1. Home
  2. Amazon
  3. SAA-C02

Amazon SAA-C02 Online Practice Questions and Exam Preparation

SAA-C02 Exam Details

  • Exam Code
    :SAA-C02
  • Exam Name
    :AWS Certified Solutions Architect - Associate (SAA-C02)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :1080 Q&As
  • Last Updated
    :Jun 04, 2025

Amazon SAA-C02 Online Questions & Answers

  • Question 441:

    You are responsible for a web application that consists of an Elastic Load Balancing (ELB) load balancer in front of an Auto Scaling group of Amazon Elastic Compute Cloud (EC2) instances. For a recent deployment of a new version of the

    application, a new Amazon Machine Image (AMI) was created, and the Auto Scaling group was updated with a new launch configuration that refers to this new AMI. During the deployment, you received complaints from users that the website

    was responding with errors. All instances passed the ELB health checks.

    What should you do in order to avoid errors for future deployments? (Choose 2 answer)

    A. Add an Elastic Load Balancing health check to the Auto Scaling group. Set a short period for the health checks to operate as soon as possible in order to prevent premature registration of the instance to the load balancer.
    B. Enable EC2 instance C|oudWatch alerts to change the launch configuration's AMI to the previous one. Gradually terminate instances that are using the new AMI.
    C. Set the Elastic Load Balancing health check configuration to target a part of the application that fully tests application health and returns an error if the tests fail.
    D. Create a new launch configuration that refers to the new AMI, and associate it with the group. Double the size of the group, wait for the new instances to become healthy, and reduce back to the original size. If new instances do not become healthy, associate the previous launch configuration.
    E. Increase the Elastic Load Balancing Unhealthy Threshold to a higher value to prevent an unhealthy instance from going into service behind the load balancer.

  • Question 442:

    A company Is migrating lo the AWS Cloud. A file server is the first workload to migrate. Users must be able to access the file share using the Server Message Block (SMB) protocol. Which AWS managed service meets these requirements?

    A. Amazon EBS
    B. Amazon EC2
    C. Amazon FSx
    D. Amazon S3

  • Question 443:

    A global company plans to track and store information about local allergens in an Amazon DynamoOB table and query this data from its website The company anticipates that website traffic will fluctuate The company estimates that the

    combined read and write capacity units will range from 10 10.000 per second, depending on the severity of the conditions for the given day. A solutions architect must design a solution that avoids throttling issues and manages capacity

    efficiently.

    What should the solutions architect do to meet these requirements MOST cost-effectively'?

    A. use provisioned capacity mode. Set the table's read capacity units to 10,000.
    B. Use provisioned capacity mode and a scaling policy in DynamoDB auto scaling
    C. Use on demand capacity made for a couple of months Then switch to provisioned capacity mode
    D. Use on-demand capacity mode only. Configure DynamoDB Accelerator (DAX) to be in front of the tab

  • Question 444:

    A company has an on-premises volume backup solution that has reached its end of file. The company wants to use AWS as part of a new backup solution and wants to maintain local access to at' the data while is backed up on AWS. The

    company wants to ensure that the data backed up on AWS. The company automatically and securely transferred.

    Which solution meets these requirement?

    A. Use AWS Snowball to migrate data out of the on-premises solution to Amazon S3. Configure on- premises systems to mount the Snowball S3 endpoint to provide Weal access to the data
    B. Use AWS Snowball Edge to migrate data out of the on-premises solution to Amazon S3. Use the Snowball Edge file interface to provide on-premises system with local access to the data.
    C. Use AWS Storage Gateway and configure a cached volume gateway Run the Storage Gateway software appliance on premises and configure a percentage of data to cache locally. Mount the gateway storage volumes to provide local access to the data.
    D. Use AWS Storage Gateway and configure a stored volume gateway. Run the Storage Gateway software appliance on premises and map the gateway storage volumes lo on-premises storage.Mount the gateway storage volumes lo provide local access to the data.

  • Question 445:

    A startup company is hosting a website for its customers on an Amazon EC2 instance. The website consists of a stateless python application and a MySQL database. The website serves only a small amount of traffic. The company is concerned about the reliability of the instance and needs to migrate to a highly available architecture. The company cannot modify the application code.

    Which combination of actions should a solution architect take to achieve high availability for the website? (Select TWO.)

    A. Provision an internet gateway in each Availability Zone in use.
    B. Migrate the database to on Amazon RDS for MySQL Multi-AZ DB instance
    C. Migrate the database to Amazon DynamoDB, and enable DynamoDB auto scaling.
    D. Use AWS DataSync to synchronize the database data across multiple EC2 instances
    E. Create an Application Load Balancer to distribute traffic to an Auto Scaling group or EC2 instances that are distributed across two Availability Zones.

  • Question 446:

    A company is hosting a web application from an Amazon S3 bucket. The application uses Amazon Cognito as an identity provider lo authenticate users and return a JSON Web Token (JWT) that provides access to protected resources that am restored in another S3 bucket.

    Upon deployment of the application, users report errors and are unable to access the protected content. A solutions architect must resolve this issue by providing proper permissions so that users can access the protected content.

    Which solution meets these requirements?

    A. Update the Amazon Cognito identity pool to assume the proper IAM role for access to the protected consent.
    B. Update the S3 ACL to allow the application to access the protected content
    C. Redeploy the application to Amazon 33 to prevent eventually consistent reads m the S3 bucket from affecting the ability of users to access the protected content.
    D. Update the Amazon Cognito pool to use custom attribute mappings within tie Identity pool and grant users the proper permissions to access the protected content

  • Question 447:

    A company needs to build a reporting solution on AWS. The solution must support SQL queries that data analysts run on the data. The data analysts will run lower than 10 total queries each day. The company generates 3 GB of new data daily in an on-premises relational database. This data needs to be transferred to AWS to perform reporting tasks.

    What should a solutions architect recommend to meet these requirements at the LOWEST cost?

    A. Use AWS Database Migration Service (AWS DMS) to replicate the data from the on- premises database into Amazon S3. Use Amazon Athena to query the data.
    B. Use an Amazon Kinesis Data Firehose delivery stream to deliver the data into an Amazon Elasticsearch Service (Amazon ES) cluster Run the queries in Amazon ES.
    C. Export a daily copy of the data from the on-premises database. Use an AWS Storage Gateway file gateway to store and copy the export into Amazon S3. Use an Amazon EMR cluster to query the data.
    D. Use AWS Database Migration Service (AWS DMS) to replicate the data from the on- premises database and load it into an Amazon Redshift cluster. Use the Amazon Redshift cluster to query the data.

  • Question 448:

    A company needs to connect its on-premises data center network to a new VPC. The data center network has a 100 Mbps symmetrical internet connection. An application that is running on premises will transfer multiple gigabytes of data each day. The application will use an Amazon Kinesis Data Firehose delivery stream for processing

    What should a solutions architect recommend for maximum performance?

    A. Create a VPC peering connection between the on-premises network and the VPC Configure routing for the on-premises network to use the VPC peering connection.
    B. Procure an AWS Snowball Edge Storage Optimized device. After several days' worth of data has accumulated, copy the data to the device and ship the device to AWS for expedited transfer to Kinesis Data Firehose Repeat as needed
    C. Create an AWS Site-to-Site VPN connection between the on-premises network and the VPC. Configure BGP routing between the customer gateway and the virtual private gateway. Use the VPN connection to send the data from on premises to Kinesis Data Firehose.
    D. Use AWS PrivateLink to create an interface VPC endpoint for Kinesis Data Firehose in the VPC. Set up a 1 Gbps AWS Direct Connect connection between the on-premises network and AWS Use the PrivateLink endpoint to send the data from on premises to Kinesis Data Firehose.

  • Question 449:

    A company is developing a new mobile app. The company must implement proper traffic filtering to protect its Application Load Balanacer (ALB) against common application-level attacks, such as cross- site scripting or SQL injection. The

    company has minimal infrastructure and operational staff. The company needs to reduce its share of the responsibility in managing, updating and securing servers for its AWS environment.

    What should a solutions architect recommend to meet these requirements?

    A. Configure AWS WAF rules and associate them with the ALB
    B. Deploy the application using Amazon S3 with public hosting enabled.
    C. Deploy AWS shield Advanced and add the ALB asa protected resources
    D. Create a new ALB that directs traffic to an Amazon EC2 instance running a third-party firewall, which then passes the traffic to the current ALB

  • Question 450:

    An ecommerce application places orders in an Amazon Simple Queue Service (Amazon SQS) queue When a message is received, the Amazon EC2 worker instances process the request The EC2 instancesare in an Auto Scaling group 236 How should the architecture be designed to scale the auto scaling group with the LEAST amount of operational overhead?

    A. Use an Amazon CloudWatch alarm on the EC2 CPU to scale the Auto Scaling group up and down
    B. Use an Amazon EC2 Auto Scaling health check for messages processed on the EC2 instances to scale up or down.
    C. Use an Amazon CloudWatch alarm based on the number of messages in the queue to scale the Auto Scaling group up or down
    D. Use an Amazon CloudWatch alarm based on the CPU to scale the Auto Scaling group up or down

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SAA-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.