AWS Certified Solutions Architect Associate - Practice Exam 3
How can a user track memory usage on an Amazon EC2 instance?
Which transport protocols are supported for Amazon SNS? (Select TWO)
Which AWS service can you use to install a third-party database which is not PostgreSQL, MySQL, Aurora, MariaDB, Oracle, or SQL Server?
Amazon Cognito is used for the authentication, authorization, and user management of an application using DynamoDB as the database layer. The users sign in with their Google Accounts. To securely store data in DynamoDB, the design should use temporary AWS credentials. What feature of Amazon Cognito is used to obtain temporary credentials to access AWS services?
A new relational database is being deployed on AWS, with unknown performance requirements. Which database service does not require you to make capacity decisions upfront?
What AWS feature can act as an instance-level firewall to control traffic between your EC2 instances?
A company needs to ensure that they can failover between AWS Regions in the event of a disaster seamlessly with minimal downtime and data loss. The applications will run in an active-active configuration. Which Disaster Recovery strategy should the company use?
We require a high-performance file system for a video processing application. The storage solution must have seamless integration with S3 objects so that we can access them as files. Which storage solution should we use?
A company is migrating an on-premises 10 TB MySQL database to AWS. The company expects the database to quadruple in size and the business requirement is that replicate lag must be kept under 100 milliseconds. Which Amazon RDS engine meets these requirements?
What is the best possible way to help a SysOps team track changes made to the infrastructure services and roll back when any problem occurs?
A solution needs to encrypt data in Amazon S3, and the encryption keys must be generated and managed on-premise (because of some regulations from the client). Which solution should we use to meet the security requirements?
To enhance the security of an Amazon ElastiCache for the Redis cluster, a password should be required to access the database. What should the solutions architect use?
One of the company’s on-premise applications stores files on a Windows file server farm that uses Distributed File System Replication (DFSR) to keep data in sync. We need to replace the file server farm with a cloud solution. Which service should we use?
A data lake solution in Amazon S3 makes infrequent SQL queries only. Which AWS service should be used to minimize infrastructure costs?
Which service can be used to move exabytes of data into AWS cost-effectively?
An application needs to retain information about each user session. How could we do that with an Elastic Load Balancer (ELB)?
Which AWS service can automatically scale your application’s number of instances?
You are planning to deploy a number of EC2 instances in your VPC. You will deploy the EC2 instances across several subnets and multiple AZs. What AWS feature can act as an instance-level firewall to control traffic between your EC2 instances?
Your company’s security team would like to gain visibility into user activity by recording API calls made within the company’s AWS account (all AWS regions). The information that is logged must be encrypted. How will you implement this request? (Select TWO)
Which metrics does Amazon CloudWatch monitor about AWS Lambda? (Select TWO)
A team planning to run analytics jobs on log files daily requires a storage solution for only 24 hours. The size and number of logs are unknown. What is the MOST cost-effective solution?
Which AWS technology do you recommend if you need to implement a feature where you need to search on complex NoSQL data?
Which Amazon EC2 billing option gives you low cost, maximum flexibility, no upfront costs or commitment, and you only pay for what you use?
Which service supports the resolution of public domain names to IP addresses or AWS resources?
Which service can be used to create interactive graph applications?
Which AWS service helps customers meet corporate, contractual, and regulatory compliance requirements for data security by using dedicated hardware appliances within the AWS Cloud?
We need to send a text message to users every time they sign up for an event (on a web page for event registrations). Which AWS-managed service should we use to achieve this?
A tool needs to analyze data stored in an Amazon S3 bucket. Processing the data takes a few seconds, and results are then written to another S3 bucket, requiring less than 256 MB of memory to run the process. What would be the MOST cost-effective solution for this use case?
A website with dynamic and static content runs on Amazon EC2 instances behind an Application Load Balancer (ALB). Customers around the world are reporting performance issues with the website. How can we improve the website performance for users worldwide?
Users will use a mobile application to access confidential data, and it’s using Amazon Cognito for authentication, authorization, and user management. Due to the sensitivity of the data, there is a requirement to add another method of authentication in addition to a username and password. What method would you recommend?
A company wants to allow users to access some data stored in an RDS database using an API. We must create a solution that allows sporadic access to the data, ranging from no requests to large bursts of traffic. Which solution should we use?
We need to backup some application log files to Amazon S3. It is unknown how often the logs will be accessed or which logs will be accessed the most, but we must keep costs as low as possible by using the appropriate S3 storage class. Which S3 storage class meets these requirements?
We want to design a serverless application’s monitoring system and deployment layers. The system monitoring layer will record logs and metrics, and the deployment layer will deploy the application stack and manage workload changes through a release management process. Which AWS services and frameworks are the most appropriate for these two purposes? (Select TWO)
A high-performance computing (HPC) application will be migrated to the AWS Cloud. The company uses high-performance parallel storage to support the application and more economical cold storage to hold the data when the application is not actively running. Which combination of services should we use to support the application's storage needs? (Select TWO)
What actions will take place if an outage occurs in the Availability Zone of an Amazon RDS Multi-AZ instance? (Select TWO)
When creating an AWS account, a default security group is also created within the default VPN. What settings are configured within this security group by default? (Select TWO)
A company delivers content to subscribers distributed globally from an application that uses a fleet of Amazon EC2 instances behind an Application Load Balancer (ALB). We need to block access to the application for specific countries. What is the EASIEST method to meet this requirement?
A company requires that all the personnel data in the AWS cloud is encrypted at rest. Which two methods allow you to encrypt data stored in S3 buckets at rest cost-efficiently? (Select TWO)
A highly-scalable system contains records that must remain available for immediate download for three months, and then the records must be deleted. What’s the most appropriate decision for this use case?
An Auto Scaling Group is unable to respond quickly enough to load changes resulting in lost messages from another application tier. The messages are typically around 128KB in size. What is the best design option to prevent the messages from being lost?
An application consists of AWS Lambda as the backend and Amazon RDS Aurora MySQL as the database. The Lambda function must use database credentials to authenticate to MySQL, but the lambda function must not store these credentials by itself. How can we securely store the database credentials and make them available to the function?
An application that you will be deploying in your VPC requires 20 EC2 instances of different types, and they must be placed on distinct underlying hardware to reduce the impact of the failure of a hardware node. What configuration will meet these requirements taking cost-effectiveness into account?
We are creating a database architecture that will run across multiple Amazon EC2 instances. Data will be replicated across all instances, so an instance’s loss will not cause data loss. Each EC2 server requires block storage with low latency and throughput that supports up to several million transactions per second. Which storage solution should we use?
Your Network Load Balancer (NLB) in one of your VPCs is not distributing traffic evenly between EC2 instances in your AZs. There are an odd number of EC2 instances spread across two AZs. The NLB is configured with a TCP listener on port 80 and is using active health checks. What is the most likely problem?
How can we make that an Auto Scaling Group can dynamically scale based on the number of messages in an SQS queue?
An EC2 instance needs to support a MapReduce process that requires high throughput for a large dataset with large I/O sizes. Which Amazon EBS volume is the MOST cost-effective solution for these requirements?
The data of a legacy database is stored on a 2000GB Amazon EBS (GP2) volume inside an EC2 instance, but we have realized that logs show excessive disk waiting time at peak load times. What should be implemented to improve database performance with persistent storage?
An application generates a large amount of data that is being stored on S3. We must understand customer behavior by running complex analytics queries against the data. Which AWS service can be used for this requirement?
We want to apply encryption to an Amazon RDS MySQL for all new and existing data. How can we do that?
What must we specify in an AWS CloudFormation template to associate an EBS block store volume with an EC2 instance?
An AWS Organization has an organizational unit (OU) with multiple member accounts. The company needs to restrict the ability to launch only specific Amazon EC2 instance types. How can this policy be applied across the accounts with the least effort?
A company is planning to migrate an API on a Linux server to the AWS cloud. They require a highly available, scalable, and cost-effective solution. What should a Solutions Architect recommend?
We plan to develop a new platform using Docker containers in a micro-services architecture in the AWS Cloud. For operational reasons, it will be necessary to access the OS of the instances on which the containers run. Which solution delivery option should we select?
An on-premise application stores large media files. The data is mounted to different servers using either the SMB or NFS protocols. Which solution would allow it to offload the data set into the cloud while retaining a local cache for frequently accessed content?
A database that uses an Amazon RDS MySQL instance in a multi-AZ configuration experiences heavy load on the database layer, and customers have been complaining about poor response times because of high read contention during peak hours of the day. What are two possible options that could be used to offload some of the read traffic from the database to resolve the performance issues? (Select TWO)
A web application runs on a fleet of Amazon EC2 instances in a Multi-AZ Autoscaling group behind an Application Load Balancer (ALB). The instances store data in an Amazon Aurora database. Which architecture would make the application more resilient to sporadic increases in request rates? (Select TWO)
A serverless application will accept images uploaded by users from around the world. The application will make API calls to back-end services and save the session state data of the user to a database. Which combination of services would provide a cost-effective solution while delivering the least latency?
A company needs to test its applications in 3 separate VPCs. A peering topology is configured with VPC-A peered with VPC-B and VPC-B with VPC-C. The development team wants to modify the process to release code directly from VPC-A to VPC-C. How can this be accomplished?
A web application is used by users in the United Kingdom and Australia. The application includes a database tier using a MySQL database hosted in eu-west-2 (London). The web tier runs from eu-west-2 and ap-southeast-2 (Sydney), using Amazon Route 53 geo proximity routing to direct users to the closest web tier. It has been noted that Australian users receive slow response times to queries. Which changes should be made to the database tier to improve performance?
We need to create a file system that can be concurrently accessed by multiple Amazon EC2 instances across multiple availability zones, supporting high throughput and the ability to burst. The data that we are going to store is sensitive, so it must be encrypted at rest and in transit. Which storage solution should the Solutions Architect use for the shared file system?
How can we reduce the interdependencies of an application where the front-end logic processes data and then passes it to a back-end to perform further processing so that failures don’t impact other components?
A website runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The website’s DNS records are hosted in Amazon Route 53, with the domain name pointing to the ALB. A solution is required for displaying a static error page if the website becomes unavailable. Which configuration should a solutions architect use to meet these requirements with the LEAST operational overhead?
An application that stores images on Amazon S3, processes them with AWS Lambda to add graphical elements. The processed images need to be available for users to download for 30 days, after which time they can be deleted. Processed images can be easily recreated from original images. The Original images need to be immediately available for 30 days and be accessible within 24 hours for another 90 days. Which combination of Amazon S3 storage classes is most cost-effective for the original and processed images? (Select TWO)
An application is auto-scaling the number of instances up and down multiple times in the same hour. What design changes would you implement to reduce scaling events and preserve elasticity cost-effectively? (Select TWO)
A company wants to log the access to some financial reports currently stored in Amazon S3. Also, they want to detect any modifications to these log files. Which actions should they take?