Amazon Amazon Certifications SAP-C01 Questions & Answers

• Question 691:

  A user is trying to create a PIOPS EBS volume with 4000 IOPS and 100 GB size. AWS does not allow the user to create this volume.

  What is the possible root cause for this?

  A. PIOPS is supported for EBS higher than 500 GB size

  B. The maximum IOPS supported by EBS is 3000

  C. The ratio between IOPS and the EBS volume is higher than 30

  D. The ratio between IOPS and the EBS volume is lower than 50

  Correct Answer: D

• Question 692:

  An organization is planning to host a web application in the AWS VPC. The organization does not want to host a database in the public cloud due to statutory requirements.

  How can the organization setup in this scenario?

  A. The organization should plan the app server on the public subnet and database in the organization's data center and connect them with the VPN gateway.

  B. The organization should plan the app server on the public subnet and use RDS with the private subnet for a secure data operation.

  C. The organization should use the public subnet for the app server and use RDS with a storage gateway to access as well as sync the data securely from the local data center.

  D. The organization should plan the app server on the public subnet and database in a private subnet so it will not be in the public cloud.

  Correct Answer: A

  A Virtual Private Cloud (VPC) is a virtual network dedicated to the user's AWS account. The user can create subnets as per the requirement within a VPC. If the user wants to connect VPC from his own data centre, he can setup a public and VPN only subnet which uses hardware VPN access to connect with his data centre. When the user has configured this setup with Wizard, it will create a virtual private gateway to route all the traffic of the VPN subnet. If the virtual private gateway is attached with VPC and the user deletes the VPC from the console it will first automatically detach the gateway and only then delete the VPC.

  Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.html

• Question 693:

  Who is responsible for modifying the routing tables and networking ACLs in a VPC to ensure that a DB instance is reachable from other instances in the VPC?

  A. AWS administrators

  B. The owner of the AWS account

  C. Amazon

  D. The DB engine vendor

  Correct Answer: B

  You are in charge of configuring the routing tables of your VPC as well as the network ACLs rules needed to make your DB instances accessible from all the instances of your VPC that need to communicate with it.

  Reference: http://aws.amazon.com/rds/faqs/

• Question 694:

  What is the average queue length recommended by AWS to achieve a lower latency for the 200 PIOPS EBS volume?

  A. 5

  B. 1

  C. 2

  D. 4

  Correct Answer: B

  The queue length is the number of pending I/O requests for a device. The optimal average queue length will vary for every customer workload, and this value depends on a particular application's sensitivity to IOPS and latency. If the workload is not delivering enough I/O requests to maintain the optimal average queue length, then the EBS volume might not consistently deliver the IOPS that have been provisioned. However, if the workload maintains an average queue length that is higher than the optimal value, then the per-request I/O latency will increase; in this case, the user should provision more IOPS for his volume. AWS recommends that the user should target an optimal average queue length of 1 for every 200 provisioned IOPS and tune that value based on his application requirements.

  Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-workload-demand.html

• Question 695:

  What is the role of the PollForTask action when it is called by a task runner in AWS Data Pipeline?

  A. It is used to retrieve the pipeline definition.

  B. It is used to report the progress of the task runner to AWS Data Pipeline.

  C. It is used to receive a task to perform from AWS Data Pipeline.

  D. It is used to inform AWS Data Pipeline of the outcome when the task runner completes a task.

  Correct Answer: C

  Task runners call PollForTask to receive a task to perform from AWS Data Pipeline. If tasks are ready in the work queue, PollForTask returns a response immediately. If no tasks are available in the queue, PollForTask uses long-polling and holds on to a poll connection for up to 90 seconds, during which time any newly scheduled tasks are handed to the task agent. Your remote worker should not call PollForTask again on the same worker group until it receives a response, and this may take up to 90 seconds.

  Reference: http://docs.aws.amazon.com/datapipeline/latest/APIReference/API_PollForTask.html

• Question 696:

  True or False: In Amazon ElastiCache, you can use Cache Security Groups to configure the cache clusters that are part of a VPC.

  A. FALSE

  B. TRUE

  C. True, this is applicable only to cache clusters that are running in an Amazon VPC environment.

  D. True, but only when you configure the cache clusters using the Cache Security Groups from the console navigation pane.

  Correct Answer: A

  Amazon ElastiCache cache security groups are only applicable to cache clusters that are not running in an Amazon Virtual Private Cloud environment (VPC). If you are running in an Amazon Virtual Private Cloud, Cache Security Groups is not available in the console navigation pane.

  Reference: http://docs.aws.amazon.com/AmazonElastiCache/latest/UserGuide/CacheSecurityGroup.html

• Question 697:

  In the context of AWS Cloud Hardware Security Module(HSM), does your application need to reside in the same VPC as the CloudHSM instance?

  A. No, but the server or instance on which your application and the HSM client is running must have network (IP) reachability to the HSM.

  B. Yes, always

  C. No, but they must reside in the same Availability Zone.

  D. No, but it should reside in same Availability Zone as the DB instance.

  Correct Answer: A

  Your application does not need to reside in the same VPC as the CloudHSM instance. However, the server or instance on which your application and the HSM client is running must have network (IP) reachability to the HSM. You can establish network connectivity in a variety of ways, including operating your application in the same VPC, with VPC peering, with a VPN connection, or with Direct Connect.

  Reference: https://aws.amazon.com/cloudhsm/faqs/

• Question 698:

  Once the user has set ElastiCache for an application and it is up and running, which services, does Amazon not provide for the user:

  A. The ability for client programs to automatically identify all of the nodes in a cache cluster, and to initiate and maintain connections to all of these nodes

  B. Automating common administrative tasks such as failure detection and recovery, and software patching.

  C. Providing default Time to Live (TTL) in the AWS Elasticache Redis Implementation for different type of data.

  D. Providing detailed monitoring metrics associated with your Cache Nodes, enabling you to diagnose and react to issues very quickly

  Correct Answer: C

  Amazon provides failure detection and recovery, and software patching and monitoring tools which is called CloudWatch. In addition it provides also Auto Discovery to automatically identify and initialize all nodes of cache cluster for Amazon ElastiCache.

  Reference: http://docs.aws.amazon.com/AmazonElastiCache/latest/UserGuide/WhatIs.html

• Question 699:

  You are setting up some EBS volumes for a customer who has requested a setup which includes a RAID (redundant array of inexpensive disks). AWS has some recommendations for RAID setups.

  Which RAID setup is not recommended for Amazon EBS?

  A. RAID 1 only

  B. RAID 5 only

  C. RAID 5 and RAID 6

  D. RAID 0 only

  Correct Answer: C

  With Amazon EBS, you can use any of the standard RAID configurations that you can use with a traditional bare metal server, as long as that particular RAID configuration is supported by the operating system for your instance. This is because all RAID is accomplished at the software level. For greater I/O performance than you can achieve with a single volume, RAID 0 can stripe multiple volumes together; for on-instance redundancy, RAID 1 can mirror two volumes together. RAID 5 and RAID 6 are not recommended for Amazon EBS because the parity write operations of these RAID modes consume some of the IOPS available to your volumes.

  Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/raid-config.html

• Question 700:

  A user is configuring MySQL RDS with PIOPS. What should be the minimum PIOPS that the user should provision?

  A. 1000

  B. 200

  C. 2000

  D. 500

  Correct Answer: A

  If a user is trying to enable PIOPS with MySQL RDS, the minimum size of storage should be 100 GB and the minimum PIOPS should be 1000.

  Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_PIOPS.html