CompTIA Updated CV0-003 Exam Questions and Answers by zayna

The best options to implement for a public cloud solution for an existing application using lift and shift that requires scalability and external access are a load balancer and a VPN (virtual private network). A load balancer is a device or service that distributes incoming traffic across multiple servers or instances based on various criteria, such as availability, capacity, or performance. A load balancer can improve scalability by balancing the workload and optimizing resource utilization. A VPN is a technology that creates a secure and encrypted connection over a public network, such as the internet. A VPN can provide external access by allowing remote users or sites to connect to the cloud resources as if they were on the same private network. Reference: CompTIA Cloud+ Certification Exam Objectives, Domain 1.0 Configuration and Deployment, Objective 1.4 Given a scenario, execute a provided deployment plan.

The recovery point objective (RPO) is a metric that defines the maximum amount of data that can be lost or acceptable data loss in the event of a disaster or disruption. The RPO determines how frequently the backups should be performed and how far back in time the recovery should go. In this case, the RPO needs to be updated in the DR plan, as seven hours’ worth of data loss is deemed unacceptable. The RPO should be reduced to a lower value, such as one hour or less, to minimize the data loss and meet the business requirements. Reference: CompTIA Cloud+ Certification Exam Objectives, Domain 3.0 Maintenance, Objective 3.2 Given a scenario, implement backup, restore, disaster recovery and business continuity measures.

The best way to prevent two virtual database servers from being on the same host is to configure anti-affinity. Anti-affinity is a feature that allows specifying which VMs or applications should not run on the same host or cluster. This can improve availability, performance, and security by avoiding resource contention, single point of failure, or interference between VMs or applications. The systems administrator should create an anti-affinity rule or policy for the two virtual database servers to ensure they are placed on different hosts. Reference: CompTIA Cloud+ Certification Exam Objectives, Domain 1.0 Configuration and Deployment, Objective 1.2 Given a scenario involving requirements for deploying an application in the cloud, select an appropriate solution design.

A volume-based licensing model is a licensing model that charges the customer based on the amount of data or resources that they consume or use. A volume-based licensing model is suitable for an laaS (Infrastructure as a Service) environment, as it allows the customer to pay only for what they need and scale up or down as their demand changes. A volume-based licensing model can provide financial benefits for the customer, such as lower upfront costs, greater flexibility, and more predictable billing.QUESTION NO: 277

A cloud administrator is evaluating a solution that will limit access to authorized individuals. The solution also needs to ensure the system that connects to the environment meets patching, antivirus, and configuration requirements. Which of the following technologies would BEST meet these requirements?

A.NAC

B.EDR

C.IDS

D.HIPS

Answer: A

NAC (Network Access Control) is a technology that will limit access to authorized individuals and ensure the system that connects to the environment meets patching, antivirus, and configuration requirements. NAC can enforce policies and rules that define who, what, when, where, and how a device or a user can access a network or a cloud environment. NAC can also inspect and evaluate the security posture and compliance status of a device or a user before granting or denying access. For example, NAC can check if the device has the latest patches, antivirus software, and configuration settings, and if not, it can quarantine, remediate, or reject the device. NAC can also monitor and audit the ongoing network activity and behavior of the devices and users, and take actions if any violations or anomalies are detected.