AWS SOA-C00 Certified Sys Ops Administrator Associate Exam Set 9

A user has setup a billing alarm using Cloud Watch for $200. The usage of AWS exceeded $200 after some days. The user wants to increase the limit from $200 to $400? What should the user do?


Options are :

  • It is not possible to modify the alarm once it has crossed the usage limit
  • Create a new alarm for the additional $200 amount
  • Create a new alarm of $400 and link it with the first alarm
  • Update the alarm to set the limit at $400 instead of $200 (Correct)

Answer : Update the alarm to set the limit at $400 instead of $200

A user has created a VPC with CIDR 20.0.0.0/16 using the wizard. The user has created a public subnet CIDR (20.0.0.0/24. and VPN only subnets CIOR (20.0.1.0/24. along with the VPN gateway (vgw-1 2345. to connect to the users data centre. Which of the below mentioned options is a valid entry for the main route table in this scenario?


Options are :

  • Destination: 20.0.1.0/16 and Target: vgw-1 2345
  • Destination: 20.0.0.0/24 and Target: vgw-1 2345
  • Destination: 20.0.0.0/16 and Target: ALL
  • Destination: 0.0.0.0/0 and Target: vgw-1 2345 (Correct)

Answer : Destination: 0.0.0.0/0 and Target: vgw-1 2345

A user has stored data on an encrypted EBS volume. The user wants to share the data with his friend?s AWS account. How can user achieve this?


Options are :

  • If both the accounts are using the same encryption key then the user can share the volume directly
  • Copy the data to an unencrypted volume and then share (Correct)
  • Take a snapshot and share the snapshot with a friend
  • Create an AMI from the volume and share the AMI

Answer : Copy the data to an unencrypted volume and then share

A user is planning to use AWS Cloud formation. Which of the below mentioned functionalities does not help him to correctly understand Cloud formation?


Options are :

  • Cloud formation works with a wide variety of AWS services, such as EC2, EBS, VPC, IAM, S3, RDS, ELB, etc
  • Cloud formation follows the Dev Ops model for the creation of Dev & Test (Correct)
  • AWS Cloud formation does not charge the user for its service but only charges for the AWS resources created with it
  • Cloud Formation provides a set of application bootstrapping scripts which enables the user to install Software

Answer : Cloud formation follows the Dev Ops model for the creation of Dev & Test

A user has created a subnet with VPC and launched an EC2 instance in that subnet with only default settings. Which of the below mentioned options is ready to use on the EC2 instance as soon as it is launched?


Options are :

  • Public IP
  • Elastic IP
  • Private IP (Correct)
  • I internet gateway

Answer : Private IP

A customer is using AWS for Dev and Test. The customer wants to setup the Dev environment with Cloud format ion. Which of the below mentioned steps are not required while using Cloud formation?


Options are :

  • Create and upload the template
  • Create a stack
  • Provide the parameters configured as part of the template
  • Configure a service (Correct)

Answer : Configure a service

An application is generating a log file every 5 minutes. The log file is not critical but may be required only for verification in case of some major issue. The file should be accessible over the internet whenever required. Which of the below mentioned options is a best possible storage solution for it?


Options are :

  • AWS S3
  • AWS Glacier
  • AWSRRS (Correct)
  • AWSRDS

Answer : AWSRRS

A user has setup Auto Scaling with ELB on the EC2 instances. The user wants to configure that whenever the CPU utilization is below 10%, Auto Scaling should remove one instance. How can the user configure this?


Options are :

  • Use Cloud Watch to monitor the data and Auto Scaling to remove the instances using scheduled actions
  • Configure Cloud Watch to send a notification to Auto Scaling Launch configuration when the CPU utilization is less than 10% and configure the Auto Scaling policy to remove the instance
  • Configure Cloud Watch to send a notification to the Auto Scaling group when the CPU Utilization is less than 10% and configure the Auto Scaling policy to remove the instance (Correct)
  • The user can get an email using SNS when the Cpu utilization is less than 10%. The user can use the desired capacity of Auto Scaling to remove the instance

Answer : Configure Cloud Watch to send a notification to the Auto Scaling group when the CPU Utilization is less than 10% and configure the Auto Scaling policy to remove the instance

A user is publishing custom metrics to Cloud Watch, Which of the below mentioned statements will help the user understand the functionality better?


Options are :

  • The user should be able to see the data in the console after around 1 5 minutes (Correct)
  • The user can use the Cloud Watch Import tool
  • The user can view as well as upload data using the console, CLI and APIs
  • If the user is uploading the custom data, the user must supply the namespace, time zone, and metric name as part of the command

Answer : The user should be able to see the data in the console after around 1 5 minutes

A system admin is managing buckets, objects and folders with AWS S3. Which of the below mentioned statements is true and should be taken in consideration by the sys admin?


Options are :

  • The folders support only ACL (Correct)
  • Both the object and bucket can have an Access Policy but folder cannot have policy
  • Folders can have a policy
  • Both the object and bucket can have ACL but folders cannot have ACL

Answer : The folders support only ACL

A user wants to disable connection draining on an existing ELB. Which of the below mentioned statements helps the user disable connection draining on the ELB?


Options are :

  • The user can disable the connection draining feature from EC2 -> ELB console or from CLI (Correct)
  • The user can only disable connection draining from CLI
  • It is not possible to disable the connection draining feature once enabled
  • The user needs to stop all instances before disabling connection draining

Answer : The user can disable the connection draining feature from EC2 -> ELB console or from CLI

A user has created a web application with Auto Scaling. The user is regularly monitoring the application and he observed that the traffic is highest on Thursday and Friday between 8 AM to 6 PM. What is the best solution to handle scaling in this case?


Options are :

  • Schedule Auto Scaling to scale up by 8 AM Thursday and scale down after 6 PM on Friday (Correct)
  • Configure a batch process to add a instance by 8 AM and remove it by Friday 6 PM
  • Add a new instance manual y by 8 AM Thursday and terminate the same by 6 PM Friday
  • Schedule a policy which may scale up every day at 8 AM and scales down by 6 PM

Answer : Schedule Auto Scaling to scale up by 8 AM Thursday and scale down after 6 PM on Friday

A user has configured the Auto Scaling group with the minimum capacity as 3 and the maximum capacity as 5. When the user configures the AS group, how many instances will Auto Scaling launch?


Options are :

  • 5 (Correct)
  • 0
  • 2
  • 3

Answer : 5

A sys admin has created a shopping cart application and hosted it on EC2. The EC2 instances are running behind ELB. The admin wants to ensure that the end user request wil always go to the EC2 instance where the user session has been created. How can the admin configure this?


Options are :

  • Enable ELB cookie setup
  • Enable ELB connection draining
  • Enable ELB cross zone load balancing
  • Enable ELB sticky session (Correct)

Answer : Enable ELB sticky session

A user has created a photo editing software and hosted it on EC2. The software accepts requests from the user about the photo format and resolution and sends a message to S3 to enhance the picture accordingly. Which of the below mentioned AWS services will help make a scalable software with the AWS infrastructure in this scenario?


Options are :

  • AWS Simple Notification Service
  • AWS Glacier
  • AWS Elastic Trans coder
  • AWS Simple Queue Service (Correct)

Answer : AWS Simple Queue Service

A user has created a VPC with CIDR 20.0.0.0/24. The user has created a public subnet with CIDR 20.0.0.0/25. The user is trying to create the private subnet with CIOR 20.0.0.128/25. Which of the below mentioned statements is true in this scenario?


Options are :

  • This statement is wrong as AWS does not allow CIDR 20.0.0.0/25
  • It will not allow the user to create the private subnet due to a CIDR overlap
  • It will allow the user to create a private subnet with CIDR as 20.0.0.128/25 (Correct)
  • It will not allow the user to create a private subnet due to a wrong CIDR range

Answer : It will allow the user to create a private subnet with CIDR as 20.0.0.128/25

A user has launched an EC2 instance. The user is planning to setup the Cloud Watch alarm. Which of the below mentioned actions is not supported by the Cloud Watch alarm?


Options are :

  • Notify the Auto Scaling launch configure to scale up
  • Stop the EC2 instance
  • Send an SMS using SNS (Correct)
  • Notify the Auto Scaling group to scale down

Answer : Send an SMS using SNS

A user has configured ELB with three instances. The user wants to achieve High Availability as well as redundancy with ELB. Which of the below mentioned AWS services helps the user achieve this for ELB?


Options are :

  • Route 53 (Correct)
  • Auto Scaling
  • AWS EMR
  • AWS Mechanical Turk

Answer : Route 53

An organization has configured the custom metric upload with Cloud Watch. The organization has given permission to its employees to upload data using CLI as well SDK. How can the user track the calls made to Cloud Watch?


Options are :

  • The user can enable logging with Cloud Watch which logs all the activities
  • Enable detailed monitoring with Cloud Watch
  • Create an IAM user and allow each user to log the data using the S3 bucket
  • Use Cloud Trail to monitor the API calls (Correct)

Answer : Use Cloud Trail to monitor the API calls

A user is planning to setup notifications on the RDS DB for a snapshot. Which of the below mentioned event categories is not supported by RDS for this snapshot source type?


