ExamGecko
Search Search Login
Home Home / Amazon / SOA-C02

Amazon SOA-C02 Practice Test - Questions Answers, Page 38

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company's application on EC2 instances relies on a Single-AZ RDS for MySQL DB instance. The SysOps administrator needs to ensure failover to minimize downtime.
A SysOps administrator creates two VPCs, VPC1 and VPC2, in a company's AWS account The SysOps administrator deploys a Linux Amazon EC2 instance in VPC1 and deploys an Amazon RDS for MySQL DB instance in VPC2. The DB instance is deployed in a private subnet. An application that runs on the EC2 instance needs to connect to the database. What should the SysOps administrator do to give the EC2 instance the ability to connect to the database?
A company needs to monitor the disk utilization of Amazon Elastic Block Store (Amazon EBS) volumes The EBS volumes are attached to Amazon EC2 Linux Instances A SysOps administrator must set up an Amazon CloudWatch alarm that provides an alert when disk utilization increases to more than 80%. Which combination of steps must the SysOps administrator lake lo meet these requirements? (Select THREE.)
A company uses AWS CloudFormation to manage a stack of Amazon EC2 instances on AWS. A SysOps administrator needs to keep the instances and all of the instances' data, even if someone deletes the stack. Which solution will meet these requirements?
A SysOps administrator is optimizing the cost of a workload. The workload is running in multiple AWS Regions and is using AWS Lambda with Amazon EC2 On-Demand Instances for the compute. The overall usage is predictable. The amount of compute that is consumed in each Region varies, depending on the users' locations. Which approach should the SysOps administrator use to optimize this workload?
The SysOps administrator must dynamically reference the latest AMI ID from Systems Manager Parameter Store in CloudFormation templates for new AMI versions.
A company has an application that collects notifications from thousands of alarm systems. The notifications include alarm notifications and information notifications. The information notifications include the system arming processes, disarming processes, and sensor status. All notifications are kept as messages in an Amazon Simple Queue Service (Amazon SQS) queue. Amazon EC2 instances that are in an Auto Scaling group process the messages. A SysOps administrator needs to implement a solution that prioritizes alarm notifications over information notifications. Which solution will meet these requirements?
A team of developers is using several Amazon S3 buckets as centralized repositories. Users across the world upload large sets of files to these repositories. The development team's applications later process these files. A SysOps administrator sets up a new S3 bucket. DOC-EXAMPLE-BUCKET, to support a new workload. The new S3 bucket also receives regular uploads of large sets of files from users worldwide. When the new S3 bucket is put into production, the upload performance from certain geographic areas is lower than the upload performance that the existing S3 buckets provide. What should the SysOps administrator do to remediate this issue?
The SysOps administrator must modify the AWS Config rule that deletes noncompliant SSH inbound rules to update the rule to allow SSH from specific trusted IP addresses instead.
The SysOps administrator needs to address high disk I/O issues during EC2 instance bootstrap in an Auto Scaling group.

Question 371

Report
Export
Collapse

A company has scientists who upload large data objects to an Amazon S3 bucket The scientists upload the objects as multipart uploads. The multipart uploads often fail because of poor end-client connectivity.

The company wants to optimize storage costs that are associated with the data. A SysOps administrator must implement a solution that presents metrics for incomplete uploads. The solution also must automatically delete any incomplete uploads after 7 days.

Which solution will meet these requirements?

A.
Review the Incomplete Multipart Upload Bytes metre in the S3 Storage Lens dashboard Create an S3 Lifecycle policy to automatically delete any incomplete multipart uploads after 7 days.
A.
Review the Incomplete Multipart Upload Bytes metre in the S3 Storage Lens dashboard Create an S3 Lifecycle policy to automatically delete any incomplete multipart uploads after 7 days.
Answers
B.
Implement S3 Intelligent-Tiering to move data into tower-cost storage classes after 7 days. Create an S3 Storage Lens policy to automatically delete any incomplete multipart uploads after 7 days.
B.
Implement S3 Intelligent-Tiering to move data into tower-cost storage classes after 7 days. Create an S3 Storage Lens policy to automatically delete any incomplete multipart uploads after 7 days.
Answers
C.
Access the S3 console Review the Metrics tab to check the storage that incomplete multipart uploads are consuming. Create an AWS Lambda function to delete any incomplete multipart uploads after 7 days.
C.
Access the S3 console Review the Metrics tab to check the storage that incomplete multipart uploads are consuming. Create an AWS Lambda function to delete any incomplete multipart uploads after 7 days.
Answers
D.
Use the S3 analytics storage class analysis tool to identify and measure incomplete multipart uploads. Configure an S3 bucket policy to enforce restrictions on multipart uploads to delete incomplete multipart uploads after 7 days.
D.
Use the S3 analytics storage class analysis tool to identify and measure incomplete multipart uploads. Configure an S3 bucket policy to enforce restrictions on multipart uploads to delete incomplete multipart uploads after 7 days.
Answers
Suggested answer: A

Explanation:

S3 Storage Lens and Lifecycle Policies:

Incomplete Multipart Upload Bytes Metric: This metric in S3 Storage Lens helps you identify the storage consumed by incomplete multipart uploads.

S3 Lifecycle Policies: Lifecycle policies allow you to automatically manage the lifecycle of objects, including deleting incomplete multipart uploads after a specified number of days.

Steps:

Go to the AWS Management Console.

Navigate to S3 and select the bucket.

Go to the 'Metrics' tab and view the 'Incomplete Multipart Upload Bytes' metric in the S3 Storage Lens dashboard.

To create a lifecycle policy:

Select the bucket.

Go to the 'Management' tab.

Under 'Lifecycle rules,' click 'Create lifecycle rule.'

Define a rule name.

Choose 'Multipart upload' and specify 'Delete incomplete multipart uploads' after 7 days.

Save the rule.

AWS S3 Storage Lens

AWS S3 Lifecycle Policies

Question 372

Report
Export
Collapse

An application uses an Amazon Aurora MySQL DB cluster that Includes one Aurora Replica The application's read performance degrades when there are more than 200 user connections. The number of user connections is approximately 180 on a consistent basis Occasionally, the number of user connections increases rapidly to more than 200

A SysOps administrator must implement a solution that will scale the application automatically as user demand increases or decreases.

Which solution will meet these requirements?

A.
Modify the DB cluster by increasing the Aurora Replica instance size.
A.
Modify the DB cluster by increasing the Aurora Replica instance size.
Answers
B.
Modify the DB cluster by changing to serverless mode whenever the number of user connections exceeds 200.
B.
Modify the DB cluster by changing to serverless mode whenever the number of user connections exceeds 200.
Answers
C.
Migrate to a new Aurora DB cluster that has multiple writer instances. Modify the application's database connection string.
C.
Migrate to a new Aurora DB cluster that has multiple writer instances. Modify the application's database connection string.
Answers
D.
Create an auto scaling policy that has a target value of 195 for the DatabaseConnections metric.
D.
Create an auto scaling policy that has a target value of 195 for the DatabaseConnections metric.
Answers
Suggested answer: D

Explanation:

Aurora Auto Scaling:

Aurora Auto Scaling adjusts the number of Aurora Replicas in response to changes in connectivity or workload.

Steps:

Go to the AWS Management Console.

Navigate to RDS and select the Aurora cluster.

Under 'Actions,' choose 'Add Aurora Replica' to initially add replicas if needed.

Go to the 'Auto Scaling' section and create an auto scaling policy.

Set the target value for the DatabaseConnections metric to 195.

Define the minimum and maximum number of replicas.

Save the configuration.

This ensures that the Aurora cluster scales automatically when the number of connections approaches the threshold, improving read performance.

Question 373

Report
Export
Collapse

A company runs a single-page web application on AWS The application uses Amazon CloudFront lo deliver static content from an Amazon S3 bucket origin The application also uses an Amazon Elastic Kubemetes Service (Amazon EKS) duster to serve API calls

Users sometimes report that the website is not operational, even when monitoring shows that the index page is reachable and that the EKS cluster is healthy. A SysOps administrator must Implement additional monitoring that can delect when the website is not operational before users report the problem.

Which solution will meet these requirements?

A.
Create an Amazon CloudWatch Synthetics heartbeat monitor canary that points to the fully qualified domain name (FQDN) of the website.
A.
Create an Amazon CloudWatch Synthetics heartbeat monitor canary that points to the fully qualified domain name (FQDN) of the website.
Answers
B.
Create an Amazon CloudWatch Synthetics API canary that monitors the availability of API endpoints from the EKS cluster.
B.
Create an Amazon CloudWatch Synthetics API canary that monitors the availability of API endpoints from the EKS cluster.
Answers
C.
Create an Amazon CloudWatch RUM app monitor that points to the fully qualified domain name (FQDN) of the website. Configure the app monitor to collect performance telemetry and JavaScript errors
C.
Create an Amazon CloudWatch RUM app monitor that points to the fully qualified domain name (FQDN) of the website. Configure the app monitor to collect performance telemetry and JavaScript errors
Answers
D.
Create an Amazon CloudWatch RUM app monitor that uses the API endpoints from the EKS cluster
D.
Create an Amazon CloudWatch RUM app monitor that uses the API endpoints from the EKS cluster
Answers
Suggested answer: A

Explanation:

Amazon CloudWatch Synthetics:

CloudWatch Synthetics allows you to create canaries to monitor your endpoints and API calls, simulating user behavior to detect issues before users do.

Steps:

Go to the AWS Management Console.

Navigate to CloudWatch and select 'Synthetics.'

Click on 'Create canary.'

Choose 'Heartbeat monitoring' as the blueprint.

Configure the canary to point to the FQDN of the website.

Set the frequency and retention settings as per your requirement.

Create the canary.

This setup continuously checks the operational status of your website, alerting you if it becomes unreachable or has issues.

Question 374

Report
Export
Collapse

A company needs to monitor the disk utilization of Amazon Elastic Block Store (Amazon EBS) volumes The EBS volumes are attached to Amazon EC2 Linux Instances A SysOps administrator must set up an Amazon CloudWatch alarm that provides an alert when disk utilization increases to more than 80%.

Which combination of steps must the SysOps administrator lake lo meet these requirements? (Select THREE.)

A.
Create an 1AM role that includes the Cloud Watch AgentServerPol icy AWS managed policy Attach me role to the instances
A.
Create an 1AM role that includes the Cloud Watch AgentServerPol icy AWS managed policy Attach me role to the instances
Answers
B.
Create an 1AM role that includes the CloudWatchApplicationInsightsReadOnlyAccess AWS managed policy. Attach the role to the instances
B.
Create an 1AM role that includes the CloudWatchApplicationInsightsReadOnlyAccess AWS managed policy. Attach the role to the instances
Answers
C.
Install and start the CloudWatch agent by using AWS Systems Manager or the command line
C.
Install and start the CloudWatch agent by using AWS Systems Manager or the command line
Answers
D.
Install and start the CloudWatch agent by using an 1AM role. Attach the Cloud Watch AgentServerPolicy AWS managed policy to the role.
D.
Install and start the CloudWatch agent by using an 1AM role. Attach the Cloud Watch AgentServerPolicy AWS managed policy to the role.
Answers
E.
Configure a CloudWatch alarm to enter ALARM state when the disk_used_percent CloudWatch metric is greater than 80%.
E.
Configure a CloudWatch alarm to enter ALARM state when the disk_used_percent CloudWatch metric is greater than 80%.
Answers
F.
Configure a CloudWatch alarm to enter ALARM state when the disk_used CloudWatch metric is greater than 80% or when the disk_free CloudWatch metric is less than 20%.
F.
Configure a CloudWatch alarm to enter ALARM state when the disk_used CloudWatch metric is greater than 80% or when the disk_free CloudWatch metric is less than 20%.
Answers
Suggested answer: A, C, E

Explanation:

Create an IAM role with the CloudWatchAgentServerPolicy:

This policy grants the necessary permissions for the CloudWatch agent to collect and send metrics.

Steps:

Go to the AWS Management Console.

Navigate to IAM and create a new role.

Choose 'EC2' as the trusted entity.

Attach the 'CloudWatchAgentServerPolicy' managed policy to the role.

Attach this IAM role to your EC2 instances.

Install and start the CloudWatch agent:

The CloudWatch agent must be installed and configured to collect disk utilization metrics.

Steps:

Use AWS Systems Manager or SSH to connect to your instances.

Install the CloudWatch agent using the following commands:

sudo yum install amazon-cloudwatch-agent

sudo /opt/aws/amazon-cloudwatch-agent/bin/amazon-cloudwatch-agent-config-wizard

sudo /opt/aws/amazon-cloudwatch-agent/bin/amazon-cloudwatch-agent-ctl -a fetch-config -m ec2 -c file:/path/to/your-config-file.json -s

Start the agent:

sudo systemctl start amazon-cloudwatch-agent

Configure a CloudWatch alarm:

Create an alarm based on the disk_used_percent metric.

Steps:

Go to the AWS Management Console.

Navigate to CloudWatch and select 'Alarms' from the left-hand menu.

Click on 'Create alarm.'

Select the disk_used_percent metric.

Set the threshold to 80% and configure the alarm actions (e.g., sending a notification).

Question 375

Report
Export
Collapse

A SysOps administrator is investigating a company's web application for performance problems The application runs on Amazon EC2 instances that are in an Auto Scaling group. The application receives large traffic increases at random times throughout the day. During periods of rapid traffic increases, the Auto Scaling group is not adding capacity fast enough. As a result, users are experiencing poor performance.

The company wants to minimize costs without adversely affecting the user experience when web traffic surges quickly. The company needs a solution that adds more capacity to me Auto Scaling group for larger traffic increases than for smaller traffic increases.

How should the SysOps administrator configure the Auto Scaling group to meet these requirements?

A.
Create a simple scaling policy with settings to make larger adjustments in capacity when the system is under heavy load
A.
Create a simple scaling policy with settings to make larger adjustments in capacity when the system is under heavy load
Answers
B.
Create a step scaling policy with settings to make larger adjustments in capacity when the system is under heavy load.
B.
Create a step scaling policy with settings to make larger adjustments in capacity when the system is under heavy load.
Answers
C.
Create a target tracking scaling policy with settings to make larger adjustments in capacity when the system is under heavy load
C.
Create a target tracking scaling policy with settings to make larger adjustments in capacity when the system is under heavy load
Answers
D.
Use Amazon EC2 Auto Scaling lifecycle hooks Adjust the Auto Scaling group's maximum number of instances after every scaling event
D.
Use Amazon EC2 Auto Scaling lifecycle hooks Adjust the Auto Scaling group's maximum number of instances after every scaling event
Answers
Suggested answer: B

Explanation:

Step Scaling Policy:

Step scaling policies allow you to define scaling actions based on different levels of CloudWatch alarms.

Steps:

Go to the AWS Management Console.

Navigate to EC2 Auto Scaling.

Select your Auto Scaling group.

Create or edit a scaling policy and choose 'Step scaling.'

Define different steps based on CloudWatch alarm thresholds (e.g., CPU usage or request count).

Configure larger adjustments for higher thresholds and smaller adjustments for lower thresholds.

Example Configuration:

For CPU > 80%, increase capacity by 4 instances.

For CPU > 60%, increase capacity by 2 instances.

For CPU > 40%, increase capacity by 1 instance.

Question 376

Report
Export
Collapse

A company runs an application on hundreds of Amazon EC2 instances in three Availability Zones The application calls a third-parly API over the public internet A SysOps administrator must provide the third party with a list of static IP addresses so that the third party can allow traffic from the application

Which solution will meet these requirements?

A.
Add a NAT gateway in the public subnet of each Availability Zone. Make the NAT gateway the default route of all private subnets In those Availability Zones.
A.
Add a NAT gateway in the public subnet of each Availability Zone. Make the NAT gateway the default route of all private subnets In those Availability Zones.
Answers
B.
Allocate one Elastic IP address in each Availability Zone. Associate the Elastic IP address with all the instances in the Availability Zone
B.
Allocate one Elastic IP address in each Availability Zone. Associate the Elastic IP address with all the instances in the Availability Zone
Answers
C.
Place the instances behind a Network Load Balancer (NLB). Send the traffic to the interne! through the private IP address of the NLB
C.
Place the instances behind a Network Load Balancer (NLB). Send the traffic to the interne! through the private IP address of the NLB
Answers
D.
Update the main route table to send the traffic to the internet through an Elastic IP address that is assigned to each instance.
D.
Update the main route table to send the traffic to the internet through an Elastic IP address that is assigned to each instance.
Answers
Suggested answer: A

Explanation:

NAT Gateway Setup:

A NAT gateway allows instances in a private subnet to connect to the internet or other AWS services, but prevents the internet from initiating a connection with those instances.

Steps:

Go to the AWS Management Console.

Navigate to VPC and select 'NAT Gateways.'

Create a NAT gateway in the public subnet of each Availability Zone.

Allocate an Elastic IP address to each NAT gateway.

Update the route tables for the private subnets to route internet-bound traffic to the NAT gateways.

Question 377

Report
Export
Collapse

A company runs a high performance computing (HPC) application on an Amazon EC2 instance The company needs to scale this architecture to two or more EC2 instances. The EC2 instances wilt need to communicate with each other at high speeds with low latency to support the application.

The company wants to ensure that the network performance can support the required communication between the EC2 instances.

What should a SysOps administrator do to meet these requirements?

A.
Create a cluster placement group. Back up the existing EC2 instance to an Amazon Machine Image (AMI). Restore the EC2 instance from the AMI into the placement group Launch the additional EC2 instances into the placement group
A.
Create a cluster placement group. Back up the existing EC2 instance to an Amazon Machine Image (AMI). Restore the EC2 instance from the AMI into the placement group Launch the additional EC2 instances into the placement group
Answers
B.
Back up the existing EC2 instance to an Amazon Machine Image (AMI). Create a launch template from the existing EC2 instance by specifying the AMI. Create an Auto Scaling group and configure the desired instance count.
B.
Back up the existing EC2 instance to an Amazon Machine Image (AMI). Create a launch template from the existing EC2 instance by specifying the AMI. Create an Auto Scaling group and configure the desired instance count.
Answers
C.
Create a Network Load Balancer (NLB) and a target group. Launch the new EC2 instances and register them with the target group Register the existing EC2 instance with the target group. Pass all application traffic through the NLB.
C.
Create a Network Load Balancer (NLB) and a target group. Launch the new EC2 instances and register them with the target group Register the existing EC2 instance with the target group. Pass all application traffic through the NLB.
Answers
D.
Back up the existing EC2 Instance to an Amazon Machine Image (AMI). Create additional clones of the EC2 instance from the AMI in the same Availability Zone where the existing EC2 instance is located.
D.
Back up the existing EC2 Instance to an Amazon Machine Image (AMI). Create additional clones of the EC2 instance from the AMI in the same Availability Zone where the existing EC2 instance is located.
Answers
Suggested answer: A

Explanation:

Cluster Placement Group:

Cluster placement groups are used to ensure low-latency networking between EC2 instances. They place instances physically close to each other within the same Availability Zone.

Steps:

Go to the AWS Management Console.

Navigate to EC2 and select 'Placement Groups.'

Create a new cluster placement group.

Back up the existing EC2 instance to an AMI.

Launch new EC2 instances from the AMI into the cluster placement group.

Ensure all instances are in the same Availability Zone.

Question 378

Report
Export
Collapse

A company is uploading important files as objects to Amazon S3 The company needs to be informed if an object is corrupted during the upload

What should a SysOps administrator do to meet this requirement?

A.
Pass the Content-Disposition value as a request body during the object upload.
A.
Pass the Content-Disposition value as a request body during the object upload.
Answers
B.
Pass the Content-MD5 value as a request header during the object upload.
B.
Pass the Content-MD5 value as a request header during the object upload.
Answers
C.
Pass x-amz-objecWock-mode as a request header during the object upload
C.
Pass x-amz-objecWock-mode as a request header during the object upload
Answers
D.
Pass x-amz-server-side-encryption-customer-algorithm as a request body during the object upload.
D.
Pass x-amz-server-side-encryption-customer-algorithm as a request body during the object upload.
Answers
Suggested answer: B

Explanation:

Content-MD5 Header:

The Content-MD5 header provides an MD5 checksum of the object being uploaded. Amazon S3 uses this checksum to verify the integrity of the object.

Steps:

When uploading an object to S3, calculate the MD5 checksum of the object.

Include the Content-MD5 header with the base64-encoded MD5 checksum value in the upload request.

This ensures that S3 can detect if the object is corrupted during the upload process.

