1. Treating Domain 2 as an afterthought
Security and Compliance is 30% of the exam — nearly a third — and it is the domain candidates most consistently under-study, because service-naming questions in Domain 3 feel more concrete and "studyable." The shared responsibility model in particular gets tested from several angles: who patches what, who configures what, and who is accountable for what in managed vs self-managed services. Give Domain 2 dedicated study time, not leftover time. See AWS Shared Responsibility Model Explained for the concept in full.
2. Memorizing service names without use cases
Knowing that DynamoDB is "a database" is not enough — the exam tests when to choose it over RDS, or when Lambda beats EC2 for a given scenario. Candidates who flashcard service names in isolation get tripped up by "which service should this company use" questions, because two or three services technically "could" work, but only one fits the stated constraint (cost, ops overhead, access pattern). Study services in decision-tree pairs, not isolated definitions.
3. Never practicing under real time pressure
90 minutes for 65 questions is about 83 seconds each. Candidates who only study with untimed quizzes get a shock on exam day when the scenario-style questions (three or four sentences of setup) eat 2-3 minutes each, leaving no slack for the rest. Do at least two full 65-question mocks under a strict 90-minute clock before you book your real exam date.
4. Skipping multiple-response question drills
"Select TWO" questions have no partial credit — miss one of the two correct answers and you lose the entire point, same as getting it completely wrong. Yet candidates often study these the same way as single-answer questions, reading quickly and picking the first option that sounds right. Slow down specifically on multi-select stems; misreading "select TWO" as "select the best ONE" is a documented, recurring failure pattern.
5. Studying only from one source
A single course or single question bank tends to phrase concepts the same way every time, which builds pattern-matching on that source's wording rather than genuine understanding. The real exam phrases questions differently than any one study source. Combine AWS's own Skill Builder material with a large, independently-written question bank — CertSharp's 500-question Cloud Practitioner bank is deliberately calibrated above real exam difficulty so you are not just recognizing familiar phrasing.
6. Booking the exam before hitting 85% on mocks
Because CLF-C02's passing score (700/1000) is scaled rather than a raw percentage, a candidate scoring exactly at the edge on practice mocks has less margin than the number suggests. Do not book your exam date the moment you first cross 70% on a mock — wait until you are consistently landing 85%+ across at least two separate full-length attempts before committing to a date.
7. Overthinking definitional questions
A meaningful share of CLF-C02 questions are straightforward recall: "which pillar of the Well-Architected Framework focuses on X," "which support plan includes a TAM." Candidates sometimes second-guess these simple questions looking for a trick that is not there, burning time that should go toward the genuinely scenario-based questions. If a question reads as a direct definitional match, trust your first read.
Exam-day execution
- Do a light review the morning of, not a new-material cram session — you want confidence, not fatigue.
- Read every question stem twice before looking at the options, especially on "select TWO/THREE" items.
- Flag anything taking more than 2 minutes and move on; return to flagged items with remaining time at the end.
- There is no penalty for wrong answers — never leave a question unanswered.
- Trust your practice-question instincts on definitional recall; save deliberation time for genuine scenario questions.
For the fast pre-exam reference version of all of this, use the Cloud Practitioner cheat sheet in your final 48 hours.
Frequently asked questions
What is the single biggest reason candidates fail CLF-C02?
Underestimating Domain 2 (Security and Compliance, 30% of the exam). Candidates often study services by name recognition but skip the shared responsibility model in depth, then get caught out by scenario questions that test which party is responsible for a specific security task.
How much practice is enough before booking the exam?
When you score 85%+ consistently across at least two full-length, timed 65-question mocks, you are ready. Scoring well on untimed, topic-isolated quizzes is not the same signal — the exam tests speed and mixed-domain recall together.
Is it bad to guess on questions I am unsure about?
No — there is no penalty for wrong answers on the AWS exam, so never leave a question blank. Eliminate obviously wrong options first, then guess among what remains if you are truly unsure, and flag it for review if time allows.
Avoid these mistakes with real practice
30 free Cloud Practitioner questions — no signup, no credit card. Full 500-question bank is $11.99 lifetime, or $9.99/month Pro unlocks every CertSharp certification.