ExamGecko
Search Search Login
Home Home / Amazon / SOA-C02

Amazon SOA-C02 Practice Test - Questions Answers, Page 9

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company's application on EC2 instances relies on a Single-AZ RDS for MySQL DB instance. The SysOps administrator needs to ensure failover to minimize downtime.
A SysOps administrator creates two VPCs, VPC1 and VPC2, in a company's AWS account The SysOps administrator deploys a Linux Amazon EC2 instance in VPC1 and deploys an Amazon RDS for MySQL DB instance in VPC2. The DB instance is deployed in a private subnet. An application that runs on the EC2 instance needs to connect to the database. What should the SysOps administrator do to give the EC2 instance the ability to connect to the database?
A company needs to monitor the disk utilization of Amazon Elastic Block Store (Amazon EBS) volumes The EBS volumes are attached to Amazon EC2 Linux Instances A SysOps administrator must set up an Amazon CloudWatch alarm that provides an alert when disk utilization increases to more than 80%. Which combination of steps must the SysOps administrator lake lo meet these requirements? (Select THREE.)
A company uses AWS CloudFormation to manage a stack of Amazon EC2 instances on AWS. A SysOps administrator needs to keep the instances and all of the instances' data, even if someone deletes the stack. Which solution will meet these requirements?
A SysOps administrator is optimizing the cost of a workload. The workload is running in multiple AWS Regions and is using AWS Lambda with Amazon EC2 On-Demand Instances for the compute. The overall usage is predictable. The amount of compute that is consumed in each Region varies, depending on the users' locations. Which approach should the SysOps administrator use to optimize this workload?
The SysOps administrator must dynamically reference the latest AMI ID from Systems Manager Parameter Store in CloudFormation templates for new AMI versions.
A company has an application that collects notifications from thousands of alarm systems. The notifications include alarm notifications and information notifications. The information notifications include the system arming processes, disarming processes, and sensor status. All notifications are kept as messages in an Amazon Simple Queue Service (Amazon SQS) queue. Amazon EC2 instances that are in an Auto Scaling group process the messages. A SysOps administrator needs to implement a solution that prioritizes alarm notifications over information notifications. Which solution will meet these requirements?
A team of developers is using several Amazon S3 buckets as centralized repositories. Users across the world upload large sets of files to these repositories. The development team's applications later process these files. A SysOps administrator sets up a new S3 bucket. DOC-EXAMPLE-BUCKET, to support a new workload. The new S3 bucket also receives regular uploads of large sets of files from users worldwide. When the new S3 bucket is put into production, the upload performance from certain geographic areas is lower than the upload performance that the existing S3 buckets provide. What should the SysOps administrator do to remediate this issue?
The SysOps administrator must modify the AWS Config rule that deletes noncompliant SSH inbound rules to update the rule to allow SSH from specific trusted IP addresses instead.
The SysOps administrator needs to address high disk I/O issues during EC2 instance bootstrap in an Auto Scaling group.

Question 81

Report
Export
Collapse

A company uses several large Chef recipes to automate the configuration of virtual machines (VMs) in its data center. A SysOps administrator is migrating this workload to Amazon EC2 Instances on AWS and must run the existing Chef recipes.

Which solution will meet these requirements MOST cost-effectively?

A.
Create a Chef server that includes EC2 instances. Migrate the existing recipes. Modify the EC2 instance user data to connect to Chef.
A.
Create a Chef server that includes EC2 instances. Migrate the existing recipes. Modify the EC2 instance user data to connect to Chef.
Answers
B.
Set up AWS OpsWorks for Chef Automate. Migrate the existing recipes. Modify the EC2 instance user data to connect to Chef.
B.
Set up AWS OpsWorks for Chef Automate. Migrate the existing recipes. Modify the EC2 instance user data to connect to Chef.
Answers
C.
Upload the existing recipes to Amazon S3. Run the recipes by using AWS Systems Manager State Manager.
C.
Upload the existing recipes to Amazon S3. Run the recipes by using AWS Systems Manager State Manager.
Answers
D.
Upload the existing recipes to the user data section during the creation of the EC2 instances.
D.
Upload the existing recipes to the user data section during the creation of the EC2 instances.
Answers
Suggested answer: B

Question 82

Report
Export
Collapse

A company wants to be alerted through email when IAM CreateUser API calls are made within its AWS account. Which combination of actions should a SysOps administrator take to meet this requirement? (Choose two.)

A.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule with AWS CloudTrail as the event source and IAM CreateUser as the specific API call for the event pattern.
A.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule with AWS CloudTrail as the event source and IAM CreateUser as the specific API call for the event pattern.
Answers
B.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule with Amazon CloudSearch as the event source and IAM CreateUser as the specific API call for the event pattern.
B.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule with Amazon CloudSearch as the event source and IAM CreateUser as the specific API call for the event pattern.
Answers
C.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule with AWS IAM Access Analyzer as the event source and IAM CreateUser as the specific API call for the event pattern.
C.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule with AWS IAM Access Analyzer as the event source and IAM CreateUser as the specific API call for the event pattern.
Answers
D.
Use an Amazon Simple Notification Service (Amazon SNS) topic as an event target with an email subscription.
D.
Use an Amazon Simple Notification Service (Amazon SNS) topic as an event target with an email subscription.
Answers
E.
Use an Amazon Simple Email Service (Amazon SES) notification as an event target with an email subscription.
E.
Use an Amazon Simple Email Service (Amazon SES) notification as an event target with an email subscription.
Answers
Suggested answer: C, D

Question 83

Report
Export
Collapse

A company needs to create a daily Amazon Machine Image (AMI) of an existing Amazon Linux EC2 instance that hosts the operating system, application, and database on multiple attached Amazon Elastic Block Store (Amazon EBS) volumes. File system integrity must be maintained.

Which solution will meet these requirements?

A.
Create an AWS Lambda function to call the CreateImage API operation with the EC2 instance ID and the no-reboot parameter enabled. Create a daily scheduled Amazon EventBridge (Amazon CloudWatch Events) rule that invokes the function.
A.
Create an AWS Lambda function to call the CreateImage API operation with the EC2 instance ID and the no-reboot parameter enabled. Create a daily scheduled Amazon EventBridge (Amazon CloudWatch Events) rule that invokes the function.
Answers
B.
Create an AWS Lambda function to call the CreateImage API operation with the EC2 instance ID and the reboot parameter enabled. Create a daily scheduled Amazon EventBridge (Amazon CloudWatch Events) rule that invokes the function.
B.
Create an AWS Lambda function to call the CreateImage API operation with the EC2 instance ID and the reboot parameter enabled. Create a daily scheduled Amazon EventBridge (Amazon CloudWatch Events) rule that invokes the function.
Answers
C.
Use AWS Backup to create a backup plan with a backup rule that runs daily. Assign the resource ID of the EC2 instance with the no-reboot parameter enabled.
C.
Use AWS Backup to create a backup plan with a backup rule that runs daily. Assign the resource ID of the EC2 instance with the no-reboot parameter enabled.
Answers
D.
Use AWS Backup to create a backup plan with a backup rule that runs daily. Assign the resource ID of the EC2 instance with the reboot parameter enabled.
D.
Use AWS Backup to create a backup plan with a backup rule that runs daily. Assign the resource ID of the EC2 instance with the reboot parameter enabled.
Answers
Suggested answer: C

Question 84

Report
Export
Collapse

A company is running a website on Amazon EC2 instances behind an Application Load Balancer (ALB). The company configured an Amazon CloudFront distribution and set the ALB as the origin. The company created an Amazon Route 53 CNAME record to send all traffic through the CloudFront distribution. As an unintended side effect, mobile users are now being served the desktop version of the website. Which action should a SysOps administrator take to resolve this issue?

