Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 191–200 of 486

Q191

You are configuring an Auto Scaling group. What happens if the minimum size is set to zero?

  • A No instances running
  • B Always two instances running
  • C Scaling policies ignored
  • D Instance health checks disabled
Explanation Setting the minimum size to zero allows scaling down to zero instances; others do not affect the minimum configuration.
Q192

A company needs fine-grained access controls for its S3 bucket. What should they use?

  • A IAM Policies
  • B Bucket Policies
  • C ACLs
  • D Resource Policies
Explanation IAM Policies provide detailed access control, while Bucket Policies are broader; ACLs are less flexible.
Q193

Which service is best for real-time data streaming?

  • A AWS Kinesis
  • B AWS S3
  • C AWS Lambda
  • D AWS RDS
Explanation AWS Kinesis specializes in real-time data streams; S3 is for storage, Lambda is serverless compute, and RDS is for databases.
Q194

A company needs a highly available web application with low latency across multiple regions. What should they use?

  • A EC2 Autoscaling
  • B AWS Global Accelerator
  • C CloudFront with S3
  • D Route 53 Failover
Explanation AWS Global Accelerator routes traffic to optimal endpoints with low latency; the others improve availability but not latency in multiple regions.
Q195

You are configuring IAM policies for EC2 access. What happens if a user has both allow and deny permissions?

  • A Allow takes precedence
  • B Deny takes precedence
  • C No access granted
  • D Access based on resource tags
Explanation Deny permissions always take precedence over allow; the others inaccurately interpret IAM policy behaviors.
Q196

Which service provides automated provisioning and management of AWS resources?

  • A AWS CloudFormation
  • B AWS Lambda
  • C AWS CodeDeploy
  • D AWS Step Functions
Explanation AWS CloudFormation automates resource provisioning, unlike the others.
Q197

A company needs to manage temporary permissions for AWS resources. Which feature should they use?

  • A IAM Roles
  • B IAM Policies
  • C AWS Organizations
  • D CloudTrail
Explanation IAM Roles provide temporary permissions, while the others do not.
Q198

What happens when an EC2 instance is terminated while its EBS volume is not set to delete on termination?

  • A EBS volume is deleted
  • B EBS volume is retained
  • C EC2 instance fails to terminate
  • D Data is lost
Explanation The EBS volume is retained, ensuring data persistence when not marked for deletion.
Q199

Which AWS service is best for managing a Docker containerized application?

  • A Amazon ECS
  • B AWS Lambda
  • C AWS EC2
  • D AWS RDS
Explanation Amazon ECS is designed specifically for container orchestration while Lambda runs code without managing servers, EC2 is for VMs, and RDS is for databases.
Q200

A company needs to protect sensitive data at rest in S3. What should they implement?

  • A S3 Versioning
  • B S3 Object Lock
  • C S3 Bucket Encryption
  • D S3 Lifecycle Policies
Explanation S3 Bucket Encryption secures sensitive data at rest, while the others do not provide direct data encryption.