Amazon AWS

AWS Certified CloudOps Engineer – Associate

SOA-C03

The AWS Certified CloudOps Engineer – Associate (SOA-C03) exam tests your skills in operating and managing AWS environments. It is ideal for those looking to enhance their operational expertise on AWS.

486 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 431–440 of 486

Q431

A company needs to grant temporary access to an external vendor for one of their Lambda functions. How should they do this?

  • A Create an IAM User with a policy
  • B Use AWS Organizations
  • C Create a Cross-account Role
  • D Add the vendor's account to IAM
Explanation Creating a cross-account role allows temporary access while ensuring proper permissions; IAM users and organizations do not manage temporary access effectively.
Q432

What happens when you set the capacity of an Auto Scaling group to 0 instances?

  • A No instances will run
  • B SQL queries will fail
  • C IAM roles will be revoked
  • D Costs will continue as usual
Explanation Setting to 0 instances ensures no instances are running, while SQL and IAM roles are unrelated and costs may still accrue from other resources.
Q433

Which AWS service helps automate resource provisioning?

  • A AWS CloudFormation
  • B AWS CloudTrail
  • C AWS Config
  • D AWS Systems Manager
Explanation AWS CloudFormation automates resource provisioning through templates while the others focus on different aspects of resource management.
Q434

A company needs to establish a secure connection to AWS for sensitive data transfers. Which service should they use?

  • A AWS Direct Connect
  • B Amazon Route 53
  • C AWS VPN
  • D Amazon CloudFront
Explanation AWS VPN provides a secure connection for sensitive data transfers, unlike AWS Direct Connect, which focuses on dedicated connections.
Q435

What happens when you enable versioning on an S3 bucket?

  • A Old versions are deleted
  • B All objects are public
  • C All objects are tagged
  • D Previous versions are retained
Explanation Enabling versioning retains all previous object versions, while the other options contradict the functionality of S3 versioning.
Q436

What service provides high availability for applications across multiple regions?

  • A Amazon Route 53
  • B AWS CloudFormation
  • C Amazon S3
  • D AWS Lambda
Explanation Amazon Route 53 can direct traffic to different regions based on health checks, enhancing availability, while others do not specifically focus on managing regional traffic.
Q437

You are configuring an Auto Scaling group and want to prevent over-provisioning. What feature helps with this?

  • A Scheduled Scaling
  • B Dynamic Scaling
  • C Instance Health Checks
  • D Predictive Scaling
Explanation Dynamic Scaling adjusts instances based on demand in real-time; scheduled scaling may not match immediate needs, health checks monitor instance status only.
Q438

A company needs to secure S3 bucket access using policy but wants to ensure no public access. What should they use?

  • A S3 Block Public Access
  • B AWS Organizations
  • C IAM Roles
  • D VPC Endpoint Policies
Explanation S3 Block Public Access settings prevent all public access regardless of bucket policies; the other options do not specifically target S3 access control.
Q439

Which AWS service is best for managing Docker containers?

  • A Amazon ECS
  • B Amazon S3
  • C AWS Lambda
  • D Amazon RDS
Explanation Amazon ECS is designed for container orchestration, while others serve different purposes.
Q440

A company needs to implement a global content delivery solution. Which service should they use?

  • A Amazon CloudFront
  • B Amazon Route 53
  • C AWS Direct Connect
  • D AWS Global Accelerator
Explanation Amazon CloudFront is specifically for content delivery, unlike others which focus on different networking needs.