Amazon (SOA-C02) Exam Questions And Answers page 4
A company is partnering with an external vendor to provide data processing services. For this integration, the vendor must host the company s data in an Amazon S3 bucket in the vendor s AWS account. The vendor is allowing the company to provide an AWS Key Management Service (AWS KMS) key to encrypt the company s data. The vendor has provided an IAM role Amazon Resources Name (ARN) to the company for this integration.
What should a SysOps administrator do to configure this integration?
What should a SysOps administrator do to configure this integration?
Create a new KMS key. Create a new IAM key. Add the vendor s IAM role ARN to an inline policy that is attached to the IAM user. Provide the new IAM user ARN to the vendor.
Configure encryption using the KMS managed S3 key. Add the vendor s IAM role ARN to the KMS key policy. Provide the KMS managed S3 key ARN to the vendor.
Configure encryption using the KMS managed S3 key. Create an S3 bucket. Add the vendor s IAM role ARN to the S3 bucket policy. Provide the S3 bucket ARN to the vendor.
Deployment, Provisioning, and Automation
Security and Compliance
A company is planning to host an application on a set of Amazon EC2 instances that are distributed across multiple Availability Zones. The application must be able to scale to millions of requests each second.
A SysOps administrator must design a solution to distribute the traffic to the EC2 instances. The solution must be optimized to handle sudden and volatile traffic patterns while using a single static IP address for each Availability Zone.
Which solution will meet these requirements?
A SysOps administrator must design a solution to distribute the traffic to the EC2 instances. The solution must be optimized to handle sudden and volatile traffic patterns while using a single static IP address for each Availability Zone.
Which solution will meet these requirements?
Amazon Simple Queue Service (Amazon SQS) queue
Application Load Balancer
AWS Global Accelerator
Network Load Balancer
High Availability and Business Continuity
Networking and Content Delivery
A company is running a flash sale on its website. The website is hosted on burstable performance Amazon EC2 instances in an Auto Scaling group. The Auto Scaling group is configured to launch instances when the CPU utilization is above 70%.
A couple of hours into the sale, users report slow load times and error messages for refused connections. A SysOps administrator reviews Amazon CloudWatch metrics and notices that the CPU utilization is at 20% across the entire fleet of instances.
The SysOps administrator must restore the website's functionality without making changes to the network infrastructure.
Which solution will meet these requirements?
A couple of hours into the sale, users report slow load times and error messages for refused connections. A SysOps administrator reviews Amazon CloudWatch metrics and notices that the CPU utilization is at 20% across the entire fleet of instances.
The SysOps administrator must restore the website's functionality without making changes to the network infrastructure.
Which solution will meet these requirements?
Reduce the desired size of the Auto Scaling group to artificially increase CPU average utilization.
Activate unlimited mode for the instances in the Auto Scaling group.
Implement an Amazon CloudFront distribution to offload the traffic from the Auto Scaling group.
Move the website to a different AWS Region that is closer to the users.
Deployment, Provisioning, and Automation
Cost and Performance Optimization
A company is running an application on a fleet of Amazon EC2 instances behind an Application Load Balancer (ALB). The EC2 instances are launched by an Auto Scaling group and are automatically registered in a target group. A SysOps administrator must set up a notification to alert application owners when targets fail health checks.
What should the SysOps administrator do to meet these requirements?
What should the SysOps administrator do to meet these requirements?
Create an Amazon CloudWatch alarm on the UnHealthyHostCount metric. Configure an action to send an Amazon Simple Notification Service (Amazon SNS) notification when the metric is greater than 0.
Configure an Amazon EC2 Auto Scaling custom lifecycle action to send an Amazon Simple Notification Service (Amazon SNS) notification when an instance is in the Pending: Wait state.
Update the Auto Scaling group. Configure an activity notification to send an Amazon Simple Notification Service (Amazon SNS) notification for the Unhealthy event type.
Update the ALB health check to send an Amazon Simple Notification Service (Amazon SNS) notification when an instance is unhealthy.
High Availability and Business Continuity
Deployment, Provisioning, and Automation
A company is running an application on premises and wants to use AWS for data backup. All of the data must be available locally. The backup application can write only to block-based storage that is compatible with the Portable Operating System Interface (POSIX).
Which backup solution will meet these requirements?
Which backup solution will meet these requirements?
Configure the backup software to use Amazon S3 as the target for the data backups.
