Updated Nov-2024 CV0-003 Exam Practice Test Questions [Q79-Q98]

Share

Updated Nov-2024 CV0-003 Exam Practice Test Questions

Verified CV0-003 dumps Q&As 100% Pass in First Attempt Guaranteed Updated Dump

NEW QUESTION # 79
A company has an SLA of 15ms for storage latency.

Given the above metrics, which of the following is the MOST appropriate change to the environment?

  • A. Enable compression on the storage side.
  • B. Add computing nodes and data nodes on the storage side.
  • C. Enable deduplication on the storage side.
  • D. Add more storage shelves to the current array.

Answer: A


NEW QUESTION # 80
Which of the following cloud deployment models allows a company to have full control over its IT infrastructure?

  • A. Hybrid
  • B. Public
  • C. Private
  • D. Cloud within a cloud

Answer: C


NEW QUESTION # 81
Which of the following is relevant to capacity planning in a SaaS environment?

  • A. Scalability
  • B. Clustering
  • C. Licensing
  • D. A hypervisor

Answer: A

Explanation:
Scalability is the ability of a system or service to handle increased workload or demand by adding or removing resources or capacity as needed. Scalability is relevant to capacity planning in a SaaS environment, as it can affect the performance, availability, and cost of the SaaS service. Scalability can help optimize the capacity planning process by ensuring that the SaaS service has enough resources or capacity to meet the current and future needs of the customers without wasting or underutilizing resources or capacity. References: CompTIA Cloud+ Certification Exam Objectives, page 12, section 2.2


NEW QUESTION # 82
Users at a university are experiencing slow response and performance issues with private cloud services. The university was compromised, and a loss of bandwidth utilization was reported.
Without deploying new software, which of the following should be performed to determine the cause of the issues?

  • A. Implement and update an antivirus solution to the cloud infrastructure to detect potential threats.
  • B. Install sniffing tools, catalog the type of traffic, and capture all traffic to and from the target systems.
  • C. Send all logs for all cloud components to an event and incident management system for correlation and review.
  • D. Locate all load balancers in the cloud and replace them with the latest version of content delivery controllers.

Answer: B


NEW QUESTION # 83
A facilities management company uses a private cloud that bursts to a public cloud at times. The CSA is asked to check the amount of storage that is used when the organization is overutilizing on-premises resources.
Which of the following should the CSA check?

  • A. Confirm storage utilization in the public cloud backup environment.
  • B. Ensure deduplication is enabled on all storage volumes.
  • C. Check storage utilization in the public cloud.
  • D. Verify storage utilization in the private cloud.

Answer: D


NEW QUESTION # 84
A company wants to move its environment from on premises to the cloud without vendor lock-in.
Which of the following would BEST meet this requirement?

  • A. DBaaS
  • B. SaaS
  • C. IaaS
  • D. PaaS

Answer: C


NEW QUESTION # 85
An administrator has been asked by the Chief Information Officer (CIO) to provide storage that will have the ability to accommodate at least FC and SATA in the same enterprise array with software that will be policy driven based on performance. Which of the following enterprise storage features should be recommended?

  • A. Dynamic provisioning
  • B. Dynamic resource allocation
  • C. Storage provisioning
  • D. Storage tiering

Answer: D


NEW QUESTION # 86
A cloud administrator needs to coordinate and automate the management of a company's secrets and keys for all its cloud services with minimal effort and low cost. Which of the following is the BEST option to achieve the goal?

  • A. Implement KeePass
  • B. Implement database as a service
  • C. Use password as a service
  • D. Configure Key Vault

Answer: D

Explanation:
Reference: https://docs.microsoft.com/en-us/azure/key-vault/key-vault-whatis Key Vault is a service that allows you to store and manage secrets and keys for your cloud services in a secure and centralized way. It also provides access control, auditing, and encryption features. This would be the best option to automate the management of secrets and keys for all cloud services with minimal effort and low cost.
Reference: CompTIA Cloud+ Certification Exam Objectives, Domain 3.0 Maintenance, Objective 3.4 Given a scenario, implement automation and orchestration to optimize cloud operations.


NEW QUESTION # 87
A cloud administrator has finished setting up an application that will use RDP to connect. During testing, users experience a connection timeout error.
Which of the following will MOST likely solve the issue?

  • A. Opening TCP port 3389
  • B. Configuring QoS rules
  • C. Enforcing TLS authentication
  • D. Checking user passwords

Answer: A

Explanation:
https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/troubleshoot/rdp-error-general-troubleshooting


NEW QUESTION # 88
A DevOps administrator is automating an existing software development workflow. The administrator wants to ensure that prior to any new code going into production, tests confirm the new code does not negatively impact existing automation activities.
Which of the following testing techniques would be BEST to use?

  • A. Penetration testing
  • B. Vulnerability testing
  • C. Regression testing
  • D. Usability testing

Answer: C

Explanation:
Explanation
Regression testing is a type of testing that ensures that new code or changes to existing code do not break or degrade the functionality of the software. Regression testing is often used in software development workflows to verify that new features or bug fixes do not introduce new errors or affect the performance of the software.
Regression testing can help prevent negative impacts on existing automation activities by checking that the new code is compatible with the existing code and does not cause any unexpected failures or errors.
References: CompTIA Cloud+ Certification Exam Objectives, page 19, section 4.1


NEW QUESTION # 89
A systems administrator is configuring a cloud solution for a vulnerability assessment to test the company's resources that are hosted in a public cloud. The solution must test the company's resources from an external user's perspective. Which of the following should the systems administrator configure?

  • A. An agent-based scan
  • B. A credentialed scan
  • C. A port scan
  • D. A network-based scan

Answer: D

Explanation:
A network-based scan is a type of vulnerability assessment that tests the security of a system or a network from an external user's perspective, without requiring any software or credentials on the target. A network-based scan can identify vulnerabilities such as open ports, misconfigured firewalls, outdated software, or exposed services .


NEW QUESTION # 90
An organization wants to create a server VM that is segregated from the rest of the servers.
Which of the following should the server administrator configure?

  • A. VPN connection
  • B. Virtual memory
  • C. Virtual NIC
  • D. Trunk port

Answer: C


NEW QUESTION # 91
An engineer is responsible for configuring a new firewall solution that will be deployed in a new public cloud environment. All traffic must pass through the firewall. The SLA for the firewall is 99.999%. Which of the following should be deployed?

  • A. Two firewalls in a HA configuration
  • B. A web application firewall
  • C. Two load balancers behind a single firewall
  • D. Firewalls in a blue-green configuration

Answer: A

Explanation:
Explanation
Deploying two firewalls in a HA (High Availability) configuration is the best option to ensure all traffic passes through the firewall and meets the SLA (Service Level Agreement) of 99.999%. HA is a design principle that aims to minimize downtime and ensure continuous operation of a system or service. HA can be achieved by using redundancy, failover, load balancing, clustering, etc. Two firewalls in a HA configuration can provide redundancy and failover in case one firewall fails or becomes overloaded.


NEW QUESTION # 92
Ann. a user, has tried to connect to a VM hosted in a private cloud using her directory services credentials. After three attempts, she realizes the keyboard was set to German instead of English, and she was typing "z" instead of "y". After fixing this issue, Ann is still unable to log in; however, other users can access the VM. Which of the following is the MOST likely cause?

  • A. There is an account mismatch.
  • B. The account localization settings are incorrect.
  • C. Directory services are offline.
  • D. The account was locked.
  • E. The default language on Ann's computer is German.

Answer: B


NEW QUESTION # 93
A VDI provider suspects users are installing prohibited software on the instances. Which of the following must be implemented to prevent the issue?

  • A. Patch management
  • B. Vulnerability scanning
  • C. System hardening
  • D. Log monitoring

Answer: C

Explanation:
System hardening. System hardening is the process of securing a system by reducing its surface of vulnerability, which is larger when a system performs more functions. In contrast to system hardening, which is performed once, patch management, vulnerability scanning, and log monitoring are ongoing processes. By hardening the VDI instances, the provider can prevent users from installing prohibited software or making unauthorized changes to the system configuration. This can be done by applying security policies, disabling unnecessary services, removing default accounts, and enforcing strong passwords. For more information on system hardening, you can refer to the CompTIA Cloud+ CV0-003 Certification Study Guide1 or the CompTIA Cloud+ (Plus) Certification website2.


NEW QUESTION # 94
A company has a large environment with multiple VPCs across three regions in a public cloud. The company is concerned about connectivity within the regions. Which of the following should the cloud administrator implement?

  • A. A firewall
  • B. Network access control
  • C. A load balancer
  • D. Peering

Answer: D

Explanation:
Peering is a networking technique that allows direct and private connection between two or more cloud networks without using the public Internet. Peering can help the cloud administrator improve the connectivity within the regions by reducing the latency, increasing the bandwidth, and enhancing the security of the data transfer. Peering can be implemented between VPCs within the same region or across different regions, depending on the CSP's offerings and the customer's requirements. Peering can also help reduce the network costs by avoiding the use of the Internet gateways or VPNs. References: CompTIA Cloud+ CV0-003 Certification Study Guide, Chapter 3, Objective 3.1: Given a scenario, implement cloud networking solutions.


NEW QUESTION # 95
A cloud architect wants to minimize the risk of having systems administrators in an IaaS compute instance perform application code changes. The development group should be the only group allowed to modify files in the directory.
Which of the following will accomplish the desired objective?

  • A. Add access to the fileshare for the systems administrator's group.
  • B. Remove the file write permissions for the application service account.
  • C. Deny access to all development user accounts
  • D. Restrict the file write permissions to the development group only.

Answer: D

Explanation:
File write permissions are permissions that control who can modify or delete files in a directory or system. Restricting the file write permissions to the development group only can help minimize the risk of having systems administrators in an IaaS compute instance perform application code changes, as it can prevent anyone other than the development group from altering or removing any files in the directory where the application code is stored. Restricting the file write permissions can also help maintain consistency and integrity, as it can ensure that only authorized and qualified users can make changes to the application code. Reference: CompTIA Cloud+ Certification Exam Objectives, page 14, section 2.7


NEW QUESTION # 96
Which of the following encryption types would be used to protect company information when stored on a cloud server being shared by multiple companies?

  • A. Secure socket layer encryption
  • B. Transport layer security encryption
  • C. Whole disk encryption
  • D. File and folder level encryption

Answer: D


NEW QUESTION # 97
Which of the following must be implemented by a cloud provider to ensure that different entities can authenticate and share basic user accounting information?

  • A. Scalability
  • B. Federation
  • C. Self service
  • D. Virtualization

Answer: D


NEW QUESTION # 98
......

Ultimate Guide to Prepare Free CV0-003 Exam Questions and Answer: https://drive.google.com/open?id=1oY94impmD3xdQOTr-AqhWa_yrqXtGTXo

Pass CompTIA Cloud+ CV0-003 Exam With 418 Questions: https://www.certkingdompdf.com/CV0-003-latest-certkingdom-dumps.html