Amazon SAA-C03 Real Exam Questions
The questions for SAA-C03 were last updated at Dec 01,2024.
- Exam Code: SAA-C03
- Exam Name: AWS Certified Solutions Architect - Associate
- Certification Provider: Amazon
- Latest update: Dec 01,2024
A solutions architect is designing a new hybrid architecture to extend a company s on-premises infrastructure to AWS. The company requires a highly available connection with consistent low latency to an AWS Region. The company needs to minimize costs and is willing to accept slower traffic if the primary connection fails.
What should the solutions architect do to meet these requirements?
- A . Provision an AWS Direct Connect connection to a Region Provision a VPN connection as a backup if the primary Direct Connect connection fails.
- B . Provision a VPN tunnel connection to a Region for private connectivity. Provision a second VPN tunnel for private connectivity and as a backup if the primary VPN connection fails.
- C . Provision an AWS Direct Connect connection to a Region Provision a second Direct Connect connection to the same Region as a backup if the primary Direct Connect connection fails.
- D . Provision an AWS Direct Connect connection to a Region Use the Direct Connect failover attribute from the AWS CLI to automatically create a backup connection if the primary Direct Connect connection fails.
A company is running an SMB file server in its data center. The file server stores large files that are accessed frequently for the first few days after the files are created. After 7 days the files are rarely accessed.
The total data size is increasing and is close to the company’s total storage capacity. A solutions architect must increase the company’s available storage space without losing low-latency access to the most recently accessed files. The solutions architect must also provide file lifecycle management to avoid future storage issues.
Which solution will meet these requirements?
- A . Use AWS DataSync to copy data that is older than 7 days from the SMB file server to AWS.
- B . Create an Amazon S3 File Gateway to extend the company’s storage space. Create an S3 Lifecycle policy to transition the data to S3 Glacier Deep Archive after 7 days.
- C . Create an Amazon FSx for Windows File Server file system to extend the company’s storage space.
- D . Install a utility on each user’s computer to access Amazon S3. Create an S3 Lifecycle policy to transition the data to S3 Glacier Flexible Retrieval after 7 days.
A company wants to reduce the cost of its existing three-tier web architecture. The web, application, and database servers are running on Amazon EC2 instances for the development, test, and production environments. The EC2 instances average 30% CPU utilization during peak hours and 10% CPU utilization during non-peak hours.
The production EC2 instances run 24 hours a day. The development and test EC2 instances run for at least 8 hours each day. The company plans to implement automation to stop the development and test EC2 instances when they are not in use.
Which EC2 instance purchasing solution will meet the company’s requirements MOST cost-effectively?
- A . Use Spot Instances for the production EC2 instances. Use Reserved Instances for the development and test EC2 instances.
- B . Use Reserved Instances for the production EC2 instances. Use On-Demand Instances for the development and test EC2 instances.
- C . Use Spot blocks for the production EC2 instances. Use Reserved Instances for the development and test EC2 instances.
- D . Use On-Demand Instances for the production EC2 instances. Use Spot blocks for the development and test EC2 instances.
A company needs to review its AWS Cloud deployment to ensure that its Amazon S3 buckets do not have unauthorized configuration changes.
What should a solutions architect do to accomplish this goal?
- A . Turn on AWS Config with the appropriate rules.
- B . Turn on AWS Trusted Advisor with the appropriate checks.
- C . Turn on Amazon Inspector with the appropriate assessment template.
- D . Turn on Amazon S3 server access logging. Configure Amazon EventBridge (Amazon Cloud Watch Events).
A company maintains a searchable repository of items on its website. The data is stored in an Amazon RDS for MySQL database table that contains more than 10 million rows. The database has 2 TB of General Purpose SSD storage There are millions of updates against this data every day through the company’s website
The company has noticed that some insert operations are taking 10 seconds or longer. The company has determined that the database storage performance is the problem
Which solution addresses this performance issue?
- A . Change the storage type to Provisioned IOPS SSD
- B . Change the DB instance to a memory optimized instance class
- C . Change the DB instance to a burstable performance instance class
- D . Enable Multi-AZ RDS read replicas with MySQL native asynchronous replication.
A company is implementing a new business application. The application runs on two Amazon EC2 instances and uses an Amazon S3 bucket for document storage. A solutions architect needs to ensure that the EC2 instances can access the S3 bucket.
What should the solutions architect do to meet this requirement?
- A . Create an IAM role that grants access to the S3 bucket. Attach the role to the EC2 instances.
- B . Create an IAM policy that grants access to the S3 bucket. Attach the policy to the EC2 instances.
- C . Create an IAM group that grants access to the S3 bucket. Attach the group to the EC2 instances.
- D . Create an IAM user that grants access to the S3 bucket. Attach the user account to the EC2 instances.
A company needs to configure a real-time data ingestion architecture for its application. The company needs an API, a process that transforms data as the data is streamed, and a storage solution for the data.
Which solution will meet these requirements with the LEAST operational overhead?
- A . Deploy an Amazon EC2 instance to host an API that sends data to an Amazon Kinesis data stream. Create an Amazon Kinesis Data Firehose delivery stream that uses the Kinesis data stream as a data source. Use AWS Lambda functions to transform the data. Use the Kinesis Data Firehose delivery stream to send the data to Amazon S3.
- B . Deploy an Amazon EC2 instance to host an API that sends data to AWS Glue. Stop source/destination checking on the EC2 instance. Use AWS Glue to transform the data and to send the data to Amazon S3.
- C . Configure an Amazon API Gateway API to send data to an Amazon Kinesis data stream. Create an Amazon Kinesis Data Firehose delivery stream that uses the Kinesis data stream as a data source. Use AWS Lambda functions to transform the data. Use the Kinesis Data Firehose delivery stream to send the data to Amazon S3.
- D . Configure an Amazon API Gateway API to send data to AWS Glue. Use AWS Lambda functions to transform the data. Use AWS Glue to send the data to Amazon S3.
An application runs on an Amazon EC2 instance in a VPC. The application processes logs that are stored in an Amazon S3 bucket. The EC2 instance needs to access the S3 bucket without connectivity to the internet.
Which solution will provide private network connectivity to Amazon S3?
- A . Create a gateway VPC endpoint to the S3 bucket.
- B . Stream the logs to Amazon CloudWatch Logs. Export the logs to the S3 bucket.
- C . Create an instance profile on Amazon EC2 to allow S3 access.
- D . Create an Amazon API Gateway API with a private link to access the S3 endpoint.
A development team needs to host a website that will be accessed by other teams. The website contents consist of HTML, CSS, client-side JavaScript, and images
Which method is the MOST cost-effective for hosting the website?
- A . Containerize the website and host it in AWS Fargate.
- B . Create an Amazon S3 bucket and host the website there
- C . Deploy a web server on an Amazon EC2 instance to host the website.
- D . Configure an Application Loa d Balancer with an AWS Lambda target that uses the Express js framework.
A company is running a popular social media website. The website gives users the ability to upload images to share with other users. The company wants to make sure that the images do not contain inappropriate content. The company needs a solution that minimizes development effort.
What should a solutions architect do to meet these requirements?
- A . Use Amazon Comprehend to detect inappropriate content. Use human review for low-confidence predictions.
- B . Use Amazon Rekognition to detect inappropriate content. Use human review for low-confidence predictions.
- C . Use Amazon SageMaker to detect inappropriate content. Use ground truth to label low-confidence predictions.
- D . Use AWS Fargate to deploy a custom machine learning model to detect inappropriate content.
Use ground truth to label low-confidence predictions.