CV0-004 Online Practice Questions and Answers

HOTSPOT

The QA team is testing a newly implemented clinical trial management (CTM) SaaS application that uses a business intelligence application for reporting. The UAT users were instructed to use HTTP and HTTPS.

Refer to the application dataflow:

1.

1A -The end user accesses the application through a web browser to enter and view clinical data.

2.

2A -The CTM application server reads/writes data to/from the database server.

3.

1B -The end user accesses the application through a web browser to run reports on clinical data.

4.

2B -The CTM application server makes a SOAP call on a non-privileged port to the BI application server.

5.

3B -The BI application server gets the data from the database server and presents it to the CTM application server.

When UAT users try to access the application using https://ctm.app.com or http://ctm.app.com, they get a message stating: "Browser cannot display the webpage." The QA team has raised a ticket to troubleshoot the issue.

INSTRUCTIONS

You are a cloud engineer who is tasked with reviewing the firewall rules as well as virtual network settings.

You should ensure the firewall rules are allowing only the traffic based on the dataflow.

You have already verified the external DNS resolution and NAT are working.

Verify and appropriately configure the VLAN assignments and ACLs. Drag and drop the appropriate VLANs to each tier from the VLAN Tags table. Click on each Firewall to change ACLs as needed.

If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Hot Area:

Which of the following migration types is best to use when migrating a highly available application, which is normally hosted on a local VM cluster, for usage with an external user population?

A. Cloud to on-premises

B. Cloud to cloud

C. On-premises to cloud

D. On-premises to on-premises

An administrator is setting up a cloud backup solution that requires the following features:

4.

Cost effective

5.

Granular recovery

6.

Multilocation

Which of the following backup types best meets these requirements?

A. Off-site, full, incremental, and differential

B. Cloud site, full, and differential

C. On-site. full, and incremental

D. On-site. full, and differential

A developer is deploying a new version of a containerized application. The DevOps team wants:

1.

No disruption

2.

No performance degradation

3.

Cost-effective deployment

4.

Minimal deployment time

Which of the following is the best deployment strategy given the requirements?

A. Canary

B. In-place

C. Blue-green

D. Rolling

A cloud engineer wants containers to run the latest version of a container base image to reduce the number of vulnerabilities. The applications in use requite Python 3.10 and ate not compatible with any other version. The containers' images are created every time a new version is released from the source image. Given the container Dockerfile below: Which of the following actions will achieve the objectives with the least effort?

A. Perform docker pull before executing docker run.

B. Execute docker update using a local cron to get the latest container version.

C. Change the image to use python:latest on the image build process.

D. Update the Dockerfile to pin the source image version.

Users report being unable to access an application that uses TLS 1.1. The users are able to access other applications on the internet.

Which of the following is the most likely reason for this issue?

A. The security team modified user permissions.

B. Changes were made on the web server to address vulnerabilities.

C. Privileged access was implemented.

D. The firewall was modified.

A systems administrator has migrated an internal application to a public cloud. The new web server is running under a TLS connection and has the same TLS certificate as the internal application that is deployed. However, the IT department reports that only internal users who are using new versions of the OSs are able to load the application home page.

Which of the following is the MOST likely cause of the issue?

A. The local firewall from older OSs is not allowing outbound connections

B. The local firewall from older OSs is not allowing inbound connections

C. The cloud web server is using a self-signed certificate that is not supported by older browsers

D. The cloud web server is using strong ciphers that are not supported by older browsers

A company needs to rehost its ERP system to complete a datacenter migration to the public cloud. The company has already migrated other systems and configured VPN connections.

Which of the following MOST likely needs to be analyzed before rehosting the ERP?

A. Software

B. Licensing

C. Right-sizing

D. The network

A cloud administrator is reviewing the current private cloud and public law environment, and is building an optimization plan. Portability is of great concern for the administrator so resources can be easily moved from one environment to another.

Which of the following should the administrator implement?

A. Serverless

B. CDN

C. Containers

D. Deduplication

A company's website development team made some code changes to implement a new feature. The development team published the changes via a code pipeline and verified that the feature is in the development environment. However, the testing team is unable to see the new feature when executing the test plan.

Which of the following steps should the cloud administrator take first to identify the cause of the issue?

A. Roll back the development pipeline to revert and reapply the changes.

B. Confirm that the deployment has been completed in the QA environment.

C. Switch the application load balancer to use the blue environment

D. Update the policies on the CASB to allow access to the test environment.