Amazon SAA-C01 Online Practice Questions and Exam Preparation

Amazon SAA-C01 Online Questions & Answers

• Question 281:

  A company expects its user base to increase five times over one year. Its application is hosted in one region and uses an Amazon RDS MySQL database, an ELB Application Load Balancer, and Amazon ECS to host the website and its microservices.

  Which design changes should a Solutions Architect recommend to support the expected growth? (Choose two.)

  A. Move static files from ECS to Amazon S3
  B. Use an Amazon Route 53 geolocation routing policy
  C. Scale the environment based on real-time AWS CloudTrail logs
  D. Create a dedicated Elastic Load Balancer for each microservice
  E. Create RDS read replicas and change the application to use these replicas
  A. Move static files from ECS to Amazon S3
  D. Create a dedicated Elastic Load Balancer for each microservice

• Question 282:

  A Solutions Architect is designing an application in AWS. The Architect must not expose the application or database tier over the Internet for security reasons. The application must be low-cost and have a scalable front end. The databases and application tier must have only one-way Internet access to download software and patch updates.

  Which solution helps to meet these requirements?

  A. Use a NAT Gateway as the front end for the application tier and to enable the private resources to have Internet access.
  B. Use an Amazon EC2-based proxy server as the front end for the application tier, and a NAT Gateway to allow Internet access for private resources.
  C. Use an ELB Classic Load Balancer as the front end for the application tier, and an Amazon EC2 proxy server to allow Internet access for private resources.
  D. Use an ELB Classic Load Balancer as the front end for the application tier, and a NAT Gateway to allow Internet access for private resources.
  D. Use an ELB Classic Load Balancer as the front end for the application tier, and a NAT Gateway to allow Internet access for private resources.

• Question 283:

  A company has asked the Solutions Architect to modify its AWS-hosted internal application to allow for load balancing. The customer requests always come from the company domain (example.net). The company requires that incoming HTTP and HTTPS traffic is routed based on the path element of the URL in the request.

  Which implementation can satisfy all requirements?

  A. Configure a Network Load Balancer with listeners for appropriate path patterns for the target groups.
  B. Configure an Application Load Balancer with host-based routing based on the domain field in the HTTP header.
  C. Configure a Network Load Balancer and enable cross-zone load balancing to ensure that all EC2 instances are used.
  D. Configure an Application Load Balancer with listeners for appropriate path patterns for the target group.
  B. Configure an Application Load Balancer with host-based routing based on the domain field in the HTTP header.

• Question 284:

  A Solutions Architect is designing a mobile application that will capture receipt images to track expenses. The Architect wants to store the images on Amazon S3. However, uploading images through the web server will create too much traffic. What is the MOST efficient method to store images from a mobile application on Amazon S3?

  A. Upload directly to S3 using a pre-signed URL.
  B. Upload to a second bucket, and have a Lambda event copy the image to the primary bucket.
  C. Upload to a separate Auto Scaling group of servers behind an ELB Classic Load Balancer, and have them write to the Amazon S3 bucket.
  D. Expand the web server fleet with Spot Instances to provide the resources to handle the images.
  C. Upload to a separate Auto Scaling group of servers behind an ELB Classic Load Balancer, and have them write to the Amazon S3 bucket.

• Question 285:

  A company is running a series of national TV campaigns. These 30-second advertisements will introduce sudden traffic peaks targeted at a Node.js application. The company expects traffic to increase from five requests each minute to more than 5,000 requests each minute.

  Which AWS service should a Solutions Architect use to ensure traffic surges can be handled?

  A. AWS Lambda
  B. Amazon ElastiCache
  C. Size EC2 instances to handle peak load
  D. An Auto Scaling group for EC2 instances
  D. An Auto Scaling group for EC2 instances

• Question 286:

  You have deployed a web application targeting a global audience across multiple AWS Regions under the domain name.example.com. You decide to use Route53 Latency-Based Routing to serve web requests to users from the region closest to the user. To provide business continuity in the event of server downtime you configure weighted record sets associated with two web servers in separate Availability Zones per region. Running a DR test you notice that when you disable all web servers in one of the regions Route53 does not automatically direct all users to the other region. What could be happening? (Choose two.)

  A. Latency resource record sets cannot be used in combination with weighted resource record sets.
  B. You did not setup an HTTP health check tor one or more of the weighted resource record sets associated with me disabled web servers.
  C. The value of the weight associated with the latency alias resource record set in the region with the disabled servers is higher than the weight for the other region.
  D. One of the two working web servers in the other region did not pass its HTTP health check.
  E. You did not set "Evaluate Target Health" to "Yes" on the latency alias resource record set associated with example com in the region where you disabled the servers.
  B. You did not setup an HTTP health check tor one or more of the weighted resource record sets associated with me disabled web servers.
  E. You did not set "Evaluate Target Health" to "Yes" on the latency alias resource record set associated with example com in the region where you disabled the servers.

• Question 287:

  A Solutions Architect notices slower response times from an application. The CloudWatch metrics on the MySQL RDS indicate Read IOPS are high and fluctuate significantly when the database is under load. How should the database environment be re-designed to resolve the IOPS fluctuation?

  A. Change the RDS instance type to get more RAM.
  B. Change the storage type to Provisioned IOPS.
  C. Scale the web server tier horizontally.
  D. Split the DB layer into separate RDS instances.
  B. Change the storage type to Provisioned IOPS.

• Question 288:

  A company is using AWS Key Management Service (AWS KMS) to secure their Amazon RDS databases. An auditor has recommended that the company log all use of their AWS KMS keys. What is the SIMPLEST solution?

  A. Associate AWS KMS metrics with Amazon CloudWatch.
  B. Use AWS CloudTrail to log AWS KMS key usage.
  C. Deploy a monitoring agent on the RDS instances.
  D. Poll AWS KMS periodically with a scheduled job.
  B. Use AWS CloudTrail to log AWS KMS key usage.

• Question 289:

  A Solutions Architect is defining a shared Amazon S3 bucket where corporate applications will save objects.

  How can the Architect ensure that when an application uploads an object to the Amazon S3 bucket, the object is encrypted?

  A. Set a CORS configuration.
  B. Set a bucket policy to encrypt all Amazon S3 objects.
  C. Enable default encryption on the bucket.
  D. Set permission for users.
  C. Enable default encryption on the bucket.

• Question 290:

  An application runs in a VPC on Amazon EC2 instances behind an Application Load Balancer. Traffic to the Amazon EC2 instances must be limited to traffic from the Application Load Balancer. Based on these requirements, the security group configuration should only allow traffic from:

  A. the public IPs of the Application Load Balancer nodes.
  B. the IP range of the Application Load Balancer subnets.
  C. the security group attached to the Application Load Balancer.
  D. the VPC CIDR
  C. the security group attached to the Application Load Balancer.