AWS Certified Solutions Architect Practice Tests SAA-C01 Exam

1. When creating a new security group, which of the following are true? (Choose two.)

 
 
 
 

2. You have a government-regulated system that will store a large amount of data on S3 standard. You must encrypt all data and preserve a clear audit trail for traceability and third-party auditing. Security policies dictate that encryption must be consistent across the entire data store. Which of the following encryption approaches would be best?

 
 
 
 

3. You are creating a bastion host to allow SSH access to a set of EC2 instances in a private subnet within your organization’s VPC. Which of the following should be done as part of configuring the bastion host? (Choose two.)

 
 
 
 

4. Which of the following are invalid IAM actions? (Choose two.)

 
 
 
 

5. Which of the following statements is true?

 
 
 
 

6. Your company is setting up a VPN connection to connect its local network to an AWS VPC. Which of the following components are not necessary for this setup? (Choose two.)

 
 
 
 

7. You have a private subnet in a VPC within AWS. The instances within the subnet are unable to access the Internet. You have created a NAT gateway to solve this problem. What additional steps do you need to perform to allow the instances Internet access? (Choose two.)

 
 
 
 

8. Which of the following statements regarding NAT instances and NAT gateways are false? (Choose two.)

 
 
 
 

9. Which of the following statements is true?

 
 
 
 

10. You have changed the permissions associated with a role, and that role is assigned to an existing running EC2 instance. When will the permissions you updated take effect for the instance?

 
 
 
 

11. Which of the following statements is true?

 
 
 
 

12. Which of the following statements is not true?

 
 
 
 

13. How would you enable encryption of your EBS volumes?

 
 
 
 

14. What types of rules does a security group allow? (Choose two.)

 
 
 
 

15. Which of the following are true about security groups? (Choose two.)

 
 
 
 

16. Which of the following are not true about security groups? (Choose two.)

 
 
 
 

17. Which of the following must a security group have when you create it? (Choose two.)

 
 
 
 

18. Which of the following is a security group associated with?

 
 
 
 

19. Which of the following are default rules on a default security group, such as the one that comes with the default VPC? (Choose two.)

 
 
 
 

20. Which of the following are parts of a security group rule? (Choose two.)

 
 
 
 




发表评论

电子邮件地址不会被公开。