applications are being used in an organization.Which of the following is the MOST likely cause?
Question8: Ann. a user, has tried to connect to a VM hosted in a private cloud using her directory services credentials.After three attempts, she realizes the keyboard was set to German instead of English, and she was typing"z" instead of "y". After fixing this issue, Ann is still unable to log in; however, other users can access the VM. Which of the following is the MOST likely cause?
Question9: A cloud service company is proposing a solution to a major sporting venue. The solution offers 99.999% availability during special events, which is proven through specialized testing. Which of the following techniques should be applied to confirm the high availability claimed by the company? (Select TWO.)
Question10: A company purchased a SaaS CRM application. The signed SLA meets year-round performance requirements. Three months after deployment, customers start reporting a slow application response time.System availability, connectivity, and proper functionality still meet the SLA. Which of the following is MOST likely the reason for the poor response time?
Question11: A user has submitted a ticket to request additional VMs due to long wait times for online ordering. Given the snapshot of the resources in the table below:Which of the following is the BEST option for the administrator to resolve the ticket?
Question12: A company uses SaaS and IaaS solutions from multiple cloud providers. Users report that this requires them to manage and remember multiple user accounts and passwords. Which of the following solutions should be implemented to fix this issue?
Question13: A cloud administrator is provisioning several user accounts that have administrator rights to assets using JSON within an IaaS cloud platform. The administrator is required to configure "alternate" settings using the API. Given this scenario, which of the following elements would allow the administrator to meet these requirements in the JSON file?
Question14: A new browser version has been deployed to all users at a company. After the deployment, users report that they can no longer access the company's secure time-card system, which is hosted by a SaaS provider. A technician investigates and discovers a security error is received upon opening the site. If the browser is rolled back to the older version, the site is accessible again. Which of the following is the MOST likely cause of the security error users are seeing?
Question15: After monthly patching, a large number of users who are logged onto the network report that application links from a company's intranet site, which previously opened directly into the website, are now prompting for logon information. Application administrators confirm that the websites in question are working properly.Which of the following is the MOST likely cause of the new behavior?
Question16: An engineer is configuring the monitoring for a new application server. During the day, the CPU on the server is baselined at approximately 30% utilization. At midnight, a batch job is scheduled to run that will drive the CPU utilization up to 75% for approximately an hour. Any time the CPU utilization is at 40% or higher for longer than ten minutes, administrators will receive an alert. Which of the following is the BEST method to ensure administrators do not experience message fatigue due to false alerts?
Question17: A technician is configuring a new web application to be highly available. The technician has configured multiple web servers in different availability zones at a public cloud provider. The application requires users to be directed to the same server each time they visit. Which of the following network components is MOST likely to accomplish this?
Question18: In a private cloud environment, which of the following is the BEST way to update 20 VMs with the same patch that has been regression tested and approved for rollout?
Question19: An application server, which uses a SaaS fax provider, is determined to cost too much money. An upgrade to the application allows for use of a physical fax card so the company only has to pay for a phone line.This is a production application; therefore, downtime must be minimized. Which of the following types of migration is MOST efficient in facilitating this application upgrade?
Question20: A recent advertisement campaign has increased traffic to an e-commerce application that is hosted within a public cloud environment. Customers are reporting that it takes too long to load their pages and submit orders. A cloud administrator looks at the metrics from the environment and sees high utilization of the CPU and memory resources. The cloud provider offers several preconfigured sizes for server template: x- small, small, medium, large, x-large, and 2x-large.Given an expected increase in workload, which of the following is the BEST solution to improve application performance?
Question21: The CSA needs to install a patch on 58 virtual server instances during the Friday evening maintenance window. Which of the following is the MOST efficient way to get the patches installed?
Question22: A university is running a DNA decoding project that will take seven years if it runs on its current internal mainframe. The university negotiated a deal with a large cloud provider, which will donate its cloud resource to process the DNA decoding during the low peak time throughout the world. Which of the following is the MOST important resource the university should ask the cloud provider to donate?
Question23: An administrator is deploying a new application platform with the following resource utilization:Company policy requires that no resource utilization surpasses 80%. Which of the following resources will need to be upgraded prior to deployment?
Question24: A company is looking for a hardware feature with the least amount of downtime in terms of firmware upgrades. Which of the following features BEST meet this requirement?
Question25: Performance on a new private cloud deployment is not meeting expectations. An engineer has determined the virtualization host is experiencing high ready/wait times. VMs with the following configurations and metrics currently reside on the host:Which of the following troubleshooting choices would MOST likely be used to bring the high ready/wait times to meet the expected baseline?
Question26: A file server is being migrated from physical hardware into a private cloud. Baselining of the server shows the disks average 90% full at all times. The contents of the file server consist mostly of compressed audio files. Multiple copies of the same files are often saved in different locations on the same disk. Which of the following storage technologies is MOST likely to help minimize storage utilization when moving this server to the private cloud?
Question27: A company has moved all on-premises workloads into a public cloud. After some time, the cloud engineer starts noticing time drifts on the VMs and suspects an NTP issue. Time drifts were not an issue when all the workloads were on-premises. Which of the following describes how the cloud engineer should resolve the issue?
Question28: A cloud administrator works for an online gaming company that is hosting its multiplayer servers in a public IaaS cloud. The following metrics are reported during a controlled beta test:RAM usage 80%Bandwidth usage 50%Average ping 800msThe beta test shows poor performance for gamers. Which of the following should the cloud administrator implement FIRST to improve the gamers' experience?
Question29: Ann, a technician, is using a saved workflow to deploy virtual servers. The script worked yesterday but is now returning an authentication error. Ann confirms that she can manually log in with her own account and create a virtual server. Which of the following is MOST likely causing the error?
Question30: A security administrator wants to automate the implementation of network-based ACLs for services deployed within the company VPC. The security administrator is mostly concerned with intra-VPN separation to prevent unauthorized communication between cloud deployed services within the VPC.Which of the following should the security administrator implement?
Question31: A new private cloud platform is being deployed by an engineer. SLA requirements state that any clusters should have a baseline redundancy sufficient to handle the failure of at least two hosts. The engineer records the following metrics after the deployment:Which of the following metrics is MOST likely to represent a violation of SLA?
Question32: A company upgraded a hosted vulnerability scanner to the latest version, and now tickets are not being created to assign critical vulnerabilities. After confirming the ticketing issue, all the scanning services are confirmed to be running on the VM. Which of the following is the MOST likely cause and best method to fix the issue?
Question33: A public cloud provider recently updated one of its services to provide a new type of application load balancer. The cloud administrator is tasked with building out a proof-of-concept using this new service type. The administrator sets out to update the scripts and notices the cloud provider does not list the load balancer as an available option type for deploying this service. Which of the following is the MOST likely reason?
Question34: Due to a competitor's unlimited data plan, a service provider is struggling and wants to transform its business services to be more hosting oriented. A cloud architect is tasked to review current cloud resource capacity and provide recommendations and a plan for better resource utilization. Given the following report:Which of the following is the BEST option for the architect to suggest?
Question35: A company is implementing a launchpad within an existing application that will point to an existing SaaS provider. One of the requirements is the user should not have to log on multiple times. SSO is in place.When the launchpad is used, the user is redirected to SaaS providers as designed, but is asked for login credentials. Which of the following is the MOST likely cause of this issue?
Question36: A physical server with SSD drives that hosts an IO-intensive database has been migrated into a private cloud to ensure further growth possibilities and accommodate quarterly load spikes (up to 10,000 IOPs).The requirement is to have log partition latency below 5ms and data partition latency below 10ms, irrespective of the load spikes. A cloud administrator has conducted extensive tests after the migration.Which of the following test results would ensure the migration is successful?A:B:C:D:
Question37: A security and risk team requires a weekly report to detect VM file system changes and validate the integrity of the OS. Which of the following is the BEST solution for this requirement?
Question38: Several SaaS providers support identity federation for authentication. Which of the following would BEST assist in enabling federation?
Question39: A large finance firm processes three times as many transactions in December of each year. The transactions are processed in a private cloud. Management wants to avoid adding permanent resources to accommodate the single month increase. Which of the following is the BEST way to meet the need?
Question40: A company wants to implement a public IaaS solution but also wants to address site resiliency challenges.When selecting an IaaS provider, which of the following should a cloud technician look for within the provider's capabilities to meet the requirements?
Question41: After deploying new VMs, the systems administrator notices it is not possible to connect to them using network credentials; however, local accounts work. After logging in, the administrator notices the NTP servers are not set. Which of the following is MOST likely causing this issue?
Question42: A cloud engineer is using a hosted service for aggregating the logs for all the servers in a public cloud environment. Each server is configured via syslog to send its logs to a central location. A new version of the application was recently deployed, and the SaaS server now stops processing logs at noon each day.In reviewing the system logs, the engineer notices the size of the logs has increased by 50% each day.Which of the following is the MOST likely reason the logs are not being published after noon?
Question43: A company's security policy requires full disk encryption on all clients with preboot enabled. The encryption server is hosted, and the requirement is to push an update to all endpoints. Which of the following is the BEST method to test and apply the update with minimal disruption to end users?
Question44: A business is demanding faster IT services turnaround from its IT groups. The current lead time between request and delivery is three weeks for a task that would take a competitor two days. An architect is asked to develop a solution to reduce the lead time of the request while ensuring adherence to the company policies. Which of the following is the BEST approach to achieve the stated objective?
Question45: A company is implementing a SaaS solution with a large user base. SaaS solution licensing is user based, and user management is critical to keep the cost in check. Which of the following is the MOST efficient way to meet this requirement?
Question46: A cloud engineer deployed an email server in a public cloud. Users can access the email server, but the emails they send cannot reach their destinations. Which of the following should the cloud engineer do FIRST?
Question47: A cloud administrator has configured a connection between two virtual private cloud environments at a public cloud provider that are each in different accounts. The administrator has configured the accounts correctly so they can connect to each other's resources. Both cloud environments have policies that allow anyone from 0.0.0.0/0 on TCP port 22. The following table shows the network configuration information:However, the administrator is unable to establish an SSH connection from a server in 10.250.40.100 to10.250.48.214. Which of the following is the MOST likely issue?
Question48: A cloud service administrator is consuming PaaS services and is performing baseline configuration tests.Which of the following is part of the PaaS consumer's responsibility with respect to the baseline confirmation tests?
Question49: Email users report that it takes more than one minute to open emails, including those without attachments.There are three email instances in three different regions hosted by the same CSP. Other applications hosted by the same CSP have no reported issues. Which of the following solutions BEST resolves the issue?
Question50: A company security policy mandates education and training for new employees. The policy must outline acceptable use policies for SaaS applications. Given these requirements, which of the following security controls is BEST suited?
Question51: The legal department requires eDiscovery of hosted file shares. To set up access, which of the following is the BEST method to ensure the eDiscovery analyst only has the ability to search but not change configuration or settings?
Question52: Several suspicious emails are being reported from end users. Organizational email is hosted by a SaaS provider. Upon investigation, the URL in the email links to a phishing site where users are prompted to enter their domain credentials to reset their passwords. Which of the following should the cloud administrator do to protect potential account compromise?
Question53: A cloud deployment engineer is modifying versions of the existing template image to instantiate new VMs.The engineer accomplishes this through the cloud self-service portal. After the version is changed and a new VM is successfully started, it does not have any connectivity, and all ping tests to other VMs fail.Which of the following would be the BEST approach to solve the problem?
Question54: A small clinic is moving its health and accounting systems to a SaaS solution. The clinic holds patient- and business-sensitive information. Which of the following is the company expected to do to protect its data?
Question55: An upgrade to a web application, which supports 400 users at four sites, is being tested. The application runs on four servers behind a load balancer.The following test plan is proposed:Have 50 users from site A connect to server 1Have 50 users from site B connect to server 2Have 50 users from site C connect to server 3Have 50 users from site D connect to server 4Which of the following parameters is being properly tested by this plan?
Question56: Company A just acquired Company B and needs to migrate critical applications to Company A's private cloud infrastructure. Company B's applications are running on legacy servers and cannot be removed from the current datacenter where they reside. Which of the following migration strategies should the cloud administrator use?
Question57: A software solution must be deployed based on the most granular access level. Which of the following methods should be used to meet the requirements?
Question58: A cloud administrator is receiving alerts that the disk on several systems is 90% full. Upon reviewing the systems, the administrator determines that the log directory is using 50% of the disk. The company has a14-day retention policy for all logs. Which of the following is the BEST solution to implement to minimize future alerts?
Question59: Before doing a change on a VM, a systems administrator wants to ensure there is an easy and fast way to rollback if needed. The change and testing should take approximately two hours. Which of the following is the EASIEST way to meet this requirement?
Question60: Worldwide users from an organization are experiencing intermittent access to a global cloud application.The cloud provider availability dashboard shows all resource availability has been 100% in the last two weeks. No network outages have been reported. Which of the following should the organization's administrator do BEFORE calling the cloud provider?
Question61: A software company recently moved all of its development testing to a public cloud environment. The company primarily uses IaaS to deploy and test its code. The company needs the software developers to be more agile and efficient when testing application code. Which of the following backup types should the developers use to BEST ensure the speedy recovery of a system if it is damaged?
Question62: A company is migrating some of its consumer-facing services to a cloud provider. The company has been getting more customers since its competitors have gone bankrupt. Which of the following actions would BEST meet the company's increased resource needs?
Question63: A cloud administrator is securing access to a VM using an IaaS cloud platform. The administrator must perform this task using an automated method, allow administrators to perform any method and expose any property of the VM, deny access for everyone else, and allow only read-only access to everyone else.Given this scenario, which of the following should the administrator use to BEST meet these requirements?
Question64: A cloud administrator is looking at business requirements that specify the data available at the disaster recovery site must not be more than 24 hours old. Which of the following metrics correctly relates to these requirements?
Question65: A cloud architect is tasked with isolating traffic between subnets in an IaaS platform. The networks should be able to statefully communicate with each other. Given this scenario, which of the following should the architect implement?
Question66: A cloud administrator is required to implement a solution to handle data-at-rest encryption requirements for a database. Which of the following would BEST satisfy the requirements?