Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 161–170 of 486

Q161

A company needs to archive data with infrequent access; which service is best?

  • A Amazon S3 Standard
  • B Amazon S3 Glacier
  • C Amazon EBS
  • D AWS Storage Gateway
Explanation Amazon S3 Glacier is designed for infrequent access data, unlike the other options.
Q162

You are configuring an Auto Scaling group; what happens if it reaches maximum capacity?

  • A It terminates instances randomly
  • B It accepts no new instances
  • C It scales down the current instances
  • D It rejects traffic until notified
Explanation It will not launch new instances if maximum capacity is reached.
Q163

Which service provides auto-scaling for EC2 instances?

  • A AWS Auto Scaling
  • B AWS Lambda
  • C AWS CloudFront
  • D AWS S3
Explanation AWS Auto Scaling specifically manages the scaling of EC2 instances; others serve different purposes.
Q164

A company needs to distribute content globally with low latency. What should they use?

  • A AWS Direct Connect
  • B AWS S3
  • C AWS CloudFront
  • D AWS Route 53
Explanation AWS CloudFront is a CDN that reduces latency by caching content at edge locations, unlike the others.
Q165

What happens when you assign an IAM role to an EC2 instance?

  • A Access to all S3 buckets
  • B Temporary security credentials issued
  • C Permanent IAM user created
  • D EC2 instance becomes a Lambda function
Explanation IAM roles provide temporary security credentials for applications running on the instance; others are incorrect interpretations.
Q166

Which service allows you to manage AWS resources programmatically?

  • A AWS SDK
  • B AWS Config
  • C AWS Direct Connect
  • D AWS CloudFormation
Explanation AWS SDK provides programmatic access to AWS services, while AWS Config and CloudFormation deal with compliance and infrastructure as code, respectively.
Q167

A company needs to provide temporary access to S3 resources for a third-party application. What is the best way to achieve this?

  • A IAM role with a policy
  • B IAM user credentials
  • C Bucket policy permissions
  • D Cross-region replication
Explanation Using an IAM role with a policy allows secure, temporary access for third parties, while user credentials and bucket policies lack this temporary nature.
Q168

You are configuring a VPC with public and private subnets. What happens if you add an outbound rule in the security group of a private subnet instance allowing all outbound traffic?

  • A Instance can access the internet
  • B Instance communication is restricted
  • C Traffic flows without restrictions
  • D Instance can send traffic to public subnet
Explanation An outbound rule allows traffic to flow to permitted destinations, but a private subnet needs a NAT gateway for internet access, so it can only send traffic internally without it.
Q169

Which service allows you to automate deployment configurations?

  • A AWS Elastic Beanstalk
  • B Amazon S3
  • C AWS Glue
  • D Amazon RDS
Explanation AWS Elastic Beanstalk automates deployment configurations, while the others serve different purposes.
Q170

A company needs to optimize an application's performance on AWS. What should they consider first?

  • A Increasing instance types
  • B Using Amazon CloudFront
  • C Adding a third Availability Zone
  • D Enabling AWS X-Ray
Explanation Using Amazon CloudFront improves global latency, while the other options may only partially address performance.