A list of CVEs was identified on a web server. The systems administrator decides to close the ports and disable weak TLS ciphers. Which of the following describes this vulnerability management stage?
Correct Answer:
D
Closing the ports and disabling weak TLS ciphers as a response to a list of identified CVEs (Common Vulnerabilities and Exposures) describes the vulnerability management stage of 'remediation'. This stage involves taking actions to resolve vulnerabilities and mitigate potential risks.References: Vulnerability management stages, including remediation efforts, are a key aspect of the security measures discussed in CompTIA Cloud+.
Which of the following is the most cost-effective and efficient strategy when migrating to the cloud?
Correct Answer:
A
The most cost-effective and efficient strategy when migrating to the cloud can often be to 'retire' or turn off legacy systems that are no longer useful or necessary. This avoids spending resources on migrating and maintaining systems that do not provide value in a cloud environment.References: Cloud migration strategies, including retiring outdated systems, are part of the decision-making process for cloud adoption in the CompTIA Cloud+ certification material.
A manager wants information about which users signed in to a certain VM during the past month. Which of the following can the cloud administrator use to obtain this information?
Correct Answer:
D
To obtain information about which users signed in to a certain VM during the past month, a cloud administrator can use log collection. Log collection involves gathering and storing logs from various sources, including VMs, to provide historical data on system access and activity, which can then be analyzed to identify user login instances.References: The CompTIA Cloud+ certification emphasizes the importance of monitoring and visibility in cloud environments, which includes log collection and analysis as key components of operational management and security monitoring.
A cloud administrator shortens the amount of time a backup runs. An executive in the company requires a guarantee that the backups can be restored with no data loss. Which of th€ following backup features should the administrator lest for?
Correct Answer:
D
To guarantee that backups can be restored with no data loss, the administrator should test for data integrity. This ensures that the data has not been altered during the backup process and that it can be restored to its original state.References: Backup integrity is a critical aspect of data management and protection, which falls under the best practices for backups and restoration in the CompTIA Cloud+ curriculum.
A cloud administrator learns that a major version update. 4.6.0. is available for a business- critical application. The application is currently on version 4.5.2. with additional minor versions 3, 4, and 5 available. The administrator needs to perform the update while minimizing downtime. Which of the following should the administrator do first?
Correct Answer:
D
The first step the administrator should take is to create a test environment and apply the major update there. This allows for testing the new version without impacting the production environment, thus minimizing downtime and the potential for unexpected issues.References: Creating test environments and conducting thorough testing before applying updates in production is a risk mitigation strategy covered under cloud deployment and operations in the CompTIA Cloud+ certification.
