callicon +1 210 504 8191
whatsAppIcon +1 210 415 9856
emailIcon info@koenig-solutions.com
koenig-logo
Login
whatsAppIcon +1 210 415 9856
phoneIcon +1 210 504 8191
koenig-logo
All Courses

AWS Certified Sysops Administrator - Associate (Cloud Operations on AWS) Quiz Questions and Answers

Answer :
  • AWS RRS

Explanation :

<p>Amazon S3 stores objects according to their storage class. There are three major storage classes: Standard, Reduced Redundancy Storage and Glacier. Standard is for AWS S3 and provides very high durability. However, the costs are a little higher. Glacier is for archival and the files are not available over the internet. Reduced Redundancy Storage is for less critical files. Reduced Redundancy is little cheaper as it provides less durability in comparison to S3. In this case since the log files are not mission critical files, RRS will be a better option.</p> <ul> <li><a href="https://infraexam.com/an-application-is-generating-a-log-file-every-5-minutes-the-log-file-is-not-critical-but-may-be-required-only-for-verification-in-case-of-some-major-issue-the-file-should-be-accessible-over-the-inte/#tabs_desc_61663_1">&nbsp;SOA</a></li> </ul>
Answer :
  • Pre-warming the EBS volume

Explanation :

<p>When the user creates a new EBS volume and is trying to access it for the first time it will encounter reduced IOPS due to wiping or initiating of the block storage. To avoid this as well as achieve the best performance it is required to pre warm the EBS volume. For a blank volume attached with a Linux OS, the &ldquo;dd&rdquo; command is used to write to all the blocks on the device. In the command &ldquo;dd if=/dev/zero of=/dev/xvdfbs=1M&rdquo; the parameter &ldquo;if =import file&rdquo; should be set to one of the Linux virtual devices, such as /dev/zero. The &ldquo;of=output file&rdquo; parameter should be set to the drive that the user wishes to warm. The &ldquo;bs&rdquo; parameter sets the block size of the write operation; for optimal performance, this should be set to 1 MB.</p>
Answer :
  • 3,3,3
  • 6,6,0

Explanation :

<p>Option A is incorrect because, even if one AZ becomes unavailable, you would only have 4 instances available. This does not meet the specified requirements.</p> <p>Option B is incorrect because, in the case of either us-west-2a or us-west-2b becoming unavailable, you would only have 3 instances available. Even this does not meet the specified requirements.</p> <p>Option C is incorrect because, if us-west-2a becomes unavailable, you would only have 4 instances available. This also does not meet the requirements.</p> <p>For more information on AWS Regions and Availability Zones, please visit the following URL:</p> <p>https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.RegionsAndAvailabilityZones.html</p>
Answer :
  • Set up the notification when the state is Insufficient Data

Explanation :

<p>Amazon CloudWatch alarms watch a single metric over a time period that the user specifies and performs one or more actions based on the value of the metric relative to a given threshold over a number of time periods. The alarm has three states: Alarm, OK and Insufficient data. The Alarm will change to Insufficient Data when any of the three situations arise: when the alarm has just started, when the metric is not available or when enough data is not available for the metric to determine the alarm state. If the user wants to find that RDS is not available, he can setup to receive the notification when the state is in Insufficient data.</p>
Answer :
  • The user should create IAM groups as per the organization’s departments and add each user to the group for better access control

Explanation :

<p>AWS Identity and Access Management is a web service which allows organizations to manage users and user permissions for various AWS services. The user is managing an AWS account for an organization that already has an identity system, such as the login system for the corporate network (SSO). In this case, instead of creating individual IAM users or groups for each user who need AWS access, it may be more practical to use a proxy server to translate the user identities from the organization network into the temporary AWS security credentials. This proxy server will attach an IAM role to the user after authentication.</p>
Answer :
  • Configure the security group itself as the source and allow traffic on all the protocols and ports

Explanation :

<p>A Virtual Private Cloud (VPC. is a virtual network dedicated to the user&rsquo;s AWS account. AWS provides two features that the user can use to increase security in VPC: security groups and network ACLs. Security groups work at the instance level. If the user is using the default security group, it will have a rule which allows the instances to communicate with other. For a new security group, the user has to specify the rule, add it to define the source as the security group itself, and select all the protocols and ports for that source.</p>
Answer :
  • AWS Simple Queue Service

Explanation :

<p>Amazon Simple Queue Service (SQS. is a fast, reliable, scalable, and fully managed message queuing service. SQS provides a simple and cost-effective way to decouple the components of an application. In this case, the user can use AWS SQS to send messages which are received from an application and sent to DB.<br /> The application can continue processing data without waiting for any acknowledgement from DB. The user can use SQS to transmit any volume of data without losing messages or requiring other services to always be available.</p>
Answer :
  • Delete the AutoScaling launch configuration after the instances are terminated

Explanation :

<p>AWS bills the user on as pay as you go model. AWS will charge the user once the AWS resource is allocated. Even though the user is not using the resource,<br /> AWS will charge if it is in service or allocated. Thus, it is advised that once the user&#39;s work is completed he should:<br /> Terminate the EC2 instance Delete the EBS volumes Release the unutilized Elastic IPs Delete ELB The AutoScaling launch configuration does not cost the user.<br /> Thus, it will not make any difference to the cost whether it is deleted or not.</p>
Answer :
  • Master (Paye

Explanation :

<p>AWS consolidated billing enables the organization to consolidate payments for multiple Amazon Web Services (AWS. accounts within a single organization by making a single paying account. Consolidated billing enables the organization to see a combined view of the AWS charges incurred by each account as well as obtain a detailed cost report for each of the individual AWS accounts associated with the paying account. The payee account will not have any other access than billing data of linked accounts.</p>
Answer :
  • It will throw a CIDR overlaps error

Explanation :

<p>A Virtual Private Cloud (VPC) is a virtual network dedicated to the user&rsquo;s AWS account. A user can create a subnet with VPC and launch instances inside the subnet. The user can create a subnet with the same size of VPC. However, he cannot create any other subnet since the CIDR of the second subnet will conflict with the first subnet. The user cannot modify the CIDR of a subnet once it is created. Thus, in this case if required, the user has to delete the subnet and create new subnets.</p>