Amazon SAA-C03 Online Practice Questions and Exam Preparation

Amazon SAA-C03 Online Questions & Answers

• Question 731:

  A company is building an ecommerce application that uses a relational database to store customer data and order history. The company also needs a solution to store 100 GB of product images. The company expects the traffic flow for the application to be predictable.

  Which solution will meet these requirements MOST cost-effectively?

  A. Use Amazon RDS for MySQL for the database. Store the product images in an Amazon S3 bucket.
  B. Use Amazon DynamoDB for the database. Store the product images in an Amazon S3 bucket.
  C. Use Amazon RDS for MySQL for the database. Store the product images in an Amazon Aurora MySQL database.
  D. Create three Amazon EC2 instances. Install MongoDB software on the instances to use as the database. Store the product images in an Amazon RDS for MySQL database with a Multi-AZ deployment.
  A. Use Amazon RDS for MySQL for the database. Store the product images in an Amazon S3 bucket.

  ---

  Explanation

  For predictable workloads requiring a relational database, Amazon RDS for MySQL offers a managed, cost-effective solution. Storing product images in Amazon S3 is highly durable and cost-efficient, especially for static assets like images.

  This combination leverages managed services to reduce operational overhead and costs.

• Question 732:

  A company must migrate 20 TB of data from a data center to the AWS Cloud within 30 days. The company's network bandwidth is limited to 15 Mbps and cannot exceed 70% utilization.

  What should a solutions architect do to meet these requirements?

  A. Use AWS Snowball.
  B. Use AWS DataSync.
  C. Use a secure VPN connection.
  D. Use Amazon S3 Transfer Acceleration.
  A. Use AWS Snowball.

• Question 733:

  A solutions architect is reviewing the resilience of an application. The solutions architect notices that a database administrator recently failed over the application's Amazon Aurora PostgreSQL database writer instance as part of a scaling exercise.

  The failover resulted in 3 minutes of downtime for the application.

  Which solution will reduce the downtime for scaling exercises with the LEAST operational overhead?

  A. Create more Aurora PostgreSQL read replicas in the cluster to handle the load during failover.
  B. Set up a secondary Aurora PostgreSQL cluster in the same AWS Region. During failover, update the application to use the secondary cluster's writer endpoint.
  C. Create an Amazon ElastiCache for Memcached cluster to handle the load during failover.
  D. Set up an Amazon RDS proxy for the database. Update the application to use the proxy endpoint.
  D. Set up an Amazon RDS proxy for the database. Update the application to use the proxy endpoint.

• Question 734:

  A company that uses AWS is building an application to transfer data to a product manufacturer. The company has its own identity provider (IdP). The company wants the IdP to authenticate application users while the users use the application to transfer data. The company must use Applicability Statement 2 (AS2) protocol.

  Which solution will meet these requirements?

  A. Use AWS DataSync to transfer the data. Create an AWS Lambda function for IdP authentication.
  B. Use Amazon AppFlow flows to transfer the data. Create an Amazon Elastic Container Service (Amazon ECS) task for IdP authentication.
  C. Use AWS Transfer Family to transfer the data. Create an AWS Lambda function for IdP authentication.
  D. Use AWS Storage Gateway to transfer the data. Create an Amazon Cognito identity pool for IdP authentication.
  C. Use AWS Transfer Family to transfer the data. Create an AWS Lambda function for IdP authentication.

• Question 735:

  An ecommerce company needs to run a scheduled daily job to aggregate and filter sales records for analytics. The company stores the sales records in an Amazon S3 bucket. Each object can be up to 10 GB in size. Based on the number of sales events, the job can take up to an hour to complete. The CPU and memory usage of the job are constant and are known in advance.

  A solutions architect needs to minimize the amount of operational effort that is needed for the job to run.

  Which solution meets these requirements?

  A. Create an AWS Lambda function that has an Amazon EventBridge notification. Schedule the EventBridge event to run once a day.
  B. Create an AWS Lambda function. Create an Amazon API Gateway HTTP API, and integrate the API with the function. Create an Amazon EventBridge scheduled event that calls the API and invokes the function.
  C. Create an Amazon Elastic Container Service (Amazon ECS) cluster with an AWS Fargate launch type. Create an Amazon EventBridge scheduled event that launches an ECS task on the cluster to run the job.
  D. Create an Amazon Elastic Container Service (Amazon ECS) cluster with an Amazon EC2 launch type and an Auto Scaling group with at least one EC2 instance. Create an Amazon EventBridge scheduled event that launches an ECS task on the cluster to run the job.
  C. Create an Amazon Elastic Container Service (Amazon ECS) cluster with an AWS Fargate launch type. Create an Amazon EventBridge scheduled event that launches an ECS task on the cluster to run the job.

• Question 736:

  A solutions architect needs to optimize storage costs. The solutions architect must identify any Amazon S3 buckets that are no longer being accessed or are rarely accessed.

  Which solution will accomplish this goal with the LEAST operational overhead?

  A. Analyze bucket access patterns by using the S3 Storage Lens dashboard for advanced activity metrics.
  B. Analyze bucket access patterns by using the S3 dashboard in the AWS Management Console.
  C. Turn on the Amazon CloudWatch BucketSizeBytes metric for buckets. Analyze bucket access patterns by using the metrics data with Amazon Athena.
  D. Turn on AWS CloudTrail for S3 object monitoring. Analyze bucket access patterns by using CloudTrail logs that are integrated with Amazon CloudWatch Logs.
  A. Analyze bucket access patterns by using the S3 Storage Lens dashboard for advanced activity metrics.

