投稿時間:2021-08-23 01:20:02 RSSフィード2021-08-23 01:00 分まとめ(24件)

カテゴリー等	サイト名等	記事タイトル・トレンドワード等	リンクURL	頻出ワード・要約等/検索ボリューム	登録日
python	Pythonタグが付けられた新着投稿 - Qiita	GoogleColaboratoryでMeCabとmecab-ipadic-NEologdを使う	https://qiita.com/fikuegc/items/9f21c7ce49a0671ee9b0	で、これをMeCabからこれを使う方法。	2021-08-23 00:45:56
python	Pythonタグが付けられた新着投稿 - Qiita	堕落したYoutubeのアルゴリズムを自動で再教育する	https://qiita.com/Lulu_die_Zweite/items/2bcfa516852a9e8bbac3	堕落したYoutubeのアルゴリズムを自動で再教育する私の周りにYoutubeに表示される動画がどんどん堕落していって困っている人がいます。	2021-08-23 00:39:38
python	Pythonタグが付けられた新着投稿 - Qiita	BiLSTMとkerasを使った固有表現抽出	https://qiita.com/Hirata-Masato/items/f6d809182a0282adf1f5	テストデータには当該ホテル名は存在しないので「なんとなくこれがホテル名かな」と文字や単語の関係だけから学習したことになっています。	2021-08-23 00:38:07
python	Pythonタグが付けられた新着投稿 - Qiita	Pythonで階層クラスタリングしデンドログラムを表示	https://qiita.com/kimisyo/items/98dfc9ee4efb0f683203	Pythonで階層クラスタリングしデンドログラムを表示はじめにクラスタリングといえば、kmeansが有名であるが、クラスタ数を事前に決めておく必要があることや、分割されたクラスタ間の関係が分かりにくいという欠点があげられる。	2021-08-23 00:20:08
js	JavaScriptタグが付けられた新着投稿 - Qiita	JSONについて　HTML やXMLとの違い	https://qiita.com/Hashimoto-Noriaki/items/16d6eeb794601ec422e3	HTMLXMLJSONの違いざっくりですがつの違いをみていきましょう。	2021-08-23 00:03:14
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	phpを勉強中です、画像のアップロードは出来ました。その画像をタップするとメルカリみたいに画像の説明が出てくるようにしたいです。教えてください	https://teratail.com/questions/355630?rss=all	phpを勉強中です、画像のアップロードは出来ました。	2021-08-23 00:42:34
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	TextMeshProUGUIのオブジェクトをスクリプトから取得したい	https://teratail.com/questions/355629?rss=all	TextMeshProUGUIのオブジェクトをスクリプトから取得したい前提・実現したいことシーン上のTextMeshProUGUIのオブジェクトを取得し、スクリプトから操作したいです。	2021-08-23 00:39:01
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	vue.jsによるv-forで相対パス内のファイルの場所を指定しリスト形式で画像を表示	https://teratail.com/questions/355628?rss=all	vuejsによるvforで相対パス内のファイルの場所を指定しリスト形式で画像を表示やりたい事・vforを使用してurlの指定や画像のファイルを指定するための相対パスを設定すること。	2021-08-23 00:38:44
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	複数の要素にkeyframesを指定してヌルヌル動かしたい	https://teratail.com/questions/355627?rss=all	複数の要素にkeyframesを指定してヌルヌル動かしたい前提・実現したいことSHIFT上記サイトのメインビジュアルのようなアニメーションを再現したいと考えております。	2021-08-23 00:32:20
Program	[全てのタグ]の新着質問一覧｜teratail（テラテイル）	flutterで発生した未処理の例外を一か所でキャッチしたい	https://teratail.com/questions/355626?rss=all	flutterで発生した未処理の例外を一か所でキャッチしたいflutterで発生した未処理の例外を一カ所でキャッチしたいと考えています。	2021-08-23 00:16:14
Azure	Azureタグが付けられた新着投稿 - Qiita	Azure Monitorで使用されているKQLの書き方をちょっとだけ調べた	https://qiita.com/nnnobuo/items/4779e5e428cbc93ac7a1	AzureMonitorで使用されているKQLの書き方をちょっとだけ調べた業務でAzureDatabaseforPostgreSQLのログを調査する機会が時々発生していたのですが、その際普通のSQLのようにあクエリを書こうと思ったものの、うまく動作せず、毎回Limitをかけたほぼ全文検索のような形で対応していて、「スマートじゃないなぁ」っと思っていたので、脱出するべく調べたことを書き記したいと思います。	2021-08-23 00:49:18
Git	Gitタグが付けられた新着投稿 - Qiita	gitローカルリポジトリ操作方法	https://qiita.com/ShoheiNagamura/items/b22503b64dbe507e2531	gitローカルリポジトリ操作方法ローカルリポジトリからコミットまでローカルリポジトリ作成gitinitgitが作成される※リポジトリを作るディレクトまでcdコマンドで移動して行ってください。	2021-08-23 00:46:30
技術ブログ	Developers.IO	Docker Command를 정리해 봤습니다	https://dev.classmethod.jp/articles/frequently-used-docker-command/	Docker Command를정리해봤습니다안녕하세요클래스메소드김재욱 Kim Jaewook 입니다 이번에는Docker Command를정리해봤습니다 이전에집필한Docker 블로그는아래링크를참고해주세요 「초심자용」일단	2021-08-22 15:10:39
海外TECH	DEV Community	AWS Certified SysOps Administrator SOA-C02 Exam Questions Part 3	https://dev.to/iam_awslagi/aws-certified-sysops-administrator-soa-c02-exam-questions-part-3-bii	AWS Certified SysOps Administrator SOA C Exam Questions Part Source AWS GCP A Company static website hosted on Amazon S was launched recently and is being used Currently users are experiencing services unavailable errors Why are these errors occuring A The request rate to Amazon S is too highB There is an error with the Amazon RDS database C The requests to Amazon S do not have the proper permissionsD The users are in a different geographical region and Amazon Route is restricting accessAnswer AA Company is releasing a new static website hosted on Amazon S However upon navigating to the site the following error messages is received Forbidden Access DeniedWhat change should be made to fix this error A Add a bucket policy that grants everyone read access to the bucketB Add a bucket policy that grants everyone read access to the bucket objectsC Remove the default bucket policy that denies read access to the bucketD Configure cross origin resource sharing CORS on the bucketAnswer BA company has created an online retail application that is hosted on a fleet of EC instances behind of ELB application load balancer authentication is handled at the individual EC instance level Once a user is authenticated all request have go to the same EC instance What should the SysOps Administrator enable to meet these requirements A ELB TCP listenersB ELB Sticky SessionsC ELB connection drainingD ELB cross zone load balancingAnswer BA SysOps Administrator is managing a large organization with multiple accounts on the Business Support plan all linked to a single payer account The Administrator wants to be notified automatically of AWS Personal Health Dashboard events In the main payer account the Administrator configures Amazon CloudWatch Events triggered by AWS Health events to issue notifications using Amazon SNS but alerts in the linked accounts failed to trigger Why did the alerts fail A Amazon SNS cannot be triggered from the AWS Personal health DashboardB The AWS personal health dashboard only reports events from one a account not linked accountC The AWS Personal Health Dashboard must be configured from the payer account only all events will then roll up into the payer account D AWS Organizations must be used to monitor linked accounts Answer BThe security team has decided that there will be no public internet access to HTTP TCP port because it is moving to HTTPS for all incoming web traffic The team had asked a SysOps Administrator to provide a report on any security groups that are not compliant What should the AWS SysOps Administrator do to provide near real time compliance reporting A Enable AWS Trusted Advisor and show the security team that the security groups unrestricted access will check alarmB Schedule and AWS lambda function to run hourly to scan and evaluate all security groups and send report to the security team C Use AWS config to enable the restricted common port rule and add port to parametersD Use Amazon Inspector to evaluate the security groups during scans and send the completed reports to the Security team Answer AAccording to the shared responsibility model for which of the following Amazon EC activities is AWS responsible Choose two A Patching the guest operating systemB Monitoring memory utilizationC Configuring network ACLsD Patching the hypervisorE Maintaining network infrastructureAnswer D EA company use of AWS Cloud services is quickly growing so a SysOps Administrator has been asked to generate details of daily spending to share with management Which method should the Administrator choose to produce this data A Share the monthly AWS bill with management B Use AWS CloudTrail Logs to access daily costs in JSON format C Set up daily Cost and Usage Report and download the output from Amazon S D Monitor AWS costs with Amazon Cloud Watch and create billing alerts and notifications Answer CA SysOps Administrator is managing an application that runs on Amazon EC instances behind and application load balancer The instances run in an Auto Scaling group across multiple Availability Zones The applications stores data in Amazon RDS MySQL DB instance The Administrator must ensure that that application stays available if the database becomes unresponsive How can these requirements be met A Create read replicas for the RDS database and use them in case of a database failure B Create a new RDS instance from the snapshot of the original RDS instance if a failure occurs C Keep a separate RDS database running and switch the endpoint in the web application if a failure occurs D Modify the RDS instance to be a Multi AZ deployment Answer DA company has Sales department and Marketing department The company uses one AWS account There is a need to determine what charges are incurred on the AWS platform by each department There is also a need to receive notifications when a specified cost level is approached or exceeded Which two actions must a SysOps Administrator take to achieve both requirements with the LEAST amount of administrative overhead Choose two A Use AWS Trusted Advisor to obtain a report containing the checked items in the Cost Optimization pillar B Download the detailed billing report upload it to a database and match the line items with a list of known resources by department C Create a script by using the AWS CLI to automatically apply tags to existing resources to each department Schedule the script to run weekly D Use AWS Organizations to create a department Organizational Unit and allow only authorized personnel in each department to create resources E Create a Budget from the Billing and Cost Management console Specify the budget type a Cost assign tags for each department define notifications and specify any other options as required Answer A EOn a weekly basis the Administrator for a photo sharing website receives an archive of all files users have uploaded the previous week These file archives can be as a large as TB in size For legal reasons these archives must be saved with no possibility of someone deleting or modifying these archives Occasionally there may be a need to view the contents but it is expected that retrieving them can take three or more hours What should the Administrator do with the weekly archive A Uploaded the file to Amazon S through the AWS management console and apply lifecycle policy to change the storage class to Amazon Glacier B Upload the archive to the Amazon Glacier with the AWS CLI and enable Vault Lock C Create a Linux EC instance with an encrypted Amazon EBS volume and copy each weekly archive file for this instanceD Create a file gateway attached to a file share on an S bucket with the storage class S Infrequent Access Upload the archives via the gatewayAnswer BA company wants to ensure that each department operates within their own isolated environment and that they are only able to use pre approved services How can this requirement be met A Setup an AWS Organization to create accounts for each department and apply services control policies to control access to AWS services B Create IAM roles for each department and set policies that grant access to specific AWS services C Use the AWS Service Catalog to create catalogs of AWS services that are approved for use by each department D Request that each department create and manage its own AWS account and the resources within it Answer AAn Amazon EC instance is unable to connect to an SMTP server in a different subnet Other instance are successfully communicating with the SMTP server however VPC flow logs have been enabled on the SMTP server s network interface and show the following information eni abedab REJECT OKWhat can be done to correct problem A Add the instance to the security group for the SMTP server and ensure that is permitted to communicate over TCP port B Disable the iptables service on the SMTP server so that the instance can properly communicate over the network C Install an email client on the instance to ensure that it communicates correctly on TCP port to the SMTP server D Add a rule to the security group for the instance to explicitly permit TCP port outbound to any address Answer AA web application accepts orders from online users and places the orders into an Amazon SQS queue Amazon EC instances in an EC Auto Scaling group read the messages from the queue process the orders and email order confirmations to the users The Auto Scaling group scales up and down based on the queue depth At the beginning of each business day users report confirmation emails are delayed What action will be address this issues A Create a scheduled scaling action to scale up in anticipation of the traffic B Change the Auto Scaling group to scale up and down based on CPU utilizationC Change the launch configuration to launch larger EC instance typesD Modify the scaling policy to deploy more EC instances when scaling upAnswer DAn Applications team has successfully deployed an AWS CloudFormation stack consisting of t medium Amazon EC instances in the us west Region When using the same template to launch a stack in us east the launch failed and rolled back after launching only EC instances What is a possible cause of this failure A The IAM user did not have privileges to launch the CloudFormation template B The t medium EC instance service limit was reachedC An AWS Budgets threshold was breachedD The application s Amazon Machine Image AMI is not available in us east Answer BA SysOps Administrator is receiving multiple reports from customers that they are unable to connect to the company s website which is being served through Amazon CloudFront Customers are receiving HTTP response codes for both XX and XX errors Which metric can the Administrator use to monitor the elevated error rates in CloudFront A TotalErrorRateB RejectedConnectionCountC NetworkTransmitThroughputD HealthyHostCountAnswer AAn organization stores sensitive customer information in S buckets protected by bucket policies Recently there have been reports that unauthorized entities within the company have been trying to access the data on those S buckets The Chief Information Security Officer CISO would like to know which buckets are being targeted and determine who is responsible for trying to access that information Which steps should a Sysops administrator take to meet the CISO requirement Select TWO A Enable Amazon S Analytics on all affected S buckets to obtain a report of which buckets are being accessed without authorization B Enable Amazon S Server Access Logging on all affected S buckets and have the logs stored in a bucket dedicated for logs C Use Amazon Athena to query S Analytics reports for HTTP errors and determine the IAM user or role making the requests D Use Amazon Athena to query the S Server Access Logs for HTTP errors and determine the IAM user or role making the requests E Use Amazon Athena to query the S Server Access Logs for HTTP errors and determine the IAM user or role making the requests Answer B CA SysOps Administrator is responsible for a large fleet of EC instances and must know whether any instances will be affected by upcoming hardware maintenance Which option would provide this information with the LEAST administrative overhead A Monitor AWS CloudTrail for StopInstances API calls related to upcoming maintenance B Review the Personal Health Dashboard for any scheduled maintenanceC From the AWS Management Console list any instances with failed system status checks D Deploy a third party monitoring solution to provide real time EC instance monitoring Answer BMalicious traffic is reaching company web servers from a single IP address located in another country The SysOps Administrator is tasked with blocking this IP address How should the Administrator implement the restriction A Edit the security group for the web servers and add a deny entry for the IP addressB Edit the network access control list for the web server subnet and add a deny entry for the IP addressC Edit the VPC route table to route the malicious IP address to a black holeD Use Amazon CloudFront s geo restriction feature to block traffic from the IP addressAnswer DA company website hosts patches for software that is sold globally The website runs in AWS and performs well until a large software patch is released The flood of downloads puts a strain on the web servers and leads to a poor customer experience What can the SysOps Administrator propose to enhance customer experience create a more available web platform and keep costs low A Use an Amazon CloudFront distribution to cache static content including software patchesB Increase the size of the NAT instance to improve throughputC Scale out of web servers in advance of patch releases to reduce Auto Scaling delaysD Move the content to IO and provision additional IOPS to the volume that contains the software patchesAnswer AA website uses Elastic Load Balancing ELB in front of several Amazon EC instances backed by an Amazon RDS database The content is dynamically generated for visitors of a webpage based on their geographic location and is updated daily Some of the generated objects are large in size and are taking longer to download than they should resulting in a poor user experience Which approach will improve the user experience A Implement Amazon ElastiCache to cache the content and reduce the load on the database B Enable an Amazon CloudFront distribution with Elastic Load Balancing as a custom origin C Use Amazon S to store and deliver the content D Enable Auto Scaling for the EC instances so that they can scale automatically Answer AA workload has been moved from a data center to AWS Previously vulnerability scans were performed nightly by an external testing company There is a mandate to continue the vulnerability scans in the AWS environment with third party testing occurring at least once each month What solution allows the vulnerability scans to continue without violating the AWS Acceptable Use Policy A The existing nightly scan can continue with a few changes The external testing company must be notified of the new IP address of the workload and the security group of the workload must be modified to allow scans from the external company s IP range B If the external company is a vendor in the AWS Marketplace notify them of the new IP address of the workloadC Submit a penetration testing request every days and have the external company test externally when the request is approved D AWS performs vulnerability testing behind the scenes daily and patches instances as needed If a vulnerability cannot be automatically addressed a notification email is distributed Answer CA web service runs on Amazon EC instances behind an Elastic Load Balancing ELB load balancer External clients must whitelist specific public IP addresses in their firewalls to access the service What load balancer or ELB feature should be used for this application A Network Load BalancerB Application Load BalancerC Classic Load BalancerD Load balancer target groupsAnswer AA SysOps Administrator receives reports of an Auto Scaling group failing to scale when the nodes running Amazon Linux in the cluster are constrained by high memory utilization What should the Administrator do to enable scaling to better adapt to the high memory utilization A Create a custom script that pipes memory utilization to Amazon S then scale with an AWS Lambda powered eventB Install the Amazon CloudWatch memory monitoring scripts and create a custom metric based on the script s resultsC Increase the minimum size of the cluster to meet memory and application load demandsD Deploy an Application Load Balancer to more evenly distribute traffic among nodesAnswer BA SysOps Administrator attempting to delete an Amazon S bucket ran the following command aws s rb s mybucket The command failed and bucket still exists The administrator validated that no files existed in the bucket by running aws s s s mybucket and getting an empty response Why is the Administrator unable to delete the bucket and what must be done to accomplish this task A The bucket has MFA Delete enabled and the Administrator must turn it off B The bucket has versioning enabled and the Administrator must permanently delete the objects delete markers C The bucket is storing files in Amazon Glacier and the Administrator must wait hours for the files to delete D The bucket has server side encryption enabled and the Administrator must run the aws s rb s my bucket ーsse command Answer BA company has two AWS accounts development and production All applications send logs to a specific Amazon S bucket for each account and the Developers are requesting access to the production account S buckets to view the logs Which is the MOST efficient way to provide the Developers with access A Create an AWS Lambda function with an IAM role attached to it that has access to both accounts S buckets Pull the logs from the production S bucket to the development S bucket B Create IAM users for each Developer on the production account and add the Developers to an IAM group that provides read only access to the S log bucket C Create an Amazon EC bastion host with an IAM role attached to it that has access to the production S log bucket and then provision access for the Developers on the host D Create a resource based policy for the S bucket on the production account that grants access to the development account and then delegate access in the development account Answer CA web application runs on Amazon EC instances behind an Elastic Load Balancing Application Load Balancer ALB The instances run in an Auto Scaling group across multiple Availability Zones A SysOps Administrator has notice that some EC instances show up healthy in the Auto Scaling console but show up as unhealthy in the ALB target console What could be the issue A The health check grace period for the Auto Scaling group is set too low increase itB The target group health check is incorrectly configured and needs to be adjustedC The user data or AMI used for the Auto Scaling group launch configuration is incorrectD The Auto Scaling group health check type is based on EC instance health instead of Elastic Load Balancing health checksAnswer BA company is running critical applications on Amazon EC instances The company needs to ensure its resources are automatically recovered if they become impaired due to an underlying hardware failure Which service can be used to monitor and recover the EC instances A Amazon EC Systems ManagerB Amazon InspectorC AWS CloudFormationD Amazon CloudWatchAnswer DA company requires that all access from on premises applications to AWS services go over its AWS Direct Connect connection rather than the public internet How would a SysOps Administrator implement this requirement A Implement an IAM policy that uses the aws sourceConnection condition to allow access for the AWS Direct Connect connection ID onlyB Set up a public virtual interface on the AWS Direct Connect connectionC Configure AWS Shield to protect the AWS Management Console from being accessed by IP addresses other than those within the data center rangesD Update all the VPC network ACLs to allow access from the data center IP rangesAnswer BA SysOps Administrator is required to monitor free space on Amazon EBS volumes attached to Microsoft Windows based Amazon EC instances within a company s account The Administrator must be alerted to potential issues What should the Administrator do to receive email alerts before low storage space affects EC instance performance A Use built in Amazon CloudWatch metrics and configure CloudWatch alarms and an Amazon SNS topic for email notificationsB Use AWS CloudTrail logs and configure the trail to send notifications to an Amazon SNS topicC Use the Amazon CloudWatch agent to send disk space metrics then set up CloudWatch alarms using an Amazon SNS topicD Use AWS Trusted Advisor and enable email notification alerts for EC disk spaceAnswer CA company s Information Security team has requested information on AWS environment compliance for Payment Card Industry PCI workloads They have requested assistance in understanding what specific areas of the PCI standards are the responsibility of the company Which AWS tool will provide the necessary information A AWS MacieB AWS ArtifactC AWS OpsWorksD AWS OrganizationsAnswer BA company uses AWS CloudFormation to deploy its application infrastructure Recently a user accidentally changed a property of a database in a CloudFormation template and performed a stack update that caused an interruption to the application A SysOps Administrator must determine how to modify the deployment process to allow the DevOps team to continue to deploy the infrastructure but prevent against accidental modifications to specific resources Which solution will meet these requirements A Set up an AWS Config rule to alert based on changes to any Cloud Formation stack An AWS Lambda function can then describe the stack to determine if any protected resources were modified and cancel the operation B Set up an Amazon CloudWatch Events event with a rule to trigger based on any CloudFormation API call An AWS Lambda function can then describe the stack to determine if any protected resources were modified and cancel the operation C Launch the CloudFormation templates using a stack policy with an explicit allow for all resources and an explicit deny of the protected resources with an action of Update D Attach an IAM policy to the DevOps team role that prevents a CloudFormation stack from updating with a condition based on the specific Amazon Resource names ARNs of the protected resources Answer CA company recently implemented an Amazon S lifecycle rule that accidentally deleted objects from one of its S buckets The bucket has S versioning enabled Which actions will restore the objects Choose two A Use the AWS Management Console to delete the object delete markers B Create a new lifecycle rule to delete the object delete markers that were created C Use the AWS CLI to delete the object delete markers while specifying the version IDs of the delete markers D Modify the existing lifecycle rule to delete the object delete markers that were created E Use the AWS CLI to delete the object delete markers while specifying the name of the objects only Answer A DAn application running on Amazon EC instances in an Auto Scaling group across multiple Availability Zones was deployed using an AWS CloudFormation template The SysOps team has patched the Amazon Machine Image AMI version and must update all the EC instances to use the new AMI How can the SysOps Administrator use CloudFormation to apply the new AMI while maintaining a minimum level of active instances to ensure service continuity A Run the aws cloudformation update stack command with the rollback configuration optionB Update the CloudFormation template with the new AMI ID then reboot the EC instancesC Deploy a second CloudFormation stack and use Amazon Route to redirect traffic to the new stackD Set an AutoScalingUpdate policy in the CloudFormation template to update the stack Answer DAn AWS CodePipeline in us east returns “InternalError with the code “JobFailed when launching a deployment using an artifact from an Amazon S bucket in us west What is causing this error A S Transfer Acceleration is not enabled B The S bucket is not in the appropriate region C The S bucket is being throttled D There are insufficient permissions on the artifact in Amazon S Answer BA SySOps Administrator is managing an AWS account where Developers are authorized to launch Amazon EC instances to test new code To limit costs the Administrator must ensure that the EC instances in the account are terminated hours after launch How should the Administrator meet these requirements A Create an Amazon CloudWatch alarm based on the CPUUtilization metric When the metric is for hours trigger an action to terminate the EC instance when the alarm is triggered B Create an AWS Lambda function to check all EC instances and terminate instances running more than hours Trigger the function with an Amazon CloudWatch Events event every minutes C Add an action to AWS Trusted Advisor to turn off EC instances based on the Low Utilization Amazon EC Instances check terminating instances identified by Trusted Advisor as running for more than hours D Install the unified Amazon CloudWatch agent on every EC instance Configure the agent to terminate instances after they have been running for hours Answer CA SysOps Administrator created an Application Load balancer ALB and placed two Amazon EC instances in the same subnet behind the ALB During monitoring the Administrator observes HealthyHostCount drop to in Amazon CloudWatch What is MOST likely causing this issue A The EC instances are in the same Availability Zone causing contention between the two B The route tables are not updated to allow traffic to flow between the ALB and the EC instances C The ALB health check has failed and the ALB has taken EC instances out of service D The Amazon Route health check has failed and the ALB has taken EC instances out of service Answer AA company has centralized all its logs into one Amazon CloudWatch Logs log group The SysOps Administrator is to alert different teams of any issues relevant to them What is the MOST efficient approach to accomplish this A Write a AWS lambda function that will query the logs every minute and contain the logic of which team to notify on which patterns and issues B Set up different metric filters for each team based on patterns and alerts Each alarm will notify the appropriate notification list C Redesign the aggregation of logs so that each team s relevant parts are sent to a separate log group then subscribe each team to its respective log group D Create an AWS Auto Scaling group of Amazon EC instances that will scale based on the amount of ingested log entries This group will pull streams look for patterns and send notifications to relevant teams Answer DAn Amazon S bucket in a SysOps Administrator account can be accessed by users in other SWS accounts How can the Administrator ensure that the bucket is only accessible to members of the Administrator s AWS account A Move the S bucket from a public subnet to a private subnet in the Amazon VPC B Change the bucket access control list ACL to restrict access to the bucket owner C Enable server side encryption for all objects in the bucket D Use only Amazon S presigned URLs for accessing objects in the bucket Answer BA company received its latest bill with a large increase in the number of requests against Amazon SQS as compared to the month prior The company is not aware of any changes in its SQS usage The company is concerned about the cost increase and who or what was making these calls What should the SysOps Administrator use to validate the calls made to SQS A AWS CloudTrailB Amazon CloudWatchC AWS Cost ExplorerD Amazon S server access logsAnswer AA SysOps Administrator responsible for an e commerce web application observes the application does not launch new Amazon EC instances at peak times even though the maximum capacity of the Auto Scaling group has not been reached What should the Administrator do to identify the underlying problem Choose two A Monitor service limits in AWS trusted Advisor B Analyze VPC Flow Logs C Monitor limits in AWS Systems Manager D Use Amazon inspector to gather performance information E Check the response for RunInstance requests in AWS CloudTrail logs Answer A E	2021-08-22 15:31:42
海外TECH	DEV Community	AWS Certified SysOps Administrator SOA-C02 Exam Questions Part 2	https://dev.to/iam_awslagi/aws-certified-sysops-administrator-soa-c02-exam-questions-part-2-3l85	AWS Certified SysOps Administrator SOA C Exam Questions Part Source AWS GCP A fleet of servers must send local logs to Amazon Cloudwatch How should the servers be configured to meet these requirements A Configure AWS Config to forward events to cloudwatchB Configure a simple network management protocol SNMP agent to forward events to CloudwatchC Install and configure the unified Cloudwatch agentD Install and configure the Amazon Inspector agentAnswer CA company data retention policy dictates that backups be stored for exactly two years After that the data must be deleted How can Amazon EBS snapshots be managed to conform to this data retention policy A Use an Amazon S lifecycle policy to delete snapshots older than two yearsB Configure Amazon Inspector to find and delete old EBS SnapshotsC Schedule an AWS Lambda function using Cloudwatch events to periodically run a scripts to delete old snapshotsD Configure an Amazon Cloudwatch Alarm to trigger the launch of an AWS Cloudformation template that will clean the older snapshotsAnswer CIn configuring an Amazon Route health check a SysOps Administrator selects Yes to the String Matching option in the Advanced Configuration section In the Search String box the Administrator types the following text html This is to ensure that the entire page is loading during the health check Within minutes of enabling the health check the Administrator receives an alert stating that the check failed However when the Administrator navigates to the page it loads successfully What is the Most likely cause of this false alarm A The search string is not HTML encodedB The search string must be put in quotesC The search string must be escaped with a backslash before the forward slash D The search string is not in the first bytes of the tested pageAnswer DA SysOps Administrator must ensure that AWS Cloudformation deployment changes are properly backend for governance Which AWS Service should be used to accomplish this A AWS ArtifactB AWS ConfigC Amazon InspectorD AWS Trusted AdvisorAnswer BA Developer created an AWS Lambda function and has asked the SysOps Administrator to make the function run in every minutes What is the MOST efficient way to accomplish this request A Create an Amazon EC instance and schedule a cron to invoke the Lambda functionB Create a repeat time variable inside the Lambda function to invoke the Lambda functionC Create a second Lambda function to monitor and invoke the first Lambda functionD Create an Amazon Cloudwatch scheduled event to invoke the Lambda functionAnswer DA SysOps Administrator is analyzing how Reserved Instance discounts are allocated to Amazon EC instances across multiple AWS Account Which AWS tool will provide the details necessary to understand the billing charges A AWS BudgetsB AWS Cost and Usage reportC AWS Trusted AdvisorD AWS OrganizationsAnswer BA SysOps Administrator wants to prevent Developer from accidentally terminating Amazon EC instance How can this be accomplished A Use AWS Systems Manager to restrict EC terminationB Use AWS Config to restrict EC terminationC Application Amazon Cloudwatch event to prevent EC terminationD Enable termination protection on EC instancesAnswer DAn organization has developed a new memory intensive application that is deployed to a large Amazon EC The application is exhaustion so the development team wants to monitor memory usage by using Amazon Cloudwatch What is the MOST efficient way to accomplish this goal A Deploy the solution to memory optimized EC instances and use the cloudwatch MemoryUtilization metricsB Enable the memory monitoring option by using AWS ConfigC Install the AWS System Manager agent on applicable EC instances to monitor memoryD Monitor memory by using a script within the instance and send it to cloudwatch as a custom metricAnswer DAn organization has been running their website on several m Linux instances behind a classic load balancer for two years Application load has been constant and predictable What should the organization do to reduce costs A Purchase Reserved instances for the specific m instancesB Change the m instances to equivalent m types and purchase Reserved instances for the specific m instancesC Change the classic load balancer to an application load balancer and purchase reserved instances for the specific m instancesD Purchase Spot instances for the specific m instancesAnswer CA SysOps Administrator has written an AWS Lambda function to launch new Amazon EC instances and deployed it in the us east region The Administrator tested it by launching a new t nano instance in the us east region and it performed as expected However when the region name was updated in the Lambda function to launch an EC instance in the us west region it failed What is causing this error A The AMI ID must be updated for the us west region in the Lambda function as wellB The Lambda function can only launch EC instances in the same region where it is deployedC The Lambda function does not have the necessary IAM permission to launch more than one EC instanceD The instance type defined in the Lambda function is not available in the us west regionAnswer AA Company backs up data from data center using a tape gateway on AWS Storage Gateway The SysOps Administrator must stop a running storage gateway What process will protect data integrity A Stop storage gateway and reboot the virtual machine then restart Storage GatewayB Reboot the virtual machine then restart storage gatewayC Reboot the virtual machineD Shutdown the virtual machine and stop storage gateway then turn the virtual machineAnswer BA SysOps Administrator is responsible for a legacy CPU heavy application The application can only be scaled vertical Currently application running on t large Amazon EC instance The system is showing CPU usage and significant performance latency What change should be made to alleviate the performance problem A Change the EBS volume to provisioned IOPSB Upgrade to a compute optimized instanceC Add additional t large instances to the applicationD Purchase the Reserved InstanceAnswer BA SysOps Administrator runs a web application that is using a microservices approach whereby different responsibilities of the application have been divided in a separate microservice running on a different Amazon EC instance The Administrator has been tasked with reconfiguring the infrastructure to support this approach How can the Administrator accomplish this with the LEAST administrative overhead A Use Amazon Cloudfront to log the URL and forward the requestB Use Amazon Cloudfront to rewrite the header base on the micro service and forward the requestC Use an Application Load Balancer ALB and do path based routingD Use a Network Load Balancer NLB and do path based routingAnswer CAn organization is concerned that its Amazon RDS databases are not protected The solution to address this issue must be low cost protect against table corruption that could be overlooked for several days and must offer a day window of protection How can these requirement must be met A Enable multi AZ on the RDS Instance to maintain the data in a second Availability ZoneB Create a Read Replica of the RDS Instance to maintain the data in a second regionC Ensure that automated backups are enabled and set the appropriate retention periodD Enable versioning in RDS to recover altered table data when neededAnswer CA company with a dozens of AWS Account wants to ensure that governance rules are being applied across all accounts The CIO has recommended that AWS Config rules be deployed using an AWS Cloudformation template How should the requirements be met A Create the Cloudformation stack set then select Cloudformation template and use it to configure the AWS accountsB Write a script that iterates over the Company AWS accounts and executes the Cloudformation template in each accountC Use AWS Organizations to execute the Cloudformation template in all accountsD Create a Cloudformation template in the master account of AWS Organizations and execute the Cloudformation template to create AWS Config rules in all accountsAnswer CA Company must ensures that any objects uploaded to an s bucket must be encrypted Which of the following actions will meet the requirement SELECT TWO A Implement AWS Shield to protect again unencrypted objects stored in s bucketsB Implement Object access control list ACL to deny unencrypted objects from being uploaded to the S bucketC Implement Amazon S default encryption to make sure that any object being uploaded is encrypted before it is storedD Implement Amazon Inspector to inspect objects uploaded to s bucket to make sure that they are encryptedE Implement S bucket policies to deny unencrypted objects from being uploaded to the bucketsAnswer C EBased on the AWS Shared Responsibility Model which of the following actions are the responsibility of the customer for an Aurora database A Performing underlying OS updatesB Provisioning of storage for databaseC Scheduling maintenance patches and other updatesD Executing maintenance patches and other updatesAnswer CA Company would like to review each change in the infrastructure before deploying updates in its AWS Cloudformation stacks Which action will allow an Administrator to understand the impact of these changes before implement A Implement a blue green strategy using AWS Elastic BeanstalkB Perform a canary deployment using a Application Load Balancer and target groupsC Create a change set for the running stackD Submit the update using UpdateStack API call Answer CAn organization is running multiple applications for their customers Each application is deployed by running a base AWS CloudFormation template that configures a new VPC All applications are run in the same AWS account and AWS Region A SysOps Administrator has noticed that when trying to deploy the same AWS CloudFormation stack it fails to deploy What is likely to be the problem A The Amazon Machine Image used is not Available in that regionB The AWS Cloudformation template needs to be update to the latest versionC The VPC configurations parameters have changed and must be updated in the templateD The account has reached the default limit for VPCs allowedAnswer DA SysOps Administrator found that newly deployed Amazon EC application server is unable to connect to an Amazon RDS database VPC Flow Logs and confirming that the flow log is active on the console the log group cannot be located on Amazon Cloudwatch What are the MOST likely reasons for this situation SELECT TWO A The Administrator must configure the VPC Flow Logs to have them sent to AWS CloudTrailB The Administrator has waited less than ten minutes for the log group to be created in CloudwatchC The account VPC Flow Logs have been disabled by using a service control policyD No relevant traffic has been sent since the VPC Flow Logs were createdE The account has Amazon Guard Duty enabled Answer B CA company has mandated the use of multi factor authentication MFA for all IAM users and requires users to make all API calls using the CLI However users are not prompted to enter MFA tokens and are able to run CLI commands without MFA In an attempt to enforce MFA the company attached an IAM policy to all users that denies API calls that have not been authenticated with MFA What additional step must be taken to ensure that API calls are authenticated using MFA A Enable MFA on IAM roles and require IAM users to use role credentials to sign API calls B Ask the IAM users to log into the AWS Management Console with MFA before making API calls using the CLIC Restricts the IAM users to use of the console as MFA is not supported for CLI useD Require user to use temporary credentials from the get sessions token command to sign API callsAnswer D An application running on Amazon EC allows users to launch batch jobs for data analysis The jobs are run asynchronously and the user is notified when they are complete While multiple jobs can run concurrently a user s request need not be fulfilled for up to hours To run a job the application launches an additional EC instance that performs all the analytics calculations A job takes between and minutes to complete and cannot be interrupted What is the MOST cost effective way to run this workload A Run the application on Demand EC instances Run the jobs on spot instances with a specified duration B Run the application on Reserved instance EC instances Run the jobs on AWS Lambda C Run the application on On Demand EC instances Run the jobs on On Demand EC instances D Run the application on Reserved instance EC instances Run the jobs on spot instances with a specified durationAnswer AAn organization has two AWS accounts Development and Production A SysOps Administrator manages access via IAM Users require in Development should have access to certain resource in Production How can this be accomplished A Create an IAM role in Production account with the Development account as a trusted entity and then allow those users from Development account to assume the Production account IAM roleB Create a group of IAM users in the Development account and add Production account service ARNs as resources in the IAM policyC Establish a federation between the two accounts using the on premises Microsoft Active Directory and allow development account to access the Production account through this federationD Establish an Amazon Cognito Federated Identity between the two accounts and allow the Development account to access the Production account through this federationAnswer DA SysOps Administrator has been able to consolidate multiple secure websites onto a single servers and each site is running on a different port The Administrator now wants to start a duplicate server in a second Availability Zone and put both behind a Load Balancer for high availability What would be the command line necessary to deploy one of the sites certificates to the load balancer A aws kms modify listener loadbalancer name my loadbalancer certificates CertificateARN arn aws iam server certificate my new server certB aws elb set load balancer listener ssl cerficate load balancer name my load balancer load balaner port ssl cerficate id arn aws iam server certificate new server certC aws ec put ssl certificate loadbalancer name my loadbalancer load balaner port ssl cerficate id arn aws iam server certificate new server certD aws acm put ssl cerficate loadbalancer name my loadbalancer load balaner port ssl cerficate id arn aws iam server certificate new server certAnswer BAn application resides on multiple EC instances in public subnets in two Availability Zones To improve security Application Load Balancer ALB in separate subnets and pointed the DNS at the ALB instead of EC instances After the change traffic is not reaching the instances and an error is being returned from the ALB What steps must a SysOps Administrator take to resolve this issue and improve the security of the application SELECT TWO A Add the EC instances to the ALB target group configure the health check and ensure that the instances report healthyB Add the EC instances to an Auto Scaling group configure the health check to ensure that the instances report healthy and remove the public IPs from the instancesC Create a new subnet in which EC instances and ALB will reside to ensure that they can communicate and remove the public IPs from the instancesD Change the security group for the EC instances to allow access from only the ALB security group and remove the public IPs from the instancesE Change the security group to allow access from which permits access from the ALBAnswer A DA company is received its latest bill with a large increase in the number of request against Amazon SQS as API call action Admin need to know of any major changes in it SQS usage The company is concerned about the cost increase and who or what was missing the calls What should the SysOps Administrator use to validate the calls made to SQS A Amazon CloudtrailB Amazon CloudwatchC AWS Cost ExplorerD Amazon S Access logsAnswer AAfter a particularly high AWS bill an organization wants to review the use of AWS ServicesWhat AWS Service will allow the SysOps Administrator to quickly view this information to share it and will also forecast equipment A AWS Trusted AdvisorB Amazon QuickSightC AWS Cost and Usage ReportD AWS Cost ExplorerAnswer DA SysOps Administrator must find a way to setup alerts when Amazon EC service limit are close to being reached How can the Administrator achieve this requirement A Use Amazon Inspector and Amazon Cloudwatch EventsB Use AWS Trusted Advisor and Amazon Cloudwatch EventsC Use the Personal Health Dashboard and Cloudwatch EventsD Use AWS CloudTrail and Cloudwatch EventsAnswer BA SysOps Administrator is reviewing AWS Trusted Advisor warnings and encounters a warning for an S bucket policy that discussing the issue with the bucket owner the Administrator realizes the S bucket is an origin for an Amazon Cloudfront Which action should the Administrator take to ensure that users access objects in Amazon S by using only Cloudfront URL A Encrypt the S bucket content with Server Side Encryption with Amazon S Managed Keys SSE S B Create an Origin access identity and grand it permissions to read objects in the S bucketsC Assign an IAM user to the Cloudfront distribution and whitelist the IAM user in the S bucket policyD Assign an IAM Role to the Cloudfront distribution and whitelist the IAM role in the S bucket policyAnswer BAn Auto Scaling group scales up and down based on Average CPU Utilization The alarms is set to trigger a scaling when CPU exceeds for minutes Currently the average CPU has been for over two hours and new instances are not being added What could be the issue A A Scheduled scaling action has not been definedB In the field suspend process “ReplacesUnhealthy has been selectedC The maximum size of the Auto Scaling Group is below or at the current group sizeD The HealthCheck Grace Period is set to less than seconds Answer CThe Database Administrator team is interested in performing manual backups of an Amazon RDS Oracle DB instance What step should be taken to perform the backups A Attach Amazon EBS Volume with Oracle RMAN installed to the RDS InstanceB Take a snapshot of the EBS volume that is attached to the DB instanceC Install Oracle Secure backup on the RDS instance and backup the Oracle database to Amazon SD Take a snapshot of the DB InstanceAnswer DA Company has created a separate AWS account for all development work to protect the production environment In the development environment users request permission to manipulate IAM policies and roles Corporate policies require that developers are blocked from accessing services What is the BEST way to grant the developers privileges in the development account while still complying with corporate policies A Create a service control policy in AWS Organizations and apply it to the development accountB Create a customer managed policy in IAM and apply it in to all users within the development accountC Create a job function policy in IAM and apply it to all users within the development accountD Create an IAM Policy and apply it in API Gateway to restrict the development accountAnswer AA Company has a web application that runs on both on premises and on Amazon EC instances Over time both the on premises server and EC instances is crashing A SysOps Administrator suspects a memory leak in the application and wants unified method to monitor memory utilization How can the Administrator track both the EC memory utilization and on premises server memory utilization over time A Write a script or use a third party application to report memory utilization for both EC instances and on premises servers B Use Amazon Cloudwatch agent for both Amazon EC instances and on premises servers to report MemoryUtilization metrics to Cloudwatch and set a Cloudwatch alarm for notificationsC Use Cloudwatch agent for Amazon EC instances to report memory Utilization to Cloudwatch and set Cloudwatch Alarms for notifications Use a third party application for the on premises servers D Configure a load balancer to route traffic to both on premises servers and EC instances then use cloudwatch as the unified view of the metrics for the load balancer Answer BA SysOps Administrator is using AWS Cloudformation to deploy resources but would like to manually address any errors the template encounters What should the Administrator add to the template to support the requirement A Enable Termination Protection on the StackB Set the OnFailure parameter to “DO NOTHING C Restrict the IAM permissions for CloudFormation to delete resourcesD Set the DeleteStack API action to “NO Answer BA Company s application stores documents within an Amazon S bucket The application is running on Amazon EC in a VPC A recent change in security requirements states that traffic between the company s application and the S bucket must never leave the Amazon network What AWS feature can provide this functionality A Security GroupsB NAT gatewaysC Virtual private gatewayD Amazon VPC endpointsAnswer DAn organization with a large IT department has decided to migrate to AWS With different jobs functions in departments and is not desirable to give all users access to all AWS resources Currently the organization handles access via LDAP group membership What the best method to allow access using current LDAP credentials A Create an AWS directory service simple AD Replicate the onpremise LDAP directory to simple ADB Create Lambda function to read LDAP groups and automate the creation of IAM usersC Use AWS Cloud Formations to create IAM roles Deploy direct connect to allow access to the on premises LDAP server D Federate the LDAP directory with IAM using SAML Create different IAM roles correspond to different LDAP group to limit permissions Answer DAn Sysops Administrator must set up notifications for whenever combined billing exceeds a certain threshold for all AWS account within company The Administrator has set up AWS Organizations and enabled Consolidate billing Which additionals steps must the Administrator perform to setup the billing alerts A On the payer account Enable billing alerts in the Billing and Cost management console publish an Amazon SNS message when the billing alerts triggers B On each account Enable billing alerts in the billing and cost management console setup a billing alarm in Amazon Cloudwatch publish an SNS message when the alarm triggers C On the payer account Enable billing alerts in the billing and cost management console setup a billing alarm in the billing and cost management console to publish an SNS message when the alarm triggers D On the payer account Enable billing alerts in the billing and cost management console setup billing alarm in Amazon Cloudwatch publish an SNS message when the alarm triggers Answer DAn organization has been running their website on several m Linux instance behind a classic load balancer for more than two years Traffic and utilization have been constant and predictable What should the organization do to reduce cost A Purchase reserved instances for the specific m instances B Change the m instances type to equivalent m types and purchase reserved instances for specific m instances C Change the classic load balancer to an application load balancer and purchase reserved instances for the specific m instances D Purchase spot instances for the specific m instances Answer CAn application developers are reporting access denied errors when trying to list the content in s bucket with IAM Role ARN “arn aws iam user application The following s bucket policy “Id “SBucketPolicy “Versions “ “Statement “Sid “List “Action “s List “Effect “Allow “Resources “arn aws s bucketname “Principal “AWS “arn aws iam user application How should a SysOps Administrator modify the S bucket policy to fix the issue A Change the “Effect from “Allow to “Deny B Change the “Action from “S List to “S ListBucket C Change the “Resource from “arn aws s bucketname to “arn aws s bucketname D Change the “Principal from “arn aws iam user application to “arn aws iam role application Answer CA Company creates custom AMI images by launching new Amazon EC instance from an Amazon Cloudformation template AMI images is installed software through AWS OpsWorks and take image of each EC instance The process of installing software take a long times the process stalls due to installations errors The SysOps administrator must modify the Cloudformation Template so if the process stalls stacks will rollback Based on the requirements what should be added to the template A Conditions with a timeout set to hoursB CreationPolicy with a timeout set to hoursC DependOn with a timeout set to hoursD MetaData with a timeout set to hoursAnswer B	2021-08-22 15:30:18
Apple	AppleInsider - Frontpage News	Best Deals August 22 - $50 Razer Hammerhead, $100 off Netgear gaming router	https://appleinsider.com/articles/21/08/22/best-deals-august-22---50-razer-hammerhead-100-off-netgear-gaming-router?utm_medium=rss	Best Deals August Razer Hammerhead off Netgear gaming routerSunday s best deals include half price Razer Hammerhead wireless gaming earbuds off the Netgear Nighthawk Pro Gaming Router and a Meross Smart Garage Door Opener Shopping online for the best discounts and deals can be an annoying and challenging task So rather than sifting through miles of advertisements check out this list of sales we ve hand picked just for the AppleInsider audience You ll find more than just Apple products here Each section is organized by product type or brand and can contain anything from furniture to iPhone cases Read more	2021-08-22 15:08:21
Apple	AppleInsider - Frontpage News	Apple has been testing in-screen Touch ID, but it won't be in 'iPhone 13'	https://appleinsider.com/articles/21/08/22/in-screen-touch-id-tested-by-apple-but-wont-make-it-to-iphone-13?utm_medium=rss	Apple has been testing in screen Touch ID but it won x t be in x iPhone x Apple is testing an in screen version of Touch ID for the iPhone a report claims bu it probably won t make an appearance in the iPhone Rumors of a reintroduction of Touch ID to the iPhone have floated for a while but while a relocated sensor has been used in products such as the iPad Air the biometric authentication system has yet to make it back to the iPhone According to a newsletter that won t be happening in at least According to Bloomberg s Mark Gurman Apple has been testing in screen Touch ID for a future flagship iPhone launch but it won t make the cut this year Read more	2021-08-22 15:27:54
ニュース	BBC News - Home	Afghanistan: British evacuation improving, says armed forces minister	https://www.bbc.co.uk/news/uk-58296816	heappey	2021-08-22 15:08:42
ニュース	BBC News - Home	Everly Brothers: US rock 'n' roll star Don Everly dies aged 84	https://www.bbc.co.uk/news/world-us-canada-58297621	beatles	2021-08-22 15:12:45
ニュース	BBC News - Home	Covid: Antibody tests offered to public for first time	https://www.bbc.co.uk/news/uk-58293249	scheme	2021-08-22 15:09:49
ニュース	BBC News - Home	Kane comes off bench as Alli penalty earns Nuno's Spurs win at Wolves	https://www.bbc.co.uk/sport/football/58193450	harry	2021-08-22 15:27:06
ニュース	BBC News - Home	Greenwood goal secures point for Man Utd at Southampton	https://www.bbc.co.uk/sport/football/58193443	campaign	2021-08-22 15:20:39
北海道	北海道新聞	新たに９人が負傷申し出　富士急コースター骨折事故	https://www.hokkaido-np.co.jp/article/580889/	富士急ハイランド	2021-08-23 00:04:03
北海道	北海道新聞	台風１２号、東シナ海北上　２３日朝には熱帯低気圧に	https://www.hokkaido-np.co.jp/article/580887/	東シナ海	2021-08-23 00:02:12