A company has a great deal of data in S3 buckets for which they want to create a database. Creating the RDS database, normalizing the data, and migrating to the RDS database will take time and is the long-term plan. But there's an immediate need to query this data to retrieve information necessary for an audit. Which AWS service will enable querying data in S3 using standard SQL commands?

There is no such service, but there are third-party tools.

You are working for a large financial institution and have been tasked with creating a relational database solution to deal with a read-heavy workload. The database needs to be highly available within the Oregon region and quickly recover if an Availability Zone goes offline. Which of the following would you select to meet these requirements? (Choose2)

Enable Multi-AZ support for the RDS database.

Create a read replica and point your read workloads to the new endpoint RDS provides.

Use an Amazon Aurora global database to ensure a region failure won't break the application.

Split your database into multiple RDS instances across different regions. In the event of a failure, point your application to the new region.

Using RDS, create a read replica. If an AZ fails, RDS will automatically cut over to the read replica.

You are put in charge of your company’s Disaster Recovery planning. As part of this plan, you intend to create all of the company infrastructure with CloudFormation templates. The templates can then be saved in another region and used to launch a new environment in case of disaster. What determines the costs associated with CloudFormation templates?

There is no cost for templates, but when deployed, the resources created may accumulate charges.

The distance of the region from the home region.

There is a cost per template and discounts for over 100 templates.

It depends whether the resources in the template are in the free tier.

You have multiple EC2 instances housing applications in a VPC in a single Availability Zone. Your EC2 workloads need low-latency network performance, high network throughput, and a tightly-coupled node-to-node communication. What's the best measure you can do to ensure this throughput?

Launch your instances in a cluster placement group

Increase the size of the instances

A large financial institution is gradually moving their infrastructure and applications to AWS. The company has data needs that will utilize all of RDS, DynamoDB, Redshift, and ElastiCache. Which description best describes Amazon Redshift?

Near real-time complex querying on massive data sets.

Cloud-based relational database.

Key-value and document database that delivers single-digit millisecond performance at any scale.

Can be used to significantly improve latency and throughput for many read-heavy application workloads.

A gaming company is creating an application which simply provides a leaderboard for specific games. The leaderboard will use DynamoDB for data, and simply needs to be updated in near real-time. An EC2 instance will be configured to house the application which will be accessed by subscribers from the Internet. Which step is NOT necessary for internet traffic to flow to and from the Internet?

A route in the route table to the DynamoDB table.

Add a route to your subnet's route table that directs internet-bound traffic to the internet gateway.

Attach an internet gateway to your VPC.

Ensure that your network access control lists and security group rules allow the relevant traffic to flow to and from your instance.

You work for an organization that has multiple AWS accounts in multiple regions and multiple applications. You have been tasked with making sure that all your firewall rules across these multiple accounts and regions are consistent. You need to do this as quickly and efficiently as possible. Which AWS service would help you achieve this?

AWS Web Application Firewall (AWS WAF)

Several instances you are creating have a specific data requirement. The requirement states that the data on the root device needs to persist independently from the lifetime of the instance. After considering AWS storage options, which is the simplest way to meet these requirements?

Store your root device data on Amazon EBS and set the DeleteOnTermination attribute to false using a block device mapping.

Create a cron job to migrate the data to S3.

Send the data to S3 using S3 lifecycle rules.

Store the data on the local instance store.

Your company has asked you to look into some latency issues with the company web app. The application is backed by an AWS RDS database. Your analysis has determined that the requests made of the application are very read heavy, and this is where improvements can be made. Which service can you use to store frequently accessed data in-memory?

Amazon DynamoDB Accelerator (DAX)

A small development team with very limited AWS knowledge has begun the process of creating and deploying a new frontend application based on React within AWS. The application is simple and does not need any backend processing via traditional databases. The application does, however, require GraphQL interactions to complete the required processing of data. Which AWS service can the team use to complete this?

Deploy a GraphQL interface via AWS AppSync.

Stand up a full stack application easily via AWS Amplify.

Host the application in AWS Lambda instead and perform the processing using DynamoDB.

Leverage API Gateway for any GraphQL calls. It supports GraphQL and REST API.

