Preparing for the AWS Certified SysOps Administrator – Associate exam? This practice test covers fundamental concepts to help you gauge your understanding. Let’s dive into the questions!
1. Which AWS service allows administrators to automate operational tasks across AWS resources?
Answer:
Explanation:
AWS OpsWorks provides configuration of EC2 instances and automates code deployment, allowing for a consistent environment.
2. In the AWS CloudWatch service, what does the term "Namespace" represent?
Answer:
Explanation:
In CloudWatch, a namespace is a container for CloudWatch metrics. Metrics in different namespaces are isolated from each other.
3. What AWS tool allows you to see recommendations related to cost-optimizing your AWS resources?
Answer:
Explanation:
AWS Trusted Advisor inspects your AWS environment and provides best practice recommendations, including cost-optimization.
4. Which AWS service can help ensure data recovery by automatically taking backups of Amazon RDS databases?
Answer:
Explanation:
Amazon RDS automated backups allow you to recover your database to any point in time within your retention period.
5. If you need to retain infrastructure event history, such as when an EC2 instance was stopped or started, which service should you use?
Answer:
Explanation:
AWS CloudTrail captures API calls made on your account and delivers log files to you, allowing you to retain event history.
6. Which AWS service provides a managed Kubernetes service?
Answer:
Explanation:
Amazon EKS (Elastic Kubernetes Service) provides a managed Kubernetes service that makes it easier to run Kubernetes on AWS.
7. To monitor multiple AWS accounts, which feature of Amazon CloudWatch would you use?
Answer:
Explanation:
CloudWatch Cross-Account Logging allows you to aggregate logs from multiple AWS accounts into a centralized account.
8. Which service enables you to capture information about the IP traffic going to and from network interfaces in an EC2 instance?
Answer:
Explanation:
VPC Flow Logs capture information about the IP traffic going to and from network interfaces in your VPC.
9. How can you encrypt an existing Amazon S3 object in-place?
Answer:
Explanation:
To encrypt an existing object in-place, you'd copy the object onto itself and specify the encryption during the copy operation.
10. What AWS service would you use to visualize and troubleshoot your microservice-based applications?
Answer:
Explanation:
AWS X-Ray provides insights into the behavior of your applications, helping understand how they are performing and where bottlenecks are occurring.
11. Which AWS service provides a managed environment to run containers without having to manage the underlying infrastructure?
Answer:
Explanation:
AWS Fargate allows you to run containers without having to manage the clusters or the underlying infrastructure.
12. In which AWS service would you configure a bastion host for secure access to your EC2 instances within a VPC?
Answer:
Explanation:
A bastion host is typically an EC2 instance that is carefully configured to mitigate the risks of being compromised.
13. Which AWS service allows for the automated deployment, scaling, and management of containerized applications?
Answer:
Explanation:
Amazon ECS (Elastic Container Service) enables you to launch and stop container-based applications with simple API calls.
14. If you want to retain user activity and API usage across your AWS infrastructure for security analysis, which service should you use?
Answer:
Explanation:
AWS CloudTrail records API calls made on your account providing a history of AWS API calls for your account.
15. Which AWS service gives you a centralized view of your security state within AWS?
Answer:
Explanation:
AWS Security Hub provides a comprehensive view of your high-priority security alerts and compliance status across AWS accounts.
16. Which AWS service allows you to automate infrastructure provisioning and deployment processes?
Answer:
Explanation:
AWS CloudFormation allows you to create and manage AWS resources with templates. It automates the infrastructure provisioning and deployment process.
17. What AWS service would you use to monitor memory and disk metrics from your EC2 instances?
Answer:
Explanation:
While Amazon CloudWatch provides various metrics related to EC2 instances, memory and disk utilization metrics require custom metrics.
18. How can you restrict users from launching Amazon EC2 instances of a particular type?
Answer:
Explanation:
By using IAM policies, you can define and assign granular permissions, including restrictions on EC2 instance types.
19. Which AWS service helps manage hybrid environments and extends on-premises data center capacities into the AWS cloud?
Answer:
Explanation:
AWS Outposts is a fully managed service that offers the same AWS infrastructure, AWS services, APIs, and tools to virtually any datacenter, co-location space, or on-premises facility.
20. Which AWS service offers insights and potential issues regarding accessibility, cost, performance, and security for your AWS resources?
Answer:
Explanation:
AWS Trusted Advisor acts as a cloud expert that provides best practices (in the form of checks) in five categories: cost optimization, security, fault tolerance, performance, and service limits.
21. For an application running on EC2 instances behind an Elastic Load Balancer, where would you enable stickiness for session persistence?
Answer:
Explanation:
Session stickiness, ensuring a client is always sent to the same target, is configured at the target group level in Elastic Load Balancing.
22. Which AWS service allows you to monitor, manage, and publish custom metrics alongside AWS-provided metrics?
Answer:
Explanation:
Amazon CloudWatch provides data and actionable insights to monitor your applications, responds to system-wide performance changes, optimizes resource utilization, and get a unified view of operational health.
23. You need to distribute incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, IP addresses in one or more Availability Zones. Which service should you use?
Answer:
Explanation:
Elastic Load Balancing automatically distributes incoming application traffic across multiple targets, achieving better availability and fault tolerance.
24. Which AWS service can be used to automate infrastructure deployments based on Chef recipes?
Answer:
Explanation:
AWS OpsWorks provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.
25. An organization wants to have a centralized location to manage AWS service permissions across multiple AWS accounts. Which AWS service provides this capability?
Answer:
Explanation:
AWS Organizations allows you to centrally manage and enforce policies across multiple AWS accounts.
26. Which AWS service provides a resizable compute capacity in the cloud and allows you to quickly scale capacity, both up and down?
Answer:
Explanation:
Amazon EC2 (Elastic Compute Cloud) provides scalable computing capacity in the Amazon Web Services cloud. It allows you to run applications on the Amazon Web Services infrastructure.