AWS Certified SysOps Administrator(SOA-C02)

The AWS Certified SysOps Administrator(SOA-C02) were last updated on today.
  • Viewing page 10 out of 208 pages.
  • Viewing questions 46-50 out of 1,040 questions
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.and Azure
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.and Azure

Topic 1 - Exam A

Question #46 Topic 1

A security officer has requested that internet access be removed from subnets in a VPC. The subnets currently route internet-bound traffic to a NAT gateway. A SysOps administrator needs to remove this access while allowing access to Amazon S3. Which solution will meet these requirements?

  • A Set up an internet gateway. Update the route table on the subnets to use the internet gateway to route traffic to Amazon S3.
  • B Set up an S3 VPC gateway endpoint. Update the route table on the subnets to use the gateway endpoint to route traffic to Amazon S3.
  • C Set up additional NAT gateways in each Availability Zone. Update the route table on the subnets to use the NAT gateways to route traffic to Amazon S3.
  • D Set up an egress-only internet gateway. Update the route table on the subnets to use the egress-only internet gateway to route traffic to Amazon S3.
Suggested Answer: C
NOTE:
Question #47 Topic 1

A user has launched an EC2 instance from an instance store backed AMI. The user has attached an additional instance store volume to the instance. The user wants to create an AMI from the running instance. Will the AMI have the additional instance store volume data?

  • A Yes, the block device mapping will have information about the additional instance store volume
  • B No, since the instance store backed AMI can have only the root volume bundled
  • C It is not possible to attach an additional instance store volume to the existing instance store backed AMI instance
  • D No, since this is ephemeral storage it will not be a part of the AMI
Suggested Answer: A
NOTE: When the user has launched an EC2 instance from an instance store backed AMI and added an instance store volume to the instance in addition to the root device volume, the block device mapping for the new AMI contains the information for these volumes as well. In addition, the block device mappings for the instances those are launched from the new AMI will automatically contain information for these volumes.
Question #48 Topic 1

What does Amazon IAM stand for?

  • A Amazon Identity and Authentication Mechanism
  • B Amazon Integrated Access Management
  • C Amazon Identity and Access Management
  • D None of these
Suggested Answer: C
NOTE: Amazon IAM stands for Amazon Identity and Access Management. The "identity" aspect of AWS IAM helps you with the question "Who is that user?", often referred to as authentication. Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/introduction_identity-management.html#intro-identity-users
Question #49 Topic 1

A user has enabled the CloudWatch alarm to estimate the usage charges. If the user disables moni-toring of the estimated charges but does not delete the billing alert from the AWS account, what will happen?

  • A The user cannot edit the existing billing alarm.
  • B The data collection on estimated charges is stopped.
  • C It is not possible to disable monitoring of the estimated charges.
  • D AWS will stop sending the billing alerts to the user.
Suggested Answer: C
NOTE: To create an alarm on the estimated AWS usage charges, a user must enable monitoring of estimated AWS charges. This enables creating the metric data, which will be used to create a billing alarm. Once the estimated charges monitoring is enabled, the user cannot disable it. The user has to delete the alarms to stop receiving any notifications on billing. Reference: http://docs.aws.amazon.com/AmazonCloudWatch/latest/DeveloperGuide/gs_monitor_estimated_charges_with_cloudwatch.html
Question #50 Topic 1

A company recently migrated its three-tier web application to AWS. The application runs on Amazon EC2 instances that are in an Auto Scaling group. A SysOps administrator must create a monitoring dashboard to watch CPU and network utilization for each instance at 1-minute intervals. How can the SysOps administrator meet this requirement?

  • A Create an Amazon CloudWatch dashboard with basic monitoring.
  • B Set up AWS CloudTrail with a dashboard on Amazon QuickSight.
  • C Create an Amazon CloudWatch dashboard, and enable detailed monitoring.
  • D Use the AWS Personal Health Dashboard.
Suggested Answer: A
NOTE: Reference: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-instance-monitoring.html
Previous Questions Next Questions