Ace Amazon AWS-SysOps Certification with Actual Questions Apr 29, 2023 Updated [Q42-Q66]

Ace Amazon AWS-SysOps Certification with Actual Questions Apr 29, 2023 Updated

2023 The Most Effective AWS-SysOps with 991 Questions Answers

NEW QUESTION 42
A user has launched an EBS backed EC2 instance. What will be the difference while performing the restart or stop/start options on that instance?

• A. For restart it charges extra only once, while for every stop/start it will be charged as a separate hour
• B. Every restart is charged by AWS as a separate hour, while multiple start/stop actions during a single hour will be counted as a single hour
• C. For restart it does not charge for an extra hour, while every stop/start it will be charged as a separate hour
• D. For every restart or start/stop it will be charged as a separate hour

Answer: C

Explanation:
For an EC2 instance launched with an EBS backed AMI, each time the instance state is changed from stop to start/ running, AWS charges a full instance hour, even if these transitions happen multiple times within a single hour. Anyway, rebooting an instance AWS does not charge a new instance billing hour.

 

NEW QUESTION 43
A SysOps Administrator management a fleet of instance store-backed Amazon Linux EC2 instances. The SSH key used to access these instances has been lost. How can SSH access be restored?

• A. Create a new SSH key and apply the new key to the running EC2 instances
• B. Contact AWS Support lo retrieve a backup of the SSH key after authentication
• C. Create a new SSH key slop the EC2 instances apply the new key, and restart the EC2 instances
• D. Launch a new fleet of EC2 instances wilt a newly created SSH key

Answer: D

Explanation:
As per your explanation new instace will be created and no option (A,B,C) meet with it.
If you lost your key pair, this automation will create a password-enabled AMI that you can use to launch a new EC2 instance with a key pair you own (Windows).

 

NEW QUESTION 44
The Statement element, of an AWS IAM policy, contains an array of individual statements. Each individual statement is a(n) ______ block enclosed in braces { }.

• A. AJAX
• B. JavaScript
• C. jQuery
• D. JSON

Answer: D

Explanation:
Explanation
The Statement element, of an IAM policy, contains an array of individual statements. Each individual statement is a JSON block enclosed in braces { }.
References:

 

NEW QUESTION 45
A user has hosted an application on EC2 instances.
The EC2 instances are configured with ELB and Auto Scaling.
The application server session time out is 2 hours.
The user wants to configure connection draining to ensure that all in-flight requests are supported by ELB even though the instance is being deregistered.
What time out period should the user specify for connection draining?

• A. 1 hour
• B. 30 minutes
• C. 2 hours
• D. 5 minutes

Answer: A

Explanation:
When you enable connection draining, you can specify a maximum time for the load balancer to keep connections alive before reporting the instance as de-registered. The maximum timeout value can be set between 1 and 3,600 seconds (the default is 300 seconds). When the maximum time limit is reached, the load balancer forcibly closes connections to the de-registering instance.
http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/config-conn-drain.html

 

NEW QUESTION 46
A user has launched multiple EC2 instances for the purpose of development and testing in the same region.
The user wants to find the separate cost for the production and development instances. How can the user find the cost distribution?

• A. The user should download the activity report of the EC2 services as it has the instance ID wise data
• B. The user should use Cost Distribution Metadata and AWS detailed billing
• C. The user should use Cost Allocation Tags and AWS billing reports
• D. It is not possible to get the AWS cost usage data of single region instances separately

Answer: C

Explanation:
Explanation
Explanation:
AWS provides cost allocation tags to categorize and track the AWS costs. When the user applies tags to his AWS resources (such as Amazon EC2 instances or Amazon S3 buckets), AWS generates a cost allocation report as a comma-separated value (CSV file) with the usage and costs aggregated by those tags. The user can apply tags which represent business categories (such as cost centers, application names, or instance type
- Production/Dev. to organize usage costs across multiple services.

 

NEW QUESTION 47
An organization has configured Auto Scaling with ELB. There is a memory issue in the application which is causing CPU utilization to go above 90%. The higher CPU usage triggers an event for Auto Scaling as per the scaling policy. If the user wants to find the root cause inside the application without triggering a scaling activity, how can he achieve this?

• A. Suspend the scaling process until research is completed
• B. Delete Auto Scaling until research is completed
• C. It is not possible to find the root cause from that instance without triggering scaling
• D. Stop the scaling process until research is completed

Answer: A

Explanation:
Explanation/Reference:
Explanation:
Auto Scaling allows the user to suspend and then resume one or more of the Auto Scaling processes in the Auto Scaling group. This is very useful when the user wants to investigate a configuration problem or some other issue, such as a memory leak with the web application and then make changes to the application, without triggering the Auto Scaling process.

 

NEW QUESTION 48
A company uses Amazon Route 53 to manage the public DNS records for the domain example.com. The company deploys an Amazon CloudFront distribution to deliver static assets for a new corporate website. The company wants to create a subdomain that is named "static" and must route traffic for the subdomain to the CloudFront distribution.
How should a SysOps administrator create a new record for the subdomain in Route 53?
https://www.fast2test.com/AWS-SysOps-practice-test.html 10
Valid Fast2test AWS-SysOps Exam PDF Dumps - New AWS-SysOps Real Exam Questions

• A. Create a CNAME record. Enter static.cloudfront.net as the record name. Enter the CloudFront distribution's public IP address as the value.
• B. Create an A record. Enter static.example.com as the record name. Enter the CloudFront distribution's domain name as an alias target.
• C. Create an A record. Enter static.cloudfront.net as the record name. Enter the CloudFront distribution's ID as an alias target.
• D. Create a CNAME record. Enter static.example.com as the record name. Enter the CloudFront distribution's private IP address as the value.

Answer: B

 

NEW QUESTION 49
You are tasked with the migration of a highly trafficked Node JS application to AWS in order to comply with organizational standards Chef recipes must be used to configure the application servers that host this application and to support application lifecycle events.
Which deployment option meets these requirements while minimizing administrative burden?

• A. Create a new stack within Opsworks add the appropriate layers to the stack and deploy the application
• B. Launch a Mode JS server from a community AMI and manually deploy the application to the launched EC2 instance
• C. Launch and configure Chef Server on an EC2 instance and leverage the AWS CLI to launch application servers and configure those instances using Chef.
• D. Create a new application within Elastic Beanstalk and deploy this application to a new environment

Answer: D

Explanation:
Explanation/Reference:
Explanation:
http://docs.aws.amazon.com/elasticbeanstalk/latest/dg/using-features.deployment.html

 

NEW QUESTION 50
Which two AWS services provide out-of-the-box user configurable automatic backup-as-a-service and backup rotation options? (Choose two.)

• A. Amazon Red shift
• B. Amazon S3
• C. Amazon RDS
• D. Amazon EBS

Answer: A,C

Explanation:
Explanation/Reference:
By default, and at no additional charge, Amazon RDS enables automated backups of your DB Instance with a 1-day retention period.
By default, Amazon Redshift enables automated backups of your data warehouse cluster with a 1-day retention period.

 

NEW QUESTION 51
A user has created a VPC with CIDR 20.0.0.0/16 using VPC Wizard. The user has created a public CIDR (20.0.0.0/24) and a VPN only subnet CIDR (20.0.1.0/24) along with the hardware VPN access to connect to the user's data center. Which of the below mentioned components is not present when the VPC is setup with the wizard?

• A. Custom route table attached with a public subnet
• B. An internet gateway for a public subnet
• C. Main route table attached with a VPN only subnet
• D. A NAT instance configured to allow the VPN subnet instances to connect with the internet

Answer: D

Explanation:
Explanation/Reference:
Explanation:
The user can create subnets as per the requirement within a VPC. If the user wants to connect VPC from his own data center, he can setup a public and VPN only subnet which uses hardware VPN access to connect with his data center. When the user has configured this setup with Wizard, it will update the main route table used with the VPN-only subnet, create a custom route table and associate it with the public subnet. It also creates an internet gateway for the public subnet. The wizard does not create a NAT instance by default. The user can create it manually and attach it with a VPN only subnet.

 

NEW QUESTION 52
A user is observing the EC2 CPU utilization metric on CloudWatch. The user has observed some interesting patterns while filtering over the 1 week period for a particular hour. The user wants to zoom that data point to a more granular period. How can the user do that easily with CloudWatch?

• A. The user can zoom a particular period by specifying the period in the Time Range
• B. The user can zoom a particular period by selecting that period with the mouse and then releasing the mouse
• C. The user can zoom a particular period by double clicking on that period with the mouse
• D. The user can zoom a particular period by specifying the aggregation data for that period

Answer: B

 

NEW QUESTION 53
A user is trying to create an EBS volume with the highest PIOPS supported by EBS. What is the minimum
size of EBS required to have the maximum IOPS?

• A. 0
• B. 1
• C. 2
• D. 3

Answer: B

 

NEW QUESTION 54
A user has received a message from the support team that an issue occurred 1 week back between 3 AM to 4 AM and the EC2 server was not reachable.
The user is checking the CloudWatch metrics of that instance.
How can the user find the data easily using the CloudWatch console?

• A. The user can find the data by giving the exact values in the Absolute tab under CloudWatch metrics
• B. The user can find the data by filtering values of the last 1 week for a 1 hour period in the Relative tab under CloudWatch metrics
• C. It is not possible to find the exact time from the console.
  The user has to use CLI to provide the specific time
• D. The user can find the data by giving the exact values in the time Tab under CloudWatch metrics

Answer: A

Explanation:
If the user is viewing the data inside the CloudWatch console, the console provides options to filter values either using the relative period, such as days/hours or using the Absolute tab where the user can provide data with a specific date and time. The console also provides the option to search using the local timezone under the time range caption in the console.

 

NEW QUESTION 55
A user has created photo editing software and hosted it on EC2. The software accepts requests from the
user about the photo format and resolution and sends a message to S3 to enhance the picture
accordingly. Which of the below mentioned AWS services will help make a scalable software with the
AWS infrastructure in this scenario?

• A. AWS Elastic Transcoder
• B. AWS Simple Queue Service
• C. AWS Glacier
• D. AWS Simple Notification Service

Answer: B

Explanation:
Amazon Simple Queue Service (SQS) is a fast, reliable, scalable, and fully managed message queuing
service. SQS provides a simple and cost-effective way to decouple the components of an application. The
user can configure SQS, which will decouple the call between the EC2 application and S3. Thus, the
application does not keep waiting for S3 to provide the data.
Reference: http://aws.amazon.com/sqs/faqs/

 

NEW QUESTION 56
An application is generating a log file every 5 minutes.
The log file is not critical but may be required only for verification in case of some major issue.
The file should be accessible over the internet whenever required.
Which of the below mentioned options is a best possible storage solution for it?

• A. AWS S3
• B. AWS Glacier
• C. AWS RDS
• D. AWS RRS

Answer: D

Explanation:
Amazon S3 stores objects according to their storage class. There are three major storage classes: Standard, Reduced Redundancy Storage and Glacier. Standard is for AWS S3 and provides very high durability. However, the costs are a little higher. Glacier is for archival and the files are not available over the internet. Reduced Redundancy Storage is for less critical files.
Reduced Redundancy is little cheaper as it provides less durability in comparison to S3. In this case since the log files are not mission critical files, RRS will be a better option.

 

NEW QUESTION 57
A user has created a photo editing software and hosted it on EC2. The software accepts requests from the user about the photo format and resolution and sends a message to S3 to enhance the picture accordingly.Which of the below mentioned AWS services will help make a scalable software with the AWS infrastructure in this scenario?

• A. AWS Elastic Transcoder
• B. AWS Simple Queue Service
• C. AWS Glacier
• D. AWS Simple Notification Service

Answer: B

Explanation:
Amazon Simple Queue Service (SQS. is a fast, reliable, scalable, and fully managed message queuing service. SQS provides a simple and cost-effective way to decouple the components of an application. The user can configure SQS, which will decouple the call between the EC2 application and S3. Thus, the application does not keep waiting for S3 to provide the data.

 

NEW QUESTION 58
A user has configured an ELB to distribute the traffic among multiple instances. The user instances are facing some issues due to the back-end servers. Which of the below mentioned CloudWatch metrics helps the user understand the issue with the instances?

• A. HTTPCode_Backend_5XX
• B. HTTPCode_Backend_4XX
• C. HTTPCode_Backend_2XX
• D. HTTPCode_Backend_3XX

Answer: A

Explanation:
Explanation/Reference:
Explanation:
CloudWatch is used to monitor AWS as well as the custom services. For ELB, CloudWatch provides various metrics including error code by ELB as well as by back-end servers (instances). It gives data for the count of the number of HTTP response codes generated by the back-end instances. This metric does not include any response codes generated by the load balancer. These metrics are:
The 2XX class status codes represents successful actions
The 3XX class status code indicates that the user agent requires action The 4XX class status code represents client errors
The 5XX class status code represents back-end server errors

 

NEW QUESTION 59
A company is auditing their infrastructure to obtain a compliance certification.
Which of the following options are the company's responsibility within the Shared Responsibility Model?
(Select two.)

• A. EBS Encryption-at-result algorithms
• B. AWS API endpoint SSL Certificates
• C. IAM user password policies
• D. EC2 Instance Operating System updates
• E. AWS Hypervisor software updates

Answer: C,D

 

NEW QUESTION 60
A user has created a queue named "awsmodule" with SQS. One of the consumers of queue is down for 3
days and then becomes available. Will that component receive message from queue?

• A. No, since SQS sends message to consumers who are available that time
• B. Yes, since SQS will not delete message until it is delivered to all consumers
• C. Yes, since SQS by default stores message for 4 days
• D. No, since SQS by default stores message for 1 day only

Answer: C

Explanation:
SQS allows the user to move data between distributed components of applications so they can perform
different tasks without losing messages or requiring each component to be always available. Queues
retain messages for a set period of time. By default, a queue retains messages for four days. However,
the user can configure a queue to retain messages for up to 14 days after the message has been sent.
Reference:
http://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/SQSConcepts.html

 

NEW QUESTION 61
A user is collecting 1000 records per second.
The user wants to send the data to CloudWatch using the custom namespace.
Which of the below mentioned options is recommended for this activity?

• A. It is not possible to send all the data in one call.
  Thus, it should be sent one by one.
  CloudWatch will aggregate the data automatically
• B. Aggregate the data with statistics, such as Min, max, Average, Sum and Sample data and send the data to CloudWatch
• C. Create one csv file of all the data and send a single file to CloudWatch
• D. Send all the data values to CloudWatch in a single command by separating them with a comma.
  CloudWatch will parse automatically

Answer: B

Explanation:
AWS CloudWatch supports the custom metrics. The user can always capture the custom data and upload the data to CloudWatch using CLI or APIs. The user can publish data to CloudWatch as single data points or as an aggregated set of data points called a statistic set using the command put-metric-data. It is recommended that when the user is having multiple data points per minute, he should aggregate the data so that it will minimize the number of calls to put-metric- data. In this case it will be single call to CloudWatch instead of 1000 calls if the data is aggregated.

 

NEW QUESTION 62
You are managing the AWS account of a big organization. The organization has more than 1000+
employees and they want to provide access to the various services to most of the employees. Which of
the below mentioned options is the best possible solution in this case?

• A. The user should create an IAM role and attach STS with the role. The user should attach that role to
  the EC2 instance and setup AWS authentication on that server
• B. The user should create IAM groups as per the organization's departments and add each user to the
  group for better access control
• C. Attach an IAM role with the organization's authentication service to authorize each user for various
  AWS services
• D. The user should create a separate IAM user for each employee and provide access to them as per the
  policy

Answer: C

Explanation:
AWS Identity and Access Management is a web service which allows organizations to manage users and
user permissions for various AWS services. The user is managing an AWS account for an organization
that already has an identity system, such as the login system for the corporate network (SSO). In this
case, instead of creating individual IAM users or groups for each user who need AWS access, it may be
more practical to use a proxy server to translate the user identities from the organization network into the
temporary AWS security credentials. This proxy server will attach an IAM role to the user after
authentication.
Reference:
http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_WorkingWithGroupsAndUsers.html

 

NEW QUESTION 63
A user is trying to understand the CloudWatch metrics for the AWS services. It is required that the user should
first understand the namespace for the AWS services. Which of the below mentioned is not a valid namespace
for the AWS services?

• A. AWS/CloudTrail
• B. AWS/ElastiCache
• C. AWS/SWF
• D. AWS/StorageGateway

Answer: A

Explanation:
Amazon CloudWatch is basically a metrics repository. The AWS product puts metrics into this repository, and
the user can retrieve the data or statistics based on those metrics. To distinguish the data for each service, the
CloudWatch metric has a namespace. Namespaces are containers for metrics. All AWS services that provide
the Amazon CloudWatch data use a namespace string, beginning with "AWS/". All the services which are
supported by CloudWatch will have some namespace. CloudWatch does not monitor CloudTrail. Thus, the
namespace "AWS/CloudTrail" is incorrect.

 

NEW QUESTION 64
In configuring an Amazon Route 53 health check, a SysOps Administrator selects 'Yes' to the String Matching option in the Advanced Configuration section. In the Search String box, the Administrator types the following text: /html.
This is to ensure that the entire page is loading during the health check. Within 5 minutes of enabling the health check, the Administrator receives an alert stating that the check failed. However, when the Administrator navigates to the page, it loads successfully.
What is the MOST likely cause of this false alarm?

• A. The search string is not HTML-encoded.
• B. The search string must be escaped with a backslash (\) before the forward slash (/).
• C. The search string must be put in quotes.
• D. The search string is not in the first 5120 bytes of the tested page.

Answer: A

 

NEW QUESTION 65
A system admin wants to add more zones to the existing ELB. The system admin wants to perform this
activity from CLI. Which of the below mentioned command helps the system admin to add new zones to
the existing ELB?

• A. It is not possible to add more zones to the existing ELB
• B. elb-enable-zones-for-lb
• C. elb-add-zones-for-lb
• D. elb-configure-zones-for-lb

Answer: B

 

NEW QUESTION 66
......

Try Free and Start Using Realistic Verified AWS-SysOps Dumps Instantly.: https://prep4sure.real4dumps.com/AWS-SysOps-prep4sure-exam.html