SOA-C01 Exam Dumps - Amazon Web Services AWS Certified Associate Questions and Answers

Question # 34

A company uses AWS CloudFormation to deploy its application infrastructure. Recently, a user accidentally changed a property of a database in a CloudFormation template and performed a stack update that caused an interruption to the application. A SysOps Administrator must determine how to modify the deployment process to allow the DevOps team to continue to deploy the infrastructure, but prevent against accidental modifications to specific resources.

Which solution will meet these requirements?

Options:

Set up an AWS Config rule to alert based on changes to any Cloud Formation stack. An AWS Lambda function can then describe the stack to determine if any protected resources were modified and cancel the operation.

Set up an Amazon CloudWatch Events event with a rule to trigger based on any CloudFormation API call. An AWS Lambda function can then describe the stack to determine if any protected resources were modified and cancel the operation.

Launch the CloudFormation templates using a stack policy with an explicit allow for all resources and an explicit deny of the protected resources with an action of Update:*

Attach an IAM policy to the DevOps team role that prevents a CloudFormation stack from updating, with a condition based on the specific Amazon Resource names (ARNs) of the protected resources.

Buy Now

Question # 35

A SysOps Administrator is deploying a test site running on Amazon EC2 instances. The application requires both incoming and outgoing connectivity to the Internet.

Which combination of steps are required to provide internet connectivity to the EC2 instances? (Choose two.)

Options:

Add a NAT gateway to a public subnet

Attach a private address to the elastic network interface on the EC2 instance

Attach an Elastic IP address to the internet gateway

Add an entry to the route table for the subnet that points to an internet gateway

Create an internet gateway and attach it to a VPC

Buy Now

Question # 36

A company wants to create a new Network Load Balancer (NLB) (or an existing interface VPC endpoint. A SysOps administrator tries to remove the existing NLB but sees the error "existing VPC Endpoint connections and cannot be removed."

Which solution will resolve this issue?

Options:

Create a new interface endpoint. Move the existing NLB to the new interface endpoint. Replace the NLB from the old endpoint with a new NLB.

Create a new NLB. Disassociate the NLB used by the interface endpoint service. Associate the new NLB with the interface endpoint service.

Disassociate the NLB used by the interface endpoint service. Create a new NLB and associate it with the Interface endpoint.

Reject the interface endpoint connection. Disassociate the NLB. Create a new NLB and associate it with the interface endpoint.

Buy Now

Question # 37

The Chief Financial Officer (CFO) of an organization has seen a spike in Amazon S3 storage costs over the last few months A sysops administrator suspects that these costs are related to storage for older versions of S3 objects from one of its S3 buckets

What can the administrator do to confirm this suspicion1?

Options:

Enable Amazon S3 inventory and then query the inventory to identify the total storage of previous object versions

Use object-level cost allocation tags to identify the total storage of previous object versions.

Enable the Amazon S3 analytics feature for the bucket to identify the total storage of previous object versions

Use Amazon CloudWatch storage metrics for the S3 bucket to identify the total storage of previous object versions

Buy Now

Question # 38

A Systems Administrator is responsible for maintaining custom, approved AMIs for a company. These AMIs must be shared with each of the company’s AWS accounts.

How can the Administrator address this issue?

Options:

Contact AWS Support for sharing AMIs with other AWS accounts.

Modify the permissions on the AMIs so that they are publicly accessible.

Modify the permissions on the IAM role that are associated with the AMI.

Share the AMIs with each AWS account using the console or CLI.

Buy Now

Question # 39

A security researcher has published a new Common Vulnerabilities and Exposures (CVE) report that impacts a popular operating system A SysOps Administrator is concerned with the new CVE report and wants to patch the company's systems immediately The Administrator contacts AWS Support and requests the patch be applied to all Amazon EC2 instances

How will AWS respond to this request?

Options:

AWS will apply the patch during the next maintenance window and will provide the Administrator with a report of all patched EC2 instances

AWS will relaunch the EC2 instances with the latest version of the Amazon Machine Image (AMI) and will provide the Administrator with a report of all patched EC2 instances

AWS will research the vulnerability to see if the Administrator's operating system is impacted and will patch the EC2 instances that are affected

AWS will review the shared responsibility model with the Administrator and advise them regarding how to patch the EC2 instances

Buy Now

Question # 40

A SysOps Administrator created an Application Load balancer (ALB) and placed two Amazon EC2 instances in the same subnet behind the ALB. During monitoring, the Administrator observes HealthyHostCount drop to 1 in Amazon CloudWatch.

What is MOST likely causing this issue?

Options:

The EC2 instances are in the same Availability Zone, causing contention between the two.

The route tables are not updated to allow traffic to flow between the ALB and the EC2 instances.

The ALB health check has failed, and the ALB has taken EC2 instances out of service.

The Amazon Route 53 health check has failed, and the ALB has taken EC2 instances out of service.

Buy Now

Question # 41

Company issued SSL certificates to its users, and needs to ensure the private keys that are used to sign the certificates are encrypted. The company needs to be able to store the private and perform cryptographic signing operations in a secure environment.

Which service should be used to meet these requirements?

Options:

AWS CloudHSM

AWS KMS

AWS Certificate Manager

Amazon Connect

Buy Now

Question # 42

A company’s use of AWS Cloud services is quickly growing, so a SysOps Administrator has been asked to generate details of daily spending to share with management.

Which method should the Administrator choose to produce this data?

Options:

Share the monthly AWS bill with management.

Use AWS CloudTrail Logs to access daily costs in JSON format.

Set up daily Cost and Usage Report and download the output from Amazon S3.

Monitor AWS costs with Amazon Cloud Watch and create billing alerts and notifications.

Buy Now

Exam Code: SOA-C01

Exam Name: AWS Certified SysOps Administrator - Associate

Last Update: Jun 15, 2025

Questions: 263

SOA-C01 PDF

$34 ~~$84.99~~

Add to Cart

SOA-C01 Testing Engine

$38 ~~$94.99~~

Add to Cart

SOA-C01 PDF + Testing Engine

$54 ~~$134.99~~

Add to Cart

Summer Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dealsixty

certsboard certification exams

Navigation:

SOA-C01 Exam Dumps - Amazon Web Services AWS Certified Associate Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

SOA-C01 PDF

SOA-C01 Testing Engine

SOA-C01 PDF + Testing Engine

Quick Links

Recently New Released Certification Exams

Site Secure