AWS Certified Solutions Architect Associate SAA-C02 Sample Questions
New AWS Certified Solutions Architect Associate (SAA-C03) is available.
The AWS Solutions Architect Associate SAA-C03 test is reasonable for candidates who play out a solutions architect role. The test assesses the candidate’s abilities to display knowledge to architects and send secure and powerful applications on AWS innovations.
The AWS Solutions Architect Associate test approves the competitors in their capacity to characterize an answer involving building plan standards according to the client’s necessities and capacity to offer direction to carry out in view of best practices to the association all through the project life cycle.
Candidates are expected to have a base 1 year of active involvement with planning accessible, cost-effective, shortcoming lenient, and versatile circulated frameworks on AWS.
Let’s begin with sample questions which will surely help to prepare in a smarter manner for the AWS Certified Solutions Architect Associate SAA-C02 exam.
1.) A firm is fostering a web application on AWS using compartments. At any one second, the association needs three occasions for the web application to run. The application should be adaptable to stay aware of interest increments. While the executives are cost-cognizant, they concur that the application ought to be profoundly available.
What suggestions should an arrangements planner make?
A. Add an execution job to the capability with lambda:InvokeFunction as the activity and * as the head.
B. Add an execution job to the capability with lambda:InvokeFunction as the activity and Service:amazonaws.com as the head.
C. Add an asset-based strategy to the capability with lambda:’* as the activity and Service:events.amazonaws.com as the head.
D. Add an asset-based strategy to the capability with lambda:InvokeFunction as the activity and Service:events.amazonaws.com as the head.
Right Answer: D
2.) A business re-appropriates its marketplace analytics management as outsider accomplices. The merchant requires confined automatic admittance to the organization’s record’s assets. All important strategies have been laid out to guarantee satisfactory access.
Which new part gives the merchant the MOST SECURE admittance to the record?
A. Stop the occasion outside the application’s accessibility window. Fire up the occasion again when required.
B. Sleep the occurrence outside the application’s accessibility window. Fire up the occasion again when required.
C. Use Auto Scaling to downsize the example outside the application’s accessibility window. Increase the example when required.
D. End the occurrence outside the application’s accessibility window. Send off the case by utilizing a preconfigured Amazon Machine Image (AMI) when required.
Right Answer: B
3.) A firm tries to move its bookkeeping framework from an on-premises server farm to an Amazon Web Services (AWS) Region. Information security and an unalterable review log ought to be focused on. All AWS exercises should be exposed to consistency reviews. Notwithstanding the way that the business has empowered AWS CloudTrail, it needs to ensure that it meets these necessities.
What insurances and security methods should an arrangements engineer incorporate to safeguard and get CloudTrail? (Pick two.)
A. Make a second S3 can in us-east-1. Empower S3 Cross-Region Replication from the current S3 can to the second S3 can.
B. Make a cross-beginning asset sharing (CORS) design of the current S3 container. Determine us-east-1 in the CORS rule’s AllowedOrigin component.
C. Make a second S3 container in us-east-1 across numerous Availability Zones. Make an S3 Lifecycle the board rule to save photographs into the second S3 pail.
D. Make a second S3 container in us-east-1 to store the recreated photographs. Design S3 occasion warnings on object creation and update occasions that summon an AWS Lambda capability to duplicate photographs from the current S3 can to the second S3 can.
Right Answer: A
4.) A firm keeps an accessible stock of things on its site. The information is put away in an Amazon RDS for MySQL data set in a table with over ten million sections. The information base is kept on a two-terabyte (TB) General Purpose Solid State Drive (gp2) cluster. The organization’s site gets a large number of updates to this information every day. The business found that a few undertakings required 10 seconds or longer and verified that the bottleneck was the information base capacity execution.
Which of the accompanying choices meets the presentation necessity?
A. Design a VPC endpoint for Amazon S3. Add a passage to the confidential subnet’s course table for the S3 endpoint.
B. Design a NAT passage in a public subnet. Arrange the confidential subnet’s course table to utilize the NAT door.
C. Design Amazon S3 as a record framework mount point on the EC2 cases. Access Amazon S3 through the mount.
D. Move the EC2 cases into a public subnet. Design the public subnet course table to highlight a web passage.
Right Answer: B
5.) A business that is presently facilitating a web application on-premises is ready to change to AWS and send off a fresher form of the application. The association should course demands to the AWS or on-premises application in light of the URL question string. The on-premises application is delivered inaccessible over the web, and a VPN association is laid out between Amazon VPC and the business’ server farm. The organization wishes to send this application utilizing a heap balancer (ALB).
Which of the accompanying arrangements meets these standards?
A. Use AWS Snowball Edge gadgets to process and store the pictures.
B. Transfer the pictures to Amazon Simple Queue Service (Amazon SQS) during irregular network to EC2 examples.
C. Arrange Amazon Kinesis Data Firehose to make different conveyance streams pointed independently at the S3 pails for capacity and the EC2 examples for handling the pictures.
D. Use AWS Storage Gateway pre-introduced on an equipment machine to reserve the pictures locally for Amazon S3 to deal with the pictures when the network opens up.
Right Answer: A
6.) A meteorological new business has made a custom web application fully intent on offering climate information to its individuals on the web. The organization at present purposes Amazon DynamoDB to store its information and wishes to lay out another help that cautions the chiefs of four inner groups at whatever point another climate occasion is recorded. The business doesn’t maintain that this new assistance should impede the activity of the current application.
What steps should an arrangements planner take to ensure that these targets are happy with the MINIMUM doable functional above?
A. Make a DynamoDB table in on-request limit mode.
B. Make a DynamoDB table with a worldwide optional list.
C. Make a DynamoDB table with provisioned limit and auto-scaling.
D. Make a DynamoDB table in provisioned limit mode, and design it as a worldwide table.
Right Answer: A
7.) A company utilizes an AWS application to offer substance to its endorsers around the world. Various Amazon EC2 occurrences are conveyed on a private subnet behind an Application Load Balancer for the application (ALB). The central data official (CIO) wishes to restrict admittance to a country because of a new change in copyright guidelines.
Which game-plan will fulfill these models?
A. Alter the ALB security gathering to deny approaching traffic from obstructed nations.
B. Alter the security bunch for EC2 examples to deny approaching traffic from obstructed nations.
C. Use Amazon CloudFront to serve the application and deny admittance to hindered nations.
D. Use ALB audience rules to return access denied reactions to approaching traffic from obstructed nations.
Right Answer: C
Explanation: “block access for specific nations.” You can utilize geo-limitation, otherwise called geo-hindering, to keep clients in unambiguous geographic areas from getting to content that you’re conveying through a CloudFront web dispersion.
Utilizing seven Amazon EC2 occasions, a business runs its web application on AWS. The association needs that DNS inquiries give the IP locations of all sound EC2 cases.
Refer to: Restricting the geographic distribution of your content
8.) Which strategy ought to be utilized to consent to this expectation?
A. Latency routing policy
B. Simple routing policy
C. Geolocation routing policy
D. Multi-value routing policy
Right Answer: D
9.) Every day, a partnership gathers information from a huge number of customers adding up to around 1′. The firm conveys use records throughout the previous year to its clients. To satisfy administrative and examining guidelines, all client information should be held for no less than five years.
Which of the following storage option is the CHEAPEST?
A. Store the information in Amazon S3 Standard. Set a lifecycle rule to change the information to S3 Glacier Deep Archive following 1 year. Set a lifecycle rule to erase the information following 5 years.
B. Store the information in Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA). Set a lifecycle rule to progress the information to S3 Glacier following 1 year. Set the lifecycle rule to erase the information following 5 years.
C. Store the information in Amazon S3 Standard. Set a lifecycle rule to progress the information to S3 Standard-Infrequent Access (S3 Standard-IA) following 1 year. Set a lifecycle rule to erase the information following 5 years.
D. Store the information in Amazon S3 Standard. Set a lifecycle rule to change the information to S3 One Zone-Infrequent Access (S3 One Zone-IA) following 1 year. Set a lifecycle rule to erase the information following 5 years.
Right Answer: A
Explanation: Examples of S3 Lifecycle configuration
10.) A business involves an Amazon RDS for PostgreSQL data set as an example to deal with an armada of web servers. Following a typical consistency survey, the organization lays out a standard requiring all creation data sets to have a recuperation point objective (RPO) of short of one second.
Which arrangement fulfills these models?
A. Empower a Multi-AZ sending for the DB occurrence.
B. Empower auto-scaling for the DB occasion in one Availability Zone.
C. Design the DB occurrence in one Availability Zone, and make various read imitations in a different Availability Zone.
D. Arrange the DB occasion in one Availability Zone, and design AWS Database Migration Service (AWS DMS) to change information catch (CDC) errands.
Right Answer: A
Explanation: Implementing a disaster recovery strategy with Amazon RDS
11.) On Amazon EC2 occasions, a business is fostering an application that makes temporary value-based information. Admittance to information capacity that can convey flexible and reliable IOPS is expected by the application.
What suggestions should an arrangements engineer make?
A. Arrangement of an EC2 example with a Throughput Optimized HDD (st1) root volume and a Cold HDD (sc1) information volume.
B. Arrangement of an EC2 example with a Throughput Optimized HDD (st1) volume that will act as the root and information volume.
C. Arrangement of an EC2 example with a General Purpose SSD (gp2) root volume and Provisioned IOPS SSD (io1) information volume.
D. Arrangement of an EC2 example with a General Purpose SSD (gp2) root volume. Design the application to store its information in an Amazon S3 container.
Right Answer: C
12.) To permit perfect continuous handling, a web application should endure request information to Amazon S3. An arrangements modeler should plan a versatile and shortcoming lenient engineering.
Which arrangements fulfill these standards? (Select two.)
A. Compose the request occasion to an Amazon DynamoDB table. Use DynamoDB Streams to set off an AWS Lambda capability that parses the payload and composes the information to Amazon S3.
B. Compose the request occasion to an Amazon Simple Queue Service (Amazon SQS) line. Utilize the line to set off an AWSLambda capability that parses the payload and composes the information to Amazon S3.
C. Compose the request occasion to an Amazon Simple Notification Service (Amazon SNS) point. Utilize the SNS point to set off an AWS Lambda capability that parses the payload and composes the information to Amazon S3.
D. Compose the request occasion to an Amazon Simple Queue Service (Amazon SQS) line. Utilize an Amazon EventBridge (Amazon CloudWatch Events) rule to set off an AWS Lambda capability that parses the payload and composes the information to Amazon S3.
E. Compose the request occasion to an Amazon Simple Notification Service (Amazon SNS) point. Utilize an Amazon EventBridge (Amazon CloudWatch Events) rule to set off an AWS Lambda capability that parses the payload and composes the information to Amazon S3.
Right Answer: AC
13.) A business in the us-east-1 locale offers an image facilitating administration. Clients from numerous nations might transfer and peruse pictures utilizing the program. A few photos get a high volume of perspectives over months, while others get a low volume of perspectives for under seven days. The program upholds picture transfers of up to 20 MB in size. They help figure out which photos to show to every client in light of the photograph data.
Which choice conveys the cost-effective admittance to reasonable clients?
A. Store the photographs in Amazon DynamoDB. Turn on DynamoDB Accelerator (DAX) to reserve habitually saw things.
B. Store the photographs in the Amazon S3 Intelligent-Tiering stockpiling class. Store the photograph metadata and its S3 area in DynamoDB.
C. Store the photographs in the Amazon S3 Standard capacity class. Set up an S3 Lifecycle strategy to move photographs more seasoned than 30 days to the S3 Standard-Infrequent Access (S3 Standard-IA) stockpiling class. Utilize the article labels to monitor metadata.
D. Store the photographs in the Amazon S3 Glacier stockpiling class. Set up an S3 Lifecycle strategy to move photographs more established than 30 days to the S3 Glacier Deep Archive stockpiling class. Store the photograph metadata and its S3 area in Amazon Elasticsearch Service (Amazon ES).
Right Answer: B
Explanation: Using Amazon S3 storage classes
14.) A business is making a site that will store static photographs in an Amazon S3 container. The organization will probably lessen both idleness and cost for every single future solicitation.
How could an arrangements designer propose a help setup?
A. Send a NAT server before Amazon S3.
B. Send Amazon CloudFront before Amazon S3.
C. Send a Network Load Balancer before Amazon S3.
D. Arrange Auto Scaling to change the limit of the site consequently.
Right Answer: B
Explanation: Deliver Content Faster
15.) For the data set a layer of its eCommerce site, a firm purposes Amazon DynamoDB with gave throughput. During streak deals, clients might experience times of postponement when the information base can’t deal with the volume of exchanges. Subsequently, the business loses exchanges. The information base works typically during standard times.
Which approach settles the organization’s exhibition issue?
A. Change DynamoDB to on-request mode during streak deals.
B. Execute DynamoDB Accelerator for quick in-memory execution.
C. Use Amazon Kinesis to line exchanges for handling to DynamoDB.
D. Use Amazon Simple Queue Service (Amazon SQS) to line exchanges to DynamoDB.
Right Answer: A
16.) A critical media enterprise utilizes AWS to have a web application. The organization expects to start reserving secret media documents to give reliable admittance to them to shoppers around the world. Amazon S3 pails are utilized to store the material. The association should supply material quickly, no matter what the beginning of the solicitations.
Which arrangement will fulfill these rules?
A. Use AWS DataSync to interface the S3 pails to the web application.
B. Send AWS Global Accelerator to associate the S3 containers to the web application.
C. Convey Amazon CloudFront to associate the S3 containers to CloudFront edge servers.
D. Use Amazon Simple Queue Service (Amazon SQS) to associate the S3 cans to the web application.
Right Answer: C
17.) In the AWS Cloud, a web application is conveyed. It is a two-level plan that included a web and information base layer. Cross-website prearranging (XSS) assaults are conceivable on the web server.
What is the best strategy for an arrangements planner to take to address the weakness?
A. Make a Classic Load Balancer. Put the web layer behind the heap balancer and empower AWS WAF.
B. Make a Network Load Balancer. Put the web layer behind the heap balancer and empower AWS WAF.
C. Make an Application Load Balancer. Put the web layer behind the heap balancer and empower AWS WAF.
D. Make an Application Load Balancer. Put the web layer behind the heap balancer and use AWS Shield Standard.
Right Answer: C
Explanation: Working with cross-site prearranging match conditions
Attackers some of the time embed scripts into web demands with the end goal to take advantage of weaknesses in web applications. You can make at least one cross-web page prearranging match conditions to recognize the pieces of web demands, for example, the URI or the question string, that you believe AWS WAF Classic should assess for conceivable noxious contents. Later all the while, when you make a web ACL, you indicate whether to permit or impede demands that seem to contain malignant contents.
Web Application Firewall –
You can now utilize AWS WAF to safeguard your web applications on your Application Load Balancers. AWS WAF is a web application firewall that safeguards your web applications from normal web takes advantage that could influence application accessibility, compromise security, or consume unnecessary assets.
Refer to: Working with cross-site scripting match conditions, Elastic Load Balancing features
18.) On its site, a business keeps an accessible store of things. The information is put away in a table with north of ten million lines in an Amazon RDS for MySQL data set. The data set is put away on a 2 TB General Purpose SSD (gp2) exhibit. Consistently, the organization’s site gets a great many changes to this information. The association observed that specific exercises were requiring ten seconds or more and inferred that the bottleneck was the data set capacity execution.
Which choice fulfills the presentation necessity?
A. Change the capacity type to Provisioned IOPS SSD (io1).
B. Change the example to a memory-streamlined occurrence class.
C. Change the case to a burstable presentation DB occasion class.
D. Empower Multi-AZ RDS read reproductions with MySQL local offbeat replication.
Right Answer: A
19.) A business is ready to utilize Amazon S3 to store delicate information. Information should be scrambled very still for consistency purposes. Examining encryption key use is required. Every year, keys should be turned.
Which arrangement fulfills these boundaries and is the MOST OPTIMAL concerning functional productivity?
A. Server-side encryption with client gave keys (SSE-C)
B. Server-side encryption with Amazon S3 oversaw keys (SSE-S3)
C. Server-side encryption with AWS KMS (SSE-KMS) client ace keys (CMKs) with manual turn
D. Server-side encryption with AWS KMS (SSE-KMS) client ace keys (CMKs) with programmed turn
Right Answer: D
20.) The management needs a synopsis of AWS billed things broken down by the consumer as a feature of their spending plan arranging process. Spending plans for offices will be made utilizing the information. An arrangements engineer should learn the best technique for getting this report information.
Which arrangement fulfills these rules?
A. Run a question with Amazon Athena to create the report.
B. Make a report in Cost Explorer and download the report. Generally Voted
C. Access the bill subtleties from the charging dashboard and download the bill.
D. Change an expense spending plan in AWS Budgets to caution with Amazon Simple Email Service (Amazon SES).
Right Answer: B