AWS Certified Associate SOA-C02 Dumps PDF

Page: 2 / 6

Question 8

A company hosts several write-intensive applications. These applications use a MySQL database that runs on a single Amazon EC2 instance. The company asks a SysOps administrator to implement a highly available database solution that is ideal for multi-tenant workloads.

Which solution should the SysOps administrator implement to meet these requirements?

Options:

Create a second EC2 instance for MySQL. Configure the second instance to be a read replica.

Migrate the database to an Amazon Aurora DB cluster. Add an Aurora Replica.

Migrate the database to an Amazon Aurora multi-master DB cluster.

Migrate the database to an Amazon RDS for MySQL DB instance.

Question 9

A development team recently deployed a new version of a web application to production After the release, penetration testing revealed a cross-site scripting vulnerability that could expose user data

Which AWS service will mitigate this issue?

Options:

AWS Shield Standard

AWS WAF

Elastic Load Balancing

Amazon Cognito

Question 10

A SysOps administrator needs to delete an AWS CloudFormation stack that is no longer in use. The CloudFormation stack is in the DELETE_FAILED state. The SysOps administrator has validated the permissions that are required to delete the Cloud Formation stack.

Options:

The configured timeout to delete the stack was too low for the delete operation to complete.

The stack contains nested stacks that must be manually deleted fast.

The stack was deployed with the -disable rollback option.

There are additional resources associated with a security group in the stack

There are Amazon S3 buckets that still contain objects in the stack.

Question 11

A company has an Amazon CloudFront distribution that uses an Amazon S3 bucket as its origin. During a review of the access logs, the company determines that some requests are going directly to the S3 bucket by using the website hosting endpoint. A SysOps administrator must secure the S3 bucket to allow requests only from CloudFront.

What should the SysOps administrator do to meet this requirement?

Options:

Create an origin access identity (OAI) in CloudFront. Associate the OAI with the distribution. Remove access to and from other principals in the S3 bucket policy. Update the S3 bucket policy to allow access only from the OAI.

Create an origin access identity (OAI) in CloudFront. Associate the OAI with the distribution. Update the S3 bucket policy to allow access only from the OAI. Create a new origin, and specify the S3 bucket as the new origin. Update the distribution behavior to use the new origin. Remove the existing origin.

Create an origin access identity (OAI) in CloudFront. Associate the OAI with the distribution. Update the S3 bucket policy to allow access only from the OAI. Disable website hosting. Create a new origin, and specify the S3 bucket as the new origin. Update the distribution behavior to use the new origin. Remove the existing origin.

Update the S3 bucket policy to allow access only from the CloudFront distribution. Remove access to and from other principals in the S3 bucket policy. Disable website hosting. Create a new origin, and specify the S3 bucket as the new origin. Update the distribution behavior to use the new origin. Remove the existing origin.

Page: 2 / 6

AWS Certified Associate SOA-C02 Dumps PDF, Pearson SOA-C02 New Attempt, PDF SOA-C02 Study Guide, New Release SOA-C02 AWS Certified Associate Questions, AWS Certified Associate SOA-C02 Exam Questions and Answers PDF,

Exam Code: SOA-C02

Exam Name: AWS Certified SysOps Administrator - Associate (SOA-C02)

Last Update: Apr 23, 2024

Questions: 305