Amazon SOA-C02 AWS Certified SysOps Administrator - Associate Online Training - Page 3 of 10

Question #21

A company is running an application on a fleet of Amazon EC2 instances behind an Application Load Balancer (ALB). The EC2 instances are launched by an Auto Scaling group and are automatically registered in a target group. A SysOps administrator must set up a notification to alert application owners when targets fail health checks.

What should the SysOps administrator do to meet these requirements?

A . Create an Amazon CloudWatch alarm on the UnHealthyHostCount metric. Configure an action to send an Amazon Simple Notification Service (Amazon SNS) notification when the metric is greater than 0.
B . Configure an Amazon EC2 Auto Scaling custom lifecycle action to send an Amazon Simple Notification Service (Amazon SNS) notification when an instance is in the Pending:Wait state.
C . Update the Auto Scaling group. Configure an activity notification to send an Amazon Simple Notification Service (Amazon SNS) notification for the Unhealthy event type.
D . Update the ALB health check to send an Amazon Simple Notification Service (Amazon SNS) notification when an instance is unhealthy.

Reveal Solution Hide Solution

Question #22

A company wants to build a solution for its business-critical Amazon RDS for MySQL database. The database requires high availability across different geographic locations. A SysOps administrator must build a solution to handle a disaster recovery (DR) scenario with the lowest recovery time objective (RTO) and recovery point objective (RPO).

Which solution meets these requirements?

A . Create automated snapshots of the database on a schedule. Copy the snapshots to the DR Region.
B . Create a cross-Region read replica for the database.
C . Create a Multi-AZ read replica for the database.
D . Schedule AWS Lambda functions to create snapshots of the source database and to copy the snapshots to a DR Region.

Reveal Solution Hide Solution

Question #23

A SysOps administrator is using Amazon EC2 instances to host an application. The SysOps administrator needs to grant permissions for the application to access an Amazon DynamoDB table.

Which solution will meet this requirement?

A . Create access keys to access the DynamoDB table. Assign the access keys to the EC2 instance profile.
B . Create an EC2 key pair to access the DynamoDB table. Assign the key pair to the EC2 instance profile.
C . Create an IAM user to access the DynamoDB table. Assign the IAM user to the EC2 instance profile.
D . Create an IAM role to access the DynamoDB table. Assign the IAM role to the EC2 instance profile.

Reveal Solution Hide Solution

Question #24

A company has a web application with a database tier that consists of an Amazon EC2 instance that runs MySQL. A SysOps administrator needs to minimize potential data loss and the time that is required to recover in the event of a database failure.

What is the MOST operationally efficient solution that meets these requirements?

A . Create an Amazon CloudWatch alarm for the StatusCheckFailed_System metric to invoke an AWS Lambda function that stops and starts the EC2 instance.
B . Create an Amazon RDS for MySQL Multi-AZ DB instance. Use a MySQL native backup that is stored in Amazon S3 to restore the data to the new database. Update the connection string in the web application.
C . Create an Amazon RDS for MySQL Single-AZ DB instance with a read replica. Use a MySQL native backup that is stored in Amazon S3 to restore the data to the new database. Update the connection string in the web application.
D . Use Amazon Data Lifecycle Manager (Amazon DLM) to take a snapshot of the Amazon Elastic Block Store (Amazon EBS) volume every hour. In the event of an EC2 instance failure, restore the EBS volume from a snapshot.

Reveal Solution Hide Solution

Question #25

A company migrated an I/O intensive application to an Amazon EC2 general purpose instance. The EC2 instance has a single General Purpose SSD Amazon Elastic Block Store (Amazon EBS) volume attached.

Application users report that certain actions that require intensive reading and writing to the disk are taking much longer than normal or are failing completely. After reviewing the performance metrics of the EBS volume, a SysOps administrator notices that the VolumeQueueLength metric is consistently high during the same times in which the users are reporting issues. The SysOps administrator needs to resolve this problem to restore full performance to the application.

Which action will meet these requirements?

A . Modify the instance type to be storage optimized.
B . Modify the volume properties by deselecting Auto-Enable Volume 10.
C . Modify the volume properties to increase the IOPS.
D . Modify the instance to enable enhanced networking.

Reveal Solution Hide Solution

Correct Answer: C
C

Explanation:

Step-by-Step

Understand the Problem:

An I/O intensive application on an Amazon EC2 general purpose instance is experiencing performance issues.

Users report delays or failures during intensive read/write operations. The VolumeQueueLength metric is consistently high during these periods. Analyze the Requirements:

Address the high VolumeQueueLength, which indicates that the EBS volume is unable to handle the I/O requests efficiently.

Improve the disk I/O performance to restore full application performance.

Evaluate the Options:

Option A: Modify the instance type to be storage optimized.

Storage optimized instances are designed for workloads that require high, sequential read and write access to large data sets on local storage.

This could help, but if the issue is primarily with EBS volume performance, increasing IOPS would be a more direct solution.

Option B: Modify the volume properties by deselecting Auto-Enable Volume I/O.

Auto-Enable Volume I/O is a setting that automatically enables I/O for the EBS volume after an event such as a snapshot restore.

Deselecting this option will not address the issue of high I/O demand.

Option C: Modify the volume properties to increase the IOPS.

Increasing the IOPS (Input/Output Operations Per Second) will directly address the high VolumeQueueLength by allowing the volume to handle more I/O operations concurrently.

This is the most effective and direct solution to improve the performance of I/O intensive tasks.

Option D: Modify the instance to enable enhanced networking.

Enhanced networking provides higher bandwidth, higher packet per second (PPS) performance, and consistently lower inter-instance latencies.

While beneficial for network performance, this does not directly impact the EBS volume’s I/O performance.

Select the Best Solution:

Option C: Modifying the volume properties to increase the IOPS directly addresses the high VolumeQueueLength and improves the EBS volume’s ability to handle intensive read/write operations.

Reference: Amazon EBS Volume Types

Amazon EBS Volume Performance

Optimizing EBS Performance

Increasing the IOPS of the EBS volume ensures that the application can handle the required intensive read/write operations more efficiently, directly addressing the high VolumeQueueLength and restoring full performance.

Question #26

A SysOps administrator is trying to set up an Amazon Route 53 domain name to route traffic to a website hosted on Amazon S3. The domain name of the website is www.anycompany.com and the S3 bucket name is anycompany-static. After the record set is set up in Route 53, the domain name www.anycompany.com does not seem to work, and the static website is not displayed in the browser.

Which of the following is a cause of this?

A . The S3 bucket must be configured with Amazon CloudFront first.
B . The Route 53 record set must have an IAM role that allows access to the S3 bucket.
C . The Route 53 record set must be in the same region as the S3 bucket.
D . The S3 bucket name must match the record set name in Route 53.

Reveal Solution Hide Solution

Question #27

An Amazon EC2 instance needs to be reachable from the internet. The EC2 instance is in a subnet with the following route table:

Which entry must a SysOps administrator add to the route table to meet this requirement?

A . A route for 0.0.0.0/0 that points to a NAT gateway
B . A route for 0.0.0.0/0 that points to an egress-only internet gateway
C . A route for 0.0.0.0/0 that points to an internet gateway
D . A route for 0.0.0.0/0 that points to an elastic network interface

Reveal Solution Hide Solution

Question #28

A SysOps administrator has enabled AWS CloudTrail in an AWS account. If CloudTrail is disabled, it must be re-enabled immediately.

What should the SysOps administrator do to meet these requirements WITHOUT writing custom code?

A . Add the AWS account to AWS Organizations. Enable CloudTrail in the management account.
B . Create an AWS Config rule that is invoked when CloudTrail configuration changes. Apply the AWS-ConfigureCloudTrailLogging automatic remediation action.
C . Create an AWS Config rule that is invoked when CloudTrail configuration changes. Configure the rule to invoke an AWS Lambda function to enable CloudTrail.
D . Create an Amazon EventBridge (Amazon CloudWatch Events) hourly rule with a schedule pattern to run an AWS Systems Manager Automation document to enable CloudTrail.

Reveal Solution Hide Solution

Question #29

A company has a stateless application that runs on four Amazon EC2 instances. The application requires tour instances at all times to support all traffic. A SysOps administrator must design a highly available, fault-tolerant architecture that continually supports all traffic if one Availability Zone becomes unavailable.

Which configuration meets these requirements?

A . Deploy two Auto Scaling groups in two Availability Zones with a minimum capacity of two instances in each group.
B . Deploy an Auto Scaling group across two Availability Zones with a minimum capacity of four instances.
C . Deploy an Auto Scaling group across three Availability Zones with a minimum capacity of four instances.
D . Deploy an Auto Scaling group across three Availability Zones with a minimum capacity of six instances.

Reveal Solution Hide Solution

Question #30

A company’s backend infrastructure contains an Amazon EC2 instance in a private subnet. The private subnet has a route to the internet through a NAT gateway in a public subnet. The instance must allow connectivity to a secure web server on the internet to retrieve data at regular intervals.

The client software times out with an error message that indicates that the client software could not establish the TCP connection.

What should a SysOps administrator do to resolve this error?

A . Add an inbound rule to the security group for the EC2 instance with the following parameters:
Type – HTTP, Source – 0.0.0.0/0.
B . Add an inbound rule to the security group for the EC2 instance with the following parameters:
Type – HTTPS, Source – 0.0.0.0/0.
C . Add an outbound rule to the security group for the EC2 instance with the following parameters:
Type – HTTP, Destination – 0.0.0.0/0.
D . Add an outbound rule to the security group for the EC2 instance with the following parameters:
Type – HTTPS. Destination – 0.0.0.0/0.

Reveal Solution Hide Solution

Amazon SOA-C02 AWS Certified SysOps Administrator – Associate Online Training

Amazon SOA-C02 AWS Certified SysOps Administrator – Associate Online Training

Amazon SOA-C02 Online Training

The questions for SOA-C02 were last updated at Jul 16,2025.

Latest SOA-C02 Dumps Valid Version with 54 Q&As