AWS Certified SysOps Administrator - Associate Questions and Answers (Dumps and Practice Questions)
Question : Sysadmin is trying to connect to a running EC instance using SSH. However, the user gets a Host key not found error. Which of the below
mentioned options is a possible reason for rejection?
1. The user has provided the wrong user name for the OS login
2. The instance CPU is heavily loaded
3. The security group is not configured properly
4. The access key to connect to the instance is wrong
Correct Answer : 1
Explanation: If the user is trying to connect to a Linux EC2 instance and receives the Host Key not found error the probable reasons are:
The private key pair is not right
The user name to login is wrong
Question : : A user has hosted an application on EC instances. The EC instances are configured with ELB and Auto Scaling. The application server session
time out is 2 hours. The user wants to configure connection draining to ensure that all in-flight requests are supported by ELB even though the
instance is being deregistered. What time out period should the user specify for connection draining?
1. 5 minutes
2. 1 hour
3. 30 minutes
4. 2 hours
Correct Answer :2
Explanation: When you enable Connection Draining on a load balancer, any back-end instances that you deregister will complete requests that are in progress before deregistration. Likewise,
if a back-end instance fails health checks, the load balancer will not send any new requests to the unhealthy instance but will allow existing requests to complete.
This means that you can perform maintenance such as deploying software upgrades or replacing back-end instances without impacting your customers experience.
Connection Draining is also integrated with Auto Scaling, making it even easier to manage the capacity behind your load balancer. When Connection Draining is enabled, Auto Scaling
will wait for outstanding requests to complete before terminating instances.
You can enable Connection Draining via the AWS Management Console, API, or Command Line Interface (CLI), as well as AWS CloudFormation.
When you enable connection draining, you can specify a maximum time for the load balancer to keep the connections alive before reporting the instance as deregistered. If you do not
specify the maximum timeout period, by default, the load balancer will close connections to the deregistering instance after 300 seconds.
The maximum timeout value can be set between 1 and 3600 seconds.
Question : A user is using the AWS EC. The user wants to have setup as such that when there is an issue in the EC server,
such as instance status failed, it should start a new instance in the user's private cloud.
Which AWS service helps to achieve this automation?
1. AWS CloudWatch + Cloudformation
2. AWS CloudWatch + AWS AutoScaling + AWS ELB
3. AWS CloudWatch + AWS VPC
4. AWS CloudWatch + AWS SNS
Correct Answer : 4
Explanation: Amazon SNS can deliver notifications by SMS text message or email to the Amazon Simple Queue Service (SQS. queues or to any HTTP endpoint. The user can configure a web service
(HTTP End point. in his data centre which receives data and launches an instance in the private cloud. The user should configure the CloudWatch alarm to send a notification to SNS
when the "StatusCheckFailed" metric is true for the EC2 instance. The SNS topic can be configured to send a notification to the user's HTTP end point which launches an instance in
the private cloud.
You can create an CloudWatch alarm that sends an Amazon Simple Notification Service message when the alarm changes state. An alarm watches a single metric over a time period you
specify, and performs one or more actions based on the value of the metric relative to a given threshold over a number of time periods. The action is a notification sent to an Amazon
Simple Notification Service topic or Auto Scaling policy. Alarms invoke actions for sustained state changes only. CloudWatch alarms will not invoke actions simply because they are in
a particular state, the state must have changed and been maintained for a specified number of periods.
After an alarm invokes an action due to a change in state, its subsequent behavior depends on the type of action that you have associated with the alarm. For Auto Scaling policy
notifications, the alarm continues to invoke the action for every period that the alarm remains in the new state. For Amazon Simple Notification Service notifications, no additional
actions are invoked.
An alarm has three possible states:
" OK-The metric is within the defined threshold
" ALARM-The metric is outside of the defined threshold
" INSUFFICIENT_DATA-The alarm has just started, the metric is not available, or not enough data is available for the metric to determine the alarm state
Related Questions
Question : A user is trying to create a PIOPS EBS volume with IOPS and GB size. AWS does not allow the user to create this volume. What is the possible root cause for this?
1. The ratio between IOPS and the EBS volume is higher than 30
2. The maximum IOPS supported by EBS is 3000
3. Access Mostly Uused Products by 50000+ Subscribers
4. PIOPS is supported for EBS higher than 500 GB size
Question : A user has setup a custom application which generates a number in decimals. The user wants to track that number and setup the alarm whenever
the number is above a certain limit. The application is sending the data to CloudWatch at regular intervals for this purpose. Which of the below
mentioned statements is not true with respect to the above scenario?
1. The user can get the aggregate data of the numbers generated over a minute and send it to CloudWatch
2. The user has to supply the timezone with each data point
3. Access Mostly Uused Products by 50000+ Subscribers
4. The user can create a file in the JSON format with the metric name and value and supply it to CloudWatch
Question : A user has launched an EC Windows instance from an instance store backed AMI. The user has also set the Instance initiated shutdown
behavior to stop. What will happen when the user shuts down the OS?
1. It will not allow the user to shutdown the OS when the shutdown behaviour is set to Stop
2. It is not possible to set the termination behaviour to Stop for an Instance store backed AMI instance
3. Access Mostly Uused Products by 50000+ Subscribers
4. The instance will be terminated
Question : A user has enabled versioning on an S bucket. The user is using server side encryption for data at Rest. If the user is supplying his own keys for
encryption SSE-C., which of the below mentioned statements is true?
1. The user should use the same encryption key for all versions of the same object
2. It is possible to have different encryption keys for different versions of the same object
3. Access Mostly Uused Products by 50000+ Subscribers
4. The SSE-C does not work when versioning is enabled
Question : A user has created a VPC with CIDR .../. The user has created one subnet with CIDR .../ in this VPC. The user is trying to create
another subnet with the same VPC for CIDR 20.0.0.1/24. What will happen in this scenario?
1. The VPC will modify the first subnet CIDR automatically to allow the second subnet IP range
2. It is not possible to create a subnet with the same CIDR as VPC
3. Access Mostly Uused Products by 50000+ Subscribers
4. It will throw a CIDR overlaps error
Question : A user has launched an RDS MySQL DB with the Multi AZ feature. The user has scheduled the scaling of
instance storage during maintenance window. What is the correct order of events during maintenance window?
1. Perform maintenance on standby
2. Promote standby to primary
3. Access Mostly Uused Products by 50000+ Subscribers
4. Promote original master back as primary
1. 1, 2, 3, 4
2. 1, 2, 3
3. Access Mostly Uused Products by 50000+ Subscribers
4. 3, 2, 1