• Home
  • Articles
  • [Feb 24, 2023] Fully Updated AWS-SysOps Dumps - 100% Same Q&A In Your Real Exam [Q53-Q77]

[Feb 24, 2023] Fully Updated AWS-SysOps Dumps - 100% Same Q&A In Your Real Exam [Q53-Q77]

Share

[Feb 24, 2023] Fully Updated AWS-SysOps Dumps - 100% Same Q&A In Your Real Exam

Latest AWS-SysOps Exam Dumps - Valid and Updated Dumps


Who are the potential candidates?

The Amazon AWS Certified SysOps Administrator – Associate certification and its exam is intended for the Systems Administrators who carry out the system operations roles. These specialists have a minimum of one year of experience in deploying, operating, and managing Amazon Web Services as well as at least one year of work experience in the above-mentioned role.

 

NEW QUESTION 53
An organization is planning to use AWS for their production roll out. The organization wants to implement automation for deployment such that it will automatically create a LAMP stack, download the latest PHP installable from S3 and setup the ELB. Which of the below mentioned AWS services meets the requirement for making an orderly deployment of the software?

  • A. AWS DevOps
  • B. AWS CloudFormation
  • C. AWS Elastic Beanstalk
  • D. AWS CloudFront

Answer: B

Explanation:
Explanation
AWS CloudFormation is an application management tool which provides application modelling, deployment, configuration, management and related activities. CloudFormation provides an easy way to create and delete the collection of related AWS resources and provision them in an orderly way. AWS CloudFormation automates and simplifies the task of repeatedly and predictably creating groups of related resources that power the user's applications. AWS CloudFront is a CDN; Elastic Beanstalk does quite a few of the required tasks.
However, it is a PAAS which uses a ready AMI. AWS Elastic Beanstalk provides an environment to easily develop and run applications in the cloud.

 

NEW QUESTION 54
What does Amazon IAM stand for?

  • A. Amazon Identity and Authentication Mechanism
  • B. Amazon Identity and Access Management
  • C. Amazon Integrated Access Management
  • D. None of these

Answer: B

Explanation:
Explanation
Amazon IAM stands for Amazon Identity and Access Management. The "identity" aspect of AWS IAM helps you with the question "Who is that user?", often referred to as authentication.
References:

 

NEW QUESTION 55
A SysOps Administrator has implemented an Auto Scaling group with a step scaling policy. The Administrator notices that the additional instances have not been included in the aggregated metrics.
Why are the additional instances missing from the aggregated metrics?

  • A. The instances are included in a different set of metrics
  • B. The instances are still in the boot process
  • C. The warm-up period has not expired
  • D. The instances have not been attached to the Auto Scaling group

Answer: B

 

NEW QUESTION 56
A user has created photo editing software and hosted it on EC2. The software accepts requests from the
user about the photo format and resolution and sends a message to S3 to enhance the picture
accordingly. Which of the below mentioned AWS services will help make a scalable software with the
AWS infrastructure in this scenario?

  • A. AWS Simple Queue Service
  • B. AWS Glacier
  • C. AWS Elastic Transcoder
  • D. AWS Simple Notification Service

Answer: A

Explanation:
Amazon Simple Queue Service (SQS) is a fast, reliable, scalable, and fully managed message queuing
service. SQS provides a simple and cost-effective way to decouple the components of an application. The
user can configure SQS, which will decouple the call between the EC2 application and S3. Thus, the
application does not keep waiting for S3 to provide the data.
Reference: http://aws.amazon.com/sqs/faqs/

 

NEW QUESTION 57
A user is sending custom data metrics to CloudWatch. What is the allowed time stamp granularity for each data point published for the custom metric?

