Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS SOLUTIONS ARCHITECT > Practice Test 1 > Flashcards

Practice Test 1 Flashcards

1
Q

Which of the following feature of an Amazon S3 bucket can only be suspended and not disabled once it have been enabled?

A) Versioning
B) Static Website Hosting
C) Requester Pays
D) Server Access Logging

A

A) Versioning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

The engineering team at an e-commerce company wants to establish a dedicated, encrypted, low latency, and high throughput connection between its data center and AWS Cloud. The engineering team has set aside sufficient time to account for the operational overhead of establishing this connection.

As a solutions architect, which of the following solutions would you recommend to the company?

A. Use site-to-site VPN to establish a connection between the data center and AWS Cloud
B. Use VPC transit gateway to establish a connection between the data center and AWS Cloud
C. Use AWS Direct Connect to establish a connection between the data center and AWS Cloud
D. Use AWS Direct Connect plus VPN to establish a connection between the data center and AWS Cloud

A

D. Use AWS Direct Connect plus VPN to establish a connection between the data center and AWS Cloud

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

A file-hosting service uses Amazon Simple Storage Service (Amazon S3) under the hood to power its storage offerings. Currently all the customer files are uploaded directly under a single Amazon S3 bucket. The engineering team has started seeing scalability issues where customer file uploads have started failing during the peak access hours with more than 5000 requests per second.

Which of the following is the MOST resource efficient and cost-optimal way of addressing this issue?

A. Change the application architecture to create customer-specific custom prefixes within the single bucket and then upload the daily files into those prefixed locations.
B. Change the application architecture to create a new S3 bucket for each customer and then upload each customer’s files directly under the respective buckets.
C. Change the application architecture to create a new S3 bucket for each day’s data and then upload the daily files directly under that day’s bucket.
D. Change the application architecture to use EFS instead of Amazon S3 for storing the customers’ uploaded files.

A

A. Change the application architecture to create customer-specific custom prefixes within the single bucket and then upload the daily files into those prefixed locations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

A new DevOps engineer has joined a large financial services company recently. As part of his onboarding, the IT department is conducting a review of the checklist for tasks related to AWS Identity and Access Management (AWS IAM).

As an AWS Certified Solutions Architect – Associate, which best practices would you recommend (Select two)?

A. Enable MFA for privileged users
B. Configure AWS CloudTrail to record all account activity
C.Create a minimum number of accounts and share these account credentials among employees
D. Grant maximum privileges to avoid assigning privileges again
E. Use user credentials to provide access specific permissions for Amazon EC2 instances

A

A. Enable MFA for privileged users
B. Configure AWS CloudTrail to record all account activity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

A junior scientist working with the Deep Space Research Laboratory at NASA is trying to upload a high-resolution image of a nebula into Amazon S3. The image size is approximately 3 gigabytes. The junior scientist is using Amazon S3 Transfer Acceleration (Amazon S3TA) for faster image upload. It turns out that Amazon S3TA did not result in an accelerated transfer.

Given this scenario, which of the following is correct regarding the charges for this image transfer?

A. Store the intermediary query results in S3 Intelligent-Tiering storage class
B. Store the intermediary query results in S3 Standard-Infrequent Access storage class
C. Store the intermediary query results in S3 One Zone-Infrequent Access storage class
D. Store the intermediary query results in S3 Standard storage class

A

D. Store the intermediary query results in S3 Standard storage class

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

A geological research agency maintains the seismological data for the last 100 years. The data has a velocity of 1GB per minute. You would like to store the data with only the most relevant attributes to build a predictive model for earthquakes.

What AWS services would you use to build the most cost-effective solution with the LEAST amount of infrastructure maintenance?

A. Ingest the data in Kinesis Data Analytics and use SQL queries to filter and transform the data before writing to S3
B. Ingest the data in AWS Glue job and use Spark transformations before writing to S3
C. Ingest the data in a Spark Streaming Cluster on EMR use Spark Streaming transformations before writing to S3
D. Ingest the data in Kinesis Data Firehose and use a Lambda function to filter and transform the incoming stream before the output is dumped on S3

A

D. Ingest the data in Kinesis Data Firehose and use a Lambda function to filter and transform the incoming stream before the output is dumped on S3

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A US-based healthcare startup is building an interactive diagnostic tool for COVID-19 related assessments. The users would be required to capture their personal health records via this tool. As this is sensitive health information, the backup of the user data must be kept encrypted in Amazon Simple Storage Service (Amazon S3). The startup does not want to provide its own encryption keys but still wants to maintain an audit trail of when an encryption key was used and by whom.

Which of the following is the BEST solution for this use-case?

A. Use SSE-KMS to encrypt the user data on S3.
B. Use client-side encryption with client provided keys and then upload the encrypted user data to S3.
C. Use SSE-C to encrypt the user data on S3.
D. Use SSE-S3 to encrypt the user data on S3.

A

A. Use SSE-KMS to encrypt the user data on S3.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

A new DevOps engineer has just joined a development team and wants to understand the replication capabilities for Amazon RDS Multi-AZ deployment as well as Amazon RDS Read-replicas.

Which of the following correctly summarizes these capabilities for the given database?

A. Multi-AZ follows asynchronous replication and spans at least two Availability Zones within a single region. Read replicas follow asynchronous replication and can be within an Availability Zone, Cross-AZ, or Cross-Region.
B. Multi-AZ follows synchronous replication and spans at least two Availability Zones within a single region. Read replicas follow asynchronous replication and can be within an Availability Zone, Cross-AZ, or Cross-Region.
C. Multi-AZ follows asynchronous replication and spans one Availability Zone within a single region. Read replicas follow synchronous replication and can be within an Availability Zone, Cross-AZ, or Cross-Region.
D. Multi-AZ follows asynchronous replication and spans at least two Availability Zones within a single region. Read replicas follow synchronous replication and can be within an Availability Zone, Cross-AZ, or Cross-Region.

A

B. Multi-AZ follows synchronous replication and spans at least two Availability Zones within a single region. Read replicas follow asynchronous replication and can be within an Availability Zone, Cross-AZ, or Cross-Region.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

As part of a pilot program, a biotechnology company wants to integrate data files from its on-premises analytical application with AWS Cloud via an NFS interface.

Which of the following AWS service is the MOST efficient solution for the given use-case?

A. AWS Storage Gateway Tape Gateway
B. AWS Storage Gateway Volume Gateway
C. AWS Storage Gateway – File Gateway
D. AWS Site-to-Site VPN

A

C. AWS Storage Gateway – File Gateway

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

A company runs a data processing workflow that takes about 60 minutes to complete. The workflow can withstand disruptions and it can be started and stopped multiple times.

Which is the most cost-effective solution to build a solution for the workflow?

A) Use EC2 on-demand instances to run the workflow processes
B) Use EC2 reserved instances to run the workflow processes
C) Use AWS Lambda function to run the workflow processes
D) Use EC2 spot instances to run the workflow processes

A

D) Use EC2 spot instances to run the workflow processes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

A software engineering intern at an e-commerce company is documenting the process flow to provision Amazon EC2 instances via the Amazon EC2 API. These instances are to be used for an internal application that processes Human Resources payroll data. He wants to highlight those volume types that cannot be used as a boot volume.

Can you help the intern by identifying those storage volume types that CANNOT be used as boot volumes while creating the instances? (Select two)

A. Provisioned IOPS SSD (io1).
B. General Purpose SSD (gp2).
C. Throughput Optimized HDD (st1).
D. Cold HDD (sc1).
E. Instance Store.

A

C. Throughput Optimized HDD (st1).
D. Cold HDD (sc1).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

One of the biggest football leagues in Europe has granted the distribution rights for live streaming its matches in the USA to a silicon valley based streaming services company. As per the terms of distribution, the company must make sure that only users from the USA are able to live stream the matches on their platform. Users from other countries in the world must be denied access to these live-streamed matches.

Which of the following options would allow the company to enforce these streaming restrictions? (Select two)

A. Use Route 53 based latency routing policy to restrict distribution of content to only the locations in which you have distribution rights.
B. Use georestriction to prevent users in specific geographic locations from accessing content that you’re distributing through a CloudFront web distribution.
C. Use Route 53 based geolocation routing policy to restrict distribution of content to only the locations in which you have distribution rights.
D. Use Route 53 based failover routing policy to restrict distribution of content to only the locations in which you have distribution rights.
E. Use Route 53 based weighted routing policy to restrict distribution of content to only the locations in which you have distribution rights.

A

B. Use georestriction to prevent users in specific geographic locations from accessing content that you’re distributing through a CloudFront web distribution.
C. Use Route 53 based geolocation routing policy to restrict distribution of content to only the locations in which you have distribution rights.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

An organization wants to delegate access to a set of users from the development environment so that they can access some resources in the production environment which is managed under another AWS account.

As a solutions architect, which of the following steps would you recommend?

A. Create a new IAM role with the required permissions to access the resources in the production environment. The users can then assume this IAM role while accessing the resources from the production environment
B. Create new IAM user credentials for the production environment and share these credentials with the set of users from the development environmen
C. It is not possible to access cross-account resources
D. Both IAM roles and IAM users can be used interchangeably for cross-account access

A

A. Create a new IAM role with the required permissions to access the resources in the production environment. The users can then assume this IAM role while accessing the resources from the production environment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

A company is in the process of migrating its on-premises SMB file shares to AWS so the company can get out of the business of managing multiple file servers across dozens of offices. The company has 200 terabytes of data in its file servers. The existing on-premises applications and native Windows workloads should continue to have low latency access to this data which needs to be stored on a file system service without any disruptions after the migration. The company also wants any new applications deployed on AWS to have access to this migrated data.

Which of the following is the best solution to meet this requirement?

A) Use Amazon Storage Gateway’s File Gateway to provide low-latency, on-premises access to fully managed file shares in Amazon FSx for Windows File Server. The applications deployed on AWS can access this data directly from Amazon FSx in AWS

B) Use Amazon FSx File Gateway to provide low-latency, on-premises access to fully managed file shares in Amazon EFS. The applications deployed on AWS can access this data directly from Amazon EFS

C) Use Amazon FSx File Gateway to provide low-latency, on-premises access to fully managed file shares in Amazon FSx for Windows File Server. The applications deployed on AWS can access this data directly from Amazon FSx in AWS

D) Use Amazon Storage Gateway’s File Gateway to provide low-latency, on-premises access to fully managed file shares in Amazon S3. The applications deployed on AWS can access this data directly from Amazon S3

A

C) Use Amazon FSx File Gateway to provide low-latency, on-premises access to fully managed file shares in Amazon FSx for Windows File Server. The applications deployed on AWS can access this data directly from Amazon FSx in AWS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

A major bank is using Amazon Simple Queue Service (Amazon SQS) to migrate several core banking applications to the cloud to ensure high availability and cost efficiency while simplifying administrative complexity and overhead. The development team at the bank expects a peak rate of about 1000 messages per second to be processed via SQS. It is important that the messages are processed in order.

Which of the following options can be used to implement this system?

A. Use Amazon SQS FIFO queue in batch mode of 2 messages per operation to process the messages at the peak rate.
B. Use Amazon SQS FIFO queue to process the messages.
C. Use Amazon SQS FIFO queue in batch mode of 4 messages per operation to process the messages at the peak rate.
D. Use Amazon SQS standard queue to process the messages.

A

C. Use Amazon SQS FIFO queue in batch mode of 4 messages per operation to process the messages at the peak rate.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

The payroll department at a company initiates several computationally intensive workloads on Amazon EC2 instances at a designated hour on the last day of every month. The payroll department has noticed a trend of severe performance lag during this hour. The engineering team has figured out a solution by using Auto Scaling Group for these Amazon EC2 instances and making sure that 10 Amazon EC2 instances are available during this peak usage hour. For normal operations only 2 Amazon EC2 instances are enough to cater to the workload.

As a solutions architect, which of the following steps would you recommend to implement the solution?

A. Configure your Auto Scaling group by creating a scheduled action that kicks-off at the designated hour on the last day of the month. Set the desired capacity of instances to 10. This causes the scale-out to happen before peak traffic kicks in at the designated hour .
B. Configure your Auto Scaling group by creating a scheduled action that kicks-off at the designated hour on the last day of the month. Set the min count as well as the max count of instances to 10. This causes the scale-out to happen before peak traffic kicks in at the designated hour.
C. Configure your Auto Scaling group by creating a target tracking policy and setting the instance count to 10 at the designated hour. This causes the scale-out to happen before peak traffic kicks in at the designated hour.
D. Configure your Auto Scaling group by creating a simple tracking policy and setting the instance count to 10 at the designated hour. This causes the scale-out to happen before peak traffic kicks in at the designated hour.

A

A. Configure your Auto Scaling group by creating a scheduled action that kicks-off at the designated hour on the last day of the month. Set the desired capacity of instances to 10. This causes the scale-out to happen before peak traffic kicks in at the designated hour .

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

A retail company has developed a REST API which is deployed in an Auto Scaling group behind an Application Load Balancer. The REST API stores the user data in Amazon DynamoDB and any static content, such as images, are served via Amazon Simple Storage Service (Amazon S3). On analyzing the usage trends, it is found that 90% of the read requests are for commonly accessed data across all users.

As a Solutions Architect, which of the following would you suggest as the MOST efficient solution to improve the application performance?

A: Enable DynamoDB Accelerator (DAX) for DynamoDB and CloudFront for S3

B: Enable ElastiCache Redis for DynamoDB and CloudFront for S3

C: Enable DAX for DynamoDB and ElastiCache Memcached for S3

D: Enable ElastiCache Redis for DynamoDB and ElastiCache Memcached for S3

A

A: Enable DynamoDB Accelerator (DAX) for DynamoDB and CloudFront for S3

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

The flagship application for a gaming company connects to an Amazon Aurora database and the entire technology stack is currently deployed in the United States. Now, the company has plans to expand to Europe and Asia for its operations. It needs the games table to be accessible globally but needs the users and games_played tables to be regional only.

How would you implement this with minimal application refactoring?

A: Use an Amazon Aurora Global Database for the games table and use Amazon Aurora for the users and games_played tables

B: Use an Amazon Aurora Global Database for the games table and use DynamoDB tables for the users and games_played tables

C: Use a DynamoDB global table for the games table and use Amazon Aurora for the users and games_played tables

D: Use a DynamoDB global table for the games table and use DynamoDB tables for the users and games_played tables

A

A: Use an Amazon Aurora Global Database for the games table and use Amazon Aurora for the users and games_played tables

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

The engineering team at a Spanish professional football club has built a notification system for its website using Amazon Simple Notification Service (Amazon SNS) notifications which are then handled by an AWS Lambda function for end-user delivery. During the off-season, the notification systems need to handle about 100 requests per second. During the peak football season, the rate touches about 5000 requests per second and it is noticed that a significant number of the notifications are not being delivered to the end-users on the website.

As a solutions architect, which of the following would you suggest as the BEST possible solution to this issue?

A: Amazon SNS has hit a scalability limit, so the team needs to contact AWS support to raise the account limit

B: Amazon SNS message deliveries to AWS Lambda have crossed the account concurrency quota for Lambda, so the team needs to contact AWS support to raise the account limit

C: The engineering team needs to provision more servers running the SNS service

D: The engineering team needs to provision more servers running the Lambda service

A

B: Amazon SNS message deliveries to AWS Lambda have crossed the account concurrency quota for Lambda, so the team needs to contact AWS support to raise the account limit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

A video analytics organization has been acquired by a leading media company. The analytics organization has 10 independent applications with an on-premises data footprint of about 70TB for each application. The CTO of the media company has set a timeline of two weeks to carry out the data migration from on-premises data center to AWS Cloud and establish connectivity.

Which of the following are the MOST cost-effective options for completing the data transfer and establishing connectivity? (Select two)

A: Order 10 Snowball Edge Storage Optimized devices to complete the one-time data transfer

B: Setup AWS direct connect to establish connectivity between the on-premises data center and AWS Cloud

C: Setup Site-to-Site VPN to establish on-going connectivity between the on-premises data center and AWS Cloud

D: Order 1 Snowmobile to complete the one-time data transfer

E: Order 70 Snowball Edge Storage Optimized devices to complete the one-time data transfer

A

A: Order 10 Snowball Edge Storage Optimized devices to complete the one-time data transfer
C: Setup Site-to-Site VPN to establish on-going connectivity between the on-premises data center and AWS Cloud

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

The engineering team at a data analytics company has observed that its flagship application functions at its peak performance when the underlying EC2 instances have a CPU utilization of about 50%. The application is built on a fleet of EC2 instances managed under an Auto Scaling group. The workflow requests are handled by an internal Application Load Balancer that routes the requests to the instances. As a solutions architect, what would you recommend so that the application runs near its peak performance state?

A. Configure the Auto Scaling group to use target tracking policy and set the CPU utilization as the target metric with a target value of 50%.
B. Configure the Auto Scaling group to use simple scaling policy and set the CPU utilization as the target metric with a target value of 50%.
C. Configure the Auto Scaling group to use a Cloudwatch alarm triggered on a CPU utilization threshold of 50%.
D. Configure the Auto Scaling group to use step scaling policy and set the CPU utilization as the target metric with a target value of 50%.

A

A. Configure the Auto Scaling group to use target tracking policy and set the CPU utilization as the target metric with a target value of 50%

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

A healthcare company uses its on-premises infrastructure to run legacy applications that require specialized customizations to the underlying Oracle database as well as its host operating system (OS). The company also wants to improve the availability of the Oracle database layer. The company has hired you as an AWS Certified Solutions Architect Associate to build a solution on AWS that meets these requirements while minimizing the underlying infrastructure maintenance effort.

Which of the following options represents the best solution for this use case?

A: Deploy the Oracle database layer on multiple EC2 instances spread across two Availability Zones (AZ). This deployment configuration guarantees high availability and also allows the database administrators to access and customize the database environment and the underlying operating system

B: Leverage multi-AZ configuration of RDS Custom for Oracle that allows the database administrators to access and customize the database environment and the underlying operating system

C: Leverage multi-AZ configuration of RDS for Oracle that allows the database administrators to access and customize the database environment and the underlying operating system

D: Leverage cross AZ read-replica configuration of RDS for Oracle that allows the database administrators to access and customize the database environment and the underlying operating system

A

B: Leverage multi-AZ configuration of RDS Custom for Oracle that allows the database administrators to access and customize the database environment and the underlying operating system

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

An e-commerce company is looking for a solution with high availability, as it plans to migrate its flagship application to a fleet of Amazon EC2 instances. The solution should allow for content-based routing as part of the architecture.

As a Solutions Architect, which of the following will you suggest for the company?

A. Use a Network Load Balancer for distributing traffic to the EC2 instances spread across different Availability Zones. Configure a Private IP address to mask any failure of an instance
B. Use an Application Load Balancer for distributing traffic to the EC2 instances spread across different Availability Zones. Configure Auto Scaling group to mask any failure of an instance
C. Use an Auto Scaling group for distributing traffic to the EC2 instances spread across different Availability Zones. Configure an Elastic IP address to mask any failure of an instance
D. Use an Auto Scaling group for distributing traffic to the EC2 instances spread across different Availability Zones. Configure a Public IP address to mask any failure of an instance

A

B. Use an Application Load Balancer for distributing traffic to the EC2 instances spread across different Availability Zones. Configure Auto Scaling group to mask any failure of an instance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

An IT consultant is helping the owner of a medium-sized business set up an AWS account. What are the security recommendations he must follow while creating the AWS account root user? (Select two)

A. Create AWS account root user access keys and share those keys only with the business owner.
B. Enable Multi Factor Authentication (MFA) for the AWS account root user account.
C. Create a strong password for the AWS account root user.
D. Send an email to the business owner with details of the login username and password for the AWS root user. This will help the business owner to troubleshoot any login issues in future.
E. Encrypt the access keys and save them on Amazon S3.

A

B. Enable Multi Factor Authentication (MFA) for the AWS account root user account.
C. Create a strong password for the AWS account root user.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

A technology blogger wants to write a review on the comparative pricing for various storage types available on AWS Cloud. The blogger has created a test file of size 1GB with some random data. Next he copies this test file into AWS S3 Standard storage class, provisions an EBS volume (General Purpose SSD (gp2)) with 100GB of provisioned storage and copies the test file into the EBS volume, and lastly copies the test file into an EFS Standard Storage filesystem. At the end of the month, he analyses the bill for costs incurred on the respective storage types for the test file. What is the correct order of the storage charges incurred for the test file on these three storage types?

A. Cost of test file storage on EFS < Cost of test file storage on S3 Standard < Cost of test file storage on EBS.
B. Cost of test file storage on S3 Standard < Cost of test file storage on EFS < Cost of test file storage on EBS.
C. Cost of test file storage on S3 Standard < Cost of test file storage on EBS < Cost of test file storage on EFS.
D. Cost of test file storage on EBS < Cost of test file storage on S3 Standard < Cost of test file storage on EFS.

A

B. Cost of test file storage on S3 Standard < Cost of test file storage on EFS < Cost of test file storage on EBS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

A data analytics company measures what the consumers watch and what advertising they’re exposed to. This real-time data is ingested into its on-premises data center and subsequently, the daily data feed is compressed into a single file and uploaded on Amazon S3 for backup. The typical compressed file size is around 2 GB.

Which of the following is the fastest way to upload the daily compressed file into S3?

A: Upload the compressed file in a single operation

B: Upload the compressed file using multipart upload

C: FTP the compressed file into an EC2 instance that runs in the same region as the S3 bucket. Then transfer the file from the EC2 instance into the S3 bucket

D: Upload the compressed file using multipart upload with S3 transfer acceleration

A

D: Upload the compressed file using multipart upload with S3 transfer acceleration

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

An ivy-league university is assisting NASA to find potential landing sites for exploration vehicles of unmanned missions to our neighboring planets. The university uses High Performance Computing (HPC) driven application architecture to identify these landing sites.

Which of the following EC2 instance topologies should this application be deployed on?

A: The EC2 instances should be deployed in a spread placement group so that there are no correlated failures

B: The EC2 instances should be deployed in a partition placement group so that distributed workloads can be handled effectively

C: The EC2 instances should be deployed in a cluster placement group so that the underlying workload can benefit from low network latency and high network throughput

D: The EC2 instances should be deployed in an Auto Scaling group so that application meets high availability requirements

A

C: The EC2 instances should be deployed in a cluster placement group so that the underlying workload can benefit from low network latency and high network throughput

27
Q

A financial services company uses Amazon GuardDuty for analyzing its AWS account metadata to meet the compliance guidelines. However, the company has now decided to stop using GuardDuty service. All the existing findings have to be deleted and cannot persist anywhere on AWS Cloud.

Which of the following techniques will help the company meet this requirement?

A: Suspend the service in the general settings

B: De-register the service under services tab

C: Raise a service request with Amazon to completely delete the data from all their backups

D: Disable the service in the general settings

A

D: Disable the service in the general settings

28
Q

A logistics company is building a multi-tier application to track the location of its trucks during peak operating hours. The company wants these data points to be accessible in real-time in its analytics platform via a REST API. The company has hired you as an AWS Certified Solutions Architect Associate to build a multi-tier solution to store and retrieve this location data for analysis.

Which of the following options addresses the given use case?

A: Leverage Amazon Athena with S3

B: Leverage QuickSight with Redshift

C: Leverage Amazon API Gateway with Kinesis Data Analytics

D: Leverage Amazon API Gateway with AWS Lambda

A

C: Leverage Amazon API Gateway with Kinesis Data Analytics

29
Q

An IT security consultancy is working on a solution to protect data stored in S3 from any malicious activity as well as check for any vulnerabilities on EC2 instances.

As a solutions architect, which of the following solutions would you suggest to help address the given requirement?

A: Use Amazon GuardDuty to monitor any malicious activity on data stored in S3. Use security assessments provided by Amazon Inspector to check for vulnerabilities on EC2 instances

B: Use Amazon GuardDuty to monitor any malicious activity on data stored in S3. Use security assessments provided by Amazon GuardDuty to check for vulnerabilities on EC2 instances

C: Use Amazon Inspector to monitor any malicious activity on data stored in S3. Use security assessments provided by Amazon Inspector to check for vulnerabilities on EC2 instances

D: Use Amazon Inspector to monitor any malicious activity on data stored in S3. Use security assessments provided by Amazon GuardDuty to check for vulnerabilities on EC2 instances

A

A: Use Amazon GuardDuty to monitor any malicious activity on data stored in S3. Use security assessments provided by Amazon Inspector to check for vulnerabilities on EC2 instances

30
Q

A retail company’s dynamic website is hosted using on-premises servers in its data center in the United States. The company is launching its website in Asia, and it wants to optimize the website loading times for new users in Asia. The website’s backend must remain in the United States. The website is being launched in a few days, and an immediate solution is needed.

What would you recommend?

A: Use Amazon CloudFront with a custom origin pointing to the DNS record of the website on Route 53

B: Use Amazon CloudFront with a custom origin pointing to the on-premises servers

C: Migrate the website to Amazon S3. Use cross-Region replication between AWS Regions in the US and Asia

D: Leverage a Route 53 geo-proximity routing policy pointing to on-premises servers

A

B: Use Amazon CloudFront with a custom origin pointing to the on-premises servers

31
Q

The product team at a startup has figured out a market need to support both stateful and stateless client-server communications via the APIs developed using its platform. You have been hired by the startup as a solutions architect to build a solution to fulfill this market need using AWS API Gateway.

Which of the following would you identify as correct?

A: API Gateway creates RESTful APIs that enable stateless client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateful, full-duplex communication between client and server

B: API Gateway creates RESTful APIs that enable stateful client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateful, full-duplex communication between client and server

C: API Gateway creates RESTful APIs that enable stateless client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateless, full-duplex communication between client and server

D: API Gateway creates RESTful APIs that enable stateful client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateless, full-duplex communication between client and server

A

A: API Gateway creates RESTful APIs that enable stateless client-server communication and API Gateway also creates WebSocket APIs that adhere to the WebSocket protocol, which enables stateful, full-duplex communication between client and server

32
Q

A leading social media analytics company is contemplating moving its dockerized application stack into AWS Cloud. The company is not sure about the pricing for using Elastic Container Service (ECS) with the EC2 launch type compared to the Elastic Container Service (ECS) with the Fargate launch type.

Which of the following is correct regarding the pricing for these two services?

A: ECS with EC2 launch type is charged based on EC2 instances and EBS volumes used. ECS with Fargate launch type is charged based on vCPU and memory resources that the containerized application requests

B: Both ECS with EC2 launch type and ECS with Fargate launch type are just charged based on Elastic Container Service used per hour

C: Both ECS with EC2 launch type and ECS with Fargate launch type are charged based on vCPU and memory resources that the containerized application requests

D: Both ECS with EC2 launch type and ECS with Fargate launch type are charged based on EC2 instances and EBS volumes used

A

A: ECS with EC2 launch type is charged based on EC2 instances and EBS volumes used. ECS with Fargate launch type is charged based on vCPU and memory resources that the containerized application requests

33
Q

A social photo-sharing company uses Amazon S3 to store the images uploaded by the users. These images are kept encrypted in S3 by using AWS-KMS and the company manages its own Customer Master Key (CMK) for encryption. A member of the DevOps team accidentally deleted the CMK a day ago, thereby rendering the user’s photo data unrecoverable. You have been contacted by the company to consult them on possible solutions to this crisis. As a solutions architect, which of the following steps would you recommend to solve this issue?

A. The CMK can be recovered by the AWS root account user.
B. The company should issue a notification on its web application informing the users about the loss of their data.
C. As the CMK was deleted a day ago, it must be in the ‘pending deletion’ status and hence you can just cancel the CMK deletion and recover the key.
D. Contact AWS support to retrieve the CMK from their backup.

A

C. As the CMK was deleted a day ago, it must be in the ‘pending deletion’ status and hence you can just cancel the CMK deletion and recover the key.

34
Q

A news network uses Amazon S3 to aggregate the raw video footage from its reporting teams across the US. The news network has recently expanded into new geographies in Europe and Asia. The technical teams at the overseas branch offices have reported huge delays in uploading large video files to the destination S3 bucket. Which of the following are the MOST cost-effective options to improve the file upload speed into S3? (Select two)

A. Use multipart uploads for faster file uploads into the destination S3 bucket.
B. Use Amazon S3 Transfer Acceleration to enable faster file uploads into the destination S3 bucket.
C. Use AWS Global Accelerator for faster file uploads into the destination S3 bucket.
D. Create multiple site-to-site VPN connections between the AWS Cloud and branch offices in Europe and Asia. Use these VPN connections for faster file uploads into S3.
E. Create multiple AWS direct connect connections between the AWS Cloud and branch offices in Europe and Asia. Use the direct connect connections for faster file uploads into S3.

A

A. Use multipart uploads for faster file uploads into the destination S3 bucket.
B. Use Amazon S3 Transfer Acceleration to enable faster file uploads into the destination S3 bucket.

35
Q

An IT company wants to review its security best-practices after an incident was reported where a new developer on the team was assigned full access to DynamoDB. The developer accidentally deleted a couple of tables from the production environment while building out a new feature.

Which is the MOST effective way to address this issue so that such incidents do not recur?

A: The CTO should review the permissions for each new developer’s IAM user so that such incidents don’t recur

B: Remove full database access for all IAM users in the organization

C: Only root user should have full database access in the organization

D: Use permissions boundary to control the maximum permissions employees can grant to the IAM principals

A

D: Use permissions boundary to control the maximum permissions employees can grant to the IAM principals

36
Q

The solo founder at a tech startup has just created a brand new AWS account. The founder has provisioned an EC2 instance 1A which is running in region A. Later, he takes a snapshot of the instance 1A and then creates a new AMI in region A from this snapshot. This AMI is then copied into another region B. The founder provisions an instance 1B in region B using this new AMI in region B.

At this point in time, what entities exist in region B?

A: 1 EC2 instance, 1 AMI and 1 snapshot exist in region B

B: 1 EC2 instance and 1 AMI exist in region B

C: 1 EC2 instance and 1 snapshot exist in region B

D: 1 EC2 instance and 2 AMIs exist in region B

A

A: 1 EC2 instance, 1 AMI and 1 snapshot exist in region B

37
Q

A telecom company operates thousands of hardware devices like switches, routers, cables, etc. The real-time status data for these devices must be fed into a communications application for notifications. Simultaneously, another analytics application needs to read the same real-time status data and analyze all the connecting lines that may go down because of any device failures.

As a Solutions Architect, which of the following solutions would you suggest, so that both the applications can consume the real-time status data concurrently?

A: Amazon Simple Notification Service (SNS)

B: Amazon Simple Queue Service (SQS) with Amazon Simple Notification Service (SNS)

C: Amazon Kinesis Data Streams

D: Amazon Simple Queue Service (SQS) with Amazon Simple Email Service (Amazon SES)

A

C: Amazon Kinesis Data Streams

38
Q

A media agency stores its re-creatable assets on Amazon S3 buckets. The assets are accessed by a large number of users for the first few days and the frequency of access falls down drastically after a week. Although the assets would be accessed occasionally after the first week, but they must continue to be immediately accessible when required. The cost of maintaining all the assets on S3 storage is turning out to be very expensive and the agency is looking at reducing costs as much as possible.

As a Solutions Architect, can you suggest a way to lower the storage costs while fulfilling the business requirements?

A. Configure a lifecycle policy to transition the objects to Amazon S3 Standard-Infrequent Access (S3 Standard-IA) after 7 days

B. Configure a lifecycle policy to transition the objects to Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA) after 7 days

C. Configure a lifecycle policy to transition the objects to Amazon S3 Standard-Infrequent Access (S3 Standard-IA) after 30 days

D. Configure a lifecycle policy to transition the objects to Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA) after 30 days

A

D. Configure a lifecycle policy to transition the objects to Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA) after 30 days

39
Q

A healthcare startup needs to enforce compliance and regulatory guidelines for objects stored in Amazon S3. One of the key requirements is to provide adequate protection against accidental deletion of objects.

As a solutions architect, what are your recommendations to address these guidelines? (Select two)

A. Enable versioning on the bucket
B. Enable MFA delete on the bucket
C. Create an event trigger on deleting any S3 object. The event invokes an SNS notification via email to the IT manager
D. Establish a process to get managerial approval for deleting S3 objects
E. Change the configuration on AWS S3 console so that the user needs to provide additional confirmation while deleting any S3 object

A

A. Enable versioning on the bucket
B. Enable MFA delete on the bucket

40
Q

A retail company uses Amazon EC2 instances, API Gateway, Amazon RDS, Elastic Load Balancer and CloudFront services. To improve the security of these services, the Risk Advisory group has suggested a feasibility check for using the Amazon GuardDuty service.

Which of the following would you identify as data sources supported by GuardDuty?

A: VPC Flow Logs, API Gateway logs, S3 access logs

B: VPC Flow Logs, DNS logs, CloudTrail events

C: ELB logs, DNS logs, CloudTrail events

D: CloudFront logs, API Gateway logs, CloudTrail events

A

B: VPC Flow Logs, DNS logs, CloudTrail events

41
Q

The development team at an e-commerce startup has set up multiple microservices running on EC2 instances under an Application Load Balancer. The team wants to route traffic to multiple back-end services based on the URL path of the HTTP header. So it wants requests for https://www.example.com/orders to go to a specific microservice and requests for https://www.example.com/products to go to another microservice.

Which of the following features of Application Load Balancers can be used for this use-case?

A: Query string parameter-based routing

B: HTTP header-based routing

C: Host-based Routing

D: Path-based Routing

A

D: Path-based Routing

42
Q

A large financial institution operates an on-premises data center with hundreds of PB of data managed on Microsoft’s Distributed File System (DFS). The CTO wants the organization to transition into a hybrid cloud environment and run data-intensive analytics workloads that support DFS. Which of the following AWS services can facilitate the migration of these workloads?

A. Amazon FSx for Windows File Server.
B. Amazon FSx for Lustre.
C. Microsoft SQL Server on Amazon.
D. AWS Managed Microsoft AD.

A

A. Amazon FSx for Windows File Server.

43
Q

A gaming company is developing a mobile game that streams score updates to a backend processor and then publishes results on a leaderboard. The company has hired you as an AWS Certified Solutions Architect Associate to design a solution that can handle major traffic spikes, process the mobile game updates in the order of receipt, and store the processed updates in a highly available database. The company wants to minimize the management overhead required to maintain the solution.

Which of the following will you recommend to meet these requirements?

A. Push score updates to an SQS queue which uses a fleet of EC2 instances (with Auto Scaling) to process these updates in the SQS queue and then store these processed updates in an RDS MySQL database
B. Push score updates to Kinesis Data Streams which uses a fleet of EC2 instances (with Auto Scaling) to process the updates in Kinesis Data Streams and then store these processed updates in DynamoDB
C. Push score updates to Kinesis Data Streams which uses a Lambda function to process these updates and then store these processed updates in DynamoDB
D. Push score updates to an SNS topic, subscribe a Lambda function to this SNS topic to process the up

A

C. Push score updates to Kinesis Data Streams which uses a Lambda function to process these updates and then store these processed updates in DynamoDB

44
Q

A gaming company uses Amazon Aurora as its primary database service. The company has now deployed 5 multi-AZ read replicas to increase the read throughput and for use as failover target. The replicas have been assigned the following failover priority tiers and corresponding sizes are given in parentheses: tier-1 (16TB), tier-1 (32TB), tier-10 (16TB), tier-15 (16TB), tier-15 (32TB). In the event of a failover, Amazon RDS will promote which of the following read replicas?

A. Tier-15 (32TB)
B. Tier-1 (16TB)
C. Tier-1 (32TB)
D. Tier-10 (16TB)

A

C. Tier-1 (32TB)

45
Q

A leading video streaming service delivers billions of hours of content from Amazon S3 to customers around the world. Amazon S3 also serves as the data lake for its big data analytics solution. The data lake has a staging zone where intermediary query results are kept only for 24 hours. These results are also heavily referenced by other parts of the analytics pipeline. Which of the following is the MOST cost-effective strategy for storing this intermediary query data?

A. Store the intermediary query results in S3 One Zone-Infrequent Access storage class.
B. Store the intermediary query results in S3 Standard storage class.
C. Store the intermediary query results in S3 Intelligent-Tiering storage class.
D. Store the intermediary query results in S3 Standard-Infrequent Access storage class.

A

B. Store the intermediary query results in S3 Standard storage class.

46
Q

The IT department at a consulting firm is conducting a training workshop for new developers. As part of an evaluation exercise on Amazon S3, the new developers were asked to identify the invalid storage class lifecycle transitions for objects stored on S3. Can you spot the INVALID lifecycle transitions from the options below? (Select two)

A. S3 Standard-IA => S3 Intelligent-Tiering.
B. S3 Intelligent-Tiering S3 Standard.
C. S3 One Zone-IA => S3 Standard-IA.
D. S3 Standard-IA => S3 One Zone-IA.
E. S3 Standard = > S3 Intelligent-Tiering.

A

B. S3 Intelligent-Tiering S3 Standard.
C. S3 One Zone-IA => S3 Standard-IA.

47
Q

CloudFront offers a multi-tier cache in the form of regional edge caches that improve latency. However, there are certain content types that bypass the regional edge cache, and go directly to the origin.

Which of the following content types skip the regional edge cache? (Select two)

A. E-commerce assets such as product photos
B. User-generated videos
C. Dynamic content, as determined at request time (cache-behavior configured to forward all headers)
D. Static content such as style sheets, JavaScript files
E. Proxy methods PUT/POST/PATCH/OPTIONS/DELETE

A

C. Dynamic content, as determined at request time (cache-behavior configured to forward all headers)

E. Proxy methods PUT/POST/PATCH/OPTIONS/DELETE

48
Q

A development team requires permissions to list an S3 bucket and delete objects from that bucket. A systems administrator has created the following IAM policy to provide access to the bucket and applied that policy to the group. The group is not able to delete objects in the bucket. The company follows the principle of least privilege.

“Version”: “2021-10-17”,
“Statement”: [
{
“Action”: [
“s3:ListBucket”,
“s3:DeleteObject”
],
“Resource”: [
“arn:aws:s3:::example-bucket”
],
“Effect”: “Allow”
}
]

Which statement should a solutions architect add to the policy to address this issue?

A: {
“Action”: [
“s3:Object”
],
“Resource”: [
“arn:aws:s3:::example-bucket/
],
“Effect”: “Allow”
}

B: {
“Action”: [
“s3:DeleteObject”
],
“Resource”: [
“arn:aws:s3:::example-bucket/*”
],
“Effect”: “Allow”
}

C: {
“Action”: [
“s3:DeleteObject”
],
“Resource”: [
“arn:aws:s3:::example-bucket*”
],
“Effect”: “Allow”
}

D: {
“Action”: [
“s3:
],
“Resource”: [
“arn:aws:s3:::example-bucket/
],
“Effect”: “Allow”
}

A

B: {
“Action”: [
“s3:DeleteObject”
],
“Resource”: [
“arn:aws:s3:::example-bucket/*”
],
“Effect”: “Allow”
}

49
Q

A gaming company is looking at improving the availability and performance of its global flagship application which utilizes UDP protocol and needs to support fast regional failover in case an AWS Region goes down.

Which of the following AWS services represents the best solution for this use-case?

A. Amazon CloudFront
B. AWS Global Accelerator
C. AWS Elastic Load Balancing (ELB)
D. Amazon Route 53

A

B. AWS Global Accelerator

50
Q

A financial services company recently launched an initiative to improve the security of its AWS resources and it had enabled AWS Shield Advanced across multiple AWS accounts owned by the company. Upon analysis, the company has found that the costs incurred are much higher than expected.

Which of the following would you attribute as the underlying reason for the unexpectedly high costs for AWS Shield Advanced service?

A: Consolidated billing has not been enabled. All the AWS accounts should fall under a single consolidated billing for the monthly fee to be charged only once

B: AWS Shield Advanced is being used for custom servers, that are not part of AWS Cloud, thereby resulting in increased costs

C: AWS Shield Advanced also covers AWS Shield Standard plan, thereby resulting in increased costs

D: Savings Plans has not been enabled for the AWS Shield Advanced service across all the AWS accounts

A

A: Consolidated billing has not been enabled. All the AWS accounts should fall under a single consolidated billing for the monthly fee to be charged only once

51
Q

A research group runs its flagship application on a fleet of Amazon EC2 instances for a specialized task that must deliver high random I/O performance. Each instance in the fleet would have access to a dataset that is replicated across the instances by the application itself. Because of the resilient application architecture, the specialized task would continue to be processed even if any instance goes down, as the underlying application would ensure the replacement instance has access to the required dataset.

Which of the following options is the MOST cost-optimal and resource-efficient solution to build this fleet of Amazon EC2 instances?

A. Use EC2 instances with access to S3 based storage.
B. Use Instance Store based EC2 instances.
C. Use EBS based EC2 instances.
D. Use EC2 instances with EFS mount points.

A

B. Use Instance Store based EC2 instances.

52
Q

A company manages a multi-tier social media application that runs on EC2 instances behind an Application Load Balancer. The instances run in an EC2 Auto Scaling group across multiple Availability Zones and use an Amazon Aurora database. As a solutions architect, you have been tasked to make the application more resilient to periodic spikes in request rates.
Which of the following solutions would you recommend for the given use-case? (Select two)

A

Use Aurora Replica
(Correct)

Use CloudFront distribution in front of the Application Load Balancer
(Correct)

53
Q

The engineering team at an in-home fitness company is evaluating multiple in-memory data stores with the ability to power its on-demand, live leaderboard. The company’s leaderboard requires high availability, low latency. and real-time processing to deliver customizable user data for the community of users working out together virtually from the comfort of their home. As a solutions architect, which of the following solutions would you recommend? (Select two)

A. Power the on-demand, live leaderboard using DynamoDB as it meets the in-memory, high availability, low latency requirements.
B. Power the on-demand, live leaderboard using ElastiCache Redis as it meets the in-memory, high availability, low latency requirements.
C. Power the on-demand, live leaderboard using AWS Neptune as it meets the in-memory, high availability, low latency requirements.
D. Power the on-demand, live leaderboard using DynamoDB with DynamoDB Accelerator (DAX) as it meets the in-memory, high availability, low latency requirements.
E. Power the on-demand, live leaderboard using RDS Aurora as it meets the in-memory, high availability, low latency requirements.

A

B. Power the on-demand, live leaderboard using ElastiCache Redis as it meets the in-memory, high availability, low latency requirements.

D. Power the on-demand, live leaderboard using DynamoDB with DynamoDB Accelerator (DAX) as it meets the in-memory, high availability, low latency requirements.

54
Q

A Big Data analytics company wants to set up an AWS cloud architecture that throttles requests in case of sudden traffic spikes. The company is looking for AWS services that can be used for buffering or throttling to handle such traffic variations.
Which of the following services can be used to support this requirement?
A. Amazon SQS, Amazon SNS and AWS Lambda
B. Amazon Gateway Endpoints, Amazon SQS and Amazon Kinesis
C. Amazon API Gateway, Amazon SQS and Amazon Kinesis
D. Elastic Load Balancer, Amazon SQS, AWS Lambda

A

C. Amazon API Gateway, Amazon SQS and Amazon Kinesis

55
Q

A media company runs a photo-sharing web application that is accessed across three different countries. The application is deployed on several Amazon EC2 instances running behind an Application Load Balancer. With new government regulations, the company has been asked to block access from two countries and allow access only from the home country of the company.

Which configuration should be used to meet this changed requirement?

A. Use Geo Restriction feature of Amazon CloudFront in a VPC
B. Configure AWS WAF on the Application Load Balancer in a VPC
C. Configure the security group on the Application Load Balancer
D. Configure the security group for the EC2 instances

A

B. Configure AWS WAF on the Application Load Balancer in a VPC

56
Q

A company uses Amazon S3 buckets for storing sensitive customer data. The company has defined different retention periods for different objects present in the Amazon S3 buckets, based on the compliance requirements. But, the retention rules do not seem to work as expected.

Which of the following options represent a valid configuration for setting up retention periods for objects in Amazon S3 buckets? (Select two)

A. You cannot place a retention period on an object version through a bucket default setting
B. When you apply a retention period to an object version explicitly, you specify a Retain Until Date for the object version
C. When you use bucket default settings, you specify a Retain Until Date for the object version
D. Different versions of a single object can have different retention modes and periods
E. The bucket default settings will override any explicit retention mode or period you request on an object version

A

B. When you apply a retention period to an object version explicitly, you specify a Retain Until Date for the object version
D. Different versions of a single object can have different retention modes and periods

57
Q

While consolidating logs for the weekly reporting, a development team at an e-commerce company noticed that an unusually large number of illegal AWS application programming interface (API) queries were made sometime during the week. Due to the off-season, there was no visible impact on the systems. However, this event led the management team to seek an automated solution that can trigger near-real-time warnings in case such an event recurs.

Which of the following represents the best solution for the given scenario?

A. Create an Amazon CloudWatch metric filter that processes AWS CloudTrail logs having API call details and looks at any errors by factoring in all the error codes that need to be tracked. Create an alarm based on this metric’s rate to send an Amazon SNS notification to the required team

B. Configure AWS CloudTrail to stream event data to Amazon Kinesis. Use Amazon Kinesis stream-level metrics in the Amazon CloudWatch to trigger an AWS Lambda function that will trigger an error workflow - AWS CloudTrail cannot stream data to Amazon Kinesis. Amazon S3 buckets and Amazon CloudWatch logs are the only destinations possible.

C. Run Amazon Athena SQL queries against AWS CloudTrail log files stored in Amazon S3 buckets. Use Amazon QuickSight to generate reports for managerial dashboards

D. AWS Trusted Advisor publishes metrics about check results to Amazon CloudWatch. Create an alarm to track status changes for checks in the Service Limits category for the APIs. The alarm will then notify when the service quota is reached or exceeded

A

A. Create an Amazon CloudWatch metric filter that processes AWS CloudTrail logs having API call details and looks at any errors by factoring in all the error codes that need to be tracked. Create an alarm based on this metric’s rate to send an Amazon SNS notification to the required team

58
Q

A leading carmaker would like to build a new car-as-a-sensor service by leveraging fully serverless components that are provisioned and managed automatically by AWS. The development team at the carmaker does not want an option that requires the capacity to be manually provisioned, as it does not want to respond manually to changing volumes of sensor data.

Given these constraints, which of the following solutions is the BEST fit to develop this car-as-a-sensor service?

A. Ingest the sensor data in an Amazon Simple Queue Service (Amazon SQS) standard queue, which is polled by an AWS Lambda function in batches and the data is written into an auto-scaled Amazon DynamoDB table for downstream processing
B. Ingest the sensor data in Amazon Kinesis Data Firehose, which directly writes the data into an auto-scaled Amazon DynamoDB table for downstream processing
C. Ingest the sensor data in Amazon Kinesis Data Streams, which is polled by an application running on an Amazon EC2 instance and the data is written into an auto-scaled Amazon DynamoDB table for downstream processing

D. Ingest the sensor data in an Amazon Simple Queue Service (Amazon SQS) standard queue, which is polled by an application running on an Amazon EC2 instance and the data is written into an auto-scaled Amazon DynamoDB table for downstream processing

A

A. Ingest the sensor data in an Amazon Simple Queue Service (Amazon SQS) standard queue, which is polled by an AWS Lambda function in batches and the data is written into an auto-scaled Amazon DynamoDB table for downstream processing

59
Q

The sourcing team at the US headquarters of a global e-commerce company is preparing a spreadsheet of the new product catalog. The spreadsheet is saved on an EFS file system created in us-east-1 region. The sourcing team counterparts from other AWS regions such as Asia Pacific and Europe also want to collaborate on this spreadsheet.

As a solutions architect, what is your recommendation to enable this collaboration with the LEAST amount of operational overhead?

A. The spreadsheet on the EFS file system can be accessed in other AWS regions by using an inter-region VPC peering connection
B. The spreadsheet will have to be copied in Amazon S3 which can then be accessed from any AWS region
C. The spreadsheet data will have to be moved into an RDS MySQL database which can then be accessed from any AWS region
D. The spreadsheet will have to be copied into EFS file systems of other AWS regions as EFS is a regional service and it does not allow access from other AWS regions

A

A. The spreadsheet on the EFS file system can be accessed in other AWS regions by using an inter-region VPC peering connection

60
Q

An Electronic Design Automation (EDA) application produces massive volumes of data that can be divided into two categories. The ‘hot data’ needs to be both processed and stored quickly in a parallel and distributed fashion. The ‘cold data’ needs to be kept for reference with quick access for reads and updates at a low cost.

Which of the following AWS services is BEST suited to accelerate the aforementioned chip design process?

A. Amazon FSx for Lustre
B. Amazon FSx for Windows File Server
C. Amazon EMR
D. AWS Glue

A

A. Amazon FSx for Lustre

61
Q

An audit department generates and accesses the audit reports only twice in a financial year. The department uses AWS Step Functions to orchestrate the report creating process that has failover and retry scenarios built into the solution. The underlying data to create these audit reports is stored on S3, runs into hundreds of Terabytes and should be available with millisecond latency.

As a solutions architect, which is the MOST cost-effective storage class that you would recommend to be used for this use-case?

A. Amazon S3 Standard
B. Amazon S3 Intelligent-Tiering (S3 Intelligent-Tiering)
C. Amazon S3 Glacier (S3 Glacier)
D. Amazon S3 Standard-Infrequent Access (S3 Standard-IA)

A

D. Amazon S3 Standard-Infrequent Access (S3 Standard-IA)

62
Q

A company has a web application that runs 24*7 in the production environment. The development team at the company runs a clone of the same application in the dev environment for up to 8 hours every day. The company wants to build the MOST cost-optimal solution by deploying these applications using the best-fit pricing options for EC2 instances.
What would you recommend?

Use Amazon EC2 reserved instance (RI) for the production application and spot instances for the dev application

Use on-demand Amazon EC2 instances for the production application and spot instances for the dev application

Use reserved EC2 instances for the production application and on-demand instances for the dev application

Use Amazon EC2 reserved instance (RI) for the production application and spot block instances for the dev application

A

Use reserved EC2 instances for the production application and on-demand instances for the dev application

63
Q

A company uses DynamoDB as a data store for various kinds of customer data, such as user profiles, user events, clicks, and visited links. Some of these use-cases require a high request rate (millions of requests per second), low predictable latency, and reliability. The company now wants to add a caching layer to support high read volumes.

As a solutions architect, which of the following AWS services would you recommend as a caching layer for this use-case? (Select two)

A. ElastiCache
B. RDS
C. DynamoDB Accelerator (DAX)
D. Elasticsearch
E. Redshift

A

A. ElastiCache
C. DynamoDB Accelerator (DAX)

64
Q

The DevOps team at an e-commerce company wants to perform some maintenance work on a specific EC2 instance that is part of an Auto Scaling group using a step scaling policy. The team is facing a maintenance challenge - every time the team deploys a maintenance patch, the instance health check status shows as out of service for a few minutes. This causes the Auto Scaling group to provision another replacement instance immediately.

As a solutions architect, which are the MOST time/resource efficient steps that you would recommend so that the maintenance work can be completed at the earliest? (Select two)

A. Take a snapshot of the instance, create a new AMI and then launch a new instance using this AMI. Apply the maintenance patch to this new instance and then add it back to the Auto Scaling Group by using the manual scaling policy. Terminate the earlier instance that had the maintenance issue

B. Delete the Auto Scaling group and apply the maintenance fix to the given instance. Create a new Auto Scaling group and add all the instances again using the manual scaling policy

C. Put the instance into the Standby state and then update the instance by applying the maintenance patch. Once the instance is ready, you can exit the Standby state and then return the instance to service c.

D. Suspend the ScheduledActions process type for the Auto Scaling group and apply the maintenance patch to the instance. Once the instance is ready, you can you can manually set the instance’s health status back to healthy and activate the ScheduledActions process type again

E. Suspend the ReplaceUnhealthy process type for the Auto Scaling group and apply the maintenance patch to the instance. Once the instance is ready, you can manually set the instance’s health status back to healthy and activate the ReplaceUnhealthy process type again

A

C. Put the instance into the Standby state and then update the instance by applying the maintenance patch. Once the instance is ready, you can exit the Standby state and then return the instance to service c.

E. Suspend the ReplaceUnhealthy process type for the Auto Scaling group and apply the maintenance patch to the instance. Once the instance is ready, you can manually set the instance’s health status back to healthy and activate the ReplaceUnhealthy process type again

AWS SOLUTIONS ARCHITECT (1 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions