1. You have decided that you need to change the instance type of your production instances which are running as part of an Auto Scaling group. The entire architecture is deployed using CloudFormation Template. You currently have 4 instances in Production. You cannot have any interruption in service and need to ensure 2 instances are always running during the update? Which of the options below listed can be used for this?

A) Auto Scaling Replacing update
B) Auto Scaling integration Update
C) Auto Scaling Rolling Update
D) Auto Scaling scheduled Action



2. Your application uses Cloud Formation to orchestrate your application?s resources. During your testing phase before the application went live, your Amazon RDS instance type was changed and caused the instance to be re-created, resulting In the loss of test data. How should you prevent this from occurring in the future?

A) Within the AWS(Amazon Web Service) Cloud Formation parameter with which users can select the Amazon RDS instance type. set Allowed Values to only contain the current Instance type.
B) Subscribe to the AWS(Amazon Web Service) Cloud Formation notification BeforeResourceUpdate7 and call Cancel Stack Update if the resource identified is the Amazon RDS instance.
C) Use an AWS(Amazon Web Service) Cloud Formation stack policy to deny updates to the instance. Only allow Update Stack permission to lAM principals that are denied Set Stack Policy.
D) In the AWS(Amazon Web Service) Cloud Formation template, set the Deletion Policy of the AWS::RDS::DB instance?s Deletion Policy property to 'Retain.
E) In the AWS(Amazon Web Service) Cloud Formation template. set the AWS::RDS::DB instance?s DB instance Class property to be read only.


3. Which of the following Cache Engines does Ops work have built in support for?

A) Redis
B) Mem cache
C) Both Redis and Mem cache
D) There is no built En support as of yet for any cache engine



4. Your company is getting ready to do a major public announcement of a social media site on AWS. The website is running on EC2 instances deployed across multiple Availability Zones with a Multi-AZ RDS My SQL Extra Large DB Instance. The site performs a high number of small reads and writes per second and relies on an eventual consistency model. After comprehensive tests you discover that there is read contention on RDS My SQL. Which are the best approaches to meet these requirements? Choose 2 answers from the options below ?

A) Add an RDS My SQL read replica in each availability zone
B) Increase the RDS My SQL Instance size and Implement provisioned lops
C) Implement shading to distribute load to multiple RDS My SQL instances
D) Deploy Elastic Cache in-memory cache running in each availability zone



5. The company you work for has a huge amount of infrastructure built on AWS. However there has been some concerns recently about the security of this infrastructure, and an external auditor has been given the task of running a thorough check of all of your company?s AWS(Amazon Web Service) assets. The auditor will be in the USA while your S company?s infrastructure resides in the Asia Pacific (Sydney) region on AWS. Initially, he needs to check all of your VPC assets, specifically, security groups and NACLs You have been assigned the task of providing the auditor with a login to be able to do this. Which of the following would be the best and most secure solution to provide the auditor with so he can begin his Initial investigations? Choose the correct answer from the options below

A) Give him root access to your AWS(Amazon Web Service) Infrastructure, because he is an auditor he will need access to every service.
B) Create an lAM user with full VPC access but set a condition that will not allow him to modify anything if the request is from any IP other than his own.
C) Create an lAM user who will have read-only access to your AWS(Amazon Web Service) VPC infrastructure and provide the auditor with those credentials.
D) Create an lAM user tied to an administrator role. Also provide an additional level of security with MFA.