Practice Free SOA-C02 Exam Online Questions
A company uses AWS Organizations. A SysOps administrator wants to use AWS Compute Optimizer and AWS tag policies in the management account to govern all member accounts in the billing family. The SysOps administrator navigates to the AWS Organizations console but cannot activate tag policies through the management account.
What could be the reason for this issue?
- A . All features have not been enabled in the organization.
- B . Consolidated billing has not been enabled.
- C . The member accounts do not have tags enabled for cost allocation.
- D . The member accounts have not manually enabled trusted access for Compute Optimizer.
A
Explanation:
AWS Organizations offers features that help manage multiple AWS accounts. To use AWS Compute Optimizer and AWS tag policies across all member accounts, the organization must have all features enabled.
Enable All Features in AWS Organizations:
Open the AWS Organizations console at AWS Organizations Console. Navigate to Settings and ensure that All features are enabled.
Verify and Enable Trusted Access:
Ensure that trusted access is enabled for AWS Compute Optimizer and other relevant services.
This allows the management account to access and manage resources in member accounts.
Use AWS Compute Optimizer and Tag Policies:
Once all features are enabled, configure and manage AWS Compute Optimizer and tag policies from the management account.
Reference: AWS Organizations
Enabling All Features in Your Organization
Enabling Trusted Access with Other AWS Services
A SysOps administrator creates two VPCs, VPC1 and VPC2, in a company’s AWS account The SysOps administrator deploys a Linux Amazon EC2 instance in VPC1 and deploys an Amazon RDS for MySQL DB instance in VPC2. The DB instance is deployed in a private subnet. An application that runs on the EC2 instance needs to connect to the database.
What should the SysOps administrator do to give the EC2 instance the ability to connect to the database?
- A . Enter the DB instance connection string into the VPC1 route table.
- B . Configure VPC peering between the two VPCs.
- C . Add the same IPv4 CIDR range for both VPCs.
- D . Connect to the DB instance by using the DB instance’s public IP address.
B
Explanation:
VPC peering allows two VPCs to communicate with each other securely. By configuring VPC peering between the two VPCs, the SysOps administrator will be able to give the EC2 instance in VPC1 the ability to connect to the database in VPC2. Once the VPC peering is configured, the EC2 instance will be able to communicate with the database using the private IP address of the DB instance in the private subnet.
A company is running an application on premises and wants to use AWS for data backup All of the data must be available locally. The backup application can write only to block-based storage that is compatible with the Portable Operating System Interface (POSIX)
Which backup solution will meet these requirements?
- A . Configure the backup software to use Amazon S3 as the target for the data backups
- B . Configure the backup software to use Amazon S3 Glacier as the target for the data backups
- C . Use AWS Storage Gateway, and configure it to use gateway-cached volumes
- D . Use AWS Storage Gateway, and configure it to use gateway-stored volumes
D
Explanation:
AWS Storage Gateway provides a hybrid cloud storage service that enables on-premises applications to seamlessly use AWS cloud storage. The gateway-stored volumes configuration is suitable for scenarios where all data must be available locally and the backup application can write only to block-based storage that is POSIX-compliant.
Deploy AWS Storage Gateway:
Launch the AWS Storage Gateway service from the AWS Management Console. Download and deploy the Storage Gateway VM on your on-premises infrastructure.
Activate the Gateway:
Activate the Storage Gateway by connecting it to your AWS account. Follow the setup wizard to complete the activation process. Configure Gateway-Stored Volumes:
Create a gateway-stored volume where the primary data is stored locally, and an asynchronous copy is stored in AWS.
Specify the size of the volume and configure it to match your backup application’s requirements.
Connect the Backup Application:
Present the created volume to your on-premises backup application as an iSCSI target.
Configure the backup application to write data to the iSCSI target provided by the Storage Gateway.
Monitor and Manage:
Use the AWS Management Console to monitor the gateway and the volumes.
Ensure that the data is being backed up to AWS correctly and that local copies are maintained as required.
Reference: AWS Storage Gateway User Guide
Gateway-Stored Volumes
A company recently purchased Savings Plans. The company wants to receive email notification when the company’s utilization drops below 90% for a given day.
Which solution will meet this requirement?
- A . Create an Amazon CloudWatch alarm to monitor the Savings Plan check in AWS Trusted Advisor. Configure an Amazon Simple Queue Service (Amazon SQS) queue for email notification when the utilization drops below 90% for a given day.
- B . Create an Amazon CloudWatch alarm to monitor the SavingsPlansUtilization metric under the AWS/SavingsPlans namespace in CloudWatch. Configure an Amazon Simple Queue Service (Amazon SQS) queue for email notification when the utilization drops below 90% for a given day.
- C . Create a Savings Plans alert to monitor the daily utilization of the Savings Plans. Configure an Amazon Simple Notification Service (Amazon SNS) topic for email notification when the utilization drops below 90% for a given day.
- D . Use AWS Budgets to create a Savings Plans budget to track the daily utilization of the Savings Plans. Configure an Amazon Simple Notification Service (Amazon SNS) topic for email notification when the utilization drops below 90% for a given day.
D
Explanation:
AWS Budgets can be used to create a Savings Plans budget and track the daily utilization of the company’s Savings Plans. By creating a budget, it will trigger an action when the utilization drops below 90%, which in this case will be to send an email notification via an Amazon SNS topic. This will ensure that the company is notified when their Savings Plans utilization drops below 90%, allowing them to take action if necessary.
Reference: [1] https://docs.aws.amazon.com/savingsplans/latest/userguide/sp-usingBudgets.html