Home Exams
Log In Sign Up
Exams > Amazon > AWS Certified SysOps Administrator - Associate: AWS Certified SysOps Administrator - Associate (SOA-C02)
AWS Certified SysOps Administrator - Associate: AWS Certified SysOps Administrator - Associate (SOA-C02)
Page 9 out of 22 pages Questions 81-90 out of 214 questions
Question#81

A development team recently deployed a new version of a web application to production. After the release, penetration testing revealed a cross-site scripting vulnerability that could expose user data.

Which AWS service will mitigate this issue?

  • A. AWS Shield Standard
  • B. AWS WAF
  • C. Elastic Load Balancing
  • D. Amazon Cognito
Discover Answer Hide Answer

B

Question#82

A SysOps administrator must configure a resilient tier of Amazon EC2 instances for a high performance computing (HPC) application. The HPC application requires minimum latency between nodes.

Which actions should the SysOps administrator take to meet these requirements? (Choose two.)

  • A. Create an Amazon Elastic File System (Amazon EFS) file system. Mount the file system to the EC2 instances by using user data.
  • B. Create a Multi-AZ Network Load Balancer in front of the EC2 instances.
  • C. Place the EC2 instances in an Auto Scaling group within a single subnet.
  • D. Launch the EC2 instances into a cluster placement group.
  • E. Launch the EC2 instances into a partition placement group.
Discover Answer Hide Answer

CD

Question#83

A company’s customers are reporting increased latency while accessing static web content from Amazon S3. A SysOps administrator observed a very high rate of read operations on a particular S3 bucket.

What will minimize latency by reducing load on the S3 bucket?

  • A. Migrate the S3 bucket to a region that is closer to end users’ geographic locations.
  • B. Use cross-region replication to replicate all of the data to another region.
  • C. Create an Amazon CloudFront distribution with the S3 bucket as the origin.
  • D. Use Amazon ElastiCache to cache data being served from Amazon S3.
Discover Answer Hide Answer

C

Question#84

A SysOps administrator needs to develop a solution that provides email notification and inserts a record into a database every time a file is put into an Amazon S3 bucket.

What is the MOST operationally efficient solution that meets these requirements?

  • A. Set up an S3 event notification that targets an Amazon Simple Notification Service (Amazon SNS) topic. Create two subscriptions for the SNS topic. Use one subscription to send the email notification. Use the other subscription to invoke an AWS Lambda function that inserts the record into the database.
  • B. Set up an Amazon CloudWatch alarm that enters ALARM state whenever an object is created in the S3 bucket. Configure the alarm to invoke an AWS Lambda function that sends the email notification and inserts the record into the database.
  • C. Create an AWS Lambda function to send the email notification and insert the record into the database whenever a new object is detected in the S3 bucket. Invoke the function every minute with an Amazon EventBridge (Amazon CloudWatch Events) scheduled rule.
  • D. Set up two S3 event notifications. Target a separate AWS Lambda function with each notification. Configure one function to send the email notification. Configure the other function to insert the record into the database.
Discover Answer Hide Answer

A

Question#85

A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer. The instances are in an Amazon EC2 Auto Scaling group. The application is accessed with a public URL.

A SysOps administrator needs to implement a monitoring solution that checks the availability of the application and follows the same routes and actions as a customer. The SysOps administrator must receive a notification if less than 95% of the monitoring runs find no errors.

Which solution will meet these requirements?

  • A. Create an Amazon CloudWatch Synthetics canary with a script that follows customer routes. Schedule the canary to run on a recurring schedule. Create a CloudWatch alarm that publishes a message to an Amazon Simple Notification Service (Amazon SNS) topic when the SuccessPercent metric is less than 95%.
  • B. Create Amazon Route 53 health checks that monitor the availability of the endpoint. Create Amazon CloudWatch alarms that publish a message to an Amazon Simple Notification Service (Amazon SNS) topic when the HealthCheckPercentageHealthy metric is less than 95%.
  • C. Create a single AWS Lambda function to check whether the endpoints are available for each customer path. Schedule the Lambda function by using Amazon EventBridge (Amazon CloudWatch Events). Configure the Lambda function to publish a message to an Amazon Simple Notification Service (Amazon SNS) topic when an endpoint returns an error.
  • D. Create an AWS Lambda function for each customer path to check whether that specific endpoint is available. Schedule the Lambda functions by using Amazon EventBridge (Amazon CloudWatch Events). Configure each Lambda function to publish a custom metric to Amazon CloudWatch for the endpoint status. Create CloudWatch alarms based on each custom metric to publish a message to an Amazon Simple Notification Service (Amazon SNS) topic when an alarm is in the ALARM state.
Discover Answer Hide Answer

B

Question#86

A SysOps administrator uses AWS Systems Manager Session Manager to connect to instances. After the SysOps administrator launches a new Amazon EC2 instance, the EC2 instance does not appear in the Session Manager list of systems that are available for connection. The SysOps administrator verifies that Systems Manager Agent is installed, updated, and running on the EC2 instance.

What is the reason for this issue?

  • A. The SysOps administrator does not have access to the key pair that is required for connection.
  • B. The SysOps administrator has not attached a security group to the EC2 instance to allow SSH on port 22.
  • C. The EC2 instance does not have an attached IAM role that allows Session Manager to connect to the EC2 instance.
  • D. The EC2 instance ID has not been entered into the Session Manager configuration.
Discover Answer Hide Answer

C

Question#87

A SysOps administrator is unable to launch Amazon EC2 instances into a VPC because there are no available private IPv4 addresses in the VPC.

Which combination of actions must the SysOps administrator take to launch the instances? (Choose two.)

  • A. Associate a secondary IPv4 CIDR block with the VPC.
  • B. Associate a primary IPv6 CIDR block with the VPC.
  • C. Create a new subnet for the VPC.
  • D. Modify the CIDR block of the VPC.
  • E. Modify the CIDR block of the subnet that is associated with the instances.
Discover Answer Hide Answer

AC

Question#88

A SysOps administrator is creating an Amazon EC2 Auto Scaling group in a new AWS account. After adding some instances, the SysOps administrator notices that the group has not reached the minimum number of instances. The SysOps administrator receives the following error message:

Launching a new EC2 instance. Status Reason: Your quota allows for 0 more running instance(s).
You requested at least 1. Launching EC2 instance failed.

Which action will resolve this issue?

  • A. Adjust the account spending limits for Amazon EC2 on the AWS Billing and Cost Management console.
  • B. Modify the EC2 quota for that AWS Region in the EC2 Settings section of the EC2 console.
  • C. Request a quota increase for the instance type family by using Service Quotas on the AWS Management Console.
  • D. Use the Rebalance action in the Auto Scaling group on the AWS Management Console.
Discover Answer Hide Answer

B

Question#89

A SysOps administrator is creating two AWS CloudFormation templates. The first template will create a VPC with associated resources, such as subnets, route tables, and an internet gateway. The second template will deploy application resources within the VPC that was created by the first template. The second template should refer to the resources created by the first template.

How can this be accomplished with the LEAST amount of administrative effort?

  • A. Add an export field to the outputs of the first template and import the values in the second template.
  • B. Create a custom resource that queries the stack created by the first template and retrieves the required values.
  • C. Create a mapping in the first template that is referenced by the second template.
  • D. Input the names of resources in the first template and refer to those names in the second template as a parameter.
Discover Answer Hide Answer

A

Question#90

A company runs a web application on three Amazon EC2 instances behind an Application Load Balancer (ALB). The company notices that random periods of increased traffic cause a degradation in the application’s performance. A SysOps administrator must scale the application to meet the increased traffic.

Which solution meets these requirements?

  • A. Create an Amazon CloudWatch alarm to monitor application latency and increase the size of each EC2 instance if the desired threshold is reached.
  • B. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to monitor application latency and add an EC2 instance to the ALB if the desired threshold is reached.
  • C. Deploy the application to an Auto Scaling group of EC2 instances with a target tracking scaling policy. Attach the ALB to the Auto Scaling group.
  • D. Deploy the application to an Auto Scaling group of EC2 instances with a scheduled scaling policy. Attach the ALB to the Auto Scaling group.
Discover Answer Hide Answer

C

chevron rightPrevious Nextchevron right
Email: support@exam-data.com
Copyright © 2024 Exam Data. All rights reserved.
Home Exams
chevron
Public Agreement Privacy Policy Sales and Refunds