A.
Configure the CloudFront distribution behavior to forward the User-Agent header.
A.
Configure the CloudFront distribution behavior to forward the User-Agent header.
Answers
B.
Configure the CloudFront distribution origin settings. Add a User-Agent header to the list of origin custom headers.
B.
Configure the CloudFront distribution origin settings. Add a User-Agent header to the list of origin custom headers.
Answers
C.
Enable IPv6 on the ALB. Update the CloudFront distribution origin settings to use the dualstack endpoint.
C.
Enable IPv6 on the ALB. Update the CloudFront distribution origin settings to use the dualstack endpoint.
Answers
D.
Enable IPv6 on the CloudFront distribution. Update the Route 53 record to use the dualstack endpoint.
D.
Enable IPv6 on the CloudFront distribution. Update the Route 53 record to use the dualstack endpoint.
Answers
Suggested answer: C

Explanation:

Reference: https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/routing-to-elb-load-balancer.html

Question 85

Report
Export
Collapse

A company runs a web application on three Amazon EC2 instances behind an Application Load Balancer (ALB). The company notices that random periods of increased traffic cause a degradation in the application's performance. A SysOps administrator must scale the application to meet the increased traffic.

Which solution meets these requirements?

A.
Create an Amazon CloudWatch alarm to monitor application latency and increase the size of each EC2 instance if the desired threshold is reached.
A.
Create an Amazon CloudWatch alarm to monitor application latency and increase the size of each EC2 instance if the desired threshold is reached.
Answers
B.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule to monitor application latency and add an EC2 instance to the ALB if the desired threshold is reached.
B.
Create an Amazon EventBridge (Amazon CloudWatch Events) rule to monitor application latency and add an EC2 instance to the ALB if the desired threshold is reached.
Answers
C.
Deploy the application to an Auto Scaling group of EC2 instances with a target tracking scaling policy. Attach the ALB to the Auto Scaling group.
C.
Deploy the application to an Auto Scaling group of EC2 instances with a target tracking scaling policy. Attach the ALB to the Auto Scaling group.
Answers
D.
Deploy the application to an Auto Scaling group of EC2 instances with a scheduled scaling policy. Attach the ALB to the Auto Scaling group.
D.
Deploy the application to an Auto Scaling group of EC2 instances with a scheduled scaling policy. Attach the ALB to the Auto Scaling group.
Answers
Suggested answer: C

Explanation:

docs.aws.amazon.com/autoscaling/ec2/userguide/as-scaling-target-tracking.html

Question 86

Report
Export
Collapse

A company has a stateful web application that is hosted on Amazon EC2 instances in an Auto Scaling group. The instances run behind an Application Load Balancer (ALB) that has a single target group. The ALB is configured as the origin in an Amazon CloudFront distribution. Users are reporting random logouts from the web application.

Which combination of actions should a SysOps administrator take to resolve this problem? (Choose two.)

A.
Change to the least outstanding requests algorithm on the ALB target group.
A.
Change to the least outstanding requests algorithm on the ALB target group.
Answers
B.
Configure cookie forwarding in the CloudFront distribution cache behavior.
B.
Configure cookie forwarding in the CloudFront distribution cache behavior.
Answers
C.
Configure header forwarding in the CloudFront distribution cache behavior.
C.
Configure header forwarding in the CloudFront distribution cache behavior.
Answers
D.
Enable group-level stickiness on the ALB listener rule.
D.
Enable group-level stickiness on the ALB listener rule.
Answers
E.
Enable sticky sessions on the ALB target group.
E.
Enable sticky sessions on the ALB target group.
Answers
Suggested answer: C, E

Question 87

Report
Export
Collapse

While setting up an AWS managed VPN connection, a SysOps administrator creates a customer gateway resource in AWS. The customer gateway device resides in a data center with a NAT gateway in front of it.

What address should be used to create the customer gateway resource?

A.
The private IP address of the customer gateway device
A.
The private IP address of the customer gateway device
Answers
B.
The MAC address of the NAT device in front of the customer gateway device
B.
The MAC address of the NAT device in front of the customer gateway device
Answers
C.
The public IP address of the customer gateway device
C.
The public IP address of the customer gateway device
Answers
D.
The public IP address of the NAT device in front of the customer gateway device
D.
The public IP address of the NAT device in front of the customer gateway device
Answers
Suggested answer: D

Explanation:

Reference: https://docs.aws.amazon.com/vpn/latest/s2svpn/cgw-options.html

Question 88

Report
Export
Collapse

A company is using an AWS KMS customer master key (CMK) with imported key material. The company references the CMK by its alias in the Java application to encrypt data. The CMK must be rotated every 6 months. What is the process to rotate the key?

A.
Enable automatic key rotation for the CMK, and specify a period of 6 months.
A.
Enable automatic key rotation for the CMK, and specify a period of 6 months.
Answers
B.
Create a new CMK with new imported material, and update the key alias to point to the new CMK.
B.
Create a new CMK with new imported material, and update the key alias to point to the new CMK.
Answers
C.
Delete the current key material, and import new material into the existing CMK.
C.
Delete the current key material, and import new material into the existing CMK.
Answers
D.
Import a copy of the existing key material into a new CMK as a backup, and set the rotation schedule for 6 months.
D.
Import a copy of the existing key material into a new CMK as a backup, and set the rotation schedule for 6 months.
Answers
Suggested answer: B

Explanation:

Reference: https://aws.amazon.com/kms/faqs/

Question 89

Report
Export
Collapse

A company hosts an online shopping portal in the AWS Cloud. The portal provides HTTPS security by using a TLS certificateon an Elastic Load Balancer (ELB). Recently, the portal suffered an outage because the TLS certificate expired. A SysOpsadministrator must create a solution to automatically renew certificates to avoid this issue in the future. What is the MOST operationally efficient solution that meets these requirements?

A.
Request a public certificate by using AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELB. Write a scheduled AWS Lambda function to renew the certificate every 18 months.
A.
Request a public certificate by using AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELB. Write a scheduled AWS Lambda function to renew the certificate every 18 months.
Answers
B.
Request a public certificate by using AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELACM will automatically manage the renewal of the certificate.
B.
Request a public certificate by using AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELACM will automatically manage the renewal of the certificate.
Answers
C.
Register a certificate with a third-party certificate authority (CA). Import this certificate into AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELB. ACM will automatically manage the renewal of the certificate.
C.
Register a certificate with a third-party certificate authority (CA). Import this certificate into AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELB. ACM will automatically manage the renewal of the certificate.
Answers
D.
Register a certificate with a third-party certificate authority (CA). Configure the ELB to import the certificate directly from the CA. Set the certificate refresh cycle on the ELB to refresh when the certificate is within 3 months of the expiration date.
D.
Register a certificate with a third-party certificate authority (CA). Configure the ELB to import the certificate directly from the CA. Set the certificate refresh cycle on the ELB to refresh when the certificate is within 3 months of the expiration date.
Answers
Suggested answer: C

Question 90

Report
Export
Collapse

A company is using an Amazon Aurora MySQL DB cluster that has point-in-time recovery, backtracking, and automatic backup enabled. A SysOps administrator needs to be able to roll back the DB cluster to a specific recovery point within the previous 72 hours. Restores must be completed in the same production DB cluster.

Which solution will meet these requirements?

A.
Create an Aurora Replica. Promote the replica to replace the primary DB instance.
A.
Create an Aurora Replica. Promote the replica to replace the primary DB instance.
Answers
B.
Create an AWS Lambda function to restore an automatic backup to the existing DB cluster.
B.
Create an AWS Lambda function to restore an automatic backup to the existing DB cluster.
Answers
C.
Use backtracking to rewind the existing DB cluster to the desired recovery point.
C.
Use backtracking to rewind the existing DB cluster to the desired recovery point.
Answers
D.
Use point-in-time recovery to restore the existing DB cluster to the desired recovery point.
D.
Use point-in-time recovery to restore the existing DB cluster to the desired recovery point.
Answers
Suggested answer: D

Explanation:

Reference: https://aws.amazon.com/premiumsupport/knowledge-center/aurora-mysql-slow-snapshot-restore/

Total 425 questions
Go to page: of 43
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms