Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. EC-Council
  3. 312-40

EC-Council 312-40 Exam (page: 2)
EC-Council Certified Cloud Security Engineer (CCSE)
Updated on: 12-Feb-2026

Viewing Page 2 of 26
312-40 PDF 147 Questions

Daffod is an American cloud service provider that provides cloud-based services to customers worldwide.

Several customers are adopting the cloud services provided by Daffod because they are secure and cost-

effective. Daffod complies with the cloud computing law enacted in the US to realize the importance of information security in the economic and national security interests of the US. Based on the given information, which law order does Daffod adhere to?

  1. FERPA
  2. CLOUD
  3. FISMA
  4. ECPA

Answer(s): C

Explanation:

Daffod, as an American cloud service provider complying with the cloud computing law that emphasizes the importance of information security for economic and national security interests, adheres to the Federal Information Security Management Act (FISMA). Here's why:

FISMA Overview: FISMA is a US law enacted to protect government information, 1.
operations, and assets against natural or man-made threats.

Importance of Information Security: FISMA requires that all federal agencies 2.

develop, document, and implement an information security and protection program.

Relevance to Daffod: As Daffod complies with this law, it ensures that its cloud 3.
services are secure and adhere to national security standards, making it a trusted provider for secure and cost-effective cloud services.


Reference:

1. NIST SP 800-53: Security and Privacy Controls for Information Systems and Organizations

2. Federal Information Security Modernization Act (FISMA)



Simon recently joined a multinational company as a cloud security engineer. Due to robust security services and products provided by AWS, his organization has been using AWS cloud- based services. Simon has launched an Amazon EC2 Linux instance to deploy an application. He would like to secure Linux AMI.
Which of the following command should Simon run in the EC2 instance to disable user account passwords?

  1. passwd -D < USERNAME >
  2. passwd -I < USERNAME >
  3. passwd -d < USERNAME >
  4. passwd -L < USERNAME >

Answer(s): D

Explanation:

To disable user account passwords on an Amazon EC2 Linux instance, Simon should use the command passwd -L <USERNAME>. Here's the detailed explanation:

passwd Command: The passwd command is used to update a user's authentication 1.
tokens (passwords).

-L Option: The -L option is used to lock the password of the specified user account, 2.
effectively disabling the password without deleting the user account itself.

Security Measure: Disabling passwords ensures that the user cannot authenticate 3.
using a password, thereby enhancing the security of the instance.


Reference:

1. AWS Documentation: Securing Access to Amazon EC2 Instances

2. Linux man-pages: passwd(1)



An organization with resources on Google Cloud regularly backs up its service capabilities to ensure high availability and reduce the downtime when a zone or instance becomes unavailable owing to zonal outage or memory shortage in an instance. However, as protocol, the organization must frequently test whether these regular backups are configured.
Which tool's high availability settings must be checked for this?

  1. MySQL Database
  2. Always on Availability Groups (AGs)
  3. SQL Server Database Mirroring (DBM)
  4. Google Cloud SQL

Answer(s): D

Explanation:

For an organization with resources on Google Cloud that needs to ensure high availability and reduce downtime, the high availability settings of Google Cloud SQL should be checked.

Here's the detailed explanation:

Google Cloud SQL Overview: Cloud SQL is a fully-managed relational database 1.
service for MySQL, PostgreSQL, and SQL Server. It provides high availability configurations and automated backups.

High Availability Configuration: Cloud SQL offers high availability through regional 2.
instances, which replicate data across multiple zones within a region to ensure redundancy.

Testing Backups: Regularly testing backups and their configurations ensures that 3.
the high availability settings are functioning correctly and that data recovery is possible in case of an outage.


Reference:

1. Google Cloud SQL Documentation

2. High Availability and Disaster Recovery for Cloud SQL



Shannon Elizabeth works as a cloud security engineer in VicPro Soft Pvt. Ltd. Microsoft Azure provides all cloud-based services to her organization. Shannon created a resource group (ProdRes), and then created a virtual machine (myprodvm) in the resource group. On myprodvm virtual machine, she enabled JIT from the Azure Security Center dashboard.
What will happen when Shannon enables JIT VM access?

  1. It locks down the inbound traffic from myprodvm by creating a rule in the network security group
  2. It locks down the inbound traffic to myprodvm by creating a rule in the Azure firewall
  3. It locks down the outbound traffic from myprodvm by creating a rule in the network security group
  4. It locks down the outbound traffic to myprodvm by creating a rule in the Azure firewall

Answer(s): B

Explanation:

When Shannon Elizabeth enables Just-In-Time (JIT) VM access on the myprodvm virtual machine from the Azure Security Center dashboard, the following happens:

Inbound Traffic Control: JIT VM access locks down the inbound traffic to the virtual 1.
machine.

Azure Firewall Rule: It creates a rule in the Azure firewall to control this inbound 2.
traffic, allowing access only when required and for a specified duration.

Enhanced Security: This approach minimizes exposure to potential attacks by 3.
reducing the time that the VM ports are open.


Reference:

1. Azure Security Center Documentation: Just-In-Time VM Access

2. Microsoft Learn: Configure Just-In-Time VM Access in Azure



William O'Neil works as a cloud security engineer in an IT company located in Tampa, Florid

  1. To create an access key with normal user accounts, he would like to test whether it is possible to escalate privileges to obtain AWS administrator account access.
    Which of the following commands should William try to create a new user access key ID and secret key for a user?
  2. aws iam target_user -user-name create-access-key
  3. aws iam create-access-key -user-name target_user
  4. aws iam create-access-key target_user -user-name
  5. aws iam -user-name target_user create-access-key

Answer(s): B



Viewing Page 2 of 26



Share your comments for EC-Council 312-40 exam with other users:

Kumar 6/23/2023 1:07:00 PM

thanks.. very helpful
FRANCE


User random 11/15/2023 3:01:00 AM

i registered for 1z0-1047-23 but dumps qre available for 1z0-1047-22. help me with this...
UNITED STATES


kk 1/17/2024 3:00:00 PM

very helpful
UNITED STATES


Raj 7/24/2023 10:20:00 AM

please upload oracle 1z0-1110-22 exam pdf
INDIA


Blessious Phiri 8/13/2023 11:58:00 AM

becoming interesting on the logical part of the cdbs and pdbs
Anonymous


LOL what a joke 9/10/2023 9:09:00 AM

some of the answers are incorrect, i would be wary of using this until an admin goes back and reviews all the answers
UNITED STATES


Muhammad Rawish Siddiqui 12/9/2023 7:40:00 AM

question # 267: federated operating model is also correct.
SAUDI ARABIA


Mayar 9/22/2023 4:58:00 AM

its helpful alot.
Anonymous


Sandeep 7/25/2022 11:58:00 PM

the questiosn from this braindumps are same as in the real exam. my passing mark was 84%.
INDIA


Eman Sawalha 6/10/2023 6:09:00 AM

it is an exam that measures your understanding of cloud computing resources provided by aws. these resources are aligned under 6 categories: storage, compute, database, infrastructure, pricing and network. with all of the services and typees of services under each category
GREECE


Mars 11/16/2023 1:53:00 AM

good and very useful
TAIWAN PROVINCE OF CHINA


ronaldo7 10/24/2023 5:34:00 AM

i cleared the az-104 exam by scoring 930/1000 on the exam. it was all possible due to this platform as it provides premium quality service. thank you!
UNITED STATES


Palash Ghosh 9/11/2023 8:30:00 AM

easy questions
Anonymous


Noor 10/2/2023 7:48:00 AM

could you please upload ad0-127 dumps
INDIA


Kotesh 7/27/2023 2:30:00 AM

good content
Anonymous


Biswa 11/20/2023 9:07:00 AM

understanding about joins
Anonymous


Jimmy Lopez 8/25/2023 10:19:00 AM

please upload oracle cloud infrastructure 2023 foundations associate exam braindumps. thank you.
Anonymous


Lily 4/24/2023 10:50:00 PM

questions made studying easy and enjoyable, passed on the first try!
UNITED STATES


John 8/7/2023 12:12:00 AM

has anyone recently attended safe 6.0 exam? did you see any questions from here?
Anonymous


Big Dog 6/24/2023 4:47:00 PM

question 13 should be dhcp option 43, right?
UNITED STATES


B.Khan 4/19/2022 9:43:00 PM

the buy 1 get 1 is a great deal. so far i have only gone over exam. it looks promissing. i report back once i write my exam.
INDIA


Ganesh 12/24/2023 11:56:00 PM

is this dump good
Anonymous


Albin 10/13/2023 12:37:00 AM

good ................
EUROPEAN UNION


Passed 1/16/2022 9:40:00 AM

passed
GERMANY


Harsh 6/12/2023 1:43:00 PM

yes going good
Anonymous


Salesforce consultant 1/2/2024 1:32:00 PM

good questions for practice
FRANCE


Ridima 9/12/2023 4:18:00 AM

need dump and sap notes for c_s4cpr_2308 - sap certified application associate - sap s/4hana cloud, public edition - sourcing and procurement
Anonymous


Tanvi Rajput 10/6/2023 6:50:00 AM

question 11: d i personally feel some answers are wrong.
UNITED KINGDOM


Anil 7/18/2023 9:38:00 AM

nice questions
Anonymous


Chris 8/26/2023 1:10:00 AM

looking for c1000-158: ibm cloud technical advocate v4 questions
Anonymous


sachin 6/27/2023 1:22:00 PM

can you share the pdf
Anonymous


Blessious Phiri 8/13/2023 10:26:00 AM

admin ii is real technical stuff
Anonymous


Luis Manuel 7/13/2023 9:30:00 PM

could you post the link
UNITED STATES


vijendra 8/18/2023 7:54:00 AM

hello send me dumps
Anonymous