CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
AWS Certified SysOps Administrator - Associate - Part 52
1. A system administrator wants to add other areas in existing ELB. The system administrator wants to perform this activity CLI. Which of the order mentioned below allows the system administrator to add new areas to the existing ELB?
A) None
B) Elb-enable-zones of-1b
C) E1B-add-areas-for-pound
D) It is impossible to add areas to the existing ELB
E) E1B-configure-areas-e-lb or
2. A user has created an application that will be hosted on EC2. The application uses Dynamo DB certain data fetch, the application uses the SDK Dynamo DB to connect with EC2 instance Which of the below mentioned is true regarding security best practices in this scenario?
A) None
B) The user must create a user with AM Dynamo DB and EC2 access. Attach the user with the application so it does not use the root account credentials
C) The user must create an IAM role that has access to EC2 it will deploy the application
D) The user must create an IAM user access with Dynamo DB and use its credentials in the application to connect with Dynamo DB
E) The user must attach a PM role with Dynamo DB access to the EC2 instance
3. A user sends the data shows cloud using Cloud API shows. The user sends data to 90 minutes in the future. What will see Cloud do in this case?
A) The user can not send data for more than 60 minutes at the future
B) Cloud Watch will accept data
C) It is impossible to send data to the future
D) It is impossible to send data Cloud Watch y Manual
E) None
4. An organization has launched five instances 2 and 3 for the production for testing. The organization wants a group of AM users must access the test instances and not those of production. How the organization can define that as part of the policy?
A) Set the IAM policy that allows access based on the Instance ID
B) Run the test and production instances in separate regions and to allow access region wise to the group
C) None
D) Set tags on test and production servers and add a condition to the AM policy that provides access to specific tags
E) Create IAM policy with a condition that allows access to small bodies do
5. A user tries to connect to a running EC2 instance running using SSH. However, the user gets an error of unprotected private key file. Which of the below mentioned options may be a possible reason for rejection?
A) None
B) The user provides the wrong user name for the connection OS
C) The public key file has the wrong license
D) The PPK file used for SSH is read-only
E) The private key file has the wrong license file
A) None
B) Elb-enable-zones of-1b
C) E1B-add-areas-for-pound
D) It is impossible to add areas to the existing ELB
E) E1B-configure-areas-e-lb or
2. A user has created an application that will be hosted on EC2. The application uses Dynamo DB certain data fetch, the application uses the SDK Dynamo DB to connect with EC2 instance Which of the below mentioned is true regarding security best practices in this scenario?
A) None
B) The user must create a user with AM Dynamo DB and EC2 access. Attach the user with the application so it does not use the root account credentials
C) The user must create an IAM role that has access to EC2 it will deploy the application
D) The user must create an IAM user access with Dynamo DB and use its credentials in the application to connect with Dynamo DB
E) The user must attach a PM role with Dynamo DB access to the EC2 instance
3. A user sends the data shows cloud using Cloud API shows. The user sends data to 90 minutes in the future. What will see Cloud do in this case?
A) The user can not send data for more than 60 minutes at the future
B) Cloud Watch will accept data
C) It is impossible to send data to the future
D) It is impossible to send data Cloud Watch y Manual
E) None
4. An organization has launched five instances 2 and 3 for the production for testing. The organization wants a group of AM users must access the test instances and not those of production. How the organization can define that as part of the policy?
A) Set the IAM policy that allows access based on the Instance ID
B) Run the test and production instances in separate regions and to allow access region wise to the group
C) None
D) Set tags on test and production servers and add a condition to the AM policy that provides access to specific tags
E) Create IAM policy with a condition that allows access to small bodies do
5. A user tries to connect to a running EC2 instance running using SSH. However, the user gets an error of unprotected private key file. Which of the below mentioned options may be a possible reason for rejection?
A) None
B) The user provides the wrong user name for the connection OS
C) The public key file has the wrong license
D) The PPK file used for SSH is read-only
E) The private key file has the wrong license file
1. Right Answer: B
Explanation: The user has created an Elastic Load Balancer with the availability of area and wants to add more areas in existing ELB. The user can do this in two ways: From the console or CLI, add new areas ELB;
2. Right Answer: E
Explanation: With AWS IAM user creates an application that runs on an EC2 instance and made requests to AWS, such as Dynamo DB or S3 calls. Here it is recommended that the user should not create an IAM user and pass the ¬ YS wear credentials to the application or integrate these credentials into the application. , The user must instead use the roles for EC2 and give role of access to Dynamo DB / S3. When roles are attached to EC2. it will give a temporary security credentials to the application hosted on the EC2 to connect with Dynamo DB I S3.
3. Right Answer: B
Explanation: Cloud with Amazon Watch, each metric data point must be marked with a stamp. The user can send the data to the CLI help but time must be UTC. If the user does not provide the time, shows Cloud will take the data received time in the time zone UTC. The timestamp sent by the user can be up to two weeks in the past and up to two hours in the future
4. Right Answer: D
Explanation: AWS Identity and Access Management is a Web service that allows organizations to manage users and user permissions for various AWS services. The user can add conditions in the context of policies of AIM. The condition can be set on AWS Tags, time and client IP and on different parameters. If the organization wants the user to access only to specific cases, it should define appropriate tags and add to the condition of the IAM policy. Political example below. Statementà ¬ {à ¬ Å?Actionà ¬: à ¬ Å?ec2: * à ¬, à ¬ Å?Effectà ¬: à ¬ Å?Allowà ¬, à ¬ Å?Resourceà ¬: à ¬ Å?hà ¬, à ¬ Å?Conditionà ¬ 4 à ¬ Å?String Equalsà ¬ 4 wec2: ResourceTag / instance type à ¬ žProductionà ¬
5. Right Answer: E
Explanation: While SSH to EC2 instance, if you get an error of unprotected private key file, it means that the private key file permissions on your computer are too open. Ideally, the private key must have the permission of Unix 0400. To resolve this issue, run the command: adds 0400 / path / to / private. key
Explanation: The user has created an Elastic Load Balancer with the availability of area and wants to add more areas in existing ELB. The user can do this in two ways: From the console or CLI, add new areas ELB;
2. Right Answer: E
Explanation: With AWS IAM user creates an application that runs on an EC2 instance and made requests to AWS, such as Dynamo DB or S3 calls. Here it is recommended that the user should not create an IAM user and pass the ¬ YS wear credentials to the application or integrate these credentials into the application. , The user must instead use the roles for EC2 and give role of access to Dynamo DB / S3. When roles are attached to EC2. it will give a temporary security credentials to the application hosted on the EC2 to connect with Dynamo DB I S3.
3. Right Answer: B
Explanation: Cloud with Amazon Watch, each metric data point must be marked with a stamp. The user can send the data to the CLI help but time must be UTC. If the user does not provide the time, shows Cloud will take the data received time in the time zone UTC. The timestamp sent by the user can be up to two weeks in the past and up to two hours in the future
4. Right Answer: D
Explanation: AWS Identity and Access Management is a Web service that allows organizations to manage users and user permissions for various AWS services. The user can add conditions in the context of policies of AIM. The condition can be set on AWS Tags, time and client IP and on different parameters. If the organization wants the user to access only to specific cases, it should define appropriate tags and add to the condition of the IAM policy. Political example below. Statementà ¬ {à ¬ Å?Actionà ¬: à ¬ Å?ec2: * à ¬, à ¬ Å?Effectà ¬: à ¬ Å?Allowà ¬, à ¬ Å?Resourceà ¬: à ¬ Å?hà ¬, à ¬ Å?Conditionà ¬ 4 à ¬ Å?String Equalsà ¬ 4 wec2: ResourceTag / instance type à ¬ žProductionà ¬
5. Right Answer: E
Explanation: While SSH to EC2 instance, if you get an error of unprotected private key file, it means that the private key file permissions on your computer are too open. Ideally, the private key must have the permission of Unix 0400. To resolve this issue, run the command: adds 0400 / path / to / private. key
Tags:
aws cloud awc cloud cerification certified aws aws certifications aws cloud practitioner aws solution architect aws training aws certified cloud practitioner aws exam aws certification exam aws practice exams aws 2023 aws updated questions aws questions aws cert aws certified solutions architect aws solution architect associate aws training and certification aws certified developer associate certification for devops0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment