DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

2024 Updated SAA-C03 Exam Questions & Practice Tests, AWS Certified Solutions Architect – Associate | SPOTO

Achieving AWS Certified Solutions Architect - Associate (SAA-C03) certification showcases your expertise in AWS technologies and services. This certification is pivotal for professionals aiming to design cost-effective and high-performing solutions on the AWS platform, aligning with the AWS Well-Architected Framework principles. By mastering exam questions and practice tests, you'll delve deep into architectural best practices, scalability, security, and fault tolerance. SPOTO's exam resources for SAA-C03 provide comprehensive coverage of exam questions, answers, and practice tests, ensuring you're well-prepared to tackle the certification exam. Our sample questions and exam dumps are designed to simulate real-world scenarios, allowing you to sharpen your skills and boost confidence. Access free exam materials and exam simulators to enhance your exam practice and preparation. With SPOTO's guidance, you'll navigate through online exam questions and mock exams, gaining the confidence and proficiency needed to ace the AWS Certified Solutions Architect - Associate exam.

Take other online exams
Question #1
33. A junior scientist working with the Deep Space Research Laboratory at NASA is trying to upload a high-resolution image of a nebula into Amazon S3. The image size is approximately 3GB. The junior scientist is using S3 Transfer Acceleration (S3TA) for faster image upload. It turns out that S3TA did not result in an accelerated transfer. Given this scenario, which of the following is correct regarding the charges for this image transfer?
A. The junior scientist needs to pay both S3 transfer charges and S3TA transfer charges for the image upload
B. The junior scientist does not need to pay any transfer charges for the image upload
C. The junior scientist only needs to pay S3 transfer charges for the image upload
D. The junior scientist only needs to pay S3TA transfer charges for the image upload
View answer
Correct Answer: B
Question #2
6. A company captures clickstream data from multiple websites and analyzes it using batch processing. The data is loaded nightly into Amazon Redshift and is consumed by business analysts. The company wants to move towards near-real-time data processing for timely insights. The solution should process the streaming data with minimal effort and operational overhead. Which combination of AWS services are MOST cost-effective for this solution? (Choose two.)
A. Amazon EC2
B. AWS Lambda
C. Amazon Kinesis Data Streams
D. Amazon Kinesis Data Firehose
E. Amazon Kinesis Data Analytics
View answer
Correct Answer: BD
Question #3
36. The engineering team at an in-home fitness company is evaluating multiple in-memory data stores with the ability to power its on-demand, live leaderboard. The company’s leaderboard requires high availability, low latency. and real-time processing to deliver customizable user data for the community of users working out together virtually from the comfort of their home. As a solutions architect, which of the following solutions would you recommend? (Select two)
A. Power the on-demand, live leaderboard using DynamoDB as it meets the in-memory, high availability, low latency requirements
B. Power the on-demand, live leaderboard using ElastiCache Redis as it meets the in-memory, high availability, low latency requirements
C. Power the on-demand, live leaderboard using AWS Neptune as it meets the in-memory, high availability, low latency requirements
D. Power the on-demand, live leaderboard using DynamoDB with DynamoDB Accelerator (DAX) as it meets the in-memory, high availability, low latency requirements
E. Power the on-demand, live leaderboard using RDS Aurora as it meets the in-memory, high availability, low latency requirements
View answer
Correct Answer: BD
Question #4
A company is running a high performance computing (HPC) workload on AWS across many Linux based Amazon EC2 instances. The company needs a shared storage system that is capable of sub-millisecond latencies, hundreds of Gbps of throughput and millions of IOPS. Users will store millions of small files. Which solution meets these requirements?
A. Create an Amazon Elastic File System (Amazon EFS) file system Mount me file system on each of the EC2 instances
B. Create an Amazon S3 bucket Mount the S3 bucket on each of the EC2 instances
C. Ensure that the EC2 instances ate Amazon Elastic Block Store (Amazon EBS) optimized Mount Provisioned lOPS SSD (io2) EBS volumes with Multi-Attach on each instance
D. Create an Amazon FSx for Lustre file syste
E. Mount the file system on each of the EC2 instances
View answer
Correct Answer: B
Question #5
9. An application running on AWS uses an Amazon Aurora Multi-AZ deployment for its database. When evaluating performance metrics, a solutions architect discovered that the database reads are causing high I/O and adding latency to the write requests against the database. What should the solutions architect do to separate the read requests from the write requests?
A. Enable read-through caching on the Amazon Aurora database
B. Update the application to read from the Multi-AZ standby instance
C. Create a read replica and modify the application to use the appropriate endpoint
D. Create a second Amazon Aurora database and link it to the primary database as a read replica
View answer
Correct Answer: C
Question #6
15. Organizers for a global event want to put daily reports online as static HTML pages. The pages are expected to generate millions of views from users around the world. The files are stored in an Amazon S3 bucket. A solutions architect has been asked to design an efficient and effective solution. Which action should the solutions architect take to accomplish this?
A. Generate presigned URLs for the files
B. Use cross-Region replication to all Regions
C. Use the geoproximity feature of Amazon Route 53
D. Use Amazon CloudFront with the S3 bucket as its origin
View answer
Correct Answer: D
Question #7
14. The solo founder at a tech startup has just created a brand new AWS account. The founder has provisioned an EC2 instance 1A which is running in region A. Later, he takes a snapshot of the instance 1A and then creates a new AMI in region A from this snapshot. This AMI is then copied into another region B. The founder provisions an instance 1B in region B using this new AMI in region B. At this point in time, what entities exist in region B?
A. 1 EC2 instance, 1 AMI and 1 snapshot exist in region B
B. 1 EC2 instance and 2 AMls exist in region B
C. 1 EC2 instance and 1 snapshot exist in region B
D. 1 EC2 instance and 1 AMI exist in region B
View answer
Correct Answer: A
Question #8
24. The planetary research program at an ivy-league university is assisting NASA to find potential landing sites for exploration vehicles of unmanned missions to our neighboring planets. The program uses High Performance Computing (HPC) driven application architecture to identify these landing sites. Which of the following EC2 instance topologies should this application be deployed on?
A. The EC2 instances should be deployed in a partition placement group so that distributed workloads can be handled effectively
B. The EC2 instances should be deployed in an Auto Scaling group so that application meets high availability requirements
C. The EC2 instances should be deployed in a spread placement group so that there are no correlated failures
D. The EC2 instances should be deployed in a cluster placement group so that the underlying workload can benefit from low network latency and high network throughput
View answer
Correct Answer: D
Question #9
14. A solutions architect is deploying a distributed database on multiple Amazon EC2 instances. The database stores all data on multiple instances so it can withstand the loss of an instance. The database requires block storage with latency and throughput to support several million transactions per second per server. Which storage solution should the solutions architect use?
A. Amazon EBS
B. Amazon EC2 instance store
C. Amazon EFS
D. Amazon S3
View answer
Correct Answer: B
Question #10
22. A company wants to migrate a high performance computing (HPC) application and data from on-premises to the AWS Cloud. The company uses tiered storage on premises with hot high-performance parallel storage to support the application during periodic runs of the application, and more economical cold storage to hold the data when the application is not actively running. Which combination of solutions should a solutions architect recommend to support the storage needs of the application?(Choose two.)
A. Amazon S3 for cold data storage
B. Amazon EFS for cold data storage
C. Amazon S3 for high-performance parallel storage
D. Amazon FSx for Lustre for high-performance parallel storage
E. Amazon FSx for Windows for high-performance parallel storage
View answer
Correct Answer: AD
Question #11
25. A major bank is using SQS to migrate several core banking applications to the cloud to ensure high availability and cost efficiency while simplifying administrative complexity and overhead. The development team at the bank expects a peak rate of about 1000 messages per second to be processed via SQS. It is important that the messages are processed in order. Which of the following options can be used to implement this system?
A. Use Amazon SQS FIFO queue in batch mode of 2 messages per operation to process the messages at the peak rate
B. Use Amazon SQS FIFO queue to process the messages
C. Use Amazon SQS FIFO queue in batch mode of 4 messages per operation to process the messages at the peak rate
D. Use Amazon SQS standard queue to process the messages
View answer
Correct Answer: C
Question #12
32. A US-based non-profit organization develops learning methods for primary and secondary vocational education, delivered through digital learning platforms, which are hosted on AWS under a hybrid cloud setup. After experiencing stability issues with their cluster of self-managed RabbitMQ message brokers, the organization wants to explore an alternate solution on AWS. As a solutions architect, which of the following AWS services would you recommend that can provide support for quick and easy migration from
A. Amazon Simple Notification Service (Amazon SNS)
B. Amazon SQS FIFO (First-In-First-Out)
C. Amazon SQS Standard
D. Amazon MQ
View answer
Correct Answer: D
Question #13
52. A silicon valley based startup wants to be the global collaboration platform for API development. The product team at the startup has figured out a market need to support both stateful and stateless client-server communications via the APIs developed using its platform. You have been hired by the startup as an AWS solutions architect to build a Proof-of-Concept to fulfill this market need using AWS API Gateway. Which of the following would you recommend to the startup?
