AWS Certified Solutions Architect Associate - Practice Exam 2

An application that requires extremely high throughput and low latencies must be configured with an Elastic Load Balancer (ELB) behind it. The connections will be made using the TCP protocol, and the ELB must support load balancing to multiple ports on an instance. Which ELB should we use?

An application must be highly responsive with optimized retrieval times. You’re looking for a persistent data store that can provide the required performance. What AWS service would you recommend from the list below for this requirement?

A recent security audit uncovered some poor deployment and configuration practices within your VPC. How can we ensure that our AWS applications are deployed with secure configurations in the most operationally efficient manner?

A large (2GB) file needs to be uploaded to an S3 bucket. What is the recommended way to upload a single large file to an S3 bucket?

We must install some custom software on a fleet of Amazon EC2 instances. The installation will be initiated using some scripts. What feature lets us specify the software’s scripts during the EC2 instance launch?

Which AWS service can assist with coordinating tasks across distributed application components to create the business process workflows?

A database uses a multi-threaded, in-memory caching layer to improve performance for repeated queries. If we want to migrate it to the AWS cloud, which AWS would be the most suitable to use?

An application currently stores all data on Amazon EBS volumes. We must back up all EBS volumes durably across multiple Availability Zones. What is the MOST resilient way to back up volumes?

What is one benefit of using reserved instances?

How can we move an AWS account to another AWS Organization?

Using Route 53 Alias records, what targets can you specify to make them publicly addressable? (Select TWO)

An application receives malicious traffic from some suspicious IP addresses under the same CIDR range. What should we do to solve this problem?

Which of these services does Amazon Route 53 provide? (Select TWO)

Which AWS service lets you add user sign-up, sign-in, and access control to web and mobile apps?

The users of a website are located worldwide, and we need to optimize real-time streaming and on-demand video performance. Which service should we choose?

The data scientists in your company are looking for a service that can process and analyze real-time streaming data, using standard SQL queries to query the streaming data. Which combination of AWS services would deliver these requirements?

We are designing an application that includes an Auto Scaling group of Amazon EC2 Instances running behind an Elastic Load Balancer. All the web servers must be accessible only through the Elastic Load Balancer, and none of them directly from the Internet. How should the Architect meet these requirements?

Which AWS service can a Solutions Architect recommend to a company that wants to move to the AWS Cloud and wants a software version control tool?

What is the best PaaS service provided by AWS to quickly deploy a .NET application while maintaining full control of the underlying resources?

An application runs on a series of EC2 instances in an Auto Scaling group running in a private subnet. How can we enable the application to download software updates from the Internet involving minimal ongoing systems management effort?

A company in the same region uses three Amazon VPCs, and the company connects to them using an AWS Direct Connect. How can the required connectivity be configured after creating an AWS Direct Connect gateway?

A team of data scientists performs complex queries on a data warehouse that take several hours to complete. Another team of scientists needs to run fast, repeat queries and update BI dashboards. Which service delivers these requirements MOST cost-effectively for the two use cases?

A DynamoDB database you manage is randomly experiencing heavy read requests that are causing latency. What is the simplest way to mitigate the performance issues?

We need to connect from an office location to a Linux instance running in a public subnet in an Amazon VPC using the Internet. Which of the following items are required to enable this access? (Select TWO)

We want to create a website that contains mitigation techniques for distributed denial-of-service (DDoS). Which of the following are the BEST practices to help ensure the availability of the services is not compromised in an attack? (Select TWO)

An application runs on Amazon EC2 instances in an Auto Scaling group behind an Application Load Balancer (ALB). AWS WAF is being used to protect against SQL injection attacks, but some security logs revealed an external malicious IP that must be blocked from accessing the website. How can we do it?

What is the most secure and reliable method for gathering the source, destination, and traffic protocol that reached an Amazon Elastic Load Balancer?

In an application to upload and download files, we will access files older than two years less frequently. How can we ensure that the application can scale to any number of files while maintaining high availability and durability?

A Solutions Architect needs to temporarily deploy a large number of EC2 instances, which must be available for a short period of time until an analytics job is completed. If job completion is not time-critical, what is likely to be the MOST cost-effective choice of EC2 instance type to use for this requirement?

We want to migrate a static website to AWS. The website must load quickly for global users, and the solution must also be cost-effective. What should a solutions architect do to accomplish this?

When using throttling controls with API Gateway, what happens when request submissions exceed the steady-state request rate and burst limits?

To increase application performance and redundancy, a company has decided to run multiple implementations in different AWS Regions behind network load balancers. The company currently advertises the application using two public IP addresses from separate /24 address ranges and would prefer not to change these. We should direct users to the closest available application endpoint. Which actions should a solutions architect take? (Select TWO)

A developer team wants to migrate a Microsoft SQL Server database to an Amazon RDS instance. How can they perform this migration with minimal administrative effort and downtime?

An operations team wants to be notified if an RDS database exceeds certain metric thresholds. How can a Solutions Architect automate this process for the operations team?

What advantages do NAT Gateways have over NAT Instances if we enable Internet access for EC2 instances in a private subnet? (Select TWO)

A solutions architect is creating a system that will run analytics on marketing data for 6 hours a night, three days a week, always for the same duration for one year, and cannot be interrupted once it is started. Which type of Amazon EC2 instances should be used to reduce the cost of the system?

An on-premises application uses Network File System shares and must access critical data frequently without code changes. Which storage solution should a Solutions Architect recommend to maximize availability and durability?

An application receives and processes files of around 4GB in size. The application extracts metadata from the files, typically taking a few seconds for each file, with times of little activity and multiple uploads within a short period. What architecture should we use to have the most cost-efficient solution?

Over 500 TB of data must be analyzed using standard SQL business intelligence tools. The dataset consists of a combination of structured data and unstructured data. The unstructured data is small and stored on Amazon S3. Which combination of AWS services is most suitable for performing analytics on the data?

Several Amazon EC2 Spot instances (remember that AWS can terminate the instance whenever they want) are being used to process messages from an Amazon SQS queue and store results in an RDS table. Shortly after picking up a message from the queue, AWS terminated the Spot instance without processing the message. What will happen to the message?

A document submission application will use an Amazon S3 bucket for storage. The solution must prevent accidental deletion of the documents and ensure that all versions of the documents are available. Users must be able to upload and modify the documents. Which combination of actions should be taken to meet these requirements? (Select TWO)

Can you mark two benefits provided by Amazon CloudFront? (Select TWO)

The computer layer of an application to upload images for viewing online is behind an Auto Scaling Group. This layer should be decoupled from the front end, and the Auto Scaling Group needs to adjust dynamically based on the number of images uploaded. How can we do it?

An application will read and write data to a database. The company wants to deploy the application in three different AWS Regions in an active-active configuration, and the databases need to replicate to keep information in sync. Which solution best meets these requirements?

Which of the statements below are correct regarding the default state of the Network ACL before creating any rule? (Select TWO)

A new security mandate requires all personnel data held in the cloud to be encrypted at rest. Which two methods allow you to encrypt data stored in S3 buckets at rest cost-efficiently? (Select TWO)

An application uses Amazon EC2 instances in a single Availability Zone and users connect over Layer 4. We need to make the architecture highly available and also more cost-effective. How can we best meet these requirements? (Select TWO)

A compute layer of a serverless application will manage requests from external systems, orchestrate serverless workflows, and execute the business logic. Which services should be used for the compute layer? (Select TWO)

A customer runs an API that receives around 1,000 requests each day and has an average response time of 50 ms, and it’s hosted on an EC2 instance. How can high availability be added to the architecture at the LOWEST cost?

We want to design the infrastructure to run an application on Amazon EC2 instances, which requires high availability and must dynamically scale based on demand to be cost-efficient. How can we best meet these requirements?

A retail company with many stores and warehouses is implementing IoT sensors to gather monitoring data from devices in each location. The data will be sent to AWS in real-time. We must provide a solution that ensures that the events are received for each device, and the data is saved for future processing. Which solution would be MOST efficient?

A static website is required to use the zone apex of a DNS domain (e.g., fullcertified.com). Which steps should we take to implement a scalable and cost-effective solution using the Amazon Route 53 service? (Select TWO)

Every time an Amazon DynamoDB table item is modified, we must retain a record for compliance reasons. What is the most efficient solution to recording this information?

An application runs on Amazon EC2 instances behind an Application Load Balancer, and its instances run in an Amazon EC2 Auto Scaling Group across multiple Availability Zones. The Auto Scaling group scales up to 20 instances during work hours, but it scales down to 2 instances at night. The application is very slow when the day begins, although it runs well by mid-morning. What should we implement to solve this problem and keep the cost to the minimum?

A company has 500 TB of data in an on-premises file share that needs to be moved to Amazon S3 Glacier. The migration must not saturate the company’s low-bandwidth internet connection, and the company must complete it within a few weeks. What is the MOST cost-effective solution?