The AWS Certified Cloud Practitioner (CLF-C02) is the best entry point for candidates who need a solid business and technical understanding of AWS without going deep into implementation. AWS positions it as a foundational certification, but the exam still expects you to make sensible service choices, understand the shared responsibility model, and reason clearly about cost, security, and managed services.
This guide follows the official AWS exam guide and pairs each domain with first-party AWS documentation. The goal is to help you study from authoritative sources, not memorize random service lists.
Exam At a Glance
| Attribute | Value |
|---|---|
| Certification | AWS Certified Cloud Practitioner |
| Exam code | CLF-C02 |
| Level | Foundational |
| Duration | 90 minutes |
| Question count | 65 total questions |
| Question types | Multiple choice and multiple response |
| Scored questions | 50 |
| Unscored questions | 15 |
| Cost | $100 USD |
| Recommended background | Up to 6 months of exposure to AWS Cloud concepts, security, core services, and cloud economics |
- Official certification page: AWS Certified Cloud Practitioner
- Official exam guide: AWS Certified Cloud Practitioner exam guide
- Official exam prep plan: AWS Skill Builder 4-step exam prep plan
- Official in-scope services reference: CLF-C02 in-scope AWS services
Official Exam Domains
- Cloud Concepts (24%)
- Security and Compliance (30%)
- Cloud Technology and Services (34%)
- Billing, Pricing, and Support (12%)
A practical study order is to go domain by domain, but keep cross-checking how AWS frames the same idea from different angles. For example, the shared responsibility model appears in both cloud concepts and security, while cost awareness shows up in architecture, service choice, and billing questions.
1. Cloud Concepts
This domain is about understanding why organizations adopt AWS, how the global infrastructure works, and what cloud-native thinking looks like at a foundational level.
- The AWS Cloud value proposition - Understand on-demand infrastructure, elasticity, pay-as-you-go pricing, speed of provisioning, and global reach. Official docs: Overview of Amazon Web Services.
- Global infrastructure - Know the role of Regions, Availability Zones, and edge locations, and why locality and resilience affect architecture decisions. Official docs: AWS Global Infrastructure.
- Shared responsibility model - Be able to explain what AWS secures versus what the customer still owns in identity, configuration, data, and workload design. Official docs: AWS Shared Responsibility Model.
- AWS Well-Architected Framework - Understand the six pillars and why AWS recommends reliable, secure, efficient, cost-effective, and sustainable systems. Official docs: AWS Well-Architected Framework.
- Cloud economics - Know the high-level business shift from upfront infrastructure investment to variable cloud spend. Official docs: What is cloud computing?, AWS overview whitepaper.
- Managed services bias - AWS questions often reward answers that reduce undifferentiated operational work and speed up delivery. Official docs: General design principles for cloud architecture.
Exam tip: When AWS asks for the best outcome at this level, the correct answer often emphasizes agility, resilience, or lower operational burden, not maximum infrastructure control.
2. Security and Compliance
This is the most heavily weighted Cloud Practitioner domain. You are not expected to be a security engineer, but you do need to understand identity, least privilege, root-user hygiene, basic compliance positioning, and how AWS helps customers secure workloads.
- IAM fundamentals - Learn IAM users, groups, roles, policies, authentication, and authorization. Official docs: What is IAM?.
- Least privilege and IAM hygiene - AWS expects you to know MFA, least privilege, and the recommendation to avoid everyday root-user usage. Official docs: Security best practices in IAM, AWS account root user.
- Compliance and governance posture - Know that AWS provides compliance programs, audit support artifacts, and security controls, but customers still need to configure and govern their own environments correctly. Official docs: AWS Compliance Programs, Shared responsibility model.
- Multi-account governance - Be ready for high-level questions about account structure and organizational control. Official docs: AWS Organizations User Guide.
- Security visibility and monitoring - Understand the difference between monitoring, auditing, and governance services at a high level. Official docs: What is Amazon CloudWatch?, AWS CloudTrail User Guide.
- Encryption and basic data protection - You should recognize that AWS provides encryption capabilities and customers choose how to apply them. Official docs: AWS Key Management Service overview.
Exam tip: The exam almost always prefers predefined roles, MFA, centralized governance, and auditable managed services over ad hoc credentials or broad permanent permissions.
3. Cloud Technology and Services
This domain is the broadest one. The goal is not deep administration. The goal is to know what the major AWS service families do, when they fit, and how to distinguish between similar options in a business scenario.
- Compute services - Know the basic positioning of Amazon EC2 for virtual machines, AWS Lambda for serverless functions, and container-oriented options at a high level. Official docs: Amazon EC2 concepts, AWS Lambda developer guide.
- Storage services - Be able to distinguish object, block, and file storage, especially Amazon S3 versus EBS versus EFS. Official docs: Amazon S3 User Guide, What is Amazon EBS?, What is Amazon EFS?.
- Networking basics - Study VPCs, subnets, and why networking choices affect reachability, isolation, and security. Official docs: What is Amazon VPC?.
- Database services - Understand relational versus non-relational choices at a high level, especially Amazon RDS and DynamoDB positioning. Official docs: Amazon RDS User Guide, What is Amazon DynamoDB?.
- Observability and operations services - Know that CloudWatch is for metrics, alarms, dashboards, and logs, while CloudTrail is for API activity and auditing. Official docs: Amazon CloudWatch overview, AWS CloudTrail.
- Matching services to common use cases - Cloud Practitioner questions often ask which service best fits a simple requirement such as scalable object storage, managed relational databases, serverless execution, or private virtual networking. Official docs: CLF-C02 in-scope services, Technologies and concepts reference.
Exam tip: Focus on first-choice services and their plain-English purpose. At this level, breadth and service recognition matter far more than configuration detail.
4. Billing, Pricing, and Support
This domain tests whether you understand how AWS charges, how customers forecast and govern spend, and how support tiers map to business needs.
- Billing and Cost Management fundamentals - Learn the core features of billing, invoices, cost analysis, budgeting, and savings constructs. Official docs: What is AWS Billing and Cost Management?.
- Cost visibility - Know how teams analyze current and forecasted spend. Official docs: Analyzing your costs and usage with AWS Cost Explorer, Managing your costs with AWS Budgets.
- Pricing models - Be comfortable with high-level pricing tradeoffs such as On-Demand, commitments, and savings-oriented purchasing models. Official docs: AWS Pricing Calculator, Well-Architected pillars.
- Support plans - Understand that support tiers differ in response times, architectural guidance, and business alignment. Official docs: AWS Support Plans.
- Cost allocation and organization - Questions may test how larger organizations manage spend across accounts and teams. Official docs: Billing and Cost Management overview, AWS Organizations User Guide.
Exam tip: Cost questions often hide the answer in the wording. Watch for phrases like forecast, budget alert, analyze usage, or enterprise support needs.
Recommended 4-Week Study Plan
| Week | Focus | Primary resources |
|---|---|---|
| 1 | Cloud concepts, global infrastructure, shared responsibility, Well-Architected basics | AWS overview whitepaper, global infrastructure page, shared responsibility model, Well-Architected Framework |
| 2 | Core services: compute, storage, networking, databases, monitoring | EC2, Lambda, S3, EBS, EFS, VPC, RDS, DynamoDB, CloudWatch, CloudTrail docs |
| 3 | Security and compliance | IAM intro, IAM best practices, root user guidance, Organizations, compliance programs |
| 4 | Billing, pricing, support, and final review | Billing and Cost Management docs, Cost Explorer, Budgets, Pricing Calculator, Support Plans, practice questions |
Last-Mile Exam Strategy
- For each core service, answer three questions in plain English: What does it do? When would a customer choose it? What simpler or more manual option is it replacing?
- Memorize the domain weights. Security and Cloud Technology carry the most scoring weight, so weak performance there is harder to offset.
- Know the standard comparisons: CloudWatch vs CloudTrail, S3 vs EBS vs EFS, RDS vs DynamoDB, and EC2 vs Lambda.
- Use official AWS docs first, then verify readiness with practice questions. The official exam guide keeps you from over-studying services that are out of scope.
- Prefer answers that reduce operational effort when the scenario emphasizes speed, simplicity, or managed scale.
If you want a practice layer after the official docs, work through our AWS Cloud Practitioner practice questions. If you plan to continue deeper into AWS after passing, the most natural next steps are AWS Certified AI Practitioner for AI literacy or AWS Solutions Architect Associate for architecture depth.
The fastest way to pass CLF-C02 is to build a clean mental model of what AWS offers, what problems each major service family solves, and how AWS thinks about security and cost. If you study the official references above with that lens, the exam becomes much more predictable.