SysOps Administrator AWS-SysOps試験と認定テストエンジン [Q380-Q398]

（PDF)SysOps Administrator AWS-SysOps試験と認定テストエンジン

無料提供中のAWS-SysOps試験問題集で（2024年最新のPDF問題集）信頼度の高いAWS-SysOpsテストエンジン

質問 # 380
An Application team has asked a SysOps Administrator to provision an additional environment for an application in four additional regions. The application is running on more than 100 instances in us-east-1, using fully baked AMIs. An AWS CloudFormation template has been created to deploy resources in us- east-1.
What must the SysOps Administrator do to provision the application quickly?

• A. Update the CloudFormation template to include the additional regions in the Auto Scaling group.
  Update the existing stack in us-east-1.
• B. Copy the AMI to each region using aws ec2 copy-image.
  Update the CloudFormation mapping to include mappings for the copied AMIs.
• C. Create a snapshot of the running instance and copy the snapshot to the other regions.
  Create an AMI from the snapshots.
  Update the CloudFormation template for each region to use the new AMI.
• D. Run the existing CloudFormation template in each additional region based on the success of the template used currently in us-east-1.

正解：D

質問 # 381
You have a web application leveraging an Elastic Load Balancer (ELB) In front of the web servers deployed using an Auto Scaling Group Your database is running on Relational Database Service (RDS) The application serves out technical articles and responses to them in general there are more views of an article than there are responses to the article. On occasion, an article on the site becomes extremely popular resulting in significant traffic Increases that causes the site to go down.
What could you do to help alleviate the pressure on the infrastructure while maintaining availability during these events?
Choose 3 answers

• A. Use SOS to queue up the requests for the technical posts and deliver them out of the queue.
• B. Use Route53 health checks to fail over to an S3 bucket for an error page.
• C. Add RDS read-replicas for the read traffic going to your relational database
• D. Leverage ElastiCache for caching the most frequently used data.
• E. Leverage CloudFront for the delivery of the articles.

正解：B、D、E

質問 # 382
A company monitors its account activity using AWS CloudTrail, and is concerned that some log files are being tampered with after the logs have been delivered to the account's Amazon S3 bucket.
Moving forward, how can the SysOps Administrator confirm that the log files have not been modified after being delivered to the S3 bucket.

• A. Replicate the S3 log bucket across regions, and encrypt log files with S3 managed keys.
• B. Enable S3 server access logging to track requests made to the log bucket for security audits.
• C. Stream the CloudTrail logs to Amazon CloudWatch to store logs at a secondary location.
• D. Enable log file integrity validation and use digest files to verify the hash value of the log file.

正解：A

質問 # 383
A user is planning to scale up an application by 8 AM and scale down by 7 PM daily using Auto Scaling. What should the user do in this case?

• A. The user should increase the desired capacity at 8 AM and decrease it by 7 PM manually
• B. Setup scheduled actions to scale up or down at a specific time
• C. The user should setup a batch process which launches the EC2 instance at a specific time
• D. Setup the scaling policy to scale up and down based on the CloudWatch alarms

正解：D

解説：
Auto Scaling based on a schedule allows the user to scale the application in response to predictable load changes. To configure the Auto Scaling group to scale based on a schedule, the user needs to create scheduled actions. A scheduled action tells Auto Scaling to perform a scaling action at a certain time in the future.

質問 # 384
A sys admin is trying to understand the Auto Scaling activities. Which of the below mentioned processes is not performed by Auto Scaling?

• A. Replace Unhealthy
• B. Availability Zone Balancing
• C. Reboot Instance
• D. Schedule Actions

正解：C

解説：
Explanation
Reboot Instance is not performed by AS. Only termination.
References:

質問 # 385
A SysOps Administrator discovers the organization's tape archival system is no longer functioning in its on-
premises data center.
What AWS service can be used to create a virtual tape interface to replace the physical tape system?

• A. Amazon Glacier
• B. AWS Snowball
• C. AWS Storage Gateway
• D. AWS SMS

正解：C

質問 # 386
A SysOps Administrator is implementing SSL for a domain of an internet-facing application running behind an
Application Load Balancer (ALB). The Administrator decides to use an SSL certificate from Amazon Certificate
Manager (ACM) to secure it.
Upon creating a request for the ALB fully qualified domain name (FQDN), it fails, and the error message
"Domain Not Allowed" is displayed.
How can the Administrator fix this issue?

