AWS-SysOps Free Practice Test

- (Exam Topic 1)
A SysOps administrator is investigating why a user has been unable to use RDP to connect over the internet from their home computer to a bastion server running on an Amazon EC2 Windows instance.
Which of the following are possible causes of this issue? (Choose two.)

1. A. A network ACL associated with the bastion's subnet is blocking the network traffic.
2. B. The instance does not have a private IP address.
3. C. The route table associated with the bastion's subnet does not have a route to the internet gateway.
4. D. The security group for the instance does not have an inbound rule on port 22.
5. E. The security group for the instance does not have an outbound rule on port 3389.

Correct Answer: AC

- (Exam Topic 1)
A company’s AWS Lambda function is experiencing performance issues. The Lambda function performs many CPU-intensive operations. The Lambda function is not running fast enough and is creating bottlenecks in the system.
What should a SysOps administrator do to resolve this issue?

1. A. In the CPU launch options for the Lambda function, activate hyperthreading.
2. B. Turn off the AWS managed encryption.
3. C. Increase the amount of memory for the Lambda function.
4. D. Load the required code into a custom layer.

Correct Answer: C
Increasing the amount of memory for the Lambda function will help to improve the performance of the function. This is because the Lambda function is CPU-intensive and increasing the memory will give it access to more CPU resources and help it run faster. The other options (activating hyperthreading in the CPU launch options for the Lambda function, turning off the AWS managed encryption, and loading the required code into a custom layer) will not help to improve the performance of the Lambda function and are not the correct solutions for this issue.
https://docs.aws.amazon.com/lambda/latest/dg/configuration-function-common.html#configuration-memory-con

- (Exam Topic 1)
A SysOps administrator developed a Python script that uses the AWS SDK to conduct several maintenance tasks. The script needs to run automatically every night.
What is the MOST operationally efficient solution that meets this requirement?

1. A. Convert the Python script to an AWS Lambda (unctio
2. B. Use an Amazon EventBridge (Amazon CloudWatch Events) rule to invoke the function every night.
3. C. Convert the Python script to an AWS Lambda functio
4. D. Use AWS CloudTrail to invoke the function every night.
5. E. Deploy the Python script to an Amazon EC2 Instanc
6. F. Use Amazon EventBridge (Amazon CloudWatch Events) to schedule the instance to start and stop every night.
7. G. Deploy the Python script to an Amazon EC2 instanc
8. H. Use AWS Systems Manager to schedule the instance to start and stop every night.

Correct Answer: A

- (Exam Topic 1)
A company recently its server infrastructure to Amazon EC2 instances. The company wants to use Amazon CloudWatch metrics to track instance memory utilization and available disk space.
What should a SysOps administrator do to meet these requirements?

1. A. Configure CloudWatch from the AWS Management Console tor all the instances that require monitoring by CloudWatc
2. B. AWS automatically installs and configures the agents far the specified instances.
3. C. Install and configure the CloudWatch agent on all the instance
4. D. Attach an IAM role to allow theinstances to write logs to CloudWatch.
5. E. Install and configure the CloudWatch agent on all the instance
6. F. Attach an IAM user to allow the instances to write logs to CloudWatch.
7. G. Install and configure the CloudWatch agent on all the instance
8. H. Attach the necessary security groups to allow the instances to write logs to CloudWatch

Correct Answer: C

- (Exam Topic 1)
A company is managing multiple AWS accounts in AWS Organizations The company is reviewing internal security of Its AWS environment The company's security administrator has their own AWS account and wants to review the VPC configuration of developer AWS accounts
Which solution will meet these requirements in the MOST secure manner?

1. A. Create an IAM policy in each developer account that has read-only access related to VPC resources Assign the policy to an IAM user Share the user credentials with the security administrator
2. B. Create an IAM policy in each developer account that has administrator access to all Amazon EC2 actions, including VPC actions Assign the policy to an IAM user Share the user credentials with the security administrator
3. C. Create an IAM policy in each developer account that has administrator access related to VPC resources Assign the policy to a cross-account IAM role Ask the security administrator to assume the role from their account
4. D. Create an IAM policy m each developer account that has read-only access related to VPC resources Assign the policy to a cross-account IAM role Ask the security administrator to assume the role from their account

Correct Answer: D