Free SOA-C02 Exam Braindumps

A SysOps administrator is creating two AWS CloudFormation templates. The first template will create a VPC with associated resources, such as subnets, route tables, and an internet gateway. The second template will deploy application resources within the VPC that was created by the first template. The second template should refer to the resources created by the first template.

How can this be accomplished with the LEAST amount of administrative effort?

  1. Add an export field to the outputs of the first template and import the values in the second template.
  2. Create a custom resource that queries the stack created by the first template and retrieves the required values.
  3. Create a mapping in the first template that is referenced by the second template.
  4. Input the names of resources in the first template and refer to those names in the second template as a parameter.

Answer(s): C



A company has an Amazon Route 53 private hosted zone in its AWS account. The private hosted zone is connected to the company’s on-premises data center by an AWS Direct Connect connection. Virtual machines (VMs) in the on-premises data center need to resolve DNS queries that exist in the private hosted zone.
What is the MOST operationally efficient solution that meets this requirement?

  1. Create a Route 53 inbound resolver. Configure the on-premises VMs to use the inbound resolver.
  2. Create a Route 53 outbound resolver. Configure the on-premises VMs to use the outbound resolver.
  3. Configure the security group on the Route 53 private hosted zone by adding an inbound rule for the onpremises CIDR range.
  4. Configure a Route 53 public hosted zone. Create an NS record for the private hosted zone. Query the public hosted zone from the on-premises VMs.

Answer(s): D


Reference:

https://aws.amazon.com/blogs/security/how-to-centralize-dns-management-in-a-multi-accountenvironment/



A SysOps administrator must create a solution that immediately notifies software developers if an AWS Lambda function experiences an error.
Which solution will meet this requirement?

  1. Create an Amazon Simple Notification Service (Amazon SNS) topic with an email subscription for each developer. Create an Amazon CloudWatch alarm by using the Errors metric and the Lambda function name as a dimension. Configure the alarm to send a notification to the SNS topic when the alarm state reaches ALARM.
  2. Create an Amazon Simple Notification Service (Amazon SNS) topic with a mobile subscription for each developer. Create an Amazon EventBridge (Amazon CloudWatch Events) alarm by using the LambdaError as the event pattern and the SNS topic name as a resource. Configure the alarm to send a notification to the SNS topic when the alarm state reaches ALARM.
  3. Verify each developer email address in Amazon Simple Email Service (Amazon SES). Create an Amazon CloudWatch rule by using the LambdaError metric and developer email addresses as dimensions.
    Configure the rule to send an email through Amazon SES when the rule state reaches ALARM.
  4. Verify each developer mobile phone in Amazon Simple Email Service (Amazon SES). Create an Amazon EventBridge (Amazon CloudWatch Events) rule by using Error as the event pattern and the Lambda function name as a resource. Configure the rule to send a push notification through Amazon SES when the rule state reaches ALARM.

Answer(s): D



An organization finds that a high number of gp2 Amazon EBS volumes are running out of space. Which solution will provide the LEAST disruption with MINIMAL effort?

  1. Create a snapshot and restore it to a larger gp2 volume.
  2. Create a RAID 0 with another new gp2 volume to increase capacity.
  3. Leverage the Elastic Volumes feature of EBS to increase gp2 volume size.
  4. Write a script to migrate data to a larger gp2 volume.

Answer(s): C


Reference:

https://aws.amazon.com/ebs/features/



A company has a new requirement stating that all resources in AWS must be tagged according to a set policy. Which AWS service should be used to enforce and continually identify all resources that are not in compliance with the policy?

  1. AWS CloudTrail
  2. Amazon Inspector
  3. AWS Config
  4. AWS Systems Manager

Answer(s): C


Reference:

https://aws.amazon.com/config/