Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 101–110 of 486

Q101

A company needs to securely manage API keys for multiple applications. Which service should they use?

  • A AWS Secrets Manager
  • B AWS Config
  • C Amazon Cognito
  • D AWS CloudTrail
Explanation AWS Secrets Manager securely stores and manages secrets like API keys.
Q102

You are configuring an IAM policy that allows EC2 instance management. What should be the policy action?

  • A ec2:StartInstances
  • B ec2:DescribeVolumes
  • C ec2:TerminateInstances
  • D ec2:RunInstances
Explanation The action ec2:StartInstances directly relates to starting EC2 instances, while others are various actions that don't specifically start instances.
Q103

Which AWS service provides automated security assessments?

  • A AWS Inspector
  • B AWS Shield
  • C AWS Config
  • D AWS GuardDuty
Explanation AWS Inspector performs automated security assessments, while the others have different functionalities.
Q104

A company needs to migrate a multi-tier web application to AWS. Which architecture is best suited?

  • A Monolithic architecture
  • B Serverless architecture
  • C Microservices architecture
  • D Single-instance architecture
Explanation Microservices architecture best supports scalability and flexibility for multi-tier applications, unlike the other options.
Q105

You are configuring a VPC peering connection. What happens if CIDR ranges overlap?

  • A Peering will succeed as normal
  • B Traffic is automatically blocked
  • C Peering will fail to establish
  • D Only public subnets can connect
Explanation Peering connections cannot be established with overlapping CIDR ranges; this results in failure.
Q106

Which service helps automate provisioning in AWS?

  • A AWS CloudFormation
  • B AWS Lambda
  • C AWS Elastic Beanstalk
  • D AWS CodePipeline
Explanation AWS CloudFormation automates resource provisioning; others are primarily for deployment or functions.
Q107

A company needs to monitor their AWS resources' operational health. Which service should they use?

  • A AWS CloudTrail
  • B Amazon CloudWatch
  • C AWS Config
  • D AWS X-Ray
Explanation Amazon CloudWatch provides accurate monitoring; CloudTrail is for logging actions and AWS X-Ray is for debugging applications.
Q108

What happens when you allocate an Elastic IP but do not associate it with an instance?

  • A It incurs no charges.
  • B It generates a recurring charge.
  • C It gets automatically deleted.
  • D It blocks incoming traffic.
Explanation An unassociated Elastic IP incurs charges; the other options misstate the billing or functionality of Elastic IPs.
Q109

Which service helps in automating AWS resource management?

  • A AWS Systems Manager
  • B Amazon Glacier
  • C AWS Lambda
  • D Amazon RDS
Explanation AWS Systems Manager automates resource management, while others do not specialize in this area.
Q110

A company needs to set up a high-availability architecture for its web application. Which service should they primarily use?

  • A AWS Elastic Load Balancer
  • B AWS CloudFormation
  • C Amazon S3
  • D Amazon Route 53
Explanation AWS Elastic Load Balancer distributes traffic for high availability, unlike the others which serve different purposes.