Browse SAA Questions
Study all 100 questions at your own pace with detailed explanations
Total: 100 questionsPage: 4 of 10
Question 31 of 100
A company is planning on hosting their development, test and production applications on EC2 Instances in AWS. They are worried about how access control would be given to relevant IT Admins for each of the above environments. As an architect, what would you suggest for managing the relevant accesses?
AAdd tags to the instances marking each environment and then segregate access using IAM Policies.
BAdd Userdata to the underlying instances to mark each environment.
CAdd Metadata to the underlying instances to mark each environment.
DAdd each environment to a separate Auto Scaling Group.
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 32 of 100
A data analytics startup company asks a Solutions Architect to recommend an AWS data store option for indexed data. The data processing engine will generate an input more than 64 TB of processed data every day, with item sizes reaching up to 300KB. The startup is flexible with data storage models and is more interested in a database that requires minimal effort to scale with a growing dataset size. Which AWS data store service should the Architect recommend?
AAmazon RDS
BAmazon Redshift
CAmazon DynamoDB
DAmazon S3
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 33 of 100
You are building an automated transcription service in which Amazon EC2 worker instances process an uploaded audio file and generate a text file. You must store both of these files in the same durable storage until the text file is retrieved. You do not know what the storage capacity requirements are. Which storage option is both cost-efficient and scalable?
AMultiple Amazon EBS volume with snapshots
BA single Amazon Glacier vault
CA single Amazon S3 bucket
DMultiple instance stores
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 34 of 100
A Solutions Architect is designing the storage layer for a production relational database. The database will run on Amazon EC2. The database is accessed by an application that performs intensive read and writes, so the database requires the LOWEST random I/O latency. Which data storage method fulfills the above requirements?
AStore data in a file system backed by Amazon Elastic File System (EFS)
BStore data in Amazon S3 and use a third-party solution to expose Amazon S3 as a file system to the database server.
CStore data in Amazon DynamoDB and emulate relational database semantics.
DStripe data across multiple Amazon EBS volumes using RAID 0
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 35 of 100
A Solutions Architect needs to deploy an HTTP/HTTPS service on Amazon EC2 instances with support for WebSockets using load balancers. How can the Architect meet these requirements?
AConfigure a Network Load balancer.
BConfigure an Application Load Balancer.
CConfigure a Classic Load Balancer.
DConfigure a Layer-4 Load Balancer.
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 36 of 100
An application on an Amazon EC2 instance routinely stops responding to requests and requires a reboot to recover. The application logs are already exported into Amazon CloudWatch, and you notice that the problem consistently follows the appearance of a specific message in the log. The application team is working to address the bug, but has not provided a date for the fix. What work around can you implement to automate recovery of the instance until the fix is deployed?
ACreate an Amazon CloudWatch alarm on an Amazon CloudWatch Logs filter for that message; based on that alarm, trigger an Amazon CloudWatch action to reboot the instance
BCreate an AWS CloudTrail alarm on low CPU; based on that alarm, trigger an Amazon SNS message to the Operations team
CCreate an Amazon CloudWatch alarm on instance memory usage; based on that alarm, trigger an Amazon CloudWatch action to reboot the instance
DCreate an AWS CloudTrail alarm to detect the deadlock, based on the alarm, trigger an Amazon SNS message to the Operations team
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 37 of 100
You are designing a system that has a Bastion host. This component needs to be highly available without human intervention. Which of the following approaches would you select?
ARun the bastion on two instances one in each AZ
BRun the bastion on an active Instance in one AZ and have an AMI ready to boot up in the event of failure
CConfigure the bastion instance in an Auto Scaling group Specify the Auto Scaling group to include multiple AZs but have a min-size of 1 and max-size of 1
DConfigure an ELB in front of the bastion instance
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 38 of 100
When you are designing to support a 24-hour flash sale, which one of the following methods best describes a strategy to lower the latency while keeping up with unusually heavy traffic?
ALaunch enhanced networking instances in a placement group to support the heavy traffic
BApply Service Oriented Architecture (SOA) principles instead of a 3-tier architecture
CUse Elastic Beanstalk to enable blue-green deployment
DUse ElastiCache as in-memory storage on top of DynamoDB to store user sessions
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 39 of 100
A web application runs on 10 EC2 instances launched from single customer Amazon Machine Image (AMI). The EC2 instances are behind an Internet Application Load Balancer. Amazon Route 53 provides DNS for the application. How should a Solutions Architect automate recovery if a web server instance stops replying to requests?
ALaunch the instances in an Auto Scaling group with an Elastic Load Balancing health check.
BLaunch instances in multiple Availability Zones and set the load balancer to Multi-AZ
CAdd CloudWatch alarm actions for each instance to restart if the Status Check (Any) fails
DAdd Route 53 records for each instance with an instance health check
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation
Question 40 of 100
We have developed a mobile application that gets downloaded several hundred times a week. What authentication method should we enable for the mobile clients to access images that are stored in an AWS S3 bucket that provides us with the highest flexibility and rotates credentials? Choose the correct answer:
AIdentity Federation based on AWS STS using an AWS IAM policy for the respective S3 bucket
BUse ACLs to restrict the access to the selects AWS accounts
CSet up S3 bucket policies with a conditional statement restricting IP address
DIAM user per every registered client with an IAM policy that grants S3 access to the respective bucket
💡 Try to answer first, then click "Show Answer" to see the correct answer and explanation