Dumps4free
Discount Offer
Go Back on SOA-C02 Exam
Available in 1, 3, 6 and 12 Months Free Updates Plans
PDF: $15 $60

Test Engine: $20 $80

PDF + Engine: $25 $99



Pass exam with Dumps4free or we will provide you with three additional months of access for FREE.

SOA-C02 Practice Test

Whether you're a beginner or brushing up on skills, our SOA-C02 practice exam is your key to success. Our comprehensive question bank covers all key topics, ensuring you’re fully prepared.


Page 10 out of 98 Pages

Topic 1: Mix Questions

A company has a stateful web application that is hosted on Amazon EC2 instances in an
Auto Scaling group. The instances run behind an Application Load Balancer (ALB) that has
a single target group. The ALB is configured as the origin in an Amazon CloudFront
distribution. Users are reporting random logouts from the web application.
Which combination of actions should a SysOps administrator take to resolve this problem?
(Select TWO.)


A.

Change to the least outstanding requests algorithm on the ALB target group.


B.

Configure cookie forwarding in the CloudFront distribution cache behavior.


C.

Configure header forwarding in the CloudFront distribution cache behavior.


D.

Enable group-level stickiness on the ALB listener rule.


E.

Enable sticky sessions on the ALB target group.





B.   

Configure cookie forwarding in the CloudFront distribution cache behavior.



E.   

Enable sticky sessions on the ALB target group.



Explanation:
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Cookies.html
You can configure each cache behavior to do one of the following: Forward all cookies to
your origin – CloudFront includes all cookies sent by the viewer when it forwards requests
to the origin. https://docs.aws.amazon.com/elasticloadbalancing/latest/application/stickysessions.
html
By default, an Application Load Balancer routes each request independently to a registered
target based on the chosen load-balancing algorithm.

A company is using Amazon Elastic File System (Amazon EFS) to share a file system
among several Amazon EC2 instances. As usage increases, users report that file retrieval
from the EFS file system is slower than normal.
Which action should a SysOps administrator take to improve the performance of the file
system?


A.

Configure the file system for Provisioned Throughput.


B.

Enable encryption in transit on the file system.


C.

Identify any unused files in the file system, and remove the unused files.


D.

Resize the Amazon Elastic Block Store (Amazon EBS) volume of each of the EC2 instances.





A.   

Configure the file system for Provisioned Throughput.



A company asks a SysOps administrator to ensure that AWS CloudTrail files are not tampered with after they are created. Currently, the company uses AWS Identity and Access Management (IAM) to restrict access to specific trails. The company's security team needs the ability to trace the integrity of each file.
What is the MOST operationally efficient solution that meets these requirements?


A.

Create an Amazon EventBridge (Amazon CloudWatch Events) rule that invokes an AWS Lambda function when a new file is delivered. Configure the Lambda function to compute an MD5 hash check on the file and store the result in an Amazon DynamoDB
table. The security team can use the values that are stored in DynamoDB to verify the
integrity of the delivered files.


B.

Create an AWS Lambda function that is invoked each time a new file is delivered to the
CloudTrail bucket. Configure the Lambda function to compute an MD5 hash check on the
file and store the result as a tag in an Amazon S3 object. The security team can use the
information in the tag to verify the integrity of the delivered files.


C.

Enable the CloudTrail file integrity feature on an Amazon S3 bucket. Create an IAM
policy that grants the security team access to the file integrity logs that are stored in the S3
bucket.


D.

Enable the CloudTrail file integrity feature on the trail. The security team can use the digest file that is created by CloudTrail to verify the integrity of the delivered files.





D.   

Enable the CloudTrail file integrity feature on the trail. The security team can use the digest file that is created by CloudTrail to verify the integrity of the delivered files.



Explanation: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-logfile-
validation-intro.html
"When you enable log file integrity validation, CloudTrail creates a hash for every log file
that it delivers. Every hour, CloudTrail also creates and delivers a file that references the
log files for the last hour and contains a hash of each. This file is called a digest file.
Validated log files are invaluable in security and forensic investigations"

A company uses an AWS CloudFormation template to provision an Amazon EC2 instance
and an Amazon RDS DB instance A SysOps administrator must update the template to
ensure that the DB instance is created before the EC2 instance is launched
What should the SysOps administrator do to meet this requirement?


A.

Add a wait condition to the template Update the EC2 instance user data script to send a
signal after the EC2 instance is started


B.

Add the DependsOn attribute to the EC2 instance resource, and provide the logical name of the RDS resource


C.

Change the order of the resources in the template so that the RDS resource is listed before the EC2 instance resource


D.

Create multiple templates Use AWS CloudFormation StackSets to wait for one stack to complete before the second stack is created





B.   

Add the DependsOn attribute to the EC2 instance resource, and provide the logical name of the RDS resource



Explanation: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/awsattribute-
dependson.html
Syntax The DependsOn attribute can take a single string or list of strings. "DependsOn" : [
String, ... ] Example The following template contains an AWS::EC2::Instance resource with
a DependsOn attribute that specifies myDB, an AWS::RDS::DBInstance. When
CloudFormation creates this stack, it first creates myDB, then creates Ec2Instance.

A SysOps administrator must create a solution that automatically shuts down any Amazon EC2 instances that have less than 10% average CPU utilization for 60 minutes or more. Which solution will meet this requirement In the MOST operationally efficient manner? 


A.

Implement a cron job on each EC2 instance to run once every 60 minutes and calculate the current CPU utilization. Initiate an instance shutdown If CPU utilization is less than
10%.


B.

Implement an Amazon CloudWatch alarm for each EC2 instance to monitor average CPU utilization. Set the period at 1 hour, and set the threshold at 10%. Configure an EC2
action on the alarm to stop the instance.


C.

Install the unified Amazon CloudWatch agent on each EC2 instance, and enable the
Basic level predefined metric set. Log CPU utilization every 60 minutes, and initiate an
instance shutdown if CPU utilization is less than 10%.


D.

Use AWS Systems Manager Run Command to get CPU utilization from each EC2
instance every 60 minutes. Initiate an instance shutdown if CPU utilization is less than
10%.





B.   

Implement an Amazon CloudWatch alarm for each EC2 instance to monitor average CPU utilization. Set the period at 1 hour, and set the threshold at 10%. Configure an EC2
action on the alarm to stop the instance.




Page 10 out of 98 Pages
Previous