Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 121–130 of 486

Q121

Which service provides a managed Kubernetes solution?

  • A Amazon EKS
  • B Amazon RDS
  • C AWS Lambda
  • D Amazon EC2
Explanation Amazon EKS is specifically designed for managed Kubernetes, while the others serve different purposes.
Q122

A company needs to ensure their CloudFormation template is only deployed in the correct region. What should they include?

  • A Dynamic references
  • B Region-specific environment variables
  • C Conditions in the template
  • D Hardcoded region values
Explanation Using Conditions allows for judicious control of resource creation based on the region.
Q123

You are configuring an IAM policy that needs to grant access to S3 only during business hours. What is the best approach?

  • A Use a managed policy
  • B Implement a time-based condition
  • C Define MFA requirement
  • D Use resource-based policies
Explanation Time-based conditions allow defining explicit permissions constraints based on time.
Q124

Which service automates resource scaling in AWS?

  • A Amazon EC2 Auto Scaling
  • B AWS Lambda
  • C Amazon RDS
  • D AWS CloudFormation
Explanation Amazon EC2 Auto Scaling scales EC2 instances; the others serve different purposes.
Q125

A company needs to securely store and manage API keys for their applications. Which solution should they use?

  • A AWS Secrets Manager
  • B AWS S3 Bucket
  • C AWS CodeCommit
  • D Amazon CloudWatch
Explanation AWS Secrets Manager securely stores API keys, unlike the others which don't focus on secret management.
Q126

What happens when an IAM role has no policies attached?

  • A Role can access all resources
  • B Role has no permissions
  • C Role can access some resources
  • D Role becomes disabled
Explanation An IAM role with no policies attached has no permissions to access AWS resources.
Q127

Which service provides serverless event-driven computing?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon RDS
  • D Amazon S3
Explanation AWS Lambda enables code execution in response to events, while the others are not event-driven compute services.
Q128

A company needs a scalable NoSQL database solution. Which AWS service should they choose?

  • A Amazon DocumentDB
  • B Amazon DynamoDB
  • C Amazon Aurora
  • D Amazon Redshift
Explanation Amazon DynamoDB is designed to provide a managed NoSQL database solution, unlike the others which serve different database types.
Q129

You are configuring an IAM role for cross-account access. What requirement must be met?

  • A Both accounts must be in the same region
  • B The trust policy must reference the other account
  • C Resources must be the same across accounts
  • D Only S3 resources can be accessed
Explanation The trust policy defines the permissions for cross-account access, while the other statements are incorrect requirements.
Q130

Which service provides automated scaling for EC2 instances?

  • A Auto Scaling Groups
  • B Elastic Load Balancing
  • C CloudFront
  • D Lambda Functions
Explanation Auto Scaling Groups manage EC2 instance scaling, while the others handle different functions.