Browse SAA Questions
Study all 100 questions at your own pace with detailed explanations
Total: 100 questionsPage: 10 of 10
Question 91 of 100
A Solutions Architect is designing an online shopping application running in a VPC on EC2 instances behind an ELB Application Load Balancer. The instances run in an Auto Scaling group across multiple Availability Zones. The application tier must read and write data to a customer managed database cluster. There should be no access to the database from the Internet, but the cluster must be able to obtain software patches from the Internet. Which VPC design meets these requirements?
APublic subnets for both the application tier and the database cluster
BPublic subnets for the application tier, and private subnets for the database cluster
CPublic subnets for the application tier and NAT Gateway, and private subnets for the database cluster
DPublic subnets for the application tier, and private subnets for the database cluster and NAT Gateway
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 92 of 100
A Solutions Architect has been asked to deliver video content stored on Amazon S3 to specific users from Amazon CloudFront while restricting access by unauthorized users. How can the Architect implement a solution to meet these requirements?
AConfigure CloudFront to use signed-URLs to access Amazon S3
BStore the videos as private objects in Amazon S3 and let CloudFront serve the objects by using only Origin Access Identity (OAI)
CUse Amazon S3 static website as the origin of CloudFront, and configure CloudFront to deliver the videos by generating a signed URL for users
DUse OAI for CloudFront to access private S3 objects and select the Restrict Viewer Access option in CloudFront cache behavior to use signed URLs.
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 93 of 100
A restaurant reservation application needs the ability to maintain a waiting list. When a customer tries to reserve a table, and none are available, the customer must be put on the waiting list, and the application must notify the customer when a table becomes free. What service should the Solutions Architect recommend ensuring that the system respects the order in which the customer requests are put onto the waiting list?
AAmazon SNS
BAWS Lambda with sequential dispatch
CA FIFO queue in Amazon SQS
DA standard queue in Amazon SQS
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 94 of 100
Your company has separate AWS account for development and production. Each developer is assigned an IAM user in the development account. Developers occasionally need to access the production account to roll out changes to that environment. Your company does not allow the creation of IAM users in the production account?
ACreate an IAM role in the development account. Allow IAM Users in the development account to assume the role
BCreate an IAM group in the production account. Grant IAM users in the development account membership in the group
CCreate an IAM role in the production account. Allow IAM users in the development account to assume the role
DCreate an IAM group in the development account Grant IAM users in the development account membership in the group
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 95 of 100Multiple Choice
What conditions could cause a Multi-AZ Amazon RDS failover to occur? (Select TWO)
ARDS instance is stopped manually.
BA replica of the RDS instance is created in a different region.
CAn Availability Zone becomes unavailable.
DAnother master user is created.
EA failure of the primary database instance.
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 96 of 100
Your organization is using ALB for servicing requests. One of the API request is facing consistent performance issues. Upon checking the flow, you find that the request flows through multiple services. How can you track the performance or timing issues in the application stack at the granularity of an individual request?
ATrack the request using "X-Amzn-Trace-Id" HTTP header
BTrack the request using "X-Amzn-Track-Id" HTTP header
CTrack the request using "X-Aws-Track-Id" HTTP header
DTrack the request using "X-Aws-Trace-Id" HTTP header
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 97 of 100
You are deploying an application on Amazon Elastic Cloud Compute (EC2) that must call AWS APIs. What method of securely passing credentials to the application should you use?
APass API credentials to the instance using instance userdata.
BUse AWS Identity and Access Management roles for EC2 instances.
CEmbed the API credentials into your JAR files.
DStore API credentials as an object in Amazon Simple Storage Service
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 98 of 100
A solutions architect must select the storage type for a big data application that requires very high sequential I/0. The data must persist if the instance is stopped. Which of the following storage types will provide the best fit at the LOWEST cost for the application?
AAn Amazon EC2 instance store local SSD volume
BAn Amazon EBS provisioned IOPS SSD volume
CAn Amazon EBS Throughput Optimized HDD volume
DAn Amazon EBS general purpose SSD volume
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 99 of 100
A bank is writing new software that is heavily dependent upon database transactions for write consistency. The application will also occasionally generate reports on data in the database and will do joins across multiple tables. The database must automatically scale as the amount of data grows. Which AWS service should be used to run the database?
AAmazon S3
BAmazon Aurora
CAmazon DynamoDB
DAmazon Redshift
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 100 of 100
An application server needs to be in a private subnet without access to the internet. The solution must retrieve and upload files to an Amazon S3 bucket. How should a Solutions Architect design a solution to meet these requirements?
AUse Amazon S3 VPC endpoints
BUse a NAT Gateway
CDeploy a proxy server
DUse a private Amazon S3 Bucket
đź’ˇ Try to answer first, then click "Show Answer" to see the correct answer and explanation