Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 371–380 of 486

Q371

A company needs to maintain a public website but also store sensitive customer data securely. Which architecture pattern should they use?

  • A Single-tier architecture
  • B Multi-tier architecture
  • C Serverless architecture
  • D Peer-to-peer architecture
Explanation Multi-tier architecture separates concerns, providing security and scalability; the others do not fit this use case well.
Q372

What happens when an IAM role is attached to a resource?

  • A Resource gains access to AWS services
  • B IAM role gets deleted automatically
  • C Resource becomes a public resource
  • D IAM policies are ignored
Explanation The attached IAM role allows the resource to assume permissions; the other options are incorrect interpretations of IAM roles.
Q373

Which Amazon service can manage keys for encryption?

  • A AWS Key Management Service
  • B Amazon S3
  • C AWS Lambda
  • D Amazon CloudFront
Explanation AWS Key Management Service manages encryption keys, while others do not support key management.
Q374

A company needs to deploy applications across multiple regions. Which AWS service should they choose for global load balancing?

  • A Amazon Route 53
  • B AWS Elastic Beanstalk
  • C Amazon CloudWatch
  • D AWS Direct Connect
Explanation Amazon Route 53 provides global load balancing, unlike the other options which serve different purposes.
Q375

What happens when an EC2 instance is stopped and started?

  • A Instance type is changed
  • B Public IP address is retained
  • C Data on instance store is preserved
  • D New private IP address assigned
Explanation A new private IP is assigned upon restart, while others maintain specific characteristics through stopping and starting.
Q376

Which service allows automated server deployment using templates?

  • A AWS CloudFormation
  • B AWS Direct Connect
  • C AWS CodeDeploy
  • D AWS Elastic Beanstalk
Explanation AWS CloudFormation uses templates to automate resource deployment, while the others focus on different service aspects.
Q377

A company needs a managed database service compatible with PostgreSQL. What should they choose?

  • A Amazon DynamoDB
  • B Amazon RDS
  • C Amazon Aurora
  • D Amazon Redshift
Explanation Amazon RDS supports PostgreSQL, while the others either do not or are not designed for PostgreSQL compatibility.
Q378

You are configuring a VPC. What happens if security groups are not attached to a resource?

  • A Resource connections are allowed.
  • B Resource is automatically deleted.
  • C Resource is unreachable.
  • D Resource connects to public subnets.
Explanation Without security groups, the resource has no inbound rules, making it unreachable, while the other options misrepresent the security effects.
Q379

Which AWS service is ideal for running serverless applications?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon RDS
  • D Amazon S3
Explanation AWS Lambda allows you to run code without provisioning servers, while the others require some form of server management.
Q380

A company needs to automatically scale its EC2 instances based on demand. Which service should they use?

  • A AWS CloudFormation
  • B Amazon CloudWatch
  • C AWS Auto Scaling
  • D Amazon Route 53
Explanation AWS Auto Scaling adjusts capacity automatically to meet demand, unlike the other options which do not provide direct scaling actions.