The Most Important AWS Solutions Architect Associate (SAA-C03) Exam Questions You Need to Know
The Most Important AWS Solutions Architect Associate (SAA-C03) Exam Questions You Need to Know
I recently took the SAA003 exam and found it to be a challenging but rewarding experience. While studying for the exam, I focused on several key concepts that helped me to better understand the material and prepare for the questions. In this post, I’ll share some of the concepts that I found most helpful in a quiz format.
1. A company owns an asynchronous API that is used to ingest user requests and, based on the request type, dispatch requests to the appropriate microservice for processing. The company is using Amazon API Gateway to deploy the API front end, and an AWS Lambda function that invokes Amazon DynamoDB to store user requests before dispatching them to the processing microservices. The company provisioned as much DynamoDB throughput as its budget allows, but the company is still experiencing availability issues and is losing user requests.
What should a solutions architect do to address this issue without impacting existing users?
a) Add throttling on the API Gateway with server-side throttling limits.
b) Use DynamoDB Accelerator (DAX) and Lambda to buffer writes to DynamoDB.
c) Create a secondary index in DynamoDB for the table with the user requests.
d) Use the Amazon Simple Queue Service (Amazon SQS) queue and Lambda to buffer writes to DynamoDB.
2. You are designing a highly available and scalable web application on AWS. The application uses a relational database and requires low-latency access to data. Which AWS service should you use?
a) Amazon RDS (Relational Database Service)
b) Amazon DynamoDB
c) Amazon Redshift
d) Amazon ElastiCache
3. Your application needs to process large amounts of data in parallel. Which AWS service provides a fully managed service for big data processing?
a) Amazon RDS
b) AWS Lambda
c) Amazon Kinesis
d) Amazon S3
4. You need to set up a scalable and fault-tolerant backend for your mobile application. Which AWS service provides a serverless compute environment for running backend code without provisioning or managing servers?
a) AWS Lambda
b) Amazon EC2 (Elastic Compute Cloud)
c) Amazon S3
d) AWS Elastic Beanstalk
5. A company has an application that continually sends encrypted documents to Amazon S3. The company requires that the configuration for data access is in line with their strict compliance standards. They should also be alerted if there is any risk of unauthorized access or suspicious access patterns.
Which step is needed to meet the requirements?
a) Use Amazon Inspector to alert whenever a security violation is detected on S3
b) Use Amazon Rekognition to monitor and recognize pattens on S3
c) Use Amazon Macie to monitor and detect access patterns on S3
d) Use Amazon GuardDuty to monitor malicious activity on S3
6. A company has two On-Demand EC2 instances inside the Virtual Private Cloud in the same Availability Zone but are deployed to different subnets. One EC2 instance is running a database and the other EC2 instance a web application that connects with the database. You need to ensure that these two instances can communicate with each other for the system to work properly.
What are the things you have to check so that these EC2 instances can communicate inside the VPC? (Select TWO.)
a) Check the Network ACL if it allows communication between the two subnets
b) Check if the default route is set to NAT instance or Internet Gateway for them to communicate .
c) Ensure that the EC2 instances are in the same Placement Group
d) Check if all security groups are set to allow the application host to communicate to the database on the right port and protocol.
e) Check if both instances are the same instance class.
7. An online events registration system is hosted in AWS and uses ECS to host its front-end tier and an RDS configured with Multi-AZ for its database tier. What are the events that will make Amazon RDS automatically perform a failover to the standby replica? (Select TWO.)
a) Storage failure on primary
b) In the event of Read Replica Failure
c) Compute unit failure on secondary DB instance
d) Storage failure on secondary DB instance
e) Loss of availability in primary Availability Zone
8. An Intelligence Agency developed a missile tracking application that is hosted on both development and production AWS accounts. The Intelligence agency’s junior developer only has access to the development account. She has received security clearance to access the agency’s production account but the access is only temporary and only write access to EC2 and S3 is allowed.
Which of the following allows you to issue short-lived access tokens that act as temporary security credentials to allow access to your AWS resources?
a) All of the given options are correct
b) Use AWS Cognito to issue JSON Web Tokens(JWT)
c) Use AWS STS
d) Use AWS SSO
9. A software company has resources hosted in AWS and on-premises servers. You have been requested to create a decoupled architecture for applications which make use of both resources.
Which of the following options are valid? (Select TWO.)
a) Use SQS to utilize both on-premise servers and EC2 instance for your decouple application.
b) Use SWF to utilize both on-premises servers and EC2 instances for your decoupled application.
c) Use VPC peering to connect both on-premises servers and EC2 instances for your decoupled application.
d) Use DynamoDB to utilize both on-premises servers and EC2 instances for your decoupled application.
e) Use RDS to utilize both on-premises servers and EC2 instances for your decoupled application
10. A company wants to organize the way it tracks its spending on AWS resources. A report that summarizes the total billing accrued by each department must be generated at the end of the month.
Which solution will meet the requirements?
a) Use AWS Cost Explorer to view spending and filter usage data by Resources
b) Create a Cost and Usage report for AWS services that each department is using
c) Tags resources with the department name and configure a budget action in AWS budget.
d) Tags resources with the department name and enable cost allocation tags.
Answer
1. D
2. B
3. C
4. A
5. D
6. A D
7. A E
8. C
9. B
10. D
