ExamGecko
Search Search Login
Home Home / Amazon / SOA-C02

Amazon SOA-C02 Practice Test - Questions Answers, Page 21

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company's application on EC2 instances relies on a Single-AZ RDS for MySQL DB instance. The SysOps administrator needs to ensure failover to minimize downtime.
A SysOps administrator creates two VPCs, VPC1 and VPC2, in a company's AWS account The SysOps administrator deploys a Linux Amazon EC2 instance in VPC1 and deploys an Amazon RDS for MySQL DB instance in VPC2. The DB instance is deployed in a private subnet. An application that runs on the EC2 instance needs to connect to the database. What should the SysOps administrator do to give the EC2 instance the ability to connect to the database?
A SysOps administrator is optimizing the cost of a workload. The workload is running in multiple AWS Regions and is using AWS Lambda with Amazon EC2 On-Demand Instances for the compute. The overall usage is predictable. The amount of compute that is consumed in each Region varies, depending on the users' locations. Which approach should the SysOps administrator use to optimize this workload?
A company needs to monitor the disk utilization of Amazon Elastic Block Store (Amazon EBS) volumes The EBS volumes are attached to Amazon EC2 Linux Instances A SysOps administrator must set up an Amazon CloudWatch alarm that provides an alert when disk utilization increases to more than 80%. Which combination of steps must the SysOps administrator lake lo meet these requirements? (Select THREE.)
A company uses AWS CloudFormation to manage a stack of Amazon EC2 instances on AWS. A SysOps administrator needs to keep the instances and all of the instances' data, even if someone deletes the stack. Which solution will meet these requirements?
The SysOps administrator must dynamically reference the latest AMI ID from Systems Manager Parameter Store in CloudFormation templates for new AMI versions.
A company has an application that collects notifications from thousands of alarm systems. The notifications include alarm notifications and information notifications. The information notifications include the system arming processes, disarming processes, and sensor status. All notifications are kept as messages in an Amazon Simple Queue Service (Amazon SQS) queue. Amazon EC2 instances that are in an Auto Scaling group process the messages. A SysOps administrator needs to implement a solution that prioritizes alarm notifications over information notifications. Which solution will meet these requirements?
The SysOps administrator must modify the AWS Config rule that deletes noncompliant SSH inbound rules to update the rule to allow SSH from specific trusted IP addresses instead.
The SysOps administrator needs to address high disk I/O issues during EC2 instance bootstrap in an Auto Scaling group.
To manage Auto Scaling group instances that have OS vulnerabilities, the SysOps administrator needs an automated patching solution.

Question 201

Report
Export
Collapse

A company wants to use only IPv6 for all its Amazon EC2 instances. The EC2 instances must not be accessible from the internet, but the EC2 instances must be able to access the internet. The company creates a dual-stack VPC and IPv6- only subnets.

How should a SysOps administrator configure the VPC to meet these requirements?

A.
Create and attach a NAT gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the NAT gateway. Attach the custom route table to the IPv6-only subnets.
A.
Create and attach a NAT gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the NAT gateway. Attach the custom route table to the IPv6-only subnets.
Answers
B.
Create and attach an internet gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the internet gateway. Attach the custom route table to the IPv6-only subnets.
B.
Create and attach an internet gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the internet gateway. Attach the custom route table to the IPv6-only subnets.
Answers
C.
Create and attach an egress-only internet gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the egress-only internet gateway. Attach the custom route table to the IPv6-only subnets.
C.
Create and attach an egress-only internet gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the egress-only internet gateway. Attach the custom route table to the IPv6-only subnets.
Answers
D.
Create and attach an internet gateway and a NAT gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the internet gateway and all IPv4 traffic to the NAT gateway. Attach the custom route table to the IPv6-only subnets.
D.
Create and attach an internet gateway and a NAT gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the internet gateway and all IPv4 traffic to the NAT gateway. Attach the custom route table to the IPv6-only subnets.
Answers
Suggested answer: C

Question 202

Report
Export
Collapse

A company wants to track its AWS costs in all member accounts that are part of an organization in AWS Organizations. Managers of the member accounts want to receive a notification when the estimated costs exceed a predetermined amount each month. The managers are unable to configure a billing alarm. The IAM permissions for all users are correct. What could be the cause of this issue?

A.
The management/payer account does not have billing alerts turned on.
A.
The management/payer account does not have billing alerts turned on.
Answers
B.
The company has not configured AWS Resource Access Manager (AWS RAM) to share billing information between the member accounts and the management/payer account.
B.
The company has not configured AWS Resource Access Manager (AWS RAM) to share billing information between the member accounts and the management/payer account.
Answers
C.
Amazon GuardDuty is turned on for all the accounts.
C.
Amazon GuardDuty is turned on for all the accounts.
Answers
D.
The company has not configured an AWS Config rule to monitor billing.
D.
The company has not configured an AWS Config rule to monitor billing.
Answers
Suggested answer: B

Question 203

Report
Export
Collapse

A SysOps administrator creates an AWS CloudFormation template to define an application stack that can be deployed in multiple AWS Regions. The SysOps administrator also creates an Amazon CloudWatch dashboard by using the AWS Management Console. Each deployment of the application requires its own CloudWatch dashboard. How can the SysOps administrator automate the creation of the CloudWatch dashboard each time the application is deployed?

A.
Create a script by using the AWS CLI to run the aws cloudformation put-dashboard command with the name of the dashboard. Run the command each time a new CloudFormation stack is created.
A.
Create a script by using the AWS CLI to run the aws cloudformation put-dashboard command with the name of the dashboard. Run the command each time a new CloudFormation stack is created.
Answers
B.
Export the existing CloudWatch dashboard as JSON. Update the CloudFormation template to define an AWS::CloudWatch::Dashboard resource. Include the exported JSON in the resource's DashboardBody property.
B.
Export the existing CloudWatch dashboard as JSON. Update the CloudFormation template to define an AWS::CloudWatch::Dashboard resource. Include the exported JSON in the resource's DashboardBody property.
Answers
C.
Update the CloudFormation template to define an resource. Use the intrinsic Ref function to reference the ID of the existing CloudWatch dashboard.
C.
Update the CloudFormation template to define an resource. Use the intrinsic Ref function to reference the ID of the existing CloudWatch dashboard.
Answers
D.
Update the CloudFormation template to define an AWS::CloudWatch::Dashboard resource.Specify the name of the existing dashboard in the DashboardName property.
D.
Update the CloudFormation template to define an AWS::CloudWatch::Dashboard resource.Specify the name of the existing dashboard in the DashboardName property.
Answers
Suggested answer: B

Explanation:

You can only use the Intrinsic Ref function to reference a resource that is being created at the same time as the current CloudFormation template. The question states that the CloudWatch dashboard was previously created using the AWS Management Console, so there is no ID to reference the existing CloudWatch dashboard in the CloudFormation template. You would need to export the existing CloudWatch dashboard as JSON, then use the DashboardBody property in the CloudFormation template to replicate it upon each deployment(https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/CloudWatch-Dashboard- Body-Structure.html)

Question 204

Report
Export
Collapse

A SysOps administrator is required to monitor free space on Amazon EBS volumes attached to Microsoft Windows-based Amazon EC2 instances within a company’s account. The administrator must be alerted to potential issues. What should the administrator do to receive email alerts before low storage space affects EC2 instance performance?

