CompTIA CompTIA Certifications CV0-002 Questions & Answers

• Question 421:

  A new browser version has been deployed to all users at a company. After the deployment, users report that they can no longer access the company's secure time-card system, which is hosted by a SaaS provider. A technician investigates and discovers a security error is received upon opening the site. If the browser is rolled back to the older version, the site is accessible again. Which of the following is the MOST likely cause of the security error users are seeing?

  A. SSL certificate expiration on the SaaS load balancers

  B. Federation issues between the SaaS provider and the company

  C. Obsolete security technologies implemented on the SaaS servers

  D. Unencrypted communications between the users and the application

  Correct Answer: C

• Question 422:

  A cloud architect created a new delivery controller for a large VM farm to scale up according to organizational needs. The old and new delivery controllers now form a cluster. However, the new delivery controller returns an error when entering the license code. Which of the following is the MOST likely cause?

  A. A firewall is blocking the port on the license server.

  B. The existing license is for a lower version.

  C. The existing license is not supported for clusters.

  D. The existing license has expired.

  Correct Answer: A

• Question 423:

  A cloud administrator has configured a connection between two virtual private cloud environments at a public cloud provider that are each in different accounts. The administrator has configured the accounts correctly so they can connect to each other's resources. Both cloud environments have policies that allow anyone from 0.0.0.0/0 on TCP port 22. The following table shows the network configuration information:

  

  However, the administrator is unable to establish an SSH connection from a server in 10.250.40.100 to 10.250.48.214. Which of the following is the MOST likely issue?

  A. The network ACL is not configured to allow SSH access.

  B. The IP configuration on one of the servers is incorrect.

  C. The administrator does not have sufficient credentials.

  D. The routing tables have not been updated correctly.

  Correct Answer: D

• Question 424:

  A manufacturing company's current security policy mandates PII is not stored in the SaaS solution. Which of the following configuration controls should be used to block sensitive information from being stored in the SaaS solution?

  A. Implement file-level encryption.

  B. Implement a network ACL.

  C. Implement an IPS.

  D. Implement content filtering.

  Correct Answer: B

• Question 425:

  An organization is replacing its internal human resources system with a SaaS-based application. The solution is multi-tenant, and the organization wants to ensure ubiquitous access while preventing password replay attacks. Which of the following would BEST help to mitigate the risk?

  A. Implement destination resources authentication.

  B. Require and implement two-factor authentication.

  C. Remove administrator privileges from users' laptops.

  D. Combine network authentication and physical security in one card/token.

  Correct Answer: B

• Question 426:

  A company has an SLA of 15ms for storage latency.

  

  Given the above metrics, which of the following is the MOST appropriate change to the environment?

  A. Add computing nodes and data nodes on the storage side.

  B. Add more storage shelves to the current array.

  C. Enable compression on the storage side.

  D. Enable deduplication on the storage side.

  Correct Answer: C

• Question 427:

  A cloud administrator works for an online gaming company that is hosting its multiplayer servers in a public IaaS cloud. The following metrics are reported during a controlled beta test:

  RAM usage80%

  Bandwidth usage50%

  Average ping800ms

  The beta test shows poor performance for gamers. Which of the following should the cloud administrator implement FIRST to improve the gamers' experience?

  A. Scale the deployment of multiplayer servers by doubling the number of VMs.

  B. Increase network bandwidth on the multiplayer servers.

  C. Increase the RAM on the multiplayer servers.

  D. Deploy multiplayer servers in public cloud locations closer to the user base.

  Correct Answer: B

• Question 428:

  A cloud implementation engineer successfully created a new VM. However, the engineer notices the new VM is not accessible from another network. A ping test works from another VM on the same subnet. Which of the following is the MOST likely problem?

  A. Incorrect subnet

  B. Incorrect host IP address

  C. Incorrect VLAN

  D. Incorrect gateway

  Correct Answer: A

• Question 429:

  A company is implementing a SaaS solution with a large user base. SaaS solution licensing is user based, and user management is critical to keep the cost in check. Which of the following is the MOST efficient way to meet this requirement?

  A. Have the administrator of the SaaS solution keep track of user activities.

  B. Have a nightly upload to the SaaS provider of the current user base based on API call.

  C. Have users remove their SaaS accounts when they no longer need the service.

  D. Have a weekly user management script maintain the SaaS user base.

  Correct Answer: A

• Question 430:

  In an IaaS model, to which of the following methodologies would the client apply a list of OS patches, assuming approval from CAB has been given?

  A. Using a patch management system, identify the hypervisor type, select a group of hypervisors to be patched, and perform a rolling application of patches.

  B. Using a patch management system, identify the guests that require patching, and select and apply the patches.

  C. Using a patch management system, identify the applications needing the patch, select the required application in a patch management console, and apply the patches.

  D. Using a patch management system, identify the services that require patching, and select and apply the patches.

  Correct Answer: A