Amazon AWS Certified Solutions Architect - Associate SAA-C02
Prev

There are 450 results

Next
#261 (Accuracy: 100% / 1 votes)
A company is running a multi-tier ecommerce web application in the AWS Cloud. The application runs on Amazon EC2 Instances with an Amazon RDS MySQL
Multi-AZ DB instance. Amazon RDS is configured with the latest generation instance with 2,000 GB of storage in an Amazon Elastic Block Store (Amazon EBS)
General Purpose SSD (gp2) volume. The database performance impacts the application during periods of high demand.
After analyzing the logs in Amazon CloudWatch Logs, a database administrator finds that the application performance always degrades when the number of read and write IOPS is higher than 6.000.
What should a solutions architect do to improve the application performance?
  • A. Replace the volume with a Magnetic volume.
  • B. Increase the number of IOPS on the gp2 volume.
  • C. Replace the volume with a Provisioned IOPS (PIOPS) volume.
  • D. Replace the 2,000 GB gp2 volume with two 1,000 GBgp2 volumes.
#262 (Accuracy: 100% / 6 votes)
A development team stores its Amazon RDS MySQL DB instance user name and password credentials in a configuration file. The configuration file is stored as plaintext on the root device volume of the team's Amazon EC2 instance. When the team's application needs to reach the database, it reads the file and loads the credentials into the code. The team has modified the permissions of the configuration file so that only the application can read its content. A solutions architect must design a more secure solution.
What should the solutions architect do to meet this requirement?
  • A. Store the configuration file in Amazon S3. Grant the application access to read the configuration file.
  • B. Create an IAM role with permission to access the database. Attach this IAM role to the EC2 instance.
  • C. Enable SSL connections on the database instance. Alter the database user to require SSL when logging in.
  • D. Move the configuration file to an EC2 instance store, and create an Amazon Machine Image (AMI) of the instance. Launch new instances from this AMI.
#263 (Accuracy: 97% / 13 votes)
A company has an image processing workload running on Amazon Elastic Container Service (Amazon ECS) in two private subnets. Each private subnet uses a
NAT instance for internet access. All images are stored in Amazon S3 buckets. The company is concerned about the data transfer costs between Amazon ECS and Amazon S3.
What should a solutions architect do to reduce costs?
  • A. Configure a NAT gateway to replace the NAT instances.
  • B. Configure a gateway endpoint for traffic destined to Amazon S3.
  • C. Configure an interface endpoint for traffic destined to Amazon S3.
  • D. Configure Amazon CloudFront for the S3 bucket storing the images.
#264 (Accuracy: 100% / 3 votes)
A solutions architect launches an Amazon EC2 instance inside a new VPC. The solutions architect configures network ACL rules and security group rules that allow the appropriate traffic to flow to and from the instance. An Elastic IP address is associated with the instance. The solutions architect needs to be able to access the instance from the internet.
Which combination of actions should the solutions architect take to accomplish this goal? (Choose two.)
  • A. Create an internet gateway. Attach the internet gateway to the VPC.
  • B. Create an internet gateway. Attach the internet gateway to the instance's subnet.
  • C. Create an internet gateway. Attach the internet gateway to the instance.
  • D. Add a route to the route table of the instance's subnet. Route traffic from the instance's subnet to the internet gateway.
  • E. Add a route to the route table of the instance's subnet. Route traffic from the internet gateway to the instance's subnet.
#265 (Accuracy: 100% / 4 votes)
A company needs the ability to analyze the log files of its proprietary application. The logs are stored in JSON format in an Amazon S3 bucket. Queries will be simple and will run on-demand. A solutions architect needs to perform the analysis with minimal changes to the existing architecture.
What should the solutions architect do to meet these requirements with the LEAST amount of operational overhead?
  • A. Use Amazon Redshift to load all the content into one place and run the SQL queries as needed.
  • B. Use Amazon CloudWatch Logs to store the logs. Run SQL queries as needed from the Amazon CloudWatch console.
  • C. Use Amazon Athena directly with Amazon S3 to run the queries as needed.
  • D. Use AWS Glue to catalog the logs. Use a transient Apache Spark cluster on Amazon EMR to run the SQL queries ad needed.
#266 (Accuracy: 100% / 6 votes)
A company needs a secure connection between its on-premises environment and AWS. This connection does not need high bandwidth and will handle a small amount of traffic. The connection should be set up quickly.
