Point Checklist: aws sysops training

AWS-SysOps Exam

Point Checklist: aws sysops training

Act now and download your Amazon aws sysops exam questions test today! Do not waste time for the worthless Amazon aws sysops dumps tutorials. Download Improved Amazon AWS Certified SysOps Administrator Associate exam with real questions and answers and begin to learn Amazon aws sysops exam with a classic professional.

Q11. - (Topic 2)

A user is trying to configure the CloudWatch billing alarm. Which of the below mentioned steps should be

performed by the user for the first time alarm creation in the AWS Account Management section?

A. Enable Receiving Billing Reports

B. Enable Receiving Billing Alerts

C. Enable AWS billing utility

D. Enable CloudWatch Billing Threshold

Answer: B

Explanation:

AWS CloudWatch supports enabling the billing alarm on the total AWS charges. Before the user can create an alarm on the estimated charges, he must enable monitoring of the estimated AWS charges, by selecting the option “Enable receiving billing alerts”. It takes about 15 minutes before the user can view the billing data. The user can then create the alarms.

Q12. - (Topic 3)

A user is planning to set up the Multi AZ feature of RDS. Which of the below mentioned conditions won't take advantage of the Multi AZ feature?

A. Availability zone outage

B. A manual failover of the DB instance using Reboot with failover option

C. Region outage

D. When the user changes the DB instance’s server type

Answer: C

Explanation:

Amazon RDS when enabled with Multi AZ will handle failovers automatically. Thus, the user can resume database operations as quickly as possible without administrative intervention. The primary DB instance switches over automatically to the standby replica if any of the following conditions occur: An Availability Zone outage The primary DB instance fails The DB instance's server type is changed The DB instance is undergoing software patching A manual failover of the DB instance was initiated using Reboot with failover

Q13. - (Topic 1)

You have a Linux EC2 web server instance running inside a VPC The instance is In a public subnet and has an EIP associated with it so you can connect to It over the Internet via HTTP or SSH The instance was also fully accessible when you last logged in via SSH. and was also serving web requests on port 80.

Now you are not able to SSH into the host nor does it respond to web requests on port 80 that were working fine last time you checked You have double-checked that all networking configuration parameters (security groups route tables. IGW'EIP. NACLs etc) are properly configured {and you haven’t made any changes to those anyway since you were last able to reach the Instance). You look at the EC2 console and notice that system status check shows "impaired."

Which should be your next step in troubleshooting and attempting to get the instance back to a healthy state so that you can log in again?

A. Stop and start the instance so that it will be able to be redeployed on a healthy host system that most likely will fix the "impaired" system status

B. Reboot your instance so that the operating system will have a chance to boot in a clean healthy state that most likely will fix the 'impaired" system status

C. Add another dynamic private IP address to me instance and try to connect via mat new path, since the networking stack of the OS may be locked up causing the “impaired” system status.

D. Add another Elastic Network Interface to the instance and try to connect via that new path since the networking stack of the OS may be locked up causing the "impaired" system status

E. un-map and then re-map the EIP to the instance, since the IGWVNAT gateway may not be working properly, causing the "impaired" system status

Answer: A

Topic 2, Volume B

56. - (Topic 2)

A user is accessing RDS from an application. The user has enabled the Multi AZ feature with the MS SQL RDS DB. During a planned outage how will AWS ensure that a switch from DB to a standby replica will not affect access to the application?

A. RDS will have an internal IP which will redirect all requests to the new DB

B. RDS uses DNS to switch over to stand by replica for seamless transition

C. The switch over changes Hardware so RDS does not need to worry about access

D. RDS will have both the DBs running independently and the user has to manually switch over

Answer: B

Explanation:

In the event of a planned or unplanned outage of a DB instance, Amazon RDS automatically switches to a standby replica in another Availability Zone if the user has enabled Multi AZ. The automatic failover mechanism simply changes the DNS record of the DB instance to point to the standby DB instance. As a result, the user will need to re-establish any existing connections to the DB instance. However, as the DNS is the same, the application can access DB seamlessly.

Q14. - (Topic 2)

A user is launching an EC2 instance in the US East region. Which of the below mentioned options is

recommended by AWS with respect to the selection of the availability zone?

A. Always select the US-East-1-a zone for HA

B. Do not select the AZ; instead let AWS select the AZ

C. The user can never select the availability zone while launching an instance

D. Always select the AZ while launching an instance

Answer: B

Explanation:

When launching an instance with EC2, AWS recommends not to select the availability zone (AZ.. AWS

specifies that the default Availability Zone should be accepted. This is because it enables AWS to select the best Availability Zone based on the system health and available capacity. If the user launches additional instances, only then an Availability Zone should be specified. This is to specify the same or different AZ from the running instances.

Q15. - (Topic 2)

An organization (Account ID 123412341234. has attached the below mentioned IAM policy

to a user. What does this policy statement entitle the user to perform?

"Statement": [

{

"Sid": "AllowUsersAllActionsForCredentials",

"Effect": "Allow",

"Action": [

"iam:*AccessKey*",

"Resource": ["arn:aws:iam:: 123412341234:user/${aws:username}"]

}

]

A. 0

B. 0

C. 0

D. 0

Answer: A

Explanation:

AWS Identity and Access Management is a web service which allows organizations to manage users and user permissions for various AWS services. If the organization (Account ID 123412341234. wants some of their users to manage keys (access and secret access keys. of all IAM users, the organization should set the below mentioned policy which entitles the IAM user to modify keys of all IAM users with CLI, SDK or API.

"Statement": [

{

"Sid": "AllowUsersAllActionsForCredentials",

"Effect": "Allow",

"Action": [

"iam:*AccessKey*",

"Resource": ["arn:aws:iam:: 123412341234:user/${aws:username}"]

}

]

Q16. - (Topic 3)

A user has created a Cloudformation stack. The stack creates AWS services, such as EC2 instances, ELB, AutoScaling, and RDS. While creating the stack it created EC2, ELB and AutoScaling but failed to create RDS. What will Cloudformation do in this scenario?

A. Cloudformation can never throw an error after launching a few services since it verifies all the steps before launching

B. It will warn the user about the error and ask the user to manually create RDS

C. Rollback all the changes and terminate all the created services

D. It will wait for the user’s input about the error and correct the mistake after the input

Answer: C

Explanation:

AWS Cloudformation is an application management tool which provides application modelling, deployment, configuration, management and related activities. The AWS Cloudformation stack is a collection of AWS resources which are created and managed as a single unit when AWS CloudFormation instantiates a template. If any of the services fails Amazon AWS-SysOps : Practice Test

to launch, Cloudformation will rollback all the changes and terminate or delete all the created services.

Q17. - (Topic 3)

A user has created a VPC with CIDR 20.0.0.0/16 using VPC Wizard. The user has created a public CIDR

(20.0.0.0/24. and a VPN only subnet CIDR (20.0.1.0/24. along with the hardware VPN access to connect to the user’s data centre. Which of the below mentioned components is not present when the VPC is setup with the wizard?

A. Main route table attached with a VPN only subnet

B. A NAT instance configured to allow the VPN subnet instances to connect with the internet

C. Custom route table attached with a public subnet

D. An internet gateway for a public subnet

Answer: B

Explanation:

The user can create subnets as per the requirement within a VPC. If the user wants to connect VPC from his own data centre, he can setup a public and VPN only subnet which uses hardware VPN access to connect with his data centre. When the user has configured this setup with Wizard, it will update the main route table used with the VPN-only subnet, create a custom route table and associate it with the public subnet. It also creates an internet gateway for the public subnet. The wizard does not create a NAT instance by default. The user can create it manually and attach it with a VPN only subnet.

Q18. - (Topic 3)

An organization has configured Auto Scaling for hosting their application. The system admin wants to

understand the Auto Scaling health check process. If the instance is unhealthy, Auto Scaling launches an

instance and terminates the unhealthy instance. What is the order execution?

A. Auto Scaling launches a new instance first and then terminates the unhealthy instance

B. Auto Scaling performs the launch and terminate processes in a random order

C. Auto Scaling launches and terminates the instances simultaneously

D. Auto Scaling terminates the instance first and then launches a new instance

Answer: D

Explanation:

Auto Scaling keeps checking the health of the instances at regular intervals and marks the instance for replacement when it is unhealthy. The ReplaceUnhealthy process terminates instances which are marked as unhealthy and subsequently creates new instances to replace them. This process first terminates the instance and then launches a new instance.

Q19. - (Topic 3)

What would happen to an RDS (Relational Database Service) multi-Availability Zone deployment if the primary DB instance fails?

A. The IP of the primary DB Instance is switched to the standby DB Instance.

B. A new DB instance is created in the standby availability zone.

C. The canonical name record (CNAME) is changed from primary to standby.

D. The RDS (Relational Database Service) DB instance reboots.

Answer: D

Explanation: Reference:

http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_RebootInstance.html

Q20. - (Topic 3)

A user is planning to use AWS services for his web application. If the user is trying to set up his own billing management system for AWS, how can he configure it?

A. Set up programmatic billing access. Download and parse the bill as per the requirement

B. It is not possible for the user to create his own billing management service with AWS

C. Enable the AWS CloudWatch alarm which will provide APIs to download the alarm data

D. Use AWS billing APIs to download the usage report of each service from the AWS billing console

Answer: A

Explanation:

AWS provides an option to have programmatic access to billing. Programmatic Billing Access leverages the existing Amazon Simple Storage Service (Amazon S3. APIs. Thus, the user can build applications that reference his billing data from a CSV (comma-separated value. file stored in an Amazon S3 bucket. AWS will upload the bill to the bucket every few hours and the user can download the bill CSV from the bucket, parse itand create a billing system as per the requirement.