Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 351–360 of 486

Q351

You are configuring a VPC and need to ensure instances can communicate with each other across different subnets. What must be enabled?

  • A VPC Peering
  • B Route Tables
  • C Network Access Control Lists
  • D Security Groups
Explanation Route Tables must be properly configured to allow inter-subnet communication, while others control different aspects.
Q352

Which service allows you to automate deployment across multiple AWS accounts?

  • A AWS CloudFormation
  • B AWS CodePipeline
  • C AWS Control Tower
  • D AWS OpsWorks
Explanation AWS Control Tower automates account setup and governance, unlike the others which have different primary functions.
Q353

A company needs to collect and analyze streaming data in real-time with minimal latency. Which service should they use?

  • A AWS Kinesis
  • B AWS S3
  • C AWS Lambda
  • D AWS Glue
Explanation AWS Kinesis is specifically designed for streaming data, while the others do not prioritize real-time processing.
Q354

What happens when you apply an IAM policy to a role?

  • A It grants access immediately
  • B It is ignored by default
  • C It is inherited by all users
  • D It must attach each user
Explanation Applying an IAM policy to a role grants access to any principal assuming that role, while the others are incorrect interpretations.
Q355

Which service integrates serverless computing with container orchestration?

  • A AWS Fargate
  • B AWS Lambda
  • C Amazon EC2
  • D Amazon ECS
Explanation AWS Fargate enables serverless container management while the others do not specifically combine serverless with orchestration.
Q356

A company needs to ensure that only its employees can access its AWS resources. What should they implement?

  • A IAM Roles
  • B Resource Policies
  • C AWS Organizations
  • D IAM Policies
Explanation IAM Policies control access directly to users; the others don't restrict access to employees specifically.
Q357

What happens when an EC2 instance is stopped?

  • A Data loss on EBS volumes
  • B Public IP is retained
  • C Billing stops
  • D Instance state is saved
Explanation Billing for the instance stops when stopped, while other options are incorrect in this context.
Q358

Which service allows for event-driven architecture integration?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon RDS
  • D Amazon S3
Explanation AWS Lambda executes code in response to events; other services do not specialize in event-driven functions.
Q359

A company needs to keep sensitive data encrypted at rest in Amazon S3. What should they implement?

  • A S3 Versioning
  • B S3 Object Lock
  • C S3 Server-Side Encryption
  • D S3 Transfer Acceleration
Explanation S3 Server-Side Encryption automatically encrypts data at rest; others do not focus on encryption.
Q360

You are configuring a VPC. What happens when two route tables have overlapping CIDR blocks?

  • A They cannot coexist.
  • B Routing is ambiguous.
  • C Traffic is automatically blocked.
  • D Routing uses the longest prefix match.
Explanation Overlapping CIDR blocks create ambiguity in routes; the longest prefix rule applies only if clear.