AWS SOA-C00 Certified Sys Ops Administrator Associate Exam Set 6

A user Is sending the data to Cloud Watch using the Cloud Watch API. The user is sending data 90 minutes in the future. What will Cloud Watch do in this case?


Options are :

  • The user cannot send data for more than 60 minutes in the future
  • It is not possible to send the data manual y to Cloud Watch
  • Cloud Watch will accept the data (Correct)
  • It Is not possible to send data of the future

Answer : Cloud Watch will accept the data

A user has configured ELB with SSL using a security policy for secure negotiation between the client and load balancer. Which of the below mentioned security policies is supported by ELB?


Options are :

  • Al the other options
  • Dynamic Security Policy
  • Predefined Security Policy (Correct)
  • Default Security Policy

Answer : Predefined Security Policy

A storage admin wants to encrypt all the objects stored in S3 using server side encryption. The user does not want to use the AES 256 encryption key provided by S3. How can the user achieve this?


Options are :

  • The admin should upload his secret key to the AWS console and let S3 decrypt the objects
  • The admin should send the keys and encryption algorithm with each API call (Correct)
  • S3 does not support client supplied encryption keys for server side encryption
  • The admin should use CLI or API to upload the encryption key to the S3 bucket. When making a call to the S3 API mention the encryption key URL in each request

Answer : The admin should send the keys and encryption algorithm with each API call

A user is planning to scale up an application by 8 AM and scale down by 7 PM daily using Auto Scaling. What should the user do in this case?


Options are :

  • Setup scheduled actions to scale up or down at a specific time
  • The user should setup a batch process which launches the EC2 instance at a specific time
  • The user should increase the desired capacity at 8 AM and decrease it by 7 PM manual y
  • Setup the scaling policy to scale up and down based on the Cloud Watch alarms (Correct)

Answer : Setup the scaling policy to scale up and down based on the Cloud Watch alarms

A user has created a VPC with public and private subnets using the VPC Wizard. The VPC has CIDR 20.0.0.0/16. The private subnet uses CIDR 20.0.0.0/24. Which of the below mentioned entries are required in the main route table to allow the instances in VPC to communicate with each other?


Options are :

  • Destination :20.0.0.0/16 and Target: Local
  • Destination :20.0.0.0/16 and Target: ALL
  • Destination : 20.0.0.0/24 and Target : VPC (Correct)
  • Destination : 20.0.0.0/0 and Target : ALL

Answer : Destination : 20.0.0.0/24 and Target : VPC

A user has created an Auto Scaling group using CLI. The user wants to enable Cloud Watch detailed monitoring for that group. How can the user configure this?


Options are :

  • When the user sets an alarm on the Auto Scaling group, it automatically enables detail monitoring
  • Enable detail monitoring from the AWS console
  • By default detailed monitoring is enabled for Auto Scaling (Correct)
  • Auto Scaling does not support detailed monitoring

Answer : By default detailed monitoring is enabled for Auto Scaling

A user has created an application which will be hosted on EC2. The application makes calls to Dynamo DB to fetch certain data, The application is using the Dynamo DB SDK to connect with from the EC2 instance Which of the below mentioned statements is true with respect to the best practice for security in this scenario?


Options are :

  • The user should create an IAM role, which has EC2 access so that it will allow deploying the application
  • The user should create an AM user with Dynamo DB and EC2 access. Attach the user with the application so that it does not use the root account credentials
  • The user should attach an AM role with Dynamo DB access to the EC2 instance (Correct)
  • The user should create an IAM user with Dynamo DB access and use Its credentials within the application to connect with Dynamo DB

Answer : The user should attach an AM role with Dynamo DB access to the EC2 instance

A user runs the command °d d if/dev/zero of dev/xvdfbs1 M? on a fresh blank EBS volume attached to a Linux instance. Which of the below mentioned activities is the user performing with the command given above?


Options are :

  • Mounting the device to the instance
  • Creating a file system on the EBS volume
  • Pre warming the EBS volume (Correct)
  • Formatting the EBS volume

Answer : Pre warming the EBS volume

A user has launched an EC2 Windows instance from an instance store backed AMI. The user wants to convert the AMI to an EBS backed AMI. How can the user convert it?


Options are :

  • Attach an EBS volume and use the copy command to copy all the ethereal content to the EBS Volume
  • A Windows based instance store backed AMI cannot be converted to an EBS backed AMI (Correct)
  • Attach an EBS volume to the instance and unbundle all the AMI bundled data inside the EBS
  • It is not possible to convert an instance store backed AMI to an EBS backed AMI

Answer : A Windows based instance store backed AMI cannot be converted to an EBS backed AMI

A user has created a VPC with public and private subnets using the VPC wizard. Which of the below mentioned statements is true in this scenario?


Options are :

  • The user has to manually create a NAT instance
  • VPC bounds the main route table with a public subnet and a custom route table with a private subnet
  • VPC bounds the main route table with a private subnet and a custom route table with a public subnet (Correct)
  • The AWS VPC will automatically create a NAT instance with the micro size

Answer : VPC bounds the main route table with a private subnet and a custom route table with a public subnet

A user wants to upload a complete folder to AWS S3 using the S3 Management console. How can the user perform this activity?


Options are :

  • Use the Enable Enhanced Up loader option from the S3 console while uploading object (Correct)
  • The user cannot upload the whole folder in one go with the S3 management console
  • Use the Enable Enhanced Folder option from the S3 console while uploading objects
  • Just drag and drop the folder using the flash tool provided by S3

Answer : Use the Enable Enhanced Up loader option from the S3 console while uploading object

An organization has launched 5 Instances: 2 for production and 3 for testing. The organization wants that one particular group of AM users should only access the test instances and not the production ones. How can the organization set that as a part of the policy?


Options are :

  • Define the IAM policy which allows access based on the instance ID
  • Launch the test and production instances In separate regions and allow region wise access to the group
  • Define the tags on the test and production servers and add a condition to the AM policy which allows access to specific tags (Correct)
  • Create an IAM policy with a condition which allows access to only small instances

Answer : Define the tags on the test and production servers and add a condition to the AM policy which allows access to specific tags

A user has a weighing plant. The user measures the weight of some goods every 5 minutes and sends data to AWS Cloud Watch for monitoring and tracking. Which of the below mentioned parameters is mandatory for the user to include in the request list?


Options are :

  • Namespace (Correct)
  • Value
  • Time zone
  • Metric Name

Answer : Namespace

A user has moved an object to Glacier using the life cycle rules. The user requests to restore the archive after 6 months. When the restore request is completed the user accesses that archive. Which of the below mentioned statements is not true in this condition?


Options are :

  • The user can modify the restoration period only by issuing a new restore request with the updated period
  • The archive will be available as an object for the duration specified by the user during the restoration request
  • The user needs to pay storage for both RRS (restored. and Glacier (Archive. Rates
  • The restored objects class will be RRS (Correct)

Answer : The restored objects class will be RRS

A user has enabled termination protection on an EC2 instance. The user has also set Instance initiated shutdown behavior to terminate. When the user shuts down the instance from the Os, what wit happen?


Options are :

  • It will not allow the user to shutdown the instance from the OS
  • The OS will shutdown but the instance will not be terminated due to protection
  • It is not possible to set the termination protection when an Instance initiated shutdown is set to Terminate
  • It will terminate the instance (Correct)

Answer : It will terminate the instance

A user is trying to create an EBS volume with the highest PIOPS supported by EBS. What is the minimum size of EBS required to have the maximum IOPS?


Options are :

  • 128
  • 134 (Correct)
  • 124
  • 150

Answer : 134

A user has configured an HTTPS listener on an ELB. The user has not configured any security policy which can help to negotiate SSL between the client and ELB. What will ELB do in this scenario?


Options are :

  • By default ELB will select the first version of the security policy
  • It is not required to have a security policy since SSL is already installed
  • ELB creation will fail without a security policy
  • By default ELB will select the latest version of the policy (Correct)

Answer : By default ELB will select the latest version of the policy

A user is trying to create a PIOPS EBS volume with 8 GB size and 200 IOPS. Will AWS create the volume?


Options are :

  • No, since the PIOPS and EBS size ratio is less than 30
  • Yes, since the ratio between EBS and IOPS is less than 30
  • No, the EBS size is less than 10 GB (Correct)
  • Yes, since PIOPS is higher than 100

Answer : No, the EBS size is less than 10 GB

A user has launched an EC2 Instance and deployed a production application in it. The user wants to prohibit any mistakes from the production team to avoid accidental termination. How can the user achieve this?


Options are :

  • It is not possible to avoid accidental termination
  • The user can set the instance initiated Shutdown Behavior flag to avoid accidental termination
  • The user can set the Deletion termination flag to avoid accidental termination
  • The user can the set Disable API Termination attribute to avoid accidental termination (Correct)

Answer : The user can the set Disable API Termination attribute to avoid accidental termination

A user Is running a batch process on EBS backed EC2 Instances. The batch process starts a few instances to process hadoop Map reduce jobs which can run between 50- 600 minutes or sometimes for more time. The user wants to configure that the instance gets terminated only when the process is completed. How can the user configure this with Cloud Watch?


Options are :

  • Setup the Cloud Watch with Auto Scaling to terminate all the instances
  • It is not possible to terminate instances automatically (Correct)
  • Setup a job which terminates all instances after 600 minutes
  • Setup the Cloud Watch action to terminate the instance when the CPU utilization is less than

Answer : It is not possible to terminate instances automatically

A user is trying to pre-warm a blank EBS volume attached to a Linux instance. Which of the below mentioned steps should be performed by the user?


Options are :

  • Contact AWS support to pre warm
  • Format the device
  • There Is no need to pre-warm an EBS volume
  • Un mount the volume before pre-warming (Correct)

Answer : Un mount the volume before pre-warming

A user has configured Auto Scaling with the minimum capacity as 2 and the desired capacity as 2. The user is trying to terminate one of the existing instance with the command: asterminate-instance-in-auto-scaling-group< Instance ID> -decrement-desired-capacity What will Auto Scaling do in this scenario?


Options are :

  • Throws an error (Correct)
  • Terminates the instance and updates the desired capacity and minimum size to 1
  • Terminates the instance and updates the desired capacity to 1
  • Terminates the In stance and does not launch a new Instance

Answer : Throws an error

A sys admin has created the below mentioned policy on an S3 bucket named cloud academy. The bucket has both AWS.jpg and index ,html objects. What does this policy define? IISI DU: “Stml 388811069831 H “Effect”: “Allow “, „Principal”: { “AWS”: *), “Action”: I “s3 :Get Object Ac”, „s3:ListBucket”, “s3:GetObjecti, “Resource”: I Harn:aws:s3:::cloud academy/*.jpg J


Options are :

  • It will make the AWS.jpg object as public
  • It will make al the objects as well as the bucket public
  • It will make the AWS.jpg as well as the cloud academy bucket as public
  • It will throw an error for the wrong action and does not allow to save the policy (Correct)

Answer : It will throw an error for the wrong action and does not allow to save the policy

Which of the below mentioned AWS RDS logs cannot be viewed from the console for My SQL?


Options are :

  • Error Log
  • General Log
  • Slow Query Log
  • Transaction Log (Correct)

Answer : Transaction Log

A uses has enabled versioning on an S3 bucket. The user is using server side encryption for data at rest. If the user is supplying his own keys for encryption (SSE-C., what is recommended to the user for the purpose of security?


Options are :

  • Keep rotating the encryption key manual y at the client side (Correct)
  • Configure S3 to store the user?s keys securely with SSL
  • Configure S3 to rotate the user?s encryption key at regular intervals
  • The user should not use his own security key as It is not secure

Answer : Keep rotating the encryption key manual y at the client side

A user is trying to configure the Cloud Watch billing alarm. Which of the below mentioned steps should be performed by the user for the first time alarm creation in the AWS Account Management section?


Options are :

  • Enable Cloud Watch Billing Threshold
  • Enable Receiving Billing Reports
  • Enable Receiving Billing Alerts (Correct)
  • Enable AWS billing utility

Answer : Enable Receiving Billing Alerts

A user has launched an EBS backed EC2 instance. The user has rebooted the instance. Which of the below mentioned statements is not true with respect to the reboot action?


Options are :

  • The Elastic IP remains associated with the instance
  • The instance runs on a new host computer (Correct)
  • The volume is preserved
  • The private and public address remains the same

Answer : The instance runs on a new host computer

An organization has configured Auto Scaling with ELB. One of the instance health check returns the status as Impaired to Auto Scaling. What will Auto Scaling do in this scenario?


Options are :

  • Notify the user using SNS for the failed state
  • Terminate the instance and launch a new instance (Correct)
  • Notify ELB to stop sending traffic to the impaired instance
  • Perform a health check until cool down before declaring that the instance has failed

Answer : Terminate the instance and launch a new instance

A user is planning to setup infrastructure on AWS for the Christmas sales. The user is planning to use Auto Scaling based on the schedule for proactive scaling. What advise would you give to the user?


Options are :

  • It is good to schedule now because if the user forgets later on it will not scale up
  • The scaling should be setup only one week before Christmas
  • It is not advisable to use scheduled based scaling
  • Wait till end of November before scheduling the activity (Correct)

Answer : Wait till end of November before scheduling the activity

A user has setup an Auto Scaling group. The group has failed to launch a single instance for more than 24 hours. What wit happen to Auto Scaling in this condition?


Options are :

  • Auto Scaling will start an instance in a separate region
  • Auto Scaling will keep trying to launch the instance for 72 hours
  • Auto Scaling will suspend the scaling process (Correct)
  • The Auto Scaling group will be terminated automatically

Answer : Auto Scaling will suspend the scaling process

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions