AWS Certified Solutions Architect Practice Tests SAA-C01 Exam

21. Which of the following allows you to securely upload data to S3? (Choose two.)

 
 
 
 

22. Which of the following describes client-side encryption for S3 bucket data?

 
 
 
 

23. Which of the following describes server-side encryption for S3 bucket data?

 
 
 
 

24. Which of the following are valid steps in enabling client-side encryption for S3? (Choose two.)

 
 
 
 

25. Which of the following is not a way to manage server-side encryption keys for S3?

 
 
 
 

26. Which of the following encryption key management options is best for ensuring strong audit trails?

 
 
 
 

27. Which of the following encryption key management options is best for managing keys but allowing S3 to handle the actual encryption of data?

 
 
 
 

28. You have a customer that has a legacy security group that is very suspicious of all things security in the cloud. The customer wants to use S3, but doesn’t trust AWS encryption, and you need to enable its migration to the cloud. What option would you recommend to address the company’s concerns?

 
 
 
 

29. You want to begin encrypting your S3 data, but your organization is new to encryption. Which option is a low-cost approach that still offloads most of the work to AWS rather than the organization new to encryption?

 
 
 
 

30. You are the architect for a company whose data must comply with current EU privacy restrictions. Which of the following S3 buckets are valid options? (Choose two.)

 
 
 
 

31. Which of the following options could be used to provide availability-zone-resilient faulttolerant storage that complies with EU privacy laws? (Choose two.)

 
 
 
 

32. What type of replication will your Multi-AZ RDS instances use?

 
 
 
 

33. You want to provide maximum protection against data in your S3 object storage being deleted accidentally. What should you do?

 
 
 
 

34. You want to provide maximum protection against data in your S3 object storage being deleted accidentally. What steps should you take? (Choose two.)

 
 
 
 

35. You want to enable MFA Delete on your S3 buckets in the US East 1 region. What step must you take before enabling MFA Delete?

 
 
 
 

36. What is AWS Trusted Advisor?

 
 
 
 

37. On which of the following does AWS Trusted Advisor not provide recommendations?

 
 
 
 

38. Which of the following are included in the core AWS Trusted Advisor checks? (Choose two.)

 
 
 
 

39. Which of the following recommendations might AWS Trusted Advisor make? (Choose two.)

 
 
 
 

40. Which of the following is not possible using IAM policies?

 
 
 
 




发表评论

电子邮件地址不会被公开。