CompTIA CV0-004 Exam Practice Questions to Pass CompTIA Cloud+ Exam

Question 1

A security analyst reviews the daily logs and notices the following suspicious activity:

The analyst investigates the firewall logs and identities the following:

Which of the following steps should the security analyst take next to resolve this issue? (Select two).

ASubmit an IT support ticket and request Kali Linux be uninstalled from John Smith's computer

BBlock all inbound connections on port 4444 and block the IP address 201.101.25.121.

CContact John Smith and request the Ethernet cable attached to the desktop be unplugged

DCheck the running processes to confirm if a backdoor connection has been established.

EUpgrade the Windows x64 operating system on John Smith's computer to the latest version.

FBlock all outbound connections from the IP address 10.150.71.151.

Answer : B, D

Given the suspicious activity and Kali Linux's association with penetration testing and hacking tools, the security analyst should block all inbound connections on port 4444, as it is commonly used for malicious purposes, and block the IP address that's potentially the source of the intrusion. Additionally, checking the running processes on John Smith's computer is crucial to determine if a backdoor or unauthorized connection has been established.

: Incident response and threat mitigation steps such as these are part of the security protocols discussed in the CompTIA Cloud+ certification.

Question 2

A company is developing a new web application that requires a relational database management system with minimal operational overhead. Which of the following should the company choose?

AA database installed on a virtual machine

BA managed SQL database on the cloud

CA database migration service

DA hybrid database setup

Answer : B

For a new web application that requires a relational database management system with minimal operational overhead, the company should choose a managed SQL database on the cloud. Managed databases provide automated backups, patching, and other management tasks, reducing the administrative burden.

: The use of managed services, like managed databases, to minimize operational overhead is a strategic decision in cloud computing covered in CompTIA Cloud+.

Question 3

A cloud service provider just launched a new serverless service that is compliant with all security regulations. A company deployed its code using the service, and the company's application was hacked due to leaked credentials. Which of the following is responsible?

ACustomer

BCloud service provider

CHacker

DCode repository

Answer : A

Comprehensive and Detailed Step-by-Step

A . Customer: Under the shared responsibility model, customers are responsible for securing their code and credentials in cloud environments.

B . Cloud service provider: Responsible for securing the underlying infrastructure, not customer-deployed applications or credentials.

C . Hacker: Exploited the breach but isn't directly responsible for security lapses.

D . Code repository: Doesn't inherently cause the issue unless mismanaged by the customer.

Question 4

A software engineer needs to transfer data over the internet using programmatic access while also being able to query the dat

a. Which of the following will best help the engineer to complete this task?

ASQL

BWeb sockets

CRPC

DGraphQL

Answer : D

GraphQL is the best option for transferring data over the internet with programmatic access and querying capabilities. It is a query language for APIs and a runtime for executing those queries with existing data, providing a more efficient, powerful, and flexible alternative to the REST API.

: Data transfer and querying methods are part of the technical knowledge associated with cloud computing, as included in CompTIA Cloud+.

Question 5

A company receives files daily from a bank. The company requires that the files must be copied from the cloud storage resource to another cloud storage resource for further

processing. Which of the following methods requires the least amount of effort to achieve the task?

ARemote procedure call

BSOAP

CEvent-driven architecture

DREST

Answer : C

An event-driven architecture is the most efficient method for automating the task of copying files from one cloud storage resource to another upon their arrival. This architecture allows systems to automatically trigger actions based on specific events, such as the arrival of new files, minimizing manual effort and ensuring timely processing.

References: CompTIA Cloud+ resources and cloud service architectures

Question 6

A company needs to deploy its own code directly in the cloud without provisioning additional infrastructure. Which of the following is the best cloud service model for the company to use?

APaaS

BSaaS

ClaaS

DXaaS

Answer : A

Platform as a Service (PaaS) is the best cloud service model for deploying code directly in the cloud without provisioning additional infrastructure. PaaS provides a platform allowing customers to develop, run, and manage applications without the complexity of building and maintaining the infrastructure.

: The PaaS model and its benefits for application deployment are covered under the Cloud Concepts domain in the CompTIA Cloud+ certification.

Question 7

A company that has several branches worldwide needs to facilitate full access to a specific cloud resource to a branch in Spain. Other branches will have only read access. Which of

the following is the best way to grant access to the branch in Spain?

ASet up MFA for the users working at the branch.

BCreate a network security group with required permissions for users in Spain.

CApply a rule on the WAF to allow only users in Spain access to the resource.

DImplement an IPS/IDS to detect unauthorized users.

Answer : B

The best way to grant full access to a specific cloud resource to a branch in Spain, while other branches have only read access, is to create a network security group with the required permissions. This group can be configured to allow full access to users within the branch's IP range while restricting others to read-only access. References: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Security Configuration

CompTIA Cloud+ (V4) CV0-004 Practice Questions