amazon AWS Certified Solutions Architect - Associate SAA-C02 online exam

Question 1

A solutions architect must create a highly available bastion host architecture. The solution needs to be resilient within a
single AWS Region and should require only minimal effort to maintain.
What should the solutions architect do to meet these requirements?

• A. Create a Network Load Balancer backed by an Auto Scaling group with a UDP listener.
• B. Create a Network Load Balancer backed by a Spot Fleet with instances in a partition placement group.
• C. Create a Network Load Balancer backed by the existing servers in different Availability Zones as the target.
• D. Create a Network Load Balancer backed by an Auto Scaling group with instances in multiple Availability Zones as the target.

Answer:

D

Question 2

A company has 700 TB of backup data stored in network attached storage (NAS) in its data center This backup data need to
be accessible for infrequent regulatory requests and must be retained 7 years. The company has decided to migrate this
backup data from its data center to AWS. The migration must be complete within 1 month. The company has 500 Mbps of
dedicated bandwidth on its public internet connection available for data transfer.
What should a solutions architect do to migrate and store the data at the LOWEST cost?

• A. Order AWS Snowball devices to transfer the data. Use a lifecycle policy to transition the files to Amazon S3 Glacier Deep Archive.
• B. Deploy a VPN connection between the data center and Amazon VPC. Use the AWS CLI to copy the data from on premises to Amazon S3 Glacier.
• C. Provision a 500 Mbps AWS Direct Connect connection and transfer the data to Amazon S3. Use a lifecycle policy to transition the files to Amazon S3 Glacier Deep Archive.
• D. Use AWS DataSync to transfer the data and deploy a DataSync agent on premises. Use the DataSync task to copy files from the on-premises NAS storage to Amazon S3 Glacier.

Answer:

A

Question 3

A company recently expanded globally and wants to make its application accessible to users in those geographic locations.
The application is deployed on Amazon EC2 instances behind an Application Load Balancer in an Auto Scaling group. The
company needs the ability to shift traffic from resources in one region to another.
What should a solutions architect recommend?

• A. Configure an Amazon Route 53 latency routing policy.
• B. Configure an Amazon Route 53 geolocation routing policy.
• C. Configure an Amazon Route 53 geoproximity routing policy.
• D. Configure an Amazon Route 53 multivalue answer routing policy.

Answer:

C

Question 4

A gaming company hosts a browser-based application on AWS. The users of the application consume a large number of
videos and images that are stored in Amazon S3. This content is the same for all users.
The application has increased in popularity, and millions of users worldwide are accessing these media files. The company
wants to provide the files to the users while reducing the load on the origin.
Which solution meets these requirements MOST cost-effectively?

• A. Deploy an AWS Global Accelerator accelerator in front of the web servers.
• B. Deploy an Amazon CloudFront web distribution in front of the S3 bucket.
• C. Deploy an Amazon ElastiCache for Redis instance in front of the web servers.
• D. Deploy an Amazon ElastiCache for Memcached instance in front of the web servers.

Answer:

B

Explanation:
Reference: https://aws.amazon.com/getting-started/hands-on/deliver-content-faster/

Question 5

A company is running a multi-tier web application on AWS. The application runs its database tier on Amazon Aurora MySQL.
The application and database tiers are in the us-east-1 Region. A database administrator who regularly monitors the Aurora
DB cluster finds that an intermittent increase in read traffic is creating high CPUutilization on the read replica and causing
increased read latency of the application.
What should a solutions architect do to improve read scalability?

• A. Reboot the Aurora DB cluster.
• B. Create a cross-Region read replica
• C. Increase the instance class of the read replica.
• D. Configure Aurora Auto Scaling for the read replica.

Answer:

D

Question 6

A company is building a website that relies on reading and writing to an Amazon DynamoDB database. The traffic
associated with the website predictably peaks during business hours on weekdays and declines overnight and during
weekends. A solutions architect needs to design a cost-effective solution that can handle the load.
What should the solutions architect do to meet these requirements?

