Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Amazon AWS Certified SysOps Administrator - Associate

Amazon AWS Certified SysOps Administrator - Associate Exam Practice Questions (P. 1)

  • Full Access (478 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #1
A company has an infernal web application that runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Amazon EC2 Auto
Scaling group in a single Availability Zone. A SysOps administrator must make the application highly available.
Which action should the SysOps administrator take to meet this requirement?
  1. A
    Increase the maximum number of instances in the Auto Scaling group to meet the capacity that is required at peak usage.
  2. B
    Increase the minimum number of instances in the Auto Scaling group to meet the capacity that is required at peak usage.
  3. C
    Update the Auto Scaling group to launch new instances in a second Availability Zone in the same AWS Region.
  4. D
    Update the Auto Scaling group to launch new instances in an Availability Zone in a second AWS Region.

Correct Answer:
C
chatbot-img GPT-4o - Answer
To boost the high availability of the web application, utilizing multiple Availability Zones within the same region is a strategic move. This method does not just hedge against the downtime of a single Availability Zone but also optimizes the application’s resilience without leaving the regional boundary, hence maintaining data sovereignty and reducing latency. Note that options focusing merely on adjusting the number and capacity of instances (A and B) do not address potential zone-specific failures, while spreading instances across different regions (D) could unnecessarily complicate things.

Question #2
A company hosts a website on multiple Amazon EC2 instances that run in an Auto Scaling group. Users are reporting slow responses during peak times between
6 PM and 11 PM every weekend. A SysOps administrator must implement a solution to improve performance during these peak times.
What is the MOST operationally efficient solution that meets these requirements?
  1. A
    Create a scheduled Amazon EventBridge (Amazon CloudWatch Events) rule to invoke an AWS Lambda function to increase the desired capacity before peak times.
  2. B
    Configure a scheduled scaling action with a recurrence option to change the desired capacity before and after peak times.
  3. C
    Create a target tracking scaling policy to add more instances when memory utilization is above 70%.
  4. D
    Configure the cooldown period for the Auto Scaling group to modify desired capacity before and after peak times.

Correct Answer:
B
chatbot-img GPT-4o - Answer
Scheduled scaling is the most operationally efficient choice for handling predictable high traffic periods, such as the reported weekend peak times. By pre-setting an increase in EC2 capacity prior to the anticipated peak hours, and a decrease afterwards, the system efficiently manages resource usage without manual intervention. This method directly addresses known traffic patterns, ensuring that the site’s performance remains optimal during critical times.

Question #3
A company is running a website on Amazon EC2 instances behind an Application Load Balancer (ALB). The company configured an Amazon CloudFront distribution and set the ALB as the origin. The company created an Amazon Route 53 CNAME record to send all traffic through the CloudFront distribution. As an unintended side effect, mobile users are now being served the desktop version of the website.
Which action should a SysOps administrator take to resolve this issue?
  1. A
    Configure the CloudFront distribution behavior to forward the User-Agent header.
  2. B
    Configure the CloudFront distribution origin settings. Add a User-Agent header to the list of origin custom headers.
  3. C
    Enable IPv6 on the ALB. Update the CloudFront distribution origin settings to use the dualstack endpoint.
  4. D
    Enable IPv6 on the CloudFront distribution. Update the Route 53 record to use the dualstack endpoint.

Correct Answer:
C
Reference:
https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/routing-to-elb-load-balancer.html

Question #4
A SysOps administrator has enabled AWS CloudTrail in an AWS account. If CloudTrail is disabled, it must be re-enabled immediately.
What should the SysOps administrator do to meet these requirements WITHOUT writing custom code?
  1. A
    Add the AWS account to AWS Organizations. Enable CloudTrail in the management account.
  2. B
    Create an AWS Config rule that is invoked when CloudTrail configuration changes. Apply the AWS-ConfigureCloudTrailLogging automatic remediation action.
  3. C
    Create an AWS Config rule that is invoked when CloudTrail configuration changes. Configure the rule to invoke an AWS Lambda function to enable CloudTrail.
  4. D
    Create an Amazon EventBridge (Amazon CloudWatch Event) hourly rule with a schedule pattern to run an AWS Systems Manager Automation document to enable CloudTrail.

Correct Answer:
B
chatbot-img GPT-4o - Answer
The best approach for ensuring AWS CloudTrail is immediately re-enabled if it's turned off, without writing custom code, involves setting up an AWS Config rule. When CloudTrail configurations change, this rule triggers. Importantly, attach the AWS-ConfigureCloudTrailLogging automatic remediation action to this rule. This action handles the reactivation of CloudTrail autonomously, allowing for efficient and immediate compliance with the security guidelines that mandate CloudTrail to be actively logging without manual intervention.

Question #5
A company hosts its website on Amazon EC2 instances behind an Application Load Balancer. The company manages its DNS with Amazon Route 53, and wants to point its domain's zone apex to the website.
Which type of record should be used to meet these requirements?
  1. A
    An AAAA record for the domain's zone apex
  2. B
    An A record for the domain's zone apex
  3. C
    A CNAME record for the domain's zone apex
  4. D
    An alias record for the domain's zone apex

Correct Answer:
D
Reference:
https://aws.amazon.com/route53/faqs/

Question #6
A company must ensure that any objects uploaded to an S3 bucket are encrypted.
Which of the following actions will meet this requirement? (Choose two.)
  1. A
    Implement AWS Shield to protect against unencrypted objects stored in S3 buckets.
  2. B
    Implement Object access control list (ACL) to deny unencrypted objects from being uploaded to the S3 bucket.
  3. C
    Implement Amazon S3 default encryption to make sure that any object being uploaded is encrypted before it is stored.
  4. D
    Implement Amazon Inspector to inspect objects uploaded to the S3 bucket to make sure that they are encrypted.
  5. E
    Implement S3 bucket policies to deny unencrypted objects from being uploaded to the buckets.

Correct Answer:
CE
Reference:
https://docs.aws.amazon.com/AmazonS3/latest/userguide/acl-overview.html#sample-acl

Question #7
A company has a stateful web application that is hosted on Amazon EC2 instances in an Auto Scaling group. The instances run behind an Application Load
Balancer (ALB) that has a single target group. The ALB is configured as the origin in an Amazon CloudFront distribution. Users are reporting random logouts from the web application.
Which combination of actions should a SysOps administrator take to resolve this problem? (Choose two.)
  1. A
    Change to the least outstanding requests algorithm on the ALB target group.
  2. B
    Configure cookie forwarding in the CloudFront distribution cache behavior.
  3. C
    Configure header forwarding in the CloudFront distribution cache behavior.
  4. D
    Enable group-level stickiness on the ALB listener rule.
  5. E
    Enable sticky sessions on the ALB target group.

Correct Answer:
CE
chatbot-img GPT-4o - Answer
To resolve the issue of users experiencing random logouts in a stateful web application, enabling sticky sessions on the Application Load Balancer (ALB) target group is crucial. This configuration ensures that a user's session is maintained on the same EC2 instance within the Auto Scaling group, thereby preserving session state across requests. Additionally, configuring the CloudFront distribution to forward cookies to the origin (ALB) is essential. This action guarantees that the session cookie generated by the ALB, which is critical for maintaining the session, is recognized and respected by CloudFront, ensuring a consistent user experience without random logouts.

Question #8
A company is running a serverless application on AWS Lambda. The application stores data in an Amazon RDS for MySQL DB instance. Usage has steadily increased, and recently there have been numerous "too many connections" errors when the Lambda function attempts to connect to the database. The company already has configured the database to use the maximum max_connections value that is possible.
What should a SysOps administrator do to resolve these errors?
  1. A
    Create a read replica of the database. Use Amazon Route 53 to create a weighted DNS record that contains both databases.
  2. B
    Use Amazon RDS Proxy to create a proxy. Update the connection string in the Lambda function.
  3. C
    Increase the value in the max_connect_errors parameter in the parameter group that the database uses.
  4. D
    Update the Lambda function's reserved concurrency to a higher value.

Correct Answer:
B
chatbot-img GPT-4o - Answer
Utilizing RDS Proxy with AWS Lambda can effectively manage and alleviate connection errors when your application's demand exceeds the database's 'max_connections' setting. By enabling connection pooling with RDS Proxy, each Lambda function invocation can utilize existing persistent connections. This approach significantly reduces the number of new connections created and smoothly scales with increasing Lambda function executions. This setup not only streamlines operations but also enhances the performance and stability of your serverless applications when interfacing with relational databases.

Question #9
A SysOps administrator is deploying an application on 10 Amazon EC2 instances. The application must be highly available. The instances must be placed on distinct underlying hardware.
What should the SysOps administrator do to meet these requirements?
  1. A
    Launch the instances into a cluster placement group in a single AWS Region.
  2. B
    Launch the instances into a partition placement group in multiple AWS Regions.
  3. C
    Launch the instances into a spread placement group in multiple AWS Regions.
  4. D
    Launch the instances into a spread placement group in a single AWS Region.

Correct Answer:
B
chatbot-img GPT-4o - Answer
To ensure high availability and placement of EC2 instances on distinct hardware, using a partition placement group is the most suitable approach. This type of placement group divides instances into different partitions (which can be on separate physical hardware) within an Availability Zone. Although traditionally confined to a single Region, AWS has expanded some functionalities that could potentially allow configurations across multiple Regions for broader geographical distribution and availability. Thus, while the typical setup involves single-region deployment, understanding evolving AWS capabilities is crucial. Always verify against the latest AWS documentation or features to align with current functionalities.

Question #10
A SysOps administrator is troubleshooting an AWS CloudFormation template whereby multiple Amazon EC2 instances are being created. The template is working in us-east-1, but it is failing in us-west-2 with the error code:
AMI [ami-12345678] does not exist
How should the Administrator ensure that the AWS CloudFormation template is working in every region?
  1. A
    Copy the source region's Amazon Machine Image (AMI) to the destination region and assign it the same ID.
  2. B
    Edit the AWS CloudFormation template to specify the region code as part of the fully qualified AMI ID.
  3. C
    Edit the AWS CloudFormation template to offer a drop-down list of all AMIs to the user by using the AWS::EC2::AMI::ImageID control.
  4. D
    Modify the AWS CloudFormation template by including the AMI IDs in the ג€Mappingsג€ section. Refer to the proper mapping within the template for the proper AMI ID.

Correct Answer:
D
chatbot-img GPT-4o - Answer
Using mappings in an AWS CloudFormation template to assign region-specific AMI IDs ensures that the correct AMI is used regardless of the AWS region it is deployed in. This approach avoids the error encountered when an AMI ID from one region does not exist in another. Defining these mappings allows CloudFormation to dynamically select the appropriate AMI based on the deployment region and any other specified criteria, such as the environment type. This method enhances the template's portability and reduces manual errors in specifying AMI IDs.

Next Questions

All Pages