Exams > Amazon > AWS Certified Solutions Architect - Professional
AWS Certified Solutions Architect - Professional
Page 9 out of 101 pages Questions 81-90 out of 1009 questions
Question#81

You have subscribed to the AWS Business and Enterprise support plan.
Your business has a backlog of problems, and you need about 20 of your IAM users to open technical support cases.
How many users can open technical support cases under the AWS Business and Enterprise support plan?

  • A. 5 users
  • B. 10 users
  • C. Unlimited
  • D. 1 user
Discover Answer Hide Answer

C
In the context of AWS support, the Business and Enterprise support plans allow an unlimited number of users to open technical support cases (supported by AWS
Identity and Access Management (IAM)).
Reference:
https://aws.amazon.com/premiumsupport/faqs/

Question#82

While implementing the policy keys in AWS Direct Connect, if you use and the request comes from an Amazon EC2 instance, the instance's public IP address is evaluated to determine if access is allowed.

  • A. aws:SecureTransport
  • B. aws:EpochIP
  • C. aws:SourceIp
  • D. aws:CurrentTime
Discover Answer Hide Answer

C
While implementing the policy keys in Amazon RDS, if you use aws: SourceIp and the request comes from an Amazon EC2 instance, the instance's public IP address is evaluated to determine if access is allowed.
Reference:
http://docs.aws.amazon.com/directconnect/latest/UserGuide/using_iam.html

Question#83

How many g2.2xlarge on-demand instances can a user run in one region without taking any limit increase approval from AWS?

  • A. 20
  • B. 2
  • C. 5
  • D. 10
Discover Answer Hide Answer

C
Generally, AWS EC2 allows running 20 on-demand instances and 100 spot instances at a time. This limit can be increased by requesting at https:// aws.amazon.com/contact-us/ec2-request.
Excluding certain types of instances, the limit is lower than mentioned above. For g2.2xlarge, the user can run only 5 on-demand instance at a time.
Reference:
http://docs.aws.amazon.com/general/latest/gr/aws_service_limits.html#limits_ec2

Question#84

A user has created a MySQL RDS instance with PIOPS. Which of the below mentioned statements will help user understand the advantage of PIOPS?

  • A. The user can achieve additional dedicated capacity for the EBS I/O with an enhanced RDS option
  • B. It uses a standard EBS volume with optimized configuration the stacks
  • C. It uses optimized EBS volumes and optimized configuration stacks
  • D. It provides a dedicated network bandwidth between EBS and RDS
Discover Answer Hide Answer

C
RDS DB instance storage comes in two types: standard and provisioned IOPS. Standard storage is allocated on the Amazon EBS volumes and connected to the user's DB instance. Provisioned IOPS uses optimized EBS volumes and an optimized configuration stack. It provides additional, dedicated capacity for the EBS I/
O.
Reference:
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html

Question#85

A user authenticating with Amazon Cognito will go through a multi-step process to bootstrap their credentials.
Amazon Cognito has two different flows for authentication with public providers.
Which of the following are the two flows?

  • A. Authenticated and non-authenticated
  • B. Public and private
  • C. Enhanced and basic
  • D. Single step and multistep
Discover Answer Hide Answer

C
A user authenticating with Amazon Cognito will go through a multi-step process to bootstrap their credentials. Amazon Cognito has two different flows for authentication with public providers: enhanced and basic.
Reference:
http://docs.aws.amazon.com/cognito/devguide/identity/concepts/authentication-flow/

Question#86

Which of the following is the Amazon Resource Name (ARN) condition operator that can be used within an Identity and Access Management (IAM) policy to check the case-insensitive matching of the ARN?

  • A. ArnCheck
  • B. ArnMatch
  • C. ArnCase
  • D. ArnLike
Discover Answer Hide Answer

D
Amazon Resource Name (ARN) condition operators let you construct Condition elements that restrict access based on comparing a key to an ARN. ArnLike, for instance, is a case-insensitive matching of the ARN. Each of the six colon-delimited components of the ARN is checked separately and each can include a multi- character match wildcard (*) or a single-character match wildcard (?).
Reference:
http://docs.aws.amazon.com/IAM/latest/UserGuide/AccessPolicyLanguage_ElementDescriptions.html

Question#87

An organization is creating a VPC for their application hosting. The organization has created two private subnets in the same AZ and created one subnet in a separate zone.
The organization wants to make a HA system with the internal ELB.
Which of these statements is true with respect to an internal ELB in this scenario?

  • A. ELB can support only one subnet in each availability zone.
  • B. ELB does not allow subnet selection; instead it will automatically select all the available subnets of the VPC.
  • C. If the user is creating an internal ELB, he should use only private subnets.
  • D. ELB can support all the subnets irrespective of their zones.
Discover Answer Hide Answer

A
The Amazon Virtual Private Cloud (Amazon VPC) allows the user to define a virtual networking environment in a private, isolated section of the Amazon Web
Services (AWS) cloud.
The user has complete control over the virtual networking environment. Within this virtual private cloud, the user can launch AWS resources, such as an ELB, and
EC2 instances.
There are two ELBs available with VPC: internet facing and internal (private) ELB. For internal servers, such as App servers the organization can create an internal load balancer in their VPC and then place back-end application instances behind the internal load balancer.
The internal load balancer will route requests to the back-end application instances, which are also using private IP addresses and only accept requests from the internal load balancer.
The Internal ELB supports only one subnet in each AZ and asks the user to select a subnet while configuring internal ELB.
Reference:
http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/USVPC_creating_basic_lb.html

Question#88

In Amazon ElastiCache, the failure of a single cache node can have an impact on the availability of your application and the load on your back-end database while
ElastiCache provisions a replacement for the failed cache node and it get repopulated.
Which of the following is a solution to reduce this potential availability impact?

  • A. Spread your memory and compute capacity over fewer number of cache nodes, each with smaller capacity.
  • B. Spread your memory and compute capacity over a larger number of cache nodes, each with smaller capacity.
  • C. Include fewer number of high capacity nodes.
  • D. Include a larger number of cache nodes, each with high capacity.
Discover Answer Hide Answer

B
In Amazon ElastiCache, the number of cache nodes in the cluster is a key factor in the availability of your cluster running Memcached. The failure of a single cache node can have an impact on the availability of your application and the load on your back-end database while ElastiCache provisions a replacement for the failed cache node and it get repopulated.
You can reduce this potential availability impact by spreading your memory and compute capacity over a larger number of cache nodes, each with smaller capacity, rather than using a fewer number of high capacity nodes.
Reference:
http://docs.aws.amazon.com/AmazonElastiCache/latest/UserGuide/CacheNode.Memcached.html

Question#89

MapMySite is setting up a web application in the AWS VPC. The organization has decided to use an AWS RDS instead of using its own DB instance for HA and
DR requirements.
The organization also wants to secure RDS access.
How should the web application be setup with RDS?

  • A. Create a VPC with one public and one private subnet. Launch an application instance in the public subnet while RDS is launched in the private subnet.
  • B. Setup a public and two private subnets in different AZs within a VPC and create a subnet group. Launch RDS with that subnet group.
  • C. Create a network interface and attach two subnets to it. Attach that network interface with RDS while launching a DB instance.
  • D. Create two separate VPCs and launch a Web app in one VPC and RDS in a separate VPC and connect them with VPC peering.
Discover Answer Hide Answer

B
A Virtual Private Cloud (VPC) is a virtual network dedicated to the user's AWS account. It enables the user to launch AWS resources, such as RDS into a virtual network that the user has defined. Subnets are segments of a VPC's IP address range that the user can designate to a group of VPC resources based on the security and operational needs.
A DB subnet group is a collection of subnets (generally private) that a user can create in a VPC and assign to the RDS DB instances. A DB subnet group allows the user to specify a particular VPC when creating the DB instances. Each DB subnet group should have subnets in at least two Availability Zones in a given region.
Reference:
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_VPC.html

Question#90

When does an AWS Data Pipeline terminate the AWS Data Pipeline-managed compute resources?

  • A. AWS Data Pipeline terminates AWS Data Pipeline-managed compute resources every 2 hours.
  • B. When the final activity that uses the resources is running
  • C. AWS Data Pipeline terminates AWS Data Pipeline-managed compute resources every 12 hours.
  • D. When the final activity that uses the resources has completed successfully or failed
Discover Answer Hide Answer

D
Compute resources will be provisioned by AWS Data Pipeline when the first activity for a scheduled time that uses those resources is ready to run, and those instances will be terminated when the final activity that uses the resources has completed successfully or failed.
Reference:
https://aws.amazon.com/datapipeline/faqs/

chevron rightPrevious Nextchevron right