Amazon AWS Certified Solutions Architect - Associate SAA-C02
Prev

There are 450 results

Next
#321 (Accuracy: 100% / 3 votes)
An application runs on an Amazon EC2 instance in a VPC. The application processes logs that are stored in an Amazon S3 bucket. The EC2 instance needs to access the S3 bucket without connectivity to the internet.
Which solution will provide private network connectivity to Amazon S3?
  • A. Create a gateway VPC endpoint to the S3 bucket.
  • B. Stream the logs to Amazon CloudWatch Logs. Export the logs to the S3 bucket.
  • C. Create an instance profile on Amazon EC2 to allow S3 access.
  • D. Create an Amazon API Gateway API with a private link to access the S3 endpoint.
#322 (Accuracy: 100% / 2 votes)
A company has a business-critical application that runs on Amazon EC2 instances. The application stores data in an Amazon DynamoDB table. The company must be able to revert the table to any point within the last 24 hours.
Which solution meets these requirements with the LEAST operational overhead?
  • A. Configure point-in-time recovery for the table.
  • B. Use AWS Backup for the table.
  • C. Use an AWS Lambda function to make an on-demand backup of the table every hour.
  • D. Turn on streams on the table to capture a log of all changes to the table in the last 24 hours. Store a copy of the stream in an Amazon S3 bucket.
#323 (Accuracy: 100% / 3 votes)
A company is planning to store data on Amazon RDS DB instances. The company must encrypt the data at rest.
What should a solutions architect do to meet this requirement?
  • A. Create an encryption key, and store the key in AWS Secrets Manager. Use the key to encrypt the DB instances.
  • B. Generate a certificate in AWS Certificate Manager (ACM). Enable SSL/TLS on the DB instances by using the certificate.
  • C. Create a customer master key (CMK) in AWS Key Management Service (AWS KMS). Enable encryption for the DB instances.
  • D. Generate a certificate in AWS Identity and Access Management (IAM). Enable SSL/TLS on the DB instances by using the certificate.
#324 (Accuracy: 100% / 2 votes)
A company has a production web application in which users upload documents through a web interface or a mobile app. According to a new regulatory requirement, new documents cannot be modified or deleted after they are stored.
What should a solutions architect do to meet this requirement?
  • A. Store the uploaded documents in an Amazon S3 bucket with S3 Versioning and S3 Object Lock enabled.
  • B. Store the uploaded documents in an Amazon S3 bucket. Configure an S3 Lifecycle policy to archive the documents periodically.
  • C. Store the uploaded documents in an Amazon S3 bucket with S3 Versioning enabled. Configure an ACL to restrict all access to read-only.
  • D. Store the uploaded documents on an Amazon Elastic File System (Amazon EFS) volume. Access the data by mounting the volume in read-only mode.
#325 (Accuracy: 100% / 2 votes)
A company is running a high performance computing (HPC) workload on AWS across many Linux-based Amazon EC2 instances. The company needs a shared storage system that is capable of sub-millisecond latencies, hundreds of Gbps of throughput, and millions of IOPS. Users will store millions of small files.
Which solution meets these requirements?
  • A. Create an Amazon Elastic File System (Amazon EFS) file system. Mount the file system on each of the EC2 instance.
  • B. Create an Amazon S3 bucket. Mount the S3 bucket on each of the EC2 instances.
  • C. Ensure that the EC2 instances are Amazon Elastic Block Store (Amazon EBS) optimized. Mount Provisioned IOPS SSD (io2) EBS volumes with Multi-Attach on each instance.
  • D. Create an Amazon FSx for Lustre file system. Mount the file system on each of the EC2 instances.
#326 (Accuracy: 100% / 3 votes)
A company has an application that loads documents into an Amazon S3 bucket and converts the documents into another format. The application stores the converted documents in another S3 bucket and saves the document name and URLs in an Amazon DynamoDB table. The DynamoDB entries are used during subsequent days to access the documents. The company uses a DynamoDB Accelerator (DAX) cluster in front of the table.
Recently, traffic to the application has increased. Document processing tasks are timing out during the scheduled DAX maintenance window. A solutions architect must ensure that the documents continue to load during the maintenance window.
What should the solutions architect do to accomplish this goal?
  • A. Modify the application to write to the DAX cluster. Configure the DAX cluster to write to the DynamoDB table when the maintenance window is complete.
  • B. Enable Amazon DynamoDB Streams for the DynamoDB table. Modify the application to write to the stream. Configure the stream to load the data when the maintenance window is complete.
  • C. Convert the application to an AWS Lambda function. Configure the Lambda function runtime to be longer than the maintenance window. Create an Amazon CloudWatch alarm to monitor Lambda timeouts.
  • D. Modify the application to write the document name and URLs to an Amazon Simple Queue Service (Amazon SQS) queue. Create an AWS Lambda function to read the SQS queue and write to DynamoDB.
#327 (Accuracy: 100% / 2 votes)
A company has one million users that use its mobile app. The company must analyze the data usage in near-real time. The company also must encrypt the data in near-real time and must store the data in a centralized location in Apache Parquet format for further processing.
Which solution will meet these requirements with the LEAST operational overhead?
  • A. Create an Amazon Kinesis data stream to store the data in Amazon S3. Create an Amazon Kinesis Data Analytics application to analyze the data. Invoke an AWS Lambda function to send the data to the Kinesis Data Analytics application.
  • B. Create an Amazon Kinesis data stream to store the data in Amazon S3. Create an Amazon EMR cluster to analyze the data. Invoke an AWS Lambda function to send the data to the EMR cluster.
  • C. Create an Amazon Kinesis Data Firehose delivery stream to store the data in Amazon S3. Create an Amazon EMR cluster to analyze the data.
  • D. Create an Amazon Kinesis Data Firehose delivery stream to store the data in Amazon S3. Create an Amazon Kinesis Data Analytics application to analyze the data.
#328 (Accuracy: 100% / 4 votes)
A company has an application that gives users the ability to upload images to an Amazon S3 bucket. Each night, the company launches an Amazon EC2 Spot
Fleet that processes all the images that the company received that day. The code to process the images is small (less than 200 MB), and each image takes less than 5 minutes to process.
The company wants to change the application to process the images when the images are uploaded. However, the company is concerned about the cost of this new functionality.
What should a solutions architect do to implement this change MOST cost-effectively?
  • A. Use S3 events to invoke an AWS Lambda function to process the images.
  • B. Use S3 events to launch an EC2 Reserved instance to process the images.
  • C. Use S3 events to launch a container in AWS Fargate to process the images.
  • D. Use S3 events to deploy an AWS Elastic Beanstalk application to process the images.
#329 (Accuracy: 100% / 2 votes)
A company has a three-tier image-sharing application. The application uses an Amazon EC2 instance for the front-end layer, another EC2 instance for the application layer, and a third EC2 instance for a MySQL database. A solutions architect must design a scalable and highly available solution that requires the least amount of change to the application.
Which solution meets these requirements?
  • A. Use Amazon S3 to host the front-end layer and AWS Lambda functions for the application layer. Move the database to an Amazon DynamoDB table and use Amazon S3 to store and serve users' images.
  • B. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end and the application layer. Move the database to an Amazon RDS instance with multiple read replicas to serve users' images.
  • C. Use Amazon S3 to host the front-end layer and a fleet of Amazon EC2 instances in an Auto Scaling group for the application layer. Move the database to a memory optimized instance type to store and serve users' images.
  • D. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end layer and the application layer. Move the database to an Amazon RDS Multi-AZ DB instance. Use Amazon S3 to store and serve users' images.
#330 (Accuracy: 100% / 1 votes)
A company is running a multi-tier ecommerce web application in the AWS Cloud. The application runs on Amazon EC2 Instances with an Amazon RDS MySQL
Multi-AZ DB instance. Amazon RDS is configured with the latest generation instance with 2,000 GB of storage in a General Purpose SSD (gp3) Amazon Elastic
Block Store (Amazon EBS) volume. The database performance affects the application during periods of high demand.
A database administrator analyzes the logs in Amazon CloudWatch Logs and discovers that the application performance always degrades when the number of read and write IOPS is higher than 20,000.
What should a solutions architect do to improve the application performance?
  • A. Replace the volume with a magnetic volume.
  • B. Increase the number of IOPS on the gp3 volume.
  • C. Replace the volume with a Provisioned IOPS SSD (io2) volume.
  • D. Replace the 2,000 GB volume with two 1,000 GB gp3 volumes.