Amazon AWS Certified SysOps Administrator - Associate SOA-C01
Prev

There are 439 results

Next
#31 (Accuracy: 100% / 1 votes)
How can software determine the public and private IP addresses of the Amazon EC2 instance that it is running on?
  • A. Query the local instance metadata.
  • B. Query the appropriate Amazon CloudWatch metric.
  • C. Query the local instance userdata.
  • D. Use ipconfig or ifconfig command.
#32 (Accuracy: 100% / 4 votes)
What would happen to an RDS (Relational Database Service) multi-Availability Zone deployment if the primary DB instance fails?
  • A. The IP of the primary DB Instance is switched to the standby DB Instance.
  • B. A new DB instance is created in the standby availability zone.
  • C. The canonical name record (CNAME) is changed from primary to standby.
  • D. The RDS (Relational Database Service) DB instance reboots.
#33 (Accuracy: 100% / 2 votes)
Your organization is preparing for a security assessment of your use of AWS.
In preparation for this assessment, which two IAM best practices should you consider implementing? (Choose two.)
  • A. Create individual IAM users for everyone in your organization
  • B. Configure MFA on the root account and for privileged IAM users
  • C. Assign IAM users and groups configured with policies granting least privilege access
  • D. Ensure all users have been assigned and are frequently rotating a password, access ID/secret key, and X.509 certificate
#34 (Accuracy: 100% / 2 votes)
How can you secure data at rest on an EBS volume?
  • A. Encrypt the volume using the S3 server-side encryption service.
  • B. Attach the volume to an instance using EC2's SSL interface.
  • C. Create an IAM policy that restricts read and write access to the volume.
  • D. Write the data randomly instead of sequentially.
  • E. Use an encrypted file system m top of the EBS volume.
#35 (Accuracy: 100% / 1 votes)
A user has launched a Windows based EC2 instance. However, the instance has some issues and the user wants to check the log. When the user checks the
Instance console output from the AWS console, what will it display?
  • A. All the event logs since instance boot
  • B. The last 10 system event log error
  • C. The Windows instance does not support the console output
  • D. The last three system events' log errors
#36 (Accuracy: 100% / 1 votes)
A user has launched an EC2 instance and deployed a production application in it. The user wants to prohibit any mistakes from the production team to avoid accidental termination. How can the user achieve this?
  • A. The user can the set DisableApiTermination attribute to avoid accidental termination
  • B. It is not possible to avoid accidental termination
  • C. The user can set the Deletion termination flag to avoid accidental termination
  • D. The user can set the InstanceInitiatedShutdownBehavior flag to avoid accidental termination
#37 (Accuracy: 100% / 1 votes)
A user has created a VPC with two subnets: one public and one private. The user is planning to run the patch update for the instances in the private subnet. How can the instances in the private subnet connect to the Internet?
  • A. Use the internet gateway with a private IP
  • B. Allow outbound traffic in the security group for port 80 to allow internet updates
  • C. The private subnet can never connect to the internet
  • D. Use NAT with an elastic IP
#38 (Accuracy: 100% / 2 votes)
A user is trying to launch an EBS backed EC2 instance under free usage. The user wants to achieve encryption of the EBS volume. How can the user encrypt the data at rest?
  • A. Use AWS EBS encryption to encrypt the data at rest
  • B. The user cannot use EBS encryption and has to encrypt the data manually or using a third party tool
  • C. The user has to select the encryption enabled flag while launching the EC2 instance
  • D. Encryption of volume is not available as a part of the free usage tier
#39 (Accuracy: 100% / 1 votes)
A user has created a public subnet with VPC and launched an EC2 instance within it. The user is trying to delete the subnet. What will happen in this scenario?
  • A. It will delete the subnet and make the EC2 instance as a part of the default subnet
  • B. It will not allow the user to delete the subnet until the instances are terminated
  • C. It will delete the subnet as well as terminate the instances
  • D. The subnet can never be deleted independently, but the user has to delete the VPC first
#40 (Accuracy: 100% / 2 votes)
A user has configured a VPC with a new subnet. The user has created a security group. The user wants to configure that instances of the same subnet communicate with each other. How can the user configure this with the security group?
  • A. There is no need for a security group modification as all the instances can communicate with each other inside the same subnet
  • B. Configure the subnet as the source in the security group and allow traffic on all the protocols and ports
  • C. Configure the security group itself as the source and allow traffic on all the protocols and ports
  • D. The user has to use VPC peering to configure this