1. Home
  2. Amazon
  3. SAA-C02

AWS Certified Solutions Architect - Associate (SAA-C02)

Exam Details

  • Exam Code
    :SAA-C02
  • Exam Name
    :AWS Certified Solutions Architect - Associate (SAA-C02)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :1080 Q&As
  • Last Updated
    :Jun 04, 2025

Amazon Amazon Certifications SAA-C02 Questions & Answers

  • Question 431:

    A company has a document management application that contains PDF documents The company hosts the application on Amazon EC2 instances According to regulations, the instances must not have access to the internet The application must be able to read and write to a persistent storage system that provides native versioning capabilities

    A solutions architect needs to design secure storage that maximizes resiliency and facilitates data sharing across instances

    Which solution meets these requirements?

    A. Place the instances in a public subnet Use Amazon S3 for storage Access S3 objects by using URLs

    B. Place the instances in a private subnet use Amazon S3 for storage Use a VPC endpoint to access S3 objects

    C. Use the instances with a Provisioned IOPS SSD (io2) Amazon Elastic Block Store (Amazon EBS) volume.

    D. Use Amazon Elastic File System (Amazon EPS) Standard-Infrequent Access (Standard- IA) to store data and provide shared access to the instances

  • Question 432:

    A company uses Amazon EC2 instances to host its internal systems As pan of a deployment operation, an administrator tries to use the AWS CLI to terminate an EC2 instance However, the administrator receives a 403 (Access Dented) error message The administrator is using an IAM role that has the following 1AM policy attached:

    What is the cause of the unsuccessful request?

    A. The EC2 Instance has a resource-based policy win a Deny statement.

    B. The principal has not been specified in the policy statement

    C. The "Action" field does not grant the actions that are required to terminate the EC2 instance

    D. The request to terminate the EC2 instance does not originate from the CIDR blocks 192 0 2.0:24 or 203.0.113.0/24.

  • Question 433:

    A company is implementing a shared storage solution for a media application that is hosted m the AWS Cloud The company needs the ability to use SMB clients to access data The solution must he fully managed Which AWS solution meets these requirements?

    A. Create an AWS Storage Gateway volume gateway. Create a file share that uses the required client protocol Connect the application server to the tile share.

    B. Create an AWS Storage Gateway tape gateway Configure (apes to use Amazon S3 Connect the application server lo the tape gateway

    C. Create an Amazon EC2 Windows instance Install and configure a Windows file share role on the instance. Connect the application server to the file share.

    D. Create an Amazon FSx for Windows File Server tile system Attach the fie system to the origin server. Connect the application server to the tile system

  • Question 434:

    A company has a stateless asynchronous application that runs in an Apache Hadoop cluster The application is invoked on demand to run extract, transform and load (ETL) jobs several limes a day

    A solutions architect needs to migrate this application to the AWS Cloud by designing an Amazon EMR cluster for the workload. The cluster must be available immediately to process jobs.

    Which implementation meets these requirements MOST cost-effectively?

    A. Use zonal Reserved Instances for the master nodes and the ewe nodes Use a Spot Fleet lor tire task nodes

    B. Use zonal Reserved Instances for the master nodes Use Spot instances for the core nodes and the task nodes

    C. Use regional Reserved Instances for the master nodes Use a Spot Fleer for the core nodes and the task nodes

    D. Use regional Reserved Instances for the master nodes. Use On-Demand Capacity Reservations for the core nodes and the task nodes.

  • Question 435:

    Which of the following AWS services can be used to define alarms to trigger on a certain actMty, such as actMty success, failure, or delay in AWS Data Pipeline?

    A. Amazon SES

    B. Amazon CodeDepIoy

    C. Amazon SNS

    D. Amazon SQS

  • Question 436:

    A company uses an Amazon Auroia PostgreSQL DB cluster 10 store its critical data m tne us-east-l Region The company wants to develop a disaster recovery plan to recover the database m the us west 1 Region The company has a recovery time objective (RTO) of S minutes and has a recovery point objective (RPO) of 1 minute

    What should a solutions architect do to moot these requirements?

    A. Create a read replica in us-west-1 Set the DB cluster to automaKaliy fail over to the read replica if the primary instance is not responding

    B. Create an Aurora global database Sel us-west-1 as the secondary Region update connections to use the writer and reader endpomis as appropriate

    C. Set up a second Aurora DB cluster in us-west-1 Use logical replication to keep the databases synchronized Create an Amazon EvontBridgc (Amazon CloudWatch Events) rule to change the database endpoint rf the primary DB cluster does not respond.

    D. Use Aurora automated snapshots to store data in an Amazon S3 bucket Enable S3 Verswnmg. Configure S3 Cross-Region Replication to us-west-1 Create a second Aurora DB cluster in us-west-1 Create an Amazon EventBndge (Amazon CloudWatch Events) rule to restore the snapshot il the primary D8 cluster does not respond

  • Question 437:

    A user is hosting a public website on AWS. The user wants to have the database and the app server on the AWS VPC. The user wants to setup a database that can connect to the Internet for any patch upgrade but cannot receive any request from the internet. How can the user set this up?

    A. Setup DB in a private subnet with the security group allowing only outbound traffic.

    B. Setup DB in a public subnet with the security group allowing only inbound data.

    C. Setup DB in a local data center and use a private gateway to connect the application with DB.

    D. Setup DB in a private subnet which is connected to the internet via NAT for outbound.

  • Question 438:

    Your company is storing millions of sensitive transactions across thousands of 100-GB files that must be encrypted in transit and at rest. Analysts concurrently depend on subsets of files, which can consume up to 5 TB of space, to generate simulations that can be used to steer business decisions. You are required to design an AWS solution that can cost effectively accommodate the long-term storage and in-flight subsets of data.

    A. Use Amazon Simple Storage Service (S3) with server-side encryption, and run simulations on subsets in ephemeral drives on Amazon EC2.

    B. Use Amazon S3 with server-side encryption, and run simulations on subsets in-memory on Amazon EC2.

    C. Use HDFS on Amazon EMR, and run simulations on subsets in ephemeral drives on Amazon EC2.

    D. Use HDFS on Amazon Elastic MapReduce (EMR), and run simulations on subsets in-memory on Amazon Elastic Compute Cloud (EC2).

    E. Store the full data set in encrypted Amazon Elastic Block Store (EBS) volumes, and regularly capture snapshots that can be cloned to EC2 workstations.

  • Question 439:

    What does elasticity mean to AWS?

    A. The ability to scale computing resources up easily, with minimal friction and down with latency.

    B. The ability to scale computing resources up and down easily, with minimal friction.

    C. The ability to provision cloud computing resources in expectation of future demand.

    D. The ability to recover from business continuity events with minimal friction.

  • Question 440:

    The following are AWS Storage services? Choose 2 Answers

    A. AWS Relational Database Service (AWS RDS)

    B. AWS EIastiCache

    C. AWS Glacier

    D. AWS Import/Export

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SAA-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.