What is the MOST cost-effective method to establish this type of connection?
  • A. Implement a client VPN.
  • B. Implement AWS Direct Connect.
  • C. Implement a bastion host on Amazon EC2.
  • D. Implement an AWS Site-to-Site VPN connection.
#267 (Accuracy: 100% / 1 votes)
A hospital wants to create digital copies for its large collection of historical written records. The hospital will continue to add hundreds of new documents each day.
The hospital's data team will scan the documents and will upload the documents to the AWS Cloud.
A solutions architect must implement a solution to analyze the documents, extract the medical information, and store the documents so that an application can run
SQL queries on the data. The solution must maximize scalability and operational efficiency.
Which combination of steps should the solutions architect take to meet these requirements? (Choose two.)
  • A. Write the document information to an Amazon EC2 instance that runs a MySQL database.
  • B. Write the document information to an Amazon S3 bucket. Use Amazon Athena to query the data.
  • C. Create an Auto Scaling group of Amazon EC2 instances to run a custom application that processes the scanned files and extracts the medical information.
  • D. Create an AWS Lambda function that runs when new documents are uploaded. Use Amazon Rekognition to convert the documents to raw text. Use Amazon Transcribe Medical to detect and extract relevant medical information from the text.
  • E. Create an AWS Lambda function that runs when new documents are uploaded. Use Amazon Textract to convert the documents to raw text. Use Amazon Comprehend Medical to detect and extract relevant medical information from the text.
#268 (Accuracy: 100% / 4 votes)
A company is running an application on AWS to process weather sensor data that is stored in an Amazon S3 bucket. Three batch jobs run hourly to process the data in the S3 bucket for different purposes. The company wants to reduce the overall processing time by running the three applications in parallel using an event- based approach.
What should a solutions architect do to meet these requirements?
  • A. Enable S3 Event Notifications for new objects to an Amazon Simple Queue Service (Amazon SQS) FIFO queue. Subscribe all applications to the queue for processing.
  • B. Enable S3 Event Notifications for new objects to an Amazon Simple Queue Service (Amazon SQS) standard queue. Create an additional SQS queue for all applications, and subscribe all applications to the initial queue for processing.
  • C. Enable S3 Event Notifications for new objects to separate Amazon Simple Queue Service (Amazon SQS) FIFO queues. Create an additional SQS queue for each application, and subscribe each queue to the initial topic for processing.
  • D. Enable S3 Event Notifications for new objects to an Amazon Simple Notification Service (Amazon SNS) topic. Create an Amazon Simple Queue Service (Amazon SQS) queue for each application, and subscribe each queue to the topic for processing.
#269 (Accuracy: 100% / 11 votes)
A financial company hosts a web application on AWS. The application uses an Amazon API Gateway Regional API endpoint to give users the ability to retrieve current stock prices. The company's security team has noticed an increase in the number of API requests. The security team is concerned that HTTP flood attacks might take the application offline.
A solutions architect must design a solution to protect the application from this type of attack.
Which solution meets these requirements with the LEAST operational overhead?
  • A. Create an Amazon CloudFront distribution in front of the API Gateway Regional API endpoint with a maximum TTL of 24 hours.
  • B. Create a Regional AWS WAF web ACL with a rate-based rule. Associate the web ACL with the API Gateway stage.
  • C. Use Amazon CloudWatch metrics to monitor the Count metric and alert the security team when the predefined rate is reached.
  • D. Create an Amazon CloudFront distribution with Lambda@Edge in front of the API Gateway Regional API endpoint. Create an AWS Lambda function to block requests from IP addresses that exceed the predefined rate.
#270 (Accuracy: 100% / 2 votes)
A company hosts a serverless application on AWS. The application uses Amazon API Gateway, AWS Lambda, and an Amazon RDS for PostgreSQL database.
The company notices an increase in application errors that result from database connection timeouts during times of peak traffic or unpredictable traffic. The company needs a solution that reduces the application failures with the least amount of change to the code.
What should a solutions architect do to meet these requirements?
  • A. Reduce the Lambda concurrency rate.
  • B. Enable RDS Proxy on the RDS DB instance.
  • C. Resize the RDS DB instance class to accept more connections.
  • D. Migrate the database to Amazon DynamoDB with on-demand scaling.