Amazon AWS Certified Solutions Architect - Associate SAA-C03
Prev

There are 677 results

Next
#331 (Accuracy: 96% / 8 votes)
A company has a static website that is hosted on Amazon CloudFront in front of Amazon S3. The static website uses a database backend. The company notices that the website does not reflect updates that have been made in the website’s Git repository. The company checks the continuous integration and continuous delivery (CI/CD) pipeline between the Git repository and Amazon S3. The company verifies that the webhooks are configured properly and that the CI/CD pipeline is sending messages that indicate successful deployments.

A solutions architect needs to implement a solution that displays the updates on the website.

Which solution will meet these requirements?
  • A. Add an Application Load Balancer.
  • B. Add Amazon ElastiCache for Redis or Memcached to the database layer of the web application.
  • C. Invalidate the CloudFront cache.
  • D. Use AWS Certificate Manager (ACM) to validate the website’s SSL certificate.
#332 (Accuracy: 100% / 3 votes)
A company uses Amazon EC2 instances and Amazon Elastic Block Store (Amazon EBS) volumes to run an application. The company creates one snapshot of each EBS volume every day to meet compliance requirements. The company wants to implement an architecture that prevents the accidental deletion of EBS volume snapshots. The solution must not change the administrative rights of the storage administrator user.

Which solution will meet these requirements with the LEAST administrative effort?
  • A. Create an IAM role that has permission to delete snapshots. Attach the role to a new EC2 instance. Use the AWS CLI from the new EC2 instance to delete snapshots.
  • B. Create an IAM policy that denies snapshot deletion. Attach the policy to the storage administrator user.
  • C. Add tags to the snapshots. Create retention rules in Recycle Bin for EBS snapshots that have the tags.
  • D. Lock the EBS snapshots to prevent deletion.
#333 (Accuracy: 95% / 8 votes)
A company recently migrated to the AWS Cloud. The company wants a serverless solution for large-scale parallel on-demand processing of a semistructured dataset. The data consists of logs, media files, sales transactions, and IoT sensor data that is stored in Amazon S3. The company wants the solution to process thousands of items in the dataset in parallel.

Which solution will meet these requirements with the MOST operational efficiency?
  • A. Use the AWS Step Functions Map state in Inline mode to process the data in parallel.
  • B. Use the AWS Step Functions Map state in Distributed mode to process the data in parallel.
  • C. Use AWS Glue to process the data in parallel.
  • D. Use several AWS Lambda functions to process the data in parallel.
#334 (Accuracy: 100% / 4 votes)
A company has a mobile game that reads most of its metadata from an Amazon RDS DB instance. As the game increased in popularity, developers noticed slowdowns related to the game's metadata load times. Performance metrics indicate that simply scaling the database will not help. A solutions architect must explore all options that include capabilities for snapshots, replication, and sub-millisecond response times.

What should the solutions architect recommend to solve these issues?
  • A. Migrate the database to Amazon Aurora with Aurora Replicas.
  • B. Migrate the database to Amazon DynamoDB with global tables.
  • C. Add an Amazon ElastiCache for Redis layer in front of the database.
  • D. Add an Amazon ElastiCache for Memcached layer in front of the database.
#335 (Accuracy: 100% / 6 votes)
A pharmaceutical company is developing a new drug. The volume of data that the company generates has grown exponentially over the past few months. The company's researchers regularly require a subset of the entire dataset to be immediately available with minimal lag. However, the entire dataset does not need to be accessed on a daily basis. All the data currently resides in on-premises storage arrays, and the company wants to reduce ongoing capital expenses.

Which storage solution should a solutions architect recommend to meet these requirements?
  • A. Run AWS DataSync as a scheduled cron job to migrate the data to an Amazon S3 bucket on an ongoing basis.
  • B. Deploy an AWS Storage Gateway file gateway with an Amazon S3 bucket as the target storage. Migrate the data to the Storage Gateway appliance.
  • C. Deploy an AWS Storage Gateway volume gateway with cached volumes with an Amazon S3 bucket as the target storage. Migrate the data to the Storage Gateway appliance.
  • D. Configure an AWS Site-to-Site VPN connection from the on-premises environment to AWS. Migrate data to an Amazon Elastic File System (Amazon EFS) file system.
#336 (Accuracy: 100% / 4 votes)
A company has customers located across the world. The company wants to use automation to secure its systems and network infrastructure. The company's security team must be able to track and audit all incremental changes to the infrastructure.

Which solution will meet these requirements?
  • A. Use AWS Organizations to set up the infrastructure. Use AWS Config to track changes.
  • B. Use AWS CloudFormation to set up the infrastructure. Use AWS Config to track changes.
  • C. Use AWS Organizations to set up the infrastructure. Use AWS Service Catalog to track changes.
  • D. Use AWS CloudFormation to set up the infrastructure. Use AWS Service Catalog to track changes.
#337 (Accuracy: 100% / 6 votes)
A company has multiple AWS accounts in an organization in AWS Organizations that different business units use. The company has multiple offices around the world. The company needs to update security group rules to allow new office CIDR ranges or to remove old CIDR ranges across the organization. The company wants to centralize the management of security group rules to minimize the administrative overhead that updating CIDR ranges requires.

Which solution will meet these requirements MOST cost-effectively?
  • A. Create VPC security groups in the organization's management account. Update the security groups when a CIDR range update is necessary.
  • B. Create a VPC customer managed prefix list that contains the list of CIDRs. Use AWS Resource Access Manager (AWS RAM) to share the prefix list across the organization. Use the prefix list in the security groups across the organization.
  • C. Create an AWS managed prefix list. Use an AWS Security Hub policy to enforce the security group update across the organization. Use an AWS Lambda function to update the prefix list automatically when the CIDR ranges change.
  • D. Create security groups in a central administrative AWS account. Create an AWS Firewall Manager common security group policy for the whole organization. Select the previously created security groups as primary groups in the policy.
#338 (Accuracy: 100% / 5 votes)
A company hosts a data lake on Amazon S3. The data lake ingests data in Apache Parquet format from various data sources. The company uses multiple transformation steps to prepare the ingested data. The steps include filtering of anomalies, normalizing of data to standard date and time values, and generation of aggregates for analyses.

The company must store the transformed data in S3 buckets that data analysts access. The company needs a prebuilt solution for data transformation that does not require code. The solution must provide data lineage and data profiling. The company needs to share the data transformation steps with employees throughout the company.

Which solution will meet these requirements?
  • A. Configure an AWS Glue Studio visual canvas to transform the data. Share the transformation steps with employees by using AWS Glue jobs.
  • B. Configure Amazon EMR Serverless to transform the data. Share the transformation steps with employees by using EMR Serverless jobs.
  • C. Configure AWS Glue DataBrew to transform the data. Share the transformation steps with employees by using DataBrew recipes.
  • D. Create Amazon Athena tables for the data. Write Athena SQL queries to transform the data. Share the Athena SQL queries with employees.
#339 (Accuracy: 100% / 2 votes)
A company is using an Application Load Balancer (ALB) to present its application to the internet. The company finds abnormal traffic access patterns across the application. A solutions architect needs to improve visibility into the infrastructure to help the company understand these abnormalities better.

What is the MOST operationally efficient solution that meets these requirements?
  • A. Create a table in Amazon Athena for AWS CloudTrail logs. Create a query for the relevant information.
  • B. Enable ALB access logging to Amazon S3. Create a table in Amazon Athena, and query the logs.
  • C. Enable ALB access logging to Amazon S3. Open each file in a text editor, and search each line for the relevant information.
  • D. Use Amazon EMR on a dedicated Amazon EC2 instance to directly query the ALB to acquire traffic access log information.
#340 (Accuracy: 100% / 4 votes)
A company hosts a database that runs on an Amazon RDS instance that is deployed to multiple Availability Zones. The company periodically runs a script against the database to report new entries that are added to the database. The script that runs against the database negatively affects the performance of a critical application. The company needs to improve application performance with minimal costs.

Which solution will meet these requirements with the LEAST operational overhead?
  • A. Add functionality to the script to identify the instance that has the fewest active connections. Configure the script to read from that instance to report the total new entries.
  • B. Create a read replica of the database. Configure the script to query only the read replica to report the total new entries.
  • C. Instruct the development team to manually export the new entries for the day in the database at the end of each day.
  • D. Use Amazon ElastiCache to cache the common queries that the script runs against the database.