MoreExam
1. Question Content...
EXPLANATION
Answer: X - EXPLANATION Content.
Question1: An administrator needs to make a file-level backup of a VM before deploying monthly updates. The backup should capture all changes since the last backup but should NOT reset the archive bit on any files.Which of the following backup types BEST meets these requirements?
Question2: After running monthly capacity reports on private cloud hosts, an engineer decides the CPU overcommitment ratio on the cluster is affecting performance on the VMs. If the engineer is trying to minimize costs, which of the following actions is the engineer MOST likely to take?
Question3: A rural manufacturing company wants to move all IT services, including the industrial control systems, to the cloud.Given this scenario, which of the following cloud services elements would be a challenge to the deployment?
Question4: A cloud administrator is securing access to a VM using an IaaS cloud platform. The administrator must perform this task using an automated method, allow administrators to perform any method and expose any property of the VM, deny access for everyone else, and allow only read-only access to everyone else. Given this scenario, which of the following should the administrator use to BEST meet these requirements?
Question5: A company needs to meet the security requirements for PII. Which of the following cloud service models allows the company to have the MOST control to meet the security requirements?
Question6: A cloud engineer is provisioning a group of servers in a public cloud using a template. The template uses a custom image that includes all the hardening minimum security standards approved by the cybersecurity department. The image is more than 30 days old and is updated on a quarterly basis.Before deploying the servers in production, the cloud engineer should:
Question7: A manufacturing company's current security policy mandates PII is not stored in the SaaS solution. Which of the following configuration controls should be used to block sensitive information from being stored in the SaaS solution?
Question8: An organization is replacing its internal human resources system with a SaaS-based application. The solution is multi-tenant, and the organization wants to ensure ubiquitous access while preventing password replay attacks. Which of the following would BEST help to mitigate the risk?
Question9: A company uses SaaS and IaaS solutions from multiple cloud providers. Users report that this requires them to manage and remember multiple user accounts and passwords. Which of the following solutions should be implemented to fix this issue?
Question10: A consultant is helping a gaming-as-a-service company set up a new cloud. The company recently bought several graphic cards that need to be added to the servers.Which of the following should the consultant suggest as the MOST cost effective?
Question11: A cloud engineer is upgrading a high-performance computing cluster for the private cloud. The existing cluster is being replaced with GPU servers. A single GPU server is capable of the same teraflops output as 10 CPU servers. The current cluster configuration is as follows:100 quad-core CPU servers capable of producing 100 teraflops.The baseline and current usage is 100%.The new cluster was set up and benchmarked in four different configurations. Which of the following configurations will meet the baseline teraflops performance of the cluster while maintaining the current usage?
Question12: A business is demanding faster IT services turnaround from its IT groups. The current lead time between request and delivery is three weeks for a task that would take a competitor two days. An architect is asked to develop a solution to reduce the lead time of the request while ensuring adherence to the company policies. Which of the following is the BEST approach to achieve the stated objective?
Question13: As part of a nightly testing process, new version of an application is deployed to the set of web servers in the development environment.Which of the following is the BEST way to ensure the test environment is consistent with the previous night's test?
Question14: One of the IaaS production web servers has a critical OS vulnerability that requires remediation. The vulnerability report indicates it is a zero-day exploit.Which of the following is the BEST course of action to remediate the vulnerability?
Question15: A cloud administrator is moving a healthcare application to the public cloud. The application needs to be secured while data is being stored.Which of the following technologies should be deployed to BEST meet the requirements?
Question16: Before doing a change on a VM, a systems administrator wants to ensure there is an easy and fast way to rollback if needed. The change and testing should take approximately two hours. Which of the following is the EASIEST way to meet this requirement?
Question17: A cloud administrator is building a company's payment system in the public cloud.Which of the following security standards is the cloud administrator MOST likely to apply to comply with industry standards?
Question18: Since the hypervisors were upgraded to the latest version, each new deployment results in an error being displayed at the orchestrator. To troubleshoot the issue, which of the following should be done FIRST?
Question19: A manufacturing company has the following DR requirements for its IaaS environment:RPO of 24 hoursRTO of 8 hoursThe company experiences a disaster and has a two-site hot/cold configuration. Which of the following is the BEST way for the company to recover?
Question20: A cloud performance engineer is asked to review the usage and resource utilization from last quarter and then provide analysis and a recommendation. The data shown in the exhibit is collected and plotted for analysis.In addition to investigating the alarms, which of the following is the BEST recommendation for the engineer to provide?
Question21: An administrator defines a backup as follows:One weekly full backupDaily incremental backupWhich of the following BEST describes where the administrator would define this?
Question22: Which of the following would be appropriate when considering inbound access security for a web-based SaaS solution?
Question23: A programmer is building a new web application for a client's public cloud infrastructure. The client has requested that the web application stay available even in the event of a regional outage at the cloud provider.Which of the following would BEST address these availability requirements?
Question24: A hospital is leveraging a third-party-hosted, SaaS-based EMRS for all its regional locations. The EMRS will consolidate all existent stand-alone regional systems. All regional systems managers are concerned about the new system availability. Which of the following should the new EMRS architect do to address the manager's concerns?
Question25: The legal department requires eDiscovery of hosted file shares. To set up access, which of the following is the BEST method to ensure the eDiscovery analyst only has the ability to search but not change configuration or settings?
Question26: A new startup company is growing and wants to deploy a human resources management system on a private cloud that is only accessible to the human resources department. Which of the following is the BEST method of access control?
Question27: A new browser version has been deployed to all users at a company. After the deployment, users report that they can no longer access the company's secure time-card system, which is hosted by a SaaS provider. A technician investigates and discovers a security error is received upon opening the site. If the browser is rolled back to the older version, the site is accessible again. Which of the following is the MOST likely cause of the security error users are seeing?
Question28: A systems administrator migrated a company's CRM middleware to a VPC and left the database in the company's datacenter. The CRM application is now accessible over the Internet. A VPN between the company network and the VPC is used for the middleware to communicate with the database server. Since the migration, users are experiencing high application latency. Which of the following should the company do to resolve the latency issue?
Question29: A healthcare provider determines a Europe-based SaaS electronic medical record system will meet all functional requirements. The healthcare provider plans to sign a contract to use the system starting in the next calendar year. Which of the following should be reviewed prior to signing the contract?
Question30: Joe, a cloud administrator, is no longer able to SSH to his cloud management console after he returns from a two-week vacation. A coworker was able to connect from the management station with no issue. During the last two weeks, the desktop team replaced all administrator machines with newer ones. Which of the following must Joe do FIRST to troubleshoot his access?
Question31:
Question32: A multinational corporation is moving its worldwide cloud presence to a single region, which is called RegionA.An administrator attempts to use a workflow, which was previously used to deploy VMs to Region E in the new Region A environment, and receives the following error: Invalid character set. Which of the following is the MOST likely cause of the error?
Question33: A cloud security analyst performs a vulnerability scan on a web application server across all staging environments. According to the vulnerability scan, the web content featured on the server in the staging environment is located on the C:\ drive, which is the same location housing the operating system.The analyst determines the results are false positive and submits a report, which includes artifacts supporting the claim to the CAB. Given this scenario, which of the following test plans would be the MOST appropriate to include in the report?
Question34: A company is seeking a new backup solution for its virtualized file servers that fits the following characteristics:The files stored on the servers are extremely large.Existing files receive multiple small changes per day.New files are only created once per month.All backups are being sent to a cloud repository.Which of the following would BEST minimize backup size?
Question35: A cloud engineer is using a hosted service for aggregating the logs for all the servers in a public cloud environment. Each server is configured via syslog to send its logs to a central location. A new version of the application was recently deployed, and the SaaS server now stops processing logs at noon each day. In reviewing the system logs, the engineer notices the size of the logs has increased by 50% each day. Which of the following is the MOST likely reason the logs are not being published after noon?
Question36: A company wants to leverage a SaaS provider for its back-office services, and security is paramount. Which of the following solutions should a cloud engineer deploy to BEST meet the security requirements?
Question37: A small clinic is moving its health and accounting systems to a SaaS solution. The clinic holds patient- and business-sensitive information. Which of the following is the company expected to do to protect its data?
Question38: One of the IaaS production web servers has a critical OS vulnerability that requires remediation. The vulnerability report indicates it is a zero-day exploit.Which of the following is the BEST course of action to remediate the vulnerability?
Question39: A company hosts a database application in a private cloud that is available to its user population. Only one group of users is unable to access the database server after being able to log on to the private cloud authentication application.Which of the following represents the troubleshooting steps that should be taken to resolve this issue?
Question40: A cloud administrator has finished building a virtual server template in a public cloud environment. The administrator is now cloning six servers from that template. Each server is configured with one private IP address and one public IP address. After starting the server instances, the cloud administrator notices that two of the servers do not have a public IP address. Which of the following is the MOST likely cause?
Question41: A QA team recently completed testing new features for an e-commerce application that will be deployed to support the busy season. All security tests have been completed, and the new application is scheduled for release tomorrow.Which of the following types of testing is still needed?
Question42:
Question43: The IT department receives a client request to build multiple file server instances. Which of the following is the MOST efficient way for a cloud systems administrator to fulfill this request?
Question44: A company upgraded a hosted vulnerability scanner to the latest version, and now tickets are not being created to assign critical vulnerabilities. After confirming the ticketing issue, all the scanning services are confirmed to be running on the VM. Which of the following is the MOST likely cause and best method to fix the issue?
Question45: A system's application servers need to be patched. The requirements for maintenance work are as follows:System downtime is not allowed.The application server in use must be in the sane patch status. System performance must be maintained during patching work.Testing after patching must be done before the application server is in use. If any trouble occurs, recover the previous version in ten minutes.Which of the following methodologies should be selected?
Question46: Joe, a developer, has a virtualization environment consisting of four hosts. Joe needs to configure the environment to be able to place new VMs automatically to the recommended host with more resources.Which of the following must be enabled on the environment to achieve this?
Question47: A new service request asks for all members of the finance department to have access to the accounting department's file server VMs on the private cloud environment.Which of the following is the MOST efficient way to fulfill this service request?
Question48: A company is seeking a new backup solution for its virtualized file servers that fits the following characteristics:The files stored on the servers are extremely large.Existing files receive multiple small changes per day.New files are only created once per month.All backups are being sent to a cloud repository.Which of the following would BEST minimize backup size?
Question49: A user cannot consume SaaS services while working remotely. IP whitelisting is implemented to connect to a SaaS provider as a security mechanism. Which of the following describes the MOST likely reason why the user cannot access the SaaS resources?
Question50: A cloud administrator works for an online gaming company that is hosting its multiplayer servers in a public IaaS cloud. The following metrics are reported during a controlled beta test:RAM usage 80%Bandwidth usage 50% Average ping 800msThe beta test shows poor performance for gamers. Which of the following should the cloud administrator implement FIRST to improve the gamers' experience?
Question51: A new company policy requires all data stored in a private cloud to be encrypted at rest. Which of the following is the MOST efficient way to achieve this requirement with the least performance impact?
Question52: An automation performs the following on a monthly basis:- Disable accounts that have not logged on in the last 60 days- Remove firewall rules with zero hits in the last 30 days- Remove DNS entries that have not been updated in the last 60 days- Archive all logs that are more than 30 days oldSix weeks after this new automation is implemented, an internal client reports that quarterly replication failover testing has failed.Which of the following is the MOST likely cause of the failed test?
Question53: After scheduled network maintenance, users report that an externally hosted web application is particularly slow to load. Small items on the page load such as text documents and markup, but larger multimedia files do not load. Which of the following is the MOST likely cause of the reported issues?
