Amazon SOA-C02 Online Practice Questions and Exam Preparation

Amazon SOA-C02 Online Questions & Answers

• Question 521:

  A company runs a web application on three Amazon EC2 instances behind an Application Load Balancer (ALB). The company notices that random periods of increased traffic cause a degradation in the application's performance. A SysOps administrator must scale the application to meet the increased traffic.

  Which solution meets these requirements?

  A. Create an Amazon CloudWatch alarm to monitor application latency and increase the size of each EC2 instance If the desired threshold is reached.
  B. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to monitor application latency and add an EC2 instance to the ALB if the desired threshold is reached.
  C. Deploy the application to an Auto Scaling group of EC2 instances with a target tracking scaling policy. Attach the ALB to the Auto Scaling group.
  D. Deploy the application to an Auto Scaling group of EC2 instances with a scheduled scaling policy. Attach the ALB to the Auto Scaling group.
  C. Deploy the application to an Auto Scaling group of EC2 instances with a target tracking scaling policy. Attach the ALB to the Auto Scaling group.

• Question 522:

  A SysOps administrator is investigating issues on an Amazon RDS for MariaDB DB instance. The SysOps administrator wants to display the database load categorized by detailed wait events. How can the SysOps administrator accomplish this goal?

  A. Create an Amazon CloudWatch dashboard.
  B. Enable Amazon RDS Performance Insights.
  C. Enable and configure Enhanced Monitoring.
  D. Review the database logs in Amazon CloudWatch Logs.
  B. Enable Amazon RDS Performance Insights.

  ---

  https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_PerfInsights.UsingDashboard.AnalyzeDBLoad.html DB load grouped by waits and top SQL queries is the default Performance Insights dashboard view. This combination typically provides the most insight into performance issues. DB load grouped by waits shows if there are any resource or concurrency bottlenecks in the database. In this case, the SQL tab of the top load items table shows which queries are driving that load.

• Question 523:

  A company runs its applications on a large number of Amazon EC2 instances. A SysOps administrator must implement a solution to notify the operations team whenever an EC2 instance state changes. What is the MOST operationally efficient solution that meets these requirements?

  A. Create a script that captures instance state changes and publishes a notification to an Amazon Simple Notification Service (Amazon SNS) topic. Use AWS Systems Manager Run Command to run the script on all EC2 instances.
  B. Create an Amazon EventBridge event rule that captures EC2 instance state changes. Set an Amazon Simple Notification Service (Amazon SNS) topic as the target
  C. Create an Amazon EventBridge event rule that captures EC2 instance state changes. Set as the target an AWS Lambda function that publishes a notification to an Amazon Simple Notification Service (Amazon SNS) topic.
  D. Create an AWS Config custom rule that evaluates instance state changes with automatic remediation. Use the rule to invoke an AWS Lambda function that publishes a notification to an Amazon Simple Notification Service (Amazon SNS) topic.
  B. Create an Amazon EventBridge event rule that captures EC2 instance state changes. Set an Amazon Simple Notification Service (Amazon SNS) topic as the target

  ---

  instance stage change-> eventbridge rule-> target SNS topic

• Question 524:

  A SysOps administrator has Nocked public access to all company Amazon S3 buckets. The SysOps administrator wants to be notified when an S3 bucket becomes publicly readable in the future. What is the MOST operationally efficient way to meet this requirement?

  A. Create an AWS Lambda function that periodically checks the public access settings for each S3 bucket. Set up Amazon Simple Notification Service (Amazon SNS) to send notifications.
  B. Create a cron script that uses the S3 API to check the public access settings for each S3 bucket. Set up Amazon Simple Notification Service (Amazon SNS) to send notifications
  C. Enable S3 Event notified tons for each S3 bucket. Subscribe S3 Event Notifications to an Amazon Simple Notification Service (Amazon SNS) topic.
  D. Enable the s3-bucket-public-read-prohibited managed rule in AWS Config. Subscribe the AWS Config rule to an Amazon Simple Notification Service (Amazon SNS) topic.
  D. Enable the s3-bucket-public-read-prohibited managed rule in AWS Config. Subscribe the AWS Config rule to an Amazon Simple Notification Service (Amazon SNS) topic.

  ---

  Explanation Explanation/Reference:https://docs.aws.amazon.com/AmazonS3/latest/userguide/NotificationHowTo.html https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-public-read-prohibited.html

• Question 525:

  A company hosts a production MySQL database on an Amazon Aurora single-node DB cluster. The database is queried heavily for reporting purposes. The DB cluster is experiencing periods of performance degradation because of high CPU utilization and maximum connections errors. A SysOps administrator needs to improve the stability of the database.

  Which solution will meet these requirements?

  A. Create an Aurora Replica node. Create an Auto Scaling policy to scale replicas based on CPU utilization. Ensure that all reporting requests use the read-only connection string
  B. Create a second Aurora MySQL single-node DB cluster in a second Availability Zone. Ensure that all reporting requests use the connection string for this additional node
  C. Create an AWS Lambda function that caches reporting requests. Ensure that all reporting requests call the Lambda function
  D. Create a multi-node Amazon ElastiCache cluster. Ensure that all reporting requests use the ElastiCache cluster. Use the database if the data is not in the cache.
  A. Create an Aurora Replica node. Create an Auto Scaling policy to scale replicas based on CPU utilization. Ensure that all reporting requests use the read-only connection string

  ---

  Creating an Aurora Replica node will offload the reporting workload from the primary DB instance, reducing the CPU utilization and improving stability. By creating an Auto Scaling policy to scale replicas based on CPU utilization, you can automatically add or remove replicas as needed to handle the reporting workload. Ensuring that all reporting requests use the read-only connection string directs the reporting workload to the replica nodes, further reducing the load on the primary DB instance.

• Question 526:

  An Amazon EC2 instance needs to be reachable from the internet. The EC2 instance is in a subnet with the following route table:

  

  Which entry must a SysOps administrator add to the route table to meet this requirement?

  A. A route for 0.0.0.0/0 that points to a NAT gateway
  B. A route for 0.0.0.0/0 that points to an egress-only internet gateway
  C. A route for 0.0.0.0/0 that points to an internet gateway
  D. A route for 0.0.0.0/0 that points to an elastic network interface
  C. A route for 0.0.0.0/0 that points to an internet gateway

• Question 527:

  A company runs a web application on three Amazon EC2 instances behind an Application Load Balancer (ALB). The company notices that random periods of increased traffic cause a degradation in the application's performance. A SysOps administrator must scale the application to meet the increased traffic.

  Which solution meets these requirements?

  A. Create an Amazon CloudWatch alarm to monitor application latency and increase the size of each EC2 instance if the desired threshold is reached.
  B. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to monitor application latency and add an EC2 instance to the ALB if the desired threshold is reached.
  C. Deploy the application to an Auto Scaling group of EC2 instances with a target tracking scaling policy. Attach the ALB to the Auto Scaling group.
  D. Deploy the application to an Auto Scaling group of EC2 instances with a scheduled scaling policy. Attach the ALB to the Auto Scaling group.
  C. Deploy the application to an Auto Scaling group of EC2 instances with a target tracking scaling policy. Attach the ALB to the Auto Scaling group.

• Question 528:

  A SysOps administrator creates a new VPC that includes a public subnet and a private subnet. The SysOps administrator successfully launches 11 Amazon EC2 instances in the private subnet. The SysOps administrator attempts to launch one more EC2 instance in the same subnet. However, the SysOps administrator receives an error message that states that not enough free IP addresses are available.

  What must the SysOps administrator do to deploy more EC2 instances?

  A. Edit the private subnet to change the CIDR block to /27.
  B. Edit the private subnet to extend across a second Availability Zone.
  C. Assign additional Elastic IP addresses to the private subnet.
  D. Create a new private subnet to hold the required EC2 instances.
  D. Create a new private subnet to hold the required EC2 instances.

  ---

  Explanation Explanation/Reference:Add an additional IPv4 CIDR block as a secondary CIDR to your VPC. Create a new VPC with your preferred CIDR block and then migrate the resources from your old VPC to the new VPC (if applicable).

• Question 529:

  A company runs a high performance computing (HPC) application on an Amazon EC2 instance. The company needs to scale this architecture to two or more EC2 instances. The EC2 instances will need to communicate with each other at high speeds with low latency to support the application.

  The company wants to ensure that the network performance can support the required communication between the EC2 instances What should a SysOps administrator do to meet these requirements?

  A. Create a cluster placement group. Back up the existing EC2 instance to an Amazon Machine Image (AMI). Restore the EC2 instance from the AMI into the placement group. Launch the additional EC2 instances into the placement group.
  B. Back up the existing EC2 instance to an Amazon Machine Image (AMI). Create a launch template from the existing EC2 instance by specifying the AMI. Create an Auto Scaling group and configure the desired instance count.
  C. Create a Network Load Balancer (NLB) and a target group. Launch the new EC2 instances and register them with the target group. Register the existing EC2 instance with the target group. Pass all application traffic through the NLB.
  D. Back up the existing EC2 instance to an Amazon Machine Image (AMI). Create additional clones of the EC2 instance from the AMI in the same Availability Zone where the existing EC2 instance is located.
  A. Create a cluster placement group. Back up the existing EC2 instance to an Amazon Machine Image (AMI). Restore the EC2 instance from the AMI into the placement group. Launch the additional EC2 instances into the placement group.

  ---

  low latency = Cluster Placement Group

• Question 530:

  A company has its accounts in an organization in AWS Organizations. The company deploys its first service control policy (SCP) to an organizational unit (OU). The SCP denies the iam:CreateUser action. Only the newly created SCP is attached to the OU.

  After deployment of the SCP, users in the OU who assume a developer IAM role can no longer launch Amazon EC2 instances.

  Which action should a SysOps administrator take to resolve this issue?

  A. Add a permissions boundary to the developer IAM role to explicitly allow the ec2:RunInstances action.
  B. Update the SCP to include an additional statement that allows all actions on all resources.
  C. Update the SCP to include an additional statement that allows the ec2:RunInstances action.
  D. Update the SCP by changing the denied iam:CreateUser action to iam:Create*.
  C. Update the SCP to include an additional statement that allows the ec2:RunInstances action.