Free SOA-C02 Exam Braindumps (page: 49)

Page 49 of 106

A company uses an Amazon S3 bucket to store data files. The S3 bucket contains hundreds of objects. The company needs to replace a tag on all the objects in the S3 bucket with another tag.

What is the MOST operationally efficient way to meet this requirement?

  1. Use S3 Batch Operations. Specify the operation to replace all object tags.
  2. Use the AWS CLI to get the tags for each object. Save the tags in a list. Use S3 Batch Operations. Specify the operation to delete all object tags. Use the AWS CLI and the list to retag the objects.
  3. Use the AWS CLI to get the tags for each object. Save the tags in a list. Use the AWS CLI and the list to remove the object tags. Use the AWS CLI and the list to retag the objects.
  4. Use the AWS CLI to copy the objects to another S3 bucket. Add the new tag to the copied objects. Delete the original objects.

Answer(s): A



A company needs to take an inventory of applications that are running on multiple Amazon EC2 instances. The company has configured users and roles with the appropriate permissions for AWS Systems Manager. An updated version of Systems Manager Agent has been installed and is running on every instance. While configuring an inventory collection, a SysOps administrator discovers that not all the instances in a single subnet are managed by Systems Manager.

What must the SysOps administrator do to fix this issue?

  1. Ensure that all the EC2 instances have the correct tags for Systems Manager access.
  2. Configure AWS Identity and Access Management Access Analyzer to determine and automatically remediate the issue.
  3. Ensure that all the EC2 instances have an instance profile with Systems Manager access.
  4. Configure Systems Manager to use an interface VPC endpoint.

Answer(s): C



A company stores sensitive data in an Amazon S3 bucket. The company must log all access attempts to the S3 bucket. The company’s risk team must receive immediate notification about any delete events.

Which solution will meet these requirements?

  1. Enable S3 server access logging for audit logs. Set up an Amazon Simple Notification Service (Amazon SNS) notification for the S3 bucket. Select DeleteObject for the event type for the alert system.
  2. Enable S3 server access logging for audit logs. Launch an Amazon EC2 instance for the alert system. Run a cron job on the EC2 instance to download the access logs each day and to scan for a DeleteObject event.
  3. Use Amazon CloudWatch Logs for audit logs. Use Amazon CloudWatch alarms with an Amazon Simple Notification Service (Amazon SNS) notification for the alert system.
  4. Use Amazon CloudWatch Logs for audit logs. Launch an Amazon EC2 instance for the alert system. Run a cron job on the EC2 instance each day to compare the list of the items with the list from the previous day. Configure the cron job to send a notification if an item is missing.

Answer(s): A



A SysOps administrator receives an alert from Amazon GuardDuty about suspicious network activity on an Amazon EC2 instance. The GuardDuty finding lists a new external IP address as a traffic destination. The SysOps administrator does not recognize the external IP address. The SysOps administrator must block traffic to the external IP address that GuardDuty identified.

Which solution will meet this requirement?

  1. Create a new security group to block traffic to the external IP address. Assign the new security group to the EC2 instance.
  2. Use VPC flow logs with Amazon Athena to block traffic to the external IP address.
  3. Create a network ACL. Add an outbound deny rule for traffic to the external IP address.
  4. Create a new security group to block traffic to the external IP address. Assign the new security group to the entire VPC.

Answer(s): C



Page 49 of 106



Post your Comments and Discuss Amazon SOA-C02 exam with other Community members:

FN commented on November 21, 2024
Great work team!
ITALY
upvote

Tech Savvy commented on November 04, 2024
Great work team!, would be good if you list 10 questions at each page,
Anonymous
upvote

DeMalio commented on September 30, 2024
Very helpful and very accurate. Could not have passed this exam without this exam dump. Very grateful.
UNITED STATES
upvote

Omkar commented on June 26, 2024
Useful Dump
Anonymous
upvote

john commented on February 24, 2024
It's my first review so excuse me if I overlooked any etiquettes or etc. I had been studying off and on since Nov. I received a 790 a few hours ago and what I did was the following: Took the practice tests and got a passing score a couple times in a row Overall, I'd say that everything provided for reasonable price by along with the dumps helped me out the most. All of that plus just not psyching yourself out about the difficulty of the exam, picking a date and forcing yourself to be ready by that date should pretty much set you up for success.
UNITED STATES
upvote

tomAws commented on July 18, 2023
nice questions
BRAZIL
upvote

Emma commented on November 27, 2023
Nice questions
VIET NAM
upvote

Freya commented on October 24, 2023
I got my results today and I am delighted by them as I scored 83% on the SOA-C02 exam. I owe it all to this platform, I am I purchased this course as it is worth it.
Anonymous
upvote

tomAws commented on July 18, 2023
Questions so precious, I can already smell the certification :D
BRAZIL
upvote

tomAws commented on July 18, 2023
Nice questions
BRAZIL
upvote

SANDRO commented on March 01, 2023
It has been a wonderful experince dealing with the support team. They helped me update my files. And the new version seems to cover all the new topics. Very greatful.
UNITED STATES
upvote

StuckWithThis commented on June 14, 2022
Passed today. Do not take life serious. :-) Use these cheat sheets and pass.
UNITED STATES
upvote

Zack commented on May 04, 2021
Worth every penny! Just passed my exam. I was very concerned but these practice questions are magic!
UNITED STATES
upvote