Amazon AWS Certified SysOps Administrator - Associate SOA-C01
Prev

There are 439 results

Next
#331 (Accuracy: 100% / 2 votes)
A SysOps Administrator created an Application Load balancer (ALB) and placed two Amazon EC2 instances in the same subnet behind the ALB. During monitoring, the Administrator observes HealthyHostCount drop to 1 in Amazon CloudWatch.
What is MOST likely causing this issue?
  • A. The EC2 instances are in the same Availability Zone, causing contention between the two.
  • B. The route tables are not updated to allow traffic to flow between the ALB and the EC2 instances.
  • C. The ALB health check has failed, and the ALB has taken EC2 instances out of service.
  • D. The Amazon Route 53 health check has failed, and the ALB has taken EC2 instances out of service.
#332 (Accuracy: 100% / 2 votes)
A company has centralized all its logs into one Amazon CloudWatch Logs log group. The SysOps Administrator is to alert different teams of any issues relevant to them.
What is the MOST efficient approach to accomplish this?
  • A. Write an AWS Lambda function that will query the logs every minute and contain the logic of which team to notify on which patterns and issues.
  • B. Set up different metric filters for each team based on patterns and alerts. Each alarm will notify the appropriate notification list.
  • C. Redesign the aggregation of logs so that each team's relevant parts are sent to a separate log group, then subscribe each team to its respective log group.
  • D. Create an AWS Auto Scaling group of Amazon EC2 instances that will scale based on the amount of ingested log entries. This group will pull log streams, look for patterns, and send notifications to relevant teams.
#333 (Accuracy: 100% / 3 votes)
A company hosts its website on Amazon ECF2 instances behind an ELB Application Load Balancer. The company manages its DNS with Amazon Route 53, and wants to point its domain's zone apex to the website.
Which type of record should be used to meet these requirements?
  • A. An AAA record for the domain's zone apex
  • B. An A record for the domain's zone apex
  • C. A CNAME record for the domain's zone apex
  • D. An alias record for the domain's zone apex
#334 (Accuracy: 100% / 1 votes)
An organization with a large IT department has decided to migrate to AWS. With different job functions in the IT department, it is not desirable to give all users access to all AWS resources. Currently the organization handles access via LDAP group membership.
What is the BEST method to allow access using current LDAP credentials?
  • A. Create an AWS Directly Service Simple AD. Replicate the on-premises LDAP directory to Simple AD.
  • B. Create a Lambda function to read LDAP groups and automate the creation of IAM users.
  • C. Use AWS CloudFormation to create IAM roles. Deploy Direct Connect to allow access to the on-premises LDAP server.
  • D. Federate the LDAP directory with IAM using SAML. Create different IAM roles to correspond to different LDAP groups to limit permissions.
#335 (Accuracy: 100% / 2 votes)
A company is planning to expand into an additional AWS Region for disaster recovery purposes. The company uses AWS CloudFormation, and its infrastructure is well-defined as code. The company would like to reuse as much of its existing code as possible when deploying resources to additional Regions.
A SysOps Administrator is reviewing how Amazon Machine Images (AMIs) are selected in AWS CloudFormation, but is having trouble making the same stack work in the new Region.
Which action would make it easier to manage multiple Regions?
  • A. Name each AMI in the new Region exactly the same as the equivalent AMI in the first Region.
  • B. Duplicate the stack so unique AMI names can be coded into the appropriate stack.
  • C. Create an alias for each AMI so that an AMI can be referenced by a common name across Regions.
  • D. Create a Mappings section in the stack, and define the Region to AMI associations.
#336 (Accuracy: 100% / 1 votes)
A gaming application is deployed on four Amazon EC2 instances in a default VPC. The SysOps Administrator has noticed consistently high latency in responses as data is transferred among the four instances. There is no way for the Administrator to alter the application code.
The MOST effective way to reduce latency is to relaunch the EC2 instances in:
  • A. a dedicated VPC.
  • B. a single subnet inside the VPC.
  • C. a placement group.
  • D. a single Availability Zone.
#337 (Accuracy: 100% / 2 votes)
A SysOps Administrator is required to monitor free space on Amazon EBS volumes attached to Microsoft Windows-based Amazon EC2 instances within a company's account. The Administrator must be alerted to potential issues.
What should the Administrator do to receive email alerts before low storage space affects EC2 instance performance?
  • A. Use built-in Amazon CloudWatch metrics, and configure CloudWatch alarms and an Amazon SNS topic for email notifications
  • B. Use AWS CloudTrail logs and configure the trail to send notifications to an Amazon SNS topic
  • C. Use the Amazon CloudWatch agent to send disk space metrics, then set up CloudWatch alarms using an Amazon SNS topic
  • D. Use AWS Trusted Advisor and enable email notification alerts for EC2 disk space
#338 (Accuracy: 100% / 1 votes)
A SysOps Administrator has written an AWS Lambda function to launch new Amazon EC2 instances and deployed it in the us-east-1 region. The Administrator tested it by launching a new t2.nano instance in the us-east-1 region and it performed as expected. However, when the region name was updated in the Lambda function to launch an EC2 instance in the us-west-1 region, it failed.
What is causing this error?
  • A. The AMI ID must be updated for the us-west-1 region in the Lambda function as well
  • B. The Lambda function can only launch EC2 instances in the same region where it is deployed
  • C. The Lambda function does not have the necessary IAM permission to launch more than one EC2 instance
  • D. The instance type defined in the Lambda function is not available in the us-west-1 region
#339 (Accuracy: 100% / 1 votes)
A company has deployed a fleet of Amazon EC2 web servers for the upcoming release of a new product. The SysOps Administrator needs to test the Amazon
CloudWatch notification settings for this deployment to ensure that a notification is sent using Amazon SNS if the CPU utilization of an EC2 instance exceeds 70%
.
How should the Administrator accomplish this?
  • A. Use the set-alarm-state command in AWS CloudTrail to invoke the Amazon SNS notification
  • B. Use CloudWatch custom metrics to set the alarm state in AWS CloudTrail and enable Amazon SNS notifications
  • C. Use EC2 instance metadata to manually set the CPU utilization to 75% and invoke the alarm state
  • D. Use the set-alarm-state command in the AWS CLI for CloudWatch
#340 (Accuracy: 100% / 1 votes)
A SysOps Administrator noticed that the cache hit ratio for an Amazon CloudFront distribution is less than 10%.
Which collection of configuration changes will increase the cache hit ratio for the distribution? (Choose two.)
  • A. Ensure that only required cookies, query strings, and headers are forwarded in the Cache Behavior Settings
  • B. Change the Viewer Protocol Policy to use HTTPS only
  • C. Configure the distribution to use presigned cookies and URLs to restrict access to the distribution
  • D. Enable automatic compression of objects in the Cache Behavior Settings
  • E. Increase the CloudFront time to live (TTL) settings in the Cache Behavior Settings