ExamGecko
Search Search Login
Home Home / Amazon / SOA-C02

Amazon SOA-C02 Practice Test - Questions Answers

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company's application on EC2 instances relies on a Single-AZ RDS for MySQL DB instance. The SysOps administrator needs to ensure failover to minimize downtime.
A SysOps administrator creates two VPCs, VPC1 and VPC2, in a company's AWS account The SysOps administrator deploys a Linux Amazon EC2 instance in VPC1 and deploys an Amazon RDS for MySQL DB instance in VPC2. The DB instance is deployed in a private subnet. An application that runs on the EC2 instance needs to connect to the database. What should the SysOps administrator do to give the EC2 instance the ability to connect to the database?
A company needs to monitor the disk utilization of Amazon Elastic Block Store (Amazon EBS) volumes The EBS volumes are attached to Amazon EC2 Linux Instances A SysOps administrator must set up an Amazon CloudWatch alarm that provides an alert when disk utilization increases to more than 80%. Which combination of steps must the SysOps administrator lake lo meet these requirements? (Select THREE.)
A company uses AWS CloudFormation to manage a stack of Amazon EC2 instances on AWS. A SysOps administrator needs to keep the instances and all of the instances' data, even if someone deletes the stack. Which solution will meet these requirements?
A SysOps administrator is optimizing the cost of a workload. The workload is running in multiple AWS Regions and is using AWS Lambda with Amazon EC2 On-Demand Instances for the compute. The overall usage is predictable. The amount of compute that is consumed in each Region varies, depending on the users' locations. Which approach should the SysOps administrator use to optimize this workload?
The SysOps administrator must dynamically reference the latest AMI ID from Systems Manager Parameter Store in CloudFormation templates for new AMI versions.
A company has an application that collects notifications from thousands of alarm systems. The notifications include alarm notifications and information notifications. The information notifications include the system arming processes, disarming processes, and sensor status. All notifications are kept as messages in an Amazon Simple Queue Service (Amazon SQS) queue. Amazon EC2 instances that are in an Auto Scaling group process the messages. A SysOps administrator needs to implement a solution that prioritizes alarm notifications over information notifications. Which solution will meet these requirements?
A team of developers is using several Amazon S3 buckets as centralized repositories. Users across the world upload large sets of files to these repositories. The development team's applications later process these files. A SysOps administrator sets up a new S3 bucket. DOC-EXAMPLE-BUCKET, to support a new workload. The new S3 bucket also receives regular uploads of large sets of files from users worldwide. When the new S3 bucket is put into production, the upload performance from certain geographic areas is lower than the upload performance that the existing S3 buckets provide. What should the SysOps administrator do to remediate this issue?
The SysOps administrator must modify the AWS Config rule that deletes noncompliant SSH inbound rules to update the rule to allow SSH from specific trusted IP addresses instead.
The SysOps administrator needs to address high disk I/O issues during EC2 instance bootstrap in an Auto Scaling group.

Question 1

Report
Export
Collapse

A data storage company provides a service that gives users the ability to upload and download files as needed. The files are stored in Amazon S3 Standard and must be immediately retrievable for 1 year. Users access files frequently during the first 30 days after the files are stored. Users rarely access files after 30 days.

The company's SysOps administrator must use S3 Lifecycle policies to implement a solution that maintains object availability and minimizes cost.

Which solution will meet these requirements?

A.
Move objects to S3 Glacier after 30 days.
A.
Move objects to S3 Glacier after 30 days.
Answers
B.
Move objects to S3 One Zone-Infrequent Access (S3 One Zone-IA) after 30 days.
B.
Move objects to S3 One Zone-Infrequent Access (S3 One Zone-IA) after 30 days.
Answers
C.
Move objects to S3 Standard-Infrequent Access (S3 Standard-IA) after 30 days.
C.
Move objects to S3 Standard-Infrequent Access (S3 Standard-IA) after 30 days.
Answers
D.
Move objects to S3 Standard-Infrequent Access (S3 Standard-IA) immediately.
D.
Move objects to S3 Standard-Infrequent Access (S3 Standard-IA) immediately.
Answers
Suggested answer: C

Explanation:

Reference: https://docs.aws.amazon.com/AmazonS3/latest/userguide/lifecycle-transition-general-considerations.html

Question 2

Report
Export
Collapse

A SysOps Administrator runs a web application that is using a microservices approach whereby different responsibilities of the application have been divided in a separate microservice running on a different Amazon EC2 instance. The administrator has been tasked with reconfiguring the infrastructure to support this approach.

How can the administrator accomplish this with the LEAST administrative overhead?

A.
Use Amazon CloudFront to log the URL and forward the request.
A.
Use Amazon CloudFront to log the URL and forward the request.
Answers
B.
Use Amazon CloudFront to rewrite the header based on the microservice and forward the request.
B.
Use Amazon CloudFront to rewrite the header based on the microservice and forward the request.
Answers
C.
Use an Application Load Balancer (ALB) and do path-based routing.
C.
Use an Application Load Balancer (ALB) and do path-based routing.
Answers
D.
Use a Network Load Balancer (NLB) and do path-based routing.
D.
Use a Network Load Balancer (NLB) and do path-based routing.
Answers
Suggested answer: C

Question 3

Report
Export
Collapse

A SysOps administrator developed a Python script that uses the AWS SDK to conduct several maintenance tasks. The script needs to run automatically every night. What is the MOST operationally efficient solution that meets this requirement?

A.
Convert the Python script to an AWS Lambda function. Use an Amazon EventBridge (Amazon CloudWatch Events) rule to invoke the function every night.
A.
Convert the Python script to an AWS Lambda function. Use an Amazon EventBridge (Amazon CloudWatch Events) rule to invoke the function every night.
Answers
B.
Convert the Python script to an AWS Lambda function. Use AWS CloudTrail to invoke the function every night.
B.
Convert the Python script to an AWS Lambda function. Use AWS CloudTrail to invoke the function every night.
Answers
C.
Deploy the Python script to an Amazon EC2 instance. Use Amazon EventBride (Amazon CloudWatch Events) to schedule the instance to start and stop every night.
C.
Deploy the Python script to an Amazon EC2 instance. Use Amazon EventBride (Amazon CloudWatch Events) to schedule the instance to start and stop every night.
Answers
D.
Deploy the Python script to an Amazon EC2 instance. Use AWS Systems Manager to schedule the instance to start and stop every night.
D.
Deploy the Python script to an Amazon EC2 instance. Use AWS Systems Manager to schedule the instance to start and stop every night.
Answers
Suggested answer: A

Explanation:

Reference: https://docs.aws.amazon.com/AmazonCloudWatch/latest/events/RunLambdaSchedule.html

Question 4

Report
Export
Collapse

A company has set up an IPsec tunnel between its AWS environment and its on-premises data center. The tunnel is reporting as UP, but the Amazon EC2 instances are not able to ping any on-premises resources. What should a SysOps administrator do to resolve this issue?

A.
Create a new inbound rule on the EC2 instances' security groups to allow ICMP traffic from the on-premises CIDR.
A.
Create a new inbound rule on the EC2 instances' security groups to allow ICMP traffic from the on-premises CIDR.
Answers
B.
Create a peering connection between the IPsec tunnel and the subnet of the EC2 instances.
B.
Create a peering connection between the IPsec tunnel and the subnet of the EC2 instances.
Answers
C.
Enable route propagation for the virtual private gateway in the route table that is assigned to the subnet of the EC2 instances.
C.
Enable route propagation for the virtual private gateway in the route table that is assigned to the subnet of the EC2 instances.
Answers
D.
Modify the VPC's DHCP options set. Add the IPsec tunnel to the VPN section.
D.
Modify the VPC's DHCP options set. Add the IPsec tunnel to the VPN section.
Answers
Suggested answer: A

Explanation:

Reference: https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html

Question 5

Report
Export
Collapse

When the AWS Cloud infrastructure experiences an event that may impact an organization, which AWS service can be used to see which of the organization's resources are affected?

A.
AWS Service Health Dashboard
A.
AWS Service Health Dashboard
Answers
B.
AWS Trusted Advisor
B.
AWS Trusted Advisor
Answers
C.
AWS Personal Health Dashboard
C.
AWS Personal Health Dashboard
Answers
D.
AWS Systems Manager
D.
AWS Systems Manager
Answers
Suggested answer: C

Explanation:

Reference: https://docs.aws.amazon.com/health/latest/ug/getting-started-phd.html

Question 6

Report
Export
Collapse

A company using AWS Organizations requires that no Amazon S3 buckets in its production accounts should ever be deleted. What is the SIMPLEST approach the SysOps administrator can take to ensure S3 buckets in those accounts can never be deleted?

A.
Set up MFA Delete on all the S3 buckets to prevent the buckets from being deleted.
A.
Set up MFA Delete on all the S3 buckets to prevent the buckets from being deleted.
Answers
B.
Use service control policies to deny the s3:DeleteBucket action on all buckets in production accounts.
B.
Use service control policies to deny the s3:DeleteBucket action on all buckets in production accounts.
Answers
C.
Create an IAM group that has an IAM policy to deny the s3:DeleteBucket action on all buckets in production accounts.
C.
Create an IAM group that has an IAM policy to deny the s3:DeleteBucket action on all buckets in production accounts.
Answers
D.
Use AWS Shield to deny the s3:DeleteBucket action on the AWS account instead of all S3 buckets.
D.
Use AWS Shield to deny the s3:DeleteBucket action on the AWS account instead of all S3 buckets.
Answers
Suggested answer: B

Question 7

Report
Export
Collapse

A company is running a flash sale on its website. The website is hosted on burstable performance Amazon EC2 instances in an Auto Scaling group. The Auto Scaling group is configured to launch instances when the CPU utilization is above 70%.

A couple of hours into the sale, users report slow load times and error messages for refused connections. A SysOps administrator reviews Amazon CloudWatch metrics and notices that the CPU utilization is at 20% across the entire fleet of instances.

The SysOps administrator must restore the website's functionality without making changes to the network infrastructure. Which solution will meet these requirements?

A.
Activate unlimited mode for the instances in the Auto Scaling group.
A.
Activate unlimited mode for the instances in the Auto Scaling group.
Answers
B.
Implement an Amazon CloudFront distribution to offload the traffic from the Auto Scaling group.
B.
Implement an Amazon CloudFront distribution to offload the traffic from the Auto Scaling group.
Answers
C.
Move the website to a different AWS Region that is closer to the users.
C.
Move the website to a different AWS Region that is closer to the users.
Answers
D.
Reduce the desired size of the Auto Scaling group to artificially increase CPU average utilization.
D.
Reduce the desired size of the Auto Scaling group to artificially increase CPU average utilization.
Answers
Suggested answer: C

Explanation:

Reference: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances-how-to.html

Question 8

Report
Export
Collapse

A company hosts its website in the us-east-1 Region. The company is preparing to deploy its website into the eu-central-1 Region. Website visitors who are located in Europe should access the website that is hosted in eu-central-1. All other visitors access the website that is hosted in us-east-1. The company uses Amazon Route 53 to manage the website's DNS records. Which routing policy should a SysOps administrator apply to the Route 53 record set to meet these requirements?

A.
Geolocation routing policy
A.
Geolocation routing policy
Answers
B.
Geoproximity routing policy
B.
Geoproximity routing policy
Answers
C.
Latency routing policy
C.
Latency routing policy
Answers
D.
Multivalue answer routing policy
D.
Multivalue answer routing policy
Answers
Suggested answer: D

Explanation:

Reference: https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/routing-policy.html

Question 9

Report
Export
Collapse

A SysOps administrator is evaluating Amazon Route 53 DNS options to address concerns about high availability for an onpremises website. The website consists of two servers: a primary active server and a secondary passive server. Route 53 should route traffic to the primary server if the associated health check returns 2xx or 3xx HTTP codes. All other traffic should be directed to the secondary passive server. The failover record type, set ID, and routing policy have been set appropriately for both primary and secondary servers.

Which next step should be taken to configure Route 53?

A.
Create an A record for each server. Associate the records with the Route 53 HTTP health check.
A.
Create an A record for each server. Associate the records with the Route 53 HTTP health check.
Answers
B.
Create an A record for each server. Associate the records with the Route 53 TCP health check.
B.
Create an A record for each server. Associate the records with the Route 53 TCP health check.
Answers
C.
Create an alias record for each server with evaluate target health set to yes. Associate the records with the Route 53 HTTP health check.
C.
Create an alias record for each server with evaluate target health set to yes. Associate the records with the Route 53 HTTP health check.
Answers
D.
Create an alias record for each server with evaluate target health set to yes. Associate the records with the Route 53 TCP health check.
D.
Create an alias record for each server with evaluate target health set to yes. Associate the records with the Route 53 TCP health check.
Answers
Suggested answer: C

Explanation:

Reference: https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/health-checks-how-route-53-chooses-records.html

Question 10

Report
Export
Collapse

A company is supporting a business-critical application that runs on Amazon EC2 instances. The application receives data from a service that runs in an on-premises data center. End users are reporting intermittent issues that are related to data refreshes. The issues are occurring because of fluctuations in available network bandwidth between AWS and the onpremises data center. A SysOps administrator must improve the user experience and the application's performance while minimizing changes to the application stack. Which solution will offer the MOST performance improvement while meeting these requirements?

A.
Migrate the service to AWS Implement auto scaling.
A.
Migrate the service to AWS Implement auto scaling.
Answers
B.
Modify the service to use Amazon S3 Transfer Acceleration.
B.
Modify the service to use Amazon S3 Transfer Acceleration.
Answers
C.
Set up an AWS Direct Connect connection with the on-premises data center.
C.
Set up an AWS Direct Connect connection with the on-premises data center.
Answers
D.
Use AWS Storage Gateway to move the data into AWS.
D.
Use AWS Storage Gateway to move the data into AWS.
Answers
Suggested answer: B

Explanation:

Reference: https://docs.aws.amazon.com/AmazonS3/latest/userguide/transfer-acceleration.html

Total 425 questions
Go to page: of 43
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms