2019-AWS-SAA-C01练习题 151-200AWS Certified Solutions Architect–Associate C01 Test 2019  «««  click here 1000+ Questions

Q151. A company has a Node.js application running on Amazon EC2 that currently retrieves data for customers from a DynamoDB table. The company is seeing many repeat queries for the same items, and the number of queries is continuing to increase as the application gains popularity.

 

What solution will reduce the number of read capacity units (RCUs) required while minimizing the amount of refactoring that must be done to the application?




 

  1. Use Amazon ElastiCache to provide a caching layer
  2. Use a Lambda function to make concurrent requests for caching
  3. Use Amazon DynamoDB Accelerator (DAX) to provide a caching layer
  4. Obtain Reserved Capacity for Amazon DynamoDB to manage the increased number of queries

 

Answer: C

 

Q152. A company has an application that accesses a MySQL database installed on a single EC2 instance. The instance recently experienced a fault and brought down the entire application for several hours. The company wants to address the issue but is concerned about spending too much time modifying application code or managing the legacy application.

 

What should the Solutions Architect recommend to remove this single point of failure with the FEWEST changes to the application code and the LEAST amount of administrative effort?

 

  1. Implement a caching layer by using Amazon ElastiCache to store query results of frequently accessed information.
  2. Deploy a second EC2 instance with MySQL installed, and configure replication between this instance and the existing MySQL instance.
  3. Migrate the database to an RDS MySQL Multi-AZ DB instance, and point the application servers to the new RDS instance.
  4. Create a DynamoDB table to use as a cache layer, and update the application to query data from Amazon DynamoDB before querying MySQL.

 

Answer: C

 

Explanation:

http://dinus.ac.id/private_lib/fahri/LEARNING_AWS.pdf

Q153. A team is launching a marketing campaign and the peak database read activity in Amazon Aurora for MySQL is expected to increase. A Solutions Architect decides to add two Read Replicas to the cluster.

 

How should the Solutions Architect ensure that the connections for read activities are load balanced?

 

  1. Reader endpoint for Amazon Aurora
  2. Cluster endpoint for Amazon Aurora
  3. Primary DB instance endpoint for Amazon Aurora
  4. Replica DB instances endpoint for Aurora

 

Answer: C




Q154. A company plans to migrate a website to AWS to use a serverless architecture. The website contains both static and dynamic content and is accessed by users across the world. The website should maintain sessions for returning users to improve the user experience.

 

Which service should a Solutions Architect use for a cost-efficient solution with the LOWEST latency?

 

  1. Amazon S3, AWS Lambda, Amazon API Gateway, and Amazon DynamoDB
  2. Amazon CloudFront, AWS Lambda, API Gateway, and Amazon RDS
  3. Amazon CloudFront, Elastic Load Balancing, Amazon EC2, and Amazon RDS
  4. Amazon S3, Amazon CloudFront, AWS Lambda, Amazon API Gateway, and Amazon DynamoDB.

 

Answer: C

 

Q155. A Solutions Architect is helping a customer migrate an application to AWS. The application is composed of a fleet of Linux servers that currently use a shared file system to read and write data. One of the goals of moving this application to AWS is to increase the reliability of the storage tier.

 

What solution would increase reliability while minimizing the operational overhead of managing this infrastructure?

 

  1. Create an EBS volume and mount it to all the servers.
  2. Create an EFS file system and mount it to all the servers.
  3. Create an S3 bucket that can be accessed through an S3 VPC Endpoint.
  4. Create two EC2 instances in separate Availability Zones that act as file servers.

 

Answer: B

 

Q156. A Solution Architect is designing a two-tier application for maximum security, with a web tier running on EC2 instances and the data stored in an RDS DB instance. The web tier should accept user access only through HTTPS connections (port 443) from the Internet, and the data must be encrypted in transit to and from the database.

 

What combination of steps will MOST securely meet the stated requirements? (Choose two.)

 

  1. Create a security group for the web tier instances that allows inbound traffic only over port 443.
  2. Enforce Transparent Data Encryption (TDE) on the RDS database.
  3. Create a network ACL that allows inbound traffic only over port 443.
  4. Configure the web servers to communicate with RDS by using SSL, and issue certificates to the web tier EC2 instances.
  5. Create a customer master key in AWS KMS and apply it to encrypt the RDS instance.

 

Answer: CD

 

Q157. A credit card processing application, hosted on an on-premises server, needs to communicate directly with a database hosted on an Amazon EC2 instance running in a private subnet of a VPC. Compliance requirements state that end-to-end communication should be encrypted.

 

Which solution will ensure that this requirement is met?

 

  1. Use HTTPS for traffic over VPC peering between the VPC and the on-premises datacenter.
  2. Use HTTPS for traffic over the Internet between the on-premises server and the Amazon EC2 instance.
  3. Use HTTPS for traffic over a VPN connection between the VPC and the on-premises datacenter.
  4. Use HTTPS for traffic over gateway VPC endpoints that have been configured for the Amazon EC2 instance.

 

Answer: B

 

Q158. A company has asked a Solutions Architect to ensure that data is protected during data transfer to and from Amazon S3.

 

Use of which service will protect the data in transit?

 

  1. AWS KMS
  2. HTTPS
  3. SFTP
  4. FTPS

 

Answer: B

 

Explanation:

https://aws.amazon.com/premiumsupport/knowledge-center/secure-s3-resources/

Q159. A Solutions Architect is trying to bring a data warehouse workload to an Amazon EC2 instance. The data will reside in Amazon EBS volumes and full table scans will be executed frequently.

 

What type of Amazon EBS volume would be most suitable in this scenario?

 

  1. Throughput Optimized HDD (st1)
  2. Provisioned IOPS SSD (io1)
  3. General Purpose SSD (gp2)
  4. Cold HDD (sc1)

 

Answer: A

 

Explanation:

https://aws.amazon.com/ebs/features/

Q160. A Solutions Architect has a three-tier web application that serves customers worldwide. Analysis reveals that product images take more time to load than expected.

 

Which action will improve the image load time?

 

  1. Store product images on Amazon EBS-optimized storage volumes
  2. Store product images in an Amazon S3 bucket
  3. Use an Amazon CloudFront distribution for product images
  4. Use an Auto Scaling group to add instances for product images

 

Answer: C

 

Explanation:

https://aws.amazon.com/getting-started/tutorials/deliver-content-faster/

Q161. A gaming application is heavily dependent on caching and uses Amazon ElastiCache for Redis. The application performance was recently degraded due to failure of the cache node.

 

What should a Solutions Architect recommend to minimize performance degradation in the future?

 

  1. Migrate from ElastiCache to Amazon RDS
  2. Configure automatic backup to save cache data
  3. Configure ElastiCache Multi-AZ with automatic failover
  4. Use Auto Scaling to provision cache nodes based on CPU usage

 

Answer: C

 

Explanation:

https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/WhatIs.html

Q162. A client has set up an Auto Scaling group associated with a load balancer. The client has noticed that instances launched by the Auto Scaling group are reported unhealthy as the result of an Elastic Load Balancing (ELB) health check, but these unhealthy instances are not being terminated.

 

What can a Solutions Architect do to ensure that the instances marked unhealthy will be terminated and replaced?

 

  1. Increase the value for the health check interval set on the ELB load balancer.
  2. Change the thresholds set on the Auto Scaling group health check.
  3. Change the health check type to ELB for the Auto Scaling group.
  4. Change the health check set on the ELB load balancer to use TCP rather than HTTP checks.

