1. Home
  2. Amazon
  3. SAA-C02

Amazon SAA-C02 Online Practice Questions and Exam Preparation

SAA-C02 Exam Details

  • Exam Code
    :SAA-C02
  • Exam Name
    :AWS Certified Solutions Architect - Associate (SAA-C02)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :1080 Q&As
  • Last Updated
    :Jun 04, 2025

Amazon SAA-C02 Online Questions & Answers

  • Question 211:

    A company hosts a popular website in the AWS Cloud, A solutions architect needs to provide reports about user click behaviour in near-real time as users navigate the website. Which solution will meet this requirement

    A. Store the clickstream data in Amazon DynamoDB. Deploy an application that runs on AWS Elastic Beanstalk to process and analyze the data.
    B. Push the clickstream data from each session to an Amazon Kinesis data stream Analyze the dab by using Amazon Kinesis Data Analytics.
    C. Store the clickstream data in an Amazon S3 bucket. Order the data by timestamp Process the data with an AWS Lambda function that is subscribed to object creation events on the S3 bucket.
    D. Forward the clickstream data to Amazon Simple Queue Service (Amazon SQS) Store the data In an Amazon ROS for MySQL DB instance. Deploy Amazon FC2 Instances to process and analyze the data

  • Question 212:

    A company funs a website that uses a content management system (CMS) on Amazon EC2 The CMS runs on a smgleEC2 instance and uses an Amazon Aurora MySQL Multi-AZ DB instance tor the data tor Website images are stored on an Amazon Elastic Block Store (Amazon EBS) volume that is mounted inside the EC2 instance

    Which combination of actions should a solutions architect take to improve the performance and residence of the website? (Select TWO )

    A. Move the website images into an Amazon S3 bucket that is mounted on every EC2 instance
    B. Share the website mages by using an NFS share from the primary EC2 instance Mount this share on tie otter EC2 instances
    C. Move the website images onto an Amazon Elastic File System (Amazon EFS) file system that is mounted on every EC2 instance
    D. Create an Amazon Machine Image (AMI) from the existing EC2 instance Use the AMI to provision new instances behind an Application Load Balancer as part of an Auto Scaling group Configure the Auto Scaling group to maintain a minimum of two instances Configure an accelerator in AWS Global Accelerator for the website
    E. Create an Amazon Machine Image (AMI) from the existing EC2 instance. Use the AMI to provision new instances behind an Application Load Balancer as part of an Auto Scaling group Configure the Auto Scaling group to maintain a minimum of two instances Configure an Amazon CloudFront distribution for the website

  • Question 213:

    A solutions architect is designing a system that will store personally identifiable information (Pll) in an Amazon S3 bucket. Due to compliance and regulatory requirements, both the master keys and the unencrypted data should never be sent

    to AWS.

    Which Amazon S3 encryption technique should the architect choose?

    A. Amazon S3 client-side encryption with an AWS Key Management Service {AWS KMS) managed customer master key (CMK)
    B. Amazon S3 server-side encryption with AWS KMS managed encryption keys (SSE-KMS)
    C. Amazon S3 client-side encryption with a client-side master key
    D. Amazon S3 server-side encryption with customer-provided encryption keys (SSE-C)

  • Question 214:

    A company hosts a multiplayer gaming application on AWS. The company wants the application to read data with sub-millisecond latency and run one-time queries on historical data. Which solution will meet these requirements with the LEAST operational overhead?

    A. Use Amazon RDS for data that is frequently accessed. Run a periodic custom script to export the data to an Amazon S3 bucket.
    B. Store the data directly in an Amazon S3 bucket. Implement an S3 Lifecycle policy to move older data to S3 Glacier Deep Archive for long-term storage. Run one-time queries on the data in Amazon S3 by using Amazon Athena
    C. Use Amazon DynamoDB with DynamoDB Accelerator (DAX) for data that is frequently accessed. Export the data to an Amazon S3 bucket by using DynamoDB table export. Run one-time queries on the data in Amazon S3 by using Amazon Athena.
    D. Use Amazon DynamoDB for data that is frequently accessed Turn on streaming to Amazon Kinesis Data Streams. Use Amazon Kinesis Data Firehose to read the data from Kinesis Data Streams. Store the records in an Amazon S3 bucket.

  • Question 215:

    A solutions architect is designing an architecture to run a third-party database server. The database software Is memory intensive and has a CPU-based licensing model where the cost Increases with the number of vCPU cores within the operating system. The solutions architect must select an Amazon EC2 instance with sufficient memory to run the database software, but the selected instance has a large number of vCPUs. The solutions architect must ensure that the vCPUs will not be underutilized and must minimize costs.

    Which solution meets these requirements?

    A. Select and launch a smaller EC2 instance with an appropriate number of vCPUs.
    B. Configure the CPU cores and threads on the selected EC2 instance during instance launch
    C. Create a new EC2 instance and ensure multithreading is enabled when configuring the instance details.
    D. Create a new Capacity Reservation and select the appropriate instance type Launch the instance into this new Capacity Reservation

  • Question 216:

    A company's security policy requires that alt AWS API activity in its AWS accounts be recorded tor periodic auditing. The company needs to ensure that AWS CloudTrail is enabled on all of its current and future AWS accounts using AWS Organizations.

    Which solution is MOST secure?

    A. At the organization's root define and attach a service control policy (SCP) that permits enabling CloudTrail only
    B. Create 1AM groups in the organization's master account as needed Define and attach an 1AM policy to the groups that prevents users from disabling CloudTrail
    C. Organize accounts into organizational units (OUs) At the organization's root, define and attach a service control policy (SCP) that prevents users from disabling CloudTrail
    D. Add all existing accounts under the organization's root Define and attach a service control policy (SCP) to every account that prevents users from disabling CloudTrail

  • Question 217:

    A company Is launching an ecommerce website on AWS. This website is built with a three-tier architecture that includes a MySQL database In a Multi-AZ deployment of Amazon Aurora MySQL. The website application must be highly

    available and will initially be launched in an AWS Region with three Availability Zones The application produces a metric that describes the load the application experiences.

    Which solution meets these requirements?

    A. Configure an Application Load Balancer (ALB( with Amazon EC2 Auto Scaling behind the ALB with scheduled scaling
    B. Configure an Application Load Balancer (ALB) and Amazon EC2 Auto Scaling behind the ALB with a simple scaling policy.
    C. Configure a Network Load Balancer (NLB) and launch a Spot Fleet with Amazon EC2 Auto Scaling behind the NL8.
    D. Configure an Application Load Balancer (ALB) and Amazon EC2 Auto Scaling behind the ALB with a target tracking scaling policy.

  • Question 218:

    Auto Scaling requests are signed with a signature calculated from the request and the user's private key.

    A. SSL
    B. AES-256
    C. HMAC-SHA1
    D. X.509

  • Question 219:

    A company recently launched its website to serve content to its global user base. The company wants to store and accelerate the delivery of static content to its users by leveraging Amazon CloudFront with an Amazon EC2 instance attached as its origin. How should a solutions architect optimize high availability for the application?

    A. Use Lambda@Edge for CloudFront.
    B. Use Amazon S3 Transfer Acceleration for CloudFront.
    C. Configure another EC2 instance in a different Availability Zone as part of the origin group.
    D. Configure another EC2 instance as part of the origin server cluster in the same Availability Zone.

  • Question 220:

    A company has an application that runs on Amazon EC2 instances and uses an Amazon Aurora database. The EC2 instances connect to the database by using user names and passwords that are stored locally in a file. The company wants to minimize the operational overhead of credential management.

    What should a solutions architect do to accomplish this goal?

    A. Use AWS Secrets Manager. Turn on automatic rotation.
    B. Use AWS Systems Manager Parameter Store. Turn on automatic rotation. ?Create an Amazon S3 bucket lo store objects that are encrypted with an AWS Key.
    C. Management Service (AWS KMS) encryption key. Migrate the credential file to the S3 bucket. Point the application to the S3 bucket.
    D. Create an encrypted Amazon Elastic Block Store (Amazon EBS) volume (or each EC2 instance. Attach the new EBS volume to each EC2 instance. Migrate the credential file to the new EBS volume. Point the application to the new EBS volume.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SAA-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.