Your company is storing stack traces for application errors in an S3 Bucket. The engineers using these stack traces review them when addressing application issues. It has been decided that the files only need to be kept for four weeks then they can be purged. How can you meet this requirement in S3?

Configure the S3 Lifecycle rules to purge the files after a month.

Create a bucket policy to purge the rules after one month.

Write a cron job to purge the files after one month.

Add an S3 Lifecycle rule to archive these files to Glacier after one month.

A car insurance company keeps specific details about accidents on file for a year, for quick retrieval, and then archives those files to long-term storage. The files are mainly accessed in the first 30 days. A recent audit has approved the general steps they are taking but pointed out many deficiencies in the technologies they are using. You have been hired as a consultant to come up with an automated solution. Your solution will recommend AWS storage options. What storage options could you recommend to meet the lifecycle requirements outlined, provide high availability, and offer the most savings?

Store the accident files in S3 for 30 days, then have the lifecycle policy move them to S3-IA. After a year, move them to Glacier.

Store the accident files in S3 for a year, then have the lifecycle policy move them to S3 IA.

Store the accident files in EBS volumes for a year, then migrate them to Glacier.

Store the accident files in Glacier for maximum cost savings.

After several issues with your application and unplanned downtime, your recommendation to migrate your application to AWS is approved. You have set up high availability on the front end with a load balancer and an Auto Scaling Group. What step can you take with your database to configure high-availability and ensure minimal downtime (under five minutes)?

Enable Multi-AZ failover on the database.

Take frequent snapshots of your database.

Create your database using CloudFormation and save the template for reuse.

Your application is housed on an Auto Scaling Group of EC2 instances. The application is backed by the Multi-AZ MySQL RDS database and an additional read replica. You need to simulate some failures for disaster recovery drills. Which event will not cause an RDS to perform a failover to the standby replica?

Compute unit failure on primary

Loss of network connectivity to primary

A small company has nearly 200 users who already have AWS accounts in the company AWS environment. A new S3 bucket has been created which will need to allow roughly a third of all users access to sensitive information in the bucket. What is the most time efficient way to get these users access to the bucket?

Create a new policy which will grant permissions to the bucket. Create a group and attach the policy to that group. Add the users to this group.

Create a new policy which will grant permissions to the bucket. Create a role and attach the policy to that role. Add the users to this role.

Create a new bucket policy granting the appropriate permissions and attach it to the bucket.

Create a new role which will grant permissions to the bucket. Create a group and attach the role to that group. Add the users to this group.

A database outage has been very costly to your organization. You have been tasked with configuring a more highly available architecture. The main requirement is that the chosen architecture needs to meet an aggressive RTO in case of disaster. You have decided to use an Amazon RDS for MySQL Multi-AZ instance deployment. How is the replication handled for Amazon RDS for MySQL with a Multi-AZ instance configuration?

Amazon RDS for MySQL automatically provisions and maintains a synchronous standby replica in a different Availability Zone

You can configure an Amazon RDS for MySQL standby replica in a different Availability Zone and send traffic synchronously or asynchronously depending on your cost considerations

Amazon RDS for MySQL automatically provisions and maintains a synchronous standby replica in a different Region

Amazon RDS for MySQL automatically provisions and maintains an asynchronous standby replica in a different Availability Zone

A travel company has deployed a web application that serves travel updates to users all over the world. This application uses an Amazon RDS database, which is very read-heavy and can have performance issues at certain times of the year. What can you do to enhance performance and reduce the load on your source DB instance?

Place CloudFront in front of the Database.

You work for a company that needs to pursue a FedRAMP assessment and accreditation. They need to generate a FedRAMP Customer Package, which is a report designed to get accreditation. The report contains a number of sections, such as AWS East/West and GovCloud Executive Briefing, Control Implementation Summary (CIS), Customer Responsibility Matrix (CRM), and E-Authentication. You need this information as quickly as possible. Which AWS service should you use to find this information?

Use AWS Artifact to download the report.

Use AWS Certificate Manager to generate the report.

Use AWS Trusted Advisor to generate the report.

Call your AWS Technical Account Manager (TAM) and ask for this information.

Recent worldwide events have dictated that you perform your duties as a Solutions Architect from home. You need to be able to manage several EC2 instances while working from home and have been testing the ability to SSH into these instances. One instance in particular has been a problem and you cannot SSH into this instance. What should you check first to troubleshoot this issue?

Make sure that the security group for the instance allows inbound on port 22 from your home IP address

Make sure that your VPC has a connected Virtual Private Gateway

Make sure that the Security Group for the instance allows inbound on port 443 from your home IP address

Make sure that the security group for the instance allows inbound on port 80 from your home IP address

You have been tasked with migrating an application and the servers it runs on to the company AWS cloud environment. You have created a checklist of steps necessary to perform this migration. A subsection in the checklist is security considerations. One of the things that you need to consider is the shared responsibility model. Which option does AWS handle under the shared responsibility model?

Physical hardware infrastructure

A team member has been tasked to configure four EC2 instances for four separate applications. These are not high-traffic apps, so there is no need for an Auto Scaling group. The instances are all in the same public subnet and each instance has an EIP address, and all of the instances have the same security group. But none of the instances can send or receive internet traffic. You verify that all the instances have a public IP address. You also verify that an internet gateway has been configured. What is the most likely issue?

There is no route in the route table to the internet gateway (or it has been deleted).

Each instance needs its own security group.

You are using the default NACL.

The CFO of your company approaches you and inquires about cutting costs in your AWS account. One area you are able to identify for cost cutting is in S3. There is data in S3 that is very rarely used and has only been retained for audit purposes. You decide to archive this data to a cheaper storage solution. Which AWS solution would meet this requirement?

Use a lifecycle policy to archive the data to Glacier.

Use a lifecycle policy to archive the data to Amazon SQS.

Write a cron job to archive the data to DynamoDB.

Use a lifecycle policy to archive the data to Redshift.

The company you work for has reshuffled teams a bit and you’ve been moved from the AWS IAM team to the AWS network team. One of your first assignments is to review the subnets in the main VPCs. You have recommended that the company add some private subnets and segregate databases from public traffic. What differentiates a public subnet from a private subnet?

If a subnet's traffic is routed to an internet gateway, the subnet is known as a public subnet.

Public subnets are meant to house EC2 instances with public IP addresses.

Public subnets are associated with public Availability zones.

A public subnet has a public IP address.

You have been tasked to review your company disaster recovery plan due to some new requirements. The driving factor is that the Recovery Time Objective has become very aggressive. Because of this, it has been decided to configure Multi-AZ deployments for the RDS MySQL databases. Unrelated to DR, it has been determined that some read traffic needs to be offloaded from the master database. What step can be taken to meet this requirement?

Add read replicas to offload some read traffic.

Add DAX to the solution to alleviate excess read traffic.

Convert to Aurora to allow the standby to serve read traffic.

Redirect some of the read traffic to the standby database.

A small software team is creating an application which will give subscribers real-time weather updates. The application will run on EC2 and will make several requests to AWS services such as S3 and DynamoDB. What is the best way to grant permissions to these other AWS services?

Create an IAM role that you attach to the EC2 instance to give temporary security credentials to applications running on the instance.

Create an IAM user, grant the user permissions, and pass the user credentials to the application.

Embed the appropriate credentials to access AWS services in the application.

Create an IAM policy that you attach to the EC2 instance to give temporary security credentials to applications running on the instance.

You are working as a Solutions Architect in a large healthcare organization. You have many Auto Scaling groups that you need to create. One requirement is that you need to reuse some software licenses and therefore need to use dedicated hosts on EC2 instances in your Auto Scaling groups. What step must you take to meet this requirement?

Use a launch template with your Auto Scaling group and select the Dedicated Host option.

Create your launch configuration, but manually change the instances to Dedicated Hosts in the EC2 console.

Create the Dedicated Host EC2 instances, and then add them to an existing Auto Scaling group.

Make sure your launch configurations are using Dedicated Hosts.

You have been assigned to create an architecture which uses load balancers to direct traffic to an Auto Scaling Group of EC2 instances across multiple Availability Zones. The application to be deployed on these instances is a life insurance application which requires path-based and host-based routing. Which type of load balancer will you need to use?

Any type of load balancer will meet these requirements.

A consultant is hired by a small company to configure an AWS environment. The consultant begins working with the VPC and launching EC2 instances within the VPC. The initial instances will be placed in a public subnet. The consultant begins to create security groups. How many security groups can be attached to an EC2 instance?

You can assign up to five security groups to the instance.

Instances in private subnets cannot have multiple security groups.

You can assign two security groups to an instance.

You can only assign one security group to an instance.

Your application team has been approved to create a new machine learning application over the next two years. You intend to leverage numerous Amazon SageMaker instances and components to back your application. Your manager is worried about the cost potential of the services involved. How could you maximize your savings opportunities for the Amazon SageMaker service?

Purchase a one-year All Upfront SageMaker Savings Plan. This applies to all SageMaker instances and components within any AWS Region.

Purchase a one-year All Upfront Compute Savings Plan. This applies to all SageMaker instances and components within any AWS Region.

Purchase a three-year All Upfront Compute Savings Plan. This applies to all SageMaker instances and components within any AWS Region.

Purchase a three-year All Upfront SageMaker Savings Plan. This applies to all SageMaker instances and components within any AWS Region.

AWS Certified Solutions Architect - Associate (SAA-C03) - 2

1st Grade

•

65 Qs

Similar activities

Windows 10

1st - 6th Grade

•

62 Qs

POWER POINT KELAS 5

1st Grade

•

60 Qs

(ULANG NILAI 2) PEPERIKSAAN AKHIR SESI 1/2020 KT1-F01/ZF01

1st Grade

•

60 Qs

COH SMALL COMPONENT WHEEL TYPE

1st - 5th Grade

•

68 Qs

Công nghệ - 22, 23, 24, 25

1st Grade

•

68 Qs

Ict Quiz

1st - 5th Grade

•

68 Qs

IDT Study Guide

KG - University

•

60 Qs

Komputer dan jaringan dasar

KG - 10th Grade

•

60 Qs

AWS Certified Solutions Architect - Associate (SAA-C03) - 2

Quiz

•

Computers

•

1st Grade

•

Practice Problem

•

Hard

José Diaz

Used 18+ times

FREE Resource

It’s a placeholder and can be deleted.

Any number can replace the *.

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

67 questions

COMPUTER NETWORKS-GURTAJ

Quiz

•

1st - 5th Grade

61 questions

Internet e Outlook - basico, medio e avançado

Quiz

•

1st Grade

60 questions

SOALAN SET A

Quiz

•

1st Grade

60 questions

Bridge class

Quiz

•

1st Grade

63 questions

Кибербезопасность и Кибергигиена в сети

Quiz

•

1st Grade

60 questions

WRIT 2021 - Revisão Final - CCNA3

Quiz

•

1st - 10th Grade

64 questions

Seberapa kamu tau tentang mata pelajaran part 1

Quiz

•

1st Grade

65 questions

BASIS DATA KELAS XI

Quiz

•

1st - 5th Grade

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

11 questions

How well do you know your Christmas Characters?

Lesson

•

3rd Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

5th Grade

Discover more resources for Computers

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

10 questions

Christmas/Winter

Quiz

•

KG - 2nd Grade

20 questions

Christmas Movies

Quiz

•

1st - 12th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

1st - 3rd Grade

10 questions

Christmas Characters

Quiz

•

KG - 3rd Grade

10 questions

Exploring Christmas Math Word Problems

Interactive video

•

1st - 5th Grade

16 questions

Christmas 1st grade

Quiz

•

1st Grade

AWS Certified Solutions Architect - Associate (SAA-C03) - 2

65 questions

You have configured a VPC with both a public and a private subnet. You need to deploy a web server and a database. You want the web server to be accessed from the Internet by customers. Which is the proper configuration for this architecture?

You have been evaluating the NACLs in your company. Currently, you are looking at the default network ACL. Which statement is true regarding subnets and NACLs?

You have been evaluating the NACLs in your company. Most of the NACLs are configured the same:100 All Traffic Allow 200 All Traffic Deny * All Traffic DenyHow can the last rule * All Traffic Deny be edited?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

You have been evaluating the NACLs in your company. Most of the NACLs are configured the same:
100 All Traffic Allow
200 All Traffic Deny
* All Traffic Deny
How can the last rule * All Traffic Deny be edited?