Login / Register Shopping Cart (0)

Home
All Vendors
Guarantee
FAQ
Testimonials

Amazon AWS Certified CloudOps Engineer - Associate - SOA-C03 Exam Practice Test

Page: 1 / 17
Total 221 questions

Please signup / login to view this exam, then you will be able to view the entire exam for free.

Get Full Access Now

Question 1

A company uses AWS Systems Manager Session Manager to manage EC2 instances in the eu-west-1 Region.
The company wants private connectivity using VPC endpoints.
Which VPC endpoints are required to meet these requirements? (Select THREE.)

A. com.amazonaws.eu-west-1.ec2messages B. com.amazonaws.eu-west-1.states C. com.amazonaws.eu-west-1.s3 D. com.amazonaws.eu-west-1.ec2 E. com.amazonaws.eu-west-1.ssmmessages F. com.amazonaws.eu-west-1.ssm

Correct Answer: A,E,F

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 2

A company's reporting job that previously ran in 15 minutes is now taking 1 hour. The application runs on Amazon EC2 and extracts data from an Amazon RDS for MySQL DB instance.
CloudWatch metrics show high Read IOPS even when reports are not running. The CloudOps engineer must improve performance and availability.
Which solution will meet these requirements?

A. Configure Amazon ElastiCache and query it for reports. B. Increase the size of the RDS instance. C. Create a CloudFront distribution with the RDS instance as the origin. D. Deploy an RDS read replica and update the reporting job to query the reader endpoint.

Correct Answer: D

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 3

A company's CloudOps engineer monitors multiple AWS accounts in an organization and checks each account's AWS Health Dashboard. After adding 10 new accounts, the engineer wants to consolidate health alerts from all accounts.
Which solution meets this requirement with the least operational effort?

A. Enable organizational view in AWS Health. B. Create an AWS Lambda function to query the AWS Health API and write all events to an Amazon DynamoDB table. C. Use the AWS Health API to write events to an Amazon DynamoDB table. D. Configure the Health Dashboard in each account to forward events to a central AWS CloudTrail log.

Correct Answer: A

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 4

A company hosts a critical legacy application on two Amazon EC2 instances that are in one Availability Zone. The instances run behind an Application Load Balancer (ALB). The company uses Amazon CloudWatch alarms to send Amazon Simple Notification Service (Amazon SNS) notifications when the ALB health checks detect an unhealthy instance. After a notification, the company ' s engineers manually restart the unhealthy instance. A CloudOps engineer must configure the application to be highly available and more resilient to failures. Which solution will meet these requirements?

A. Increase the size of each instance. Create an Amazon EventBridge rule. Configure the EventBridge rule to restart the instances if they enter a failed state. B. Create an Amazon Machine Image (AMI) from a healthy instance. Launch an additional instance from the AMI in the same Availability Zone. Add the new instance to the ALB target group. Create an AWS Lambda function that runs when an instance is unhealthy. Configure the Lambda function to stop and restart the unhealthy instance. C. Create an Amazon Machine Image (AMI) from a healthy instance. Launch additional instances from the AMI in the same Availability Zone. Add the new instances to the ALB target group. D. Create an Amazon Machine Image (AMI) from a healthy instance. Create a launch template that uses the AMI. Create an Amazon EC2 Auto Scaling group that is deployed across multiple Availability Zones. Configure the Auto Scaling group to add instances to the ALB target group.

Correct Answer: D

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 5

A CloudOps engineer needs to set up alerting and remediation for a web application. The application consists of Amazon EC2 instances that have AWS Systems Manager Agent (SSM Agent) installed. Each EC2 instance runs a custom web server. The EC2 instances run behind a load balancer and write logs locally.
The CloudOps engineer must implement a solution that restarts the web server software automatically if specific web errors are detected in the logs.
Which combination of steps will meet these requirements? (Select THREE.)

A. Publish alarm findings to Amazon Simple Email Service (Amazon SES). Invoke an AWS Lambda function to restart the web server software. B. Create an AWS CloudTrail metric filter for the web logs. Configure an alarm for the specific errors. C. Create an Amazon EventBridge rule that responds to the alarm. Configure the rule to invoke an AWS Systems Manager Automation runbook to restart the web server software. D. Create an Amazon CloudWatch metric filter for the web logs. Configure an alarm for the specific errors. E. Install the Amazon CloudWatch agent on the EC2 instances. F. Create an Amazon Simple Notification Service (Amazon SNS) notification that responds to the alarm.Configure the notification to invoke an AWS Systems Manager Automation runbook to restart the web server software.

Correct Answer: C,D,E

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 6

A CloudOps engineer is troubleshooting an AWS CloudFormation template whereby multiple Amazon EC2 instances are being created. The template is working in us-east-1, but it is failing in us-west-2 with the error code:
AMI [ami-12345678] does not exist
How should the CloudOps engineer ensure that the AWS CloudFormation template is working in every Region?

A. Modify the AWS CloudFormation template by including the AMI IDs in the Mappings section. Refer to the proper mapping within the template for the proper AMI ID. B. Edit the AWS CloudFormation template to offer a drop-down list of all AMIs to the user by using the AWS::EC2::AMI::ImageId control. C. Copy the source Region's Amazon Machine Image (AMI) to the destination Region and assign it the same ID. D. Edit the AWS CloudFormation template to specify the Region code as part of the fully qualified AMI ID.

Correct Answer: A

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 7

A company uses an AWS Lambda function to process user uploads to an Amazon S3 bucket. The Lambda function runs in response to Amazon S3 PutObject events.
A SysOps administrator needs to set up monitoring for the Lambda function. The SysOps administrator wants to receive a notification through an Amazon Simple Notification Service (Amazon SNS) topic if the function takes more than 10 seconds to process an event.
Which solution will meet this requirement?

A. Collect Amazon CloudWatch metrics for the Lambda function to extract the function runtime. Create a CloudWatch alarm to publish a notification to the SNS topic when the runtime exceeds 10 seconds. B. Use Amazon CloudWatch Logs Insights to query Lambda logs for the function runtime. Set up a CloudWatch alarm based on the query result. Configure Amazon SNS to send notifications when function runtime exceeds 10 seconds. C. Configure an Amazon CloudWatch metric filter to capture the runtime of the Lambda function. Set the function ' s timeout setting to 10 seconds. Create an SNS subscription to alert the SysOps administrator if the function times out. D. Collect Amazon CloudWatch logs for the Lambda function. Create a metric filter to extract the PostRuntimeExtensionsDuration metric from the logs. Create a CloudWatch alarm to publish a notification to the SNS topic when the function runtime exceeds 10 seconds.

Correct Answer: A

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 8

A finance company uses AWS Secrets Manager to store Amazon RDS credentials that are periodically rotated. A database team must receive a notification when the credentials are rotated to ensure compliance with security policies. The database team creates an Amazon Simple Notification Service (Amazon SNS) topic for the notifications.
Which solution will meet these requirements?

A. Use Amazon EventBridge to filter Amazon CloudWatch Logs for RotationSucceeded events. Route notifications for all matches to the SNS topic. B. Enable notifications for secret rotation in AWS Secrets Manager. Configure Secrets Manager to publish notifications to the SNS topic when secrets are rotated. C. Create an Amazon EventBridge rule to match AWS CloudTrail events for the RotateSecret API call with a RotationSucceeded result. Configure the rule to route matching events to the SNS topic. D. Use Amazon CloudWatch Logs to filter for RotationSucceeded events. Route notifications for all matches to the SNS topic.

Correct Answer: C

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 9

A CloudOps engineer is responsible for a company ' s disaster recovery procedures. The company has a source Amazon S3 bucket in a production account, and it wants to replicate objects from the source to a destination S3 bucket in a nonproduction account. The CloudOps engineer configures S3 cross-Region, cross- account replication to copy the source S3 bucket to the destination S3 bucket. When the CloudOps engineer attempts to access objects in the destination S3 bucket, they receive an Access Denied error.
Which solution will resolve this problem?

A. Retry the request when the S3 Replication Time Control (S3 RTC) has elapsed. B. Modify the replication configuration to change object ownership to the destination S3 bucket owner. C. Ensure that the replication rule applies to all objects in the source S3 bucket and is not scoped to a single prefix. D. Verify that the storage class for the replicated objects did not change between the source S3 bucket and the destination S3 bucket.

Correct Answer: B

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 10

A CloudOps engineer must manage the security of an AWS account. Recently, an IAM user's access key was mistakenly uploaded to a public code repository. The engineer must identify everything that was changed using this compromised key.
How should the CloudOps engineer meet these requirements?

A. Search AWS CloudTrail event history for all events initiated with the compromised access key within the suspected timeframe. B. Query Amazon EC2 logs by using Amazon CloudWatch Logs Insights for all events initiated with the compromised access key within the suspected timeframe. C. Search VPC Flow Logs for all events initiated with the compromised access key within the suspected timeframe. D. Create an Amazon EventBridge rule to send all IAM events to an AWS Lambda function for analysis.

Correct Answer: A

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 11

A company uses an Amazon Simple Queue Service (Amazon SQS) queue and Amazon EC2 instances in an Auto Scaling group with target tracking for a web application. The company collects the ASGAverageNetworkIn metric but notices that instances do not scale fast enough during peak traffic. There are a large number of SQS messages accumulating in the queue.
A CloudOps engineer must reduce the number of SQS messages during peak periods.
Which solution will meet this requirement?

A. Define and use Amazon CloudWatch metric math to calculate the SQS queue backlog for each instance in the target tracking policy. B. Define and use a new custom Amazon CloudWatch metric based on the SQS ApproximateNumberOfMessagesDelayed metric in the target tracking policy. C. Define and use step scaling by specifying a ChangeInCapacity value for the EC2 instances. D. Define and use simple scaling by specifying a ChangeInCapacity value for the EC2 instances.

Correct Answer: A

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 12

A company hosts a production MySQL database on an Amazon Aurora single-node DB cluster. The database is queried heavily for reporting purposes. The DB cluster is experiencing periods of performance degradation because of high CPU utilization and maximum connections errors. A CloudOps engineer needs to improve the stability of the database.
Which solution will meet these requirements?

A. Create a second Aurora MySQL single-node DB cluster in a second Availability Zone. Ensure that all reporting requests use the connection string for this additional node. B. Create a multi-node Amazon ElastiCache cluster. Ensure that all reporting requests use the ElastiCache cluster. Use the database if the data is not in the cache. C. Create an Aurora Replica node. Create an Auto Scaling policy to scale replicas based on CPU utilization. Ensure that all reporting requests use the read-only connection string. D. Create an AWS Lambda function that caches reporting requests. Ensure that all reporting requests call the Lambda function.

Correct Answer: C

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Question 13

A company has a VPC that contains a public subnet and a private subnet. The company deploys an Amazon EC2 instance that uses an Amazon Linux Amazon Machine Image (AMI) and has the AWS Systems Manager Agent (SSM Agent) installed in the private subnet. The EC2 instance is in a security group that allows only outbound traffic.
A CloudOps engineer needs to give a group of privileged administrators the ability to connect to the instance through SSH without exposing the instance to the internet.
Which solution will meet this requirement?

A. Create an EC2 Instance Connect endpoint in the public subnet. Update the security group to allow SSH traffic from the private network. Create an IAM group for privileged administrators. Assign the PowerUserAccess managed policy to the IAM group. B. Create an EC2 Instance Connect endpoint in the private subnet. Update the security group to allow inbound SSH traffic. Create an IAM group for privileged administrators. Assign the PowerUserAccess managed policy to the IAM group. C. Create a Systems Manager endpoint in the private subnet. Update the security group to allow SSH traffic from the private network where the Systems Manager endpoint is connected. Create an IAM group for privileged administrators. Assign the PowerUserAccess managed policy to the IAM group. D. Create a Systems Manager endpoint in the public subnet. Create an IAM role that has the AmazonSSMManagedInstanceCore permission for the EC2 instance. Create an IAM group for privileged administrators. Assign the AmazonEC2ReadOnlyAccess IAM policy to the IAM group.

Correct Answer: B

Explanation: Only visible for TrainingDump members. You can sign-up / login (it's free).

Page: 1 / 17
Total 221 questions

Unlock all SOA-C03 features

No captcha needed
365 Days Free Updates
Set your Desired Pass Percentage
Allocate Time (Hours : Minutes)
Two Modes For SOA-C03 Practice
Customer Support

Get Full Access Now

0 Happy Clients

0 Shares

0 Downloads

0 Years in Business

Get in Touch

Latest Exams

C_BCFIN Training Dumps
C_DBADM_2601 Training Dumps
CCFA-200b Training Dumps
ADP Training Dumps
NCP-BC Training Dumps
SPLK-3001 Training Dumps

Useful Links

All Products
FAQ
Privacy Policy
Guarantee & Refund Policy
Terms & Conditions
How to buy?
About Us

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TRAININGDUMP.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.