Question 379

Report
Export
Collapse

A SysOps administrator needs to ensure that an Amazon RDS for PostgreSQL DB instance has available backups The DB instance has automated backups turned on with a backup retention period of 7 days. However, no automated backups for the DB instance have been created in the past month.

What could be the cause of the lack of automated backups?

A.
The Amazon S3 bucket that stores the backups is full
A.
The Amazon S3 bucket that stores the backups is full
Answers
B.
The DB instance is in the STORAGE_FULL state
B.
The DB instance is in the STORAGE_FULL state
Answers
C.
The DB instance is not configured for Multi-AZ.
C.
The DB instance is not configured for Multi-AZ.
Answers
D.
The backup retention period must be 30 days.
D.
The backup retention period must be 30 days.
Answers
Suggested answer: B

Explanation:

STORAGE_FULL State:

When an RDS instance is in the STORAGE_FULL state, automated backups cannot be performed because there is insufficient storage available.

Steps to Resolve:

Go to the AWS Management Console.

Navigate to RDS and select the DB instance.

Check the storage metrics to confirm the STORAGE_FULL state.

Increase the allocated storage for the DB instance to provide sufficient space for automated backups.

Question 380

Report
Export
Collapse

A company has a list of pre-appf oved Amazon Machine Images (AMIs) for developers lo use to launch Amazon EC2 instances However, developers are still launching EC2 instances from unapproved AMIs.

A SysOps administrator must implement a solution that automatically terminates any instances that are launched from unapproved AMIs.

Which solution will meet mis requirement?

A.
Set up an AWS Config managed rule to check if instances are running from AMIs that are on the list of pre-approved AMIs. Configure an automatic remediation action so that an AWS Systems Manager Automation runbook terminates any instances that are noncompliant with the rule
A.
Set up an AWS Config managed rule to check if instances are running from AMIs that are on the list of pre-approved AMIs. Configure an automatic remediation action so that an AWS Systems Manager Automation runbook terminates any instances that are noncompliant with the rule
Answers
B.
Store the list of pre-approved AMIs in an Amazon DynamoDB global table that is replicated to all AWS Regions that the developers use. Create Regional EC2 launch templates. Configure the launch templates to check AMIs against the list and to terminate any instances that are not on the list
B.
Store the list of pre-approved AMIs in an Amazon DynamoDB global table that is replicated to all AWS Regions that the developers use. Create Regional EC2 launch templates. Configure the launch templates to check AMIs against the list and to terminate any instances that are not on the list
Answers
C.
Select the Amazon CloudWatch metric that shows all running instances and the AMIs that the instances were launched from Create a CloudWatch alarm that terminates an instance if the metric shows the use of an unapproved AMI.
C.
Select the Amazon CloudWatch metric that shows all running instances and the AMIs that the instances were launched from Create a CloudWatch alarm that terminates an instance if the metric shows the use of an unapproved AMI.
Answers
D.
Create a custom Amazon Inspector finding to compare a running instance's AMI against the list of pre-approved AMIs Create an AWS Lambda function that terminates instances. Configure Amazon Inspector to report findings of unapproved AMIs to an Amazon Simple Queue Service (Amazon SQS) queue to invoke the Lambda function.
D.
Create a custom Amazon Inspector finding to compare a running instance's AMI against the list of pre-approved AMIs Create an AWS Lambda function that terminates instances. Configure Amazon Inspector to report findings of unapproved AMIs to an Amazon Simple Queue Service (Amazon SQS) queue to invoke the Lambda function.
Answers
Suggested answer: A

Explanation:

AWS Config Managed Rule:

AWS Config can be used to assess, audit, and evaluate the configurations of AWS resources. The managed rule can check if instances are launched from approved AMIs.

Steps:

Go to the AWS Management Console.

Navigate to AWS Config.

Create a managed rule that checks for EC2 instances running approved AMIs.

Configure the rule to use a list of approved AMIs.

Automatic Remediation with Systems Manager Automation:

AWS Systems Manager Automation runbooks can automate the process of remediating non-compliant resources.

Steps:

Create a Systems Manager Automation runbook that terminates instances not running approved AMIs.

Attach the runbook to the AWS Config rule for automatic remediation.

Total 425 questions
Go to page: of 43
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms