Summer Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: netbudy65

Dumpsbuddy Logo
  1. Home
  2. Alibaba Cloud
  3. Alibaba Security
  4. ACP-Sec1
  5. ACP Cloud Security Professional Questions and Answers

ACP-Sec1 ACP Cloud Security Professional Questions and Answers

Questions 4

There is a limit on the number of Customer Master Keys (CMKs) that users can create using Key Management Service (KMS), but users can raise this limit by submitting a support ticket to Alibaba Cloud.

Options:

A.

True

B.

False

Buy Now
Questions 5

In a public cloud environment Alibaba Cloud is responsible for security of cloud computing infrastructure (such as the IDC environment, physical server O&M, and virtualization layer of cloud products). However, you still need to perform necessary security optimization measures for the Cloud products you purchased Which of the following actions do you think are safe?

Options:

A.

To reduce the communication cost, five administrators of the company use the root account to log on to the ECS instance.

B.

After buying an ECS instance, enable the security group firewall for the ECS instance through the console, and only allow a management IP address to remotely log on to the ECS instance.

C.

For easy management, change the administrator password for the ECS instance to 123456.

D.

To enable colleagues working at home to update data, open public IP addresses for ApsaraDB for RDS instances, and allow all IP addresses to connect to the instances

Buy Now
Questions 6

Which of the following services can be protected by the Alibaba Cloud Security Center's anti-brute force password cracking function? (Number of answers 3)

Options:

A.

Windows remote desktop service (RDP) Linux remote control service (SSH)

B.

Web service (HTTP)

C.

MySQL database service SQLServer database service

D.

File transfer service (FTP)

Buy Now
Questions 7

Alibaba Cloud's CloudMonitor can not only monitor ECS instances in a secure and efficient way, but also monitor HTTP sites of clients' servers in data centers However, in the latter case, Alibaba Cloud does not provide monitor agent so users need to develop their own scripts to collect data

Options:

A.

True

B.

False

Buy Now
Questions 8

More and more blackmail attacks (using hacking tools or ransomware) have been detected among recent network security events, causing ever greater damage and financial loss. Which of the following measures can help Alibaba Cloud customers reduce risks in blackmail attacks? (Number of correct answers 3)

Options:

A.

Enable images and snapshots for ECS instances, back up data every day, and keep more than three redundant copies

B.

Deploy different service applications on servers with the same security level and security domain, and ensure unified policy management and defense

C.

Use strong passwords with more than 15 characters for the accounts of all types of cloud services

D.

When remotely operating and maintaining an ECS instance use the superuser account for login at all times

E.

If remote O&M is required use IpsecVPN or SSL VPN remote solutions

Buy Now
Questions 9

You are importing your own key material in to Key Management Service (KMS). Which of the following is the correct sequence of steps to follow?

Options:

A.

1 Create an external key

2 Get the "import key material" parameters

3 Import the key material

B.

1 Import the key material

2 Get the "import key material" parameters

3 Create an external key

C.

1 Create an external key

2 Import the key material

3 Get the "import key material" parameters

D.

1 Get the "import key material" parameter

2 Create an external key

3. Import the key material

Buy Now
Questions 10

A customer built his website on Alibaba Cloud- To defend against Web attacks he activated Alibaba Cloud WAF However, a week later, the customer finds that his website has suffered intrusion. Which of the following actions should he take to ensure that WAF functions correctly and enhance system security? (Number of correct answers: 4)

Options:

A.

Use Security Center to remove Trojans and fix vulnerabilities

B.

Delete all snapshots and clear the server

C.

Secure other HTTP services on the ECS instance using WAF

D.

Configure a security group for the ECS instance.

E.

Check whether or not the DNS resolution results point to the WAF address

F.

Resolve the website domain name to the site s source IP address

Buy Now
Questions 11

You have set an alert policy for the disk usage of an ECS instance by using Alibaba Cloud CloudMonitor Each measurement cycle lasts for 5 minutes, during which the average disk usage is measured If the average disk usage exceeds 80% for five consecutive measurement cycles, an alert will be reported After your average disk usage exceeds 80%, how long will it take to receive an alert with the best case scenario?

Options:

A.

30 minutes

B.

0 minutes

C.

40 minutes

D.

20 minutes

Buy Now
Questions 12

A large Internet company has services running on physical machines, as well as self-built monitoring and alert system Recently, the company wants to migrate part of the services to Alibaba Cloud and use CloudMonitor to monitor ECS instances and set alerts

What should the company do to quickly interconnect CloudMonitor alerts with the self-built alert system, and handle both alerts (alerts about the physical machines and ECS instances) in self-built alert system?

Options:

A.

Use the Event Monitoring function provided by CloudMonitor to consume alerts sent from self-built alert system

B.

Call the API for querying data provided by CloudMonitor. regularly query data, and write a code to check whether indicators are abnormal

C.

Call the API for obtaining messages and alerts that are sent to self-build alert system

D.

This cannot be implemented.

Buy Now
Exam Code: ACP-Sec1
Exam Name: ACP Cloud Security Professional
Last Update: May 21, 2024
Questions: 80

PDF + Testing Engine

$130
buy now ACP-Sec1 pdf + testing engine

Testing Engine

$95
buy now ACP-Sec1 testing engine

PDF (Q&A)

$80
buy now ACP-Sec1 pdf