AWS Certified Solutions Architect Practice Tests SAA-C01 Exam  «««  click here 1000+ Questions

2019-AWS-SAA-C01练习题 51-100

51. A Solutions Architect needs to design an architecture for a new, mission-critical batch processing billing application. The application is required to run Monday, Wednesday, and Friday from 5 AM to 11 AM.

 

Which is the MOST cost-effective Amazon EC2 pricing model?




 

  1. Amazon EC2 Spot Instances
  2. On-Demand Amazon EC2 Instances
  3. Scheduled Reserved Instances
  4. Dedicated Amazon EC2 Instances

 

Answer: C

 

52. A workload consists of downloading an image from an Amazon S3 bucket, processing the image, and moving it to another Amazon S3 bucket. An Amazon EC2 instance runs a scheduled task every hour to perform the operation.

 

How should a Solutions Architect redesign the process so that it is highly available?

 

  1. Change the Amazon EC2 instance to compute optimized.
  2. Launch a second Amazon EC2 instance to monitor the health of the first.
  3. Trigger a Lambda function when a new object is uploaded.
  4. Initially copy the images to an attached Amazon EBS volume.

 

Answer: C

 

Q53. An application is running on an Amazon EC2 instance in a private subnet. The application needs to read and write data onto Amazon Kinesis Data Streams, and corporate policy requires that this traffic should not go to the internet.

 

How can these requirements be met?

 

  1. Configure a NAT gateway in a public subnet and route all traffic to Amazon Kinesis through the NAT gateway.
  2. Configure a gateway VPC endpoint for Kinesis and route all traffic to Kinesis through the gateway VPC endpoint.
  3. Configure an interface VPC endpoint for Kinesis and route all traffic to Kinesis through the gateway VPC endpoint.
  4. Configure an AWS Direct Connect private virtual interface for Kinesis and route all traffic to Kinesis through the virtual interface.

 

Answer: C

 

Q54. A Solutions Architect is building an application that stores object data. Compliance requirements state that the data stored is immutable.

 

Which service meets these requirements?

 

  1. Amazon S3
  2. Amazon Glacier
  3. Amazon EFS
  4. AWS Storage Gateway

 

Answer: B

 

Explanation:

Data stored in Amazon Glacier is immutable, meaning that after an archive is created it cannot be updated. This ensures that data such as compliance and regulatory records cannot be altered after they have been archived.

https://aws.amazon.com/glacier/features/

Q55. A Solutions Architect is defining a shared Amazon S3 bucket where corporate applications will save objects.

 

How can the Architect ensure that when an application uploads an object to the Amazon S3 bucket, the object is encrypted?

 

  1. Set a CORS configuration.
  2. Set a bucket policy to encrypt all Amazon S3 objects.
  3. Enable default encryption on the bucket.
  4. Set permission for users.

 

Answer: B

 

Explanation:

https://aws.amazon.com/blogs/security/how-to-prevent-uploads-of-unencrypted-objects-to- amazon-s3/

Q56. An application tier currently hosts two web services on the same set of instances, listening on different ports.

 

Which AWS service should a Solutions Architect use to route traffic to the service based on the incoming request path?

 

  1. AWS Application Load Balancer
  2. Amazon CloudFront
  3. Amazon Classic Load Balancer
  4. Amazon Route 53

 

Answer: A

 

Explanation:

https://docs.aws.amazon.com/elasticloadbalancing/latest/application/tutorial-load-balancer- routing.html

Q57. A data analytics startup company asks a Solutions Architect to recommend an AWS data store options for indexed data. The data processing engine will generate and input more than 64 TB of processed data every day, with item sizes reaching up to 300 KB. The startup is flexible with data storage and is more interested in a database that requires minimal effort to scale with a growing dataset size.

Which AWS data store service should the Architect recommend?

 

  1. Amazon RDS
  2. Amazon Redshift
  3. Amazon DynamoDB
  4. Amazon S3

 

Answer: C

 

Q58. A Solutions Architect needs to allow developers to have SSH connectivity to web servers. The requirements are as follows:

 

– Limit access to users origination from the corporate network.

– Web servers cannot have SSH access directly from the Internet.

– Web servers reside in a private subnet.

 

Which combination of steps must the Architect complete to meet these requirements? (Choose two.)

 

  1. Create a bastion host that authenticates users against the corporate directory.
  2. Create a bastion host with security group rules that only allow traffic from the corporate network.
  3. Attach an IAM role to the bastion host with relevant permissions.
  4. Configure the web servers’ security group to allow SSH traffic from a bastion host.
  5. Deny all SSH traffic from the corporate network in the inbound network ACL.

 

Answer: AC

 

Q59. A Solutions Architect needs to use AWS to implement pilot light disaster recovery for a three-tier web application hosted in an on-premises datacenter.

 

Which solution allows rapid provision of working, fully-scaled production environment?

 

  1. Continuously replicate the production database server to Amazon RDS.

Use AWS CloudFormation to deploy the application and any additional servers if necessary.

  1. Continuously replicate the production database server to Amazon RDS.

Create one application load balancer and register on-premises servers.

Configure ELB Application Load Balancer to automatically deploy Amazon EC2 instances for application and additional servers if the on-premises application is down.

  1. Use a scheduled Lambda function to replicate the production database to AWS.

Use Amazon Route 53 health checks to deploy the application automatically to Amazon S3 if production is unhealthy.

  1. Use a scheduled Lambda function to replicate the production database to AWS.

Register on-premises servers to an Auto Scaling group and deploy the application and additional servers if production is unavailable.

 

Answer: B

 

Q60. A Solutions Architect notices slower response times from an application. The CloudWatch metrics on the MySQL RDS indicate Read IOPS are high and fluctuate significantly when the database is under load.

 

How should the database environment be re-designed to resolve the IOPS fluctuation?

 

  1. Change the RDS instance type to get more RAM.
  2. Change the storage type to Provisioned IOPS.
  3. Scale the web server tier horizontally.
  4. Split the DB layer into separate RDS instances.

 

Answer: B



Q61. A Solutions Architect is designing a solution that can monitor memory and disk space utilization of all Amazon EC2 instances running Amazon Linux and Windows.

 

Which solution meets this requirement?

 

  1. Default Amazon CloudWatch metrics.
  2. Custom Amazon CloudWatch metrics.
  3. Amazon Inspector resource monitoring.
  4. Default monitoring of Amazon EC2 instances.

 

Answer: A

Answer: B

 

Explanation:

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/monitoring_ec2.html

Q62. A Solutions Architect is creating a new relational database. The Compliance team will use the database, and mandates that data content must be stored across three different Availability Zones.

 

Which of the following options should the Architect Use?

 

  1. Amazon Aurora
  2. Amazon RDS MySQL with Multi-AZ enabled
  3. Amazon DynamoDB
  4. Amazon ElastiCache

 

Answer: B

 

Q63. A company needs to quickly ensure that all files created in an Amazon S3 bucket in us-east-1 are also available in another bucket in ap-southeast-2.

 

Which option represents the SIMPLIEST way to implement this design?

 

  1. Add an S3 lifecycle rule to move any files from the bucket in us-east-1 to the bucket in ap- southeast-2.
  2. Create a Lambda function to be triggered for every new file in us-east-1 that copies the file to the bucket in ap-southeast-2.
  3. Use SNS to notify the bucket in ap-southeast-2 to create a file whenever the file is created in the bucket in us-east-1.
  4. Enable versioning and configure cross-region replication from the bucket in us-east-1 to the bucket in ap-southeast-2.

 

Answer: D

 

Q64. An organization has a long-running image processing application that runs on Spot Instances that will be terminated when interrupted. A highly available workload must be designed to respond to Spot Instance interruption notices. The solution must include a two-minute warning when there is not enough capacity.

 

How can these requirements be met?

 

  1. Use Amazon CloudWatch Events to invoke an AWS Lambda function that can launch On- Demand Instances.
  2. Regularly store data from the application on Amazon DynamoDB. Increase the maximum number of instances in the AWS Auto Scaling group.
  3. Manually place a bid for additional Spot Instances at a higher price in the same AWS Region and Availability Zone.
  4. Ensure that the Amazon Machine Image associated with the application has the latest configurations for the launch configuration.

 

Answer: B

 

Q65. A company has an Amazon RDS-managed online transaction processing system that has very heavy read and write. The Solutions Architect notices throughput issues with the system.

 

How can the responsiveness of the primary database be improved?

 

  1. Use asynchronous replication for standby to maximize throughput during peak demand.
  2. Offload SELECT queries that can tolerate stale data to READ replica.
  3. Offload SELECT and UPDATE queries to READ replica.
  4. Offload SELECT query that needs the most current data to READ replica.

 

Answer: A

 

Explanation:

https://aws.amazon.com/rds/faqs/




Q66. A company is designing a failover strategy in Amazon Route 53 for its resources between two AWS Regions. The company must have the ability to route a user’s traffic to the region with least latency, and if both regions are healthy, Route 53 should route traffic to resources in both regions.

 

Which strategy should the Solutions Architect recommend?

 

  1. Configure active-active failover using Route 53 latency DNS records.
  2. Configure active-passive failover using Route 53 latency DNS records.
  3. Configure active-active failover using Route 53 failover DNS records.
  4. Configure active-passive failover using Route 53 failover DNS records.

 

Answer: A

 

Q67. A company is developing several critical long-running applications hosted on Docker.

 

How should a Solutions Architect design a solution to meet the scalability and orchestration requirements on AWS?

 

  1. Use Amazon ECS and Service Auto Scaling.
  2. Use Spot Instances for orchestration and for scaling containers on existing Amazon EC2 instances.
  3. Use AWS OpsWorks to launch containers in new Amazon EC2 instances.
  4. Use Auto Scaling groups to launch containers on existing Amazon EC2 instances.

 

Answer: A

 

Explanation:

https://aws.amazon.com/getting-started/tutorials/deploy-docker-containers/

Q68. A Solutions Architect is developing a new web application on AWS. The Architect expects the application to become very popular, so the application must scale to support the load. The Architect wants to focus on software development and deploying new features without provisioning or managing instances.

 

What solution is appropriate?

 

  1. Amazon API Gateway and AWS Lambda
  2. Elastic Load Balancing with Auto Scaling groups and Amazon EC2
  3. Amazon API Gateway and Amazon EC2
  4. Amazon CloudFront and AWS Lambda

 

Answer: D

 



Q69. A Solutions Architect is deploying a new production MySQL database on AWS. It is critical that the database is highly available.

What should the Architect do to achieve this goal with Amazon RDS?

 

  1. Create a read replica of the primary database and deploy it in a different AWS Region.
  2. Enable multi-AZ to create a standby database in a different Availability Zone.
  3. Enable multi-AZ to create a standby database in a different AWS Region.
  4. Create a read replica of the primary database and deploy it in a different Availability Zone.

 

Answer: B

 

Explanation:

Multi AZ is for failover vs Read Replica purely for reducing the latency, throughput, etc., and there will be small downtime trying to failover from a Read Replica. https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.MultiAZ.html

Q70. An organization designs a mobile application for their customers to upload photos to a site. The application needs a secure login with MFA. The organization wants to limit the initial build time and maintenance of the solution.

 

Which solution should a Solutions Architect recommend to meet the requirements?

 

  1. Use Amazon Cognito Identity with SMS-based MFA.
  2. Edit AWS IAM policies to require MFA for all users.
  3. Federate IAM against corporate AD that requires MFA.
  4. Use Amazon API Gateway and require SSE for photos.

 

Answer: A

 

Q71. A Solutions Architect is designing a solution to monitor weather changes by the minute. The frontend application is hosted on Amazon EC2 instances. The backend must be scalable to a virtually unlimited size, and data retrieval must occur with minimal latency.

 

Which AWS service should the Architect use to store the data and achieve these requirements?

 

  1. Amazon S3
  2. Amazon DynamoDB
  3. Amazon RDS
  4. Amazon EBS

 

Answer: A

 

Q72. A company hosts a website on premises. The website has a mix of static and dynamic content, but users experience latency when loading static files.

 

Which AWS service can help reduce latency?

 

  1. Amazon CloudFront with on-premises servers as the origin
  2. ELB Application Load Balancer
  3. Amazon Route 53 latency-based routing
  4. Amazon EFS to store and server static files

 

Answer: A

 

Q73. A company wants to analyze all of its sales information aggregated over the last 12 months. The company expects there to be over 10TB of data from multiple sources.

 

What service should be used?

 

  1. Amazon DynamoDB
  2. Amazon Aurora MySQL
  3. Amazon RDS MySQL
  4. Amazon Redshift

 

Answer: D

 

Q74. A media company has deployed a multi-tier architecture on AWS. Web servers are deployed in two Availability Zones using an Auto Scaling group with a default Auto Scaling termination policy. The web servers’ Auto Scaling group currently has 15 instances running.

 

Which instance will be terminated first during a scale-in operation?

 

  1. The instance with the oldest launch configuration.
  2. The instance in the Availability Zone that has most instances.
  3. The instance closest to the next billing hour.
  4. The oldest instance in the group.

 

Answer: A

 

Q75. A retail company has sensors placed in its physical retail stores. The sensors send messages over HTTP when customers interact with in-store product displays. A Solutions Architect needs to implement a system for processing those sensor messages; the results must be available for the Data Analysis team.

 

Which architecture should be used to meet these requirements?

 

  1. Implement an Amazon API Gateway to server as the HTTP endpoint. Have the API Gateway trigger an AWS Lambda function to process the messages, and save the results to an Amazon DynamoDB table.
  2. Create an Amazon EC2 instance to server as the HTTP endpoint and to process the messages.

Save the results to Amazon S3 for the Data Analysis team to download.

  1. Use Amazon Route 53 to direct incoming sensor messages to a Lambda function to process the message and save the results to a Amazon DynamoDB table.
  2. Use AWS Direct Connect to connect sensors to DynamoDB so that data can be written directly to a DynamoDB table where it can be accessed by the Data Analysis team.

 

Answer: A

 

Q76. A client is migrating a legacy web application to the AWS Cloud. The current system uses an Oracle database as a relational database management system solution. Backups occur every night, and the data is stored on-premises. The Solutions Architect must automate the backups and identity a storage solution while keeping costs low.

 

Which AWS service will meet these requirements?

 

  1. Amazon RDS
  2. Amazon RedShift
  3. Amazon DynamoDB Accelerator
  4. Amazon ElastiCache

 

Answer: A




Q77. A company has an Amazon RDS database backing its production website. The Sales team needs to run queries against the database to track training program effectiveness. Queries against the production database cannot impact performance, and the solution must be easy to maintain.

 

How can these requirements be met?

 

  1. Use an Amazon Redshift database. Copy the product database into Redshift and allow the team to query it.
  2. Use an Amazon RDS read replica of the production database and allow the team to query against it.
  3. Use multiple Amazon EC2 instances running replicas of the production database, placed behind a load balancer.
  4. Use an Amazon DynamoDB table to store a copy of the data.

 

Answer: A

 

Q78. A company must collect temperature data from thousands of remote weather devices. The company must also store this data in a data warehouse to run aggregations and visualizations.

 

Which services will meet these requirements? (Choose two.)

 

  1. Amazon Kinesis Data Firehouse
  2. Amazon SQS
  3. Amazon Redshift
  4. Amazon SNS
  5. Amazon DynamoDB

 

Answer: AB

 

Q79. A company has a legal requirement to store point-in-time copies of its Amazon RDS PostGreSQL database instance in facilities that are at least 200 miles apart.

 

Use of which of the following provides the easiest way to comply with this requirement?

 

  1. Cross-region read replica
  2. Multiple Availability Zone snapshot copy
  3. Multiple Availability Zone read replica
  4. Cross-region snapshot copy

 

Answer: D

 

Q80. After reviewing their logs, a startup company noticed large, random spikes in traffic to their web application. The company wants to configure a cost-efficient Auto Scaling solution to support high availability of the web application.

 

Which scaling plan should a Solutions Architect recommend to meet the company’s needs?

 

  1. Dynamic
  2. Scheduled
  3. Manual
  4. Lifecycle

 

Answer: A

 

Q81. To meet compliance standards, a company must have encrypted archival data storage. Data will be accessed infrequently, with lead times well in advance of when archived data must be recovered. The company requires that the storage be secure, durable, and provided at the lowest price per 1TB of data stored.

 

What type of storage should be used?

 

  1. Amazon S3
  2. Amazon EBS
  3. Amazon Glacier
  4. Amazon EFS

 

Answer: C

 



Q82. An online company wants to conduct real-time sentiment analysis about its products from its social media channels using SQL.

Which of the following solutions has the LOWEST cost and operational burden?

 

  1. Set up a streaming data ingestion application on Amazon EC2 and connect it to a Hadoop cluster for data processing. Send the output to Amazon S3 and use Amazon Athena to analyze the data.
  2. Configure the input stream using Amazon Kinesis Data Streams. Use Amazon Kinesis Data Analytics to write SQL queries against the stream.
  3. Configure the input stream using Amazon Kinesis Data Streams. Use Amazon Kinesis Data Firehose to send data to an Amazon Redshift cluster, and then query directly against Amazon Redshift
  4. Set up streaming data ingestion application on Amazon EC2 and send the output to Amazon S3 using Kinesis Data Firehose. Use Athena to analyze the data.

 

Answer: B

 

Q83. An organization must process a stream of large-volume hashtag data in real time and needs to run custom SQL queries on the data to get insights on certain tags. The organization needs this solution to be elastic and does not want to manage clusters.

 

Which of the following AWS services meets these requirements?

 

  1. Amazon Elasticsearch Service
  2. Amazon Athena
  3. Amazon Redshift
  4. Amazon Kinesis Data Analytics

 

Answer: B

 

Explanation:

https://aws.amazon.com/blogs/machine-learning/build-a-social-media-dashboard-using-machine- learning-and-bi-services/

Q84. Which requirements must be met in order for a Solutions Architect to specify that an Amazon EC2 instance should stop rather than terminate when its Spot Instance is interrupted? (Choose two.)

 

  1. The Spot Instance request type must be one-time.
  2. The Spot Instance request type must be persistent.
  3. The root volume must be an Amazon EBS volume.
  4. The root volume must be an instance store volume.
  5. The launch configuration is changed.

 

Answer: BC

 

Explanation:

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-interruptions.html#interruption- behavior

Q85. An application hosted on AWS uses object storage for storing internal reports that are accessed daily by the CFO. Currently, these reports are publicly available.

 

How should a Solutions Architect re-design this architecture to prevent unauthorized access to these reports?

 

  1. Encrypt the files on the client side and store the files on Amazon Glacier, then decrypt the reports on the client side.
  2. Move the files to Amazon ElastiCache and provide a username and password for downloading the reports.
  3. Specify the use of AWS KMS server-side encryption at the time of an object creation on Amazon S3.
  4. Store the files on Amazon S3 and use the application to generate S3 pre-signed URLs to users.

 

Answer: D

 

Q86. A Solutions Architect is designing an application on AWS that will connect to the on-premise data center through a VPN connection. The solution must be able to log network traffic over the VPN.

 

Which service logs this network traffic?

 

  1. AWS CloudTrail logs
  2. Amazon VPC flow logs
  3. Amazon S3 bucket logs
  4. Amazon CloudWatch Logs

 

Answer: B

 

Q87. A company wants to durably store data in 8 KB chunks. The company will access the data once every few months. However, when the company does access the data, it must be done with as little latency as possible.

 

Which AWS service should a Solutions Architect recommend if cost is NOT a factor?

 

  1. Amazon DynamoDB
  2. Amazon EBS Throughput Optimized HDD Volumes
  3. Amazon EBS Cold HDD Volumes
  4. Amazon ElastiCache

 

Answer: A

 

Q88. A media company has more than 100TB of data to be stored and retrieved infrequently. However, the company occasionally receives requests for data within an hour. The company needs a low- cost retrieval method to handle the requests.

 

Which service meets this requirement?

 

  1. Amazon S3 Standard
  2. Amazon Glacier standard retrievals
  3. Amazon Glacier bulk retrievals
  4. Amazon S3 Standard Infrequent Access

 

Answer: D

 

Explanation:

https://aws.amazon.com/blogs/aws/aws-storage-update-s3-glacier-price-reductions/

Q89. An on-premises database is experiencing significant performance problems when running SQL queries. With 10 users, the lookups are performing as expected. As the number of users increases, the lookups take three times longer than expected to return values to an application.

 

Which action should a Solutions Architect take to maintain performance as the user count increases?

 

  1. Use Amazon SQS.
  2. Deploy Multi-AZ RDS MySQL
  3. Configure Amazon RDS with additional read replicas.
  4. Migrate from MySQL to RDS Microsoft SQL Server.

 

Answer: B

 

Q90. A team has an application that detects new objects being uploaded into an Amazon S3 bucket. The uploads trigger a Lambda function to write object metadata into an Amazon DynamoDB table and RDS PostgreSQL database.

 

Which action should the team take to ensure high availability?

 

  1. Enable cross-region replication in the Amazon S3 bucket.
  2. Create a Lambda function for each Availability Zone the application is deployed in.
  3. Enable multi-AZ on the RDS PostgreSQL database.
  4. Create a DynamoDB stream for the DynamoDB table.

 

Answer: D

 




Q91. A media company must store 10 TB of audio recordings. Retrieval happens infrequently and requestors agree on an 8-hour turnaround time.

 

What is the MOST cost-effective solution to store the files?

 

  1. Amazon S3 Standard ?Infrequent Access (Standard ?IA)
  2. EBS Throughput Optimized HDD (st1)
  3. EBS Cold HDD (sc1)
  4. Amazon Glacier

 

Answer: D

 

Explanation: https://aws.amazon.com/about-aws/whats-new/2016/11/access-your-amazon- glacier-data-in-minutes-with-new-retrieval-options/

Q92. A company wants to improve the performance of their web application after receiving customer complaints. An analysis concluded that the same complex database queries were causing increased latency.

 

What should a Solutions Architect recommend to improve the application’s performance?

 

  1. Migrate the database to MySQL.
  2. Use Amazon RedShift to analyze the queries.
  3. Integrate Amazon ElastiCache into the application.
  4. Use a Lambda-triggered request to the backend database.

 

Answer: C

 

Q93. Which tool analyzes account resources and provides a detailed inventory of changes over time?

 

  1. AWS Config
  2. AWS CloudFormation
  3. Amazon CloudWatch
  4. AWS Service Catalog

 

Answer: A

 

Explanation:

https://docs.aws.amazon.com/config/latest/developerguide/WhatIsConfig.html

Q94. A Solutions Architect is designing a solution that will include a database in Amazon RDS. Corporate security policy mandates that the database, its logs, and its backups are all encrypted.

 

Which is the MOST efficient option to fulfill the security policy using Amazon RDS?

 

  1. Launch an Amazon RDS instance with encryption enabled. Enable encryption for logs and backups.
  2. Launch an Amazon RDS instance. Enable encryption for database, logs and backups.
  3. Launch an Amazon RDS instance with encryption enabled. Logs and backups are automatically encrypted.
  4. Launch an Amazon RDS instance. Enable encryption for backups. Encrypt logs with a database- engine feature.

 

Answer: C

 

Explanation:

https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.Encryption.html

Q95. A Solutions Architect is designing a public-facing web application for employees to upload images to their social media account. The application consists of multiple Amazon EC2 instances behind an elastic load balancer, an Amazon S3 bucket where uploaded images are stored, and an Amazon DynamoDB table for storing image metadata.

 

Which AWS service can the Architect use to automate the process of updating metadata in the DynamoDB table upon image upload?

 

  1. Amazon CloudWatch
  2. AWS CloudFormation
  3. AWS Lambda
  4. Amazon SQS

 

Answer: C

 

Q96. A company’s policy requires that all data stored in Amazon S3 is encrypted. The company wants to use the option with the least overhead and does not want to manage any encryption keys.

 

Which of the following options will meet the company’s requirements?

 

  1. ASW CloudHSM
  2. AWS Trusted Advisor
  3. Server Side Encryption (SSE-S3)
  4. Server Side Encryption (SSE-KMS)

 

Answer: C

 

Explanation:



https://docs.aws.amazon.com/AmazonS3/latest/dev/bucket-encryption.html

Q97. A company has gigabytes of web log files stored in an Amazon S3 bucket. A Solutions Architect wants to copy those files into Amazon Redshift for analysis. The company’s security policy mandates that data is encrypted at rest both in the Amazon Redshift cluster and the Amazon S3 bucket.

 

Which process will fulfill the security requirements?

 

  1. Enable server-side encryption on the Amazon S3 bucket. Launch an unencrypted Amazon Redshift cluster. Copy the data into the Amazon Redshift cluster.
  2. Enable server-side encryption on the Amazon S3 bucket. Copy data from the Amazon S3 bucket into an unencrypted Redshift cluster. Enable encryption on the cluster.
  3. Launch an encrypted Amazon Redshift cluster. Copy the data from the Amazon S3 bucket into the Amazon Redshift cluster. Copy data back to the Amazon S3 bucket in encrypted form.
  4. Enable server-side encryption on the Amazon S3 bucket. Launch an encrypted Amazon Redshift cluster. Copy the data into the Amazon Redshift cluster.

 

Answer: D

 

Explanation: https://aws.amazon.com/blogs/big-data/encrypt-your-amazon-redshift-loads-with- amazon-s3-and-aws-kms/

Q98. An application runs on Amazon EC2 instances in an Auto Scaling group. When instances are terminated, the Systems Operations team cannot determine the route cause, because the logs reside on the terminated instances and are lost.

 

How can the root cause be determined?

 

  1. Use ephemeral volumes to store the log files.
  2. Use a scheduled Amazon CloudWatch Event to take regular Amazon EBS snapshots.
  3. Use an Amazon CloudWatch agent to push the logs to Amazon CloudWatch Logs.
  4. Use AWS CloudTrail to pull the logs from the Amazon EC2 instances.

 

Answer: C
Q99. A Solutions Architect is designing a customer order processing application that will likely have high usage spikes.

 

What should the Architect do to ensure that customer orders are not lost before being written to an Amazon RDS database? (Choose two.)

 

  1. Use Amazon CloudFront to deliver the application front end.
  2. Use Elastic Load Balancing with a round-robin routing algorithm.
  3. Have the orders written into an Amazon SQS queue.
  4. Scale the number of processing nodes based on pending order volume.
  5. Have a standby Amazon RDS instance in a separate Availability Zone.

 

Answer: AB

 



Q100. Employees from several companies use an application once a year during a specific 30-day period. The periods are different for each company. Traffic to the application spikes during these 30-day periods.

 

How can the application be designed to handle these traffic spikes?

 

  1. Use an Amazon Route 53 latency routing policy to route traffic to an Amazon EC2 instance with the least lag time.
  2. Use Amazon S3 to cache static elements of the website requests.
  3. Use an Auto Scaling group to scale the number of EC2 instances to match the site traffic.
  4. Use Amazon Cloud Front to serve static assets to decrease the load on the EC2 instances.

 




Answer: A

发表评论

电子邮件地址不会被公开。