Amazon AWS Certified SysOps Administrator - Associate SOA-C01
Prev

There are 439 results

Next
#401 (Accuracy: 100% / 2 votes)
A web application runs on Amazon EC2 instances with public IPs assigned behind an Application Load Balancer. The instances run in an Auto Scaling group across multiple Availability Zones. The application stores data in an Amazon RDS Multi-AZ DB instance. The Application Load Balancer, EC2 instances, and RDS
DB instance all run in separate sets of subnets. The EC2 instances can communicate with the DB instance, but cannot connect with external services.
What is the MOST likely solution?
  • A. Assign a public IP address to the database server and restart the database engine.
  • B. Create and attach an Internet gateway to the VPC. Create a route table for the EC2 instance's subnets that sends Internet traffic to the gateway.
  • C. Create and attach a virtual private gateway to the VPC. Create a route table for the EC2 instances' subnets that sends Internet traffic to the gateway.
  • D. Create a VPC peering connection to a VPC that has an Internet gateway attached. Create a route table for the EC2 instances' subnets that sends Internet traffic to the peered VPC.
#402 (Accuracy: 100% / 1 votes)
A SysOps Administrator is creating an Amazon EC2 instance and has received an InsufficientInstanceCapacity error.
What is the cause of the error and how can it be corrected?
  • A. AWS does not currently have enough capacity to service the request for that instance type. A different Availability Zone or instance type must be used.
  • B. The account has reached its concurrent running instance limit. An EC2 limit increase request must be filed with AWS Support.
  • C. The APIs that service the EC2 requests have received too many requests and capacity has been reached. The request should be attempted again in a few minutes.
  • D. The Administrator did not specify the correct size of the instance to support the capacity requirements of the workload. Select a bigger instance.
#403 (Accuracy: 100% / 1 votes)
A SysOps Administrator is reviewing AWS Trusted Advisor warnings and encounters a warning for an S3 bucket policy that has open access permissions. While discussing the issue the bucket owner, the Administrator realizes the S3 bucket is an origin for an Amazon CloudFront web distribution.
Which action should the Administrator take to ensure that users access objects in Amazon S3 by using only CloudFront URLs?
  • A. Encrypt the S3 bucket content with Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
  • B. Create an origin access identity and grant it permissions to read objects in the S3 bucket
  • C. Assign an IAM user to the CoudFront distribution and whitelist the IAM user in the S3 bucket policy
  • D. Assign an IAM role to the CloudFront distribution and whitelist the IAM role in the S3 bucket policy
#404 (Accuracy: 100% / 1 votes)
An administrator is responding to an alarm that reports increased application latency. Upon review, the Administrator notices that the Amazon RDS Aurora database frequently runs at 100% CPU utilization. The application is read heavy and does frequent lookups of a product table.
What should the Administrator do to reduce the application latency?
  • A. Move the product table to Amazon Redshift and use an interleaved sort key
  • B. Add Aurora Replicas and use a Reader Endpoint for product table lookups
  • C. Move the product table to Amazon CloudFront and set the cache-control headers to public
  • D. Use Auto Scaling to add extra Aurora nodes and set a trigger based on CPU utilization
#405 (Accuracy: 100% / 1 votes)
A photo-sharing site delivers content worldwide from a library on Amazon S3 using Amazon CloudFront. Users are trying to access photos that either do not exist or they are not authorized to view.
What should be monitored to better understand the extent of this issue?
  • A. GetRequests S3 metric on Amazon CloudWatch
  • B. 4XXErrorRate CloudFront metric on CloudWatch
  • C. 5XXErrorRate CloudFront metric on CloudWatch
  • D. PostRequests S3 metric on CloudWatch
#406 (Accuracy: 100% / 1 votes)
An organization has hired an external firm to audit unauthorized changes on the company's AWS environment, the external auditor needs appropriate access.
How can this be accomplished?
  • A. Create an IAM user and assign them a new policy with GetResources access on AWS Artifact
  • B. Create an IAM user and add them to the existing ג€Administratorג€ IAM group
  • C. Create an IAM user and assign them a new IAM policy with read access to the AWS CloudTrail logs in Amazon S3
  • D. Create an IAM user and assign them a new policy with ListFindings access on Amazon Inspector
#407 (Accuracy: 100% / 1 votes)
A developer deploys an application running on Amazon EC2 by using an AWS CloudFormation template. The developer launches the stack from the console logged in as an AWS Identity and Access Management (IAM) user. When a SysOps Administrator attempts to run the same AWS CloudFormation template in the same AWS account from the console, it fails and returns the error:
`The image id `˜[ami-2a69aa47]' does not exist`
What is the MOST likely cause of the failure?
  • A. The Administrator does not have the same IAM permissions as the developer.
  • B. The Administrator used a different SSH key from that of the developer.
  • C. The Administrator is running the template in a different region.
  • D. The Administrator's Amazon EC2 service limits have been exceeded
#408 (Accuracy: 100% / 1 votes)
An application running on Amazon EC2 allows users to launch batch jobs for data analysis. The jobs are run asynchronously, and the user is notified when they are complete. While multiple jobs can run concurrently, a user's request need not be fulfilled for up to 24 hours. To run a job, the application launches an additional EC2 instance that performs all the analytics calculations. A job takes between 75 and 110 minutes to complete and cannot be interrupted.
What is the MOST cost-effective way to run this workload?
  • A. Run the application on On-Demand EC2 instances. Run the jobs on Spot Instances with a specified duration.
  • B. Run the application on Reserved Instance EC2 instances. Run the jobs on AWS Lambda.
  • C. Run the application on On-Demand EC2 instances. Run the jobs on On-Demand EC2 instances.
  • D. Run the application on Reserved Instance EC2 instances. Run the jobs on Spot Instances with a specified duration.
#409 (Accuracy: 100% / 1 votes)
A new website will run on Amazon EC2 instances behind an Application Load Balancer. Amazon Route 53 will be used to manage DNS records.
What type of record should be set in Route 53 to point the website's apex domain name (for example, `company.com`) to the Application Load Balancer?
  • A. CNAME
  • B. SOA
  • C. TXT
  • D. ALIAS
#410 (Accuracy: 100% / 3 votes)
In order to optimize performance for a compute cluster that requires low inter-node latency, which feature in the following list should you use?
  • A. AWS Direct Connect
  • B. Placement Groups
  • C. VPC private subnets
  • D. EC2 Dedicated Instances
  • E. Multiple Availability Zones