The latest AWS Certified Solutions Architect – Associate SAA-C03 certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the AWS Certified Solutions Architect – Associate SAA-C03 exam and earn AWS Certified Solutions Architect – Associate SAA-C03 certification.
Table of Contents
- Exam Question 611
- Correct Answer
- Exam Question 612
- Correct Answer
- Exam Question 613
- Correct Answer
- Exam Question 614
- Correct Answer
- Exam Question 615
- Correct Answer
- Exam Question 616
- Correct Answer
- Exam Question 617
- Correct Answer
- Exam Question 618
- Correct Answer
- Exam Question 619
- Correct Answer
- Exam Question 620
- Correct Answer
Exam Question 611
A product manager of an eCommerce website is launching a new product line next month. The application hosting the website runs on Amazon EC2 instances in an Auto Scaling group behind a load balancer.
Testing has been performed, and the maximum load at launch has been estimated.
Traffic to the application is expected to decrease gradually within the first few weeks after the launch.
This workload is the only one on this account that is expected to scale during launch.
Which combination of steps is MOST cost-effective to ensure that will be adequate capacity when the application scales at launch? (Select TWO.)
A. Purchase Reserved instance (RIs) with zonal scope to reserve capacity and get the discount to compute. Then cancel the Ris after the launch.
B. Contact AWS to reserve hardware in the AWS Reg on that will be near the most users.
C. Check the EC2 service quotas on the account, and request an increase if the values are lower than the expected load at launch.
D. Purchase Scheduled instances to reserve capacity for the launch, and run them on a daily schedule during peak capacity hours.
Correct Answer
A. Purchase Reserved instance (RIs) with zonal scope to reserve capacity and get the discount to compute. Then cancel the Ris after the launch.
D. Purchase Scheduled instances to reserve capacity for the launch, and run them on a daily schedule during peak capacity hours.
Exam Question 612
A company’s cloud operations team wants to standardize resource remediation.
The company wants to provide a standard set of governance evaluations and remediation’s to all member accounts in its organization in AWS Organizations.
Which self-managed AWS service can the company use to meet these requirements with the LEAST amount of operational effort?
A. AWS Security Hub compliance standards
B. AWS Config conformance packs
C. AWS CloudTrail
D. AWS Trusted Advisor
Correct Answer
A. AWS Security Hub compliance standards
Exam Question 613
A company observes an increase in Amazon EC2 costs in its most recent bill.
The billing team notices unwanted vertical scaling of instance types for a couple of EC2 instances.
A solutions architect needs to create a graph comparing the last 2 months of EC2 costs and perform an in-depth analysis to identify the root cause of the vertical scaling.
How should the solutions architect generate the information with the LEAST operational overhead?
A. Use AWS Budgets to create a budget report and compare costs based on instance types.
B. Use Cost Explorer’s granular filtering feature to perform an in-depth analysis of EC2 costs based on instance types.
C. Use graphs from the AWS Billing and Cost Management dashboard to compare EC2 costs based on instance types for the least 2 months.
D. Use AWS Cost and Usage Report to create a report and send it to an Amazon S3 bucket. Use Amazon QuickSight Amazon S3 as a source to generate an interactive graph based on instance types.
Correct Answer
C. Use graphs from the AWS Billing and Cost Management dashboard to compare EC2 costs based on instance types for the least 2 months.
Exam Question 614
A company has many applications on Amazon EC2 instances running in Auto Scaling groups. Company policy requires that the data on the attached Amazon Elastic Block Store (Amazon EBS) volumes be retained.
Which action will meet these requirements without impacting performance?
A. Enable termination protection on the Amazon EC2 instances.
B. Disable the DeleteOnTermination attribute for the Amazon EBS volumes.
C. Use Amazon EC2 user data to set up a synchronization job for root volume.
D. Change the Auto scaling health check to point to a source on the root volume.
Correct Answer
B. Disable the DeleteOnTermination attribute for the Amazon EBS volumes.
Exam Question 615
A company has an application that servers clients that are deployed in more than 20,000 retail storefront locations around the world.
The application consists of backend web services that are exposed over HTTPS on port 443. The application is hosted on Amazon EC2 instance behind an Application Load balancer (ALB). The retail locations communicate with the web applications over the public internet.
The company allows each retail location to register the IP address that the retail location has been allocated by its local ISP.
The company’s security team recommends to increase the security of the application endpoint by restricting access to only the IP addresses registered by the retail locations.
What should a solutions architect do to meet these requirements?
A. Associate an AWS WAF web ACL with the ALB. Use IP rule sets on the ALB to filter traffic. Update the IP addresses in the rule to include the registered IP addresses.
B. Deploy AWS Firewall Manager to manage the ALB. Configure firewall rules to restrict traffic to the ALB. Modify the firewall rules to include the registered IP addresses.
C. Store the IP addresses in an Amazon DynamicDB table. Configure an AWS Lambda authorization function on the ALB to validate that incoming requests are from the registered IP addresses.
D. Configure the network ACL on the subnet that contains the public interface of the ALB. Update the ingress rules on the network ACL with entries for each of the registered IP addresses.
Correct Answer
C. Store the IP addresses in an Amazon DynamicDB table. Configure an AWS Lambda authorization function on the ALB to validate that incoming requests are from the registered IP addresses.
Exam Question 616
A company is hosting its website by using Amazon EC2 instance behind an Elastic Load Balancer across multiple Availability Zones.
The instance run in an EC2 Auto Scaling group.
The website uses Amazon Elastic Block Store (Amazon EBS) volumes to store product manuals for users to download.
The company updates the product content often, so new instance launched by the Auto Scaling group often have old data.
It can take up to 30 minutes for the new instances to receive all the updates.
The updates also requires the EBS volumes to be resized during business hours.
The company wants to ensure that the product manuals are always up to date on all that the architecture adjusts quickly to increased user demand.
A solutions architect needs to meet these requirements without causing the company to update its application code or adjust its website.
What should the solution architect do to accomplish this goal?
A. Store the product manuals in an EBS volume. Mount that volume to the EC2 instances.
B. Store the product manuals in an Amazon S3 bucket. Redirect the downloads to this bucket.
C. Store the product manual in an Amazon Elastic File System (Amazon EFS) volume. Mount that volume to the EC2 instances.
D. Store the product manual in an Amazon S3 Standard-infrequent Access (S3 Standard-IA) bucket. Redirect the downloads to this bucket.
Correct Answer
D. Store the product manual in an Amazon S3 Standard-infrequent Access (S3 Standard-IA) bucket. Redirect the downloads to this bucket.
Exam Question 617
A company has concerns about its Amazon RDS database.
The workload is unpredictable, and periodic floods of new user registrations can cause the company to run out of storage.
The database runs on a general purpose instance with 300 GB of storage.
What should a solution architect recommend to the company?
A. Enable RDS storage autoscaling.
B. Schedule vertical instance scaling
C. Change to a storage optimized instance type and vertically scale the database.
D. Configure an AWS Lambda function to increase RDS storage by 1 GiB when storage space is low.
Correct Answer
D. Configure an AWS Lambda function to increase RDS storage by 1 GiB when storage space is low.
Exam Question 618
An online retailer has a series of flash sales occurring every Friday.
Sales Traffic will increase during the sales only and the platform will handle the increased load. The platform is a three-tier application. The web tier runs on Amazon EC2 instances behind an Application Load Balancer.
Amazon CloudFront is used to reduce web server load, but many requests for dynamic content must go to the web servers.
What should be done to the web tier to reduce costs without impacting performance or reliability?
A. Use T-series instances
B. Purchase scheduled Reserved instances.
C. Implement Amazon ElasticCache
D. Use Spot instances.
Correct Answer
A. Use T-series instances
Exam Question 619
A company hosts a popular web application. The web application connects to a database running in a private VPC subnet.
The web servers must be accessible only to customers on an SSL connection.
The Amazon RDS for MySQL database services be accessible only from the web servers.
How should a solution architect design a solution to meet the requirements without impacting applications?
A. Create a network ACL on the web server’s subnet and allow HTTPS inbound and MySQL outbound. Place both database and web servers on the same subnet.
B. Open an HTTPS port on the security group for web server and set the source to 0. 0. 0.0/0. Open the MySQL port on the database security group and attach it to the MySQL instance. Set the source to web server security group.
C. Create a network ACL on the web server’s subnet, allow HTTP, allow inbound and specify the source as 0 .0 .0 .0/0. Create a network ACL on a database subnet allow MySQL port inbound for web servers and deny all outbound traffic.
D. Open the MySQL port on the security group for web servers and set the source to 0.0.0.0/0. Open the HTTPS port on the database security group and attach it to the MySQL instance. Set the source to web server security group.
Correct Answer
B. Open an HTTPS port on the security group for web server and set the source to 0. 0. 0.0/0. Open the MySQL port on the database security group and attach it to the MySQL instance. Set the source to web server security group.
Exam Question 620
Cost Explorer is showing charges higher than expected for Amazon Elastic Block Store (Amazon EBS) volumes connected to application servers in a production account.
A significant portion of the changes from Amazon EBS are from volumes that were created as Provisioned IOPS SSD (101) volume types Controlling costs is the highest priority for this application.
Which steps should the user take to analyze and reduce the EBS costs without incurring any application downtime? (Select TWO )
A. Use the Amazon EC2 ModifylnstanceAttribute action to enable EBS optimization on the application server instances
B. Use the Amazon CloudWatch GetMetricData action to evaluate the read write operations and read/write bytes of each volume
C. Use the Amazon EC2 ModifyVolume action to reduce the size of the underutilized 101 volumes
D. Use the Amazon EC2 ModifyVolume action to change the volume type of the underutilized io1 volumes to General Purpose SSD (gp2)
E. Use an Amazon S3 PutBucketPolicy action to migrate existing volume snapshots to Amazon S3 Glacier
Correct Answer
A. Use the Amazon EC2 ModifylnstanceAttribute action to enable EBS optimization on the application server instances
D. Use the Amazon EC2 ModifyVolume action to change the volume type of the underutilized io1 volumes to General Purpose SSD (gp2)