Content Preview

AWS CERTIFIED SYSOPS ADMINISTRATOR ASSOCIATE PRACTICE EXAM 1 QUESTIONS AND ANSWERS An enterprise supply chain application uses Glacier in archiving its data. You have to deploy and enforce compliance controls for individual Glacier vaults by specifying controls such as "write once read many" (WORM) in a vault lock policy and lock the policy from future edits for regulatory compliance. This is to ensure that once the Glacier vault is locked, the policy can no longer be changed. Which is the most suitable approach to satisfy the given requirement? ....ANSWER ...-Use Amazon S3 Glacier Vault Lock. A data analytics company has a dockerized application running in ECS with a DynamoDB database. The IT security team has detected malicious traffic coming from a specific set of IP addresses. Which of the following should you do to block the incoming traffic from these IP addresses? - ....ANSWER ...-Block the incoming traffic using Network Access Control List. A company has a newly-hired DevOps Engineer that will assist the IT Manager in developing a fault-tolerant and highly available architecture, which is comprised of an Elastic Load Balancer and an Auto Scaling group of EC2 instances deployed on multiple AZ's. This will be used by a forex trading application that requires WebSockets, hostbased and path-based routing, and support for containerized applications. ....FOR STUDY PURPOSES...©️2025 ALL RIGHTS RESERVED... 1