• A. Enable DynamoDB Accelerator (DAX) to cache the data.
• B. Enable Multi-AZ replication for the DynamoDB database.
• C. Enable DynamoDB auto scaling when creating the tables.
• D. Enable DynamoDB On-Demand capacity allocation when creating the tables.

Answer:

C

Question 7

A company is experiencing growth as demand for its product has increased. The companys existing purchasing application
is slow when traffic spikes. The application is a monolithic three-tier application that uses synchronous transactions and
sometimes sees bottlenecks in the application tier. A solutions architect needs to design a solution that can meet required
application response times while accounting for traffic volume spikes.
Which solution will meet these requirements?

• A. Vertically scale the application instance using a larger Amazon EC2 instance size.
• B. Scale the application’s persistence layer horizontally by introducing Oracle RAC on AWS.
• C. Scale the web and application tiers horizontally using Auto Scaling groups and an Application Load Balancer.
• D. Decouple the application and data tiers using Amazon Simple Queue Service (Amazon SQS) with asynchronous AWS Lambda calls.

Answer:

C

Question 8

A company is concerned that two NAT instances in use will no longer be able to support the traffic needed for the company's
application. A solutions architect wants to implement a solution that is highly available fault tolerant, and automatically
scalable.
What should the solutions architect recommend?

• A. Remove the two NAT instances and replace them with two NAT gateways in the same Availability Zone.
• B. Use Auto Scaling groups with Network Load Balancers for the NAT instances in different Availability Zones.
• C. Remove the two NAT instances and replace them with two NAT gateways in different Availability Zones.
• D. Replace the two NAT instances with Spot Instances in different Availability Zones and deploy a Network Load Balancer.

Answer:

C

Question 9

A company wants to share forensic accounting data that is stored in an Amazon RDS DB instance with an external auditor.
The auditor has its own AWS account and requires its own copy of the database.
How should the company securely share the database with the auditor?

• A. Create a read replica of the database and configure IAM standard database authentication to grant the auditor access.
• B. Copy a snapshot of the database to Amazon S3 and assign an IAM role to the auditor to grant access to the object in that bucket.
• C. Export the database contents to text files, store the files in Amazon S3, and create a new IAM user for the auditor with access to that bucket.
• D. Make an encrypted snapshot of the database, share the snapshot, and allow access to the AWS Key Management Service (AWS KMS) encryption key.

Answer:

A

Question 10

A company is building a web application that serves a content management system. The content management system runs
on Amazon EC2 instances behind an Application Load Balancer (ALB). The EC2 instances run in an Auto Scaling group
across multiple Availability Zones. Users are constantly adding and updating files, blogs, and other website assets in the
content management system.
A solutions architect must implement a solution in which all the EC2 instances share up-to-date website content with the
least possible lag time.
Which solution meets these requirements?

• A. Update the EC2 user data in the Auto Scaling group lifecycle policy to copy the website assets from the EC2 instance that was launched most recently. Configure the ALB to make changes to the website assets only in the newest EC2 instance.
• B. Copy the website assets to an Amazon Elastic File System (Amazon EFS) file system. Configure each EC2 instance to mount the EFS file system locally. Configure the website hosting application to reference the website assets that are stored in the EFS file system.
• C. Copy the website assets to an Amazon S3 bucket. Ensure that each EC2 instance downloads the website assets from the S3 bucket to the attached Amazon Elastic Block Store (Amazon EBS) volume. Run the S3 sync command once each hour to keep files up to date.
• D. Restore an Amazon Elastic Block Store (Amazon EBS) snapshot with the website assets. Attach the EBS snapshot as a secondary EBS volume when a new EC2 instance is launched. Configure the website hosting application to reference the website assets that are stored in the secondary EBS volume.

Answer:

B

Explanation:
Reference: https://docs.aws.amazon.com/efs/latest/ug/how-it-works.html