• Question 737:

  A company runs an application on an Amazon ECS cluster that uses AWS Fargate On-Demand capacity.

  The application cannot tolerate any sudden interruptions. The company wants to optimize costs for the application and ensure that the application remains operational.

  Which solution will meet these requirements?

  A. Create an On-Demand Capacity Reservation.
  B. Purchase Convertible Reserved Instances.
  C. Use Fargate Spot capacity instead of On-Demand capacity with a rolling update deployment type.
  D. Purchase a Compute Savings Plan.
  D. Purchase a Compute Savings Plan.

  ---

  Explanation

  The correct answer is D because the application runs on AWS Fargate On-Demand capacity, cannot tolerate interruptions, and the company wants to optimize costs while keeping the application operational.

  A Compute Savings Plan is designed to reduce costs for consistent compute usage across AWS services, including AWS Fargate, without requiring changes to the application architecture or using interruptible capacity.

  A Savings Plan provides discounted pricing in exchange for a usage commitment over a period of time.

  This is ideal for workloads that must continue running without interruption because the application can remain on Fargate On-Demand, which avoids the termination risk associated with Spot capacity. The company gets cost savings while preserving the reliability characteristics of the current deployment model.

  Option A is incorrect because On-Demand Capacity Reservations are used to reserve EC2 capacity in a specific Availability Zone and do not apply as the main cost optimization mechanism for Fargate tasks.

  Option B is incorrect because Convertible Reserved Instances apply to Amazon EC2, not Fargate. Option

  C is incorrect because Fargate Spot can be interrupted and therefore does not meet the requirement that the application cannot tolerate sudden interruptions.

  AWS cost optimization guidance recommends selecting discount models that align with workload needs.

  For predictable, steady serverless container usage on Fargate that must remain highly available, Compute Savings Plans offer the best balance of lower cost and uninterrupted operation. Therefore, purchasing a Compute Savings Plan is the most appropriate solution.

• Question 738:

  A company operates multiple VPCs in a single AWS account. Account users need temporary access to Amazon S3 buckets. The S3 buckets are private and have no public endpoints.

  The solution must follow the principle of least privilege for access to each environment and must avoid distributing permanent access keys.

  Which solution will meet these requirements?

  A. Create a gateway VPC endpoint for Amazon S3 in each VPC. Attach an endpoint policy that allows only environment-scoped IAM roles to access the S3 buckets.
  B. Configure the S3 buckets to use SSE-S3. Create bucket policies that allow access only from the VPC CIDR blocks.
  C. Define separate S3 access points for each environment. Allow users to assume a role associated with the access points. Use the default Amazon S3 endpoints.
  D. Route S3 traffic through a NAT gateway. Configure bucket policies that allow traffic only from the NAT gateway's public IP addresses.
  A. Create a gateway VPC endpoint for Amazon S3 in each VPC. Attach an endpoint policy that allows only environment-scoped IAM roles to access the S3 buckets.

  ---

  Explanation

  AWS documentation states that the most secure method for granting private S3 access from VPCs is to use gateway VPC endpoints for Amazon S3. Endpoint policies enforce least privilege by allowing only specific IAM roles access to specific S3 buckets. Because users can obtain temporary credentials through IAM roles, no permanent access keys must be distributed.

  S3 bucket policies based on CIDR ranges (Option B) are less secure because CIDR-based access is broader and can grant unintended access.

  Access points (Option C) still rely on public S3 endpoints unless combined with VPC-only access, which is not stated here.

  Option D exposes S3 to public internet egress and depends on public IPs, violating least-privilege principles.

• Question 739:

  A company runs its media rendering application on premises. The company wants to reduce storage costs and has moved all data to Amazon S3. The on-premises rendering application needs low-latency access to storage.

  The company needs to design a storage solution for the application. The storage solution must maintain the desired application performance.

  Which storage solution will meet these requirements in the MOST cost-effective way?

  A. Use Mountpoint for Amazon S3 to access the data in Amazon S3 for the on-premises application.
  B. Configure an Amazon S3 File Gateway to provide storage for the on-premises application.
  C. Copy the data from Amazon S3 to Amazon FSx for Windows File Server. Configure an Amazon FSx File Gateway to provide storage for the on-premises application.
  D. Configure an on-premises file server. Use the Amazon S3 API to connect to S3 storage. Configure the application to access the storage from the on-premises file server.
  B. Configure an Amazon S3 File Gateway to provide storage for the on-premises application.

• Question 740:

  A financial services company wants to shut down two data centers and migrate more than 100 TB of data to AWS. The data has an intricate directory structure with millions of small files stored in deep hierarchies of subfolders. Most of the data is unstructured, and the company's file storage consists of SMB-based storage types from multiple vendors. The company does not want to change its applications to access the data after migration.

  What should a solutions architect do to meet these requirements with the LEAST operational overhead?

  A. Use AWS Direct Connect to migrate the data to Amazon S3.
  B. Use AWS DataSync to migrate the data to Amazon FSx for Lustre.
  C. Use AWS DataSync to migrate the data to Amazon FSx for Windows File Server.
  D. Use AWS Direct Connect to migrate the data on-premises file storage to an AWS Storage Gateway volume gateway.
  C. Use AWS DataSync to migrate the data to Amazon FSx for Windows File Server.