Question54: After load testing on the QA environment, which showed good performance results with 10,000 users, the new version was installed in the production environment. However, users are reporting performance issues, and there are only 7,000 users currently utilizing the application. The configuration of each environment is shown in the table below.Which of the following is the MOST likely cause of differing performance in the QA and PROD environments?
Question55: Government agencies currently operate their own websites, each with its own directory services. There is a mandate to minimize IT administration.Which of the following should the cloud services architect choose to BEST meet this mandate?
Question56: A large finance firm processes three times as many transactions in December of each year. The transactions are processed in a private cloud. Management wants to avoid adding permanent resources to accommodate the single month increase. Which of the following is the BEST way to meet the need?
Question57: A customer wants to remove a user's access to the SaaS CRM system. Which of the following methods should be executed FIRST?
Question58: A technician is configuring a new web application to be highly available. The technician has configured multiple web servers in different availability zones at a public cloud provider. The application requires users to be directed to the same server each time they visit. Which of the following network components is MOST likely to accomplish this?
Question59: A cloud administrator was testing a new application on a VM in the private cloud environment with the following requirements:* Disk IO read latency below 5ms* Write latency below or equal to 8ms* Number of IOPS at least 5000* Overall CPU usage below 80%The test results were:* Read latency 4ms* Write latency 800s* 6000 IOPS* CPU1 average 75%* CPU2 average 82%Which of the following BEST reflects the test results?
Question60: A cloud administrator is configuring block-level storage. The storage must be configured to be resistant from faults. Given this scenario, which of the following would aid in establishing fault tolerance with asynchronous redundancy?
Question61: After deploying multiple copies of database servers, data scrambling is started on them to anonymize user dat a. A few minutes later, the systems administrator receives multiple complaints regarding the performance of other VMs. CPU and memory have been eliminated as possible bottlenecks. Which of the following should be verified NEXT as a possible bottleneck?
Question62: A company hosts its server in a public IaaS cloud. The company's management decides to migrate the servers to a different geographical region that is closer to the user base. A cloud administrator creates a new environment in that geographical region. Which of the following is the BEST way to migrate the VM from the original geographic region to the new region?
Question63: A cloud administrator has deployed a new web application to a private cloud. The application platform consists of two web servers that communicate to a redundant database back end. The traffic to the web servers is directed by a load balancer appliance. The administrator connects to the website on each of the webservers individually and confirms they are able to log in.Which of the following aspects of the application has the administrator tested successfully?
Question64: A customer wants to schedule a backup job that compares and saves changes from the last full backup. Which of the following backup types should be used?
Question65: Company A acquires Company B.The resources need to be added accordingly to the SaaS environment. Which of the following resources should be changed by the tenant?
Question66: A company is implementing a SaaS solution with a large user base. SaaS solution licensing is user based, and user management is critical to keep the cost in check. Which of the following is the MOST efficient way to meet this requirement?
Question67:
Question68: A company has hired a technician to build a cloud infrastructure for a massively parallel application. Which of the following should the technician consider doing FIRST?
Question69: A cloud administrator is provisioning five VMs, each with a minimum of 8GB of RAM and a varying load throughout the day. The hypervisor has only 32GB of RAM. Which of the following features should the administrator use?
Question70: A cloud application has been in production for six months without any issues. Shortly after increasing the number of users assigned to the application, however, users start reporting errors. The administrator does not see any resource thresholds being exceeded in the cloud dashboard. Which of the following is the MOST likely cause of the errors?
Question71: Team members should be able to review their organization's resource utilization and adjust workloads to ensure they stay within budget. The organization has three different teams and associated cloud environments:development, staging, and production.Which of the following access control models would be BEST in this scenario?
Question72: A company wants to deploy new compute resources efficiently through automation.Which of the following is a key success factor to achieve automation?
Question73: A cloud technology vendor has released an update to its product. A company providing cloud services need to quickly adopt the update to provide support to its customers.Which of the following is the MOST efficient action to complete this task?
Question74: A cloud architect created a new delivery controller for a large VM farm to scale up according to organizational needs. The old and new delivery controllers now form a cluster. However, the new delivery controller returns an error when entering the license code. Which of the following is the MOST likely cause?
Question75: A cloud engineer deployed an email server in a public cloud. Users can access the email server, but the emails they send cannot reach their destinations. Which of the following should the cloud engineer do FIRST?
Question76: A company has moved all on-premises workloads into a public cloud. After some time, the cloud engineer starts noticing time drifts on the VMs and suspects an NTP issue. Time drifts were not an issue when all the workloads were on-premises. Which of the following describes how the cloud engineer should resolve the issue?
Question77: A company moved its on-premises applications to several SaaS providers. As a result, the security team is concerned about accounts being compromised. Which of the following should the security tem implement to reduce this risk?
Question78: A cloud administrator has implemented a cost-savings policy to reduce the number of servers running at a given time. This policy will shut down all servers at 3:30 a.m. and restart them at 8:30 a.m. every morning. The management team has recently communicated that the daily reports are no longer available for the 9:00 a.m. meeting.Which of the following would be BEST for the administrator to implement?
Question79: A hosted file share was infected with CryptoLocker and now root cause analysis needs to be performed. Place the tasks in the correct order according to the troubleshooting methodology.
Question80: A company wants to ensure production data is not exposed during a functional and load testing exercise, as it will be the source of the data.Which of the following techniques should the cloud administrator deploy to ensure testing requirements are met?
Question81: Ann, the lead product developer for a company, just hired three new developers. Ann asked the cloud administrator to give these developers access to the fileshares in the public cloud environment. Which of the following is the BEST approach for the cloud administrator to take?
Question82: A consultant is helping a gaming-as-a-service company set up a new cloud. The company recently bought several graphic card that need to be added to the servers. Which of the following should the consultant suggest as the MOST cost effective?
Question83: A non-critical vulnerability has been identified by a Linux vendor, who has released a patch and recommends that it be applied immediately.Which of the following is the BEST plan for the cloud administrator to install the patch?
Question84: A cloud administrator notices one of the servers is using the wrong set of NTP servers. The administrator needs to avoid the same issue in the future but needs to minimize administration resources. Which of the following tools should a cloud administrator deploy to meet this requirement?
Question85: Company A just acquired Company B and needs to migrate critical applications to Company A's private cloud infrastructure. Company B's applications are running on legacy servers and cannot be removed from the current datacenter where they reside. Which of the following migration strategies should the cloud administrator use?
Question86: A company has a requirement of an active/active datacenter and wants to implement synchronous replication for all its storage services. The company is doing a proof of concept with a datacenter provider that has two datacenters 200mi (322km) apart that utilize MPLS. Each time the company starts synchronous replication, it fails. All network connectivity has been established and is functioning correctly. Which of the following is the MOST likely cause?
Question87: Ann, a cloud administrator, is reporting on how the organization has adhered to its marketing of 99.99999% system availability SLA.Given this scenario, which of the following should Ann include in her report?
Question88: A company decided to move an event-driven application, which processes complex data, to the public cloud. The current datacenter is becoming expensive to maintain because the application only runs when an event occurs and is idle most of the time. The scale and complexity of the events vary.Which of the following is the MOST optimal solution?
Question89: A courier company has virtualized its packing software application. The CSA needs to confirm the deployment is utilizing the correct amount of CPU per virtual instance. After confirming the deployment requirements, the CSA should log into the cloud services portal to ensure that:
Question90: The administrator at a SaaS provider wants to improve security of the systems hosting the SaaS application. The administrator has created a script that monitors malware research sites and automatically creates and uploads signatures when new vulnerabilities are announced. To which of the following security services is the script MOST likely to upload these signatures?
Question91: Which of the following provides the BEST approach for deploying multiple new firewalls into an IaaS cloud environment with minimal errors?
Question92: A service engineer is trying to determine why one of the company's SaaS solution is no longer available. The internal systems are responding and other online applications using the same SaaS solution are responding as expected.Which of the following is the MOST common cause of the availability issue?
Question93: Performance on a new private cloud deployment is not meeting expectations. An engineer has determined the virtualization host is experiencing high ready/wait times. VMs with the following configurations and metrics currently reside on the host:Which of the following troubleshooting choices would MOST likely be used to bring the high ready/wait times to meet the expected baseline?
Question94: Which of the following is the BEST way to ensure accounts in a cloud environment are disabled as soon as they no longer need to be active?
Question95: A private cloud customer is considering using the public cloud to accommodate the peak utilization workload. Which of the following would be considered the ideal scaling solution?
Question96: A critical new security update has been released to fix an identified zero-day vulnerability with the SSH server process. Due to its severity, all development and staging servers must have this update applied immediately. Which of the following is the FASTEST way for the administrator to apply the patch and ensure all systems are configured consistently?
Question97: An administrator is using a script to create ten new VMs in a public cloud. The script runs and returns no errors. The administrator confirms that all ten VMs show up in the dashboard, but only the first eight reply to pings. Which of the following is the MOST likely cause of the issue?
Question98: A customer wants a cloud systems administrator to adjust the backup schedule after month-end to ensure the data can be restored as fast as possible while minimizing the time needed to perform the backup. Which of the following backup types should be scheduled?
Question99: A tenant has provisioned a new database server. It needs to add the database files in the exclusion list for security scanning, as it allows down the performance and locks the database file. Which of the following solutions must have this exclusion?
Question100: Company A recently acquired Company B.A cloud administrator needs to give access to the accounting and time-reporting systems for Company B's employees. Company A's employees use a single account to access both systems.To give access to Company B's employees, the cloud administrator should:
Question101: A company moves all core applications to the public cloud. However, the lead time from business request to delivery is longer than before the migration.Which of the following should help address the issue?
Question102: A company is in the process of evaluating cloud service providers, as it is planning to move all of its onpremises IT services to the cloud. Most of the applications are mission critical with four 9s and five 9s uptime. The area where the company is located is also prone to natural disasters. One of the main requirements is that IT services need to survive local outages as well as regional outages. One of the company's main customers is a government entity. Which of the following is the BEST way for a cloud engineer to address these requirements?
Question103: A cloud administrator is troubleshooting SSO issues with an application server. The application server sits behind a load balancer device with WAF and reverse proxy services enabled.Which of the following authentication types should the administrator ensure is disabled to allow SSO functions?
Question104: The sales department is preparing to launch a high-demand product for purchase through the company's online store. The senior engineer asks the junior engineer to review the sales cloud resources to plan for a surge in online traffic:Given the metrics in the table above, which of the following resources should be adjusted to plan for future growth?
Question105: Following is a sample result from a recently completed load test.Based on the information provided, which of the following would be the BEST recommendation?
Question106: A cloud engineer notices on a dashboard that the host is close to reaching maximum capacity for the CPU and memory in the cloud environment, which could cause performance issues. The cloud environment has 100 servers, with 25% of the servers consuming their compute only during peak business hours, 25% consuming half of the allocated resources, and the remaining 50% using the compute during off hours. Which of the following should the engineer perform to optimize the efficiency of the compute usage in the cloud?
Question107: After monthly patching, a large number of users who are logged onto the network report that application links from a company's intranet site, which previously opened directly into the website, are now prompting for logon information. Application administrators confirm that the websites in Question: 01 are working properly. Which of the following is the MOST likely cause of the new behavior?
Question108: A backup solution for a new cloud environment must meet the following requirements:* Use no more than two backup sets for a complete restore.* Minimize backup space used.* Support physical and virtual machines.Which of the following BEST meets these requirements?
Question109: Given the IaaS cloud service model, at which of the following layers of the platform does microsegmentation BEST apply?
Question110: A cloud provider is evaluating an insider threat. A resource from the company operations team has access to the servers' virtual disks. This poses a risk that someone could copy and move the virtual server image and have access to the dat a. Which of the following solutions would help mitigate this problem?