aiotestking uk

AWS-SysOps Exam Questions - Online Test


AWS-SysOps Premium VCE File

Learn More 100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours

Q1. - (Topic 3) 

The compliance department within your multi-national organization requires that all data for your customers that reside in the European Union (EU) must not leave the EU and also 

data for customers that reside in the US must not leave the US without explicit authorization. 

What must you do to comply with this requirement for a web based profile management application running on EC2? 

A. Run EC2 instances in multiple AWS Availability Zones in single Region and leverage an Elastic Load Balancer with session stickiness to route traffic to the appropriate zone to create their profile 

B. Run EC2 instances in multiple Regions and leverage Route 53's Latency Based Routing capabilities to route traffic to the appropriate region to create their profile 

C. Run EC2 instances in multiple Regions and leverage a third party data provider to determine if a user needs to be redirect to the appropriate region to create their profile 

D. Run EC2 instances in multiple AWS Availability Zones in a single Region and leverage a third party data provider to determine if a user needs to be redirect to the appropriate zone to create their profile 

Answer:

Q2. - (Topic 1) 

You use S3 to store critical data for your company Several users within your group currently have lull permissions to your S3 buckets You need to come up with a solution mat does not impact your users and also protect against the accidental deletion of objects. 

Which two options will address this issue? Choose 2 answers 

A. Enable versioning on your S3 Buckets 

B. Configure your S3 Buckets with MFA delete 

C. Create a Bucket policy and only allow read only permissions to all users at the bucket level 

D. Enable object life cycle policies and configure the data older than 3 months to be archived in Glacier 

Answer: A,B 

Q3. - (Topic 2) 

An organization has created 50 IAM users. The organization wants that each user can change their password but cannot change their access keys. How can the organization achieve this? 

A. The organization has to create a special password policy and attach it to each user 

B. The root account owner has to use CLI which forces each IAM user to change their password on first login 

C. By default each IAM user can modify their passwords 

D. The root account owner can set the policy from the IAM console under the password policy screen 

Answer:

Explanation: 

With AWS IAM, organizations can use the AWS Management Console to display, create, change or delete a password policy. As a part of managing the password policy, the user can enable all users to manage their own passwords. If the user has selected the option which allows the IAM users to modify their password, he does not need to set a separate policy for the users. This option in the AWS console allows changing only the password. 

Q4. - (Topic 3) 

A user has launched an EC2 Windows instance from an instance store backed AMI. The user has also set the Instance initiated shutdown behavior to stop. What will happen when the user shuts down the OS? 

A. It will not allow the user to shutdown the OS when the shutdown behaviour is set to Stop 

B. It is not possible to set the termination behaviour to Stop for an Instance store backed AMI instance 

C. The instance will stay running but the OS will be shutdown 

D. The instance will be terminated 

Answer:

Explanation: 

When the EC2 instance is launched from an instance store backed AMI, it will not allow the user to configure the shutdown behaviour to “Stop”. It gives a warning that the instance does not have the EBS root volume. 

Q5. - (Topic 3) 

A user has granted read/write permission of his S3 bucket using ACL. Which of the below mentioned options is a valid ID to grant permission to other AWS accounts (grantee. using ACL? 

A. IAM User ID 

B. S3 Secure ID 

C. Access ID 

D. Canonical user ID 

Answer:

Explanation: 

An S3 bucket ACL grantee can be an AWS account or one of the predefined Amazon S3 groups. The user can grant permission to an AWS account by the email address of that account or by the canonical user ID. If the user provides an email in the grant request, Amazon S3 finds the canonical user ID for that account and adds it to the ACL. The resulting ACL will always contain the canonical user ID for the AWS account, and not the AWS account's email address. 

Q6. - (Topic 1) 

You have been asked to propose a multi-region deployment of a web-facing application where a controlled portion of your traffic is being processed by an alternate region. 

Which configuration would achieve that goal? 

A. Route53 record sets with weighted routing policy 

B. Route53 record sets with latency based routing policy 

C. Auto Scaling with scheduled scaling actions set 

D. Elastic Load Balancing with health checks enabled 

Answer:

Explanation: Reference: 

http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/TerminologyandKeyConcepts.html 

Q7. - (Topic 1) 

Your company Is moving towards tracking web page users with a small tracking 

Image loaded on each page Currently you are serving this image out of US-East, but are starting to get concerned about the time It takes to load the image for users on the west coast. 

What are the two best ways to speed up serving this image? 

Choose 2 answers 

A. Use Route 53's Latency Based Routing and serve the image out of US-West-2 as well as US-East-1 

B. Serve the image out through CloudFront 

C. Serve the image out of S3 so that it isn't being served oft of your web application tier 

D. Use EBS PIOPs to serve the image faster out of your EC2 instances 

Answer: A,D 

Q8. - (Topic 3) 

A sysadmin has created the below mentioned policy on an S3 bucket named cloudacademy. The bucket has both AWS.jpg and index.html objects. What does this policy define? 

"Statement": [{ 

"Sid": "Stmt1388811069831", 

"Effect": "Allow", 

"Principal": { "AWS": "*"}, 

"Action": [ "s3:GetObjectAcl", "s3:ListBucket", "s3:GetObject"], 

"Resource": [ "arn:aws:s3:::cloudacademy/*.jpg] 

}] 

A. It will make all the objects as well as the bucket public 

B. It will throw an error for the wrong action and does not allow to save the policy 

C. It will make the AWS.jpg object as public 

D. It will make the AWS.jpg as well as the cloudacademy bucket as public 

Answer:

Q9. - (Topic 2) 

A user wants to disable connection draining on an existing ELB. Which of the below mentioned statements helps the user disable connection draining on the ELB? 

A. The user can only disable connection draining from CLI 

B. It is not possible to disable the connection draining feature once enabled 

C. The user can disable the connection draining feature from EC2 -> ELB console or from CLI 

D. The user needs to stop all instances before disabling connection draining 

Answer:

Explanation: 

The Elastic Load Balancer connection draining feature causes the load balancer to stop sending new requests to the back-end instances when the instances are deregistering or become unhealthy, while ensuring that inflight requests continue to be served. The user can enable or disable connection draining from the AWS EC2 console -> ELB or using CLI. 

Q10. - (Topic 3) 

A user has configured ELB with Auto Scaling. The user suspended the Auto Scaling terminate process only for a while. What will happen to the availability zone rebalancing process (AZRebalance. during this period? 

A. Auto Scaling will not launch or terminate any instances 

B. Auto Scaling will allow the instances to grow more than the maximum size 

C. Auto Scaling will keep launching instances till the maximum instance size 

D. It is not possible to suspend the terminate process while keeping the launch active 

Answer:

Explanation: 

Auto Scaling performs various processes, such as Launch, Terminate, Availability Zone Rebalance (AZRebalance. etc. The AZRebalance process type seeks to maintain a balanced number of instances across Availability Zones within a region. If the user suspends the Terminate process, the AZRebalance process can cause the Auto Scaling group to grow up to ten percent larger than the maximum size. This is because Auto Scaling allows groups to temporarily grow larger than the maximum size during rebalancing activities. If Auto Scaling cannot terminate instances, the Auto Scaling group could remain up to ten percent larger than the maximum size until the user resumes the Terminate process type.