A.
Use built-in Amazon CloudWatch metrics, and configure CloudWatch alarms and an Amazon SNS topic for email notifications
A.
Use built-in Amazon CloudWatch metrics, and configure CloudWatch alarms and an Amazon SNS topic for email notifications
Answers
B.
Use AWS CloudTrail logs and configure the trail to send notifications to an Amazon SNS topic.
B.
Use AWS CloudTrail logs and configure the trail to send notifications to an Amazon SNS topic.
Answers
C.
Use the Amazon CloudWatch agent to send disk space metrics, then set up CloudWatch alarms using an Amazon SNS topic.
C.
Use the Amazon CloudWatch agent to send disk space metrics, then set up CloudWatch alarms using an Amazon SNS topic.
Answers
D.
Use AWS Trusted Advisor and enable email notification alerts for EC2 disk space
D.
Use AWS Trusted Advisor and enable email notification alerts for EC2 disk space
Answers
Suggested answer: C

Question 205

Report
Export
Collapse

A company plans to migrate several of its high performance computing (MPC) virtual machines (VMs) to Amazon EC2 instances on AWS. A SysOps administrator must identify a placement group for this deployment. The strategy must minimize network latency and must maximize network throughput between the HPC VMs.

Which strategy should the SysOps administrator choose to meet these requirements?

A.
Deploy the instances in a cluster placement group in one Availability Zone.
A.
Deploy the instances in a cluster placement group in one Availability Zone.
Answers
B.
Deploy the instances in a partition placement group in two Availability Zones
B.
Deploy the instances in a partition placement group in two Availability Zones
Answers
C.
Deploy the instances in a partition placement group in one Availability Zone
C.
Deploy the instances in a partition placement group in one Availability Zone
Answers
D.
Deploy the instances in a spread placement group in two Availably Zones
D.
Deploy the instances in a spread placement group in two Availably Zones
Answers
Suggested answer: A

Question 206

Report
Export
Collapse

A company's VPC has connectivity to an on-premises data center through an AWS Site-to-Site VPN.

The company needs Amazon EC2 instances in the VPC to send DNS queries for example com to the DNS servers in the data center. Which solution will meet these requirements?

A.
Create an Amazon Route 53 Resolver inbound endpoint Create a conditional forwarding rule on the on-primes DNS servers to forward DNS requests for example.com to the inbound endpoints.
A.
Create an Amazon Route 53 Resolver inbound endpoint Create a conditional forwarding rule on the on-primes DNS servers to forward DNS requests for example.com to the inbound endpoints.
Answers
B.
Create an Amazon Route 53 Resolver inbound endpoint Create a forwarding rule on the resolver that sends all queries for example.com to the on-premises DNS servers. Associate this rule with the VPC.
B.
Create an Amazon Route 53 Resolver inbound endpoint Create a forwarding rule on the resolver that sends all queries for example.com to the on-premises DNS servers. Associate this rule with the VPC.
Answers
C.
Create an Amazon Route 53 Resolver outbound endpoint Create a conditional forwarding rule on the on-premises DNS servers to forward DNS requests for example.com to the outbound endpoints
C.
Create an Amazon Route 53 Resolver outbound endpoint Create a conditional forwarding rule on the on-premises DNS servers to forward DNS requests for example.com to the outbound endpoints
Answers
D.
Create an Amazon Route 53 Resolver outbound endpoint. Create a forwarding rule on the resolver that sends all queries for exarrc4e.com to the on-premises DNS servers Associate this rule with the VPC.
D.
Create an Amazon Route 53 Resolver outbound endpoint. Create a forwarding rule on the resolver that sends all queries for exarrc4e.com to the on-premises DNS servers Associate this rule with the VPC.
Answers
Suggested answer: C

Question 207

Report
Export
Collapse

A software company runs a workload on Amazon EC2 instances behind an Application Load Balancer (ALB) A SysOcs administrator needs to define a custom health check for the EC2 instances. What is the MOST operationally efficient solution?

A.
Set up each EC2 Instance so that it writes its healthy/unhealthy status into a shared Amazon S3 bucket for the ALB to read
A.
Set up each EC2 Instance so that it writes its healthy/unhealthy status into a shared Amazon S3 bucket for the ALB to read
Answers
B.
Configure the health check on the ALB and ensure that the HeathCheckPath setting s correct
B.
Configure the health check on the ALB and ensure that the HeathCheckPath setting s correct
Answers
C.
Set up Amazon ElasticCache to track the EC2 instances as they scale in and out
C.
Set up Amazon ElasticCache to track the EC2 instances as they scale in and out
Answers
D.
Configure an Amazon API Gateway health check to ensure custom checks on aw of the EC2 instances
D.
Configure an Amazon API Gateway health check to ensure custom checks on aw of the EC2 instances
Answers
Suggested answer: B

Question 208

Report
Export
Collapse

A SysOos administrator s tasked with analyzing database performance. The database runs on a single Amazon RDS D6 instance. The SysOps administrator finds that, during times of peak traffic, resources on the database are over utilized due to the amount of read traffic.

Which actions should the SysOps administrator take to improve RDS performance? (Select TWO.)

A.
Add a read replica.
A.
Add a read replica.
Answers
B.
Modify the application to use Amazon ElastiCache for Memcached.
B.
Modify the application to use Amazon ElastiCache for Memcached.
Answers
C.
Migrate the database from RDS to Amazon DynamoDB.
C.
Migrate the database from RDS to Amazon DynamoDB.
Answers
D.
Migrate the database to Amazon EC2 with enhanced networking enabled
D.
Migrate the database to Amazon EC2 with enhanced networking enabled
Answers
E.
Upgrade the database to a Multi-AZ deployment.
E.
Upgrade the database to a Multi-AZ deployment.
Answers
Suggested answer: A, B

Question 209

Report
Export
Collapse

A company recently its server infrastructure to Amazon EC2 instances. The company wants to use Amazon CloudWatch metrics to track instance memory utilization and available disk space. What should a SysOps administrator do to meet these requirements?

A.
Configure CloudWatch from the AWS Management Console tor all the instances that require monitoring by CloudWatch. AWS automatically installs and configures the agents far the specified instances.
A.
Configure CloudWatch from the AWS Management Console tor all the instances that require monitoring by CloudWatch. AWS automatically installs and configures the agents far the specified instances.
Answers
B.
Install and configure the CloudWatch agent on all the instances Attach an IAM role to allow the instances to write logs to CloudWatch.
B.
Install and configure the CloudWatch agent on all the instances Attach an IAM role to allow the instances to write logs to CloudWatch.
Answers
C.
Install and configure the CloudWatch agent on all the instances Attach an IAM user to allow the instances to write logs to CloudWatch.
C.
Install and configure the CloudWatch agent on all the instances Attach an IAM user to allow the instances to write logs to CloudWatch.
Answers
D.
Install and configure the CloudWatch agent on all the instances. Attach the necessary security groups to allow the instances to write logs to CloudWatch
D.
Install and configure the CloudWatch agent on all the instances. Attach the necessary security groups to allow the instances to write logs to CloudWatch
Answers
Suggested answer: C

Question 210

Report
Export
Collapse

A SysOps administrator configures an Amazon S3 gateway endpoint in a VPC. The private subnets inside the VPC do not nave outbound internet access. A user logs in to an Amazon EC2 instance in one of the private subnets and cannot upload a file to an Amazon S3 bucket in the same AWS Region Which solution will solve this problem?

A.
Update the EC2 instance role policy to allow s3:PutObjed access to the target S3 bucket.
A.
Update the EC2 instance role policy to allow s3:PutObjed access to the target S3 bucket.
Answers
B.
Update the EC2 security group to allow outbound traffic to 0.0.0.070 for port 80.
B.
Update the EC2 security group to allow outbound traffic to 0.0.0.070 for port 80.
Answers
C.
Update the EC2 subnet route table to include the S3 prefix tot destination routes to the S3 gateway endpoint.
C.
Update the EC2 subnet route table to include the S3 prefix tot destination routes to the S3 gateway endpoint.
Answers
D.
Update the S3 bucket policy to allow s3 PurObject access from the private subnet OOR block.
D.
Update the S3 bucket policy to allow s3 PurObject access from the private subnet OOR block.
Answers
Suggested answer: C
Total 425 questions
Go to page: of 43
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms