Amazon AWS-SysOps AWS Certified SysOps Administrator – Associate Online Training

Exam4Training is the only website which is able to supply all your needed information about AWS-SysOps AWS Certified SysOps Administrator – Associate exam. Using Amazon AWS-SysOps AWS Certified SysOps Administrator – Associate Online Training provided by Exam4Training to pass Amazon AWS-SysOps exam is not a problem, and you can pass the AWS Certified SysOps Administrator – Associate AWS-SysOps exam with high scores.If you want to buy Amazon AWS-SysOps AWS Certified SysOps Administrator – Associate Online Training, then we Exam4Training is one of the leading service provider’s site.

1. You are currently hosting multiple applications in a VPC and have logged numerous port scans coming in from a specific IP address block. Your security team has requested that all access from the offending IP address block be denied for the next 24 hours.

Which of the following is the best method to quickly and temporarily deny access from the specified IP address block?

2. When preparing for a compliance assessment of your system built inside of AWS.

What are three best-practices for you to prepare for an audit? (Choose three.)

3. You have started a new job and are reviewing your company's infrastructure on AWS You notice one web application where they have an Elastic Load Balancer (&B) in front of web instances in an Auto Scaling Group When you check the metrics for the ELB in CloudWatch you see four healthy instances in Availability Zone (AZ) A and zero in AZ B There are zero unhealthy instances.

What do you need to fix to balance the instances across AZs?

4. You have been asked to leverage Amazon VPC BC2 and SOS to implement an application that submits and receives millions of messages per second to a message queue. You want to ensure your application has sufficient bandwidth between your EC2 instances and SQS

Which option will provide the most scalable solution for communicating between the application and SQS?

5. You have identified network throughput as a bottleneck on your m1.small EC2 instance when uploading data Into Amazon S3 In the same region.

How do you remedy this situation?

6. When attached to an Amazon VPC, which two components provide connectivity with external networks? (Choose two.)

7. Your application currently leverages AWS Auto Scaling to grow and shrink as load Increases/ decreases and has been performing well. Your marketing team expects a steady ramp up in traffic to follow an upcoming campaign that will result in a 20x growth in traffic over 4 weeks. Your forecast for the approximate number of Amazon EC2 instances necessary to meet the peak demand is 175.

What should you do to avoid potential service disruptions during the ramp up in traffic?

8. You have an Auto Scaling group associated with an Elastic Load Balancer (ELB). You have noticed that instances launched via the Auto Scaling group are being marked unhealthy due to an ELB health check, but these unhealthy instances are not being terminated.

What do you need to do to ensure trial instances marked unhealthy by the ELB will be terminated and replaced?

9. Which two AWS services provide out-of-the-box user configurable automatic backup-as-a-service and backup rotation options? (Choose two.)

10. An organization has configured a VPC with an Internet Gateway (IGW). pairs of public and private subnets (each with one subnet per Availability Zone), and an Elastic Load Balancer (ELB) configured to use the public subnets. The application s web tier leverages the ELB. Auto Scaling and a mum-AZ RDS database instance. The organization would like to eliminate any potential single points ft failure in this design.

What step should you take to achieve this organization's objective?

11. Which of the following are characteristics of Amazon VPC subnets? (Choose two.)

12. You are creating an Auto Scaling group whose Instances need to insert a custom metric into CloudWatch.

Which method would be the best way to authenticate your CloudWatch PUT request?

13. When an EC2 instance that is backed by an S3-based AMI is terminated, what happens to the data on me root volume?

14. You have a web application leveraging an Elastic Load Balancer (ELB). In front of the web servers deployed using an Auto Scaling Group Your database is running on Relational Database Service (RDS) The application serves out technical articles and responses to them in general there are more views of an article than there are responses to the article. On occasion, an article on the site becomes extremely popular resulting in significant traffic increases that causes the site to go down.

What could you do to help alleviate the pressure on the infrastructure while maintaining availability during these events? (Choose three.)

15. The majority of your Infrastructure is on premises and you have a small footprint on AWS Your company has decided to roll out a new application that is heavily dependent on low latency connectivity to LOAP for authentication Your security policy requires minimal changes to the company's existing application user management processes.

What option would you implement to successfully launch this application1?

16. You need to design a VPC for a web-application consisting of an Elastic Load Balancer (ELB). a fleet of web/application servers, and an RDS database. The entire Infrastructure must be distributed over 2 availability zones.

Which VPC configuration works while assuring the database is not available from the Internet?

17. An application that you are managing has EC2 instances & Dynamo OB tables deployed to several AWS Regions in order to monitor the performance of the application globally, you would like to see two graphs:

1) Avg CPU Utilization across all EC2 instances

2) Number of Throttled Requests for all DynamoDB tables.

How can you accomplish this?

18. When assessing an organization’s use of AWS API access credentials which of the following three credentials should be evaluated? (Choose three.)

19. You have a Linux EC2 web server instance running inside a VPC The instance is In a public subnet and has an EIP associated with it so you can connect to It over the Internet via HTTP or SSH The instance was also fully accessible when you last logged in via SSH. and was also serving web requests on port 80.

Now you are not able to SSH into the host nor does it respond to web requests on port 80 that were working fine last time you checked You have double-checked that all networking configuration parameters (security groups route tables. IGW'EIP. NACLs etc) are properly configured {and you haven’t made any changes to those anyway since you were last able to reach the Instance). You look at the EC2 console and notice that system status check shows "impaired."

Which should be your next step in troubleshooting and attempting to get the instance back to a healthy state so that you can log in again?

20. What is a placement group?

21. Your entire AWS infrastructure lives inside of one Amazon VPC. You have an Infrastructure monitoring application running on an Amazon instance in Availability Zone (AZ) A of the region, and another application instance running in AZ B. The monitoring application needs to make use of ICMP ping to confirm network reachability of the instance hosting the application.

Can you configure the security groups for these instances to only allow the ICMP ping to pass from the monitoring instance to the application instance and nothing else? If so how?

22. You have two Elastic Compute Cloud (EC2) instances inside a Virtual Private Cloud (VPC) in the same Availability Zone (AZ) but in different subnets. One instance is running a database and the other instance an application that will interface with the database. You want to confirm that they can talk to each other for your application to work properly.

Which two things do we need to confirm in the VPC settings so that these EC2 instances can communicate inside the VPC? (Choose two.)

23. Which services allow the customer to retain full administrative privileges of the underlying EC2 instances? (Choose two.)

24. You have a web-style application with a stateless but CPU and memory-intensive web tier running on a cc2 8xlarge EC2 instance inside of a VPC The instance when under load is having problems returning requests within the SLA as defined by your business The application maintains its state in a DynamoDB table, but the data tier is properly provisioned and responses are consistently fast.

How can you best resolve the issue of the application responses not meeting your SLA?

25. You are managing a legacy application Inside VPC with hard coded IP addresses in its configuration.

Which two mechanisms will allow the application to failover to new instances without the need for reconfiguration? (Choose two.)

26. You are designing a system that has a Bastion host. This component needs to be highly available without human intervention.

Which of the following approaches would you select?

27. Which of the following statements about this S3 bucket policy is true?

28. Which of the following requires a custom CloudWatch metric to monitor?

29. You run a web application where web servers on EC2 Instances are in an Auto Scaling group. Monitoring over the last 6 months shows that 6 web servers are necessary to handle the minimum load During the day up to 12 servers are needed five to six days per year, the number of web servers required might go up to 15.

What would you recommend to minimize costs while being able to provide hill availability?

30. You have been asked to propose a multi-region deployment of a web-facing application where a controlled portion of your traffic is being processed by an alternate region.

Which configuration would achieve that goal?

31. You have set up Individual AWS accounts for each project. You have been asked to make sure your AWS Infrastructure costs do not exceed the budget set per project for each month.

Which of the following approaches can help ensure that you do not exceed the budget each month?

32. When creation of an EBS snapshot is initiated but not completed the EBS volume?

33. You are using ElastiCache Memcached to store session state and cache database queries in your infrastructure. You notice in CloudWatch that Evictions and GetMisses are Doth very high.

What two actions could you take to rectify this? (Choose two.)

34. You are running a database on an EC2 instance, with the data stored on Elastic Block Store (EBS)

for persistence. At times throughout the day, you are seeing large variance in the response times of the database queries Looking into the instance with the isolate command you see a lot of wait time on the disk volume that the database's data is stored on.

What two ways can you improve the performance of the database's storage while maintaining the current persistence of the data? (Choose two.)

35. Your EC2-Based Multi-tier application includes a monitoring instance that periodically makes application -level read only requests of various application components and if any of those fail more than three times 30 seconds calls CloudWatch lo fire an alarm, and the alarm notifies your operations team by email and SMS of a possible application health problem.

However, you also need to watch the watcher -the monitoring instance itself - and be notified if it becomes unhealthy.

Which of the following is a simple way to achieve that goal?

36. You have decided to change the Instance type for instances running in your application tier that are using Auto Scaling.

In which area below would you change the instance type definition?

37. You are attempting to connect to an instance in Amazon VPC without success. You have already verified that the VPC has an Internet Gateway (IGW) the instance has an associated Elastic IP (EIP) and correct security group rules are in place.

Which VPC component should you evaluate next?

38. You are tasked with the migration of a highly trafficked Node JS application to AWS in order to comply with organizational standards Chef recipes must be used to configure the application servers that host this application and to support application lifecycle events.

Which deployment option meets these requirements while minimizing administrative burden?

39. You have been asked to automate many routine systems administrator backup and recovery activities. Your current plan is to leverage AWS-managed solutions as much as possible and automate the rest with the AWS CLI and scripts.

Which task would be best accomplished with a script?

40. Your organization's security policy requires that all privileged users either use frequently rotated passwords or one-time access credentials in addition to username/password.

Which two of the following options would allow an organization to enforce this policy for AWS users? (Choose two.)

41. What are characteristics of Amazon S3? (Choose two.)

42. You receive a frantic call from a new DBA who accidentally dropped a table containing all your customers.

Which Amazon RDS feature will allow you to reliably restore your database to within 5 minutes of when the mistake was made?

43. A media company produces new video files on-premises every day with a total size of around 100 GBS after compression All files have a size of 1 -2 GB and need to be uploaded to Amazon S3 every night in a fixed time window between 3am and 5am Current upload takes almost 3 hours, although less than half of the available bandwidth is used.

What step(s) would ensure that the file uploads are able to complete in the allotted time window?

44. You are running a web-application on AWS consisting of the following components an Elastic Load Balancer (ELB) an Auto-Scaling Group of EC2 instances running Linux/PHP/Apache, and Relational DataBase Service (RDS) MySQL.

Which security measures fall into AWS's responsibility?

45. You use S3 to store critical data for your company. Several users within your group currently have lull permissions to your S3 buckets. You need to come up with a solution mat does not impact your users and also protect against the accidental deletion of objects.

Which two options will address this issue? (Choose two.)

46. An organization's security policy requires multiple copies of all critical data to be replicated across at least a primary and backup data center. The organization has decided to store some critical data on Amazon S3.

Which option should you implement to ensure this requirement is met?

47. You are tasked with setting up a cluster of EC2 Instances for a NoSQL database. The database requires random read I/O disk performance up to a 100,000 IOPS at 4KB block side per node.

Which of the following EC2 instances will perform the best for this workload?

48. When an EC2 EBS-backed (EBS root) instance is stopped, what happens to the data on any ephemeral store volumes?

49. Your team Is excited about the use of AWS because now they have access to “programmable Infrastructure" You have been asked to manage your AWS infrastructure in a manner similar to the way you might manage application code You want to be able to deploy exact copies of different versions of your infrastructure, stage changes into different environments, revert back to previous versions, and identify what versions are running at any particular time (development test QA. production).

Which approach addresses this requirement?

50. You have a server with a 5O0GB Amazon EBS data volume. The volume is 80% full. You need to back up the volume at regular intervals and be able to re-create the volume in a new Availability Zone in the shortest time possible. All applications using the volume can be paused for a period of a few minutes with no discernible user impact.

Which of the following backup methods will best fulfill your requirements?

51. Your company Is moving towards tracking web page users with a small tracking

Image loaded on each page Currently you are serving this image out of US-East, but are starting to get concerned about the time it takes to load the image for users on the west coast.

What are the two best ways to speed up serving this image? (Choose two.)

52. If you want to launch Amazon Elastic Compute Cloud (EC2) Instances and assign each Instance a predetermined private IP address you should:

53. A customer has a web application that uses cookie Based sessions to track logged in users. It is deployed on AWS using ELB and Auto Scaling. The customer observes that when load increases. Auto Scaling launches new Instances but the load on the easting Instances does not decrease, causing all existing users have a sluggish experience.

Which two answer choices independently describe a behavior that could be the cause of the sluggish user experience? (Choose two.)

54. How can the domain's zone apex for example "myzoneapexdomain com" be pointed towards an Elastic Load Balancer?

55. An organization has created 5 IAM users. The organization wants to give them the same login ID but different passwords.

How can the organization achieve this?

56. A user is planning to evaluate AWS for their internal use. The user does not want to incur any charge on his account during the evaluation.

Which of the below mentioned AWS services would incur a charge if used?

57. A user has developed an application which is required to send the data to a NoSQL database. The user wants to decouple the data sending such that the application keeps processing and sending data but does not wait for an acknowledgement of DB.

Which of the below mentioned applications helps in this scenario?

58. An organization has created 50 IAM users. The organization has introduced a new policy which will change the access of an IAM user.

How can the organization implement this effectively so that there is no need to apply the policy at the individual user level?

59. A user is planning to use AWS Cloud formation for his automatic deployment requirements.

Which of the below mentioned components are required as a part of the template?

60. A user has recently started using EC2. The user launched one EC2 instance in the default subnet in EC2-VPC.

Which of the below mentioned options is not attached or available with the EC2 instance when it is launched?

61. A user has launched an EC2 instance. The user is planning to setup the CloudWatch alarm.

Which of the below mentioned actions is not supported by the CloudWatch alarm?

62. A user is trying to delete an Auto Scaling group from CLI.

Which of the below mentioned steps are to be performed by the user?

63. An organization is planning to create 5 different AWS accounts considering various security requirements. The organization wants to use a single payee account by using the consolidated billing option.

Which of the below mentioned statements is true with respect to the above information?

64. A user has deployed an application on his private cloud. The user is using his own monitoring tool. He wants to configure that whenever there is an error, the monitoring tool should notify him via SMS.

Which of the below mentioned AWS services will help in this scenario?

65. A user has created a web application with Auto Scaling. The user is regularly monitoring the application and he observed that the traffic is highest on Thursday and Friday between 8 AM to 6 PM.

What is the best solution to handle scaling in this case?

66. A user has setup a CloudWatch alarm on an EC2 action when the CPU utilization is above 75%. The alarm sends a notification to SNS on the alarm state.

If the user wants to simulate the alarm action how can he achieve this?

67. A user is trying to setup a scheduled scaling activity using Auto Scaling. The user wants to setup the recurring schedule.

Which of the below mentioned parameters is not required in this case?

68. A user has setup a billing alarm using CloudWatch for $200. The usage of AWS exceeded $200 after some days. The user wants to increase the limit from $200 to $400? What should the user do?

69. A sys admin has created the below mentioned policy and applied to an S3 object named aws.jpg. The aws.jpg is inside a bucket named cloudacademy.

What does this policy define?

70. A user is trying to save some cost on the AWS services.

Which of the below mentioned options will not help him save cost?

71. A user is trying to aggregate all the CloudWatch metric data of the last 1 week.

Which of the below mentioned statistics is not available for the user as a part of data aggregation?

72. An organization is planning to use AWS for their production roll out. The organization wants to implement automation for deployment such that it will automatically create a LAMP stack, download the latest PHP installable from S3 and setup the ELB.

Which of the below mentioned AWS services meets the requirement for making an orderly deployment of the software?

73. A user has created a subnet with VPC and launched an EC2 instance in that subnet with only default settings.

Which of the below mentioned options is ready to use on the EC2 instance as soon as it is launched?

74. An organization is setting up programmatic billing access for their AWS account.

Which of the below mentioned services is not required or enabled when the organization wants to use programmatic access?

75. A user has configured the Auto Scaling group with the minimum capacity as 3 and the maximum capacity as 5. When the user configures the AS group, how many instances will Auto Scaling launch?

76. An admin is planning to monitor the ELB.

Which of the below mentioned services does not help the admin capture the monitoring information about the ELB activity?

77. A user is planning to use AWS Cloudformation.

Which of the below mentioned functionalities does not help him to correctly understand Cloudfromation?

78. A user has launched 10 instances from the same AMI ID using Auto Scaling. The user is trying to see the average CPU utilization across all instances of the last 2 weeks under the CloudWatch console.

How can the user achieve this?

79. A user is trying to understand AWS SNS.

To which of the below mentioned end points is SNS unable to send a notification?

80. A user has configured an Auto Scaling group with ELB. The user has enabled detailed CloudWatch monitoring on Auto Scaling.

Which of the below mentioned statements will help the user understand the functionality better?

81. A system admin is planning to setup event notifications on RDS.

Which of the below mentioned services will help the admin setup notifications?

82. You are building an online store on AWS that uses SQS to process your customer orders. Your backend system needs those messages in the same sequence the customer orders have been put in.

How can you achieve that?

83. An organization wants to move to Cloud. They are looking for a secure encrypted database storage option.

Which of the below mentioned AWS functionalities helps them to achieve this?

84. A user wants to disable connection draining on an existing ELB.

Which of the below mentioned statements helps the user disable connection draining on the ELB?

85. A user has a refrigerator plant. The user is measuring the temperature of the plant every 15 minutes. If the user wants to send the data to CloudWatch to view the data visually, which of the below mentioned statements is true with respect to the information given above?

86. A system admin is managing buckets, objects and folders with AWS S3.

Which of the below mentioned statements is true and should be taken in consideration by the sysadmin?

87. A user has created an ELB with three instances.

How many security groups will ELB create by default?

88. An organization has created 50 IAM users. The organization wants that each user can change their password but cannot change their access keys.

How can the organization achieve this?

89. A user has created a photo editing software and hosted it on EC2. The software accepts requests from the user about the photo format and resolution and sends a message to S3 to enhance the picture accordingly.

Which of the below mentioned AWS services will help make a scalable software with the AWS infrastructure in this scenario?

90. An application is generating a log file every 5 minutes. The log file is not critical but may be required only for verification in case of some major issue. The file should be accessible over the internet whenever required.

Which of the below mentioned options is a best possible storage solution for it?

91. A user has created a VPC with CIDR 20.0.0.0/24. The user has created a public subnet with CIDR 20.0.0.0/25. The user is trying to create the private subnet with CIDR 20.0.0.128/25.

Which of the below mentioned statements is true in this scenario?

92. A user has created an S3 bucket which is not publicly accessible. The bucket is having thirty objects which are also private.

If the user wants to make the objects public, how can he configure this with minimal efforts?

93. A sys admin is maintaining an application on AWS. The application is installed on EC2 and user has configured ELB and Auto Scaling. Considering future load increase, the user is planning to launch new servers proactively so that they get registered with ELB.

How can the user add these instances with Auto Scaling?

94. An organization, which has the AWS account ID as 999988887777, has created 50 IAM users. All the users are added to the same group cloudacademy.

If the organization has enabled that each IAM user can login with the AWS console, which AWS login URL will the IAM users use?

95. A user has setup connection draining with ELB to allow in-flight requests to continue while the instance is being deregistered through Auto Scaling.

If the user has not specified the draining time, how long will ELB allow inflight requests traffic to continue?

96. A root AWS account owner is trying to understand various options to set the permission to AWS S3.

Which of the below mentioned options is not the right option to grant permission for S3?

97. A sys admin has created a shopping cart application and hosted it on EC2. The EC2 instances are running behind ELB. The admin wants to ensure that the end user request will always go to the EC2 instance where the user session has been created.

How can the admin configure this?

98. A user has configured ELB with three instances. The user wants to achieve High Availability as well as redundancy with ELB.

Which of the below mentioned AWS services helps the user achieve this for ELB?

99. An organization is using AWS since a few months. The finance team wants to visualize the pattern of AWS spending.

Which of the below AWS tool will help for this requirement?

100. A user has launched an ELB which has 5 instances registered with it. The user deletes the ELB by mistake.

What will happen to the instances?

101. A user is planning to setup notifications on the RDS DB for a snapshot.

Which of the below mentioned event categories is not supported by RDS for this snapshot source type?

102. A customer is using AWS for Dev and Test. The customer wants to setup the Dev environment with Cloudformation.

Which of the below mentioned steps are not required while using Cloudformation?

103. A user has configured the AWS CloudWatch alarm for estimated usage charges in the US East region.

Which of the below mentioned statements is not true with respect to the estimated charges?

104. A user is accessing RDS from an application. The user has enabled the Multi AZ feature with the MS SQL RDS DB.

During a planned outage how will AWS ensure that a switch from DB to a standby replica will not affect access to the application?

105. An organization is generating digital policy files which are required by the admins for verification. Once the files are verified they may not be required in the future unless there is some compliance issue.

If the organization wants to save them in a cost effective way, which is the best possible solution?

106. A user has launched an EBS backed instance. The user started the instance at 9 AM in the morning. Between 9 AM to 10 AM, the user is testing some script. Thus, he stopped the instance twice and restarted it. In the same hour the user rebooted the instance once.

For how many instance hours will AWS charge the user?

107. An organization has configured the custom metric upload with CloudWatch. The organization has given permission to its employees to upload data using CLI as well SDK.

How can the user track the calls made to CloudWatch?

108. A user has created a queue named “myqueue” with SQS. There are four messages published to queue which are not received by the consumer yet.

If the user tries to delete the queue, what will happen?

109. A user has launched a large EBS backed EC2 instance in the US-East-1a region. The user wants to achieve Disaster Recovery (DR. for that instance by creating another small instance in Europe.

How can the user achieve DR?

110. A user has created numerous EBS volumes.

What is the general limit for each AWS account for the maximum number of EBS volumes that can be created?

111. A user has created a VPC with CIDR 20.0.0.0/16 using the wizard. The user has created a public subnet CIDR (20.0.0.0/24. and VPN only subnets CIDR (20.0.1.0/24. along with the VPN gateway (vgw-12345. to connect to the user’s data center.

Which of the below mentioned options is a valid entry for the main route table in this scenario?

112. A user has stored data on an encrypted EBS volume. The user wants to share the data with his friend’s AWS account.

How can user achieve this?

113. A user has enabled the Multi AZ feature with the MS SQL RDS database server.

Which of the below mentioned statements will help the user understand the Multi AZ feature better?

114. An organization is using cost allocation tags to find the cost distribution of different departments and projects. One of the instances has two separate tags with the key/ value as “InstanceName/HR”, “CostCenter/HR”.

What will AWS do in this case?

115. A user is publishing custom metrics to CloudWatch.

Which of the below mentioned statements will help the user understand the functionality better?

116. A user is launching an EC2 instance in the US East region.

Which of the below mentioned options is recommended by AWS with respect to the selection of the availability zone?

117. A user has created a VPC with CIDR 20.0.0.0/16 with only a private subnet and VPN connection using the VPC wizard. The user wants to connect to the instance in a private subnet over SSH.

How should the user define the security rule for SSH?

118. A user has created an ELB with the availability zone US-East-1.

The user wants to add more zones to ELB to achieve High Availability.

How can the user add more zones to the existing ELB?

119. A user has configured an Auto Scaling group with ELB. The user has enabled detailed CloudWatch monitoring on Elastic Load balancing.

Which of the below mentioned statements will help the user understand this functionality better?

120. A user has configured ELB with two EBS backed EC2 instances. The user is trying to understand the DNS access and IP support for ELB.

Which of the below mentioned statements may not help the user understand the IP mechanism supported by ELB?

121. A user has received a message from the support team that an issue occurred 1 week back between 3 AM to 4 AM and the EC2 server was not reachable. The user is checking the CloudWatch metrics of that instance.

How can the user find the data easily using the CloudWatch console?

122. A user has setup Auto Scaling with ELB on the EC2 instances. The user wants to configure that whenever the CPU utilization is below 10%, Auto Scaling should remove one instance.

How can the user configure this?

123. A user has enabled detailed CloudWatch metric monitoring on an Auto Scaling group.

Which of the below mentioned metrics will help the user identify the total number of instances in an Auto Scaling group including pending, terminating and running instances?

124. A user is trying to configure the CloudWatch billing alarm.

Which of the below mentioned steps should be performed by the user for the first time alarm creation in the AWS Account Management section?

125. A user is checking the CloudWatch metrics from the AWS console. The user notices that the CloudWatch data is coming in UTC. The user wants to convert the data to a local time zone.

How can the user perform this?

126. An organization (Account ID 123412341234. has attached the below mentioned IAM policy to a user.

What does this policy statement entitle the user to perform?

127. A user is trying to connect to a running EC2 instance using SSH.

However, the user gets a connection time out error.

Which of the below mentioned options is not a possible reason for rejection?

128. A user has configured Elastic Load Balancing by enabling a Secure Socket Layer (SSL) negotiation

configuration known as a Security Policy.

Which of the below mentioned options is not part of this secure policy while negotiating the SSL connection between the user and the client?

129. A user has configured CloudWatch monitoring on an EBS backed EC2 instance.

If the user has not attached any additional device, which of the below mentioned metrics will always show a 0 value?

130. A user has launched an EBS backed EC2 instance.

What will be the difference while performing the restart or stop/start options on that instance?

131. A user has created a queue named “myqueue” in US-East region with AWS SQS. The user’s AWS account ID is 123456789012.

If the user wants to perform some action on this queue, which of the below Queue URL should he use?

132. A sys admin is trying to understand the Auto Scaling activities.

Which of the below mentioned processes is not performed by Auto Scaling?

133. A sys admin is trying to understand EBS snapshots.

Which of the below mentioned statements will not be useful to the admin to understand the concepts about a snapshot?

134. A root account owner has created an S3 bucket testmycloud. The account owner wants to allow everyone to upload the objects as well as enforce that the person who uploaded the object should manage the permission of those objects.

Which is the easiest way to achieve this?

135. An organization has setup consolidated billing with 3 different AWS accounts.

Which of the below mentioned advantages will organization receive in terms of the AWS pricing?

136. A user has launched two EBS backed EC2 instances in the US-East-1a region. The user wants to change the zone of one of the instances.

How can the user change it?

137. A user wants to make so that whenever the CPU utilization of the AWS EC2 instance is above 90%, the redlight of his bedroom turns on.

Which of the below mentioned AWS services is helpful for this purpose?

138. An organization has added 3 of his AWS accounts to consolidated billing. One of the AWS accounts has purchased a Reserved Instance (RI. of a small instance size in the US-East-1a zone. All other AWS accounts are running instances of a small size in the same zone.

What will happen in this case for the RI pricing?

139. An organization is planning to use AWS for 5 different departments. The finance department is responsible to pay for all the accounts.

However, they want the cost separation for each account to map with the right cost center.

How can the finance department achieve this?

140. A user has setup an EBS backed instance and a CloudWatch alarm when the CPU utilization is more than 65%. The user has setup the alarm to watch it for 5 periods of 5 minutes each. The CPU utilization is 60% between 9 AM to 6 PM. The user has stopped the EC2 instance for 15 minutes between 11 AM to 11:15 AM.

What will be the status of the alarm at 11:30 AM?

141. A user is running one instance for only 3 hours every day. The user wants to save some cost with the instance.

Which of the below mentioned Reserved Instance categories is advised in this case?

142. A user has setup an RDS DB with Oracle. The user wants to get notifications when someone modifies the security group of that DB.

How can the user configure that?

143. A user is trying to setup a recurring Auto Scaling process. The user has setup one process to scale up every day at 8 am and scale down at 7 PM. The user is trying to setup another recurring process, which scales up on the 1st of every month at 8 AM and scales down the same day at 7 PM.

What will Auto Scaling do in this scenario?

144. A user is planning to setup infrastructure on AWS for the Christmas sales. The user is planning to use Auto Scaling based on the schedule for proactive scaling.

What advice would you give to the user?

145. A user is trying to understand the ACL and policy for an S3 bucket.

Which of the below mentioned policy permissions is equivalent to the WRITE ACL on a bucket?

146. A user has created an ELB with Auto Scaling.

Which of the below mentioned offerings from ELB helps the user to stop sending new requests traffic from the load balancer to the EC2 instance when the instance is being deregistered while continuing in-flight requests?

147. A user has launched an EC2 instance from an instance store backed AMI. The infrastructure team wants to create an AMI from the running instance.

Which of the below mentioned steps will not be performed while creating the AMI?

148. You are managing the AWS account of a big organization. The organization has more than 1000+ employees and they want to provide access to the various services to most of the employees.

Which of the below mentioned options is the best possible solution in this case?

149. A user has configured a VPC with a new subnet. The user has created a security group. The user wants to configure that instances of the same subnet communicate with each other.

How can the user configure this with the security group?

150. A user is launching an instance. He is on the “Tag the instance” screen.

Which of the below mentioned information will not help the user understand the functionality of an AWS tag?

151. A user has created a VPC with CIDR 20.0.0.0/16. The user has created public and VPN only subnets along with hardware VPN access to connect to the user’s datacenter. The user wants to make so that all traffic coming to the public subnet follows the organization’s proxy policy.

How can the user make this happen?

152. A user has created a VPC with CIDR 20.0.0.0/24. The user has created a public subnet with CIDR 20.0.0.0/25 and a private subnet with CIDR 20.0.0.128/25. The user has launched one instance each in the private and public subnets.

Which of the below mentioned options cannot be the correct IP address (private IP. assigned to an instance in the public or private subnet?

153. A user has launched an EBS backed EC2 instance. The user has rebooted the instance.

Which of the below mentioned statements is not true with respect to the reboot action?

154. A user has setup a web application on EC2. The user is generating a log of the application performance at every second. There are multiple entries for each second.

If the user wants to send that data to CloudWatch every minute, what should he do?

155. An AWS root account owner is trying to create a policy to access RDS.

Which of the below mentioned statements is true with respect to the above information?

156. A user is using a small MySQL RDS DB. The user is experiencing high latency due to the Multi AZ feature.

Which of the below mentioned options may not help the user in this situation?

157. A user is displaying the CPU utilization, and Network in and Network out CloudWatch metrics data of a single instance on the same graph. The graph uses one Y-axis for CPU utilization and Network in and another Y-axis for Network out. Since Network in is too high, the CPU utilization data is not visible clearly on graph to the user.

How can the data be viewed better on the same graph?

158. A user is planning to use AWS services for his web application.

If the user is trying to set up his own billing management system for AWS, how can he configure it?

159. A user is planning to schedule a backup for an EBS volume. The user wants security of the snapshot data.

How can the user achieve data encryption with a snapshot?

160. A user has created a public subnet with VPC and launched an EC2 instance within it. The user is trying to delete the subnet.

What will happen in this scenario?

161. A user has setup an EBS backed instance and attached 2 EBS volumes to it. The user has setup a CloudWatch alarm on each volume for the disk data. The user has stopped the EC2 instance and detached the EBS volumes.

What will be the status of the alarms on the EBS volume?

162. A user has launched an EC2 instance from an instance store backed AMI. The infrastructure team wants to create an AMI from the running instance.

Which of the below mentioned credentials is not required while creating the AMI?

163. A user has configured an SSL listener at ELB as well as on the back-end instances.

Which of the below mentioned statements helps the user understand ELB traffic handling with respect to the SSL listener?

164. A user has created a Cloudformation stack. The stack creates AWS services, such as EC2 instances, ELB, AutoScaling, and RDS. While creating the stack it created EC2, ELB and AutoScaling but failed to create RDS.

What will Cloudformation do in this scenario?

165. A user is trying to launch an EBS backed EC2 instance under free usage. The user wants to achieve encryption of the EBS volume.

How can the user encrypt the data at rest?

166. A user has created a VPC with public and private subnets using the VPC wizard. The user has not launched any instance manually and is trying to delete the VPC.

What will happen in this scenario?

167. An organization is measuring the latency of an application every minute and storing data inside a file in the JSON format. The organization wants to send all latency data to AWS CloudWatch.

How can the organization achieve this?

168. A user has launched an EBS backed instance with EC2-Classic. The user stops and starts the instance.

Which of the below mentioned statements is not true with respect to the stop/start action?

169. A user has launched an RDS postgreSQL DB with AWS. The user did not specify the maintenance window during creation. The user has configured RDS to update the DB instance type from micro to large.

If the user wants to have it during the maintenance window, what will AWS do?

170. A user has created a subnet in VPC and launched an EC2 instance within it. The user has not selected the option to assign the IP address while launching the instance. The user has 3 elastic IPs and is trying to assign one of the Elastic IPs to the VPC instance from the console. The console does not show any instance in the IP assignment screen.

What is a possible reason that the instance is unavailable in the assigned IP console?

171. A user has launched multiple EC2 instances for the purpose of development and testing in the same region. The user wants to find the separate cost for the production and development instances.

How can the user find the cost distribution?

172. A user has created a VPC with CIDR 20.0.0.0/16 using VPC Wizard. The user has created a public CIDR (20.0.0.0/24. and a VPN only subnet CIDR (20.0.1.0/24. along with the hardware VPN access to connect to the user’s data center.

Which of the below mentioned components is not present when the VPC is setup with the wizard?

173. A user has created a VPC with the public subnet. The user has created a security group for that VPC.

Which of the below mentioned statements is true when a security group is created?

174. A user has setup an Auto Scaling group. The group has failed to launch a single instance for more than 24 hours.

What will happen to Auto Scaling in this condition?

175. A user is planning to set up the Multi AZ feature of RDS.

Which of the below mentioned conditions won't take advantage of the Multi AZ feature?

176. An organization has configured Auto Scaling with ELB. One of the instance health check returns the status as Impaired to Auto Scaling.

What will Auto Scaling do in this scenario?

177. A user is using Cloudformation to launch an EC2 instance and then configure an application after the instance is launched. The user wants the stack creation of ELB and AutoScaling to wait until the EC2 instance is launched and configured properly.

How can the user configure this?

178. An organization has configured two single availability zones. The Auto Scaling groups are configured in separate zones. The user wants to merge the groups such that one group spans across multiple zones.

How can the user configure this?

179. An AWS account wants to be part of the consolidated billing of his organization’s payee account.

How can the owner of that account achieve this?

180. A sysadmin has created the below mentioned policy on an S3 bucket named cloudacademy.

What does this policy define?

181. A user has launched two EBS backed EC2 instances in the US-East-1a region. The user wants to change the zone of one of the instances.

How can the user change it?

182. An organization (account ID 123412341234) has configured the IAM policy to allow the user to modify his credentials.

What will the below mentioned statement allow the user to perform?

183. A user has configured ELB with two EBS backed instances. The user has stopped the instances for 1 week to save costs. The user restarts the instances after 1 week.

Which of the below mentioned statements will help the user to understand the ELB and instance registration better?

184. A user is trying to connect to a running EC2 instance using SSH.

However, the user gets a Host key not found error.

Which of the below mentioned options is a possible reason for rejection?

185. A user has hosted an application on EC2 instances. The EC2 instances are configured with ELB and Auto Scaling. The application server session time out is 2 hours. The user wants to configure connection draining to ensure that all in-flight requests are supported by ELB even though the instance is being deregistered.

What time out period should the user specify for connection draining?

186. A user is using the AWS EC2. The user wants to make so that when there is an issue in the EC2 server, such as instance status failed, it should start a new instance in the user’s private cloud.

Which AWS service helps to achieve this automation?

187. A sys admin has enabled logging on ELB.

Which of the below mentioned fields will not be a part of the log file name?

188. A user has created a queue named “awsmodule” with SQS. One of the consumers of queue is down for 3 days and then becomes available.

Will that component receive message from queue?

189. An organization has setup multiple IAM users. The organization wants that each IAM user accesses the IAM console only within the organization and not from outside.

How can it achieve this?

190. An organization has created one IAM user and applied the below mentioned policy to the user.

What entitlements do the IAM users avail with this policy?

191. A user has enabled session stickiness with ELB. The user does not want ELB to manage the cookie; instead he wants the application to manage the cookie.

What will happen when the server instance, which is bound to a cookie, crashes?

192. A user is observing the EC2 CPU utilization metric on CloudWatch. The user has observed some interesting patterns while filtering over the 1 week period for a particular hour. The user wants to zoom that data point to a more granular period.

How can the user do that easily with CloudWatch?

193. A user has created an Auto Scaling group with default configurations from CLI. The user wants to setup the CloudWatch alarm on the EC2 instances, which are launched by the Auto Scaling group. The user has setup an alarm to monitor the CPU utilization every minute.

Which of the below mentioned statements is true?

194. A user has created a VPC with public and private subnets using the VPC wizard.

Which of the below mentioned statements is not true in this scenario?

195. A user has configured ELB with a TCP listener at ELB as well as on the back-end instances. The user wants to enable a proxy protocol to capture the source and destination IP information in the header.

Which of the below mentioned statements helps the user understand a proxy protocol with TCP configuration?

196. A user has launched 5 instances in EC2-CLASSIC and attached 5 elastic IPs to the five different instances in the US East region. The user is creating a VPC in the same region. The user wants to assign an elastic IP to the VPC instance.

How can the user achieve this?

197. A user has created a subnet in VPC and launched an EC2 instance within it. The user has not selected the option to assign the IP address while launching the instance.

Which of the below mentioned statements is true with respect to this scenario?

198. An organization has applied the below mentioned policy on an IAM group which has selected the IAM users.

What entitlements do the IAM users avail with this policy?

199. A user is configuring a CloudWatch alarm on RDS to receive a notification when the CPU utilization of RDS is higher than 50%. The user has setup an alarm when there is some inactivity on RDS, such as RDS unavailability.

How can the user configure this?

200. George has shared an EC2 AMI created in the US East region from his AWS account with Stefano. George copies the same AMI to the US West region. Can Stefano access the copied AMI of George’s account from the US West region?

201. A user has created a VPC with a subnet and a security group. The user has launched an instance in that subnet and attached a public IP. The user is still unable to connect to the instance. The Internet gateway has also been created.

What can be the reason for the error?

202. A user is trying to setup a security policy for ELB. The user wants ELB to meet the cipher supported by the client by configuring the server order preference in ELB security policy.

Which of the below mentioned preconfigured policies supports this feature?

203. A user has configured ELB with Auto Scaling. The user suspended the Auto Scaling AlarmNotification which notifies Auto Scaling for CloudWatch alarms. process for a while.

What will Auto Scaling do during this period?

204. George has launched three EC2 instances inside the US-East-1a zone with his AWS account. Ray has launched two EC2 instances in the US-East-1a zone with his AWS account.

Which of the below mentioned statements will help George and Ray understand the availability zone (AZ) concept better?

205. A user had aggregated the CloudWatch metric data on the AMI ID. The user observed some abnormal behavior of the CPU utilization metric while viewing the last 2 weeks of data. The user wants to share that data with his manager.

How can the user achieve this easily with the AWS console?

206. A user has setup a CloudWatch alarm on the EC2 instance for CPU utilization. The user has setup to receive a notification on email when the CPU utilization is higher than 60%. The user is running a virus scan on the same instance at a particular time. The user wants to avoid receiving an email at this time.

What should the user do?

207. A user has configured ELB with SSL using a security policy for secure negotiation between the client and load balancer.

Which of the below mentioned SSL protocols is not supported by the security policy?

208. A user has created a VPC with the public and private subnets using the VPC wizard. The VPC has CIDR 20.0.0.0/16. The public subnet uses CIDR 20.0.1.0/24. The user is planning to host a web server in the public subnet (port 80. and a DB server in the private subnet (port 3306). The user is configuring a security group for the public subnet (WebSecGrp) and the private subnet (DBSecGrp).

Which of the below mentioned entries is required in the private subnet database security group (DBSecGrp)?

209. A user has created a VPC with CIDR 20.0.0.0/16 using the wizard. The user has created public and VPN only subnets along with hardware VPN access to connect to the user’s data center. The user has not yet launched any instance as well as modified or deleted any setup. He wants to delete this VPC from the console.

Will the console allow the user to delete the VPC?

210. A user is trying to create a PIOPS EBS volume with 4000 IOPS and 100 GB size. AWS does not allow the user to create this volume.

What is the possible root cause for this?

211. A user has setup a custom application which generates a number in decimals. The user wants to track that number and setup the alarm whenever the number is above a certain limit. The application is sending the data to CloudWatch at regular intervals for this purpose.

Which of the below mentioned statements is not true with respect to the above scenario?

212. A user has launched an EC2 Windows instance from an instance store backed AMI. The user has also set the Instance initiated shutdown behavior to stop.

What will happen when the user shuts down the OS?

213. A user has enabled versioning on an S3 bucket. The user is using server side encryption for data at Rest.

If the user is supplying his own keys for encryption (SSE-C., which of the below mentioned statements is true?

214. A user has created a VPC with CIDR 20.0.0.0/16. The user has created one subnet with CIDR 20.0.0.0/16 in this VPC. The user is trying to create another subnet with the same VPC for CIDR 20.0.0.1/24.

What will happen in this scenario?

215. A user has launched an RDS MySQL DB with the Multi AZ feature. The user has scheduled the scaling of instance storage during maintenance window.

What is the correct order of events during maintenance window?

- Perform maintenance on standby

- Promote standby to primary

- Perform maintenance on original primary

- Promote original master back as primary

216. A sys admin is using server side encryption with AWS S3.

Which of the below mentioned statements helps the user understand the S3 encryption functionality?

217. A root account owner is trying to understand the S3 bucket ACL.

Which of the below mentioned options cannot be used to grant ACL on the object using the authorized predefined group?

218. A user has created a VPC with CIDR 20.0.0.0/16 using the wizard. The user has created a public subnet CIDR (20.0.0.0/24) and VPN only subnets CIDR (20.0.1.0/24) along with the VPN gateway (vgw-12345) to connect to the user’s data center. The user’s data center has CIDR 172.28.0.0/12. The user has also setup a NAT instance (i-123456) to allow traffic to the internet from the VPN subnet.

Which of the below mentioned options is not a valid entry for the main route table in this scenario?

219. A user has created a VPC with public and private subnets using the VPC wizard. The VPC has CIDR 20.0.0.0/16. The private subnet uses CIDR 20.0.0.0/24. The NAT instance ID is i-a12345.

Which of the below mentioned entries are required in the main route table attached with the private subnet to allow instances to connect with the internet?

220. A root account owner has given full access of his S3 bucket to one of the IAM users using the bucket ACL. When the IAM user logs in to the S3 console, which actions can he perform?

221. An organization has configured Auto Scaling with ELB. There is a memory issue in the application, which is causing CPU utilization to go above 90%. The higher CPU usage triggers an event for Auto Scaling as per the scaling policy. If the user wants to find the root cause inside the application without triggering a scaling activity, how can he achieve this?

222. A sys admin is planning to subscribe to the RDS event notifications. For which of the below mentioned source categories the subscription cannot be configured?

223. A user has launched an EC2 instance. The instance got terminated as soon as it was launched.

Which of the below mentioned options is not a possible reason for this?

224. A user is trying to understand the detailed CloudWatch monitoring concept.

Which of the below mentioned services does not provide detailed monitoring with CloudWatch?

225. A user is measuring the CPU utilization of a private data center machine every minute. The machine provides the aggregate of data every hour, such as Sum of data”, “Min value”, “Max value, and “Number of Data points”.

The user wants to send these values to CloudWatch.

How can the user achieve this?

226. A user has enabled detailed CloudWatch monitoring with the AWS Simple Notification Service.

Which of the below mentioned statements helps the user understand detailed monitoring better?

227. A user has setup a VPC with CIDR 20.0.0.0/16. The VPC has a private subnet (20.0.1.0/24. and a public subnet (20.0.0.0/24. The user’s data center has CIDR of 20.0.54.0/24 and 20.1.0.0/24.

If the private subnet wants to communicate with the data center, what will happen?

228. A user wants to find the particular error that occurred on a certain date in the AWS MySQL RDS DB.

Which of the below mentioned activities may help the user to get the data easily?

229. A user is trying to send custom metrics to CloudWatch using the PutMetricData APIs.

Which of the below mentioned points should the user needs to take care while sending the data to CloudWatch?

230. An AWS account owner has setup multiple IAM users. One IAM user only has CloudWatch access. He has setup the alarm action which stops the EC2 instances when the CPU utilization is below the threshold limit.

What will happen in this case?

231. A user has configured ELB with Auto Scaling. The user suspended the Auto Scaling terminate process only for a while.

What will happen to the availability zone rebalancing process (AZRebalance. during this period?

232. A user has created a mobile application which makes calls to DynamoDB to fetch certain data. The application is using the DynamoDB SDK and root account access/secret access key to connect to DynamoDB from mobile.

Which of the below mentioned statements is true with respect to the best practice for security in this scenario?

233. A user is configuring the Multi AZ feature of an RDS DB. The user came to know that this RDS DB does not use the AWS technology, but uses server mirroring to achieve HA.

Which DB is the user using right now?

234. A user is receiving a notification from the RDS DB whenever there is a change in the DB security group. The user does not want to receive these notifications for only a month. Thus, he does not want to delete the notification.

How can the user configure this?

235. A user has created a VPC with CIDR 20.0.0.0/16. The user has created one subnet with CIDR 20.0.0.0/16 by mistake. The user is trying to create another subnet of CIDR 20.0.0.1/24.

How can the user create the second subnet?

236. A user has created a VPC with the public and private subnets using the VPC wizard. The VPC has CIDR 20.0.0.0/16. The public subnet uses CIDR 20.0.1.0/24. The user is planning to host a web server in the public subnet (port 80) and a DB server in the private subnet (port 3306). The user is configuring a security group for the public subnet (WebSecGrp) and the private subnet (DBSecGrp).

Which of the below mentioned entries is required in the web server security group (WebSecGrp)?

237. A user is trying to understand the detailed CloudWatch monitoring concept.

Which of the below mentioned services provides detailed monitoring with CloudWatch without charging the user extra?

238. A user is trying to understand the CloudWatch metrics for the AWS services. It is required that the user should first understand the namespace for the AWS services.

Which of the below mentioned is not a valid namespace for the AWS services?

239. A system admin is planning to encrypt all objects being uploaded to S3 from an application. The system admin does not want to implement his own encryption algorithm; instead he is planning to use server side encryption by supplying his own key (SSE-C).

Which parameter is not required while making a call for SSE-C?

240. A user is using the AWS SQS to decouple the services.

Which of the below mentioned operations is not supported by SQS?

241. A user has configured Auto Scaling with 3 instances. The user had created a new AMI after updating one of the instances. If the user wants to terminate two specific instances to ensure that Auto Scaling launches an instances with the new launch configuration, which command should he run?

242. A user has launched an EC2 instance from an instance store backed AMI.

If the user restarts the instance, what will happen to the ephermal storage data?

243. A user has launched an EC2 instance. However, due to some reason the instance was terminated.

If the user wants to find out the reason for termination, where can he find the details?

244. A user has created a VPC with CIDR 20.0.0.0/24. The user has used all the IPs of CIDR and wants to increase the size of the VPC. The user has two subnets: public (20.0.0.0/28) and private (20.0.1.0/28).

How can the user change the size of the VPC?

245. A user has configured ELB with SSL using a security policy for secure negotiation between the client and load balancer.

Which of the below mentioned security policies is supported by ELB?

246. A user has granted read/write permission of his S3 bucket using ACL.

Which of the below mentioned options is a valid ID to grant permission to other AWS accounts (grantee) using ACL?

247. A user has configured an ELB to distribute the traffic among multiple instances. The user instances are facing some issues due to the back-end servers.

Which of the below mentioned CloudWatch metrics helps the user understand the issue with the instances?

248. A user has launched an EC2 instance store backed instance in the US-East-1a zone. The user created AMI #1 and copied it to the Europe region. After that, the user made a few updates to the application running in the US-East-1a zone. The user makes an AMI#2 after the changes. If the user launches a new instance in Europe from the AMI #1 copy, which of the below mentioned statements is true?

249. A user runs the command “dd if=/dev/zero of=/dev/xvdfbs=1M” on a fresh blank EBS volume attached to a Linux instance.

Which of the below mentioned activities is the user performing with the command given above?

250. A user has created an Auto Scaling group using CLI. The user wants to enable CloudWatch detailed monitoring for that group.

How can the user configure this?

251. A user has created a VPC with a public subnet. The user has terminated all the instances which are part of the subnet.

Which of the below mentioned statements is true with respect to this scenario?

252. A user has configured ELB with SSL using a security policy for secure negotiation between the client and load balancer. The ELB security policy supports various ciphers.

Which of the below mentioned options helps identify the matching cipher at the client side to the ELB cipher list when client is requesting ELB DNS over SSL?

253. A user has created a VPC with public and private subnets. The VPC has CIDR 20.0.0.0/16. The private subnet uses CIDR 20.0.1.0/24 and the public subnet uses CIDR 20.0.0.0/24. The user is planning to host a web server in the public subnet (port 80. and a DB server in the private subnet (port 3306). The user is configuring a security group of the NAT instance.

Which of the below mentioned entries is not required for the NAT security group?

254. A user has created an application, which will be hosted on EC2. The application makes calls to DynamoDB to fetch certain data. The application is using the DynamoDB SDK to connect with from the EC2 instance.

Which of the below mentioned statements is true with respect to the best practice for security in this scenario?

255. An organization (Account ID 123412341234) has attached the below mentioned IAM policy to a user.

What does this policy statement entitle the user to perform?

{

"Version": "2012-10-17",

"Statement": [{

"Sid": "AllowUsersAllActionsForCredentials",

"Effect": "Allow",

"Action": [

"iam:*LoginProfile",

"iam:*AccessKey*",

"iam:*SigningCertificate*"

],

"Resource": ["arn:aws:iam:: 123412341234:user/${aws:username}"]

}]

}

256. A sys admin is trying to understand the sticky session algorithm.

Please select the correct sequence of steps, both when the cookie is present and when it is not, to help the admin understand the implementation of the sticky session:

- ELB inserts the cookie in the response

- ELB chooses the instance based on the load balancing algorithm

- Check the cookie in the service request

- The cookie is found in the request

- The cookie is not found in the request

257. A user has a weighing plant. The user measures the weight of some goods every 5 minutes and sends data to AWS CloudWatch for monitoring and tracking.

Which of the below mentioned parameters is mandatory for the user to include in the request list?

258. An organization has configured Auto Scaling for hosting their application. The system admin wants to understand the Auto Scaling health check process. If the instance is unhealthy, Auto Scaling launches an instance and terminates the unhealthy instance.

What is the order execution?

259. A user is trying to connect to a running EC2 instance using SSH.

However, the user gets an Unprotected Private Key File error.

Which of the below mentioned options can be a possible reason for rejection?

260. A user has provisioned 2000 IOPS to the EBS volume. The application hosted on that EBS is experiencing less IOPS than provisioned.

Which of the below mentioned options does not affect the IOPS of the volume?

261. A storage admin wants to encrypt all the objects stored in S3 using server side encryption. The user does not want to use the AES 256 encryption key provided by S3.

How can the user achieve this?

262. A user is trying to create a PIOPS EBS volume with 8 GB size and 200 IOPS. Will AWS create the volume?

263. A user has scheduled the maintenance window of an RDS DB on Monday at 3 AM.

Which of the below mentioned events may force to take the DB instance offline during the maintenance window?

264. An organization has launched 5 instances: 2 for production and 3 for testing. The organization wants that one particular group of IAM users should only access the test instances and not the production ones.

How can the organization set that as a part of the policy?

265. A user has configured Auto Scaling with the minimum capacity as 2 and the desired capacity as 2.

The user is trying to terminate one of the existing instance with the command:

What will Auto Scaling do in this scenario?

266. A user is collecting 1000 records per second. The user wants to send the data to CloudWatch using the custom namespace.

Which of the below mentioned options is recommended for this activity?

267. A user is trying to create an EBS volume with the highest PIOPS supported by EBS.

What is the minimum size of EBS required to have the maximum IOPS?

268. An organization is trying to create various IAM users.

Which of the below mentioned options is not a valid IAM username?

269. A user is having data generated randomly based on a certain event. The user wants to upload that data to CloudWatch. It may happen that event may not have data generated for some period due to randomness.

Which of the below mentioned options is a recommended option for this case?

270. A user is sending the data to CloudWatch using the CloudWatch API. The user is sending data 90 minutes in the future.

What will CloudWatch do in this case?

271. A user wants to upload a complete folder to AWS S3 using the S3 Management console.

How can the user perform this activity?

272. Which of the below mentioned AWS RDS logs cannot be viewed from the console for MySQL?

273. A user has launched an EBS backed EC2 instance in the US-East-1a region. The user stopped the instance and started it back after 20 days. AWS throws up an ‘InsufficientInstanceCapacity’ error.

What can be the possible reason for this?

274. A user has created a VPC with public and private subnets using the VPC wizard.

Which of the below mentioned statements is true in this scenario?

275. The CFO of a company wants to allow one of his employees to view only the AWS usage report page.

Which of the below mentioned IAM policy statements allows the user to have access to the AWS usage report page?

276. An organization has created 10 IAM users. The organization wants each of the IAM users to have access to a separate DyanmoDB table. All the users are added to the same group and the organization wants to setup a group level policy for this.

How can the organization achieve this?

277. A user has configured an HTTPS listener on an ELB. The user has not configured any security policy which can help to negotiate SSL between the client and ELB.

What will ELB do in this scenario?

278. A user is creating a Cloudformation stack.

Which of the below mentioned limitations does not hold true for Cloudformation?

279. A user has two EC2 instances running in two separate regions. The user is running an internal memory management tool, which captures the data and sends it to CloudWatch in US East, using a CLI with the same namespace and metric.

Which of the below mentioned options is true with respect to the above statement?

280. An organization has created a Queue named “modularqueue” with SQS. The organization is not performing any operations such as SendMessage, ReceiveMessage, DeleteMessage, GetQueueAttributes, SetQueueAttributes, AddPermission, and RemovePermission on the queue.

What can happen in this scenario?

281. An organization has setup Auto Scaling with ELB. Due to some manual error, one of the instances got rebooted. Thus, it failed the Auto Scaling health check. Auto Scaling has marked it for replacement.

How can the system admin ensure that the instance does not get terminated?

282. A system admin wants to add more zones to the existing ELB. The system admin wants to perform this activity from CLI.

Which of the below mentioned command helps the system admin to add new zones to the existing ELB?

283. An organization is planning to create a user with IAM. They are trying to understand the limitations of IAM so that they can plan accordingly.

Which of the below mentioned statements is not true with respect to the limitations of IAM?

284. A user is planning to scale up an application by 8 AM and scale down by 7 PM daily using Auto Scaling.

What should the user do in this case?

285. A user has created a VPC with two subnets: one public and one private. The user is planning to run the patch update for the instances in the private subnet.

How can the instances in the private subnet connect to the Internet?

286. A user has configured an EC2 instance in the US-East-1a zone. The user has enabled detailed monitoring of the instance. The user is trying to get the data from CloudWatch using a CLI.

Which of the below mentioned CloudWatch endpoint URLs should the user use?

287. A user has configured ELB with Auto Scaling. The user suspended the Auto Scaling AddToLoadBalancer (which adds instances to the load balancer. process for a while).

What will happen to the instances launched during the suspension period?

288. A sys admin has enabled a log on ELB.

Which of the below mentioned activities are not captured by the log?

289. A user has moved an object to Glacier using the life cycle rules. The user requests to restore the archive after 6 months. When the restore request is completed the user accesses that archive.

Which of the below mentioned statements is not true in this condition?

290. A user is running a batch process on EBS backed EC2 instances. The batch process starts a few instances to process Hadoop. Map reduce jobs which can run between 50 C 600 minutes or sometimes for more time. The user wants to configure that the instance gets terminated only when the process is completed.

How can the user configure this with CloudWatch?

291. A user has enabled versioning on an S3 bucket. The user is using server side encryption for data at rest.

If the user is supplying his own keys for encryption (SSE-C), what is recommended to the user for the purpose of security?

292. A user runs the command “dd if=/dev/xvdf of=/dev/null bs=1M” on an EBS volume created from a snapshot and attached to a Linux instance.

Which of the below mentioned activities is the user performing with the step given above?

293. A user has launched an EC2 Windows instance from an instance store backed AMI. The user wants to convert the AMI to an EBS backed AMI.

How can the user convert it?

294. A user has created a VPC with public and private subnets using the VPC Wizard. The VPC has CIDR 20.0.0.0/16. The private subnet uses CIDR 20.0.0.0/24.

Which of the below mentioned entries are required in the main route table to allow the instances in VPC to communicate with each other?

295. A sysadmin has created the below mentioned policy on an S3 bucket named cloudacademy. The bucket has both AWS.jpg and index.html objects.

What does this policy define?

296. A user has launched an EC2 instance and deployed a production application in it. The user wants to prohibit any mistakes from the production team to avoid accidental termination.

How can the user achieve this?

297. A user has created a launch configuration for Auto Scaling where CloudWatch detailed monitoring is disabled. The user wants to now enable detailed monitoring.

How can the user achieve this?

298. A user is trying to pre-warm a blank EBS volume attached to a Linux instance.

Which of the below mentioned steps should be performed by the user?

299. A user has launched an EC2 instance from an instance store backed AMI. The user has attached an additional instance store volume to the instance. The user wants to create an AMI from the running instance.

Will the AMI have the additional instance store volume data?

300. A user has created an EBS volume of 10 GB and attached it to a running instance. The user is trying to access EBS for first time.

Which of the below mentioned options is the correct statement with respect to a first time EBS access?


 

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>