Browse SAA Questions
Study all 100 questions at your own pace with detailed explanations
Total: 100 questionsPage: 1 of 10
Question 1 of 100
Which is an operational process performed by AWS for data security?
AAES-256 encryption of data stored on any shared storage device
BDecommissioning of storage devices using industry-standard practices
CBackground virus scans of EBS volumes and EBS snapshots
DReplication of data across multiple AWS Regions
ESecure wiping of EBS data when an EBS volume is un-mounted
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 2 of 100
A customer has a web application that uses cookie-based sessions to track logged-in users. It is deployed on AWS using Elastic Load Balancing and Auto Scaling. When load increases, Auto Scaling launches new instances, but the load on the other instances does not decrease; this causes all existing users to have a slow experience. What could be the cause of the poor user experience?
AELB DNS record’s TTL is set too high.
BThe new instances are not being added to the ELB during the Auto Scaling cooldown period.
CThe website uses the dynamic content feature of Amazon CloudFront which is keeping connections alive to the ELB.
DELB is continuing to send requests with previously established sessions to the same backend instances rather than spreading them out to the new instances.
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 3 of 100
A user has created a photo editing software and hosted it on EC2. The software accepts requests from the user about the photo format and resolution and sends a message to S3 to enhance the picture accordingly. Which of the below mentioned AWS services will help make a scalable software with the AWS infrastructure in this scenario?
AAWS Glacier
BAWS Elastic Transcoder
CAWS Simple Notification Service
DAWS Simple Queue Service
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 4 of 100
An application running on EC2 instances processes sensitive information stored on Amazon S3. The information is accessed over the Internet. The security team is concerned that the Internet connectivity to Amazon S3 is a security risk. Which solution will resolve the security concern?
AAccess the data through an Internet Gateway.
BAccess the data through a VPN connection.
CAccess the data through a NAT Gateway.
DAccess the data through a VPC endpoint for Amazon S3.
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 5 of 100
Your Auto Scaling group is configured to launch one new Amazon EC2 instance if the overall CPU load exceeds 65% over a five-minute interval. Occasionally, the Auto Scaling group launches a second Amazon EC2 instance before the first is operational. The second instance is not required and introduces needless compute costs. How can you prevent the Auto Scaling group from launching the second instance?
AConfigure a lifecycle hook for your Auto Scaling group
BAdd a scaling-specific cooldown period to the scaling policy
CAdjust the CPU threshold that triggers a scaling action
DAttach a new launch configuration to the Auto Scaling group
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 6 of 100
A company is building software on AWS that requires access to various AWS services. Which configuration should be used to ensure that AWS credentials (i.e., Access Key ID/Secret Access Key combination) are not compromised?
AEnable Multi-Factor Authentication for your AWS root account.
BAssign an IAM role to the Amazon EC2 instance
CStore the AWS Access Key ID/Secret Access Key combination in software comments.
DAssign an IAM user to the Amazon EC2 Instance.
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 7 of 100
A web application allows customers to upload orders to an S3 bucket. The resulting Amazon S3 events trigger a Lambda function that inserts a message to an SQS queue. A single EC2 instance reads messages from the queue, processes them, and stores them in a DynamoDB table partitioned by unique order ID. Next month traffic is expected to increase by a factor of 10 and a Solutions Architect is reviewing the architecture for possible scaling problems. Which component is MOST likely to need re-architecting to be able to scale to accommodate the new traffic?
ALambda function
BSQS queue
CEC2 instance
DDynamoDB table
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 8 of 100
A customer wants to track access to their Amazon Simple Storage Service (S3) buckets and also use this information for their internal security and access audits. Which of the following will meet the Customer requirement?
AEnable AWS CloudTrail to audit all Amazon S3 bucket access.
BEnable server access logging for all required Amazon S3 buckets
CEnable the Requester Pays option to track access via AWS Billing
DEnable Amazon S3 event notifications for Put and Post.
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 9 of 100
You have EC2 instances in three availability zones, with a load balancer configured on all the three AZs. You observe that one availability zone is receiving more traffic as compared to other AZs, how can you solve this problem effectively
ADisable sticky sessions
BReduce the frequency of the health checks
CEnable cross zone load balancer
DAmazon recommends to use two availability zone behind ELB
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 10 of 100
How can you secure data at rest on an EBS volume?
AEncrypt the volume using the S3 server-side encryption service
BAttach the volume to an instance using EC2’s SSL interface.
CCreate an IAM policy that restricts read and write access to the volume.
DUse EBS encryption
EUse an encrypted file system on top of the EBS volume
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation