Amazon AWS Certified Solutions Architect - Associate SAA-C02
Prev

There are 450 results

Next
#181 (Accuracy: 100% / 3 votes)
A photo-sharing company makes a personalized collage of each user's photographs available online. The company's custom software builds each collage by using 10-20 available images for each user. The application stores the original images and the collages in Amazon S3 Standard storage. After a collage is created, the original files are needed only if the company must recreate the collage.
The company has thousands of users and wants to reduce storage costs as much as possible. A solutions architect must recommend which S3 storage classes the company should use to store the original images and the collages.
What should the solutions architect recommend to meet these requirements?
  • A. Move the original images to S3 Glacier. Move the collages to S3 Standard-Infrequent Access (S3 Standard-IA)
  • B. Move the original images to S3 Glacier. Move the collages to S3 One Zone-Infrequent Access (S3 One Zone-IA)
  • C. Move the original images to S3 Standard-Infrequent Access (S3 Standard-IA). Move the collages to S3 One Zone-Infrequent Access (S3 One Zone-IA)
  • D. Move the original images to S3 One Zone-Infrequent Access (S3 One Zone-IA). Move the collages to S3 Standard-Infrequent Access (S3 Standard-IA)
#182 (Accuracy: 100% / 2 votes)
A company has deployed a business-critical application in the AWS Cloud. The application uses Amazon EC2 instances that run in the us-east-1 Region. The application uses Amazon S3 for storage of all critical data.
To meet compliance requirements, the company must create a disaster recovery (DR) plan that provides the capability of a full failover to another AWS Region.
What should a solutions architect recommend for this DR plan?
  • A. Deploy the application to multiple Availability Zones in us-east-1. Create a resource group in AWS Resource Groups. Turn on automatic failover for the application to use a predefined recovery Region.
  • B. Perform a virtual machine (VM) export by using AWS Import/Export on the existing EC2 instances. Copy the exported instances to the destination Region. In the event of a disaster, provision new EC2 instances from the exported EC2 instances.
  • C. Create snapshots of all Amazon Elastic Block Store (Amazon EBS) volumes that are attached to the EC2 instances in us-east-1. Copy the snapshots to the destination Region. In the event of a disaster, provision new EC2 instances from the EBS snapshots.
  • D. Use S3 Cross-Region Replication for the data that is stored in Amazon S3. Create an AWS CloudFormation template for the application with an S3 bucket parameter. In the event of a disaster, deploy the template to the destination Region and specify the local S3 bucket as the parameter.
#183 (Accuracy: 100% / 1 votes)
A company develops applications in separate AWS accounts that are all part of an organization in AWS Organizations. An operations team creates an IAM user for each developer for a given application. As the company has grown, the number of applications has increased. Developers now work on several applications and need to view and access all their project accounts.
A solutions architect must design a solution that minimizes the operational overhead for the operations team.
What should the solutions architect do to meet these requirements?
  • A. Implement AWS Single Sign-On for the organization.
  • B. Consolidate all the AWS accounts into a single account for all users and applications.
  • C. Use AWS CloudFormation StackSets to programmatically create IAM users in each account.
  • D. Create a shared services account. Create all the IAM users in the shared services account. Configure cross-account access roles with appropriate access to each account.
#184 (Accuracy: 100% / 3 votes)
A survey company has gathered data for several years from areas in the United States. The company hosts the data in an Amazon S3 bucket that is 3 TB in size and growing. The company has started to share the data with a European marketing firm that has S3 buckets. The company wants to ensure that its data transfer costs remain as low as possible.
Which solution will meet these requirements?
  • A. Configure the Requester Pays feature on the company's S3 bucket.
  • B. Configure S3 Cross-Region Replication from the company's S3 bucket to one of the marketing firm's S3 buckets.
  • C. Configure cross-account access for the marketing firm so that the marketing firm has access to the company's S3 bucket.
  • D. Configure the company's S3 bucket to use S3 Intelligent-Tiering. Sync the S3 bucket to one of the marketing firm's S3 buckets.
#185 (Accuracy: 100% / 2 votes)
A company is expanding a secure, on-premises network to AWS. The on-premises network has no direct internet access. The company is setting up am AWS
Direct Connect connection between the on-premises network and AWS. An application that runs in the on-premises network needs to use the AWS software development kits (SDKs).
A solutions architect must design a solution that supports this connectivity. However, the solution cannot incur additional cost beyond the cost of the Direct
Connect connection.
Which solution will meet these requirements?
  • A. Create a public virtual interface (VIF). Route the AWS traffic over the public VIF.
  • B. Create a VPC and a NAT gateway. Route the AWS traffic from on premises to the NAT gateway.
  • C. Create a VPC and an Amazon S3 interface endpoint. Route the AWS traffic from on premises to the S3 interface endpoint.
  • D. Create a VPC peering connection between the on-premises network and Direct Connect. Route the AWS traffic over the peering connection.
#186 (Accuracy: 100% / 4 votes)
A company has developed a new content-sharing application that runs on Amazon Elastic Container Service (Amazon ECS). The application runs on Amazon
Linux Docker tasks that use the Amazon EC2 launch type. The application requires a storage solution that has the following characteristics:
✑ Accessibility for multiple EC2 tasks through bind mounts.
✑ Resiliency across Availability Zones
✑ Burstable throughput of up to 3 Gbps
✑ Ability to be scaled up over time
Which storage solution meets these requirements?
  • A. Launch an Amazon FSx for Windows File Server Multi-AZ instance. Configure the ECS task definitions to mount the Amazon FSx instance volume at launch.
  • B. Launch an Amazon Elastic File System (Amazon EFS) instance. Configure the ECS task definitions to mount the EFS instance volume at launch.
  • C. Create a Provisioned IOPS SSD (io2) Amazon Elastic Block Store (Amazon EBS) volume with Multi-Attach set to enabled. Attach the EBS volume to the ECS EC2 instance. Configure ECS task definitions to mount the EBS instance volume at launch.
  • D. Launch an EC2 instance with several Provisioned IOPS SSD (io2) Amazon Elastic Block Store (Amazon EBS) volumes attached in a RAID 0 configuration. Configure the EC2 instance as an NFS storage server. Configure ECS task definitions to mount the volumes at launch.
#187 (Accuracy: 100% / 2 votes)
To meet security requirements, a company needs to encrypt all of its application data in transit while communicating with an Amazon RDS MySQL DB instance. A recent security audit revealed that encryption at rest is enabled using AWS Key Management Service (AWS KMS), but data in transit is not enabled.
What should a solutions architect do to satisfy the security requirements?
  • A. Enable IAM database authentication on the database.
  • B. Provide self-signed certificates. Use the certificates in all connections to the RDS instance.
  • C. Take a snapshot of the RDS instance. Restore the snapshot to a new instance with encryption enabled.
  • D. Download AWS-provided root certificates. Provide the certificates in all connections to the RDS instance.
#188 (Accuracy: 100% / 3 votes)
A global company is using Amazon API Gateway to design REST APIs for its loyalty club users in the us-east-1 Region and the ap-southeast-2 Region. A solutions architect must design a solution to protect these API Gateway managed REST APIs across multiple accounts from SQL injection and cross-site scripting attacks.
Which solution will meet these requirements with the LEAST amount of administrative effort?
  • A. Set up AWS WAF in both Regions, Associate Regional web ACLs with an API stage.
  • B. Set up AWS Firewall Manager in both Regions. Centrally configure AWS WAF rules.
  • C. Set up AWS Shield in both Regions. Associate Regional web ACLs with an API stage.
  • D. Set up AWS Shield in one of the Regions. Associate Regional web ACLs with an API stage.
#189 (Accuracy: 100% / 6 votes)
A company is designing a distributed application to optimize its global supply chain and manufacturing process. The company has facilities near the us-east-1
Region, the eu-west-1 Region, and the ap-south-1 Region.
According to the application requirements, orders that are booked in one Region must be visible in the other two Regions in 1 second or less. The database must be able to support failover with a recovery time objective (RTO) of less than 5 minutes. The application must avoid downtime so that the manufacturing process is not negatively affected.
Which solution meets these requirements?
  • A. Use Amazon DynamoDB to invoke an AWS Lambda function.
  • B. Use an Amazon Aurora global database.
  • C. Use Amazon RDS for MySQL with a cross-Region read replica.
  • D. Use Amazon RDS for PostgreSQL with a cross-Region read replica.
#190 (Accuracy: 100% / 3 votes)
A company hosts a website analytics application on a single Amazon EC2 On-Demand Instance. The analytics software is written in PHP and uses a MySQL database. The analytics software, the web server that provides PHP, and the database server are all hosted on the EC2 instance. The application is showing signs of performance degradation during busy times and is presenting 5xx errors. The company needs to make the application scale seamlessly.
Which solution will meet these requirements MOST cost-effectively?
  • A. Migrate the database to an Amazon RDS for MySQL DB instance. Create an AMI of the web application. Use the AMI to launch a second EC2 On-Demand Instance. Use an Application Load Balancer to distribute the load to each EC2 instance.
  • B. Migrate the database to an Amazon RDS for MySQL DB instance. Create an AMI of the web application. Use the AMI to launch a second EC2 On-Demand Instance. Use Amazon Route 53 weighted routing to distribute the load across the two EC2 instances.
  • C. Migrate the database to an Amazon Aurora MySQL DB instance. Create an AWS Lambda function to stop the EC2 instance and change the instance type. Create an Amazon CloudWatch alarm to invoke the Lambda function when CPU utilization surpasses 75%.
  • D. Migrate the database to an Amazon Aurora MySQL DB instance. Create an AMI of the web application. Apply the AMI to launch template. Create an Auto Scaling group with the launch template. Configure the launch template to use a Spot Fleet. Attach an Application Load Balancer to the Auto Scaling group.