Amazon AWS Certified SysOps Administrator - Associate SOA-C01
Prev

There are 439 results

Next
#371 (Accuracy: 100% / 1 votes)
A company has an application that is running on an EC2 instance in one Availability Zone. A SysOps Administrator has been tasked with making the application highly available. The Administrator created a launch configuration from the running EC2 instance. The Administrator also properly configured a load balancer.
What step should the Administrator complete next to make the application highly available?
  • A. Create an Auto Scaling group by using the launch configuration across at least 2 Availability Zones with a minimum size of 1, desired capacity of 1, and a maximum size of 1.
  • B. Create an Auto Scaling group by using the launch configuration across at least 3 Availability Zones with a minimum size of 2, desired capacity of 2, and a maximum of 2.
  • C. Create an Auto Scaling group by using the launch configuration across at least 2 regions with a minimum size of 1, desired capacity of 1, and a maximum size of 1.
  • D. Create an Auto Scaling group by using the launch configuration across at least 3 regions with a minimum size of 2, desired capacity of 2, and a maximum size of 2.
#372 (Accuracy: 100% / 2 votes)
A SysOps Administrator found that a newly-deployed Amazon EC2 application server is unable to connect to an existing Amazon RDS database. After enabling
VPC Flow Logs and confirming that the flow log is active on the console, the log group cannot be located in Amazon CloudWatch.
What are the MOST likely reasons for this situation? (Choose two.)
  • A. The Administrator must configure the VPC Flow Logs to have them sent to AWS CloudTrail.
  • B. The Administrator has waited less than ten minutes for the log group to be created in CloudWatch.
  • C. The account VPC Flow Logs have been disabled by using a service control policy.
  • D. No relevant traffic has been sent since the VPC Flow Logs were created
  • E. The account has Amazon GuardDuty enabled.
#373 (Accuracy: 100% / 2 votes)
A SysOps Administrator must take a team's single existing AWS CloudFormation template and split it into smaller, service-specific templates. All of the services in the template reference a single, shared Amazon S3 bucket.
What should the Administrator do to ensure that this S3 bucket can be referenced by all the service templates?
  • A. Include the S3 bucket as a mapping in each template.
  • B. Add the S3 bucket as a resource in each template.
  • C. Create the S3 bucket in its own template and export it.
  • D. Generate the S3 bucket using StackSets.
#374 (Accuracy: 100% / 2 votes)
A company creates custom AMI images by launching new Amazon EC2 instances from an AWS CloudFormation template. It installs and configures necessary software through AWS OpsWorks, and takes images of each EC2 instance. The process of installing and configuring software can take between 2 to 3 hours, but at times, the process stalls due to installation errors.
The SysOps Administrator must modify the CloudFormation template so if the process stalls, the entire stack will fail and roll back.
Based on these requirements, what should be added to the template?
  • A. Conditions with a timeout set to 4 hours.
  • B. CreationPolicy with a timeout set to 4 hours.
  • C. DependsOn with a timeout set to 4 hours.
  • D. Metadata with a timeout set to 4 hours.
#375 (Accuracy: 100% / 2 votes)
A web application accepts orders from online users and places the orders into an Amazon SQS queue. Amazon EC2 instances in an EC2 Auto Scaling group read the messages from the queue, process the orders, and email order confirmations to the users. The Auto Scaling group scales up and down based on the queue depth. At the beginning of each business day, users report confirmation emails are delayed.
What action will address this issue?
  • A. Create a scheduled scaling action to scale up in anticipation of the traffic.
  • B. Change the Auto Scaling group to scale up and down based on CPU utilization.
  • C. Change the launch configuration to launch larger EC2 instance types.
  • D. Modify the scaling policy to deploy more EC2 instances when scaling up.
#376 (Accuracy: 100% / 2 votes)
A SysOps Administrator must find a way to set up alerts when Amazon EC2 service limits are close to being reached.
How can the Administrator achieve this requirement?
  • A. Use Amazon Inspector and Amazon CloudWatch Events.
  • B. Use AWS Trusted Advisor and Amazon CloudWatch Events.
  • C. Use the Personal Health Dashboard and CloudWatch Events.
  • D. Use AWS CloudTrail and CloudWatch Events.
#377 (Accuracy: 100% / 2 votes)
A company requires that all access from on-premises applications to AWS services go over its AWS Direct Connect connection rather than the public internet.
How would a SysOps Administrator implement this requirement?
  • A. Implement an IAM policy that uses the aws:sourceConnection condition to allow access from the AWS Direct Connect connection ID only
  • B. Set up a public virtual interface on the AWS Direct Connect connection
  • C. Configure AWS Shield to protect the AWS Management Console from being accessed by IP addresses other than those within the data center ranges
  • D. Update all the VPC network ACLs to allow access from the data center IP ranges
#378 (Accuracy: 100% / 1 votes)
A SysOps Administrator is responsible for managing a set of 12.micro Amazon EC2 instances. The Administrator wants to automatically reboot any instance that exceeds 80% CPU utilization.
Which of these solutions would meet the requirements?
  • A. Create an Amazon CloudWatch alarm on the CPUCreditBalance metric and specify a terminate alarm action.
  • B. Create an Amazon CloudWatch alarm on the CPUUtilization metric and specify a reboot alarm action.
  • C. Create an Amazon CloudWatch alarm on the CPUCreditBalance metric and specify a reboot alarm action.
  • D. Create an Amazon CloudWatch alarm on the CPUUtilization metric and specify a terminate alarm action.
#379 (Accuracy: 100% / 1 votes)
An organization has two AWS accounts: Development and Production. A SysOps Administrator manages access of IAM users to both accounts. Some IAM users in Development should have access to certain resources in Production.
How can this be accomplished?
  • A. Create an IAM role in the Production account with the Development account as a trusted entity and then allow those users from the Development account to assume the Production account IAM role.
  • B. Create a group of IAM users in the Development account, and add Production account service ARNs as resources in the IAM policy.
  • C. Establish a federation between the two accounts using the on-premises Microsoft Active Directory, and allow the Development account to access the Production account through this federation.
  • D. Establish an Amazon Cognito Federated Identity between the two accounts, and allow the Development account to access the Production account through this federation.
#380 (Accuracy: 100% / 2 votes)
A company's static website hosted on Amazon S3 was launched recently, and is being used by tens of thousands of users. Subsequently, website users are experiencing 503 service unavailable errors.
Why are these errors occurring?
  • A. The request rate to Amazon S3 is too high.
  • B. There is an error with the Amazon RDS database.
  • C. The requests to Amazon S3 do not have the proper permissions.
  • D. The users are in a different geographical region and Amazon Route 53 is restricting access.