Options are :

  • Creation
  • Restoration
  • Backup (Correct)
  • Deletion

Answer : Backup

An admin is planning to monitor the ELB. Which of the below mentioned services does not help the admin capture the monitoring information about the ELB activity?


Options are :

  • ELB API calls with Cloud Trail
  • Cloud Watch metrics
  • ELB health check (Correct)
  • ELB Access logs

Answer : ELB health check

A user has launched an ELB which has 5 instances registered with it. The user deletes the ELB by mistake. What will happen to the instances?


Options are :

  • ELB will ask the user whether to delete the instances or not
  • Instances will keep running (Correct)
  • Instances will be terminated
  • ELB cannot be deleted if it has running instances registered with it

Answer : Instances will keep running

A user has configured ELB with two EBS backed EC2 instances. The user is trying to understand the DNS access and IP support for ELB. Which of the below mentioned statements may not help the user understand the IP mechanism supported by ELB?


Options are :

  • Communication between the load balancer and back-end instances is always through IPV4
  • The ELB supports either IPV4 or IPV6 but not both
  • ELB DNS supports both IPV4 and IPV6 (Correct)
  • The client can connect over IPV4 or IPV6 using Dual stack

Answer : ELB DNS supports both IPV4 and IPV6

A system admin is planning to setup event notifications on RDS. Which of the below mentioned services will help the admin setup notifications?


Options are :

  • AWS Cloud trail
  • AWSSES
  • AWSSNS (Correct)
  • AWS Cloud watch

Answer : AWSSNS

A user has received a message from the support team that an issue occurred 1 week back between 3 AM to 4 AM and the EC2 server was not reachable. The user is checking the Cloud Watch metrics of that instance. How can the user find the data easily using the Cloud Watch console?


Options are :

  • The user can find the data by giving the exact values in the time Tab under Cloud Watch metrics
  • It is not possible to find the exact time from the console. The user has to use CLI to provide the specific time
  • The user can find the data by giving the exact values in the Absolute tab under Cloud Watch metrics (Correct)
  • The user can find the data by filtering values of the last 1 week for a 1 hour period in the Relative tab under

Answer : The user can find the data by giving the exact values in the Absolute tab under Cloud Watch metrics

A user is trying to delete an Auto Scaling group from CLI. Which of the below mentioned steps are to be performed by the user?


Options are :

  • Terminate the instances with the ec2-terminate-instance command
  • Terminate the Auto Scaling instances with the as-terminate-instance command
  • There is no need to change the capacity. Run the as-delete-group command and it wil reset all values to 0
  • Set the minimum size and desired capacity to 0 (Correct)

Answer : Set the minimum size and desired capacity to 0

A sys admin is maintaining an application on AWS. The application is installed on EC2 and user has configured ELB and Auto Scaling. Considering future load increase, the user is planning to launch new servers proactively so that they get registered with ELB. How can the user add these instances with Auto Scaling?


Options are :

  • Increase the desired capacity of the Auto Scaling group (Correct)
  • Decrease the minimum limit of the Auto Scaling group
  • Increase the maximum limit of the Auto Scaling group
  • Launch an instance manual y and register it with ELB on the fly

Answer : Increase the desired capacity of the Auto Scaling group

A user has created a queue named my queue with SQS. There are four messages published to queue which are not received by the consumer yet. If the user tries to delete the queue, what will happen?


Options are :

  • It will initiate the delete but wait for four days before deleting until all messages are deleted automatically.
  • It will delete the queue (Correct)
  • A user can never delete a queue manual y. AWS deletes it after 30 days of inactivity on queue
  • It will ask user to delete the messages first

Answer : It will delete the queue

A user has created an S3 bucket which is not publicly accessible. The bucket is having thirty objects which are also private. If the user wants to make the objects public, how can he configure this with minimal efforts?


Options are :

  • Make the bucket ACL as public so it will also mark all objects as public
  • Set the AWS bucket policy which marks all objects as public (Correct)
  • The user should select all objects from the console and apply a single policy to mark them public
  • The user can write a program which programmatically y makes all objects public using S3 SDK

Answer : Set the AWS bucket policy which marks all objects as public

An organization has created 50 IAM users. The organization wants that each user can change their password but cannot change their access keys. How can the organization achieve this?


Options are :

  • The root account owner can set the policy from the IAM console under the password policy screen (Correct)
  • The organization has to create a special password policy and attach it to each user
  • The root account owner has to use CLI which forces each IAM user to change their password on first login
  • By default each IAM user can modify their passwords

Answer : The root account owner can set the policy from the IAM console under the password policy screen

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions