Welcome to the 5 Minute AWS Test1. Question:An operations team has a standard that states IAM policies should not be applied directly to users. Some new members have not been following this standard. The operation manager needs a way to easily identify the users with attached policies.What should a solutions architect do to accomplish this?Select 1 option(s):Monitor using AWS CloudTrailCreate an AWS Config rule to run dailyPublish IAM user changes lo Amazon SNSRun AWS Lambda when a user is modified2. Question:A company has an application running on Amazon EC2 instances in a private subnet. The application needs to store and retrieve data in Amazon S3 To reduce costs, the company wants to configure its AWS resources in a cost-effective mannerHow should the company accomplish this?Select 1 option(s):Deploy a NAT gateway to access the S3 bucketsDeploy AWS Storage Gateway to access the S3 bucketsDeploy an S3 gateway endpoint to access the S3 bucketsDeploy an S3 interface endpoint to access the S3 buckets.3. Question:A company has an Amazon EC2 instance running on a private subnet that needs to access a public websites to download patches and updates. The company does not want external websites to see the EC2 instance IP address or initiate connection to it.How can a solution architect achieve this objective?Select 1 option(s):Create a site-to-site VPN connection between the private subnet and the network in which the public site is deployedCreate a NAT gateway in a public subnet Route outbound traffic from the private subnet through the NAI gatewayCreate a network ACL for the private subnet where the EC2 instance deployed only allows access from the IP address range of the public websiteCreate a security group that only allows connections from the IP address range of the public website. Attach the security group to the EC2 instance.4. Question: A company runs a web service on Amazon CC2 instances behind an Application Load Balancer The instances run in an Amazon EC2 Auto Scaling group across two Availability 7ones I he company needs a minimum of tour instances at all limes to meet the required service level agreement (SLA) while keeping costs lowIf an Availability Zone tails, how can the company remain compliant with the SLA?Select 1 option(s):Add a target tracking scaling policy with a short cooldown periodChange the Auto Scaling group launch configuration to use a larger instance typeChange the Auto Scaling group to use six servers across three Availability ZonesChange the Auto Scaling group to use eight servers across two Availability Zones5. Question:A company has an application hosted on Amazon EC2 instances in two VPCs across different AWS Regions To communicate with each other, the instances use the internet for connectivity. The security team wants to ensure that no communication between the instances happens over the internetWhat should a solutions architect do to accomplish this''Select 1 option(s):Create a NAT gateway and update the route table of the EC2 instances' subnetCreate a VPC endpoint and update the route table of the EC2 instances' subnetCreate a VPN connection and update the route table of the EC2 instances' subnetCreate a VPC peering connection and update the route table of the EC2 instances' subnet6. Question:A company is migrating a NoSQL database cluster to Amazon EC2. The database automatically replicates data to maintain at least three copies of the data. I/O throughput of the servers is the highest priority. Which instance type should a solutions architect recommend for the migration?Select 1 option(s):Storage optimized instances with instance storeBurstable general purpose instances with an Amazon Elastic Block Store (Amazon EBS) volumeMemory optimized instances with Amazon Elastic Block Store (Amazon EBS) optimization enabledCompute optimized instances with Amazon Elastic Block Store (Amazon EBS) optimization enabledTime is Up!
