Amazon SAA-C02 Online Practice Questions and Exam Preparation

Amazon SAA-C02 Online Questions & Answers

• Question 731:

  A company wants to create an audio version of its product manual. The product manual contains custom product names and abbreviations. The product manual is divided into sections.

  Which solution will meet these requirements with the LEAST operational overhead?

  A. Use Amazon Polly Build custom lexicons for the product names and abbreviations Use the StartSpeechSynthesJsTaskAPl operation for each section of the product manual
  B. Use Amazon Polly Build custom Speech Synthesis Markup Language (SSML) for the product names and abbreviations Use the StartDocumentTextDetection API operation for each section of the product manual
  C. Use Amazon Textract Build custom Speech Synthesis Markup Language (SSML) for the product names and abbreviations Use the StartDocumentTextDetection API operation for each section of the product manual
  D. Use Amazon Textract Build custom lexicons for the product names and abbreviations Use the StartTranscriptionJob API operation for each section of the product manual
  A. Use Amazon Polly Build custom lexicons for the product names and abbreviations Use the StartSpeechSynthesJsTaskAPl operation for each section of the product manual

• Question 732:

  A solutions architect is moving the static content from a public website hosted on Amazon EC2 instances to an Amazon S3 bucket. An Amazon CloudFront distribution will be used to deliver the static assets. The security group used by the EC2 instances restricts access to a limited set of IP ranges. Access to the static content should be similarly restricted. Which combination of steps will meet these requirements? (Select TWO.)

  A. Create an origin access identity (OAI) and associate it with the distribution. Change the permissions in the bucket policy so that only the OAI can read the objects.
  B. Create an AWS WAF web ACL that includes the same IP restrictions that exist in the EC2 security group. Associate this new web ACL with the CloudFront distribution.
  C. Create a new security group that includes the same IP restrictions that exist in the current EC2 security group. Associate this new security group with the CloudFront distribution.
  D. Create a new security group that includes the same IP restrictions that exist in the current EC2 security group. Associate this new security group with the S3 bucket hosting the static content.
  E. Create a new IAM role and associate the role with the distribution. Change the permissions either on the S3 bucket or on the files within the S3 bucket so that only the newly created IAM role has read and download permissions.
  A. Create an origin access identity (OAI) and associate it with the distribution. Change the permissions in the bucket policy so that only the OAI can read the objects.
  B. Create an AWS WAF web ACL that includes the same IP restrictions that exist in the EC2 security group. Associate this new web ACL with the CloudFront distribution.

• Question 733:

  A solutions architect is designing a multi-Region disaster recovery solution (or an application that will provide public API access The application will use Amazon EC2 instances with a userdata script to load application code and an Amazon RDS for MySQL database The Recovery Time Objective (RTO) is 3 hours and the Recovery Point Objective (RPO) is 24 hours

  Which architecture would meet these requirements at the LOWEST cost/?

  A. Use an Application Load Balancer for Region failover Deploy new EC2 instances with the userdata script Deploy separate RDS instances in each Region
  B. Use Amazon Route 53 for Region failover Deploy new EC2 instances with the userdata script Create a read replica of the RDS instance in a backup Region
  C. Use Amazon API Gateway tor the public APIs and Region failover Deploy new EC2 instances with the userdata script Create a MySQL read replica of the RDS instance in a backup Region
  D. Use Amazon Route 53 for Region failover Deploy new EC2 instances with the userdata script for APIs, and create a snapshot of the RDS instance daily for a backup Replicate the snapshot to a backup Region
  C. Use Amazon API Gateway tor the public APIs and Region failover Deploy new EC2 instances with the userdata script Create a MySQL read replica of the RDS instance in a backup Region

• Question 734:

  A company has an ordering application that stores customer information in Amazon RDS for MySQL. During regular business hours, employees run one-time queries for reporting purposes. Timeouts are occurring during order processing because the reporting queries are taking a long time to run. The company needs to eliminate the timeouts without preventing employees from performing queries.

  What should a solutions architect do to meet those requirements?

  A. Create a read replica Move reporting queries to the read replica.
  B. Create a read replica. Distribute the ordering application to the primary DB instance and the read replica.
  C. Migrate the ordering application to Amazon DynamoDB with on-demand capacity.
  D. Schedule the reporting queries for non-peak hours.
  B. Create a read replica. Distribute the ordering application to the primary DB instance and the read replica.

• Question 735:

  A company has an event-driven application that invokes AWS Lambda functions up to 800 times each minute with varying runtimes. The Lambda functions access data that is stored in an Amazon Aurora MySQL OB cluster. The company is noticing connection timeouts as user activity increases The database shows no signs of being overloaded. CPU. memory, and disk access metrics are all low.

  Which solution will resolve this issue with the LEAST operational overhead?

  A. Adjust the size of the Aurora MySQL nodes to handle more connections. Configure retry logic in the Lambda functions for attempts to connect to the database
  B. Set up Amazon ElastiCache tor Redls to cache commonly read items from the database. Configure the Lambda functions to connect to ElastiCache for reads.
  C. Add an Aurora Replica as a reader node. Configure the Lambda functions to connect to the reader endpoint of the OB cluster rather than lo the writer endpoint.
  D. Use Amazon ROS Proxy to create a proxy. Set the DB cluster as the target database Configure the Lambda functions lo connect to the proxy rather than to the DB cluster.
  D. Use Amazon ROS Proxy to create a proxy. Set the DB cluster as the target database Configure the Lambda functions lo connect to the proxy rather than to the DB cluster.

• Question 736:

  A solution architect is using an AWS CloudFormation template to deploy a three-tier web application. The web application consist of a web tier and an application that stores and retrieves user data in Amazon DynamoDB tables. The web and application tiers are hosted on Amazon EC2 instances, and the database tier is not publicly accessible. The application EC2 instances need to access the Dynamo tables Without exposing API credentials in the template.

  What should the solution architect do to meet the requirements?

  A. Create an IAM role to read the DynamoDB tables. Associate the role with the application instances by referencing an instance profile.
  B. Create an IAM role that has the required permissions to read and write from the DynamoDB tables. Add the role to the EC2 instance profile, and associate the instances profile with the application instances.
  C. Use the parameter section in the AWS CloudFormation template to have the user input access and secret keys from an already-created IAM user that has the required permissions to read and write from the DynamoDB tables.
  D. Create an IAM user in the AWS CloudFormation template that has the required permissions to read and write from the DynamoDB tables. Use the GetAtt function to retrieve the access secret keys, and pass them to the application instances through the user data.
  B. Create an IAM role that has the required permissions to read and write from the DynamoDB tables. Add the role to the EC2 instance profile, and associate the instances profile with the application instances.

• Question 737:

  A company wants to move its on-premises network, attached storage (NAS) to AWS. The company wants to make the data available to any Linux instances within its VPC and ensure changes are automatically synchronized across all instances accessing the data store. The majority of the data is accessed very rarely, and some files are accessed by multiple users at the same time. Which solution meets these requirements and is MOST cost-effective?

  A. Create an Amazon Elastic Block Store (Amazon EBS) snapshot containing the data. Share it with users within the VPC.
  B. Create an Amazon S3 bucket that has a lifecycle policy set to transition the data to S3 Standard- Infrequent Access (S3 Standard-IA) after the appropriate number of days.
  C. Create an Amazon Elastic File System (Amazon EFS) file system within the VPC. Set the throughput mode to Provisioned and to the required amount of IOPS to support concurrent usage.
  D. Create an Amazon Elastic File System (Amazon EFS) file system within the VPC. Set the lifecycle policy to transition the data to S Infrequent Access (EFS IA) after the appropriate number of days.
  D. Create an Amazon Elastic File System (Amazon EFS) file system within the VPC. Set the lifecycle policy to transition the data to S Infrequent Access (EFS IA) after the appropriate number of days.

• Question 738:

  A company runs a fleet of web servers using an Amazon RDS for PostgreSQL DB instance. After a routine compliance check, the company sets a standard that requires a recovery point objective (RPO) of less than 1 second for all its production databases.

  Which solution meets these requirements?

  A. Enable a Multi-AZ deployment for the DB instance.
  B. Enable auto scaling for the DB instance in one Availability Zone.
  C. Configure the DB instance in one Availability Zone, and create multiple read replicas in a separate Availability Zone.
  D. Configure the DB instance in one Availability Zone, and configure AWS Database Migration Service (AWS DMS) change data capture (CDC) tasks.
  A. Enable a Multi-AZ deployment for the DB instance.

  ---

  Explanation/Reference:

  Reference: https://aws.amazon.com/blogs/database/implementing-a-disaster-recovery-strategy-with-amazon-rds/

• Question 739:

  A company has hired an external vendor to perform work in the company's AWS account The vendor uses an automated tool that is hosted in an AWS account that the vendor owns The vendor does not have 1AM access to the company's AWS account

  How should a solutions architect grant this access to the vendor?

  A. Create an lAM rote in the company's account to delegate access to the vendor's 1AM role Attach the appropriate 1AM policies to the role for the permissions that the vendor requires
  B. Create an lAM user in the company's account with a password that meets the password complexity requirements Attach the appropriate lAM policies to the user (or the permissions that the vendor requires
  C. Create an IAM group in the company's account Add the tool's lAM user from the vendor account lo the group Attach the appropriate lAM policies to the group for the permissions that the vendor requires
  D. Create a new identity provider by choosing "AWS account" as the provider type in the 1AM console Supply the vendor's AWS account ID and user name Attach the appropriate 1AM policies to the new provider for the permissions that the vendor requires
  B. Create an lAM user in the company's account with a password that meets the password complexity requirements Attach the appropriate lAM policies to the user (or the permissions that the vendor requires

• Question 740:

  A company is developing a real-time multiplier game that uses UDP for communications between client and servers in an Auto Scaling group Spikes in demand are anticipated during the day, so the game server platform must adapt

  accordingly. Developers want to store gamer scores and other non- relational data in a database solution that will scale without intervention.

  Which solution should a solution architect recommend?

  A. Use Amazon Route 53 for traffic distribution and Amazon Aurora Serverless for data storage.
  B. Use a Network Load Balancer for traffic distribution and Amazon DynamoDB on-demand for data storage.
  C. Use a Network Load Balancer for traffic distribution and amazon Aura Global for data storage.
  D. Use an Application Load Balancer for traffic distribution and Amazon DynamoDB global tables for data storage
  B. Use a Network Load Balancer for traffic distribution and Amazon DynamoDB on-demand for data storage.