Premium

AWS Certified SysOps Administrator - Associate Questions and Answers (Dumps and Practice Questions)



Question : A user is trying to setup a security policy for ELB. The user wants ELB to meet the cipher supported by the client by configuring the server order
preference in ELB security policy. Which of the below mentioned
preconfigured policies supports this feature?
: A user is trying to setup a security policy for ELB. The user wants ELB to meet the cipher supported by the client by configuring the server order
1. ELBSecurity Policy-2014-01
2. ELBSecurity Policy-2011-08
3. ELBDefault Negotiation Policy
4. ELBSample- OpenSSLDefault Cipher Policy


Correct Answer : 1
Elastic Load Balancing uses a Secure Socket Layer (SSL. negotiation configuration which is known as a
Security Policy. It is used to negotiate the SSL connections between a client and the load balancer. If the load balancer is configured to support
the Server Order Preference, then the load balancer gets to select the first cipher in its list that matches any one of the ciphers in the client's list.
When the user verifies the preconfigured policies supported by ELB, the policy "ELBSecurity Policy-2014-01" supports server order preference.






Question : A user has configured ELB with Auto Scaling. The user suspended the Auto Scaling AlarmNotification (which notifies Auto Scaling for CloudWatch
alarms. process for a while. What will Auto Scaling do during this period?
: A user has configured ELB with Auto Scaling. The user suspended the Auto Scaling AlarmNotification (which notifies Auto Scaling for CloudWatch
1. AWS will not receive the alarms from CloudWatch
2. AWS will receive the alarms but will not execute the Auto Scaling policy
3. Auto Scaling will execute the policy but it will not launch the instances until the process is resumed
4. It is not possible to suspend the AlarmNotification process

Correct Answer : 2

Explanation: Auto Scaling performs various processes, such as Launch, Terminate Alarm Notification etc. The user can also suspend individual process. The
AlarmNotification process type accepts notifications from the Amazon CloudWatch alarms that are associated with the Auto Scaling group. If the
user suspends this process type, Auto Scaling will not automatically execute the scaling policies that would be triggered by the alarms.





Question : Arvind has launched three EC instances inside the US-East-a zone with his AWS account. Rohit has
launched two EC2 instances in the US-East-1a zone with his AWS account. Which of the below mentioned statements will help Arvind and Rohit
to understand the availability zone (AZ). concept better?
: Arvind has launched three EC instances inside the US-East-a zone with his AWS account. Rohit has
1. The instances of Arvind and Rohit will be running in the same data centre
2. All the instances of Arvind and Rohit can communicate over a private IP with a minimal cost
3. All the instances of Arvind and Rohit can communicate over a private IP without any cost
4. The US-East-1a region of Arvind and Rohit can be different availability zones

Correct Answer : 4

Explanation: Each AWS region has multiple, isolated locations known as Availability Zones. To ensure that the AWS
resources are distributed across the Availability Zones for a region, AWS independently maps the Availability Zones to identifiers for each account.
In this case the Availability Zone US-East-1a where Arvind's EC2 instances are running might not be the same location as the US-East-1a zone
of Rohit's EC2 instances. There is no way for the user to coordinate the Availability Zones between accounts.



Related Questions

Question : A user has granted read/write permission of his S bucket using ACL. Which of the below mentioned options is a valid ID to grant permission to
other AWS accounts grantee. using ACL?
 : A user has granted read/write permission of his S bucket using ACL. Which of the below mentioned options is a valid ID to grant permission to
1. IAM User ID
2. S3 Secure ID
3. Access Mostly Uused Products by 50000+ Subscribers
4. Canonical user ID



Question : A user has configured an ELB to distribute the traffic among multiple instances. The user instances are facing some issues due to the back-end
servers. Which of the below mentioned CloudWatch metrics helps the user understand the issue with the instances?
 : A user has configured an ELB to distribute the traffic among multiple instances. The user instances are facing some issues due to the back-end
1. HTTPCode_Backend_3XX
2. HTTPCode_Backend_4XX
 3. Access Mostly Uused Products by 50000+ Subscribers
4. HTTPCode_Backend_5XX





Question : A user has launched an EC instance store backed instance in the US-East-a zone. The user created AMI # and copied it to the Europe region.
After that, the user made a few updates to the application running in the US-East-1a zone. The user makes an AMI#2 after the changes. If the
user launches a new instance in Europe from the AMI #1 copy, which of the below mentioned statements is true?
 : A user has launched an EC instance store backed instance in the US-East-a zone. The user created AMI # and copied it to the Europe region.
1. The new instance will have the changes made after the AMI copy as AWS just copies the reference of
the original AMI during the copying. Thus, the copied AMI will have all the updated data
2. The new instance will have the changes made after the AMI copy since AWS keeps updating the AMI
 3. Access Mostly Uused Products by 50000+ Subscribers
4. The new instance in the EU region will not have the changes made after the AMI copy


Question : A user runs the command "dd if=/dev/zero of=/dev/xvdfbs=M" on a fresh blank EBS volume attached to a Linux instance. Which of the below
mentioned activities is the user performing with the command given above?
 : A user runs the command
1. Creating a file system on the EBS volume
2. Mounting the device to the instance
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Formatting the EBS volume


Question : A user has created an Auto Scaling group using CLI. The user wants to enable CloudWatch detailed
monitoring for that group. How can the user configure this?

 : A user has created an Auto Scaling group using CLI. The user wants to enable CloudWatch detailed
1. When the user sets an alarm on the Auto Scaling group, it automatically enables detail monitoring
2. By default detailed monitoring is enabled for Auto Scaling
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Enable detail monitoring from the AWS console


Question : A user has created a VPC with a public subnet. The user has terminated all the instances which are part of the subnet. Which of the below
mentioned statements is true with respect to this scenario?
 : A user has created a VPC with a public subnet. The user has terminated all the instances which are part of the subnet. Which of the below
1. The user cannot delete the VPC since the subnet is not deleted
2. All network interface attached with the instances will be deleted
 3. Access Mostly Uused Products by 50000+ Subscribers
4. The subnet to which the instances were launched with will be deleted