CompTIA CV0-004 Exam Practice Test Instant Access

Question 1

You are a cloud engineer working for a cloud service provider that is responsible for an

IaaS offering.

Your customer, who creates VMs and manages virtual storage, has noticed I/O bandwidth issues and low IOPS (under 9000).

Your manager wants you to verify the proper storage configuration as dictated by your service level agreement (SLA).

The SLA specifies:

. Each SFP on the hypervisor host must be set to the maximum link speed

allowed by the SAN array. . All SAN array disk groups must be configured in a RAID 5.

. The SAN array must be fully configured for redundant fabric paths. . IOPS should not fall below 14000

INSTRUCTIONS

Click on each service processor to review the displayed information. Then click on the drop-down menus to change the settings of each device as necessary to conform to the SLA requirements.

ASee the explanation for complete solution

Answer : A

Based on the SLA requirements and the information provided in the diagram:

For the Hypervisor:

Slot A fiber channel card:

Port 1 link speed should be set to 16 Gbps since it's connected to Fabric switch A which supports 16 Gbps.

Port 2 link speed should be set to 8 Gbps because it's connected to Fabric switch B which supports up to 8 Gbps.

Slot B fiber channel card:

Port 1 link speed should be set to 16 Gbps since it's connected to Fabric switch A which supports 16 Gbps.

Port 2 link speed should be set to 8 Gbps because it's connected to Fabric switch B which supports up to 8 Gbps.

Question 2

A cloud security analyst is investigating the impact of a recent cyberattack. The analyst is reviewing the following information:

Web server access log:

104.210.233.225 - - [21/10/2022:11:17: 40] "POST /uploadfile.html?f=myfile.php" 200 1638674

45.32.10.66 - - [21/10/2022:11:19:12] "GET /welcome.html" 200 5812

104.210.233.225 - - [21/10/2022:11:21:19] "GET / .. / .. / .. / .. /conf/server.xml HTTP/1.1" 200 74458

45.32.10.66 - - [21/10/22:11:22:32] "GET /admin.html HTTP/1.1" 200 9518

Web application firewall log:

"2022/10/21 11:17:33" "10.25.2.35" "104. 210.233.225" "userl" "File transfer completed successfully."

"2022/10/21 11:21:05" "10. 25.2. 35" "104. 210.233.225" "userl" "Accessed application page."

"2022/10/21 11:22:13" "10.25.2.35" "45. 32. 10. 66" "user2" "Accessing admin page. "

Which of the following has occurred?

AThe corporate administration page was defaced by the attacker.

BA denial-of-service attack was successfully performed on the web server.

CA new user was created on the web server by the attacker.

DSensitive information from the corporate web server was leaked.

Answer : D

The logs indicate that the IP address 104.210.233.225 made a GET request that appears to traverse directories (as indicated by the '/../../') to access 'server.xml', which is a configuration file for the server. This type of request is indicative of a directory traversal attack, which can lead to unauthorized access to sensitive files on the server. The successful 200 response code suggests that the file was accessed, implying that sensitive configuration data could have been leaked. Reference: CompTIA Cloud+ Certification Study Guide (Exam CV0-004) by Scott Wilson and Eric Vanderburg

Question 3

A security team recently hired multiple interns who all need the same level of access. Which of the following controls should the security team implement to provide access to the

cloud environment with the least amount of overhead?

AMFA

BDiscretionary access

CLocal user access

DGroup-based access control

Answer : D

Implementing group-based access control is the most efficient way to provide access to multiple interns who require the same level of access. This method allows the security team to assign permissions to a group rather than to individual user accounts, thereby reducing the administrative overhead involved in managing access rights for each intern individually. Reference: CompTIA Cloud+ Certification Study Guide (Exam CV0-004) by Scott Wilson and Eric Vanderburg

Question 4

A cloud engineer is designing a high-performance computing cluster for proprietary software. The software requires low network latency and high throughput between cluster nodes.

Which of the following would have the greatest impact on latency and throughput when designing the HPC infrastructure?

ANode placement

BNode size

CNode NIC

DNode OS

Answer : A

Node placement is critical in high-performance computing (HPC) clusters where low network latency and high throughput are required. Proper placement of nodes within the network infrastructure, including proximity to each other and to key network components, can significantly reduce latency and increase throughput. Ensuring that nodes are physically close and well-connected can facilitate faster data transfer rates between them. Reference: CompTIA Cloud+ Certification Study Guide (Exam CV0-004) by Scott Wilson and Eric Vanderburg

Question 5

A cloud engineer is deploying a cloud solution that will be used on premises with need-to-know access. Which of the following cloud deployment models best meets this

requirement?

ACommunity

BPublic

CPrivate

DHybrid

Answer : C

A private cloud deployment model is the most appropriate when the requirement is for 'need-to-know' access, as it offers a more secure environment with resources dedicated to a single organization. It can be hosted on-premises or off-premises but is maintained on a private network, ensuring greater control over the data, security, and compliance when compared to other cloud models. Reference: CompTIA Cloud+ Certification Study Guide (Exam CV0-004) by Scott Wilson and Eric Vanderburg

Question 6

The company's IDS has reported an anomaly. The cloud engineer remotely accesses the cloud instance, runs a command, and receives the following information:

Which of the following is the most likely root cause of this anomaly?

APrivilege escalation

BLeaked credentials

CCryptojacking

DDefaced website

Answer : A

The output from the 'ps' command indicates there is a process running under the UID (User ID) of 0, which is the root user, and the command that was run is '/var/www/command.py'. Given that the normal Apache processes are running under their own UID (65535), this suggests that a command was executed with root privileges that typically should not have such high-level access. This is a strong indicator of privilege escalation, where an unauthorized user or process gains elevated access to resources that are normally protected from an application or user. Reference: CompTIA Cloud+ Certification Study Guide (Exam CV0-004) by Scott Wilson and Eric Vanderburg

Question 7

A bank informs an administrator that changes must be made to backups for long-term reporting purposes. Which of the following is the most important change the administrator

should make to satisfy these requirements?

ALocation of the backups

BType of the backups

CRetention of the backups

DSchedule of the backups

Answer : C

For long-term reporting purposes, the most critical aspect to consider is the retention period of the backups. This is because the bank will likely require access to historical data for audit, compliance, and reporting purposes. The retention policy will need to ensure that backups are kept for the required duration, which may be several years depending on regulatory and business needs. Adjusting the retention policy will help ensure that the necessary data is preserved for as long as it is needed, without unnecessary data accumulation that could lead to higher costs and management complexity. Reference: CompTIA Cloud+ Certification Study Guide (Exam CV0-004) by Scott Wilson and Eric Vanderburg

CompTIA CV0-004 CompTIA Cloud+ (2024) Exam Practice Test