AWS SysOps Administrator Associates
Exam Study Guide UPDATED ACTUAL
Questions and CORRECT Answers
Which AWS Cloud service allows you to gain system-wide visibility into resource utilization,
application performance, and operational health? - CORRECT ANSWER - Amazon
CloudWatch
Which AWS Cloud service enables you to capture information about the IP traffic going to and
from network interfaces in your VPC? - CORRECT ANSWER - Amazon VPC Flow Logs
Which AWS Cloud Service enables governance, compliance, operational auditing, and risk
auditing of your AWS account? - CORRECT ANSWER - AWS CloudTrail
What is the term used for an environment that extends an existing on-premises infrastructure into
the cloud to connect cloud resources to internal systems? - CORRECT ANSWER - Hybrid
Cloud architecture
Which of the following services acts as a virtual firewall that controls the traffic for one or more
instances? - CORRECT ANSWER - Security Groups
A three-tier architecture is comprised of which of the following layers? (Choose three.) -
CORRECT ANSWER - 1. Database layer
2. Front-end web server layer
3. Application Layer
Each AWS region is composed of two or more locations that provide you with the ability to
introduce high availability, fault tolerance, and/or scale to your applications. What are these
locations called? - CORRECT ANSWER - Availability Zones
,What AWS Cloud service is designed to give you an easy way to establish a trusted relationship
between your Active Directory and AWS? - CORRECT ANSWER - Active Directory
Connector
What AWS Cloud service provides a logically isolated section of the AWS Cloud where systems
operators can launch AWS resources into a virtual network they defined? - CORRECT
ANSWER - Amazon Virtual Private Cloud (Amazon VPC)
You manage a fleet of web servers hosted on Amazon Elastic Compute Cloud (Amazon EC2).
Most, if not all, of the websites are static in nature. What AWS Cloud Service can host a static
website, thus replacing servers? - CORRECT ANSWER - Amazon Simple Storage Service
(Amazon S3)
What are the three AWS CLI output formats? - CORRECT ANSWER - 1. JSON<default>
2. text
3. table
Which AWS CLI output is most easily parsed and ingested by applications? - CORRECT
ANSWER - JSON
How do you enable AWS CLI autocompletion for the bash shell? - CORRECT
ANSWER - complete -C aws_complete aws
In Linux or Mac, you can use the backslash character to separate a command into several lines. -
CORRECT ANSWER - True
The AWS SDK for Python is also known as - CORRECT ANSWER - Boto
Which of the following is a dependency of the AWS CLI for Mac and Linux? - CORRECT
ANSWER - Python
,Which of the following AWS CLI output formats is best geared toward human viewing? -
CORRECT ANSWER - Table format
Which of the following AWS CLI output is a structured format that is handy for creating loosely-
formatted data to be processed programmatically? - CORRECT ANSWER - JSON format
Which of the following AWS CLI output is most useful for the query command or text-
processing utilities? - CORRECT ANSWER - Text Format
How can one split apart long AWS CLI command line to make it more easily readable by the
operator? - CORRECT ANSWER - Use backslashes (\) every few words, with a newline
after each backslash
For which languages are AWS SDKs available? (Choose all that apply) - CORRECT
ANSWER - Ruby
Perl
Python
Which command can you run to find more information about the proper syntax and options for
AWS IoT commands from the CLI? - CORRECT ANSWER - aws iot help
What does the waiter allow you to do in Boto? - CORRECT ANSWER - wait for ordered
infrastructure to become available before continuing
The waiter in Boto provides a handler for your code to deal with the short wait that occurs when
you perform tasks like launching an instance or creating a new Amazon Redshift cluster. -
CORRECT ANSWER - True
In which situation would you use the AWS IoT Device SDK? - CORRECT ANSWER -
To simplify the process of connecting things to the AWS IoT service.
, Like the AWS mobile SDK, the AWS IoT Device SDK provides prebuilt libraries that ease the
process of connecting your devices to the AWS IoT Service.
For the CLI commands that accept formatted files as input, the input file must be in which of the
following formats? - CORRECT ANSWER - JSON
Some AWS CLI inputs can be encoded in JSON format and passed through to using the --cli-
input-json parameter
Which option allows you to filter output? - CORRECT ANSWER - --query
Querying (--query) output data, in text format, is a powerful tool for making sense of complex
cloud deployments.
In what file are your Access Key and Secret Key stored after executing the aws configure
command? - CORRECT ANSWER - credentials
your keys are stored in the credentials file, located in either ~/.aws/credentials on Mac or Linux
or in %UserProfile%\.awscredentials on Windows.
It is not possible for a virtual instance running in promiscuous mode to receive , or "sniff," traffic
that is intended for a different virtual instance. - CORRECT ANSWER - True
Attacks such as Address Resolution Protocol (ARP) cache poisoning do not work within
Amazon EC2 and Amazon VPC. - CORRECT ANSWER - True
The following EC2 instance types are recommended by AWS to be excluded from security
testing: - CORRECT ANSWER - T3.nano
T2.nano
T1.micro
M1.small
Exam Study Guide UPDATED ACTUAL
Questions and CORRECT Answers
Which AWS Cloud service allows you to gain system-wide visibility into resource utilization,
application performance, and operational health? - CORRECT ANSWER - Amazon
CloudWatch
Which AWS Cloud service enables you to capture information about the IP traffic going to and
from network interfaces in your VPC? - CORRECT ANSWER - Amazon VPC Flow Logs
Which AWS Cloud Service enables governance, compliance, operational auditing, and risk
auditing of your AWS account? - CORRECT ANSWER - AWS CloudTrail
What is the term used for an environment that extends an existing on-premises infrastructure into
the cloud to connect cloud resources to internal systems? - CORRECT ANSWER - Hybrid
Cloud architecture
Which of the following services acts as a virtual firewall that controls the traffic for one or more
instances? - CORRECT ANSWER - Security Groups
A three-tier architecture is comprised of which of the following layers? (Choose three.) -
CORRECT ANSWER - 1. Database layer
2. Front-end web server layer
3. Application Layer
Each AWS region is composed of two or more locations that provide you with the ability to
introduce high availability, fault tolerance, and/or scale to your applications. What are these
locations called? - CORRECT ANSWER - Availability Zones
,What AWS Cloud service is designed to give you an easy way to establish a trusted relationship
between your Active Directory and AWS? - CORRECT ANSWER - Active Directory
Connector
What AWS Cloud service provides a logically isolated section of the AWS Cloud where systems
operators can launch AWS resources into a virtual network they defined? - CORRECT
ANSWER - Amazon Virtual Private Cloud (Amazon VPC)
You manage a fleet of web servers hosted on Amazon Elastic Compute Cloud (Amazon EC2).
Most, if not all, of the websites are static in nature. What AWS Cloud Service can host a static
website, thus replacing servers? - CORRECT ANSWER - Amazon Simple Storage Service
(Amazon S3)
What are the three AWS CLI output formats? - CORRECT ANSWER - 1. JSON<default>
2. text
3. table
Which AWS CLI output is most easily parsed and ingested by applications? - CORRECT
ANSWER - JSON
How do you enable AWS CLI autocompletion for the bash shell? - CORRECT
ANSWER - complete -C aws_complete aws
In Linux or Mac, you can use the backslash character to separate a command into several lines. -
CORRECT ANSWER - True
The AWS SDK for Python is also known as - CORRECT ANSWER - Boto
Which of the following is a dependency of the AWS CLI for Mac and Linux? - CORRECT
ANSWER - Python
,Which of the following AWS CLI output formats is best geared toward human viewing? -
CORRECT ANSWER - Table format
Which of the following AWS CLI output is a structured format that is handy for creating loosely-
formatted data to be processed programmatically? - CORRECT ANSWER - JSON format
Which of the following AWS CLI output is most useful for the query command or text-
processing utilities? - CORRECT ANSWER - Text Format
How can one split apart long AWS CLI command line to make it more easily readable by the
operator? - CORRECT ANSWER - Use backslashes (\) every few words, with a newline
after each backslash
For which languages are AWS SDKs available? (Choose all that apply) - CORRECT
ANSWER - Ruby
Perl
Python
Which command can you run to find more information about the proper syntax and options for
AWS IoT commands from the CLI? - CORRECT ANSWER - aws iot help
What does the waiter allow you to do in Boto? - CORRECT ANSWER - wait for ordered
infrastructure to become available before continuing
The waiter in Boto provides a handler for your code to deal with the short wait that occurs when
you perform tasks like launching an instance or creating a new Amazon Redshift cluster. -
CORRECT ANSWER - True
In which situation would you use the AWS IoT Device SDK? - CORRECT ANSWER -
To simplify the process of connecting things to the AWS IoT service.
, Like the AWS mobile SDK, the AWS IoT Device SDK provides prebuilt libraries that ease the
process of connecting your devices to the AWS IoT Service.
For the CLI commands that accept formatted files as input, the input file must be in which of the
following formats? - CORRECT ANSWER - JSON
Some AWS CLI inputs can be encoded in JSON format and passed through to using the --cli-
input-json parameter
Which option allows you to filter output? - CORRECT ANSWER - --query
Querying (--query) output data, in text format, is a powerful tool for making sense of complex
cloud deployments.
In what file are your Access Key and Secret Key stored after executing the aws configure
command? - CORRECT ANSWER - credentials
your keys are stored in the credentials file, located in either ~/.aws/credentials on Mac or Linux
or in %UserProfile%\.awscredentials on Windows.
It is not possible for a virtual instance running in promiscuous mode to receive , or "sniff," traffic
that is intended for a different virtual instance. - CORRECT ANSWER - True
Attacks such as Address Resolution Protocol (ARP) cache poisoning do not work within
Amazon EC2 and Amazon VPC. - CORRECT ANSWER - True
The following EC2 instance types are recommended by AWS to be excluded from security
testing: - CORRECT ANSWER - T3.nano
T2.nano
T1.micro
M1.small