Configure the backup software to use Amazon S3 Glacier as the target for the data backups.
Use AWS Storage Gateway, and configure it to use gateway-cached volumes.
Use AWS Storage Gateway, and configure it to use gateway-stored volumes.
Deployment, Provisioning, and Automation
Networking and Content Delivery
A company is running a serverless application on AWS Lambda. The application stores data in an Amazon RDS for MySQL DB instance. Usage has steadily increased, and recently there have been numerous "too many connections" errors when the Lambda function attempts to connect to the database. The company already has configured the database to use the maximum max_connections value that is possible.
What should a SysOps administrator do to resolve these errors?
What should a SysOps administrator do to resolve these errors?
Create a read replica of the database. Use Amazon Route 53 to create a weighted DNS record that contains both databases.
Use Amazon RDS Proxy to create a proxy. Update the connection string in the Lambda function.
Increase the value in the max_connect_errors parameter in the parameter group that the database uses.
Update the Lambda function's reserved concurrency to a higher value.
High Availability and Business Continuity
Networking and Content Delivery
A company is running a website on Amazon EC2 instances behind an Application Load Balancer (ALB). The company configured an Amazon CloudFront distribution and set the ALB as the origin. The company created an Amazon Route 53 CNAME record to send all traffic through the CloudFront distribution. As an unintended side effect, mobile users are now being served the desktop version of the website.
Which action should a SysOps administrator take to resolve this issue?
Which action should a SysOps administrator take to resolve this issue?
Configure the CloudFront distribution behavior to forward the User-Agent header.
Configure the CloudFront distribution origin settings. Add a User-Agent header to the list of origin custom headers.
Enable IPv6 on the ALB. Update the CloudFront distribution origin settings to use the dualstack endpoint.
Enable IPv6 on the CloudFront distribution. Update the Route 53 record to use the dualstack endpoint.
Monitoring and Reporting
Networking and Content Delivery
A company is running a website on Amazon EC2 instances behind an Application Load Balancer (ALB). The company configured an Amazon CloudFront distribution and set the ALB as the origin. The company created an Amazon Route 53 CNAME record to send all traffic through the CloudFront distribution. As an unintended side effect, mobile users are now being served the desktop version of the website.
Which action should a SysOps administrator take to resolve this issue?
Which action should a SysOps administrator take to resolve this issue?
Configure the CloudFront distribution behavior to forward the User-Agent header.
Configure the CloudFront distribution origin settings. Add a User-Agent header to the list of origin custom headers.
Enable IPv6 on the ALB. Update the CloudFront distribution origin settings to use the dualstack endpoint.
Enable IPv6 on the CloudFront distribution. Update the Route 53 record to use the dualstack endpoint.
Monitoring and Reporting
Networking and Content Delivery
A company is running a website on Amazon EC2 instances that are in an Auto Scaling group. When the website traffic increases, additional instances take several minutes to become available because of a long-running user data script that installs software. A SysOps administrator must decrease the time that is required for new instances to become available.
Which action should the SysOps administrator take to meet this requirement?
Which action should the SysOps administrator take to meet this requirement?
Reduce the scaling thresholds so that instances are added before traffic increases.
Purchase Reserved Instances to cover 100% of the maximum capacity of the Auto Scaling group.
Update the Auto Scaling group to launch instances that have a storage optimized instance type.
Use EC2 Image Builder to prepare an Amazon Machine Image (AMI) that has pre-installed software.
Deployment, Provisioning, and Automation
Networking and Content Delivery
A company is supporting a business-critical application that runs on Amazon EC2 instances. The application receives data from a service that runs in an on-premises data center. End users are reporting intermittent issues that are related to data refreshes. The issues are occurring because of fluctuations in available network bandwidth between AWS and the on-premises data center.
A SysOps administrator must improve the user experience and the application s performance while minimizing changes to the application stack.
Which solution will offer the MOST performance improvement while meeting these requirements?
A SysOps administrator must improve the user experience and the application s performance while minimizing changes to the application stack.
Which solution will offer the MOST performance improvement while meeting these requirements?
Migrate the service to AWS Implement auto scaling.
Modify the service to use Amazon S3 Transfer Acceleration.
Set up an AWS Direct Connect connection with the on-premises data center.
Use AWS Storage Gateway to move the data into AWS.
High Availability and Business Continuity
Networking and Content Delivery
Comments