Amazon AWS Certified SysOps Administrator - Associate SOA-C01
Prev

There are 439 results

Next
#241 (Accuracy: 100% / 2 votes)
A company is expanding its use of AWS services across its portfolios. The company wants to provision AWS accounts for each team to ensure a separation of business processes for security, compliance, and billing. Account creation and bootstrapping should be completed in a scalable and efficient way so new accounts are created with a defined baseline and governance guardrails in place. A SysOps administrator needs to design a provisioning process that saves time and resources.
Which action should be taken to meet these requirements?
  • A. Automate using AWS Elastic Beanstalk to provision the AWS accounts, set up infrastructure, and integrate with AWS Organizations.
  • B. Create bootstrapping scripts in AWS OpsWorks and combine them with AWS CloudFormation templates to provision accounts and infrastructure.
  • C. Use AWS Config to provision accounts and deploy instances using AWS Service Catalog.
  • D. Use AWS Control Tower to create a template in Account Factory and use the template to provision new accounts.
#242 (Accuracy: 100% / 1 votes)
A company in a highly regulated industry has just migrated an Amazon EC2 based application to AWS. For compliance reasons, all network traffic data between the servers must be captured and retained.
Which solution will accomplish this with the LEAST amount of effort?
  • A. Set up AWS CloudTrail on the VPC. Configure Amazon CloudWatch Logs as the destination.
  • B. Set up AWS CloudTrail on the VPC. Configure Amazon S3 as the destination.
  • C. Set up flow logs at the elastic network interface level. Configure Amazon S3 as the destination.
  • D. Set up flow logs at the VPC level. Configure Amazon S3 as the destination.
#243 (Accuracy: 100% / 1 votes)
A company has several accounts between different teams and wants to increase its auditing and compliance capabilities. The accounts are managed through
AWS Organizations. Management wants to provide the security team with secure access to the account logs while also restricting the possibility for the logs to be modified.
How can a SysOps administrator achieve this is with the LEAST amount of operational overhead?
  • A. Store AWS CloudTrail logs in Amazon S3 in each account. Create a new account to store compliance data and replicate the objects into the newly created account.
  • B. Store AWS CloudTrail logs in Amazon S3 in each account. Create an IAM user with read-only access to the CloudTrail logs.
  • C. From the master account, create an organization trail using AWS CloudTrail and apply it to all Regions. Use IAM roles to restrict access.
  • D. Use an AWS CloudFormation stack set to create an AWS CloudTrail trail in every account and restrict permissions to modify the logs.
#244 (Accuracy: 100% / 2 votes)
A sysops administrator is trying to deploy a new Amazon EC2 instance using the AWS Management Console, but the instance is failing to launch.
What could be causing this problem? (Choose two.)
  • A. The AWS account has reached EC2 limits for the Region.
  • B. The AWS account has reached EC2 limits for the Availability Zone.
  • C. An EC2 key pair has not been specified.
  • D. The EC2 instance is missing an instance profile with ec2:RunInstances permissions.
  • E. The subnet being used has no more usable private IP addresses.
#245 (Accuracy: 100% / 1 votes)
A medical imaging company needs to process large amounts of imaging data in real time using a specific instance type. The company wants to guarantee sufficient resource capacity for 1 year.
Which action will meet these requirements in the MOST cost-effective manner?
  • A. Create 1-year On-Demand Capacity Reservations in the specific Availability Zones.
  • B. Launch Amazon EC2 instances with termination protection enabled.
  • C. Purchase 1-year Reserved Instances in the specific Availability Zones.
  • D. Use a Spot Fleet across multiple Availability Zones.
#246 (Accuracy: 100% / 1 votes)
A sysops administrator set up an Amazon ElastiCache for Memcached cluster for an application. During testing, the application experiences increased latency.
Amazon CloudWatch metrics for the Memcached cluster show CPUUtilization is consistently above 95% and FreeableMemory is consistently under 1 MB.
Which action will solve the problem?
  • A. Configure ElastiCache automatic scaling for the Memcached cluster. Set the CPUUtilization metrics as a scaling trigger above 75% and FreeableMemory below 10 MB.
  • B. Configure ElastiCache read replicas for each Memcached node in different Availability Zones to distribute the workload.
  • C. Deploy an Application Load Balancer to distribute the workload to Memcached cluster nodes.
  • D. Replace the Memcached cluster and select a node type that has a higher CPU and memory.
#247 (Accuracy: 100% / 2 votes)
A financial service company is running distributed computing software to manage a fleet of 20 servers for their calculations. There are 2 control nodes and 18 worker nodes to run the calculations. Worker nodes can be automatically started by the control nodes when required. Currently, all nodes are running on demand, and the worker nodes are used for approximately 4 hours each day.
Which combination of actions will be MOST cost-effective? (Choose two.)
  • A. Use Dedicated Hosts for the control nodes.
  • B. Use Reserved Instances for the control nodes.
  • C. Use Reserved Instances for the worker nodes.
  • D. Use Spot Instances for the control nodes and On-Demand Instances if there is no Spot availability.
  • E. Use Spot Instances for the worker nodes and On-Demand Instances if there is no Spot availability.
#248 (Accuracy: 100% / 2 votes)
A company's application running on Amazon EC2 Linux recently crashed because it ran out of available memory. Management wants to be alerted if this ever happens again.
Which combination of steps will accomplish this? (Choose two.)
  • A. Create an Amazon CloudWatch dashboard to monitor the memory usage metrics on the instance over time.
  • B. Create an alarm on the dashboard that publishes an Amazon SNS notification to alert the CIO when a threshold is passed.
  • C. Create an alarm on the metric that publishes an Amazon SNS notification to alert the CIO when a threshold is passed.
  • D. Create an alarm on the AWS Personal Health Dashboard that publishes an Amazon SNS notification to alert the CIO when the system is out of memory.
  • E. Configure the Amazon CloudWatch agent to collect and push memory usage metrics on the instance.
#249 (Accuracy: 100% / 2 votes)
A SysOps Administrator maintains several Amazon EC2 instances that do not have access to the public internet. To patch operating systems, the instances require outbound internet connectivity. For security reasons, the instances should not be reachable from the public Internet.
The Administrator deploys a NAT instance, updates the security groups, and configures the appropriate routes within the route table. However, the instances are still unable to reach the Internet.
What should be done to resolve the issue?
  • A. Assign Elastic IP addresses to the instances and create a route from the private subnets to the internet gateway
  • B. Delete the NAT instance and replace it with AWS WAF
  • C. Disable source/destination checks on the NAT instance
  • D. Start/stop the NAT instance so it is launched on a different host
#250 (Accuracy: 100% / 1 votes)
An organization recently faced a network outage while uploading data into one of their S3 buckets. This outage generated many incomplete multipart uploads in that S3 bucket. A sysops administrator wants to delete the incomplete multipart uploads and ensure that the incomplete multipart uploads are deleted automatically the next time such an event occurs.
How should this be done?
  • A. Create an Amazon S3 Event Notification to trigger an AWS Lambda function that deletes incomplete multipart uploads.
  • B. Create an Amazon S3 lifecycle rule to abort incomplete multipart uploads so that they are deleted this time and in the future.
  • C. Use the AWS CLI to list all the multipart uploads, and abort all the incomplete uploads from the day of the event so that they are deleted.
  • D. Use the AWS Management Console to abort all the incomplete uploads from the day of the event so that they are deleted.