• A. Contact AWS Support and verify the request by answering security challenge questions.
• B. Place a new request with the proper domain name instead of the ALB FQDN
• C. Contact the domain registrar and ask them to provide the verification required by AWS.
• D. Select the certificate request in the ACM console and resend the validation email.

正解：D

質問 # 387
A user is trying to create a PIOPS EBS volume with 4000 IOPS and 100 GB size. AWS does not allow the user to create this volume. What is the possible root cause for this?

• A. The ratio between IOPS and the EBS volume is lower than 50
• B. The ratio between IOPS and the EBS volume is higher than 30
• C. PIOPS is supported for EBS higher than 500 GB size
• D. The maximum IOPS supported by EBS is 3000

正解：B

解説：
Explanation/Reference:
Explanation:
A provisioned IOPS EBS volume can range in size from 10 GB to 1 TB and the user can provision up to
4000 IOPS per volume. The ratio of IOPS provisioned to the volume size requested should be a maximum of 30; for example, a volume with 3000 IOPS must be at least 100 GB.

質問 # 388
A user has enabled termination protection on an EC2 instance.
The user has also set Instance initiated shutdown behaviour to terminate.
When the user shuts down the instance from the OS, what will happen?

• A. It will not allow the user to shutdown the instance from the OS
• B. It will terminate the instance
• C. The OS will shutdown but the instance will not be terminated due to protection
• D. It is not possible to set the termination protection when an Instance initiated shutdown is set to Terminate

正解：B

解説：
It is always possible that someone can terminate an EC2 instance using the Amazon EC2 console, command line interface or API by mistake. If the admin wants to prevent the instance from being accidentally terminated, he can enable termination protection for that instance. The user can also setup shutdown behaviour for an EBS backed instance to guide the instance on what should be done when he initiates shutdown from the OS using Instance initiated shutdown behaviour. If the instance initiated behaviour is set to terminate and the user shuts off the OS even though termination protection is enabled, it will still terminate the instance.

質問 # 389
A user is planning to set up the Multi AZ feature of RDS. Which of the below mentioned conditions won't take advantage of the Multi AZ feature?

• A. Region outage
• B. Availability zone outage
• C. When the user changes the DB instance's server type
• D. A manual failover of the DB instance using Reboot with failover option

正解：A

解説：
Amazon RDS when enabled with Multi AZ will handle failovers automatically. Thus, the user can resume database operations as quickly as possible without administrative intervention. The primary DB instance switches over automatically to the standby replica if any of the following conditions occur:
An Availability Zone outage
The primary DB instance fails
The DB instance's server type is changed
The DB instance is undergoing software patching
A manual failover of the DB instance was initiated using Reboot with failover

質問 # 390
A sysadmin has created the below mentioned policy on an S3 bucket named cloudacademy. What does this policy define?
"Statement": [{
"Sid": "Stmt1388811069831",
"Effect": "Allow",
"Principal": { "AWS": "*"},
"Action": [ "s3:GetObjectAcl", "s3:ListBucket"],
"Resource": [ "arn:aws:s3:::cloudacademy]
}]

• A. It will allow everyone to view the ACL of the bucket
• B. It will give an error as no object is defined as part of the policy while the action defines the rule about the object
• C. It will make the cloudacademy bucket as public
• D. It will make the cloudacademy bucket as well as all its objects as public

正解：C

解説：
Explanation
A sysadmin can grant permission to the S3 objects or the buckets to any user or make objects public using the bucket policy and user policy. Both use the JSON-based access policy language. Generally if the user is defining the ACL on the bucket, the objects in the bucket do not inherit it and vice a versa. The bucket policy can be defined at the bucket level which allows the objects as well as the bucket to be public with a single policy applied to that bucket. In the sample policy the action says "S3:ListBucket" for effect Allow on Resource arn:aws:s3:::cloudacademy. This will make the cloudacademy bucket public.
"Statement": [{
"Sid": "Stmt1388811069831",
"Effect": "Allow",
"Principal": { "AWS": "*" },
"Action": [ "s3:GetObjectAcl", "s3:ListBucket"],
"Resource": [ "arn:aws:s3:::cloudacademy]
}]

質問 # 391
An organization is trying to create various IAM users. Which of the below mentioned
options is not a valid IAM username?

• A. John.cloud
• B. john#cloud
• C. john@cloud
• D. John=cloud

正解：B

解説：
AWS Identity and Access Management is a web service which allows organizations to manage users and user permissions for various AWS services. Whenever the organization is creating an IAM user, there should be a unique ID for each user. The names of users, groups, roles, instance profiles must be alphanumeric, including the following common characters: plus (+., equal (=., comma (,., period (.., at (@., and dash (-..

質問 # 392
An organization is using AWS since a few months. The finance team wants to visualize the pattern of AWS spending. Which of the below AWS tool will help for this requirement?

• A. AWS Cost Explorer
• B. AWS CloudWatch
• C. AWS Consolidated Billing
• D. AWS Cost Manager

正解：A

解説：
Explanation
The AWS Billing and Cost Management console includes the Cost Explorer tool for viewing AWS cost data as a graph. It does not charge extra to user for this service. With Cost Explorer the user can filter graphs using resource tags or with services in AWS. If the organization is using Consolidated Billing it helps generate report based on linked accounts. This will help organization to identify areas that require further inquiry. The organization can view trends and use that to understand spend and to predict future costs.

質問 # 393
An organization is measuring the latency of an application every minute and storing data inside a file in the JSON format. The organization wants to send all latency data to AWS CloudWatch. How can the organization achieve this?

• A. It is not possible to upload the custom data to CloudWatch
• B. The user can supply the file as an input to the CloudWatch command
• C. The user has to parse the file before uploading data to CloudWatch
• D. The user can use the CloudWatch Import command to import data from the file to CloudWatch

正解：B

解説：
Explanation
AWS CloudWatch supports the custom metrics. The user can always capture the custom data and upload the data to CloudWatch using CLI or APIs. The user has to always include the namespace as part of the request. If the user wants to upload the custom data from a file, he can supply file name along with the parameter -- metric-data to command put-metric-data.

質問 # 394
A SysOps Administrator needs an Amazon EBS volume type for a big data application. The application data is accessed infrequently and stored sequentially.
What EBS volume type will be the MOST cost-effective solution?

• A. Throughout Optimized HDD (st1)
• B. General Purpose SSD (gp2)
• C. Cold HDD (sc1)
• D. Provisioned IOPS SSD (io1)

正解：C

質問 # 395
A Development team is able to view upcoming maintenance events on AWS Personal Health dashboard.
However, the Development team a concerned that they might miss email notifications when an Amazon EC2 instance undergoes hardware maintenance.
What steps should the SysOps Administrator take to address this?

• A. Create an Amazon CloudWatch Events event based off of AWS Health and send the notification to an Amazon SNS topic that the team can subscribe to
• B. Create an Amazon CloudWatch Events event on a schedule that sends a notification to an Amazon SNS topic to remind the Development team to view the maintenance events on AWS Personal Health Dashboard
• C. Build a web scraper to monitor AWS Personal Health Dashboard and send an email to the team once a new event is received
• D. Create an AWS Lambda function that continuously pings the EC2 instance to check if it is still running Alert the Development team if this check fails

正解：C

質問 # 396
A local agency plans to deploy 500 Raspberry Pi devices throughout a city. All the devices need to be managed centrally, and their configurations need to be consistent.
What is the BEST service for managing these devices?

• A. AWS Service Catalog
• B. AWS Systems Manager
• C. Amazon Inspector
• D. AWS Config

正解：B

解説：
Explanation/Reference: https://aws.amazon.com/blogs/mt/manage-raspberry-pi-devices-using-aws-systems-manager/

質問 # 397
An organization has configured Auto Scaling with ELB. One of the instance health check returns the status as Impaired to Auto Scaling. What will Auto Scaling do in this scenario?

• A. Notify ELB to stop sending traffic to the impaired instance
• B. Perform a health check until cool down before declaring that the instance has failed
• C. Notify the user using SNS for the failed state
• D. Terminate the instance and launch a new instance

正解：D

解説：
Explanation/Reference:
Explanation:
The Auto Scaling group determines the health state of each instance periodically by checking the results of the Amazon EC2 instance status checks. If the instance status description shows any other state other than "running" or the system status description shows impaired, Auto Scaling considers the instance to be unhealthy. Thus, it terminates the instance and launches a replacement.

質問 # 398
......

AWS-SysOps完全版問題集には無料PDF問題で合格させる：https://www.jpntest.com/shiken/AWS-SysOps-mondaishu

AWS-SysOpsPDFで最近更新された問題です集試験点数を伸ばそう：https://drive.google.com/open?id=1x7ClJlsjxeLlqKdd4LkY34PyzIwzFXDH