The latest AWS Certified Solutions Architect – Associate SAA-C03 certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the AWS Certified Solutions Architect – Associate SAA-C03 exam and earn AWS Certified Solutions Architect – Associate SAA-C03 certification.
Table of Contents
- Exam Question 651
- Correct Answer
- Exam Question 652
- Correct Answer
- Exam Question 653
- Correct Answer
- Exam Question 654
- Correct Answer
- Exam Question 655
- Correct Answer
- Exam Question 656
- Correct Answer
- Exam Question 657
- Correct Answer
- Exam Question 658
- Correct Answer
- Exam Question 659
- Correct Answer
- Exam Question 660
- Correct Answer
Exam Question 651
A company is using an Amazon S3 bucket to store data uploaded by different departments from multiple locations.
During an AWS Well-Architected review the financial manager notices that 10 TB of S3 Standard storage data has been charged each month.
However, in the AWS Management Console for Amazon S3, using the command to select all files and folders shows a total size of 5 TB.
What are the possible causes for this difference? (Select TWO )
A. Some files are stored with deduplication
B. The S3 bucket has versioning enabled
C. There are incomplete S3 multipart uploads
D. The S3 bucket has AWS Key Management Service (AWS KMS) enabled
E. The S3 bucket has Intelligent-Tiering enabled
Correct Answer
B. The S3 bucket has versioning enabled
C. There are incomplete S3 multipart uploads
Exam Question 652
A company designs a mobile app for its customers to upload photos to a website. The app needs a secure login with multi-factor authentication (MFA).
The company wants to limit the initial build time and the maintenance of the solution.
Which solution should a solutions architect recommend to meet these requirements?
A. Use Amazon Cognito Identity with SMS based MFA.
B. Edit 1AM policies to require MFA for all users
C. Federate 1AM against the corporate Active Directory that requires MFA
D. Use Amazon API Gateway and require server-side encryption (SSE) for photos
Correct Answer
A. Use Amazon Cognito Identity with SMS based MFA.
Exam Question 653
A solutions architect is designing a shared storage solution for a web application that is deployed across multiple Availability Zones.
The web application runs on Amazon EC2 instances in an Auto Scaling group.
The company anticipates making frequent changes to the content, so the solution must have strong consistency.
Which solution meets these requirements?
A. Create an Amazon S3 bucket to store the web content Use Amazon CloudFront to deliver the content.
B. Create an Amazon Elastic File System (Amazon EFS) file system and mount it on the individual EC2 instances.
C. Create a shared Amazon Elastic Block Store (Amazon EBS) volume and mount it on the individual EC2 instances.
D. Use AWS DataSync to perform continuous synchronization of data between EC2 hosts in the Auto Scaling group.
Correct Answer
B. Create an Amazon Elastic File System (Amazon EFS) file system and mount it on the individual EC2 instances.
Exam Question 654
A company is building a cloud storage and sharing application for photos.
Users can upload photos from their computers and mobile phones to be stored durably in the cloud.
After photos are uploaded, most are shared and downloaded frequently for the first 40-90 days. The photos are generally accessed less often after 90 days but some photos maintain a high access rate.
The application initially stores photos n Amazon S3 Standard.
A solutions architect needs to reduce the application’s operational costs without sacrificing user experience or data durability.
Which strategy should the solutions architect use to meet these requirements MOST cost- effectively?
A. Define an S3 Lifecycle rule to transition objects to S3 Intelligent-Tiering immediately
B. Define an S3 Lifecycle rule to transition objects from S3 Standard to S3 Glacier after 90 days
C. Define an S3 Lifecycle rule to transition objects from S3 Standard to S3 Standard Infrequent Access (S3 Standard-IA) after 65 days
D. Define an S3 Lifecycle rule to transition objects from S3 Standard to S3 One Zone-Infrequent Access (S3 One zone-IA) after 90 days
Correct Answer
A. Define an S3 Lifecycle rule to transition objects to S3 Intelligent-Tiering immediately
Exam Question 655
A company runs a legacy application with a single-tier architecture on an Amazon EC2 instance Disk I/O is low. With occasional small spikes during business hours. The company requires the instance to be stopped from 8 PM to 8 AM daily.
Which storage option is MOST appropriate for this workload?
