Exams > Amazon > AWS Certified Solutions Architect - Associate SAA-C02
AWS Certified Solutions Architect - Associate SAA-C02
Page 4 out of 83 pages Questions 31-40 out of 822 questions
Question#31

A company is investigating potential solutions that would collect, process, and store users' service usage data. The business objective is to create an analytics capability that will enable the company to gather operational insights quickly using standard SQL queries. The solution should be highly available and ensure
Atomicity, Consistency, Isolation, and Durability (ACID) compliance in the data tier.
Which solution should a solutions architect recommend?

  • A. Use an Amazon Timestream database.
  • B. Use an Amazon Neptune database in a Multi-AZ design.
  • C. Use a fully managed Amazon RDS for MySQL database in a Multi-AZ design.
  • D. Deploy PostgreSQL on an Amazon EC2 instance that uses Amazon Elastic Block Store (Amazon EBS) Throughput Optimized HDD (st1) storage.
Discover Answer Hide Answer

C

Question#32

A company recently launched its website to serve content to its global user base. The company wants to store and accelerate the delivery of static content to its users by leveraging Amazon CloudFront with an Amazon EC2 instance attached as its origin.
How should a solutions architect optimize high availability for the application?

  • A. Use [email protected] for CloudFront.
  • B. Use Amazon S3 Transfer Acceleration for CloudFront.
  • C. Configure another EC2 instance in a different Availability Zone as part of the origin group.
  • D. Configure another EC2 instance as part of the origin server cluster in the same Availability Zone.
Discover Answer Hide Answer

A

Question#33

An application running on an Amazon EC2 instance in VPC-A needs to access files in another EC2 instance in VPC-B. Both are in separate AWS accounts. The network administrator needs to design a solution to configure secure access to EC2 instance in VPC-B from VPC-A. The connectivity should not have a single point of failure or bandwidth concerns.
Which solution will meet these requirements?

  • A. Set up a VPC peering connection between VPC-A and VPC-B.
  • B. Set up VPC gateway endpoints for the EC2 instance running in VPC-B.
  • C. Attach a virtual private gateway to VPC-B and set up routing from VPC-A.
  • D. Create a private virtual interface (VIF) for the EC2 instance running in VPC-B and add appropriate routes from VPC-A.
Discover Answer Hide Answer

D

Question#34

A company currently stores symmetric encryption keys in a hardware security module (HSM). A solutions architect must design a solution to migrate key management to AWS. The solution should allow for key rotation and support the use of customer provided keys.
Where should the key material be stored to meet these requirements?

  • A. Amazon S3
  • B. AWS Secrets Manager
  • C. AWS Systems Manager Parameter store
  • D. AWS Key Management Service (AWS KMS)
Discover Answer Hide Answer

D

Question#35

A recent analysis of a company's IT expenses highlights the need to reduce backup costs. The company's chief information officer wants to simplify the on- premises backup infrastructure and reduce costs by eliminating the use of physical backup tapes. The company must preserve the existing investment in the on- premises backup applications and workflows.
What should a solutions architect recommend?

  • A. Set up AWS Storage Gateway to connect with the backup applications using the NFS interface.
  • B. Set up an Amazon EFS file system that connects with the backup applications using the NFS interface.
  • C. Set up an Amazon EFS file system that connects with the backup applications using the iSCSI interface.
  • D. Set up AWS Storage Gateway to connect with the backup applications using the iSCSI-virtual tape library (VTL) interface.
Discover Answer Hide Answer

D

Question#36

A company hosts an application on an Amazon EC2 instance that requires a maximum of 200 GB storage space. The application is used infrequently, with peaks during mornings and evenings. Disk I/O varies, but peaks at 3,000 IOPS. The chief financial officer of the company is concerned about costs and has asked a solutions architect to recommend the most cost-effective storage option that does not sacrifice performance.
Which solution should the solutions architect recommend?

  • A. Amazon Elastic Block Store (Amazon EBS) Cold HDD (sc1)
  • B. Amazon Elastic Block Store (Amazon EBS) General Purpose SSD (gp2)
  • C. Amazon Elastic Block Store (Amazon EBS) Provisioned IOPS SSD (io1)
  • D. Amazon Elastic Block Store (Amazon EBS) Throughput Optimized HDD (st1)
Discover Answer Hide Answer

B

Question#37

A company's application hosted on Amazon EC2 instances needs to access an Amazon S3 bucket. Due to data sensitivity, traffic cannot traverse the internet.
How should a solutions architect configure access?

  • A. Create a private hosted zone using Amazon Route 53.
  • B. Configure a VPC gateway endpoint for Amazon S3 in the VPC.
  • C. Configure AWS PrivateLink between the EC2 instance and the S3 bucket.
  • D. Set up a site-to-site VPN connection between the VPC and the S3 bucket.
Discover Answer Hide Answer

B

Question#38

A company has two applications it wants to migrate to AWS. Both applications process a large set of files by accessing the same files at the same time. Both applications need to read the files with low latency.
Which architecture should a solutions architect recommend for this situation?

  • A. Configure two AWS Lambda functions to run the applications. Create an Amazon EC2 instance with an instance store volume to store the data.
  • B. Configure two AWS Lambda functions to run the applications. Create an Amazon EC2 instance with an Amazon Elastic Block Store (Amazon EBS) volume to store the data.
  • C. Configure one memory optimized Amazon EC2 instance to run both applications simultaneously. Create an Amazon Elastic Block Store (Amazon EBS) volume with Provisioned IOPS to store the data.
  • D. Configure two Amazon EC2 instances to run both applications. Configure Amazon Elastic File System (Amazon EFS) with General Purpose performance mode and Bursting Throughput mode to store the data.
Discover Answer Hide Answer

D

Question#39

An ecommerce company has noticed performance degradation of its Amazon RDS based web application. The performance degradation is attributed to an increase in the number of read-only SQL queries triggered by business analysts. A solutions architect needs to solve the problem with minimal changes to the existing web application.
What should the solutions architect recommend?

  • A. Export the data to Amazon DynamoDB and have the business analysts run their queries.
  • B. Load the data into Amazon ElastiCache and have the business analysts run their queries.
  • C. Create a read replica of the primary database and have the business analysts run their queries.
  • D. Copy the data into an Amazon Redshift cluster and have the business analysts run their queries.
Discover Answer Hide Answer

C

Question#40

A company is running a highly sensitive application on Amazon EC2 backed by an Amazon RDS database. Compliance regulations mandate that all personally identifiable information (PII) be encrypted at rest.
Which solution should a solutions architect recommend to meet this requirement with the LEAST amount of changes to the infrastructure?

  • A. Deploy AWS Certificate Manager to generate certificates. Use the certificates to encrypt the database volume.
  • B. Deploy AWS CloudHSM, generate encryption keys, and use the keys to encrypt database volumes.
  • C. Configure SSL encryption using AWS Key Management Service (AWS KMS) to encrypt database volumes.
  • D. Configure Amazon Elastic Block Store (Amazon EBS) encryption and Amazon RDS encryption with AWS Key Management Service (AWS KMS) keys to encrypt instance and database volumes.
Discover Answer Hide Answer

D

chevron rightPrevious Nextchevron right