Filters
Question type
Study Flashcards

A company must re-evaluate its need for the Amazon EC2 instances it currently has provisioned in an Auto Scaling group. At present, the Auto Scaling group is configured for a minimum of two instances and a maximum of four instances across two Availability Zones. A Solutions architect reviewed Amazon CloudWatch metrics and found that CPU utilization is consistently low for all the EC2 instances. What should the solutions architect recommend to maximize utilization while ensuring the application remains fault tolerant?


A) Remove some EC2 instances to increase the utilization of remaining instances.
B) Increase the Amazon Elastic Block Store (Amazon EBS) capacity of instances with less CPU utilization.
C) Modify the Auto Scaling group scaling policy to scale in and out based on a higher CPU utilization metric.
D) Create a new launch configuration that uses smaller instance types. Update the existing Auto Scaling group.

Correct Answer

verifed

verified

A company runs a web service on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Amazon EC2 Auto Scaling group across two Availability Zones. The company needs a minimum of four instances at all times to meet the required service level agreement (SLA) while keeping costs low. If an Availability Zone fails, how can the company remain compliant with the SLA?


A) Add a target tracking scaling policy with a short cooldown period.
B) Change the Auto Scaling group launch configuration to use a larger instance type.
C) Change the Auto Scaling group to use six servers across three Availability Zones.
D) Change the Auto Scaling group to use eight servers across two Availability Zones.

Correct Answer

verifed

verified

A solutions architect observes that a nightly batch processing job is automatically scaled up for 1 hour before the desired Amazon EC2 capacity is reached. The peak capacity is the same every night and the batch jobs always start at 1 AM. The solutions architect needs to find a cost-effective solution that will allow for the desired EC2 capacity to be reached quickly and allow the Auto Scaling group to scale down after the batch jobs are complete. What should the solutions architect do to meet these requirements?


A) Increase the minimum capacity for the Auto Scaling group.
B) Increase the maximum capacity for the Auto Scaling group.
C) Configure scheduled scaling to scale up to the desired compute level.
D) Change the scaling policy to add more EC2 instances during each scaling operation.

Correct Answer

verifed

verified

A company uses Amazon S3 to store its confidential audit documents. The S3 bucket uses bucket policies to restrict access to audit team IAM user credentials according to the principle of least privilege. Company managers are worried about accidental deletion of documents in the S3 bucket and want a more secure solution. What should a solutions architect do to secure the audit documents?


A) Enable the versioning and MFA Delete features on the S3 bucket.
B) Enable multi-factor authentication (MFA) on the IAM user credentials for each audit team IAM user account.
C) Add an S3 Lifecycle policy to the audit team's IAM user accounts to deny the s3:DeleteObject action during audit dates.
D) Use AWS Key Management Service (AWS KMS) to encrypt the S3 bucket and restrict audit team IAM user accounts from accessing the KMS key.

Correct Answer

verifed

verified

A solutions architect must design a database solution for a high-traffic ecommerce web application. The database stores customer profiles and shopping cart information. The database must support a peak load of several million requests each second and deliver responses in milliseconds. The operational overhead form an aging and scaling the database must be minimized. Which database solution should the solutions architect recommend?


A) Amazon Aurora
B) Amazon DynamoDB
C) Amazon RDS
D) Amazon Redshift

Correct Answer

verifed

verified

A company is migrating from an on-premises infrastructure to the AWS Cloud. One of the company's applications stores files on a Windows file server farm that uses Distributed File System Replication (DFSR) to keep data in sync. A solutions architect needs to replace the file server farm. Which service should the solutions architect use?


A) Amazon EFS
B) Amazon FSx
C) Amazon S3
D) AWS Storage Gateway

Correct Answer

verifed

verified

A company runs an online marketplace web application on AWS. The application serves hundreds of thousands of users during peak hours. The company needs a scalable, near-real-time solution to share the details of millions of financial transactions with several other internal applications. Transactions also need to be processed to remove sensitive data before being stored in a document database for low-latency retrieval. What should a solutions architect recommend to meet these requirements?


A) Store the transactions data into Amazon DynamoDB. Set up a rule in DynamoDB to remove sensitive data from every transaction upon write. Use DynamoDB Streams to share the transactions data with other applications.
B) Stream the transactions data into Amazon Kinesis Data Firehose to store data in Amazon DynamoDB and Amazon S3. Use AWS Lambda integration with Kinesis Data Firehose to remove sensitive data. Other applications can consume the data stored in Amazon S3.
C) Stream the transactions data into Amazon Kinesis Data Streams. Use AWS Lambda integration to remove sensitive data from every transaction and then store the transactions data in AmazonDynamoDB. Other applications can consume the transactions data off the Kinesis data stream.
D) Store the batched transactions data in Amazon S3 as files. Use AWS Lambda to process every file and remove sensitive data before updating the files in Amazon S3. The Lambda function then stores the data in Amazon DynamoDB. Other applications can consume transaction files stored in Amazon S3.

Correct Answer

verifed

verified

A company has a multi-tier application deployed on several Amazon EC2 instances in an Auto Scaling group. An Amazon RDS for Oracle instance is the application, data layer that uses Oracle-specific PSQL functions. Traffic to the application has been steadily increasing. This is causing the EC2 instances to become overloaded and RDS instance to run out of storage. The Auto Scaling group does not have any scaling metrics and defines the minimum healthy instance count only. The company predicts that traffic will continue to increase at a steady but unpredictable rate before leveling off. What should a solutions architect do to ensure the system can automatically scale for the increased traffic? (Choose two.)


A) Configure storage Auto Scaling on the RDS for Oracle instance.
B) Migrate the database to Amazon Aurora to use Auto Scaling storage.
C) Configure an alarm on the RDS for Oracle instance for low free storage space.
D) Configure the Auto Scaling group to use the average CPU as the scaling metric.
E) Configure the Auto Scaling group to use the average free memory as the scaling metric.

Correct Answer

verifed

verified

A company is investigating potential solutions that would collect, process, and store users' service usage data. The business objective is to create an analytics capability that will enable the company to gather operational insights quickly using standard SQL queries. The solution should be highly available and ensure Atomicity, Consistency, Isolation, and Durability (ACID) compliance in the data tier. Which solution should a solutions architect recommend?


A) Use an Amazon Timestream database.
B) Use an Amazon Neptune database in a Multi-AZ design.
C) Use a fully managed Amazon RDS for MySQL database in a Multi-AZ design.
D) Deploy PostgreSQL on an Amazon EC2 instance that uses Amazon Elastic Block Store (Amazon EBS) Throughput Optimized HDD (st1) storage.

Correct Answer

verifed

verified

A company has a web application with sporadic usage patterns. There is heavy usage at the beginning of each month, moderate usage at the start of each week, and unpredictable usage during the week. The application consists of a web server and a MySQL database server running inside the data center. The company would like to move the application to the AWS Cloud, and needs to select a cost-effective database platform that will not require database modifications. Which solution will meet these requirements?


A) Amazon DynamoDB
B) Amazon RDS for MySQL
C) MySQL-compatible Amazon Aurora Serverless
D) MySQL deployed on Amazon EC2 in an Auto Scaling group

Correct Answer

verifed

verified

A company has a custom application with embedded credentials that retrieves information from an Amazon RDS MySQL DB instance. Management says the application must be made more secure with the least amount of programming effort. What should a solutions architect do to meet these requirements?


A) Use AWS Key Management Service (AWS KMS) customer master keys (CMKs) to create keys. Configure the application to load the database credentials from AWS KMS. Enable automatic key rotation.
B) Create credentials on the RDS for MySQL database for the application user and store the credentials in AWS Secrets Manager. Configure the application to load the database credentials from Secrets Manager. Create an AWS Lambda function that rotates the credentials in Secret Manager.
C) Create credentials on the RDS for MySQL database for the application user and store the credentials in AWS Secrets Manager. Configure the application to load the database credentials from Secrets Manager. Set up a credentials rotation schedule for the application user in the RDS for MySQL database using Secrets Manager.
D) Create credentials on the RDS for MySQL database for the application user and store the credentials in AWS Systems Manager Parameter Store. Configure the application to load the database credentials from Parameter Store. Set up a credentials rotation schedule for the application user in the RDS for MySQL database using Parameter Store.

Correct Answer

verifed

verified

A company has been running a web application with an Oracle relational database in an on-premises data center for the past 15 years. The company must migrate the database to AWS. The company needs to reduce operational overhead without having to modify the application's code. Which solution meets these requirements?


A) Use AWS Database Migration Service (AWS DMS) to migrate the database servers to Amazon RDS.
B) Use Amazon EC2 instances to migrate and operate the database servers.
C) Use AWS Database Migration Service (AWS DMS) to migrate the database servers to Amazon DynamoDB.
D) Use an AWS Snowball Edge Storage Optimized device to migrate the data from Oracle to Amazon Aurora.

Correct Answer

verifed

verified

A company wants to migrate a high performance computing (HPC) application and data from on-premises to the AWS Cloud. The company uses tiered storage on premises with hot high-performance parallel storage to support the application during periodic runs of the application, and more economical cold storage to hold the data when the application is not actively running. Which combination of solutions should a solutions architect recommend to support the storage needs of the application? (Choose two.)


A) Amazon S3 for cold data storage
B) Amazon Elastic File System (Amazon EFS) for cold data storage
C) Amazon S3 for high-performance parallel storage
D) Amazon FSx for Lustre for high-performance parallel storage
E) Amazon FSx for Windows for high-performance parallel storage

Correct Answer

verifed

verified

A company has two VPCs named Management and Production. The Management VPC uses VPNs through a customer gateway to connect to a single device in the data center. The Production VPC uses a virtual private gateway with two attached AWS Direct Connect connections. The Management and Production VPCs both use a single VPC peering connection to allow communication between the applications. What should a solutions architect do to mitigate any single point of failure in this architecture?


A) Add a set of VPNs between the Management and Production VPCs.
B) Add a second virtual private gateway and attach it to the Management VPC.
C) Add a second set of VPNs to the Management VPC from a second customer gateway device.
D) Add a second VPC peering connection between the Management VPC and the Production VPC.

Correct Answer

verifed

verified

A company has a legacy application that processes data in two parts. The second part of the process takes longer than the first, so the company has decided to rewrite the application as two microservices running on Amazon ECS that can scale independently. How should a solutions architect integrate the microservices?


A) Implement code in microservice 1 to send data to an Amazon S3 bucket. Use S3 event notifications to invoke microservice 2.
B) Implement code in microservice 1 to publish data to an Amazon SNS topic. Implement code in microservice 2 to subscribe to this topic.
C) Implement code in microservice 1 to send data to Amazon Kinesis Data Firehose. Implement code in microservice 2 to read from Kinesis Data Firehose.
D) Implement code in microservice 1 to send data to an Amazon SQS queue. Implement code in microservice 2 to process messages from the queue.

Correct Answer

verifed

verified

A company running an on-premises application is migrating the application to AWS to increase its elasticity and availability. The current architecture uses a Microsoft SQL Server database with heavy read activity. The company wants to explore alternate database options and migrate database engines, if needed. Every 4 hours, the development team does a full copy of the production database to populate a test database. During this period, users experience latency. What should a solution architect recommend as replacement database?


A) Use Amazon Aurora with Multi-AZ Aurora Replicas and restore from mysqldump for the test database.
B) Use Amazon Aurora with Multi-AZ Aurora Replicas and restore snapshots from Amazon RDS for the test database.
C) Use Amazon RDS for MySQL with a Multi-AZ deployment and read replicas, and use the standby instance for the test database.
D) Use Amazon RDS for SQL Server with a Multi-AZ deployment and read replicas, and restore snapshots from RDS for the test database.

Correct Answer

verifed

verified

A solutions architect is designing a security solution for a company that wants to provide developers with individual AWS accounts through AWS Organizations, while also maintaining standard security controls. Because the individual developers will have AWS account root user-level access to their own accounts, the solutions architect wants to ensure that the mandatory AWS CloudTrail configuration that is applied to new developer accounts is not modified. Which action meets these requirements?


A) Create an IAM policy that prohibits changes to CloudTrail, and attach it to the root user.
B) Create a new trail in CloudTrail from within the developer accounts with the organization trails option enabled.
C) Create a service control policy (SCP) the prohibits changes to CloudTrail, and attach it the developer accounts.
D) Create a service-linked role for CloudTrail with a policy condition that allows changes only from an Amazon Resource Name (ARN) in the master account.

Correct Answer

verifed

verified

A company's website provides users with downloadable historical performance reports. The website needs a solution that will scale to meet the company's website demands globally. The solution should be cost-effective, limit the provisioning of infrastructure resources, and provide the fastest possible response time. Which combination should a solutions architect recommend to meet these requirements?


A) Amazon CloudFront and Amazon S3
B) AWS Lambda and Amazon DynamoDB
C) Application Load Balancer with Amazon EC2 Auto Scaling
D) Amazon Route 53 with internal Application Load Balancers

Correct Answer

verifed

verified

A company has an application that posts messages to Amazon SQS. Another application polls the queue and processes the messages in an I/O-intensive operation. The company has a service level agreement (SLA) that specifies the maximum amount of time that can elapse between receiving the messages and responding to the users. Due to an increase in the number of messages, the company has difficulty meeting its SLA consistently. What should a solutions architect do to help improve the application's processing time and ensure it can handle the load at any level?


A) Create an Amazon Machine Image (AMI) from the instance used for processing. Terminate the instance and replace it with a larger size.
B) Create an Amazon Machine Image (AMI) from the instance used for processing. Terminate the instance and replace it with an Amazon EC2 Dedicated Instance.
C) Create an Amazon Machine image (AMI) from the instance used for processing. Create an Auto Scaling group using this image in its launch configuration. Configure the group with a target tracking policy to keep its aggregate CPU utilization below 70%.
D) Create an Amazon Machine Image (AMI) from the instance used for processing. Create an Auto Scaling group using this image in its launch configuration. Configure the group with a target tracking policy based on the age of the oldest message in the SQS queue.

Correct Answer

verifed

verified

An ecommerce website is deploying its web application as Amazon Elastic Container Service (Amazon ECS) container instances behind an Application Load Balancer (ALB) . During periods of high activity, the website slows down and availability is reduced. A solutions architect uses Amazon CloudWatch alarms to receive notifications whenever there is an availability issue so they can scale out resources. Company management wants a solution that automatically responds to such events. Which solution meets these requirements?


A) Set up AWS Auto Scaling to scale out the ECS service when there are timeouts on the ALB. Set up AWS Auto Scaling to scale out the ECS cluster when the CPU or memory reservation is too high.
B) Set up AWS Auto Scaling to scale out the ECS service when the ALB CPU utilization is too high. Setup AWS Auto Scaling to scale out the ECS cluster when the CPU or memory reservation is too high.
C) Set up AWS Auto Scaling to scale out the ECS service when the service's CPU utilization is too high. Set up AWS Auto Scaling to scale out the ECS cluster when the CPU or memory reservation is too high.
D) Set up AWS Auto Scaling to scale out the ECS service when the ALB target group CPU utilization is too high. Set up AWS Auto Scaling to scale out the ECS cluster when the CPU or memory reservation is too high.

Correct Answer

verifed

verified

Showing 61 - 80 of 596

Related Exams

Exam 1

AWS Certified Advanced Networking - Specialty (ANS-C00)

397 Questions

Exam 2

AWS Certified Alexa Skill Builder - Specialty

68 Questions

Exam 3

AWS Certified Cloud Practitioner (CLF-C01)

803 Questions

Exam 4

AWS Certified Data Analytics - Specialty (DAS-C01)

135 Questions

Exam 5

AWS Certified Database - Specialty

156 Questions

Exam 6

AWS Certified Developer Associate (DVA-C01)

470 Questions

Exam 7

AWS Certified Machine Learning - Specialty (MLS-C01)

159 Questions

Exam 8

AWS Certified Security - Specialty (SCS-C01)

295 Questions

Exam 10

AWS Certified Solutions Architect - Professional (SAP-C01)

871 Questions

Exam 11

AWS Certified SysOps Administrator - Associate (SOA-C02)

54 Questions

Exam 12

AWS DevOps Engineer - Professional (DOP-C01)

610 Questions

Exam 13

AWS Certified SysOps Administrator (SOA-C01)

976 Questions

Show Answer