DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

Master SAA-C03 Exams with Exam Questions & Study Materials, AWS Certified Solutions Architect – Associate | SPOTO

Earning the AWS Certified Solutions Architect - Associate (SAA-C03) certification validates your expertise in AWS technologies and services, making you a sought-after professional in the cloud computing industry. This certification emphasizes designing cost-effective and high-performing solutions while showcasing your understanding of the AWS Well-Architected Framework principles. At SPOTO, we empower you to master SAA-C03 exams with our comprehensive collection of exam questions and study materials. Our resources cover a wide range of topics, including exam questions and answers, practice tests, exam dumps, and sample questions, ensuring you're well-prepared for the certification journey. Access our free exam materials and leverage our exam simulators to enhance your exam practice and preparation. SPOTO's exam resources are designed to boost your confidence and proficiency in tackling the AWS Certified Solutions Architect - Associate exam, ultimately elevating your professional credibility and opening doors to new career opportunities in AWS.
Take other online exams

Question #1
A company wants to build a data lake on AWS from data that is stored in an onpremises Oracle relational database. The data lake must receive ongoing updates from the on-premises database. Which solution will meet these requirements with the LEAST operational overhead?
A. Use AWS DataSync to transfer the data to Amazon S3
B. Use AWS Snowball to transfer the data to Amazon S3
C. Use AWS Database Migration Service (AWS DMS) to transfer the data to Amazon S3 Use AWS Glue to transform the data and integrate the data into a data lake
D. Use an Amazon EC2 instance to transfer the data to Amazon S3
View answer
Correct Answer: C
Question #2
A solution architect is creating a new Amazon CloudFront distribution for an application Some of Ine information submitted by users is sensitive. The application uses HTTPS but needs another layer" of security The sensitive information should be protected throughout the entire application stack end access to the information should be restricted to certain applications Which action should the solutions architect take?
A. Configure a CloudFront signed URL
B. Configure a CloudFront signed cookie
C. Configure a CloudFront field-level encryption profile
D. Configure CloudFront and set the Origin Protocol Policy setting to HTTPS Only for the Viewer Protocol Policy
View answer
Correct Answer: C
Question #3
A company's website handles millions of requests each day and the number of requests continues to increase. A solutions architect needs to improve the response time of the web application. The solutions architect determines that the application needs to decrease latency when retrieving product details from the Amazon DynamoDB table Which solution will meet these requirements with the LEAST amount of operational overhead?
A. Set up a DynamoDB Accelerator (DAX) cluster Route all read requests through DAX
B. Set up Amazon ElastiCache for Redis between the DynamoDB table and the web application Route all read requests through Redis
C. Set up Amazon ElastrCachertor Memcached between the DynamoDB table and the web application Route all read requests through Memcached
D. Set up Amazon DynamoDB streams on the table and have AWS Lambda read from the table andpopulate Amazon ElastiCache Route all read requests through ElastiCache
View answer
Correct Answer: A
Question #4
A company has an application that provides marketing services to stores. The services are based on previous purchases by store customers. The stores upload transaction data to the company through SFTP, and the data is processed and analyzed to generate new marketing offers. Some of the files can exceed 200 GB in size. Recently, the company discovered that some of the stores have uploaded files that contain personally identifiable information (PII) that should not have been included. The company wants admini
A. Use an Amazon S3 bucket as a secure transfer poin
B. Use Amazon Inspector to scan me objects in the bucke
C. If objects contain Pl
D. trigger an S3 Lifecycle policy to remove the objects that contain Pll
E. Use an Amazon S3 bucket as a secure transfer poin
F. Use Amazon Macie to scan the objects in the bucke G
View answer
Correct Answer: B
Question #5
A gaming company hosts a browser-based application on AWS The users of the application consume a large number of videos and images that are stored in Amazon S3. This content is the same for all users The application has increased in popularity, and millions of users worldwide are accessing these media files. The company wants to provide the files to the users while reducing the load on the origin Which solution meets these requirements MOST cost-effectively?
A. Deploy an AWS Global Accelerator accelerator in front of the web servers
B. Deploy an Amazon CloudFront web distribution in front of the S3 bucket
C. Deploy an Amazon ElastiCache for Redis instance in front of the web servers
D. Deploy an Amazon ElastiCache for Memcached instance in front of the web servers
View answer
Correct Answer: C
Question #6
A company wants to establish connectivity between its on-premlses data center and AWS (or an existing workload. The workload runs on Amazon EC2 Instances in two VPCs In different AWS Regions. The VPCs need to communicate with each other. The company needs to provide connectivity from Its data center to both VPCs. The solution must support a bandwidth of 600 Mbps to the data center. Which solution will meet these requirements?
A. Set up an AWS Site-to-Site VPN connection between the data center and one VP
B. Create a VPC peering connection between the VPCs
C. Set up an AWS Site-to-Site VPN connection between the data center and each VP
D. Create a VPC peering connection between the VPCs
E. Set up an AWS Direct Connect connection between the data center and one VP
F. Create a VPC peering connection between the VPCs
View answer
Correct Answer: B
Question #7
An image-processing company has a web application that users use to upload images. The application uploads the images into an Amazon S3 bucket. The company has set up S3 event notifications to publish the object creation events to an A company has a service that produces event queue. The SQS queue serves as the event source for an AWS Lambda function that processes the images and sends the results to users through email. Users report that they are receiving multiple email messages for every uploaded image.
A. Set up long polling in the SQS queue by increasing the ReceiveMessage wait time to 30 seconds
B. Change the SQS standard queue to an SQS FIFO queu
C. Use the message deduplication ID to discard duplicate messages
D. Increase the visibility timeout in the SQS queue to a value that is greater than the total of the function timeout and the batch window timeout
E. Modify the Lambda function to delete each message from the SQS queue immediately after the message is read before processing
View answer
Correct Answer: B
Question #8
A company has a web-based map application that provides status information about ongoing repairs. The application sometimes has millions of users. Repair teams have a mobile app that sends current location and status in a JSON message to a REST-based endpoint. Few repairs occur on most days. The company wants the application to be highly available and to scale when large numbers of repairs occur after nature disasters. Customer use the application most often during these times. The company does not want to
A. Create a webpage that is based on Amazon S3 to display informatio
B. Use Amazon API Gateway and AWS Lambda to receive the JSON status data Store the JSON data m Amazon S3
C. Use Amazon EC2 instances as wad servers across multiple Availability Zone
D. Run the EC2 instances inan Auto Scaling grou
E. Use Amazon API Gateway and AWS Lambda to receive the JSON status data Store the JSON data In Amazon S3
F. Use Amazon EC2 instances as web servers across multiple Availability Zone G
View answer
Correct Answer: A
Question #9
A company wants to migrate its on-premises data center to AWS. According to the company's compliance requirements, the company can use only the ap- northeast-3 Region. Company administrators are not permitted to connect VPCs to the internet. Which solutions will meet these requirements? (Choose two.)
A. Use AWS Control Tower to implement data residency guardrails to deny internet access and deny access to all AWS Regions except ap-northeast-3
B. Use rules in AWS WAF to prevent internet acces
C. Deny access to all AWS Regions except ap-northeast-3 in the AWS account settings
D. Use AWS Organizations to configure service control policies (SCPS) that prevent VPCs from gaining internet acces
E. Deny access to all AWS Regions except ap-northeast-3
F. Create an outbound rule for the network ACL in each VPC to deny all traffic from 0
View answer
Correct Answer: AE
Question #10
A company stores confidential data in an Amazon Aurora PostgreSQL database in the ap-southeast-3 Region The database is encrypted with an AWS Key Management Service (AWS KMS) customer managed key The company was recently acquired and must securely share a backup of the database with the acquiring company's AWS account in ap-southeast-3. What should a solutions architect do to meet these requirements?
A. Create a database snapshot Copy the snapshot to a new unencrypted snapshot Share the new snapshot with the acquiring company's AWS account
B. Create a database snapshot Add the acquiring company's AWS account to the KMS key policy Share the snapshot with the acquiring company's AWS account
C. Create a database snapshot that uses a different AWS managed KMS key Add the acquiring company's AWS account to the KMS key alia
D. Share the snapshot with the acquiring company's AWS account
E. Create a database snapshot Download the database snapshot Upload the database snapshot to an Amazon S3 bucket Update the S3 bucket policy to allow access from the acquiring company's AWS account
View answer
Correct Answer: B
Question #11
A company hosts an application on AWS. The application uses AWS Lambda functions and stores data in Amazon DynamoDB tables. The Lambda functions are connected to a VPC that does not have internet access. The traffic to access DynamoDB must not travel across the internet. The application must have write access to only specific DynamoDB tables. Which combination of steps should a solutions architect take to meet these requirements? (Select TWO.)
A. Attach a VPC endpoint policy for DynamoDB to allow write access to only the specific DynamoDB tables
B. Attach a security group to the interface VPC endpoint to allow write access to only the specific DynamoDB tables
C. Create a resource-based 1AM policy to grant write access to only the specific DynamoDB table
D. Attach the policy to the DynamoDB tables
E. Create a gateway VPC endpoint for DynamoDB that is associated with the Lambda VP
F. Ensure that the Lambda execution role can access the gateway VPC endpoint
View answer
Correct Answer: D
Question #12
A public-facing web application queries a database hosted on a Amazon EC2 instance in a private subnet. A large number of queries involve multiple table joins, and the application performance has been degrading due to an increase in complex queries. The application team will be performing updates to improve performance. What should a solutions architect recommend to the application team? (Select TWO.)
A. Cache query data in Amazon SQS
B. Create a read replica to offload queries
C. Migrate the database to Amazon Athena
D. Implement Amazon DynamoDB Accelerator to cache data
E. Migrate the database to Amazon RDS
View answer
Correct Answer: D
Question #13
A company has an application that runs on Amazon EC2 instances and uses an Amazon Aurora database. The EC2 instances connect to the database by using user names and passwords that are stored locally in a file. The company wants to minimize the operational overhead of credential management. What should a solutions architect do to accomplish this goal?
A. Use AWS Secrets Manage
B. Turn on automatic rotation
C. Use AWS Systems Manager Parameter Stor
D. Turn on automatic rotation
E. Create an Amazon S3 bucket lo store objects that are encrypted with an AWS Key
F. Management Service (AWS KMS) encryption ke G
View answer
Correct Answer: B
Question #14
An application runs on an Amazon EC2 instance in a VPC. The application processes logs that are stored in an Amazon S3 bucket. The EC2 instance needs to access the S3 bucket without connectivity to the internet. Which solution will provide private network connectivity to Amazon S3?
A. Create a gateway VPC endpoint to the S3 bucket
B. Stream the logs to Amazon CloudWatch Log
C. Export the logs to the S3 bucket
D. Create an instance profile on Amazon EC2 to allow S3 access
E. Create an Amazon API Gateway API with a private link to access the S3 endpoint
View answer
Correct Answer: A
Question #15
A solutions architect is using Amazon S3 to design the storage architecture of a new digital media application. The media files must be resilient to the loss of an Availability Zone Some files are accessed frequently while other files are rarely accessed in an unpredictable pattern. The solutions architect must minimize the costs of storing and retrieving the media files. Which storage option meets these requirements?
A. S3 Standard
B. S3 Intelligent-Tiering
C. S3 Standard-Infrequent Access {S3 Standard-IA)
D. S3 One Zone-Infrequent Access (S3 One Zone-IA)
View answer
Correct Answer: C
Question #16
A development team needs to host a website that will be accessed by other teams. The website contents consist of HTML, CSS, client-side JavaScript, and images Which method is the MOST costeffective for hosting the website?
A. Containerize the website and host it in AWS Fargate
B. Create an Amazon S3 bucket and host the website there
C. Deploy a web server on an Amazon EC2 instance to host the website
D. Configure an Application Loa d Balancer with an AWS Lambda target that uses the Express js framework
View answer
Correct Answer: A
Question #17
A hospital recently deployed a RESTful API with Amazon API Gateway and AWS Lambda The hospital uses API Gateway and Lambda to upload reports that are in PDF format and JPEG format The hospital needs to modify the Lambda code to identify protected health information (PHI) in the reports Which solution will meet these requirements with the LEAST operational overhead?
A. Use existing Python libraries to extract the text from the reports and to identify the PHI from the extracted text
B. Use Amazon Textract to extract the text from the reports Use Amazon SageMaker to identify the PHI from the extracted text
C. Use Amazon Textract to extract the text from the reports Use Amazon Comprehend Medical to identify the PHI from the extracted text
D. Use Amazon Rekognition to extract the text from the reports Use Amazon Comprehend Medical to identify the PHI from the extracted text
View answer
Correct Answer: B
Question #18
A company has a data ingestion workflow that consists the following: An Amazon Simple Notification Service (Amazon SNS) topic for notifications about new data deliveries An AWS Lambda function to process the data and record metadata The company observes that the ingestion workflow fails occasionally because of network connectivity issues. When such a failure occurs, the Lambda function does not ingest the corresponding data unless the company manually reruns the job. Which combination of actions should a so
A. Configure the Lambda function In multiple Availability Zones
B. Create an Amazon Simple Queue Service (Amazon SQS) queue, and subscribe It to me SNS topic
C. Increase the CPU and memory that are allocated to the Lambda function
D. Increase provisioned throughput for the Lambda function
E. Modify the Lambda function to read from an Amazon Simple Queue Service (Amazon SQS) queue
View answer
Correct Answer: C
Question #19
A company has an AWS Glue extract. transform, and load (ETL) job that runs every day at the same time. The job processes XML data that is in an Amazon S3 bucket. New data is added to the S3 bucket every day. A solutions architect notices that AWS Glue is processing all the data during each run. What should the solutions architect do to prevent AWS Glue from reprocessing old data?
A. Edit the job to use job bookmarks
B. Edit the job to delete data after the data is processed
C. Edit the job by setting the NumberOfWorkers field to 1
D. Use a FindMatches machine learning (ML) transform
View answer
Correct Answer: B
Question #20
A company has two applications: a sender application that sends messages with payloads to be processed and a processing application intended to receive the messages with payloads. The company wants to implement an AWS service to handle messages between the two applications. The sender application can send about 1.000 messages each hour. The messages may take up to 2 days to be processed. If the messages fail to process, they must be retained so that they do not impact the processing of any remaining message
A. Set up an Amazon EC2 instance running a Redis databas
B. Configure both applications to use the instanc
C. Store, process, and delete the messages, respectively
D. Use an Amazon Kinesis data stream to receive the messages from the sender applicatio
E. Integrate the processing application with the Kinesis Client Library (KCL)
F. Integrate the sender and processor applications with an Amazon Simple Queue Service (Amazon SQS) queu G
View answer
Correct Answer: C
Question #21
A company has an application that processes customer of tiers. The company hosts the application on an Amazon EC2 instance that saves the orders to an Amazon Aurora database. Occasionally when traffic Is high, the workload does not process orders fast enough. What should a solutions architect do to write the orders reliably to the database as quickly as possible?
A. Increase the instance size of the EC2 instance when baffle Is hig
B. Write orders to Amazon Simple Notification Service (Amazon SNS) Subscribe the database endpoint to the SNS topic
C. Write orders to an Amazon Simple Queue Service (Amazon SOS) queue Use EC2 instances in an Auto Scaling group behind an Application Load Balancer to read born the SQS queue and process orders into the database
D. Write orders to Amazon Simple Notification Service (Amazon SNS)
E. Use EC2 ^stances in an Auto Scaling group behind an Application Load Balancer to read from the SNS topic
F. Write orders to an Amazon Simple Queue Service (Amazon SQS) queue when the EC2 instance reaches CPU threshold limit G
View answer
Correct Answer: C
Question #22
A company runs multiple Windows workloads on AWS. The company’s employees use Windows the file shares that are hosted on two Amazon EC2 instances. The file shares synchronize data between themselves and maintain duplicate copies. The company wants a highly available and durable storage solution that preserves how users currently access the files.
A. Migrate all the data to Amazon S3 Set up IAM authentication for users to access files
B. Set up an Amazon S3 File Gatewa
C. Mount the S3 File Gateway on the existing EC2 Instances
D. Extend the file share environment to Amazon FSx for Windows File Server with a Multi-AZ configuratio
E. Migrate all the data to FSx for Windows File Server
F. Extend the file share environment to Amazon Elastic File System (Amazon EFS) with a Multi-AZ configuratio G
View answer
Correct Answer: D
Question #23
A gaming company is moving its public scoreboard from a data center to the AWS Cloud. The company uses Amazon EC2 Windows Server instances behind an Application Load Balancer to host its dynamic application. The company needs a highly available storage solution for the application. The application consists of static files and dynamic server-side code. Which combination of steps should a solutions architect take to meet these requirements? (Select TWO.)
A. Store the static files on Amazon S3
B. CloudFront to cache objects at the edge
C. Store the static files on Amazon S3
D. Store the server-side code on Amazon Elastic File System (Amazon EFS)
E. Store the server-side code on Amazon FSx for Windows File Serve
F. Mount the FSx for Windows File Server volume on each EC2 instance to share the files
View answer
Correct Answer: D
Question #24
An ecommerce company has an order-processing application that uses Amazon API Gateway and an AWS Lambda function. The application stores data in an Amazon Aurora PostgreSQL database. During a recent sales event, a sudden surge in customer orders occurred. Some customers experienced timeouts and the application did not process the orders of those customers A solutions architect determined that the CPU utilization and memory utilization were high on the database because of a large number of open connections T
A. Configure provisioned concurrency for the Lambda function Modify the database to be a global database in multiple AWS Regions
B. Use Amazon RDS Proxy to create a proxy for the database Modify the Lambda function to use the RDS Proxy endpoint instead of the database endpoint
C. Create a read replica for the database in a different AWS Region Use query string parameters in API Gateway to route traffic to the read replica
D. Migrate the data from Aurora PostgreSQL to Amazon DynamoDB by using AWS Database Migration Service (AWS DMS| Modify the Lambda function to use the OynamoDB table
View answer
Correct Answer: A

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number: