Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-SysOps

Amazon AWS-SysOps Exam Questions
AWS Certified SysOps Administrator (SOA-C01) (Page 11 )

Updated On: 24-Feb-2026
Page 11 of 97
PDF with 932 Questions

A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer (ALB). The company uses Amazon Route 53 to route traffic.
The company also has a static website that is configured in an Amazon S3 bucket.
A SysOps administrator must use the static website as a backup to the web application. The failover to the static website must be fully automated.
Which combination of actions will meet these requirements? (Choose two.)

  1. Create a primary failover routing policy record. Configure the value to be the ALB.
  2. Create an AWS Lambda function to switch from the primary website to the secondary website when the health check fails.
  3. Create a primary failover routing policy record. Configure the value to be the ALB. Associate the record with a Route 53 health check.
  4. Create a secondary failover routing policy record. Configure the value to be the static website. Associate the record with a Route 53 health check.
  5. Create a secondary failover routing policy record. Configure the value to be the static website.

Answer(s): C,E



A data analytics application is running on an Amazon EC2 instance. A SysOps administrator must add custom dimensions to the metrics collected by the Amazon
CloudWatch agent.
How can the SysOps administrator meet this requirement?

  1. Create a custom shell script to extract the dimensions and collect the metrics using the Amazon CloudWatch agent.
  2. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to evaluate the required custom dimensions and send the metrics to Amazon Simple Notification Service (Amazon SNS).
  3. Create an AWS Lambda function to collect the metrics from AWS CloudTrail and send the metrics to an Amazon CloudWatch Logs group.
  4. Create an append_dimensions field in the Amazon CloudWatch agent configuration file to collect the metrics.

Answer(s): D



A company stores its data in an Amazon S3 bucket. The company is required to classify the data and find any sensitive personal information in its S3 files.
Which solution will meet these requirements?

  1. Create an AWS Config rule to discover sensitive personal information in the S3 files and mark them as noncompliant.
  2. Create an S3 event-driven artificial intelligence/machine learning (AI/ML) pipeline to classify sensitive personal information by using Amazon Rekognition.
  3. Enable Amazon GuardDuty. Configure S3 protection to monitor all data inside Amazon S3.
  4. Enable Amazon Macie. Create a discovery job that uses the managed data identifier.

Answer(s): D



A company hosts a web portal on Amazon EC2 instances. The web portal uses an Elastic Load Balancer (ELB) and Amazon Route 53 for its public DNS service.
The ELB and the EC2 instances are deployed by way of a single AWS CloudFormation stack in the us-east-1 Region. The web portal must be highly available across multiple Regions.
Which configuration will meet these requirements?

  1. Deploy a copy of the stack in the us-west-2 Region. Create a single start of authority (SOA) record in Route 53 that includes the IP address from each ELB. Configure the SOA record with health checks. Use the ELB in us-east-1 as the primary record and the ELB in us-west-2 as the secondary record.
  2. Deploy a copy of the stack in the us-west-2 Region. Create an additional A record in Route 53 that includes the ELB in us-west-2 as an alias target. Configure the A records with a failover routing policy and health checks. Use the ELB in us-east-1 as the primary record and the ELB in us-west-2 as the secondary record.
  3. Deploy a new group of EC2 instances in the us-west-2 Region. Associate the new EC2 instances with the existing ELB, and configure load balancer health checks on all EC2 instances. Configure the ELB to update Route 53 when EC2 instances in us-west-2 fail health checks.
  4. Deploy a new group of EC2 instances in the us-west-2 Region. Configure EC2 health checks on all EC2 instances in each Region. Configure a peering connection between the VPCs. Use the VPC in us-east-1 as the primary record and the VPC in us-west-2 as the secondary record.

Answer(s): B



A SysOps administrator is investigating why a user has been unable to use RDP to connect over the internet from their home computer to a bastion server running on an Amazon EC2 Windows instance.
Which of the following are possible causes of this issue? (Choose two.)

  1. A network ACL associated with the bastion's subnet is blocking the network traffic.
  2. The instance does not have a private IP address.
  3. The route table associated with the bastion's subnet does not have a route to the internet gateway.
  4. The security group for the instance does not have an inbound rule on port 22.
  5. The security group for the instance does not have an outbound rule on port 3389.

Answer(s): A,C






Post your Comments and Discuss Amazon AWS-SysOps exam dumps with other Community members:

Join the AWS-SysOps Discussion