 

Answer: B

 

Explanation:

http://docs.aws.amazon.com/AutoScaling/latest/DeveloperGuide/as-add-elb-healthcheck.html




Q163. A Solutions Architect must review an application deployed on EC2 instances that currently stores multiple 5-GB files on attached instance store volumes. The company recently experienced a significant data loss after stopping and starting their instances and wants to prevent the data loss from happening again. The solution should minimize performance impact and the number of code changes required.

 

What should the Solutions Architect recommend?

 

  1. Store the application data in Amazon S3
  2. Store the application data in an EBS volume
  3. Store the application data in Amazon ElastiCache
  4. Store the application data in Amazon DynamoDB

 

Answer: B




Explanation:

http://jayendrapatil.com/tag/i2/

Q164. An organization is deploying Amazon ElastiCache for Redis and requires password protection to improve their data security posture.

 

Which solution should a Solutions Architect recommend?

 

  1. Redis Auth
  2. AWS Single Sign-On
  3. IAM database authentication
  4. VPC security group for Redis

 

Answer: A

 

Explanation:

https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/auth.html

Q165. A Solutions Architect is designing a solution to send Amazon CloudWatch Alarm notifications to a group of users on a smartphone mobile application.

 

What are the key steps to this solution? (Choose two.)

 

  1. Configure the CloudWatch Alarm to send the notification to an Amazon SNS topic whenever there is an alarm.
  2. Configure the CloudWatch Alarm to send the notification to a mobile phone number whenever there is an alarm.
  3. Configure the CloudWatch Alarm to send the notification to the email addresses whenever there is an alarm.
  4. Create the platform endpoints for mobile devices and subscribe the SNS topic with platform endpoints.
  5. Subscribe the SNS topic with an Amazon SQL queue, and poll the messages continuously from the queue. Use each mobile platform’s libraries to send the message to the mobile application.

 

Answer: AD

 

Explanation:

https://aws.amazon.com/sns/faqs/

Q166. A company uses Amazon S3 for storing a variety of files. A Solutions Architect needs to design a feature that will allow users to instantly restore any deleted files within 30 days of deletion.

 

Which is the MOST cost-efficient solution?

 

  1. Create lifecycle policies that move the objects to Amazon Glacier and delete them after 30 days.
  2. Enable cross-region replication. Empty the replica bucket every 30 days using an AWS Lambda function.
  3. Enable versioning and create a lifecycle policy to remove expired versions after 30 days.
  4. Enable versioning and MFA Delete. Using a Lambda function, remove MFA delete from objects more than 30 days old.

 

Answer: D

 

Explanation:

https://aws.amazon.com/premiumsupport/knowledge-center/s3-undelete-configuration/

Q167. An application running on Amazon EC2 has been experiencing performance issues when accessing an Amazon RDS for Oracle database. The database has been provisioned correctly for average workloads, but there are several usage spikes each day that have saturated the database, causing the application to time out. The application is write-heavy, updating information more often than reading information. A Solutions Architect has been asked to review the application design.

 

What should the Solutions Architect recommend to improve performance?

 

  1. Put an Amazon ElastiCache cluster in front of the database and use lazy loading to limit database access during peak periods.
  2. Put an Amazon Elasticsearch domain in front of the database and use a Write-Through cache to reduce database access during peak periods.
  3. Configure an Amazon RDS Auto Scaling group to automatically scale the RDS instance during load spikes.
  4. Change the Amazon RDS instance storage type from General Purpose SSD to provisioned IOPS SSD.

 

Answer: D

 

Q168. During performance testing of an application, the Amazon RDS database caused a performance bottleneck.

 

What steps can be taken to improve the database performance? (Choose two.)

 

  1. Change the RDS database instance to multiple Availability Zones.
  2. Scale up to a larger RDS instance type.
  3. Redirect read queries to RDS read replicas.
  4. Scale out using an Auto Scaling group for RDS.
  5. Use RDS in a separate AWS Region.

 

Answer: BC

 

Q169. A Solutions Architect must design an Amazon DynamoDB table to store data about customer activities. The data is used to analyze recent customer behavior, so data that is less than a week old is heavily accessed and older data is accessed infrequently. Data that is more than one month old never needs to be referenced by the application, but needs to be archived for year-end analytics.

 

What is the MOST cost-efficient way to meet these requirements? (Choose two.)

 

  1. Use DynamoDB time-to-live settings to expire items after a certain time period.
  2. Provision a higher write capacity unit to minimize the number of partitions.
  3. Create separate tables for each week’s data with higher throughput for the current week.
  4. Pre-process data to consolidate multiple records to minimize write operations.
  5. Export the old table data from DynamoDB to Amazon S3 using AWS Data Pipeline, and delete the old table.

 

Answer: BC

 

Q170. A Solutions Architect is concerned that the current security group rules for a database tier are too permissive and may permit requests that should be restricted. Below are the current security group permissions for the database tier:

 

Protocol: TCP

Port Range: 1433 (MS SQL)

Source: ALL

 

Currently, the only identified resource that needs to connect to the databases is the application tier consisting of an Auto Scaling group of EC2 instances. What changes can be made to this security group that would offer the users LEAST privilege?

 

  1. Change the source to -1 to remove source IP addresses previously unseen.
  2. Change the source to the VPC CIDR block.
  3. Change the source to the application instances IDs.
  4. Change the source to the security group ID attached to the application instances.

 

Answer: C

 

Q171. A large media site has multiple applications in Amazon ECS. A Solutions Architect needs to use content metadata and route traffic to specific services. What is the MOST efficient method to perform this task?

 

  1. Use an AWS Classic Load Balancer with a host-based routing option to route traffic to the correct service.
  2. Use the AWS CLI to update Amazon Route 53 hosted zone to route traffic as services get updated.
  3. Use an AWS Application Load Balancer with host-based routing option to route traffic to the correct service.
  4. Use Amazon CloudFront to manage and route traffic to the correct service.

 

Answer: A

 

Q172. A Solutions Architect must build a secure document storage platform that allows clients to access data stored on Amazon S3. Documents must be readily available for the first 15 days. After that, documents need not be readily available, and storage costs should be reduced as much as possible.

 

Which of the following approaches will satisfy these requirements?

 

  1. Create a lifecycle rule to transition the documents from the STANDARD storage class to the STANDARD_IA storage class after 15 days, and then to the GLACIER storage class after an additional 15 days.
  2. Create a lifecycle rule to transition the documents from the STANDARD storage class to the GLACIER storage class after 30 days.
  3. Create a lifecycle rule to transition documents from the STANDARD storage class to the STANDARD_IA storage class after 30 days and then to the GLACIER storage class after an additional 30 days.
  4. Create a lifecycle rule to transition the documents from the STANDARD storage class to the GLACIER storage class after 15 days.

 

Answer: D

Q173. A Solutions Architect needs to configure scaling policies based on Amazon CloudWatch metrics for an Auto Scaling group. The application running on the instances is memory intensive.

 

How can the Architect meet this requirement?

 

  1. Enable detailed monitoring on the Amazon EC2 instances.
  2. Publish custom metrics to CloudWatch from the application.
  3. Configuration lifecycle policies for the Amazon EC2 instances.
  4. Set up high-resolution alarms for the Auto Scaling group

 

Answer: B

 

Explanation:

https://medium.com/qbits/autoscaling-using-custom-metrics-5f977903bc45

Q174. A customer has a service based out of Oregon, U.S. and Paris, France. The application is storing data in an S3 bucket located in Oregon, and that data is updated frequently. The Paris office is experiencing slow response times when retrieving objects.

 

What should a Solutions Architect do to resolve the slow response times for the Paris office?

 

  1. Set up an S3 bucket based in Paris, and enable cross-region replication from the Oregon bucket to the Paris bucket.
  2. Create an Application Load Balancer that load balances data retrieval between the Oregon S3 bucket and a new Paris S3 bucket.
  3. Create an Amazon CloudFront distribution with the bucket located in Oregon as the origin and set the Maximum Time to Live (TTL) for cache behavior to 0.
  4. Set up an S3 bucket based in Paris, and enable a lifecycle management rule to transition data from the Oregon bucket to the Paris bucket.

 

Answer: A




Q175. A company uses AWS Elastic Beanstalk to deploy a web application running on c4.large instances. Users are reporting high latency and failed requests. Further investigation reveals that the EC2 instances are running at or near 100% CPU utilization.

 

What should a Solutions Architect do to address the performance issues?

 

  1. Use time-based scaling to scale the number of instances based on periods of high load.
  2. Modify the scaling triggers in Elastic Beanstalk to use the CPUUtilization metric.
  3. Swap the c4.large instances with the m4.large instance type.
  4. Create an additional Auto Scaling group, and configure Amazon EBS to use both Auto Scaling groups to increase the scaling capacity.

 

Answer: D





Q176. A Solutions Architect is working on a PCI-compliant architecture that needs to call an external service provider’s API. The external provider requires IP whitelisting to verify the calling party.

 

How should the Solutions Architect provide the external party with the IP addresses for whitelisting?

 

  1. Use an API Gateway in proxy mode, and provide the API Gateway’s IP address to the external service provider.
  2. Associate a public elastic network interface to a published stage/endpoint in API Gateway, exposing the AWS Lambda function, and provide the IP address for the public network interface to the external party to whitelist.
  3. Deploy the Lambda function in private subnets and route outbound traffic through a NAT gateway.

Provide the NAT gateway’s Elastic IP address to the external service provider.

  1. Provide the external party the allocated AWS IP address range for Lambda functions, and send change notifications by using a subscription to the AmazonIpSpaceChanged SNS topic.

 

Answer: C

 

Q177. A Solutions Architect is designing a shared file system for a company. Multiple users will be accessing it at any given time. Different teams will have their own directories, and the company wants to secure files so that users can access only files owned by their team.

 

How should the Solutions Architect design this?

 

  1. Use Amazon EFS and control permissions by using file-level permissions.
  2. Use Amazon S3 and control permissions by using ACLs.
  3. Use Amazon EFS and control permissions by using security groups.
  4. Use AWS Storage Gateway and control permissions by using AWS Identity and Access Management (IAM)

 

Answer: C

 

Q178. A company requires operating system permission on a relational database server.

 

What should a Solutions Architect suggest as a configuration for a highly available database architecture?

 

  1. Multiple EC2 instances in a database replication configuration that uses two Availability Zones.
  2. A standalone Amazon EC2 instance with a selected database installed.
  3. Amazon RDS in a Multi-AZ configuration with Provisioned IOPS.
  4. Multiple EC2 instances in a replication configuration that uses two placement groups.

 

Answer: A

 

Q179. An application has a web tier that runs on EC2 instances in a public subnet. The application tier instances run in private subnets across two Availability Zones. All traffic is IPv4 only, and each subnet has its own custom route table.

 

A new feature requires that application tier instances can call an external service over the Internet; however, they must still not be accessible to Internet traffic.

 

What should be done to allow the application servers to connect to the Internet, maintain high availability, and minimize administrative overhead?

 

  1. Add an Amazon egress-only internet gateway to each private subnet. Alter each private subnet’s route table to include a route from 0.0.0.0/0 to the egress-only internal gateway in the same Availability Zone.
  2. Add an Amazon NAT Gateway to each public subnet. Alter each private subnet’s route table to include a route from 0.0.0.0/0 to the NAT Gateway in the same Availability Zone.
  3. Add an Amazon NAT instance to one of the public subnets Alter each private subnet’s route table to include a route from 0.0.0.0/0 to the Internet gateway in the VPC.
  4. Add an Amazon NAT Gateway to each private subnet. Alter each private subnet’s route table to include a route from 0.0.0.0/0 to the NAT Gateway in the other Availability Zone.

 

Answer: B
Q180. An application uses an Amazon SQS queue as a transport mechanism to deliver data to a group of EC2 instances for processing. The application owner wants to add a mechanism to archive the incoming data without modifying application code on the EC2 instances.

 

How can this application be re-architected to archive the data without modifying the processing instances?

 

  1. Trigger a Lambda function by using Amazon CloudWatch Events to retrieve messages from the SQS queue and archive to Amazon S3.
  2. Use an Amazon SNS topic to fan out the data to the SQS queue in addition to a Lambda function that records the data to an S3 bucket.
  3. Set up an Amazon Kinesis Data Stream so that multiple instances can receive data. Add a separate EC2 instance that is configured to archive all data it receives.
  4. Write the data to an S3 bucket, and use an SQS queue for S3 event notifications to tell the instances where to retrieve the data.

 

Answer: B

 

Explanation:

https://docs.aws.amazon.com/cognito/latest/developerguide/synchronizing-data.html

Q181. A Solutions Architect must select the most cost-efficient architecture for a service that responds to web requests. These web requests are small and query a DynamoDB table. The request rate ranges from zero to several hundred each second, without any predictable patterns.

 

What is the MOST cost-efficient architecture for this service?

 

  1. Network Load Balancer/Amazon EC2
  2. Application Load Balancer/Amazon ECS
  3. API Gateway/AWS Lambda
  4. AWS Elastic Beanstalk/AWS Lambda

 

Answer: A

 

Q182. A company has a web application running in a Docker container that connects to a MySQL server in an on-premises data center. The deployment and maintenance of this application are becoming time-consuming and slowing down new feature releases. The company wants to migrate the application to AWS and use services that helps facilitate infrastructure management and deployment.

 

Which architectures should the company consider on AWS? (Choose two.)

 

  1. Amazon ECS for the web application, and an Amazon RDS for MySQL for the database.
  2. AWS Elastic Beanstalk Docker Multi-container either for the web application or database.
  3. AWS Elastic Beanstalk Docker Single Container for the web application, and an Amazon RDS for MySQL for the database.
  4. AWS CloudFormation with Lambda Custom Resources without VPC for the web application, and an Amazon RDS for MySQL database.
  5. AWS CloudFormation with Lambda Custom Resources running in a VPC for the web application, and an Amazon RDS for MySQL database.

 

Answer: CE

 

Q183. A Solutions Architect has designed a VPC that meets all necessary security requirements for their organization. Any applications deployed in the organization must use this VPC design.

 

How can project teams deploy, manage, and delete VPCs that meet this design with the LEAST administrative effort?

 

  1. Deploy an AWS CloudFormation template that defines components of the VPC.
  2. Run a script that uses the AWS Command Line Interface to deploy the VPC.
  3. Clone the existing authorized VPC for each new project.
  4. Use AWS Elastic Beanstalk to deploy both the VPC and the application.

 

Answer: B

 



Q184. What conditions could cause a Multi-AZ Amazon RDS failover to occur? (Choose two.)

 

  1. The RDS instance is stopped manually
  2. A replica of the RDS instance is created in a different region
  3. An Availability Zone becomes unavailable
  4. Another master user is created
  5. A failure of the primary database instance

 

Answer: CE

 

Explanation:

https://aws.amazon.com/rds/faqs/

Q185. A Solutions Architect is designing a new application that will be hosted on EC2 instances. This application has the following traffic requirements:

 

– Accept HTTP(80)/HTTPS(443) traffic from the Internet.

– Accept FTP(21) traffic from the finance team servers at 10.10.2.0/24.

 

Which of the following AWS CloudFormation snippets correctly declares inbound security group rules that meet the requirements and prevent unauthorized access to additional services on the instance?

 

 

Answer: C

 

Q186. A Solutions Architect is designing an application that will encrypt all data in an Amazon Redshift cluster.

 

Which action will encrypt the data at rest?

 

  1. Place the Redshift cluster in a private subnet.
  2. Use the AWS KMS Default Customer master key.
  3. Encrypt the Amazon EBS volumes.
  4. Encrypt the data using SSL/TLS.

 

Answer: B

 

Explanation:

https://docs.aws.amazon.com/redshift/latest/mgmt/working-with-db-encryption.html

Q187. A website experiences unpredictable traffic. During peak traffic times, the database is unable to keep up with the write request.

Which AWS service will help decouple the web application from the database?

 

  1. Amazon SQS
  2. Amazon EFS
  3. Amazon S3
  4. AWS Lambda

 

Answer: A

 

Explanation:

https://aws.amazon.com/sqs/faqs/

Q188. A legacy application needs to interact with local storage using iSCSI. A team needs to design a reliable storage solution to provision all new storage on AWS.

 

Which storage solution meets the legacy application requirements?

 

  1. AWS Snowball storage for the legacy application until the application can be re-architected.
  2. AWS Storage Gateway in cached mode for the legacy application storage to write data to Amazon S3.
  3. AWS Storage Gateway in stored mode for the legacy application storage to write data to Amazon S3.
  4. An Amazon S3 volume mounted on the legacy application server locally using the File Gateway service.

 

Answer: C

 

Q189. A Solutions Architect is designing an architecture for a mobile gaming application. The application is expected to be very popular. The Architect needs to prevent the Amazon RDS MySQL database from becoming a bottleneck due to frequently accessed queries.

 

Which service or feature should the Architect add to prevent a bottleneck?

 

  1. Multi-AZ feature on the RDS MySQL Database
  2. ELB Classic Load Balancer in front of the web application tier
  3. Amazon SQS in front of RDS MySQL Database
  4. Amazon ElastiCache in front of the RDS MySQL Database

 

Answer: D




Q190. A company is launching an application that it expects to be very popular. The company needs a database that can scale with the rest of the application. The schema will change frequently. The application cannot afford any downtime for database changes. Which AWS service allows the company to achieve these objectives?

 

  1. Amazon Redshift
  2. Amazon DynamoDB
  3. Amazon RDS MySQL
  4. Amazon Aurora

 

Answer: A

 

Q191. A Solution Architect is designing a disaster recovery solution for a 5 TB Amazon Redshift cluster. The recovery site must be at least 500 miles (805 kilometers) from the live site.

 

How should the Architect meet these requirements?

 

  1. Use AWS CloudFormation to deploy the cluster in a second region.
  2. Take a snapshot of the cluster and copy it to another Availability Zone.
  3. Modify the Redshift cluster to span two regions.
  4. Enable cross-region snapshots to a different region.

 

Answer: D

 

Q192. A customer has written an application that uses Amazon S3 exclusively as a data store. The application works well until the customer increases the rate at which the application is updating information. The customer now reports that outdated data occasionally appears when the application accesses objects in Amazon S3.

 

What could be the problem, given that the application logic is otherwise correct?

 

  1. The application is reading parts of objects from Amazon S3 using a range header.
  2. The application is reading objects from Amazon S3 using parallel object requests.
  3. The application is updating records by writing new objects with unique keys.
  4. The application is updating records by overwriting existing objects with the same keys.

 

Answer: A

 

Q193. A Solutions Architect is designing a new social media application. The application must provide a secure method for uploading profile photos. Each user should be able to upload a profile photo into a shared storage location for one week after their profile is created.

Which approach will meet all of these requirements?

 

  1. Use Amazon Kinesis with AWS CloudTrail for auditing the specific times when profile photos are uploaded.
  2. Use Amazon EBS volumes with IAM policies restricting user access to specific time periods.
  3. Use Amazon S3 with the default private access policy and generate pre-signed URLs each time a new site profile is created.
  4. Use Amazon CloudFront with AWS CloudTrail for auditing the specific times when profile photos are uploaded.

 

Answer: C

 

Q194. An application requires block storage for file updates. The data is 500 GB and must continuously sustain 100 MiB/s of aggregate read/write operations.

 

Which storage option is appropriate for this application?

 

  1. Amazon S3
  2. Amazon EFS
  3. Amazon EBS
  4. Amazon Glacier

 

Answer: B

 

Explanation:

https://docs.aws.amazon.com/efs/latest/ug/performance.html

Q195. A user is testing a new service that receives location updates from 3,600 rental cars every hour.

 

Which service will collect data and automatically scale to accommodate production workload?

 

  1. Amazon EC2
  2. Amazon Kinesis Firehose
  3. Amazon EBS
  4. Amazon API Gateway

 

Answer: D

Answer: B




Explanation:

Q196. A Solutions Architect is designing a web application. The web and application tiers need to access the Internet, but they cannot be accessed from the Internet.

Which of the following steps is required?

 

  1. Attach an Elastic IP address to each Amazon EC2 instance and add a route from the private subnet to the public subnet.
  2. Launch a NAT gateway in the public subnet and add a route to it from the private subnet.
  3. Launch Amazon EC2 instances in the public subnet and change the security group to allow outbound traffic on port 80.
  4. Launch a NAT gateway in the private subnet and deploy a NAT instance in the private subnet.

 

Answer: B

 

Q197. An application stack includes an Elastic Load Balancer in a public subnet, a fleet of Amazon EC2 instances in an Auto Scaling group, and an Amazon RDS MySQL cluster. Users connect to the application from the Internet. The application servers and database must be secure.

 

How should a Solutions Architect perform this task?

 

  1. Create a private subnet for the Amazon EC2 instances and a public subnet for the Amazon RDS cluster.
  2. Create a private subnet for the Amazon EC2 instances and a private subnet for the Amazon RDS cluster.
  3. Create a public subnet for the Amazon EC2 instances and a private subnet for the Amazon RDS cluster.
  4. Create a public subnet for the Amazon EC2 instances and a public subnet for the Amazon RDS cluster.

 

Answer: C





Q198. An Administrator is hosting an application on a single Amazon EC2 instance, which users can access by the public hostname. The administrator is adding a second instance, but does not want users to have to decide between many public hostnames.

 

Which AWS service will decouple the users from specific Amazon EC2 instances?

 

  1. Amazon SQS
  2. Auto Scaling group
  3. Amazon EC2 security group
  4. Amazon ELB

 

Answer: B

 

Q199. A Solutions Architect is designing a microservices-based application using Amazon ECS. The application includes a WebSocket component, and the traffic needs to be distributed between microservices based on the URL.

 

Which service should the Architect choose to distribute the workload?

 

  1. ELB Classic Load Balancer
  2. Amazon Route 53 DNS
  3. ELB Application Load Balancer
  4. Amazon CloudFront

 

Answer: C

 

Explanation:

https://docs.aws.amazon.com/aws-technical-content/latest/microservices-on-aws/ microservices- on-aws.pdf?icmpid=link_from_whitepapers_page (13)



Q200. A Solutions Architect is designing the storage layer for a production relational database. The database will run on Amazon EC2. The database is accessed by an application that performs intensive reads and writes, so the database requires the LOWEST random I/O latency. Which data storage method fulfills the above requirements?

 

  1. Store data in a filesystem backed by Amazon Elastic File System (EFS).
  2. Store data in Amazon S3 and use a third-party solution to expose Amazon S3 as a filesystem to the database server.
  3. Store data in Amazon Dynamo DB and emulate relational database semantics.
  4. Stripe data across multiple Amazon EBS volumes using RAID 0.

 

Answer: D

发表评论

电子邮件地址不会被公开。