ExamGecko
Search Search Login
Home Home / Amazon / SOA-C02

Amazon SOA-C02 Practice Test - Questions Answers, Page 6

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company's application on EC2 instances relies on a Single-AZ RDS for MySQL DB instance. The SysOps administrator needs to ensure failover to minimize downtime.
A SysOps administrator creates two VPCs, VPC1 and VPC2, in a company's AWS account The SysOps administrator deploys a Linux Amazon EC2 instance in VPC1 and deploys an Amazon RDS for MySQL DB instance in VPC2. The DB instance is deployed in a private subnet. An application that runs on the EC2 instance needs to connect to the database. What should the SysOps administrator do to give the EC2 instance the ability to connect to the database?
A company needs to monitor the disk utilization of Amazon Elastic Block Store (Amazon EBS) volumes The EBS volumes are attached to Amazon EC2 Linux Instances A SysOps administrator must set up an Amazon CloudWatch alarm that provides an alert when disk utilization increases to more than 80%. Which combination of steps must the SysOps administrator lake lo meet these requirements? (Select THREE.)
A company uses AWS CloudFormation to manage a stack of Amazon EC2 instances on AWS. A SysOps administrator needs to keep the instances and all of the instances' data, even if someone deletes the stack. Which solution will meet these requirements?
A SysOps administrator is optimizing the cost of a workload. The workload is running in multiple AWS Regions and is using AWS Lambda with Amazon EC2 On-Demand Instances for the compute. The overall usage is predictable. The amount of compute that is consumed in each Region varies, depending on the users' locations. Which approach should the SysOps administrator use to optimize this workload?
The SysOps administrator must dynamically reference the latest AMI ID from Systems Manager Parameter Store in CloudFormation templates for new AMI versions.
A company has an application that collects notifications from thousands of alarm systems. The notifications include alarm notifications and information notifications. The information notifications include the system arming processes, disarming processes, and sensor status. All notifications are kept as messages in an Amazon Simple Queue Service (Amazon SQS) queue. Amazon EC2 instances that are in an Auto Scaling group process the messages. A SysOps administrator needs to implement a solution that prioritizes alarm notifications over information notifications. Which solution will meet these requirements?
A team of developers is using several Amazon S3 buckets as centralized repositories. Users across the world upload large sets of files to these repositories. The development team's applications later process these files. A SysOps administrator sets up a new S3 bucket. DOC-EXAMPLE-BUCKET, to support a new workload. The new S3 bucket also receives regular uploads of large sets of files from users worldwide. When the new S3 bucket is put into production, the upload performance from certain geographic areas is lower than the upload performance that the existing S3 buckets provide. What should the SysOps administrator do to remediate this issue?
The SysOps administrator must modify the AWS Config rule that deletes noncompliant SSH inbound rules to update the rule to allow SSH from specific trusted IP addresses instead.
The SysOps administrator needs to address high disk I/O issues during EC2 instance bootstrap in an Auto Scaling group.

Question 51

Report
Export
Collapse

A database is running on an Amazon RDS Multi-AZ DB instance. A recent security audit found the database to be out of compliance because it was not encrypted.

Which approach will resolve the encryption requirement?

A.
Log in to the RDS console and select the encryption box to encrypt the database.
A.
Log in to the RDS console and select the encryption box to encrypt the database.
Answers
B.
Create a new encrypted Amazon EBS volume and attach it to the instance.
B.
Create a new encrypted Amazon EBS volume and attach it to the instance.
Answers
C.
Encrypt the standby replica in the secondary Availability Zone and promote it to the primary instance.
C.
Encrypt the standby replica in the secondary Availability Zone and promote it to the primary instance.
Answers
D.
Take a snapshot of the RDS instance, copy and encrypt the snapshot, and then restore to the new RDS instance.
D.
Take a snapshot of the RDS instance, copy and encrypt the snapshot, and then restore to the new RDS instance.
Answers
Suggested answer: D

Explanation:

Reference: https://cloudkul.com/blog/how-to-encrypt-aws-rds-database/

Question 52

Report
Export
Collapse

An organization with a large IT department has decided to migrate to AWS. With different job functions in the IT department, it is not desirable to give all users access to all AWS resources. Currently the organization handles access via LDAP group membership.

What is the BEST method to allow access using current LDAP credentials?

A.
Create an AWS Directory Service Simple AD. Replicate the on-premises LDAP directory to Simple AD.
A.
Create an AWS Directory Service Simple AD. Replicate the on-premises LDAP directory to Simple AD.
Answers
B.
Create a Lambda function to read LDAP groups and automate the creation of IAM users.
B.
Create a Lambda function to read LDAP groups and automate the creation of IAM users.
Answers
C.
Use AWS CloudFormation to create IAM roles. Deploy Direct Connect to allow access to the on-premises LDAP server.
C.
Use AWS CloudFormation to create IAM roles. Deploy Direct Connect to allow access to the on-premises LDAP server.
Answers
D.
Federate the LDAP directory with IAM using SAML. Create different IAM roles to correspond to different LDAP groups to limit permissions.
D.
Federate the LDAP directory with IAM using SAML. Create different IAM roles to correspond to different LDAP groups to limit permissions.
Answers
Suggested answer: D

Explanation:

Reference: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html

Question 53

Report
Export
Collapse

A company has a web application with a database tier that consists of an Amazon EC2 instance that runs MySQL. A SysOps administrator needs to minimize potential data loss and the time that is required to recover in the event of a database failure.

What is the MOST operationally efficient solution that meets these requirements?

A.
Create an Amazon CloudWatch alarm for the StatusCheckFailed_System metric to invoke an AWS Lambda function that stops and starts the EC2 instance.
A.
Create an Amazon CloudWatch alarm for the StatusCheckFailed_System metric to invoke an AWS Lambda function that stops and starts the EC2 instance.
Answers
B.
Create an Amazon RDS for MySQL Multi-AZ DB instance. Use a MySQL native backup that is stored in Amazon S3 to restore the data to the new database. Update the connection string in the web application.
B.
Create an Amazon RDS for MySQL Multi-AZ DB instance. Use a MySQL native backup that is stored in Amazon S3 to restore the data to the new database. Update the connection string in the web application.
Answers
C.
Create an Amazon RDS for MySQL Single-AZ DB instance with a read replica. Use a MySQL native backup that is stored in Amazon S3 to restore the data to the new database. Update the connection string in the web application.
C.
Create an Amazon RDS for MySQL Single-AZ DB instance with a read replica. Use a MySQL native backup that is stored in Amazon S3 to restore the data to the new database. Update the connection string in the web application.
Answers
D.
Use Amazon Data Lifecycle Manager (Amazon DLM) to take a snapshot of the Amazon Elastic Block Store (Amazon EBS) volume every hour. In the event of an EC2 instance failure, restore the EBS volume from a snapshot.
D.
Use Amazon Data Lifecycle Manager (Amazon DLM) to take a snapshot of the Amazon Elastic Block Store (Amazon EBS) volume every hour. In the event of an EC2 instance failure, restore the EBS volume from a snapshot.
Answers
Suggested answer: D

Explanation:

Reference: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/snapshot-lifecycle.html

Question 54

Report
Export
Collapse

A SysOps Administrator is managing a web application that runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The instances run in an EC2 Auto Scaling group. The administrator wants to set an alarm for when all target instances associated with the ALB are unhealthy.

Which condition should be used with the alarm?

A.
AWS/ApplicationELB HealthyHostCount <= 0
A.
AWS/ApplicationELB HealthyHostCount <= 0
Answers
B.
AWS/ApplicationELB UnhealthyHostCount >= 1
B.
AWS/ApplicationELB UnhealthyHostCount >= 1
Answers
C.
AWS/EC2 StatusCheckFailed <= 0
C.
AWS/EC2 StatusCheckFailed <= 0
Answers
D.
AWS/EC2 StatusCheckFailed >= 1
D.
AWS/EC2 StatusCheckFailed >= 1
Answers
Suggested answer: A

Question 55

Report
Export
Collapse

A SysOps administrator is trying to set up an Amazon Route 53 domain name to route traffic to a website hosted on Amazon S3. The domain name of the website is www.anycompany.com and the S3 bucket name is anycompany-static. After the record set is set up in Route 53, the domain name www.anycompany.com does not seem to work, and the static website is not displayed in the browser. Which of the following is a cause of this?

A.
The S3 bucket must be configured with Amazon CloudFront first.
A.
The S3 bucket must be configured with Amazon CloudFront first.
Answers
B.
The Route 53 record set must have an IAM role that allows access to the S3 bucket.
B.
The Route 53 record set must have an IAM role that allows access to the S3 bucket.
Answers
C.
The Route 53 record set must be in the same region as the S3 bucket.
C.
The Route 53 record set must be in the same region as the S3 bucket.
Answers
D.
The S3 bucket name must match the record set name in Route 53.
D.
The S3 bucket name must match the record set name in Route 53.
Answers
Suggested answer: D

Explanation:

Reference: https://aws.amazon.com/premiumsupport/knowledge-center/route-53-no-targets/

Question 56

Report
Export
Collapse

A SysOps administrator is deploying a test site running on Amazon EC2 instances. The application requires both incoming and outgoing connectivity to the internet. Which combination of steps are required to provide internet connectivity to the EC2 instances? (Choose two.)

A.
Add a NAT gateway to a public subnet.
A.
Add a NAT gateway to a public subnet.
Answers
B.
Attach a private address to the elastic network interface on the EC2 instance.
B.
Attach a private address to the elastic network interface on the EC2 instance.
Answers
C.
Attach an Elastic IP address to the internet gateway.
C.
Attach an Elastic IP address to the internet gateway.
Answers
D.
Add an entry to the route table for the subnet that points to an internet gateway.
D.
Add an entry to the route table for the subnet that points to an internet gateway.
Answers
E.
Create an internet gateway and attach it to a VPC.
E.
Create an internet gateway and attach it to a VPC.
Answers
Suggested answer: D, E

Question 57

Report
Export
Collapse

A company uses an AWS CloudFormation template to provision an Amazon EC2 instance and an Amazon RDS DB instance. A SysOps administrator must update the template to ensure that the DB instance is created before the EC2 instance is launched.

What should the SysOps administrator do to meet this requirement?

A.
Add a wait condition to the template. Update the EC2 instance user data script to send a signal after the EC2 instance is started.
A.
Add a wait condition to the template. Update the EC2 instance user data script to send a signal after the EC2 instance is started.
Answers
B.
Add the DependsOn attribute to the EC2 instance resource, and provide the logical name of the RDS resource.
B.
Add the DependsOn attribute to the EC2 instance resource, and provide the logical name of the RDS resource.
Answers
C.
Change the order of the resources in the template so that the RDS resource is listed before the EC2 instance resource.
C.
Change the order of the resources in the template so that the RDS resource is listed before the EC2 instance resource.
Answers
D.
Create multiple templates. Use AWS CloudFormation StackSets to wait for one stack to complete before the second stack is created.
D.
Create multiple templates. Use AWS CloudFormation StackSets to wait for one stack to complete before the second stack is created.
Answers
Suggested answer: B

Question 58

Report
Export
Collapse

A company has deployed a web application in a VPC that has subnets in three Availability Zones. The company launches three Amazon EC2 instances from an EC2 Auto Scaling group behind an Application Load Balancer (ALB). A SysOps administrator notices that two of the EC2 instances are in the same Availability Zone, rather than being distributed evenly across all three Availability Zones. There are no errors in the Auto Scaling group's activity history. What is the MOST likely reason for the unexpected placement of EC2 instances?

A.
One Availability Zone did not have sufficient capacity for the requested EC2 instance type.
A.
One Availability Zone did not have sufficient capacity for the requested EC2 instance type.
Answers
B.
The ALB was configured for only two Availability Zones.
B.
The ALB was configured for only two Availability Zones.
Answers
C.
The Auto Scaling group was configured for only two Availability Zones.
C.
The Auto Scaling group was configured for only two Availability Zones.
Answers
D.
Amazon EC2 Auto Scaling randomly placed the instances in Availability Zones.
D.
Amazon EC2 Auto Scaling randomly placed the instances in Availability Zones.
Answers
Suggested answer: B

Question 59

Report
Export
Collapse

A company has a stateless application that is hosted on a fleet of 10 Amazon EC2 On-Demand Instances in an Auto Scaling group. A minimum of 6 instances are needed to meet service requirements. Which action will maintain uptime for the application MOST cost-effectively?

A.
Use a Spot Fleet with an On-Demand capacity of 6 instances.
A.
Use a Spot Fleet with an On-Demand capacity of 6 instances.
Answers
B.
Update the Auto Scaling group with a minimum of 6 On-Demand Instances and a maximum of 10 On-Demand Instances.
B.
Update the Auto Scaling group with a minimum of 6 On-Demand Instances and a maximum of 10 On-Demand Instances.
Answers
C.
Update the Auto Scaling group with a minimum of 1 On-Demand Instance and a maximum of 6 On-Demand Instances.
C.
Update the Auto Scaling group with a minimum of 1 On-Demand Instance and a maximum of 6 On-Demand Instances.
Answers
D.
Use a Spot Fleet with a target capacity of 6 instances.
D.
Use a Spot Fleet with a target capacity of 6 instances.
Answers
Suggested answer: A

Explanation:

Amazon EC2 Auto Scaling allocates your Spot Instances from the N number of pools per Availability Zone that you specify and from the Spot Instance pools with the lowest price in each Availability Zone.

Reference: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-mixed-instances-groups.html

Question 60

Report
Export
Collapse

A company is running a website on Amazon EC2 instances that are in an Auto Scaling group. When the website traffic increases, additional instances take several minutes to become available because of a long-running user data script that installs software. A SysOps administrator must decrease the time that is required for new instances to become available. Which action should the SysOps administrator take to meet this requirement?

A.
Reduce the scaling thresholds so that instances are added before traffic increases.
A.
Reduce the scaling thresholds so that instances are added before traffic increases.
Answers
B.
Purchase Reserved Instances to cover 100% of the maximum capacity of the Auto Scaling group.
B.
Purchase Reserved Instances to cover 100% of the maximum capacity of the Auto Scaling group.
Answers
C.
Update the Auto Scaling group to launch instances that have a storage optimized instance type.
C.
Update the Auto Scaling group to launch instances that have a storage optimized instance type.
Answers
D.
Use EC2 Image Builder to prepare an Amazon Machine Image (AMI) that has pre-installed software.
D.
Use EC2 Image Builder to prepare an Amazon Machine Image (AMI) that has pre-installed software.
Answers
Suggested answer: C
Total 425 questions
Go to page: of 43
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms