Included are two, 40 question practice exams to prepare you for the SOA-C02 (AWS Certified SysOps admin) exam.
Explanations for correct AND incorrect answers are provided, with links to the appropriate documentation for reference.
Upon purchase you will receive a text file that contains instructions and links on how to access your exams. There is no limit to the number of attempts you can have on each of the exams.
SAMPLE QUESTIONS:
1. As an AWS SysOps Administrator, you have noticed a pattern of malicious API calls in your environment. You need to find the source of these API calls to mitigate the potential security risks.
Which of the following steps should you take to identify the source of these API calls?
A. Use CloudWatch Logs Insights to filter CloudTrail logs based on the API calls, and look for the source IP address and user identity in the event data.
B. Use CloudTrail Event history to filter based on the API calls and examine the "sourceIPAddress" and "userIdentity" fields.
C. Use CloudWatch Metrics to find the source IP address and user identity making these API calls.
D. Use AWS Config to check the configuration history of the resources targeted by the API calls.
------------------------------
2. You are a SysOps Administrator for a financial services company. Your application's architecture includes an Auto Scaling group of EC2 instances.A CloudWatch alarm is configured to trigger when the aggregate network bandwidth across the instances exceeds 80% of the provisioned limit for more than 15 minutes. The alarm action notifies an SNS topic. Your task is to ensure that an appropriate corrective action is automatically taken based on this alarm.Which of the following approaches would be best suited to handle this situation?
A. Create a Lambda function to launch additional EC2 instances and subscribe it to the SNS topic.
B. Modify the Auto Scaling group to add more instances when the alarm state is triggered.
C. Create a Lambda function to increase the bandwidth limit of the EC2 instances and subscribe it to the SNS topic.
D. Modify the CloudWatch alarm to automatically stop the least utilized EC2 instance when the alarm state is triggered.
------------------------------
3. You are a SysOps Administrator for an e-commerce company which has its infrastructure hosted on AWS. Your application is hosted on multiple EC2 instances behind an Elastic Load Balancer.Recently, some users have reported intermittent 500 Internal Server errors. You suspect the issue might be related to a particular EC2 instance. You are asked to use CloudWatch Logs to diagnose the issue.Which of the following steps should you follow to pinpoint and address the problem?
A. Check the ELB access logs in CloudWatch, filter the logs for HTTP 500 status codes, identify the faulty instance, and restart the instance.
B. Check the application logs in CloudWatch, filter the logs for HTTP 500 status codes, identify the faulty instance, and stop-start the instance.
C. Check the EC2 instance system logs in CloudWatch, filter the logs for HTTP 500 status codes, identify the faulty instance, and terminate the instance.
D. Check the CloudTrail logs in CloudWatch, filter the logs for HTTP 500 status codes, identify the faulty instance, and reboot the instance.