CV0-004無料問題集「CompTIA Cloud+ (2024)」

質問 1

A security analyst reviews the daily logs and notices the following suspicious activity:

The analyst investigates the firewall logs and identities the following:

Which of the following steps should the security analyst take next to resolve this issue? (Choose two.)

（A）Contact John Smith and request the Ethernet cable attached to the desktop be unplugged

（B）Submit an IT support ticket and request Kali Linux be uninstalled from John Smith's computer

（C）Block all inbound connections on port 4444 and block the IP address 201.101.25.121.

（D）Check the running processes to confirm if a backdoor connection has been established.

（E）Block all outbound connections from the IP address 10.150.71.151.

（F）Upgrade the Windows x64 operating system on John Smith's computer to the latest version.

正解：C、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

A company's content management system (CMS) service runs on an laaS cluster on a public cloud. The CMS service is frequently targeted by a malicious threat actor using DDoS. Which of the following should a cloud engineer monitor to identify attacks?

（A）Cloud provider event logs

（B）Endpoint detection and response logs

（C）Network flow logs

（D）Instance syslog

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Which of the following storage resources provides higher availability and speed for currently used files?

（A）Archive/HDD

（B）Hot/SSD

（C）Cold/SSD

（D）Warm/HDD

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

An administrator needs to provide a backup solution for a cloud infrastructure that enables the resources to run from another data center in case of a outage. Connectivity to the backup data center is via a third-party, untrusted network. Which of the following is the most important feature required for this solution?

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

A cloud solutions architect is designing a VM-based solution that requires reducing the cost as much as possible. Which of the following solutions will best satisfy this requirement?

（A）Creating Spot VMs in one availability zone

（B）Using ephemeral storage on replicated VMs

（C）Using provisioned IOPS storage

（D）Spreading the VMs across different regions

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

A cloud deployment uses three different VPCs. The subnets on each VPC need to communicate with the others over private channels. Which of the following will achieve this objective?

（A）Establishing identical routing tables on all VPCs

（B）Deploying a load balancer to send traffic to the private IP addresses

（C）Adding BGP routes using the VPCs' private IP addresses

（D）Creating peering connections between all VPCs

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

A critical security patch is required on a network load balancer in a public cloud. The organization has a major sales conference next week, and the Chief Executive Officer does not want any interruptions during the demonstration of an application behind the load balancer. Which of the following approaches should the cloud security engineer take?

（A）Ask the management team to delay the conference.

（B）Ask the upper management team to approve an emergency patch window.

（C）Apply the security patch immediately before the conference.

（D）Apply the security patch after the event.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Which of the following can reduce the risk of CI/CD pipelines leaking secrets?

（A）Protected Git branches

（B）Canary tests

（C）Use of a VM instead of containers

（D）Private image repositories

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

A systems administrator notices a surge of network traffic is coming from the monitoring server.
The administrator discovers that large amounts of data are being downloaded to an external source. While investigating, the administrator reviews the following logs:

Which of the following ports has been compromised?

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

A company recently adjusted its load-balancer encryption policies to support only TLSv1.3. Soon after the change was made, several customers began reporting they could not access their website. Which of the following is the MOST likely cause of the issue?

（A）There is a mismatch between the key and the certificate.

（B）The customers are using an unsupported OS.

（C）The certificate is expired.

（D）The load balancer was misconfigured.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

A cloud engineer hardened the WAF for a company that operates exclusively in North America.
The engineer did not make changes to any ports, and all protected applications have continued to function as expected. Which of the following configuration changes did the engineer most likely apply?

（A）The engineer completed an upgrade from TLS version 1.1 to version 1.3.

（B）The engineer implemented MFA to access the WAF configurations.

（C）The engineer installed the latest security patches on the WAF.

（D）The engineer blocked all traffic originating outside the region.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

A cloud engineer wants to run a script that increases the volume storage size if it is below 100GB.
Which of the following should the engineer run?

（A）Option D

（B）Option B

（C）Option C

（D）Option A

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

A newly configured VM fails to run application updates despite having internet access. The updates download automatically from a third-party network. Given the following output:

Which of the following troubleshooting steps would be best to take?

（A）Reconfiguring routing protocols

（B）Running a trace to the router

（C）Checking DNS configurations

（D）Testing the IP address configuration

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Which of the following network types allows the addition of new features through the use of network function virtualization?

（A）Software-defined network

（B）Wide area network

（C）Storage area network

（D）Local area network

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

A company wants to use a solution that will allow for quick recovery from ransomware attacks, as well as intentional and unintentional attacks on data integrity and availability. Which of the following should the company implement that will minimize administrative overhead?

（A）Data replication

（B）Volume snapshots

（C）Off-site backups

（D）Object versioning

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Which of the following is an auditing procedure that ensures service providers securely manage the data to protect the interests of the organization and the privacy of its clients?

（A）CIS

（B）SOC2

（C）ISO 27001

（D）ITIL

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 17

Which of the following migration types is best to use when migrating a highly available application, which is normally hosted on a local VM cluster, for usage with an external user population?

（A）On-premises to cloud

（B）Cloud to on-premises

（C）On-premises to on-premises

（D）Cloud to cloud

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

A cloud administrator needs to collect process-level, memory-usage tracking for the virtual machines that are part of an autoscaling group. Which of the following is the best way to accomplish the goal by using cloud-native monitoring services?

（A）Scheduling a script to collect the data

（B）Configuring page file/swap metrics

（C）Deploying the cloud-monitoring agent software

（D）Enabling memory monitoring in the VM configuration

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

CV0-004 無料問題集「CompTIA Cloud+ (2024)」

弊社を連絡する

関連リンク

トップ試験