A. Amazon EC2 instance storage
B. Amazon EBS General Purpose SSD (gp2) storage
C. Amazon S3
D. Amazon EBS Provisioned IOPS SSD (io2) storage
Correct Answer
B. Amazon EBS General Purpose SSD (gp2) storage
Exam Question 656
After reviewing the cost optimization checks in AWS Trusted Advisor, a team finds that it has 10,000 Amazon Elastic Block Store (Amazon EBS) snapshots in its account that are more than 30 days old.
When the team determines that it needs to implement better governance for the lifecycle of its resources.
Which actions should the team take to automate the lifecycle management of the EBS snapshots with the LEAST effort? (Select TWO)
A. Create and schedule a backup plan with AWS Backup
B. Copy the EBS snapshots to Amazon S3 and then create lifecycle configurations in the S3 bucket
C. Use Amazon Data Lifecycle Manager (Amazon DLM)
D. Use a scheduled event in Amazon EventBridge (Amazon CloudWatch Events) and invoke AWS Step Functions to manage the snapshots
E. Schedule and run backups in AWS Systems Manager.
Correct Answer
D. Use a scheduled event in Amazon EventBridge (Amazon CloudWatch Events) and invoke AWS Step Functions to manage the snapshots
E. Schedule and run backups in AWS Systems Manager.
Exam Question 657
A company is running an application on Amazon EC2 instances hosted in a private subnet of a VPC.
The EC2 instances are configured in an Auto Scaling group behind an Elastic Load Balancer (ELB).
The EC2 instances use a NAT gateway for outbound internet access.
However the EC2 instances are not able to connect to the public internet to download software updates.
What are the possible root causes of this issue? (Select TWO )
A. The ELB is not configured with a proper health check
B. The route tables in the VPC are configured incorrectly
C. The EC2 instances are not associated with an Elastic IP address
D. The security group attached to the NAT gateway is configured incorrectly
E. The outbound rules on the security group attached to the EC2 Instances are configured incorrectly.
Correct Answer
B. The route tables in the VPC are configured incorrectly
E. The outbound rules on the security group attached to the EC2 Instances are configured incorrectly.
Exam Question 658
A company is running its application in a single region on Amazon EC2 with Amazon Elastic Block Store (Amazon EBS) and S3 as part of the storage design.
What should be done to reduce data transfer costs?
A. Create a copy of the compute environment in another AWS Region
B. Convert the application to run on Lambda@Edge
C. Create an Amazon CloudFront distribution with Amazon S3 as the origin
D. Replicate Amazon S3 data to buckets in AWS Regions closer to the requester
Correct Answer
C. Create an Amazon CloudFront distribution with Amazon S3 as the origin
Exam Question 659
A company runs an application in the AWS Cloud and uses Amazon DynamoDB as the database. The company deploys Amazon EC2 instances to a private network to process data from the database.
The company uses two NAT instances to provide connectivity to DynamoDB. The company wants to retire the NAT instances.
A solutions architect must implement a solution that provides connectivity to DynamoDB and that does not require ongoing management.
What is the MOST cost-effective solution that meets these requirements?
A. Create a gateway VPC endpoint to provide connectivity to DynamoDB
B. Configure a managed NAT gateway to provide connectivity to DynamoDB
C. Establish an AWS Direct Connect connection between the private network and DynamoDB
D. Deploy an AWS PrivateLink endpoint service between the private network and DynamoDB
Correct Answer
A. Create a gateway VPC endpoint to provide connectivity to DynamoDB
Exam Question 660
A company is running a database on Amazon Aurora.
The database is idle every evening. An application that performs extensive reads on the database experiences performance issues during morning thus when user traffic spikes.
During these peak periods, the application receives timeout errors when reading from the database.
The company does not have a dedicated operations team and needs an automated solution to address the performance issues.
Which actions should a solutions architect take to automatically adjust to the increased read load on the database? (Select TWO )
A. Migrate the database to Aurora Serverless.
B. Increase the instance size of the Aurora database
C. Configure Aurora Auto Scaling with Aurora Replicas
D. Migrate the database to an Aurora multi-master cluster
E. Migrate the database to an Amazon RDS for MySQL Multi-AZ deployment
Correct Answer
A. Migrate the database to Aurora Serverless.
C. Configure Aurora Auto Scaling with Aurora Replicas