Premium

AWS Certified SysOps Administrator - Associate Questions and Answers (Dumps and Practice Questions)



Question : You are building a system to distribute confidential training videos to employees. Using CloudFront,
what method would be used to serve content that is stored in S3, but not publicly accessible from S3 directly?


: You are building a system to distribute confidential training videos to employees. Using CloudFront,
1. Create an Origin Access Identify (OAI) for CloudFront and grant access to the objects in your S3 bucket to that OAI.
2. Create an Identity and Access Management (IAM) User for CloudFront and grant access to the objects in your S3 bucket to that IAM user.
 3. Access Mostly Uused Products by 50000+ Subscribers


Correct Answer : Get Lastest Questions and Answer :

Explanation: Typically, if you're using an Amazon S3 bucket as the origin for a CloudFront distribution, you grant everyone permission to read the objects in your bucket. This allows anyone
to access your objects using either the CloudFront URL or the Amazon S3 URL. CloudFront doesn't expose Amazon S3 URLs, but your users may have those URLs if your application serves
any objects directly from Amazon S3 or if anyone gives out direct links to specific objects in Amazon S3.

If you want to use CloudFront signed URLs to provide access to objects in your Amazon S3 bucket, you probably also want to prevent users from accessing your Amazon S3 objects using
Amazon S3 URLs. If users access your objects directly in Amazon S3, they bypass the controls provided by CloudFront signed URLs, including control over when a URL expires and control
over which IP addresses can be used to access the objects. In addition, if users access objects using both CloudFront URLs and Amazon S3 URLs, CloudFront access logs are less useful
because they're incomplete.

You restrict access to Amazon S3 content by creating an origin access identity, which is a special CloudFront user. You change Amazon S3 permissions to give the origin access
identity permission to access your objects, and to remove permissions from everyone else. When your users access your Amazon S3 objects using CloudFront URLs, the CloudFront origin
access identity gets the objects on your users' behalf. If your users try to access objects using Amazon S3 URLs, they're denied access. The origin access identity has permission to
access objects in your Amazon S3 bucket, but users don't.





Question :
Which of the following will occur when an EC2 instance in a VPC (Virtual Private Cloud) with an associated Elastic IP is stopped and started?

:
1. The Elastic IP will be dissociated from the instance
2. All data on instance-store devices will be lost
 3. Access Mostly Uused Products by 50000+ Subscribers
4. The underlying host for the instance is changed

Correct Answer : Get Lastest Questions and Answer :

Explanation:





Question :
To protect S3 data from both accidental deletion and accidental overwriting, you should

:
1. enable S3 versioning on the bucket
2. access S3 data using only signed URLs
 3. Access Mostly Uused Products by 50000+ Subscribers
4. enable Multi-Factor Authentication (MFA) protected access

Correct Answer : Get Lastest Questions and Answer :

Explanation: Versioning allows you to preserve, retrieve, and restore every version of every file in an Amazon S3 bucket. Once you enable Versioning for a bucket, Amazon S3 preserves
existing files anytime you overwrite or delete them.


:
Correct Answer : Get Lastest Questions and Answer :

Explanation:

Related Questions

Question : You are tasked with setting up a cluster of EC Instances for a NoSOL database The database
requires random read 10 disk performance up to a 100.000 IOPS at 4KB block side per node
Which of the following EC2 instances will perform the best for this workload?
 : You are tasked with setting up a cluster of EC Instances for a NoSOL database The database
1. A High-Memory Quadruple Extra Large (m2 4xlarge) with EBS-Optimized set to true and a PIOPs EBS volume
2. A Cluster Compute Eight Extra Large (cc2 8xlarge) using instance storage
3. Access Mostly Uused Products by 50000+ Subscribers
4. A Cluster GPU Quadruple Extra Large (cg1 4xlarge) using four separate 4000 PIOPS EBS volumes in a RAID 0 configuration




Question : When an EC EBS-backed (EBS root) instance is stopped, what happens to the data on any ephemermal store volumes?
 : When an EC EBS-backed (EBS root) instance is stopped, what happens to the data on any ephemermal store volumes?
1. Data will be deleted and will no longer be accessible
2. Data Is automatically saved in an EBS volume.
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Data is unavailable until the instance is restarted



Question : Your team Is excited about theuse of AWS because now they have access to programmable
Infrastructure" You have been asked to manage your AWS infrastructure In a manner similar to
the way you might manage application code You want to be able to deploy exact copies of
different versions of your infrastructure, stage changes into different environments, revert back to
previous versions, and identify what versions are running at any particular time (development test
QA. production).

Which approach addresses this requirement?


 : Your team Is excited about theuse of AWS because now they have access to programmable
1. Use cost allocation reports and AWS Opsworks to deploy and manage your infrastructure.
2. Use AWS CloudWatch metrics and alerts along with resource tagging to deploy and manage your infrastructure.
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Use AWS CloudFormation and a version control system like GIT to deploy and manage your infrastructure.



Question : You have a server with a OGB Amazon EBS data volume. The volume is % full. You need to
back up the volume at regular intervals and be able to re-create the volume in a new Availability
Zone in the shortest time possible. All applications using the volume can be paused for a period of
a few minutes with no discernible user impact.
Which of the following backup methods will best fulfill your requirements?
 : You have a server with a OGB Amazon EBS data volume. The volume is % full. You need to
1. Take periodic snapshots of the EBS volume
2. Use a third party Incremental backup application to back up to Amazon Glacier
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Create another EBS volume in the second Availability Zone attach it to the Amazon EC2 instance, and use a disk manager to mirror the two disks



Question : Your company Is moving towards tracking web page users with a small tracking Image loaded on
each page Currently you are serving this image out of US-East, but are starting to get concerned
about the time It takes to load the image for users on the west coast.
What are the two best ways to speed up serving this image?

Choose 2 answers
A. Use Route 53's Latency Based Routing and serve the image out of US-West-2 as well as USEast-1
B. Serve the image out through CloudFront
C. Serve the image out of S3 so that it isn't being served oft of your web application tier
D. Use EBS PIOPs to serve the image faster out of your EC2 instances
 : Your company Is moving towards tracking web page users with a small tracking Image loaded on
1. A,C
2. C,D
 3. Access Mostly Uused Products by 50000+ Subscribers
4. A,D
5. A,B


Question : If you want to launch Amazon Elastic Compute Cloud (EC) Instances and assign each Instance a
predetermined private IP address you should:
 : If you want to launch Amazon Elastic Compute Cloud (EC) Instances and assign each Instance a
1. Assign a group or sequential Elastic IP address to the instances
2. Launch the instances in a Placement Group
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Use standard EC2 instances since each instance gets a private Domain Name Service (DNS) already
5. Launch the Instance from a private Amazon Machine image (AMI)