• Home
  • Articles
  • AWS-Solutions-Associate Free Exam Questions & Answers PDF Updated on Nov-2023 [Q213-Q238]

AWS-Solutions-Associate Free Exam Questions & Answers PDF Updated on Nov-2023 [Q213-Q238]

Share

AWS-Solutions-Associate Free Exam Questions and Answers PDF Updated on Nov-2023

Latest AWS-Solutions-Associate Exam Dumps Recently Updated 442 Questions


The AWS Certified Solutions Architect - Associate (SAA-C02) exam is a certification offered by Amazon Web Services (AWS) for individuals who want to validate their knowledge and skills in designing and deploying scalable, highly available, and fault-tolerant systems on AWS. AWS-Solutions-Associate exam is intended for professionals who have experience working with AWS and are responsible for designing and implementing solutions on the platform.

 

NEW QUESTION # 213
What is the durability of S3 RRS?

  • A. 99.95%
  • B. 99.99%
  • C. 99.995%
  • D. 99.999999999%

Answer: B


NEW QUESTION # 214
You are using an m1.small EC2 Instance with one 300 GB EBS volume to host a relational database. You determined that write throughput to the database needs to be increased. Which of the following approaches can help achieve this? Choose 2 answers

  • A. Enable Multi-AZ mode.
  • B. Place the instance in an Auto Scaling Groups
  • C. Increase the size of the EC2 Instance.
  • D. Put the database behind an Elastic Load Balancer.
  • E. Add an EBS volume and place into RAID 5.
  • F. Use an array of EBS volumes.

Answer: A,D


NEW QUESTION # 215
A solutions architect is creating a data processing job that runs once daily and can take up to 2 hours to complete If the job is interrupted, it has to restart from the beginning How should the solutions architect address this issue in the MOST cost-effective manner?

  • A. Create an AWS Lambda function triggered by an Amazon EventBridge (Amazon CloudWatch Events} scheduled event
  • B. Use an Amazon Elastic Container Service (Amazon ECS) Fargate task triggered by an Amazon EventBridge (Amazon CloudWatch Events) scheduled event.
  • C. Use an Amazon Elastic Container Service (Amazon ECS) task running on Amazon EC2 triggered by an Amazon EventBridge (Amazon CloudWatch Events) scheduled event.
  • D. Create a script that runs locally on an Amazon EC2 Reserved Instance that is triggered by a cron job.

Answer: B


NEW QUESTION # 216
A user is planning to make a mobile game which can be played online or offline and will be hosted on EC2.
The user wants to ensure that if someone breaks the highest score or they achieve some milestone they can inform all their colleagues through email. Which of the below mentioned AWS services helps achieve this goal?

  • A. AWS Simple Workflow Service.
  • B. Amazon Cognito
  • C. AWS Simple Queue Service.
  • D. AWS Simple Email Service.

Answer: D

Explanation:
Amazon Simple Email Service (Amazon SES) is a highly scalable and cost-effective email-sending service for businesses and developers. It integrates with other AWS services, making it easy to send emails from applications that are hosted on AWS.
Reference: http://aws.amazon.com/ses/faqs/


NEW QUESTION # 217
A group can contain many users. Can a user belong to multiple groups?

  • A. Yes always
  • B. Yes but only if they are using two factor authentication
  • C. No
  • D. Yes but only in VPC

Answer: A


NEW QUESTION # 218
If an Amazon EBS volume is the root device of an instance, can I detach it without stopping the instance?

  • A. No
  • B. Yes but only if Windows instance
  • C. Yes but only if a Linux instance
  • D. Yes

Answer: A


NEW QUESTION # 219
A company wants to host its web application on AWS using multiple Amazon EC2 instances across different AWS Regions Since the application content will be specific to each geographic region, the client requests need to be routed to the server that hosts the content for that clients Region.
What should a solutions architect do to accomplish this?

  • A. Configure Amazon Route 53 with a weighted routing policy.
  • B. Configure Amazon Route 53 with a latency routing policy.
  • C. Configure Amazon Route 53 with a multivalue answer routing policy
  • D. Configure Amazon Route 53 with a geolocation routing policy

Answer: C


NEW QUESTION # 220
A company runs a production application on a fleet of Amazon EC2 instances The application reads the data from an Amazon SQS queue and processes the messages in parallel. The message volume is unpredictable and often has intermittent traffic. This application should continually process messages without any downtime Which solution meets these requirements MOST cost-effectively?

  • A. Use Reserved Instances exclusively to handle the maximum capacity required
  • B. Use Reserved instances for the baseline capacity and use On-Demand Instances to handle additional capacity
  • C. Use Spot Instances exclusively to handle the maximum capacity required
  • D. Use Reserved Instances for the baseline capacity and use Spot InstaKes to handle additional capacity

Answer: D


NEW QUESTION # 221
A Solutions Architect must build a secure document storage platform that allows clients to access data stored on Amazon S3. Documents must be readily available for the first 15 days. After that, documents need not be readily available, and storage costs should be reduced as much as possible.
Which of the following approaches will satisfy these requirements?

  • A. Create a lifecycle rule to transition the documents from the STANDARD storage class to the GLACIER storage class after 15 days.
  • B. Create a lifecycle rule to transition the documents from the STANDARD storage class to the STANDARD_IA storage class after 15 days, and then to the GLACIER storage class after an additional 15 days.
  • C. Create a lifecycle rule to transition the documents from the STANDARD storage class to the GLACIER storage class after 30 days.
  • D. Create a lifecycle rule to transition documents from the STANDARD storage class to the STANDARD_IA storage class after 30 days and then to the GLACIER storage class after an additional 30 days.

Answer: A


NEW QUESTION # 222
A Solutions Architect is designing a stateful web application that will run for one year (24/7) and then be decommissioned. Load on this platform will be constant, using a number of r4.8xlarge instances. Key drivers for this system include high availability, but elasticity is not required.
What is the MOST cost-effective way to purchase compute for this platform?

  • A. Standard Reserved Instances
  • B. Scheduled Reserved Instances
  • C. Convertible Reserved Instances
  • D. Spot Instances

Answer: A


NEW QUESTION # 223
A company is building a payment application that must be highly available even during regional service disruptions A solutions architect must design a data storage solution that can be easily replicated and used in other AWS Regions. The application also requires low-latency atomicity, consistency, isolation, and durability (ACID) transactions that need to be immediately available to generate reports The development team also needs to use SQL.
Which data storage solution meets these requirements'?

  • A. Amazon S3 with cross-Region replication and Amazon Athena
  • B. Amazon Aurora Global Database
  • C. MySQL on Amazon EC2 instances with Amazon Elastic Block Store (Amazon EBS) snapshot replication
  • D. Amazon DynamoDB global tables

Answer: A


NEW QUESTION # 224
Amazon RDS supports SOAP only through __________.

  • A. HTTP or HTTPS
  • B. HTTP
  • C. HTTPS
  • D. TCP/IP

Answer: C


NEW QUESTION # 225
A company is running an email application across multiple AWS Regions. The company uses Ohio (us- east-2) as the primary Region and Northern Virginia (us-east-1) as the Disaster Recovery (DR) Region.
The data is continuously replicated from the primary Region to the DR Region by a single instance on the public subnet in both Regions. The replication messages between the Regions have a significant backlog during certain times of the day. The backlog clears on its own after a short time, but it affects the application's RPO.
Which of the following solutions should help remediate this performance problem? (Choose two.)

  • A. Have the instance in the primary Region write the data to an Amazon SQS queue in the primary Region instead, and have the instance in the DR Region poll from this queue.
  • B. Use multiple instances on the primary and DR Regions to send and receive the replication data.
  • C. Attach an additional elastic network interface to each of the instances in both Regions and set up load balancing between the network interfaces.
  • D. Increase the size of the instances.
  • E. Change the DR Region to Oregon (us-west-2) instead of the current DR Region.

Answer: B,C


NEW QUESTION # 226
Your company is getting ready to do a major public announcement of a social media site on AWS. The website is running on EC2 instances deployed across multiple Availability Zones with a Multi-AZ RDS MySQL Extra Large DB Instance. The site performs a high number of small reads and writes per second and relies on an eventual consistency model. After comprehensive tests you discover that there is read contention on RDS MySQL. Which are the best approaches to meet these requirements? (Choose 2 answers)

  • A. Deploy ElasticCache in-memory cache running in each availability zone
  • B. Implement sharding to distribute load to multiple RDS MySQL instances
  • C. Increase the RDS MySQL Instance size and Implement provisioned lOPS
  • D. Add an RDS MySQL read replica in each availability zone

Answer: A,C


NEW QUESTION # 227
A/An _____ acts as a firewall that controls the traffic allowed to reach one or more instances.

  • A. Private IP Addresses
  • B. IAM
  • C. ACL
  • D. security group

Answer: D


NEW QUESTION # 228
A social media company is building a feature tor its website. The feature will give users the ability to upload photos. The company expects significant increases in demand during large events and must ensure that the website can handle the upload traffic from users.
Which solution meets these requirements with the MOST scalability?

  • A. Generate Amazon S3 presigned URLs in the application. Upload files directly from the user's browser into an S3 bucket
  • B. Provision an AWS Storage Gateway file gateway. Upload files directly from the user's browser to the file gateway.
  • C. Provision an Amazon Elastic File System (Amazon EFS) file system. Upload files directly from the user's browser to the file system.
  • D. Upload files from the user's browser to the application servers Transfer the files to an Amazon S3 bucket.

Answer: A


NEW QUESTION # 229
In Amazon ElastiCache, which of the following statements is correct?

  • A. You cannot use ElastiCache in a VPC that is configured for dedicated instance tenancy.
  • B. When you launch an ElastiCache cluster into an Amazon VPC private subnet, every cache node is assigned a public IP address within that subnet.
  • C. ElastiCache is not fully integrated with Amazon Virtual Private Cloud (VPC).
  • D. If your AWS account supports only the EC2-VPC platform, ElastiCache will never launch your cluster in a VPC.

Answer: A

Explanation:
The VPC must allow non-dedicated EC2 instances. You cannot use ElastiCache in a VPC that is configured for dedicated instance tenancy.
http://docs.aws.amazon.com/AmazonElastiCache/latest/UserGuide/AmazonVPC.EC.html


NEW QUESTION # 230
Is Federated Storage Engine currently supported by Amazon RDS for MySQL?

  • A. Only for Oracle RDS instances
  • B. No
  • C. Yes
  • D. Only in VPC

Answer: B


NEW QUESTION # 231
When using the following AWS services, which should be implemented in multiple Availability Zones for high availability solutions? Choose 2 answers

  • A. Amazon Elastic Load Balancing
  • B. Amazon Simple Notification Service (SNS)
  • C. Amazon Elastic Compute Cloud (EC2)
  • D. Amazon Simple Storage Service {53)
  • E. Amazon DynamoDB

Answer: A,C


NEW QUESTION # 232
Which of the following notification endpoints or clients are supported by Amazon Simple Notification Service? Choose 2 answers

  • A. CloudFront distribution
  • B. Email
  • C. File Transfer Protocol
  • D. Short Message Service
  • E. Simple Network Management Protocol

Answer: B,D

Explanation:
Reference: http://docs.aws.amazon.com/sns/latest/dg/welcome.html


NEW QUESTION # 233
A company is performing an AWS Well-Architected Framework review of an existing workload deployed on AWS. The review identified a public-facing website running on the same Amazon EC2 instance as a Microsoft Active Directory domain controller that was install recently to support other AWS services. A solutions architect needs to recommend a new design that would improve the security of the architecture and minimize the administrative demand on IT staff.
What should the solutions architect recommend?

  • A. Create another EC2 instance in the same subnet and reinstall Active Directory on it. Uninstall Active Directory.
  • B. Use AWS Directory Service to create an Active Directory connector. Proxy Active Directory requests to the Active domain controller running on the current EC2 instance.
  • C. Use AWS Directory Service to create a managed Active Directory. Uninstall Active Directory on the current EC2 instance.
  • D. Enable AWS Single Sign-On (AWS SSO) with Security Assertion Markup Language (SAML) 2.0 federation with the current Active Directory controller. Modify the EC2 instance's security group to deny public access to Active Directory.

Answer: C

Explanation:
AWS Managed Microsoft AD
AWS Directory Service lets you run Microsoft Active Directory (AD) as a managed service. AWS Directory Service for Microsoft Active Directory, also referred to as AWS Managed Microsoft AD, is powered by Windows Server 2012 R2. When you select and launch this directory type, it is created as a highly available pair of domain controllers connected to your virtual private cloud (VPC). The domain controllers run in different Availability Zones in a region of your choice. Host monitoring and recovery, data replication, snapshots, and software updates are automatically configured and managed for you.
Reference: https://docs.aws.amazon.com/directoryservice/latest/admin-guide/directory_microsoft_ad.html


NEW QUESTION # 234
Identify an application that polls AWS Data Pipeline for tasks and then performs those tasks.

  • A. A task optimizer
  • B. A task runner
  • C. A task executor
  • D. A task deployer

Answer: B

Explanation:
A task runner is an application that polls AWS Data Pipeline for tasks and then performs those tasks. You can either use Task Runner as provided by AWS Data Pipeline, or create a custom Task Runner application.
Task Runner is a default implementation of a task runner that is provided by AWS Data Pipeline. When Task Runner is installed and configured, it polls AWS Data Pipeline for tasks associated with pipelines that you have activated. When a task is assigned to Task Runner, it performs that task and reports its status back to AWS Data Pipeline. If your workflow requires non-default behavior, you'll need to implement that functionality in a custom task runner.
http://docs.aws.amazon.com/datapipeline/latest/DeveloperGuide/dp-how-remote-taskrunner-client.html


NEW QUESTION # 235
Your company has recently extended its datacenter into a VPC on AVVS to add burst computing capacity as needed Members of your Network Operations Center need to be able to go to the AWS Management Console and administer Amazon EC2 instances as necessary You don't want to create new lAM users for each NOC member and make those users sign in again to the AWS Management Console Which option below will meet the needs for your NOC members?

  • A. Use web Identity Federation to retrieve AWS temporary security credentials to enable your NOC members to sign in to the AWS Management Console.
  • B. Use your on-premises SAML 2.0-compliant identity provider (lOP) to grant the NOC members federated access to the AWS Management Console via the AWS sing le sign-on (550) endpoint.
  • C. Use your on-premises SAML2.0-compliam identity provider (lOP) to retrieve temporary security credentials to enable NOC members to sign in to the AWS Management Console.
  • D. Use OAuth 2 0 to retrieve temporary AWS security credentials to enable your NOC members to sign in to the AVVS Management Console.

Answer: C


NEW QUESTION # 236
A company wants to share forensic accounting data is stored in an Amazon RDS DB instance with an external auditor. The Auditor has its own AWS account and requires its own copy of the database.
How should the company securely share the database with the auditor?

  • A. Create a read replica of the database and configure IAM standard database authentication to grant the auditor access.
  • B. Make an encrypted snapshot of the database, share the snapshot, and allow access to the AWS Key Management Service (AWS KMS) encryption key.
  • C. Copy a snapshot of the database to Amazon S3 and assign an IAM role to the auditor to grant access to the object in that bucket.
  • D. Export the database contents to text files, store the files in Amazon S3, and create a new IAM user for the auditor with access to that bucket.

Answer: A


NEW QUESTION # 237
A company hosts an application used to upload files to an Amazon S3 bucket. Once uploaded, the files are processed to extract metadata, which takes less than 5 seconds. The volume and frequency of the uploads varies from a few files each hour to hundreds of concurrent uploads. The company has asked a solutions architect to design a cost-effective architecture that will meet these requirements.
What should the solutions architect recommend?

  • A. Configure Amazon Kinesis Data Streams to process and send data to Amazon S3. Invoke an AWS Lambda function to process the files.
  • B. Configure an Amazon Simple Notification Service (Amazon SNS) topic to process the files uploaded to Amazon S3. Invoke an AWS Lambda function to process the files.
  • C. Configure an object-created event notification within the S3 bucket to invoke an AWS Lambda function to process the files.
  • D. Configure AWS CloudTrail trails to log S3 API calls. Use AWS AppSync to process the files.

Answer: C


NEW QUESTION # 238
......

Amazon AWS-Solutions-Associate Real 2023 Braindumps Mock Exam Dumps: https://www.testpassking.com/AWS-Solutions-Associate-exam-testking-pass.html

AWS-Solutions-Associate Exam Questions | Real AWS-Solutions-Associate Practice Dumps: https://drive.google.com/open?id=1MhCL3c7mOfnJd9HJ0uSpcuR4mIjv010j

Related Articles

more
Amazon AWS-Solutions-Associate Certification Practice Exam

Copyright © 2026 TestPassKing NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy