Exams > Amazon > AWS Certified Solutions Architect - Associate SAA-C02
AWS Certified Solutions Architect - Associate SAA-C02
Page 36 out of 83 pages Questions 351-360 out of 822 questions
Question#351

An online shopping application accesses an Amazon RDS Multi-AZ DB instance. Database performance is slowing down the application. After upgrading to the next-generation instance type, there was no significant performance improvement.
Analysis shows approximately 700 IOPS are sustained, common queries run for long durations and memory utilization is high.
Which application change should a solutions architect recommend to resolve these issues?

  • A. Migrate the RDS instance to an Amazon Redshift cluster and enable weekly garbage collection.
  • B. Separate the long-running queries into a new Multi-AZ RDS database and modify the application to query whichever database is needed.
  • C. Deploy a two-node Amazon ElastiCache cluster and modify the application to query the cluster first and query the database only if needed.
  • D. Create an Amazon Simple Queue Service (Amazon SQS) FIFO queue for common queries and query it first and query the database only if needed.
Discover Answer Hide Answer

C

Question#352

A company is preparing to store confidential data in Amazon S3. For compliance reasons, the data must be encrypted at rest. Encryption key usage must be logged for auditing purposes. Keys must be rotated every year.
Which solution meets these requirements and is the MOST operationally efficient?

  • A. Server-side encryption with customer-provided keys (SSE-C)
  • B. Server-side encryption with Amazon S3 managed keys (SSE-S3)
  • C. Server-side encryption with AWS KMS (SSE-KMS) customer master keys (CMKs) with manual rotation
  • D. Server-side encryption with AWS KMS (SSE-KMS) customer master keys (CMKs) with automatic rotation
Discover Answer Hide Answer

D

Question#353

A company is preparing to migrate its on-premises application to AWS. The application consists of application servers and a Microsoft SQL Server database The database cannot be migrated to a different engine because SQL Server features are used in the application's NET code. The company wants to attain the greatest availability possible while minimizing operational and management overhead.
What should a solutions architect do to accomplish this?

  • A. Install SQL Server on Amazon EC2 in a Multi-AZ deployment.
  • B. Migrate the data to Amazon RDS for SQL Server in a Multi-AZ deployment.
  • C. Deploy the database on Amazon RDS for SQL Server with Multi-AZ Replicas.
  • D. Migrate the data to Amazon RDS for SQL Server in a cross-Region Multi-AZ deployment.
Discover Answer Hide Answer

B

Question#354

A company has an application running on Amazon EC2 instances in a private subnet. The application needs to store and retrieve data in Amazon S3. To reduce costs, the company wants to configure its AWS resources in a cost-effective manner.
How should the company accomplish this?

  • A. Deploy a NAT gateway to access the S3 buckets.
  • B. Deploy AWS Storage Gateway to access the S3 buckets.
  • C. Deploy an S3 gateway endpoint to access the S3 buckets.
  • D. Deploy an S3 interface endpoint to access the S3 buckets.
Discover Answer Hide Answer

B

Question#355

A media company has an application that tracks user clicks on its websites and performs analytics to provide near-real time recommendations. The application has a Heel of Amazon EC2 instances that receive data from the websites and send the data to an Amazon RDS DB instance. Another fleet of EC2 instances hosts the portion of the application that is continuously checking changes in the database and executing SQL queries to provide recommendations. Management has requested a redesign to decouple the infrastructure. The solution must ensure that data analysts are writing SQL to analyze the data only No data can the lost during the deployment.
What should a solutions architect recommend?

  • A. Use Amazon Kinesis Data Streams to capture the data from the websites Kinesis Data Firehose to persist the data on Amazon S3, and Amazon Athena to query the data.
  • B. Use Amazon Kinesis Data Streams to capture the data from the websites. Kinesis Data Analytics to query the data, and Kinesis Data Firehose to persist the data on Amazon S3.
  • C. Use Amazon Simple Queue Service (Amazon SQS) to capture the data from the websites, keep the fleet of EC2 instances, and change to a bigger instance type in the Auto Scaling group configuration.
  • D. Use Amazon Simple Notification Service (Amazon SNS) to receive data from the websites and proxy the messages to AWS Lambda functions that execute the queries and persist the data. Change Amazon RDS to Amazon Aurora Serverless to persist the data.
Discover Answer Hide Answer

B

Question#356

A company runs an application that uses multiple Amazon EC2 instances to gather data from its users. The data is then processed and transferred to Amazon S3 for long-term storage. A review of the application shows that there were long periods of time when the EC2 instances were not being used. A solutions architect needs to design a solution that optimizes utilization and reduces costs.
Which solution meets these requirements?

  • A. Use Amazon EC2 in an Auto Scaling group with On-Demand instances.
  • B. Build the application to use Amazon Lightsail with On-Demand Instances.
  • C. Create an Amazon CloudWatch cron job to automatically stop the EC2 instances when there is no activity.
  • D. Redesign the application to use an event-driven design with Amazon Simple Queue Service (Amazon SQS) and AWS Lambda.
Discover Answer Hide Answer

D

Question#357

A company is using Site-to-Site VPN connections for secure connectivity to its AWS Cloud resources from on premises. Due to an increase in traffic across the
VPN connections to the Amazon EC2 instances, users are experiencing slower VPN connectivity.
Which solution will improve the VPN throughput?

  • A. Implement multiple customer gateways for the same network to scale the throughput.
  • B. Use a transit gateway with equal cost multipath routing and add additional VPN tunnels.
  • C. Configure a virtual private gateway with equal cost multipath routing and multiple channels.
  • D. Increase the number of tunnels in the VPN configuration to scale the throughput beyond the default limit.
Discover Answer Hide Answer

A

Question#358

A company has a mobile game that reads most of its metadata from an Amazon RDS DB instance. As the game increased in popularity developers noticed slowdowns related to the game's metadata load times. Performance metrics indicate that simply scaling the database will not help. A solutions architect must explore all options that include capabilities for snapshots replication and sub-millisecond response times.
What should the solutions architect recommend to solve these issues?

  • A. Migrate the database to Amazon Aurora with Aurora Replicas.
  • B. Migrate the database to Amazon DyramoDB with global tables.
  • C. Add an Amazon ElastiCache for Redis layer in front of the database.
  • D. Add an Amazon ElastiCache for Memcached layer in front of the database.
Discover Answer Hide Answer

B

Question#359

A company has several Amazon EC2 instances set up in a private subnet for security reasons. These instances host applications that read and write large amounts of data to and from Amazon S3 regularly. Currently, subnet routing directs all the traffic destined for the internet through a NAT gateway. The company wants to optimize the overall cost without impacting the ability of the application to communicate with Amazon S3 or the outside internet.
What should a solutions architect do to optimize costs?

  • A. Create an additional NAT gateway. Update the route table to route to the NAT gateway. Update the network ACL to allow S3 traffic.
  • B. Create an internet gateway. Update the route table to route traffic to the internet gateway. Update the network ACL to allow S3 traffic.
  • C. Create a VPC endpoint for Amazon S3. Attach an endpoint policy to the endpoint. Update the route table to direct traffic to the VPC endpoint.
  • D. Create an AWS Lambda function outside of the VPC to handle S3 requests. Attach an IAM policy to the EC2 instances, allowing them to invoke the Lambda function.
Discover Answer Hide Answer

C

Question#360

A company is deploying an application in three AWS Regions using an Application Load Balancer Amazon Route 53 will be used to distribute traffic between these
Regions.
Which Route 53 configuration should a solutions architect use to provide the MOST high-performing experience?

  • A. Create an A record with a latency policy.
  • B. Create an A record with a geolocation policy.
  • C. Create a CNAME record with a failover policy.
  • D. Create a CNAME record with a geoproximity policy.
Discover Answer Hide Answer

A

chevron rightPrevious Nextchevron right