A. API Gateway creates RESTful APIs that enable stateless client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateless, full-duplex communication between client and server
B. API Gateway creates RESTful APIs that enable stateful client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateful, full-duplex communication between client and server
C. API Gateway creates RESTful APIs that enable stateful client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateless, full-duplex communication between client and server
D. API Gateway creates RESTful APIs that enable stateless client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateful, full-duplex communication between client and server
View answer
Correct Answer: D
Question #14
A company is hosting a static website on Amazon S3 and is using Amazon Route 53 for DNS. The website is experiencing increased demand from around the world. The company must decrease latency for users who access the website. Which solution meets these requirements MOST cost-effectively?
A. Replicate the S3 bucket that contains the website to all AWS Region
B. Add Route 53 geolocation routing entries
C. Provision accelerators in AWS Global Accelerato
D. Associate the supplied IP addresses with the S3 bucke
E. Edit the Route 53 entries to point to the IP addresses of the accelerators
F. Add an Amazon CloudFront distribution in front of the S3 bucke G
View answer
Correct Answer: A
Question #15
20. A company has application running on Amazon EC2 instances in a VPC. One of the applications needs to call an Amazon S3 API to store and read objects. The company’s security policies restrict any internet-bound traffic from the applications. Which action will fulfill these requirements and maintain security?
A. Configure an S3 interface endpoint
B. Configure an S3 gateway endpoint
C. Create an S3 bucket in a private subnet
D. Create an S3 bucket in the same Region as the EC2 instance
View answer
Correct Answer: B
Question #16
56. The development team at an e-commerce startup has set up multiple microservices running on EC2 instances under an Application Load Balancer. The team wants to route traffic to multiple back-end services based on the URL path of the HTTP header. So it wants requests for https://www.example.com/orders to go to a specific microservice and requests for https://www.example.com/products to go to another microservice. Which of the following features of Application Load Balancers can be used for this use-case?
A. Query string parameter-based routing
B. Host-based Routing
C. HTTP header-based routing
D. Path-based Routing
View answer
Correct Answer: D
Question #17
38. A leading video streaming service delivers billions of hours of content from Amazon S3 to customers around the world. Amazon S3 also serves as the data lake for its big data analytics solution. The data lake has a staging zone where intermediary query results are kept only for 24 hours. These results are also heavily referenced by other parts of the analytics pipeline. Which of the following is the MOST cost-effective strategy for storing this intermediary query data?
A. Store the intermediary query results in S3 One Zone-Infrequent Access storage class
B. Store the intermediary query results in S3 Standard storage class
C. Store the intermediary query results in S3 Intelligent-Tiering storage class
D. Store the intermediary query results in S3 Standard-Infrequent Access storage class
View answer
Correct Answer: B
Question #18
54. An organization wants to delegate access to a set of users from the development environment so that they can access some resources in the production environment which is managed under another AWS account. As a solutions architect, which of the following steps would you recommend?
A. It is not possible to access cross-account resources Both IAM roles and IAM users can be used interchangeably for cross-account access
B. Create a new IAM role with the required permissions to access the resources in the production environment
C. The users can then assume this IAM role while accessing the resources from the production environment
D. Create new IAM user credentials for the production environment and share these credentials with the set of users from the development environment
View answer
Correct Answer: C
Question #19
55. A healthcare startup needs to enforce compliance and regulatory guidelines for objects stored in Amazon S3. One of the key requirements is to provide adequate protection against accidental deletion of objects. As a solutions architect, what are your recommendations to address these guidelines? (Select two)
A. Enable versioning on the bucket
B. Enable MFA delete on the bucket
C. Create an event trigger on deleting any S3 object
D. Establish a process to get managerial approval for deleting S3 objects
E. Change the configuration on AWS S3 console so that the user needs to provide additional confirmation while deleting any S3 object
View answer
Correct Answer: AB
Question #20
50. A large financial institution operates an on-premises data center with hundreds of PB of data managed on Microsoft’s Distributed File System (DFS). The CTO wants the organization to transition into a hybrid cloud environment and run data-intensive analytics workloads that support DFS. Which of the following AWS services can facilitate the migration of these workloads?
A. Amazon FSx for Windows File Server
B. Amazon FSx for Lustre
C. Microsoft SQL Server on Amazon
D. AWS Managed Microsoft AD
View answer
Correct Answer: A
Question #21
49. A silicon valley based startup uses a fleet of EC2 servers to manage its CRM application. These EC2 servers are behind an Elastic Load Balancer (ELB). Which of the following configurations are NOT allowed for the Elastic Load Balancer?
A. Use the ELB to distribute traffic for four EC2 instances
B. Use the ELB to distribute traffic for four EC2 instances
C. Use the ELB to distribute traffic for four EC2 instances
D. Use the ELB to distribute traffic for four EC2 instances
View answer
Correct Answer: B
Question #22
29. A social photo-sharing company uses Amazon S3 to store the images uploaded by the users. These images are kept encrypted in S3 by using AWS-KMS and the company manages its own Customer Master Key (CMK) for encryption. A member of the DevOps team accidentally deleted the CMK a day ago, thereby rendering the user’s photo data unrecoverable. You have been contacted by the company to consult them on possible solutions to this crisis. As a solutions architect, which of the following steps would you recommend
A. The CMK can be recovered by the AWS root account user
B. The company should issue a notification on its web application informing the users about the loss of their data
C. As the CMK was deleted a day ago, it must be in the ‘pending deletion’ status and hence you can just cancel the CMK deletion and recover the key
D. Contact AWS support to retrieve the CMK from their backup
View answer
Correct Answer: C
Question #23
35. A leading carmaker would like to build a new car-as-a-sensor service by leveraging fully serverless components that are provisioned and managed automatically by AWS. The development team at the carmaker does not want an option that requires the capacity to be manually provisioned, as it does not want to respond manually to changing volumes of sensor data. Given these constraints, which of the following solutions is the BEST fit to develop this car-as-a-sensor service?
A. Ingest the sensor data in a Kinesis Data Stream, which is polled by a Lambda function in batches and the data is written into an auto-scaled DynamoDB table for downstream processing
B. Ingest the sensor data in a Kinesis Data Stream, which is polled by an application running on an EC2 instance and the data is written into an auto-scaled DynamoDB table for downstream processing
C. Ingest the sensor data in an Amazon SQS standard queue, which is polled by a Lambda function in batches and the data is written into an auto-scaled DynamoDB table for downstream processing
D. Ingest the sensor data in an Amazon SQS standard queue, which is polled by an application running on an EC2 instance and the data is written into an auto-scaled DynamoDB table for downstream processing
View answer
Correct Answer: C
Question #24
5. A company has a legacy application that process data in two parts. The second part of the process takes longer than the first, so the company has decided to rewrite the application as two microservices running on Amazon ECS that can scale independently. How should a solutions architect integrate the microservices?
A. Implement code in microservice 1 to send data to an Amazon S3 bucket
B. Implement code in microservice 1 to publish data to an Amazon SNS topic
C. Implement code in microservice 1 to send data to Amazon Kinesis Data Firehose
D. Implement code in microservice 1 to send data to an Amazon SQS queue
View answer
Correct Answer: D
Question #25
A company has created an image analysis application in which users can upload photos and add photo frames to their images. The users upload images and metadata to indicate which photo frames they want to add to their images. The application uses a single Amazon EC2 instance and Amazon DynamoDB to store the metadata. The application is becoming more popular, and the number of users is increasing. The company expects the number of concurrent users to vary significantly depending on the time of day and day of
A. Use AWS Lambda to process the photo
B. Store the photos and metadata in DynamoDB
C. Use Amazon Kinesis Data Firehose to process the photos and to store the photos and metadata
D. Use AWS Lambda to process the photo
E. Store the photos in Amazon S3
F. Increase the number of EC2 instances to thre G
View answer
Correct Answer: A
Question #26
A company is expecting rapid growth in the near future. A solutions architect needs to configure existing users and grant permissions to new users on AWS The solutions architect has decided to create IAM groups The solutions architect will add the new users to IAM groups based on department Which additional action is the MOST secure way to grant permissions to the new users?
A. Apply service control policies (SCPs) to manage access permissions
B. Create IAM roles that have least privilege permission Attach the roles lo the IAM groups
C. Create an IAM policy that grants least privilege permission Attach the policy to the IAM groups
D. Create IAM roles Associate the roles with a permissions boundary that defines the maximum permissions
View answer
Correct Answer: C
Question #27
62. The engineering team at a Spanish professional football club has built a notification system on the web platform using Amazon SNS notifications which are then handled by a Lambda function for end-user delivery. During the off-season, the notification systems need to handle about 100 requests per second. During the peak football season, the rate touches about 5000 requests per second and it is noticed that a significant number of the notifications are not being delivered to the end-users on the web platf
A. Amazon SNS has hit a scalability limit, so the team needs to contact AWS support to raise the account limit
B. Amazon SNS message deliveries to AWS Lambda have crossed the account concurrency quota for Lambda, so the team needs to contact AWS support to raise the account limit
C. The engineering team needs to provision more servers running the Lambda service
D. The engineering team needs to provision more servers running the SNS service
View answer
Correct Answer: B
Question #28
20. Which of the following features of an Amazon S3 bucket can only be suspended once they have been enabled?
A. Requester Pays
B. Server Access Logging
C. Versioning
D. Static Website Hosting
View answer
Correct Answer: C
Question #29
17. A start-up company has a web application based in the us-east-1 Region with multiple Amazon EC2 instances running behind an Application Load Balancer across multiple Availability Zones. As the company’s user base grows in the us-west-1 Region, it needs a solution with low latency and high availability. What should a solutions architect do to accomplish this?
A. Provision EC2 instances in us-west-1
B. Provision EC2 instances and an Application Load Balancer in us-west-1
C. Provision EC2 instances and configure an Application Load Balancer in us-west-1
D. Provision EC2 instances and configure an Application Load Balancer in us-west-1
View answer
Correct Answer: C
Question #30
15. The sourcing team at the US headquarters of a global e-commerce company is preparing a spreadsheet of the new product catalog. The spreadsheet is saved on an EFS file system created in us-east-1 region. The sourcing team counterparts from other AWS regions such as Asia Pacific and Europe also want to collaborate on this spreadsheet. As a solutions architect, what is your recommendation to enable this collaboration with the LEAST amount of operational overhead?
A. The spreadsheet will have to be copied in Amazon S3 which can then be accessed from any AWS region
B. The spreadsheet will have to be copied into EFS file systems of other AWS regions as EFS is a regional service and it does not allow access from other AWS regions
C. The spreadsheet on the EFS file system can be accessed from EC2 instances running in other AWS regions by using an inter-region VPC peering connection
D. The spreadsheet data will have to be moved into an RDS MySQL database which can then be accessed from any AWS region
View answer
Correct Answer: C
Question #31
59. The DevOps team at an e-commerce company has deployed a fleet of EC2 instances under an Auto Scaling group (ASG). The instances under the ASG span two Availability Zones (AZ) within the us-east-1 region. All the incoming requests are handled by an Application Load Balancer (ALB) that routes the requests to the EC2 instances under the ASG. As part of a test run, two instances (instance 1 and 2, belonging to AZ A) were manually terminated by the DevOps team causing the Availability Zones to become unbalan
A. As the Availability Zones got unbalanced, Amazon EC2 Auto Scaling will compensate by rebalancing the Availability Zones When rebalancing
B. Amazon EC2 Auto Scaling creates a new scaling activity for terminating the unhealthy instance and then terminates it
C. Amazon EC2 Auto Scaling creates a new scaling activity for launching a new instance to replace the unhealthy instance
D. As the Availability Zones got unbalanced, Amazon EC2 Auto Scaling will compensate by rebalancing the Availability Zones
E. Amazon EC2 Auto Scaling creates a new scaling activity to terminate the unhealthy instance and launch the new instance simultaneously
View answer
Correct Answer: BD
Question #32
48. The IT department at a consulting firm is conducting a training workshop for new developers. As part of an evaluation exercise on Amazon S3, the new developers were asked to identify the invalid storage class lifecycle transitions for objects stored on S3. Can you spot the INVALID lifecycle transitions from the options below? (Select two)
A. S3 Standard-IA => S3 Intelligent-Tiering
B. S3 Intelligent-Tiering S3 Standard
C. S3 One Zone-IA => S3 Standard-IA
D. S3 Standard-IA => S3 One Zone-IA
E. S3 Standard = > S3 Intelligent-Tiering
View answer
Correct Answer: BC
Question #33
A company wants to manage Amazon Machine Images (AMIs). The company currently copies AMIs to the same AWS Region where the AMIs were created. The company needs to design an application that captures AWS API calls and sends alerts whenever the Amazon EC2 Createlmage API operation is called within the company's account. Which solution will meet these requirements with the LEAST operational overhead?
A. Create an AWS Lambda function to query AWS CloudTrail logs and to send an alert when a Createlmage API call is detected
B. Configure AWS CloudTrail with an Amazon Simple Notification Service {Amazon SNS) notification that occurs when updated logs are sent to Amazon S3
C. Create an Amazon EventBridge (Amazon CloudWatch Events) rule for the Createlmage API call
D. Configure an Amazon Simple Queue Service (Amazon SQS) FIFO queue as a target for AWS CloudTrail log
E. Create an AWS Lambda function to send an alert to an Amazon Simple NotificationService (Amazon SNS) topic when a Createlmage API call is detected
View answer
Correct Answer: D
Question #34
57. A new DevOps engineer has joined a large financial services company recently. As part of his onboarding, the IT department is conducting a review of the checklist for tasks related to AWS Identity and Access Management. As a solutions architect, which best practices would you recommend (Select two)?
A. Configure AWS CloudTrail to log all IAM actions
B. Grant maximum privileges to avoid assigning privileges again
C. Create a minimum number of accounts and share these account credentials among employees
D. Use user credentials to provide access specific permissions for Amazon EC2 instances
E. Enable MFA for privileged users
View answer
Correct Answer: AE
Question #35
44. The data engineering team at an e-commerce company has set up a workflow to ingest the clickstream data into the raw zone of the S3 data lake. The team wants to run some SQL based data sanity checks on the raw zone of the data lake. What AWS services would you recommend for this use-case such that the solution is cost-effective and easy to maintain?
A. Load the incremental raw zone data into RDS on an hourly basis and run the SQL based sanity checks
B. Load the incremental raw zone data into Redshift on an hourly basis and run the SQL based sanity checks
C. Load the incremental raw zone data into an EMR based Spark Cluster on an hourly basis and use SparkSQL to run the SQL based sanity checks
D. Use Athena to run SQL based analytics against S3 data
View answer
Correct Answer: D
Question #36
40. A video analytics organization has been acquired by a leading media company. The analytics organization has 10 independent applications with an on-premises data footprint of about 70TB for each application. The media company has its IT infrastructure on the AWS Cloud. The terms of the acquisition mandate that the on-premises data should be migrated into AWS Cloud and the two organizations establish connectivity so that collaborative development efforts can be pursued. The CTO of the media company has se
A. Setup AWS direct connect to establish connectivity between the on-premises data center and AWS Cloud
B. Setup Site-to-Site VPN to establish connectivity between the on-premises data center and AWS Cloud
C. Order 10 Snowball Edge Storage Optimized devices to complete the one-time data transfer
D. Order 70 Snowball Edge Storage Optimized devices to complete the one-time data transfer
E. Order 1 Snowmobile to complete the one-time data transfer
View answer
Correct Answer: BC
Question #37
51. An e-commerce company wants to explore a hybrid cloud environment with AWS so that it can start leveraging AWS services for some of its data analytics workflows. The engineering team at the e-commerce company wants to establish a dedicated, encrypted, low latency, and high throughput connection between its data center and AWS Cloud. The engineering team has set aside sufficient time to account for the operational overhead of establishing this connection. As a solutions architect, which of the following
A. Use AWS Direct Connect plus VPN to establish a connection between the data center and AWS Cloud
B. Use AWS Direct Connect to establish a connection between the data center and AWS Cloud
C. Use VPC transit gateway to establish a connection between the data center and AWS Cloud
D. Use site-to-site VPN to establish a connection between the data center and AWS of Cloud
View answer
Correct Answer: A
Question #38
A company is designing an application. The application uses an AWS Lambda function to receive information through Amazon API Gateway and to store the information in an Amazon Aurora PostgreSQL database. During the proof-of-concept stage, the company has to increase the Lambda quotas significantly to handle the high volumes of data that the company needs to load into the database. A solutions architect must recommend a new design to improve scalability and minimize the configuration effort. Which solution wi
A. Refactor the Lambda function code to Apache Tomcat code that runs on Amazon EC2 instances
B. Change the platform from Aurora to Amazon DynamoD
C. Provision a DynamoDB Accelerator (DAX) cluste
D. Use the DAX client SDK to point the existing DynamoDB API calls at the DAX cluster
E. Set up two Lambda function
F. Configure one function to receive the informatio G
View answer
Correct Answer: A
Question #39
65. A chip design startup is running an Electronic Design Automation (EDA) application, which is a high-performance workflow used to simulate performance and failures during the design phase of silicon chip production. The application produces massive volumes of data that can be divided into two categories. The ‘hot data’ needs to be both processed and stored quickly in a parallel and distributed fashion. The ‘cold data’ needs to be kept for reference with quick access for reads and updates at a low cost.
A. Amazon FSx for Windows File Server
B. AWS Glue
C. Amazon FSx for Lustre
D. Amazon EMR
View answer
Correct Answer: C
Question #40
21. A company’s web application uses an Amazon RDS PostgreSQL DB instance to store its application data. During the financial closing period at the start of every month. Accountants run large queries that impact the database’s performance due to high usage. The company wants to minimize the impact that the reporting activity has on the web application. What should a solutions architect do to reduce the impact on the database with the LEAST amount of effort?
A. Create a read replica and direct reporting traffic to the replica
B. Create a Multi-AZ database and direct reporting traffic to the standby
C. Create a cross-Region read replica and direct reporting traffic to the replica
D. Create an Amazon Redshift database and direct reporting traffic to the Amazon Redshift database
View answer
Correct Answer: A
Question #41
41. An IT consultant is helping the owner of a medium-sized business set up an AWS account. What are the security recommendations he must follow while creating the AWS account root user? (Select two)
A. Create AWS account root user access keys and share those keys only with the business owner
B. Enable Multi Factor Authentication (MFA) for the AWS account root user account
C. Create a strong password for the AWS account root user
D. Send an email to the business owner with details of the login username and password for the AWS root user
E. Encrypt the access keys and save them on Amazon S3
View answer
Correct Answer: BC
Question #42
A solutions architect is designing the architecture of a new application being deployed to the AWS Cloud. The application will run on Amazon EC2 On-Demand Instances and will automatically scale across multiple Availability Zones. The EC2 instances will scale up and down frequently throughout the day. An Application Load Balancer (ALB) will handle the load distribution. The architecture needs to support distributed session data management. The company is willing to make changes to code if needed. What should
A. Use Amazon ElastiCache to manage and store session data
B. Use session affinity (sticky sessions) of the ALB to manage session data
C. Use Session Manager from AWS Systems Manager to manage the session
D. Use the GetSessionToken API operation in AWS Security Token Service (AWS STS) to manage the session
View answer
Correct Answer: AC
Question #43
10. A recently acquired company is required to build its own infrastructure on AWS and migrate multiple applications to the cloud within a month. Each application has approximately 50 TB of data to be transferred. After the migration is complete, this company and its parent company will both require secure network connectivity with consistent throughput from their data centers to the applications. A solution architect must ensure one-time data migration and ongoing network connectivity. Which solution will meet these requirements?
A. AWS Direct Connect for both the initial transfer and ongoing connectivity
B. AWS Site-to-Site VPN for both the initial transfer and ongoing connectivity
C. AWS Snowball for the initial transfer and AWS Direct Connect for ongoing connectivity
D. AWS Snowball for the initial transfer and AWS Site-to-Site VPN for ongoing connectivity
View answer
Correct Answer: C
Question #44
10. The payroll department at a company initiates several computationally intensive workloads on EC2 instances at a designated hour on the last day of every month. The payroll department has noticed a trend of severe performance lag during this hour. The engineering team has figured out a solution by using Auto Scaling Group for these EC2 instances and making sure that 10 EC2 instances are available during this peak usage hour. For normal operations only 2 EC2 instances are enough to cater to the workload.
A. Configure your Auto Scaling group by creating a scheduled action that kicks-off at the designated hour on the last day of the month
B. Configure your Auto Scaling group by creating a scheduled action that kicks-off at the designated hour on the last day of the month
C. Configure your Auto Scaling group by creating a target tracking policy and setting the instance count to 10 at the designated hour
D. Configure your Auto Scaling group by creating a simple tracking policy and setting the instance count to 10 at the designated hour
View answer
Correct Answer: A
Question #45
A company has an on-premises MySQL database that handles transactional data The company is migrating the database to the AWS Cloud The migrated database must maintain compatibility with the company's applications that use the database The migrated database also must scale automatically during periods of increased demand. Which migration solution will meet these requirements?
A. Use native MySQL tools to migrate the database to Amazon RDS for MySQL Configure elastic storage scaling
B. Migrate the database to Amazon Redshift by using the mysqldump utility Turn on Auto Scaling for the Amazon Redshift cluster
C. Use AWS Database Migration Service (AWS DMS) to migrate the database to Amazon Aurora Turn on Aurora Auto Scaling
D. Use AWS Database Migration Service (AWS DMS) to migrate the database to Amazon DynamoDB Configure an Auto Scaling policy
View answer
Correct Answer: BE
Question #46
26. The audit department at one of the leading consultancy firms generates and accesses the audit reports only during the last month of a financial year. The department uses AWS Step Functions to orchestrate the report creating process with failover and retry scenarios built into the solution and the data should be available with millisecond latency. The underlying data to create these audit reports is stored on S3 and runs into hundreds of Terabytes. As a solutions architect, which is the MOST cost-effecti
A. Amazon S3 Glacier (S3 Glacier)
B. Amazon S3 Intelligent-Tiering (S3 Intelligent-Tiering)
C. Amazon S3 Standard-Infrequent Access (S3 Standard-IA)
D. Amazon S3 Standard
View answer
Correct Answer: C
Question #47
31. A silicon valley based research group is working on a High Performance Computing (HPC) application in the area of Computational Fluid Dynamics. The application carries out simulations of the external aerodynamics around a car and needs to be deployed on EC2 instances with a requirement for high levels of inter-node communications and high network traffic between the instances. As a solutions architect, which of the following options would you recommend to the engineering team at the startup? (Select two)
A. Deploy EC2 instances with Elastic Fabric Adapter
B. Deploy EC2 instances behind a Network Load Balancer
C. Deploy EC2 instances in a partition placement group
D. Deploy EC2 instances in a cluster placement group
E. Deploy EC2 instances in a spread placement group
View answer
Correct Answer: AD
Question #48
A company uses Amazon EC2 instances to host its internal systems As pan of a deployment operation, an administrator tries to use the AWS CLI to terminate an EC2 instance However, the administrator receives a 403 (Access Dented) error message The administrator is using an IAM role that has the following 1AM policy attached: What is the cause of the unsuccessful request?
A. The EC2 Instance has a resource-based policy win a Deny statement
B. The "Action" field does not grant the actions that are required to terminate the EC2 instance
C. The request to terminate the EC2 instance does not originate from the CIDR blocks 192 0 2
View answer
Correct Answer: B
Question #49
22. A gaming company uses Amazon Aurora as its primary database service. The company has now deployed 5 multi-AZ read replicas to increase the read throughput and for use as failover target. The replicas have been assigned the following failover priority tiers and corresponding sizes are given in parentheses: tier-1 (16TB), tier-1 (32TB), tier-10 (16TB), tier-15 (16TB), tier-15 (32TB). In the event of a failover, Amazon RDS will promote which of the following read replicas?
A. Tier-15 (32TB)
B. Tier-1 (16TB)
C. Tier-1 (32TB)
D. Tier-10 (16TB)
View answer
Correct Answer: C
Question #50
A company wants to use the AWS Cloud to make an existing application highly available and resilient. The current version of the application resides in the company's data center. The application recently experienced data loss after a database server crashed because of an unexpected power outage. The company needs a solution that avoids any single points of failure. The solution must give the application the ability to scale to meet user demand. Which solution will meet these requirements?
A. Deploy the application servers by using Amazon EC2 instances in an Auto Scaling group across multiple Availability Zone
B. Use an Amazon RDS DB instance in a Multi-AZ configuration
C. Deploy the application servers by using Amazon EC2 instances in an Auto Scaling group in a single Availability Zon
D. Deploy the database on an EC2 instanc
E. Enable EC2 Auto Recovery
F. Deploy the application servers by using Amazon EC2 instances in an Auto Scaling group across multiple Availability Zone G
View answer
Correct Answer: C
Question #51
12. A silicon valley based startup focused on the advertising technology (ad tech) space uses DynamoDE as a data store for storing various kinds of marketing data, such as user profiles, user events, clicks, and visited links. Some of these use-cases require a high request rate (millions of requests per second), low predictable latency and reliability. The startup now wants to add a caching layer to support high read volumes. As a solutions architect, which of the following AWS services would you recommend
A. DynamoDB Accelerator (DAX)
B. Elasticsearch
C. Redshift
D. RDS
E. ElastiCache
View answer
Correct Answer: AE
Question #52
A company has deployed a server less application that invokes an AWS Lambda function when new documents are uploaded to an Amazon S3 bucket The application uses the Lambda function to process the documents After a recent marketing campaign the company noticed that the application did not process many of The documents What should a solutions architect do to improve the architecture of this application?
A. Set the Lambda function's runtime timeout value to 15 minutes
B. Configure an S3 bucket replication policy Stage the documents m the S3 bucket for later processing
C. Deploy an additional Lambda function Load balance the processing of the documents across the two Lambda functions
D. Create an Amazon Simple Queue Service (Amazon SOS) queue Send the requests to the queue Configure the queue as an event source for Lambda
View answer
Correct Answer: B
Question #53
63. An IT company wants to review its security best-practices after an incident was reported where a new developer on the team was assigned full access to DynamoDB. The developer accidentally deleted a couple of tables from the production environment while building out a new feature. Which is the MOST effective way to address this issue so that such incidents do not recur?
A. Use permissions boundary to control the maximum permissions employees can grant to the IAM principals
B. Remove full database access for all IAM users in the organization
C. Only root user should have full database access in the organization
D. The CTO should review the permissions for each new developer’s IAM user so that such incidents don’t recur
View answer
Correct Answer: A
Question #54
64. A cyber forensics company runs its EC2 servers behind an Application Load Balancer along with an Auto Scaling group. The engineers at the company want to be able to install proprietary forensic tools on each instance and perform a pre-activation status check of these tools whenever an instance is provisioned because of a scale-out event from an auto-scaling policy. Which of the following options can be used to enable this custom action?
A. Use the Auto Scaling group scheduled action to put the instance in a wait state and launch a custom script that installs the proprietary forensic tools and performs a pre-activation status check
B. Use the EC2 instance user data to put the instance in a wait state and launch a custom script that installs the proprietary forensic tools and performs a pre-activation status check
C. Use the Auto Scaling group lifecycle hook to put the instance in a wait state and launch a custom script that installs the proprietary forensic tools and performs a pre-activation status check
D. Use the EC2 instance meta data to put the instance in a wait state and launch a custom script that installs the proprietary forensic tools and performs a pre- activation status check
View answer
Correct Answer: C
Question #55
46. The DevOps team at an e-commerce company wants to perform some maintenance work on a specific EC2 instance that is part of an Auto Scaling group using a step scaling policy. The team is facing a maintenance challenge – every time the team deploys a maintenance patch, the instance health check status shows as out of service for a few minutes. This causes the Auto Scaling group to provision another replacement instance immediately. As a solutions architect, which are the MOST time/resource efficient steps
A. Put the instance into the Standby state and then update the instance by applying the maintenance patch
B. Suspend the ReplaceUnhealthy process type for the Auto Scaling group and apply the maintenance patch to the instance
C. Suspend the ScheduledActions process type for the Auto Scaling group and apply the maintenance patch to the instance
D. Take a snapshot of the instance, create a new AMI and then launch a new instance using this AMI
E. Delete the Auto Scaling group and apply the maintenance fix to the given instance
View answer
Correct Answer: AB
Question #56
34. A global media company is using Amazon CloudFront to deliver media-rich content to its audience across the world. The Content Delivery Network (CDN) offers a multi-tier cache by default, with regional edge caches that improve latency and lower the load on the origin servers when the object is not already cached at the edge. However there are certain content types that bypass the regional edge cache, and go directly to the origin. Which of the following content types skip the regional edge cache (Select two)
A. Proxy methods PUT/POST/PATCH/OPTIONS/DELETE go directly to the origin
B. User-generated videos
C. Static content such as style sheets, JavaScript files
D. E-commerce assets such as product photos
E. Dynamic content, as determined at request time (cache-behavior configured to forward all headers)
View answer
Correct Answer: AE
Question #57
27. A file hosting startup offers cloud storage and file synchronization services to its end users. The file-hosting service uses Amazon S3 under the hood to power its storage offerings. Currently all the customer files are uploaded directly under a single S3 bucket. The engineering team has started seeing scalability issues where customer file uploads have started failing during the peak access hours in the evening with more than 5000 requests per second. Which of the following is the MOST resource efficie
A. Change the application architecture to create customer-specific custom prefixes within the single bucket and then upload the daily files into those prefixed locations
B. Change the application architecture to create a new S3 bucket for each customer and then upload each customer’s files directly under the respective buckets
C. Change the application architecture to create a new S3 bucket for each day’s data and then upload the daily files directly under that day’s bucket
D. Change the application architecture to use EFS instead of Amazon S3 for storing the customers’ uploaded files
View answer
Correct Answer: A
Question #58
A company is experiencing sudden increases in demand. The company needs to provision large Amazon EC2 instances from an Amazon Machine image (AMI) The instances will run m an Auto Scaling group. The company needs a solution that provides minimum initialization latency to meet the demand. Which solution meets these requirements?
A. Use the aws ec2 register-image command to create an AMI from a snapshot Use AWS Step Functions to replace the AMI in the Auto Scaling group
B. Enable Amazon Elastic Block Store (Amazon EBS) fast snapshot restore on a snapshot Provision an AMI by using the snapshot Replace the AMI m the Auto Scaling group with the new AMI
C. Enable AMI creation and define lifecycle rules in Amazon Data Lifecycle Manager (Amazon DLM) Create an AWS Lambda function that modifies the AMI in the Auto Scaling group
D. Use Amazon EventBridge (Amazon CloudWatch Events) to invoke AWS Backup lifecycle policies that provision AMIs Configure Auto Scaling group capacity limits as an event source in EventBridge (CloudWatch Events)
View answer
Correct Answer: C
Question #59
4. A company is migrating from an on-premises infrastructure to the AWS Cloud. One of the company’s applications stores files on a Windows file server farm that uses Distributed File System Replication (DFSR) to keep data in sync. A solutions architect needs to replace the file server farm. Which service should the solutions architect use?
A. Amazon EFS
B. Amazon FSx
C. Amazon S3
D. AWS Storage Gateway
View answer
Correct Answer: B
Question #60
A company's website uses an Amazon EC2 instance store for its catalog of items. The company wants to make sure that the catalog is highly available and that the catalog is stored in a durable location. What should a solutions architect do to meet these requirements?
A. Move the catalog to Amazon ElastiCache for Redis
B. Deploy a larger EC2 instance with a larger instance store
C. Move the catalog from the instance store to Amazon S3 Glacier Deep Archive
D. Move the catalog to an Amazon Elastic File System (Amazon EFS) file system
View answer
Correct Answer: A
Question #61
11. The engineering team at a data analytics company has observed that its flagship application functions at its peak performance when the underlying EC2 instances have a CPU utilization of about 50%. The application is built on a fleet of EC2 instances managed under an Auto Scaling group. The workflow requests are handled by an internal Application Load Balancer that routes the requests to the instances. As a solutions architect, what would you recommend so that the application runs near its peak performan
A. Configure the Auto Scaling group to use target tracking policy and set the CPU utilization as the target metric with a target value of 50%
B. Configure the Auto Scaling group to use simple scaling policy and set the CPU utilization as the target metric with a target value of 50%
C. Configure the Auto Scaling group to use a Cloudwatch alarm triggered on a CPU utilization threshold of 50%
D. Configure the Auto Scaling group to use step scaling policy and set the CPU utilization as the target metric with a target value of 50%
View answer
Correct Answer: A
Question #62
13. An IT company has built a custom data warehousing solution for a retail organization by using Amazon Redshift. As part of the cost optimizations, the company wants to move any historical data (any data older than a year) into S3, as the daily analytical reports consume data for just the last one year. However the analysts want to retain the ability to cross-reference this historical data along with the daily reports. The company wants to develop a solution with the LEAST amount of effort and MINIMUM cos
A. Use Glue ETL job to load the S3 based historical data into Redshift
B. Use the Redshift COPY command to load the S3 based historical data into a Redshift
C. Setup access to the historical data via Athena
D. Use Redshift Spectrum to create Redshift cluster tables pointing to the underlying historical data in S3
View answer
Correct Answer: D
Question #63
23. A DevOps engineer at an IT company was recently added to the admin group of the company’s AWS account. The Administratoraccess managed policy is attached to this group. Can you identify the AWS tasks that the DevOps engineer CANNOT perform even though he has full Administrator privileges (Select two)?
A. Delete an S3 bucket from the production environment
B. Configure an Amazon S3 bucket to enable MFA (Multi FactorAuthentication) delete
C. Delete the IAM user for his manager
D. Change the password for his own IAM user account
E. Close the company’s AWS account
View answer
Correct Answer: BE
Question #64
45. A leading social media analytics company is contemplating moving its dockerized application stack into AWS Cloud. The company is not sure about the pricing for using Elastic Container Service (ECS) with the EC2 launch type compared to the Elastic Container Service (ECS) with the Fargate launch type. Which of the following is correct regarding the pricing for these two services?
A. Both ECS with EC2 launch type and ECS with Fargate launch type are charged based on vCPU and memory resources that the containerized application requests
B. Both ECS with EC2 launch type and ECS with Fargate launch type are charged based on EC2 instances and EBS volumes used
C. ECS with EC2 launch type is charged based on EC2 instances and EBS volumes used
D. Both ECS with EC2 launch type and ECS with Fargate launch type are just charged based on Elastic Container Service used per hour
View answer
Correct Answer: C
Question #65
61. One of the largest healthcare solutions provider in the world uses Amazon S3 to store and protect a petabyte of critical medical imaging data for its AWS based Health Cloud service, which connects hundreds of thousands of imaging machines and other medical devices. The engineering team has observed that while some of the objects in the imaging data bucket are frequently accessed, others sit idle for a considerable span of time. As a solutions architect, what is your recommendation to build the MOST cost
A. Create a data monitoring application on an EC2 instance in the same region as the imaging data bucket
B. Store the objects in the imaging data bucket using the S3 Intelligent-Tiering storage class
C. Create a data monitoring application on an EC2 instance in the same region as the imaging data bucket
D. Store the objects in the imaging data bucket using the S3 Standard-IA storage class
View answer
Correct Answer: B
Question #66
16. A solutions architect is designing a new service behind Amazon API Gateway. The request patterns for the service will be unpredictable and can change suddenly from 0 requests to over 500 per second. The total size of the data that needs to be persisted in a database is currently less than 1 GB with unpredictable future growth. Data can be queried using simple key-value requests. Which combination of AWS services would meet these requirements? (Choose two.)
A. AWS Fargate
B. AWS Lambda
C. Amazon DynamoDB
D. Amazon EC2 Auto Scaling
E. MySQL-compatible Amazon Aurora
View answer
Correct Answer: BC
Question #67
18. The engineering team at an online fashion retailer uses AWS Cloud to manage its technology infrastructure. The EC2 server fleet is behind an Application Load Balancer and the fleet strength is managed by an Auto Scaling group. Based on the historical data, the team is anticipating a huge traffic spike during the upcoming Thanksgiving sale. As an AWS solutions architect, what feature of the Auto Scaling group would you leverage so that the potential surge in traffic can be preemptively addressed?
A. Auto Scaling group target tracking scaling policy
B. Auto Scaling group lifecycle hook
C. Auto Scaling group scheduled action
D. Auto Scaling group step scaling policy
View answer
Correct Answer: C
Question #68
12. A product team is creating a new application that will store a large amount of data. The data will be analyzed hourly and modified by multiple Amazon EC2 Linux instances. The application team believes the amount of space needed will continue to grow for the next 6 months. Which set of actions should a solutions architect take to support these needs?
A. Store the data in an Amazon EBS volume
B. Store the data in an Amazon EFS file system
C. Store the data in Amazon S3 Glacier
D. Store the data in Amazon S3 Standard-Infrequent Access (S3 Standard-IA)
View answer
Correct Answer: B
Question #69
7. A company’s application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The instances run in an Amazon EC2 Auto Scaling group across multiple Availability Zones. On the first day of every month at midnight, the application becomes much slower when the month-end financial calculation batch executes. This causes the CPU utilization of the EC2 instances to immediately peak to 100%, which disrupts the application. What should a solutions architect recommend to ensure the application is able to handle the workload and avoid downtime?
A. Configure an Amazon CloudFront distribution in front of the ALB
B. Configure an EC2 Auto Scaling simple scaling policy based on CPU utilization
C. Configure an EC2 Auto Scaling scheduled scaling policy based on the monthly schedule
D. Configure Amazon ElastiGache to remove some of the workload from the EC2 instances
View answer
Correct Answer: C
Question #70
8. A company runs a multi-tier web application that hosts news content. The application runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an EC2 Auto Scaling group across multiple Availability Zones and use an Amazon Aurora database. A solutions architect needs to make the application more resilient to periodic increases in request rates. Which architecture should the solutions architect implement? (Choose two.)
A. Add AWS Shield
B. Add Aurora Replica
C. Add AWS Direct Connect
D. Add AWS Global Accelerator
E. Add an Amazon CloudFront distribution in front of the Application Load Balancer
View answer
Correct Answer: DE
Question #71
19. A company is planning to migrate a business-critical dataset to Amazon S3. The current solution design uses a single S3 bucket in the us-east-1 Region with versioning enabled to store the dataset. The company’s disaster recovery policy states that all data multiple AWS Regions. How should a solutions architect design the S3 solution?
A. Create an additional S3 bucket in another Region and configure cross-Region replication
B. Create an additional S3 bucket in another Region and configure cross-origin resource sharing (CORS)
C. Create an additional S3 bucket with versioning in another Region and configure cross-Region replication
D. Create an additional S3 bucket with versioning in another Region and configure cross-origin resource (CORS)
View answer
Correct Answer: C
Question #72
A company is running a critical business application on Amazon EC2 instances behind an Application Load Balancer The EC2 instances run in an Auto Scaling group and access an Amazon RDS DB instance The design did not pass an operational review because the EC2 instances and the DB instance are all located in a single Availability Zone A solutions architect must update the design to use a second Availability Zone Which solution will make the application highly available?
A. Provision a subnet in each Availability Zone Configure the Auto Scaling group to distribute the EC2 instances across bothAvailability Zones Configure the DB instance with connections to each network
B. Provision two subnets that extend across both Availability Zones Configure the Auto Scaling group to distribute the EC2 instancesacross both Availability Zones Configure the DB instance with connections to each network
C. Provision a subnet in each Availability Zone Configure the Auto Scaling group to distribute the EC2 instances across both Availability Zones Configure the DB instance for Multi-AZ deployment
D. Provision a subnet that extends across both Availability Zones Configure the Auto Scaling group to distribute the EC2 instancesacross both Availability Zones Configure the DB instance for Multi-AZ deployment
View answer
Correct Answer: BE
Question #73
11. A company serves content to its subscribers across the world using an application running on AWS. The application has several Amazon C2 instances in a private subnet behind an Application Load Balancer (ALB). Due to a recent change in copyright restrictions, the chief information officer (CIO) wants to block access for certain countries. Which action will meet these requirements?
A. Modify the ALB security group to deny incoming traffic from blocked countries
B. Modify the security group for EC2 instances to deny incoming traffic from blocked countries
C. Use Amazon CloudFront to serve the application and deny access to blocked countries
D. Use ALB listener rules to return access denied responses to incoming traffic from blocked countries
View answer
Correct Answer: C
Question #74
1. A solutions architect is designing a solution where users will be directed to a backup static error page if the primary website is unavailable. The primary website’s DNS records are hosted in Amazon Route 53 where their domain is pointing to an Application Load Balancer (ALB). Which configuration should the solutions architect use to meet the company’s needs while minimizing changes and infrastructure overhead?
A. Point a Route 53 alias record to an Amazon CloudFront distribution with the ALB as one of its origins
B. Set up a Route 53 active-passive failover configuration
C. Update the Route 53 record to use a latency-based routing policy
D. Set up a Route 53 active-active configuration with the ALB and an Amazon EC2 instance hosting a static error page as endpoints
View answer
Correct Answer: B
Question #75
A company is creating a new application that will store a large amount of data. The data will be analyzed hourly and will be modified by several Amazon EC2 Linux instances that are deployed across multiple Availability Zones. The needed amount of storage space will continue to grow for the next 6 Months. Which storage solution should a solutions architect recommend to meet these requirements?
A. Store the data in Amazon S3 Glacier Update me S3 Glacier vault policy to allow access to the application Instances
B. Store the data in an Amazon Elastic Block Store (Amazon EBS) volume Mount the EBS volume on the application nuances
C. Store the data in an Amazon Elastic File System (Amazon EFS) tile system Mount the file system on the application instances
D. Store the data in an Amazon Elastic Block Store (Amazon EBS) Provisioned K)PS volume shared between the application instances
View answer
Correct Answer: B
Question #76
3. A company wants to host a scalable web application on AWS. The application will be accessed by users from different geographic regions of the world. Application users will be able to download and upload unique data up to gigabytes in size. The development team wants a cost-effective solution to minimize upload and download latency and maximize performance. What should a solutions architect do to accomplish this?
A. Use Amazon S3 with Transfer Acceleration to host the application
B. Use Amazon S3 with CacheControl headers to host the application
C. Use Amazon EC2 with Auto Scaling and Amazon CloudFront to host the application
D. Use Amazon EC2 with Auto Scaling and Amazon ElastiCache to host the application
View answer
Correct Answer: A
Question #77
2. A solutions architect is designing a high performance computing (HPC) workload on Amazon EC2. The EC2 instances need to communicate to each other frequently and require network performance with low latency and high throughput. Which EC2 configuration meets these requirements?
A. Launch the EC2 instances in a cluster placement group in one Availability Zone
B. Launch the EC2 instances in a spread placement group in one Availability Zone
C. Launch the EC2 instances in an Auto Scaling group in two Regions and peer the VPCs
D. Launch the EC2 instances in an Auto Scaling group spanning multiple Availability Zones
View answer
Correct Answer: A
Question #78
28. The DevOps team at an analytics company has noticed that the performance of its proprietary Machine Learning workflow has deteriorated ever since a new Auto Scaling group was deployed a few days back. Upon investigation, the team found out that the Launch Configuration selected for the Auto Scaling group is using the incorrect instance type that is not optimized to handle the Machine Learning workflow. As a solutions architect, what would you recommend to provide a long term resolution for this issue?
A. No need to modify the launch configuration
B. No need to modify the launch configuration
C. Modify the launch configuration to use the correct instance type and continue to use the existing Auto Scaling group
D. Create a new launch configuration to use the correct instance type
View answer
Correct Answer: C
Question #79
23. A company’s application is running on Amazon EC2 instances in a single Region. In the event of a disaster, a solutions architect needs to ensure that the resources can also be deployed to a second Region. Which combination of actions should the solutions architect take to accomplish this? (Choose two.)
A. Detach a volume on an EC2 instance and copy it to Amazon S3
B. Launch a new EC2 instance from an Amazon Machine Image (AMI) in a new Region
C. Launch a new EC2 instance in a new Region and copy a volume from Amazon S3 to the new instance
D. Copy an Amazon Machine Image (AMI) of an EC2 instance and specify a different Region for the destination
E. Copy an Amazon Elastic Block Store (Amazon EBS) volume from Amazon S3 and launch an EC2 instance in the destination Region using that EBS volume
View answer
Correct Answer: BD
Question #80
60. A geological research agency maintains the seismological data for the last 100 years. The data has a velocity of 1GB per minute. You would like to store the data with only the most relevant attributes to build a predictive model for earthquakes. What AWS services would you use to build the most cost-effective solution with the LEAST amount of infrastructure maintenance?
A. Ingest the data in a Spark Streaming Cluster on EMR use Spark Streaming transformations before writing to S3
B. Ingest the data in AWS Glue job and use Spark transformations before writing to S3
C. Ingest the data in Kinesis Data Analytics and use SQL queries to filter and transform the data before writing to S3
D. Ingest the data in Kinesis Data Firehose and use a Lambda function to filter and transform the incoming stream before the output is dumped on S3
View answer
Correct Answer: D
Question #81
A company has an application with a REST-based interface that allows data to be received in near-real time from a third-party vendor Once received the application processes and stores the data for further analysis. The application is running on Amazon EC2 instances. The third-party vendor has received many 503 Service Unavailable Errors when sending data to the application When the data volume spikes, the compute capacity reaches its maximum limit and the application is unable to process all requests. Which
A. Use Amazon Kinesis Data Streams to ingest the data Process the data using AWS Lambda function
B. Use Amazon API Gateway on top of the existing applicatio
C. Create a usage plan with a quota limit for the third-party vendor
D. Use Amazon Simple Notification Service (Amazon SNS) to ingest the data Put the EC2 instances in an Auto Scaling group behind an Application Load Balancer
E. Repackage the application as a container Deploy the application using Amazon Elastic Container Service (Amazon ECS) using the EC2 launch type with an Auto Scaling group
View answer
Correct Answer: AD
Question #82
17. A digital media streaming company wants to use AWS Cloudfront to distribute its content only to its service subscribers. As a solutions architect, which of the following solutions would you suggest in order to deliver restricted content to the bona fide end users? (Select two)
A. Require HTTPS for communication between CloudFront and your custom origin
B. Use CloudFront signed cookies
C. Require HTTPS for communication between CloudFront and your S3 origin
D. Forward HTTPS requests to the origin server by using the ECDSA or RSA ciphers
E. Use CloudFront signed URLs
View answer
Correct Answer: BE
Question #83
58. A biotechnology company wants to seamlessly integrate its on-premises data center with AWS cloud-based IT systems which would be critical to manage as well as scale-up the complex planning and execution of every stage of its drug development process. As part of a pilot program, the company wants to integrate data files from its analytical instruments into AWS via an NFS interface. Which of the following AWS service is the MOST efficient solution for the given use-case?
A. AWS Storage Gateway Tape Gateway
B. AWS Storage Gateway Volume Gateway
C. AWS Storage Gateway – File Gateway
D. AWS Site-to-Site VPN
View answer
Correct Answer: C
Question #84
19. An IT Company wants to move all the compute components of its AWS Cloud infrastructure into serverless architecture. Their development stack comprises a mix of backend programming languages and the company would like to explore the support offered by the AWS Lambda runtime for their programming languages stack. Can you identify the programming languages supported by the Lambda runtime?
A. C#/
B. C
C. Go
D. PHP
View answer
Correct Answer: AC
Question #85
A company that hosts its web application on AWS wants to ensure all Amazon EC2 instances. Amazon RDS DB instances. and Amazon Redshift clusters are configured with tags. The company wants to minimize the effort of configuring and operating this check. What should a solutions architect do to accomplish this?
A. Use AWS Config rules to define and detect resources that are not properly tagged
B. Use Cost Explorer to display resources that are not properly tagge
C. Tag those resources manually
D. Write API calls to check all resources for proper tag allocatio
E. Periodically run the code on an EC2 instance
F. Write API calls to check all resources for proper tag allocatio G
View answer
Correct Answer: D
Question #86
A company hosts a website on Amazon EC2 instances behind an Application Load Balancer (ALB) The website serves static content Website traffic is increasing, and the company is concerned about a potential increase in cost. What should a solutions architect do to reduce the cost of the website?
A. Create an Amazon CloudFront distribution to cache static files at edge locations
B. Create an Amazon ElastiCache cluster Connect the ALB to the ElastiCache cluster to serve cached files
C. Create an AWS WAF web ACL, and associate it with the ALB Add a rule to the web ACL to cache static files
D. Create a second ALB in an alternative AWS Region Route user traffic to the closest Region to minimize data transfer costs
View answer
Correct Answer: C
Question #87
24. A solutions architect needs to ensure that API calls to Amazon DynamoDB from Amazon EC2 instances in a VPC do not traverse the internet. What should the solutions architect do to accomplish this? (Choose two.)
A. Create a route table entry for the endpoint
B. Create a gateway endpoint for DynamoDB
C. Create a new DynamoDB table that uses the endpoint
D. Create an ENI for the endpoint in each of the subnets of the VPC
E. Create a security group entry in the default security group to provide access
View answer
Correct Answer: AB
Question #88
39. A news network uses Amazon S3 to aggregate the raw video footage from its reporting teams across the US. The news network has recently expanded into new geographies in Europe and Asia. The technical teams at the overseas branch offices have reported huge delays in uploading large video files to the destination S3 bucket. Which of the following are the MOST cost-effective options to improve the file upload speed into S3? (Select two)
A. Use multipart uploads for faster file uploads into the destination S3 bucket
B. Use Amazon S3 Transfer Acceleration to enable faster file uploads into the destination S3 bucket
C. Use AWS Global Accelerator for faster file uploads into the destination S3 bucket
D. Create multiple site-to-site VPN connections between the AWS Cloud and branch offices in Europe and Asia
E. Create multiple AWS direct connect connections between the AWS Cloud and branch offices in Europe and Asia
View answer
Correct Answer: AB
Question #89
18. A solutions architect is designing a solution to access a catalog of images and provide users with the ability to submit requests to customize images. Image customization parameters will be in any request sent to an AWS API Gateway API. The customized image will be generated on demand, and users will receive a link they can click to view or download their customized image. The solution must be highly available for viewing and customizing images. What is the MOST cost-effective solution to meet these requirements?
A. Use Amazon EC2 instances to manipulate the original image into the requested customization Store the original and manipulated images in Amazon S3
B. Use AWS Lambda to manipulate the original image to the requested customization
C. Use AWS Lambda to manipulate the original image to the requested customization
D. Use Amazon EC2 instances to manipulate the original image into the requested customization
View answer
Correct Answer: B
Question #90
47. Which of the following is true regarding cross-zone load balancing as seen in Application Load Balancer versus Network Load Balancer?
A. By default, cross-zone load balancing is disabled for Application Load Balancer and enabled for Network Load Balancer
B. By default, cross-zone load balancing is enabled for both Application Load Balancer and Network Load Balancer
C. By default, cross-zone load balancing is enabled for Application Load Balancer and disabled for Network Load Balancer
D. By default, cross-zone load balancing is disabled for both Application Load Balancer and Network Load Balancer
View answer
Correct Answer: C
Question #91
42. A technology blogger wants to write a review on the comparative pricing for various storage types available on AWS Cloud. The blogger has created a test file of size 1GB with some random data. Next he copies this test file into AWS S3 Standard storage class, provisions an EBS volume (General Purpose SSD (gp2)) with 100GB of provisioned storage and copies the test file into the EBS volume, and lastly copies the test file into an EFS Standard Storage filesystem. At the end of the month, he analyses the bi
A. Cost of test file storage on EFS < Cost of test file storage on S3 Standard < Cost of test file storage on EBS
B. Cost of test file storage on S3 Standard < Cost of test file storage on EFS < Cost of test file storage on EBS
C. Cost of test file storage on S3 Standard < Cost of test file storage on EBS < Cost of test file storage on EFS
D. Cost of test file storage on EBS < Cost of test file storage on S3 Standard < Cost of test file storage on EFS
View answer
Correct Answer: B
Question #92
30. A leading video streaming provider is migrating to AWS Cloud infrastructure for delivering its content to users across the world. The company wants to make sure that the solution supports at least a million requests per second for its EC2 server farm. As a solutions architect, which type of Elastic Load Balancer would you recommend as part of the solution stack?
A. Network Load Balancer
B. Infrastructure Load Balancer
C. Application Load Balancer
D. Classic Load Balancer
View answer
Correct Answer: A
Question #93
A company wants to migrate its on-premises application to AWS. The application produces output files that vary in size from tens of gigabytes to hundreds of terabytes The application data must be stored in a standard file system structure The company wants a solution that scales automatically, is highly available, and requires minimum operational overhead. Which solution will meet these requirements?
A. Migrate the application to run as containers on Amazon Elastic Container Service (Amazon ECS) Use Amazon S3 for storage
B. Migrate the application to run as containers on Amazon Elastic Kubernetes Service (Amazon EKS) Use Amazon Elastic Block Store (Amazon EBS) for storage
C. Migrate the application to Amazon EC2 instances in a Multi-AZ Auto Scaling grou
D. Use Amazon Elastic File System (Amazon EFS) for storage
E. Migrate the application to Amazon EC2 instances in a Multi-AZ Auto Scaling grou
F. Use Amazon Elastic Block Store (Amazon EBS) for storage
View answer
Correct Answer: A
Question #94
16. The engineering team at a leading online real estate marketplace uses Amazon MySQL RDS because it simplifies much of the time-consuming administrative tasks typically associated with databases. The team uses Multi-Availability Zone (Multi-AZ) deployment to further automate its database replication and augment data durability and also deploys read replicas. A new DevOps engineer has joined the team and wants to understand the replication capabilities for Multi-AZ as well as Read-replicas. Which of the fo
A. Multi-AZ follows asynchronous replication and spans at least two Availability Zones within a single region
B. Multi-AZ follows synchronous replication and spans at least two Availability Zones within a single region
C. Multi-AZ follows asynchronous replication and spans one Availability Zone within a single region
D. Multi-AZ follows asynchronous replication and spans at least two Availability Zones within a single region
View answer
Correct Answer: B
Question #95
37. A media company wants to get out of the business of owning and maintaining its own IT infrastructure. As part of this digital transformation, the media company wants to archive about 5PB of data in its on-premises data center to durable long term storage. As a solutions architect, what is your recommendation to migrate this data in the MOST cost-optimal way?
A. Setup AWS direct connect between the on-premises data center and AWS Cloud
B. Setup Site-to-Site VPN connection between the on-premises data center and AWS Cloud
C. Transfer the on-premises data into multiple Snowball Edge Storage Optimized devices
D. Transfer the on-premises data into multiple Snowball Edge Storage Optimized devices
View answer
Correct Answer: D
Question #96
21. The CTO of an online home rental marketplace wants to re-engineer the caching layer of the current architecture for its relational database. He wants the caching layer to have replication and archival support built into the architecture. Which of the following AWS service offers the capabilities required for the re-engineering of the caching layer?
A. DynamoDB Accelerator (DAX)
B. ElastiCache for Memcached
C. DocumentDB
D. ElastiCache for Redis
View answer
Correct Answer: D
Question #97
A company hosts a containerized web application on a fleet of on-premises servers that process incoming requests. The number of requests is growing quickly. The on-premises servers cannot handle the increased number of requests. The company wants to move the application to AWS with minimum code changes and minimum development effort. Which solution will meet these requirements with the LEAST operational overhead?
A. Use AWS Fargate on Amazon Elastic Container Service (Amazon ECS) to run the containerized web application with Service Auto Scalin
B. Use an Application Load Balancer to distribute the incoming requests
C. Use two Amazon EC2 instances to host the containerized web applicatio
D. Use an Application Load Balancer to distribute the incoming requests
E. Use AWS Lambda with a new code that uses one of the supported language
F. Create multiple Lambda functions to support the loa G
View answer
Correct Answer: B
Question #98
A company collects data from thousands of remote devices by using a RESTful web services application that runs on an Amazon EC2 instance. The EC2 instance receives the raw data, transforms the raw data, and stores all the data in an Amazon S3 bucket. The number of remote devices will increase into the millions soon. The company needs a highly scalable solution that minimizes operational overhead. Which combination of steps should a solutions architect take to meet these requirements9 (Select TWO.)
A. Use AWS Glue to process the raw data in Amazon S3
B. Use Amazon Route 53 to route traffic to different EC2 instances
C. Add more EC2 instances to accommodate the increasing amount of incoming data
D. Send the raw data to Amazon Simple Queue Service (Amazon SOS)
E. Use Amazon API Gateway to send the raw data to an Amazon Kinesis data strea
F. Configure Amazon Kinesis Data Firehose to use the data stream as a source to deliver the data to Amazon S3
View answer
Correct Answer: DE
Question #99
13. A company is migrating a three-tier application to AWS. The application requires a MySQL database. In the past, the application users reported poor application performance when creating new entries. These performance issues were caused by users generating different real-time reports from the application during working hours. Which solution will improve the performance of the application when it is moved to AWS?
A. Import the data into an Amazon DynamoDB table with provisioned capacity
B. Create the database on a compute optimized Amazon EC2 instance
C. Create an Amazon Aurora MySQL Multi-AZ DB cluster with multiple read replicas
D. Create an Amazon Aurora MySQL Multi-AZ DB cluster
View answer
Correct Answer: C
Question #100
53. A company has multiple EC2 instances operating in a private subnet which is part of a custom VPC. These instances are running an image processing application that needs to access images stored on S3. Once each image is processed, the status of the corresponding record needs to be marked as completed in a DynamoDB table. How would you go about providing private access to these AWS resources which are not part of this custom VPC?
A. Create a gateway endpoint for DynamoDB and add it as a target in the route table of the custom VPC
B. Create a gateway endpoint for S3 and add it as a target in the route table of the custom VPC
C. Create a separate gateway endpoint for S3 and DynamoDB each
D. Create a separate interface endpoint for S3 and DynamoDB each
View answer
Correct Answer: C

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number:


Copyright © 2024. Designer by SPOTO Official Website. All Rights Reserved.