|
AWS Certified SysOps Administrator Exam Practice Questions Page6(Dump)
Question No:-51
|
Your company Is moving towards tracking web page users with a small tracking
Image loaded on each page Currently you are serving this image out of US-East, but are starting to get concerned about the time It takes to load the image for users on the west coast.
What are the two best ways to speed up serving this image? (Choose two.)
1. Use Route 53's Latency Based Routing and serve the image out of US-West-2 as well as US-East-1
2. Serve the image out through CloudFront
3. Serve the image out of S3 so that it isn't being served oft of your web application tier
4. Use EBS PIOPs to serve the image faster out of your EC2 instances
Question No:-52
|
If you want to launch Amazon Elastic Compute Cloud (EC2) Instances and assign each Instance a predetermined private IP address you should:
1. Assign a group or sequential Elastic IP address to the instances
2. Launch the instances in a Placement Group
3. Launch the instances in the Amazon virtual Private Cloud (VPC).
4. Use standard EC2 instances since each instance gets a private Domain Name Service (DNS) already
5. Launch the Instance from a private Amazon Machine image (Mil)
|
|
Question No:-53
|
A customer has a web application that uses cookie Based sessions to track logged in users. It is deployed on AWS using ELB and Auto Scaling. The customer observes that when load increases. Auto Scaling launches new Instances but the load on the easting Instances does not decrease, causing all existing users have a sluggish experience.
Which two answer choices independently describe a behavior that could be the cause of the sluggish user experience? (Choose two.)
1. ELB's normal behavior sends requests from the same user to the same backend instance
2. ELB's behavior when sticky sessions are enabled causes ELB to send requests in the same session to the same backend instance
3. A faulty browser is not honoring the TTL of the ELB DNS name
4. The web application uses long polling such as comet or websockets. Thereby keeping a connection open to a web server tor a long time
|
Question No:-54
|
How can the domain's zone apex for example "myzoneapexdomain com" be pointed towards an Elastic Load Balancer?
1. By using an AAAA record
2. By using an A record
3. By using an Amazon Route 53 CNAME record
4. By using an Amazon Route 53 Alias record
Answer:-4. By using an Amazon Route 53 Alias record
Note:-
Alias resource record sets are virtual records that work like CNAME records. But they differ from CNAME records in that they are not visible to resolvers.
Resolvers only see the A record and the resulting IP address of the target record. As such, unlike CNAME records, alias resource record sets are available to configure a zone apex (also known as a root domain or naked domain) in a dynamic environment.
Reference:-
http://docs.aws.amazon.com/govcloud-us/latest/UserGuide/setting-up-route53-zoneapex-elb.html
|
|
Question No:-55
|
An organization has created 5 IAM users. The organization wants to give them the same login ID but different passwords. How can the organization achieve this?
1. The organization should create a separate login ID but give the IAM users the same alias so that each one can login with their alias
2. The organization should create each user in a separate region so that they have their own URL to login
3. It is not possible to have the same login ID for multiple IAM users of the same account
4. The organization should create various groups and add each user with the same login ID to different groups. The user can login with their own group ID
|
Answer:-3. It is not possible to have the same login ID for multiple IAM users of the same account
Note:-
AWS Identity and Access Management is a web service which allows organizations to manage users and user permissions for various AWS services. Whenever the organization is creating an IAM user, there should be a unique ID for each user. It is not possible to have the same login ID for multiple users. The names of users, groups, roles, instance profiles must be alphanumeric, including the following common characters: plus (+., equal (=., comma (,., period (.., at (@., and dash (-..)
|
|
Question No:-56
|
A user is planning to evaluate AWS for their internal use. The user does not want to incur any charge on his account during the evaluation. Which of the below mentioned AWS services would incur a charge if used?
1. AWS S3 with 1 GB of storage
2. AWS micro instance running 24 hours daily
3. AWS ELB running 24 hours a day
4. AWS PIOPS volume of 10 GB size
|
Answer:-4. AWS PIOPS volume of 10 GB size
Note:-
AWS is introducing a free usage tier for one year to help the new AWS customers get started in Cloud. The free tier can be used for anything that the user wants to run in the Cloud. AWS offers a handful of AWS services as a part of this which includes 750 hours of free micro instances and 750 hours of ELB. It includes the AWS S3 of 5 GB and AWS EBS general purpose volume up to 30 GB. PIOPS is not part of free usage tier.
|
|
Question No:-57
|
A user has developed an application which is required to send the data to a NoSQL database. The user wants to decouple the data sending such that the application keeps processing and sending data but does not wait for an acknowledgement of DB. Which of the below mentioned applications helps in this scenario?
1. AWS Simple Notification Service
2. AWS Simple Workflow
3. AWS Simple Queue Service
4. AWS Simple Query Service
|
Answer:-3. AWS Simple Queue Service
Note:-
Amazon Simple Queue Service (SQS. is a fast, reliable, scalable, and fully managed message queuing service. SQS provides a simple and cost-effective way to decouple the components of an application. In this case, the user can use AWS SQS to send messages which are received from an application and sent to DB.
The application can continue processing data without waiting for any acknowledgement from DB. The user can use SQS to transmit any volume of data without losing messages or requiring other services to always be available.
|
|
Question No:-58
|
An organization has created 50 IAM users. The organization has introduced a new policy which will change the access of an IAM user. How can the organization implement this effectively so that there is no need to apply the policy at the individual user level?
1. Use the IAM groups and add users as per their role to different groups and apply policy to group
2. The user can create a policy and apply it to multiple users in a single go with the AWS CLI
3. Add each user to the IAM role as per their organization role to achieve effective policy setup
4. Use the IAM role and implement access at the role level
|
Answer:-1. Use the IAM groups and add users as per their role to different groups and apply policy to group
Note:-
With AWS IAM, a group is a collection of IAM users. A group allows the user to specify permissions for a collection of users, which can make it easier to manage the permissions for those users. A group helps an organization manage access in a better way; instead of applying at the individual level, the organization can apply at the group level which is applicable to all the users who are a part of that group.
|
|
Question No:-59
|
A user is planning to use AWS Cloud formation for his automatic deployment requirements. Which of the below mentioned components are required as a part of the template?
1. Parameters
2. Outputs
3. Template version
4. Resources
|
Answer:-4. Resources
Note:-
AWS Cloud formation is an application management tool which provides application modelling, deployment, configuration, management and related activities. The template is a JSON-format, text-based file that describes all the AWS resources required to deploy and run an application. It can have option fields, such as Template Parameters, Output, Data tables, and Template file format version. The only mandatory value is Resource. The user can define the AWS services which will be used/ created by this template inside the Resource section
|
|
Question No:-60
|
A user has recently started using EC2. The user launched one EC2 instance in the default subnet in EC2-VPC Which of the below mentioned options is not attached or available with the EC2 instance when it is launched?
1. Public IP address
2. Internet gateway
3. Elastic IP
4. Private IP address
|
Answer:-3. Elastic IP
Note:-
A Virtual Private Cloud (VPC. is a virtual network dedicated to a user's AWS account. A subnet is a range of IP addresses in the VPC. The user can launch the AWS resources into a subnet. There are two supported platforms into which a user can launch instances: EC2-Classic and EC2-VPC (default subnet. A default VPC has all the benefits of EC2-VPC and the ease of use of EC2-Classic. Each instance that the user launches into a default subnet has a private IP address and a public IP address. These instances can communicate with the internet through an internet gateway. An internet gateway enables the EC2 instances to connect to the internet through the Amazon EC2 network edge.
|
|
|
|
|
|