Amazon Web Services passcert soa-c01 Based On Real Exam Environment by Tony q158 vce pdf

Page: 8 / 9

Exam Name:	AWS Certified SysOps Administrator - Associate
Exam Code:	SOA-C01 Dumps
Vendor:	Amazon Web Services	Certification:	AWS Certified Associate
Questions:	263 Q&A's	Shared By:	tony

Question 32

A financial service company is running distributed computing software to manage a fleet of 20 servers for their calculations. There are 2 control nodes and 18 worker nodes to run the calculations. Worker nodes can be automatically started by the control nodes when required. Currently, all nodes are running on demand, and the worker nodes are uses for approximately 4 hours each day.

Which combination of actions will be most cost-effective? (Select Two)

Options:

Use dedicated Hosts for the control nodes.

Use reserved instances for the control nodes.

Use reserved instances for the worker nodes.

Use spot instances for the control nodes and On-demand instances if there is no Spot availability.

Use spot instances for the worker nodes and On-demand instances if there is no spot availability.

Discussion

Question 33

A SysOps administrator recently launched an application consisting of web servers running on Amazon EC2 instances, an Amazon ElastiCache cluster communicating on port 6379, and an Amazon RDS tor PostgreSQL DB instance communicating on port 5432. The web servers are in the security group web-sg. the ElastiCache cluster is in the security group cache-sg. and the DB instance is in the security group database-sg.

The application fails on start, with the error message "Unable to connect to the database."

The rules in web-sg are as follows.

Questions 33

Which change should the SysOps administrator make to web-sg to correct the issue without compromising security?

Options:

Add a new inbound rule:

database-ag TCP 5432

Add a new outbound rule:

database-sg TCP 5432

Add a new outbound rule:

0.0.0.0/0 Ail Traffic 0-€5535

Change the outbound rule to:

cache-sg TCP 54 32

Discussion

Question 34

A company uses federation to authenticate users and grant AWS permissions. The SysOps Administrator has been asked to determine who made a request to AWS Organizations for a new AWS account.

What should the Administrator review to determine who made the request?

Options:

AWS CloudTrail for the federated identity user name

AWS IAM Access Advisor for the federated user name

AWS Organizations access log for the federated identity user name

Federated identity provider logs for the user name

Discussion

Question 35

An environment company has discovered that a number of Amazon EC2 instances in a VPC are marked as high risk according to a Common Vulnerabilities and Expressures (CVE) report. The Security tea, requests that all these instances be upgraded.

Who is responsible for upgrading the EC2 instances?

Options:

The AWS Security team

The Amazon EC2 team

The AWS Premium Support team

The company’s System Administrator

Discussion

Ayesha

They are study materials that are designed to help students prepare for exams and certification tests. They are basically a collection of questions and answers that are likely to appear on the test.

Ayden (not set)

That sounds interesting. Why are they useful? Planning this week, hopefully help me. Can you give me PDF if you have ?

Victoria

Hey, guess what? I passed the certification exam! I couldn't have done it without Cramkey Dumps.

Isabel (not set)

Same here! I was so surprised when I saw that almost all the questions on the exam were exactly what I found in their study materials.

Melody

My experience with Cramkey was great! I was surprised to see that many of the questions in my exam appeared in the Cramkey dumps.

Colby (not set)

Yes, In fact, I got a score of above 85%. And I attribute a lot of my success to Cramkey's dumps.

Marley

Hey, I heard the good news. I passed the certification exam!