  • A. 1 second
  • B. 1 nanosecond
  • C. 1 minute
  • D. 1 millisecond

Answer: D

Explanation:
Explanation/Reference:
Explanation:
The user is allowed to send data up to one-thousandth of a second. CloudWatch aggregates the data by each minute and generates a metric for that.
Reference:
http://docs.aws.amazon.com/AmazonCloudWatch/latest/DeveloperGuide/publishingMetrics.html

 

NEW QUESTION 58
A sysops administrator set up an Amazon ElastiCache for Memcached cluster for an application.
During testing, the application experiences increased latency. Amazon CloudWatch metrics for the Memcached cluster show CPUUtilization is consistently above 95% and FreeableMemory is consistently under 1 MB.
Which action will solve the problem?

  • A. Replace the Memcached cluster and select a node type that has a higher CPU and memory.
  • B. Configure ElastiCache automatic scaling for the Memcached cluster. Set the CPUUtilization metrics as a scaling trigger above 75% and FreeableMemory below 10 MB.
  • C. Configure ElastiCache read replicas for each Memcached node in different Availability Zones to distribute the workload.
  • D. Deploy an Application Load Balancer to distribute the workload to Memcached cluster nodes.

Answer: A

Explanation:
https://docs.amazonaws.cn/en_us/AmazonElastiCache/latest/mem-ug/memcached-ug.pdf

 

NEW QUESTION 59
A SysOps Administrator needs an Amazon EBS volume type for a big data application. The application data is accessed infrequently and stored sequentially.
What EBS volume type will be the MOST cost-effective solution?

  • A. Cold HDD (sc1)
  • B. Provisioned IOPS SSD (io1)
  • C. General Purpose SSD (gp2)
  • D. Throughput Optimized HDD (st1)

Answer: D

 

NEW QUESTION 60
A user has setup an EBS backed instance and attached 2 EBS volumes to it. The user has setup a CloudWatch alarm on each volume for the disk data. The user has stopped the EC2 instance and detached the EBS volumes.
What will be the status of the alarms on the EBS volume?

  • A. Alarm
  • B. OK
  • C. The EBS cannot be detached until all the alarms are removed
  • D. Insufficient Data

Answer: D

Explanation:
Explanation
Amazon CloudWatch alarm watches a single metric over a time period that the user specifies and performs one or more actions based on the value of the metric relative to a given threshold over a number of time periods. Alarms invoke actions only for sustained state changes. There are three states of the alarm: OK, Alarm and Insufficient data. In this case since the EBS is detached and inactive the state will be Insufficient.

 

NEW QUESTION 61
A user has created a Cloudformation stack. The stack creates AWS services, such as EC2 instances, ELB, AutoScaling, and RDS. While creating the stack it created EC2, ELB and
AutoScaling but failed to create RDS. What will Cloudformation do in this scenario?

  • A. Rollback all the changes and terminate all the created services
  • B. Cloudformation can never throw an error after launching a few services since it verifies all the steps before launching
  • C. It will wait for the user's input about the error and correct the mistake after the input
  • D. It will warn the user about the error and ask the user to manually create RDS

Answer: A

Explanation:
AWS Cloudformation is an application management tool which provides application modelling, deployment, configuration, management and related activities. The AWS Cloudformation stack is a collection of AWS resources which are created and managed as a single unit when AWS CloudFormation instantiates a template. If any of the services fails to launch, Cloudformation will rollback all the changes and terminate or delete all the created services.

 

NEW QUESTION 62
A user has created an application which will be hosted on EC2. The application makes API calls to DynamoDB to fetch certain data. The application running on this instance is using the SDK for making these calls to DynamoDB. Which of the below mentioned statements is true with respect to the best practice for security in this scenario?

  • A. The user should attach an IAM role to the EC2 instance with necessary permissions for making API calls to DynamoDB.
  • B. The user should create an IAM role with EC2 permissions to deploy the application
  • C. The user should create an IAM user with DynamoDB and EC2 permissions. Attach the user with the application so that it does not use the root account credentials
  • D. The user should create an IAM user with permissions to access DynamoDB and use its credentials within the application for connecting to DynamoDB

Answer: A

Explanation:
Explanation
With AWS IAM a user is creating an application which runs on an EC2 instance and makes requests to AWS, such as DynamoDB or S3 calls. Here it is recommended that the user should not create an IAM user and pass the user's credentials to the application or embed those credentials inside the application. Instead, the user should use roles for EC2 and give that role access to DynamoDB /S3. When the roles are attached to EC2, it will give temporary security credentials to the application hosted on that EC2, to connect with DynamoDB / S3.
References:

 

NEW QUESTION 63
When rebalancing, Auto Scaling launches new instances before terminating the old ones, so that re- balancing does not compromise the performance or availability of your application. Because Auto Scaling attempts to launch new instances before terminating the old ones, being at or near the speci-fied maximum capacity could impede or completely halt rebalancing activities. What does Auto Scaling do in order to avoid this problem?

  • A. It can temporarily exceed the specified maximum capacity of a group by a 5 percent margin (or by a 1- instance margin, whichever is greater) during a rebalancing activity.
  • B. It can temporarily exceed the specified maximum capacity of a group by a 20 percent margin (or by a 2- instance margin, whichever is greater) during a rebalancing activity.
  • C. It can add new reserved instances you have defined.
  • D. It can temporarily exceed the specified maximum capacity of a group by a 10 percent margin (or by a 1- instance margin, whichever is greater) during a rebalancing activity.

Answer: D

Explanation:
Explanation/Reference:
Explanation:
When rebalancing, Auto Scaling launches new instances before terminating the old ones, so that re- balancing does not compromise the performance or availability of your application. Because Auto Scaling attempts to launch new instances before terminating the old ones, being at or near the speci-fied maximum capacity could impede or completely halt rebalancing activities. To avoid this prob-lem, the system can temporarily exceed the specified maximum capacity of a group by a 10 percent margin (or by a 1-instance margin, whichever is greater) during a rebalancing activity.
Reference:
http://docs.aws.amazon.com/autoscaling/latest/userguide/auto-scaling-benefits.html

 

NEW QUESTION 64
An organization has configured a VPC with an Internet Gateway (IGW). pairs of public and private subnets (each with one subnet per Availability Zone), and an Elastic Load Balancer (ELB) configured to use the public subnets The application s web tier leverages the ELB. Auto Scaling and a mum-AZ RDS database instance The organization would like to eliminate any potential single points ft failure in this design.
What step should you take to achieve this organization's objective?

  • A. Create and attach a second IGW to provide redundant internet connectivity.
  • B. Create a second multi-AZ RDS instance in another Availability Zone and configure replication to provide a redundant database.
  • C. Create and configure a second Elastic Load Balancer to provide a redundant load balancer.
  • D. Nothing, there are no single points of failure in this architecture.

Answer: D

 

NEW QUESTION 65
A user is planning to evaluate AWS for their internal use. The user does not want to incur any charge on his account during the evaluation. Which of the below mentioned AWS services would incur a charge if used?

  • A. AWS S3 with 1 GB of storage
  • B. AWS PIOPS volume of 10 GB size
  • C. AWS micro instance running 24 hours daily
  • D. AWS ELB running 24 hours a day

Answer: B

Explanation:
Explanation/Reference:
Explanation:
AWS is introducing a free usage tier for one year to help the new AWS customers get started in Cloud.
The free tier can be used for anything that the user wants to run in the Cloud. AWS offers a handful of AWS services as a part of this which includes 750 hours of free micro instances and 750 hours of ELB. It includes the AWS S3 of 5 GB and AWS EBS general purpose volume up to 30 GB. PIOPS is not part of free usage tier.

 

NEW QUESTION 66
A web-based application is running in AWS. The application is using a MySQL Amazon RDS database instance for persistence. The application stores transactional data and is read-heavy. The RDS instance gets busy during the peak usage, which shows the overall application response times.
The SysOps Administrator is asked to improve the read queries performance using a scalable solution.
Which options will meet these requirements? (Choose two.)

  • A. Create a read replica of the RDS instance
  • B. Enable the RDS database Multi-AZ option
  • C. Scale up the RDS instance to a larger instance size
  • D. Use Amazon DynamoDB instead of RDS
  • E. Use Amazon ElastiCache to cache read queries

Answer: A,E

 

NEW QUESTION 67
An application is running on Amazon EC2 instances behind a Classic Load Balancer. The instances run in an Auto Scaling group across multiple Availability Zones. Occasionally multiple incoming requests will receive a 5xx HTTP response when making a request to the Classic Load Balancer. From the Amazon CloudWatch metrics, a SysOps Administrator observes the Elastic Load Balancing (ELB) SpillOverCount metric to be greater than zero during these occasions.
These errors can be avoided by triggering scaling actions on which ELB metric?

  • A. HealthyHostCount
  • B. UnHealthyHostCount
  • C. SurgeQueueLength
  • D. BackendConnectionErrors

Answer: C

 

NEW QUESTION 68
A user has created an ELB with the availability zone US-East-1.
The user wants to add more zones to ELB to achieve High Availability. How can the user add more zones to the existing ELB?

  • A. The user should stop the ELB and add zones and instances as required
  • B. The only option is to launch instances in different zones and add to ELB
  • C. The user can add zones on the fly from the AWS console
  • D. It is not possible to add more zones to the existing ELB

Answer: B

 

NEW QUESTION 69
A user has created an ELB with the availability zone US-East-1A. The user wants to add more zones to
ELB to achieve High Availability. How can the user add more zones to the existing ELB?

  • A. The user should stop the ELB and add zones and instances as required
  • B. It is not possible to add more zones to the existing ELB
  • C. The user can add zones on the fly from the AWS console
  • D. The only option is to launch instances in different zones and add to ELB

Answer: C

Explanation:
The user has created an Elastic Load Balancer with the availability zone and wants to add more zones to
the existing ELB. The user can do so in two ways:
From the console or CLI, add new zones to ELB;
Launch instances in a separate AZ and add instances to the existing ELB.
Reference:
http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/enable-disable-az.html

 

NEW QUESTION 70
Is it possible to access S3 objects from the Internet?

  • A. Yes, but it has to pass through EC2.
  • B. No, only a general overview of S3 objects can be read from the Internet.
  • C. No, there is no way to access any S3 objects from the Internet.
  • D. Yes, it is possible if proper public readable accesses and ACLs are set.

Answer: D

Explanation:
Explanation
You must grant read permission on the specific objects to make them publicly accessible so that your users can view them on your website. You make objects publicly readable by using either the object ACL or by writing a bucket policy.

 

NEW QUESTION 71
Which of the following statements about this S3 bucket policy is true?

  • A. Grants all the servers within the 192 168 100 0/24 subnet full access to the "mybucket" bucket
  • B. Grants all the servers within the 192 168 100 188/32 subnet full access to the "mybucket" bucket
  • C. Denies the server with the IP address 192 168 100 188 full access to the "mybucket" bucket
  • D. Denies the server with the IP address 192 168 100 0 full access to the "mybucket" bucket

Answer: C

 

NEW QUESTION 72
A user has created a VPC with CIDR 20.0.0.0/16 with only a private subnet and VPN connection using the VPC wizard. The user wants to connect to the instance in a private subnet over SSH. How should the user define the security rule for SSH?

  • A. Allow Inbound traffic on port 22 from the user's network
  • B. The user has to create an instance in EC2 Classic with an elastic IP and configure the security group of a private subnet to allow SSH from that elastic IP
  • C. The user can connect to a instance in a private subnet using the NAT instance
  • D. Allow Inbound traffic on port 80 and 22 to allow the user to connect to a private subnet over the Internet

Answer: A

Explanation:
The user can create subnets as per the requirement within a VPC. If the user wants to connect VPC from his own data centre, the user can setup a case with a VPN only subnet (private. which uses VPN access to connect with his data centre. When the user has configured this setup with Wizard, all network connections to the instances in the subnet will come from his data centre. The user has to configure the security group of the private subnet which allows the inbound traffic on SSH (port 22. from the data centre's network range.

 

NEW QUESTION 73
A recent audit found that most resources belonging to the Development team were in violation of patch
compliance standards. The resources were properly tagged.
Which service should be used to quickly remediate the issue and bring the resources back into compliance?

  • A. AWS Trusted Advisor
  • B. Amazon Inspector
  • C. AWS Systems Manager
  • D. AWS Config

Answer: C

Explanation:
Explanation/Reference: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-compliance-fixing.html

 

NEW QUESTION 74
You run a web application where web servers on EC2 Instances are In an Auto Scaling group Monitoring
over the last 6 months shows that 6 web servers are necessary to handle the minimum load During the day up to 12 servers are needed Five to six days per year, the number of web servers required might go up to 15.
What would you recommend to minimize costs while being able to provide hill availability?

  • A. 6 Reserved instances (heavy utilization). 6 Reserved instances {medium utilization), rest covered by On-Demand instances
  • B. 6 Reserved instances (heavy utilization). 6 On-Demand instances, rest covered by Spot Instances
  • C. 6 Reserved instances (heavy utilization) 6 Spot instances, rest covered by On-Demand instances
  • D. 6 Reserved instances (heavy utilization) 6 Reserved instances (medium utilization) rest covered by Spot instances

Answer: C

 

NEW QUESTION 75
A SysOps Administrator is deploying a legacy web application on AWS. The application has four Amazon EC2 instances behind Classic Load Balancer and stores data in an Amazon RDS instance. The legacy application has known vulnerabilities to SQL injection attacks, but the application code is no longer available to update.
What cost-effective configuration change should the Administrator make to migrate the risk of SQL injection attacks?

  • A. Configure AWS WAF with a Classic Load Balancer for protection against SQL injection attacks.
  • B. Configure Amazon GuardDuty to monitor the application for SQL injection threats.
  • C. Configure an Amazon CloudFront distribution with the Classic Load Balancer as the origin and subscribe to AWS Shield Standard.
  • D. Replace the Classic Load Balancer with an Application Load Balancer and configure AWS WAF on the Application Load Balancer.

Answer: A

Explanation:
http://jayendrapatil.com/page/15/?cat=-1

 

NEW QUESTION 76
A user has recently started using EC2. The user launched one EC2 instance in the default subnet in EC2-VPC
Which of the below mentioned options is not attached or available with the EC2 instance when it is launched?

  • A. Elastic IP
  • B. Private IP address
  • C. Internet gateway
  • D. Public IP address

Answer: A

Explanation:
A Virtual Private Cloud (VPC. is a virtual network dedicated to a user's AWS account. A subnet is a range of IP
addresses in the VPC. The user can launch the AWS resources into a subnet. There are two supported
platforms into which a user can launch instances: EC2-Classic and EC2-VPC (default subnet. A default VPC
has all the benefits of EC2-VPC and the ease of use of EC2-Classic. Each instance that the user launches into
a default subnet has a private IP address and a public IP address. These instances can communicate with the
internet through an internet gateway. An internet gateway enables the EC2
instances to connect to the internet through the Amazon EC2 network edge.

 

NEW QUESTION 77
......


Domain 7: Automation and Optimization

  • Utilize the AWS services for the management and use of resources.
  • Take necessary steps for the minimization of management overhead.
  • Implement strategies for cost-optimization with regards to effective resource utilization.

 

Free Sales Ending Soon - 100% Valid AWS-SysOps Exam: https://testking.vceprep.com/AWS-SysOps-latest-vce-prep.html

Related Articles

more
Amazon AWS-SysOps Certification Practice Exam