aiotestking uk

AWS-SysOps Exam Questions - Online Test


AWS-SysOps Premium VCE File

Learn More 100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours

Q1. - (Topic 2) 

A sys admin is trying to understand the Auto Scaling activities. Which of the below mentioned processes is not performed by Auto Scaling? 

A. Reboot Instance 

B. Schedule Actions 

C. Replace Unhealthy 

D. Availability Zone Balancing 

Answer:

Explanation: 

There are two primary types of Auto Scaling processes: Launch and Terminate, which launch or terminat 

instances, respectively. Some other actions performed by Auto Scaling are: 

AddToLoadbalancer, 

AlarmNotification, HealthCheck, AZRebalance, ReplaceUnHealthy, and ScheduledActions. 

Q2. - (Topic 2) 

An application is generating a log file every 5 minutes. The log file is not critical but may be required only for verification in case of some major issue. The file should be accessible over the internet whenever required. Which of the below mentioned options is a best possible storage solution for it? 

A. AWS S3 

B. AWS Glacier 

C. AWS RDS 

D. AWS RRS 

Answer:

Explanation: 

Amazon S3 stores objects according to their storage class. There are three major storage classes: Standard, Reduced Redundancy Storage and Glacier. Standard is for AWS S3 and provides very high durability. However, the costs are a little higher. Glacier is for archival and the files are not available over the internet. Reduced Redundancy Storage is for less critical files. Reduced Redundancy is little cheaper as it provides less durability in comparison to S3. In this case since the log files are not mission critical files, RRS will be a better option. 

Q3. - (Topic 1) 

A media company produces new video files on-premises every day with a total size of around 100GBS after compression All files have a size of 1 -2 GB and need to be uploaded to Amazon S3 every night in a fixed time window between 3am and 5am Current upload takes almost 3 hours, although less than half of the available bandwidth is used. 

What step(s) would ensure that the file uploads are able to complete in the allotted time window? 

A. Increase your network bandwidth to provide faster throughput to S3 

B. Upload the files in parallel to S3 

C. Pack all files into a single archive, upload it to S3, then extract the files in AWS 

D. Use AWS Import/Export to transfer the video files 

Answer:

Explanation: Reference: 

http://aws.amazon.com/importexport/faqs/ 

Q4. - (Topic 3) 

A user has deployed an application on an EBS backed EC2 instance. For a better performance of application, it requires dedicated EC2 to EBS traffic. How can the user achieve this? 

A. Launch the EC2 instance as EBS dedicated with PIOPS EBS 

B. Launch the EC2 instance as EBS enhanced with PIOPS EBS 

C. Launch the EC2 instance as EBS dedicated with PIOPS EBS 

D. Launch the EC2 instance as EBS optimized with PIOPS EBS 

Answer:

Explanation: 

Any application which has performance sensitive workloads and requires minimal variability with dedicated EC2 to EBS traffic should use provisioned IOPS EBS volumes, which are attached to an EBS-optimized EC2 instance or it should use an instance with 10 Gigabit network connectivity. Launching an instance that is EBSoptimized provides the user with a dedicated connection between the EC2 instance and the EBS volume. 

Q5. - (Topic 2) 

A user has setup an RDS DB with Oracle. The user wants to get notifications when someone modifies the 

security group of that DB. How can the user configure that? 

A. It is not possible to get the notifications on a change in the security group 

B. Configure SNS to monitor security group changes 

C. Configure event notification on the DB security group 

D. Configure the CloudWatch alarm on the DB for a change in the security group 

Answer:

Explanation: 

Amazon RDS uses the Amazon Simple Notification Service to provide a notification when an Amazon RDS event occurs. These events can be configured for source categories, such as DB instance, DB security group, DB snapshot and DB parameter group. If the user is subscribed to a Configuration Change category for a DB security group, he will be notified when the DB security group is changed. 

Q6. - (Topic 3) 

A user is planning to use AWS services for his web application. If the user is trying to set up his own billing management system for AWS, how can he configure it? 

A. Set up programmatic billing access. Download and parse the bill as per the requirement 

B. It is not possible for the user to create his own billing management service with AWS 

C. Enable the AWS CloudWatch alarm which will provide APIs to download the alarm data 

D. Use AWS billing APIs to download the usage report of each service from the AWS billing console 

Answer:

Explanation: 

AWS provides an option to have programmatic access to billing. Programmatic Billing Access leverages the existing Amazon Simple Storage Service (Amazon S3. APIs. Thus, the user can build applications that reference his billing data from a CSV (comma-separated value. file stored in an Amazon S3 bucket. AWS will upload the bill to the bucket every few hours and the user can download the bill CSV from the bucket, parse itand create a billing system as per the requirement. 

Q7. - (Topic 3) 

An AWS root account owner is trying to create a policy to access RDS. Which of the below mentioned 

statements is true with respect to the above information? 

A. Create a policy which allows the users to access RDS and apply it to the RDS instances 

B. The user cannot access the RDS database if he is not assigned the correct IAM policy 

C. The root account owner should create a policy for the IAM user and give him access to the RDS services 

D. The policy should be created for the user and provide access for RDS 

Answer:

Explanation: 

AWS Identity and Access Management is a web service which allows organizations to manage users and user permissions for various AWS services. If the account owner wants to create a policy for RDS, the owner has to create an IAM user and define the policy which entitles the IAM user with various RDS services such as Launch Instance, Manage security group, Manage parameter group etc. 

Q8. - (Topic 1) 

When preparing for a compliance assessment of your system built inside of AWS. what are three best-practices for you to prepare for an audit? 

Choose 3 answers 

A. Gather evidence of your IT operational controls 

B. Request and obtain applicable third-party audited AWS compliance reports and certifications 

C. Request and obtain a compliance and security tour of an AWS data center for a pre-assessment security review 

D. Request and obtain approval from AWS to perform relevant network scans and in-depth penetration tests of your system's Instances and endpoints 

E. Schedule meetings with AWS's third-party auditors to provide evidence of AWS compliance that maps to your control objectives 

Answer: A,B,D 

Q9. - (Topic 3) 

A user has launched 5 instances in EC2-CLASSIC and attached 5 elastic IPs to the five different instances in the US East region. The user is creating a VPC in the same region. The user wants to assign an elastic IP to the VPC instance. How can the user achieve this? 

A. The user has to request AWS to increase the number of elastic IPs associated with the account 

B. AWS allows 10 EC2 Classic IPs per region; so it will allow to allocate new Elastic IPs to the same region 

C. The AWS will not allow to create a new elastic IP in VPC; it will throw an error 

D. The user can allocate a new IP address in VPC as it has a different limit than EC2 

Answer:

Explanation: Section: (none) 

A Virtual Private Cloud (VPC. is a virtual network dedicated to the user’s AWS account. A user can create a subnet with VPC and launch instances inside that subnet. A user can have 5 IP addresses per region with EC2 Classic. The user can have 5 separate IPs with VPC in the same region as it has a separate limit than EC2 Classic. 

Q10. - (Topic 3) 

A user has enabled session stickiness with ELB. The user does not want ELB to manage the cookie; instead he wants the application to manage the cookie. What will happen when the server instance, which is bound to a cookie, crashes? 

A. The response will have a cookie but stickiness will be deleted 

B. The session will not be sticky until a new cookie is inserted 

C. ELB will throw an error due to cookie unavailability D. The session will be sticky and ELB will route requests to another server as ELB keeps replicating the Cookie 

Answer:

Explanation: 

With Elastic Load Balancer, if the admin has enabled a sticky session with application controlled stickiness, the load balancer uses a special cookie generated by the application to associate the session with the original server which handles the request. ELB follows the lifetime of the application-generated cookie corresponding to the cookie name specified in the ELB policy configuration. The load balancer only inserts a new stickiness cookie if the application response includes a new application cookie. The load balancer stickiness cookie does not update with each request. If the application cookie is explicitly removed or expires, the session stops being sticky until a new application cookie is issued.