Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 291–300 of 486

Q291

You are configuring a VPC peering connection. What happens if the route tables do not have the appropriate routes?

  • A Peering will fail to initiate
  • B Traffic will continue to flow normally
  • C Traffic is blocked between VPCs
  • D Peering works but is slow
Explanation Without the correct route tables, traffic between peered VPCs is blocked; initiating the peering does not impact traffic flow by itself.
Q292

Which service is primarily used for automating infrastructure provisioning?

  • A AWS CloudFormation
  • B AWS CloudTrail
  • C AWS CodePipeline
  • D AWS CloudWatch
Explanation AWS CloudFormation automates provisioning, unlike the others.
Q293

A company needs to migrate a database with minimal downtime. Which approach should they use?

  • A Tape Backup
  • B Read Replica
  • C Snapshot Copy
  • D Live Migration
Explanation Using a Read Replica minimizes downtime during migration.
Q294

What happens when an EC2 instance is stopped and restarted?

  • A Changes persist for EBS volumes
  • B Instance public IP address is retained
  • C All data is deleted
  • D Instance stops being charged
Explanation EBS volumes retain data when stopped, but public IP changes.
Q295

Which service is designed to run containers in the AWS cloud?

  • A Amazon ECS
  • B AWS Lambda
  • C Amazon S3
  • D AWS CloudFormation
Explanation Amazon ECS is specifically designed for running containers, while the others serve different purposes.
Q296

A company needs to ensure their EC2 instances restart automatically after a failure. What should they configure?

  • A Load balancer
  • B Auto Scaling Group
  • C CloudWatch metric
  • D Elastic IP
Explanation An Auto Scaling Group can automatically manage instance replacements, while the others do not provide this capability.
Q297

What happens when an IAM user is assigned multiple policies granting conflicting permissions?

  • A Deny all permissions
  • B Allow based on most permissive policy
  • C Allow based on least permissive policy
  • D Deny based on least restrictive policy
Explanation In IAM, if conflicting permissions exist, the most permissive policy applies, while others do not align with IAM policy evaluation logic.
Q298

Which service enables automated infrastructure provisioning?

  • A AWS CloudFormation
  • B Amazon EC2
  • C AWS Lambda
  • D Amazon RDS
Explanation AWS CloudFormation automates infrastructure provisioning, while the others are services without this capability.
Q299

A company needs to restrict S3 bucket access to specific IP ranges. What should they implement?

  • A Bucket Policies
  • B IAM Roles
  • C CloudTrail logs
  • D S3 Versioning
Explanation Bucket Policies can explicitly restrict access based on IP, but IAM roles don't control S3 access in that way.
Q300

What happens when you disable an IAM user's access key?

  • A The user cannot log in
  • B The user's permissions are removed
  • C The user retains API access with it disabled
  • D New access keys become active immediately
Explanation Disabling an access key prevents its use for API access, while allowing other access methods to remain valid.