Time limit: 0
Quiz Summary
0 of 25 Questions completed
Questions:
Information
You have already completed the quiz before. Hence you can not start it again.
Quiz is loading…
You must sign in or sign up to start the quiz.
You must first complete the following:
Results
Quiz complete. Results are being recorded.
Results
0 of 25 Questions answered correctly
Your time:
Time has elapsed
You have reached 0 of 0 point(s), (0)
Earned Point(s): 0 of 0, (0)
0 Essay(s) Pending (Possible Point(s): 0)
Categories
- Not categorized 0%
-
Unfortunately, you didn’t pass the quiz, but hey, you have unlimited access.😎
Practice makes you perfect! 👊 -
Congratulations! 🥳
You have passed the quiz successfully! You are one step closer to pass the real exam!
We hope to see you again on another certification path.✌️
Good luck with the exam! Stay strong.👊
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- Current
- Review
- Answered
- Correct
- Incorrect
-
Question 1 of 25
1. Question
As a SysOps administrator for a startup, you have been tasked to provide the most suitable database service for the company in order to:
- Store and retrieve any amount of data and serve any level of request traffic.
- Scale up or scale down your tables’ throughput capacity without downtime or performance degradation.
- Create full backups of your tables for long-term retention and archival for regulatory compliance needs.
Which of the following Amazon database service is the most suitable solution to use to achieve the above requirements?
CorrectIncorrect -
Question 2 of 25
2. Question
You are developing a service marketplace platform in which people buy and sell online services. The project manager instructed you that the API calls on the AWS resources should be monitored and recorded. You used CloudTrail to help you in compliance, operational, and risk auditing of your AWS account.
The project manager asked you where does CloudTrail store all of the logs?
CorrectIncorrect -
Question 3 of 25
3. Question
Which of the following AWS service is a security management service which allows you to centrally configure and manage firewall rules across your accounts and applications in AWS Organization?
CorrectIncorrect -
Question 4 of 25
4. Question
A company needs to submit the security and compliance documents such as AWS ISO certifications and Payment Card Industry (PCI).
Which of the following AWS service provides on-demand downloads of AWS security and compliance documents?
CorrectIncorrect -
Question 5 of 25
5. Question
In compliance with PCI DSS, an EU-based company is required to provide compliance documents, such as Payment Card Industry (PCI).
Where are these AWS compliance documents located?
CorrectIncorrect -
Question 6 of 25
6. Question
Your new educational app for high-school students uses Amazon Cognito to handle user authentication and authorization. Now, you are thinking to add another method of authentication in addition to just a username and password to make the app more secure.
What solution will you implement to add the extra layer of security?
CorrectIncorrect -
Question 7 of 25
7. Question
A company wants to incorporate a single sign-on feature from its corporate Active Directory. The company also wants to restrict access for each individual user to a designated user folder in an S3 bucket.
Which action should a SysOps administrator take to meet these requirements? (Select all that apply)
CorrectIncorrect -
Question 8 of 25
8. Question
A company is developing an educational mobile app that uploads the user’s performance of individuals lessons to DynamoDB. Amazon Cognito is being used for authentication, authorization, and user management, and users sign-in with Facebook IDs and Google IDs. In order to securely store data in DynamoDB, the design should use temporary AWS credentials.
Which of the following feature of Amazon Cognito is used to obtain temporary credentials to access AWS services?
CorrectIncorrect -
Question 9 of 25
9. Question
A company just launched a new mobile app that stores players and score information using Amazon S3 and DynamoDB. The users of the app can sign in using an external identity provider (IdP), such as Login with Amazon, Facebook, or Google. Amazon recommends that you do not embed or distribute long-term AWS credentials with apps that a user downloads to a device, even in an encrypted store.
What should a SysOps administrator use to requests temporary AWS security credentials when needed?
CorrectIncorrect -
Question 10 of 25
10. Question
A company wants to provide a single sign-on solution to existing staff that manage on-premise web applications and need access to the AWS management console to manage resources in the AWS cloud.
What should the SysOps administrator do to meet this requirement?
CorrectIncorrect -
Question 11 of 25
11. Question
A company is using IAM with Amazon EC2 to control whether users can perform a task using specific Amazon EC2 API actions and whether they can use specific AWS resources. A SysOps administrator attempts to launch an instance with a role, but he gets an
AccessDenied
error.Which actions should the SysOps administrator take to fix this issue?
CorrectIncorrect -
Question 12 of 25
12. Question
You are using AWS Trusted Advisor as it provides you real-time guidance to help you provision your resources following AWS best practices. Which of the following categories is NOT included in the AWS Trusted Advisor’s best practice recommendations?
CorrectIncorrect -
Question 13 of 25
13. Question
A Linux instance running in your VPC requires some configuration changes to be implemented locally and you need to run some commands.
Which of the following can be used to securely access the instance?
CorrectIncorrect -
Question 14 of 25
14. Question
In compliance with PCI DSS, an EU-based company is required to provide compliance documents, such as Payment Card Industry (PCI). Where are these AWS compliance documents located?
CorrectIncorrect -
Question 15 of 25
15. Question
A company needs to create an AWS multi-account strategy for its AWS Control Tower landing zone as a well-architected AWS environment following the best practices.
Which action should a SysOps administrator take to meet these requirements?
CorrectIncorrect -
Question 16 of 25
16. Question
A company starts growing rapidly and they need to implement a solution to centrally manage billing; control access, and security; and share resources across the AWS accounts.
Which of the following AWS services will meet this requirement?
CorrectIncorrect -
Question 17 of 25
17. Question
Which of the following AWS Key Management Service (AWS KMS) practice encrypts plaintext data with a data key, and then encrypts the data key under another key?
CorrectIncorrect -
Question 18 of 25
18. Question
A company just installed a new WordPress website on an Amazon EC2 Linux instance. Although the website is installed on an Amazon EC2 instance, they cannot directly deploy an ACM Certificate on that instance.
Which action should the SysOps administrator take to fix this issue?
CorrectIncorrect -
Question 19 of 25
19. Question
A company wants to set up an AWS Site-to-Site VPN connection with a virtual private gateway as the target gateway.
Which of the following is the FIRST step to meet the requirement?
CorrectIncorrect -
Question 20 of 25
20. Question
The instances that you launch into an Amazon VPC can’t communicate with your own (remote) network. Which of the following services do you need to create and configure in order to enable access to your remote network from your VPC?
CorrectIncorrect -
Question 21 of 25
21. Question
You are working for Examsdigest LLC, as a SysOps Administrator. You have been tasked to connect the on-premises infrastructure to their AWS cloud as secure as possible.
Which of the following AWS services can you use to accomplish this? (Choose all that apply)
CorrectIncorrect -
Question 22 of 25
22. Question
Which of the following AWS Services enables you to replace hardcoded credentials in your code with an API to ensure that the secret can’t be compromised by someone examining your code?
CorrectIncorrect -
Question 23 of 25
23. Question
A company for compliance purposes needs to assess how well its resource configurations comply with internal practices, industry guidelines, and regulations.
Which tool should a SysOps administrator use to meet these requirements?
CorrectIncorrect -
Question 24 of 25
24. Question
A company is hosted the new application in an Auto Scaling group of EC2 instances. The company wants to implement an SSL solution for the app to improve its security. The certificate is obtained from a third-party issuer.
Where can you import the SSL/TLS certificate to improve the security of the application?
CorrectIncorrect -
Question 25 of 25
25. Question
A company wants to implement a solution to automate security vulnerability assessments throughout the development and deployment pipelines.
Which service should a SysOps administrator enable to meet the requirement?
CorrectIncorrect