Welcome to your AWS Free Test - 3

Name
Email
Phone
1.

Question:

A company requires a durable backup storage solution for its on-premises database servers while ensuring on-premises applications maintain access to these backups for quick recovery. The company will use AWS

storage services as the destination for these backups A solutions architect is designing a solution with minimal operational overhead

Which solution should the solutions architect implement?

Select 1 option(s):
2.

Question:

A company is running a three-tier web application to process credit card payments. The front-end user interface consists of static webpages. The application tier can have long-running processes The database tier uses MySQL.

The application is currently running on a single, general purpose large Amazon EC2 instance A solutions architect needs to decouple the services to make the web application highly available.

Which solution would provide the HIGHEST availability?

Select 1 option(s):
3.

Question:

A solutions architect is creating a new VPC design. There are two public subnet for the load balancer, two private subnets for web servers, and two private subnets for MySQL. The web serves use only HTTPS. The solutions architect has already created a security group for the load Balancer allowing port 443 from 0.0 0.0/0. Company policy requires that each resource has the least access required to still be able to perform its tasks.

Which additional configuration strategy should the solution architect use to meet these requirements?

Select 1 option(s):
4.

Question:

A company is planning to migrate a commercial off-the-shelf application from its on-premises data center to AWS. The software has a software licensing model using sockets and cores with predictable capacity and uptime requirements. The company wants to use its existing licenses, which were purchased earlier this year.

Which Amazon EC2 pricing option is the MOST cost-effective?

Select 1 option(s):
5.

Question:

A company is planning to use Amazon S3 to store images uploaded by its users. The images must be encrypted at rest in Amazon S3. The company does not want to spend time managing and rotating the keys, but it does want to control who can access those keys.

What should a solutions architect use to accomplish this?

Select 1 option(s):
6.

Question:

A solutions architect is designing a customer-facing application. The application is expected to have a variable amount of reads and writes depending on the time of year and clearly defined access patterns throughout the year. Management requires that database auditing and scaling be managed in the AWS Cloud. The Recovery Point Objective (RPO) must be less than 5 hours.

Which solutions can accomplish this?

Select 2 option(s):
7.

Question:

A company built a food ordering application that captures user data and stores it for future analysis. The application's static front end is deployed on an Amazon EC? instance. The front-end application sends the requests to the backend application running on separate EC2 instance. The backend application then stores the data in Amazon RDS.

What should a solutions architect do to decouple the architecture and make it scalable?

Select 1 option(s):

8.

Question:

A company wants to migrate its web application to AWS. The legacy web application consists of a web tier, an application tier, and a MySQL database. The re-architected application must consist of technologies that do not require the administration team to manage instances or clusters.

Which combination of services should a solutions architect include in Ihe overall architecture?

Select 2 option(s):

9.

Question:

A company recently migrated a message processing system to AWS. The system receives messages into an ActiveMQ queue running on an Amazon EC2 instance. Messages are processed by a consumer application running on Amazon EC2 The consumer application processes the messages and writes results to a MySQL database running on Amazon EC2. The company wants this application to be highly available with low operational complexity

Which architecture offers the HIGHEST availability?

Select 1 option(s):
10.

Question:

A Solutions architect is designing the cloud architecture for a company that needs to host hundreds of machine learning models for its users. During startup, the models need to load up to 10 GB of data from Amazon S3 into memory, but they do not need disk access. Most of the models are used sporadically, but the users expect all of them to be highly available and accessible with low latency.

Which solution meets the requirements and is MOST cost-effective?

Select 1 option(s):
11.

Question:

A company hosts more than 300 global websites and applications. The company requires a platform to analyze more than 30 TB of clickstream data each day. What should a solutions architect do to transmit and process the clickstream data?

Select 1 option(s):
12.

Question:

A leasing company generates and emails POF statements every month for all its customers. Each statement is about 400 KB in size. Customers can download their statements from the website for up to 30 days from when the statements were generated. At the end of their 3-year lease, the customers are emailed a ZIP file that contains all the statements

What is the MOST cost-effective storage solution for this situation?

Select 1 option(s):
13.

Question:

A company wants to replicate its data to AWS to recover in the event of a disaster. Today, a system administrator has scripts that copy data to a NFS share Individual backup files need to be accessed with low latency by application administrators to deal with errors in processing.

What should a solutions architect recommend to meet these requirements?

Select 1 option(s):
14.

Question:

A company runs an application in a branch office within a small data closet with no virtualized compute resources. The application data is stored on an NFS volume. Compliance standards require a daily offsite backup of the NFS volume.

Which solution meet these requirements?

Select 1 option(s):
15.

Question:

A company has a legacy application that processes data in two parts. The second part of the process takes longer than the first, so the company has decided to rewrite the application as two microservices running on Amazon ECS that can scale independently

How should a solutions architect integrate the microservices?

Select 1 option(s):
16.

Question:

A company is planning on deploying a newly built application on AWS in a default VPC The application will consist of a web layer and database layer. The web server was created in public subnets, and the MySQL database was created in private subnets. All subnets are created with the default network ACL settings, and the default security group in the VPC will be replaced with new custom security groups.

The following are the key requirements:

  • The web servers must be accessible only to users on an SSL connection.

 

  • The database should be accessible to the web layer, which is created in a public subnet only.

 

  • All traffic to and from the IP range 182.20.0.0/16 subnet should be blocked.
Which combination of steps meets these requirements?

Select 2 option(s):
17.

Question:

A company wants a storage option that enables its data science team to analyze its data on premises and in the AWS Cloud The team needs to be able to run statistical analyses by using the data on premises and by using a fleet of Amazon EC2 instances across multiple Availability Zones.

What should a solutions architect do to meet these requirements?

Select 1 option(s):
18.

Question:

A company recently released a new type of internet-connected sensor. The company is expecting lo sell thousands of sensors, which are designed to stream high volumes of data each second to a central location. A solutions architect must design a solution that ingests and stores data so that engineering teams can analyze it in near-real time with millisecond responsiveness.
Which solution should the solutions architect recommend?

Select 1 option(s):
19.

Question:

A company has an application that uses Amazon Elastic File System (Amazon EFS) to store data. The files are 1 GB in size or larger and are accessed often only tor the first few days after creation The application data is shared across a cluster of Linux servers. The company wants to reduce storage costs tor the application

What should a solutions architect do to meet these requirements?

Select 1 option(s):
20.

Question:

A solutions architect must migrate a Windows Internet Information Services (IIS) web application to AWS The application currently relies on a file share hosted in the user's on-premises network-attached storage (NAS). The solutions architect has proposed migrating the IIS web servers to Amazon EC2 instances in multiple Availability Zones that are connected to the storage solution, and configuring an Elastic Load Balancer attached to the instances.

Which replacement to the on-premises file share is MOST resilient and durable?

Select 1 option(s):
21.

Question:

A solutions architect is designing a solution that requires frequent updates to a website that is hosted on Amazon S3 with versioning enabled. For compliance reasons, older versions of the objects will not be accessed frequently and will need to be deleted after 2 years.

What should the solutions architect recommend to meet these requirements at the LOWEST cost?

Select 1 option(s):
22.

Question:

A company must generate sales reports at the beginning of every month. The reporting process launches 20 Amazon EC2 instances on the first of the month. The process runs for 7 days and cannot be interrupted. The company wants to minimize costs.

Which pricing model should the company choose?

Select 1 option(s):
23.

Question:

A solutions architect is designing the architecture of a new application being deployed to the AWS Cloud The application will run on Amazon EC2 On-Demand Instances and will automatically scale across multiple Availability Zones The EC2 instances will scale up and down frequently throughout the day An Application Load Balancer (ALB) will handle the load distribution The architecture needs to support distributed session data management The company is willing to make changes to code if needed.

What should the solutions architect do to ensure that the architecture supports distributed session data management?

Select 1 option(s):

24.

Question:

A company has hired a new cloud engineer who should not have access to an Amazon S3 bucket named Company Confidential. the cloud engineer must be able to read from and write to an S3 bucket called AdminTools.

(A)

{

               "Version": "2012-10-17",

               "Statement": [
                        {

                            "Effect" : "Allow",

                            "Action" : "s3 : ListBucket",

                            "Resource" : "arn: aws: s3 : : :AdminTools"
          },
          {

                             "Effect" : "Allow",

                             "Action" : [ " s3 : Getobject", " s3 : PutObject"], 

                             "Resource" : "arn : aws : s3: : : AdminTools/*"
             },
             {

                              "Effect" : "Deny",

                              "Action" : " s3:*",

                              "Resource" : [

                                       "arn:aws:s3: : : Companyconfidential/*",

                                       "arn:aws:s3: : : CompanyConfidential"
                  ]
            }
      ]
  }

(B)

{

                             "Version": "2012-10-17",

                             "Statement": [
                                      {

                                                "Effect" : " Allow",

                                                "Action" : "s3 : ListBucket",

                                                "Resource" : [

                                                         "arn:aws:s3: : : AdminTools",

                                                         "arn:aws:s3: : : CompanyConfidential/*"
                                                        ]
                              },
                             {

                                 "Effect" : "Allow",

                                 "Action" : [ "s3:GetObject",  "s3 : PutObject", "s3:DeleteObject" ],

                                 "Resource": "arn:aws:s3: : :AdminTools/*"


                },
               {

                                    "Effect": "Deny",

                                    "Action": "s3 : *",

                                    "Resource" : "arn:aws:s3: : :CompanyConfidential"

                         }
                   ]
               }

(C)

{

                             "Version": "2012-10-17",

                             "Statement": [
                                      {

                                 "Effect" : " Allow",

                                 "Action" : [ "s3 :GetObject", "s3:PutObject" ],

                                 "Resource" : "arn:aws:s3: : :AdminTools/*"
                   },
                  {

                                  "Effect" : "Deny",

                                  "Action" : " s3: *",

                                  "Resource" : [

                                             "arn:aws:s3: : : CompanyConfidential/*",
                                             "arn:aws:s3: : : CompanyConfidential"
                           ]
                       }
                   ]
               }

(D)

{

                             "Version": "2012-10-17",

                             "Statement": [
                                      {

                                 "Effect" : " Allow",

                                 "Action" : s3:ListBucket",

                                 "Resource" : "arn:aws:s3: : :AdminTools/*"
                   },
                  {

                                  "Effect" :"Allow",

                                  "Action" : [" s3:GetObject", "s3:PutObject", "s3: DeleteObject" ],

                                  "Resource" : "arn:aws:s3: : :AdminTools/"
                      },
                      {

                                            "Effect" : "Deny",

                                            "Action" : "s3: *",

                                            "Resource" : [

                                                     "arn:aws:s3: : :CompanyConfidential",

                                                     "arn:aws:s3: : :CompanyConfidential/*",

                                                     "arn:aws:s3: : :AdminTools/*"
                                ]
                        }
                  ]
            }

 

Which IAM policy will meet these requirements?

Select 1 option(s):
25.

Question:

A company is building applications in containers. The company wants to migrate its on-premises development and operations services from its on-premises data center to AWS. Management states that production system must be cloud agnostic and use the same configuration and administrator tools across production systems. A solutions architect needs to design a managed solution that will align open-source software.

Which solution meets these requirements?

Select 1 option(s):
26.

Question:

A solutions architect is working on optimizing a legacy document management application running on Microsoft a network file share. The chief information officer wants to reduce the on-premises data center footprint and minimize storage by moving on-premises storage to AWS.

What should the solution architect do to meet these requirements?

Select 1 option(s):
27.

Question:

A company recently started using Amazon Aurora as the data store for its global ecommerce application. When large reports are run, developers report that the ecommerce application is performing poorly. After reviewing metrics in Amazon CloudWatch, a solutions architect finds that the ReadlOPS and CPU Utilization metrics are spiking when monthly reports run.

What is the MOST cost-effective solution?

Select 1 option(s):
28.

Question:

A company's web application is running on Amazon EC2 instances behind an Application Load Balancer. The company recently changed its policy, which now requires the application to be accessed from one specific country only.

Which configuration will meet this requirement?

Select 1 option(s):

29.

Question:

A company is le-architecting a strongly coupled application to be loosely coupled Previously the application used a request/response pattern to communicate between tiers. The company plans to use Amazon Simple Queue Service (Amazon SQS) to achieve decoupling requirements. The initial design contains one queue for requests and one for responses However, this approach is not processing all the messages as the application scales.

What should a solutions architect do to resolve this issue?

Select 1 option(s):
30.

Question:

A company has two applications: a sender application that sends messages with payloads to be processed and a processing application intended to receive the messages with payloads The company wants to implement an AWS service to handle messages between the two applications. The sender application can send about 1,000 messages each hour The messages may take up to 2 days to be processed If the messages fail to process, they must be retained so that they do not impact the processing of any remaining messages

Which solution meets these requirements and is the MOST operationally efficient?

Select 1 option(s):

31.

Question:

A three-tier web application processes orders from customers. The web tier consists of Amazon EC2 instances behind an Application Load Balancer, a middle tier of three EC2 instances decoupled from the web tier using Amazon SQS. and an Amazon DynamoDB backend. At peak times, customers who submit orders using the site have to wait much longer than normal to receive confirmations due to lengthy processing times. A solutions architect needs to reduce these processing times.

Which action will be MOST effective in accomplishing this?

Select 1 option(s):
32.

Question:

A company needs to store data in Amazon S3 A compliance requirement states that when any changes are made to objects the previous state of the object with any changes must be preserved Additionally files older than 5 years should not be accessed but need to be archived for auditing

What should a solutions architect recommend that is MOST cost-effective?

Select 1 option(s):
33.

Question:

A company has created an isolated backup of its environment in another Region. The application is running in warm standby mode and is fronted by an Application Load Balancer (ALB). The current failover process is manual and requires updating a DNS alias record to point to the secondary ALB in another Region.

What should a solutions architect do to automate the failover process?

Select 1 option(s):
34.

Question:

A company is hosting its static website in an Amazon S3 bucket, which is the origin for Amazon CioudFront. The company has users in the United States. Canada, and Europe and wants to reduce costs. What should a solutions architect recommend?

Select 1 option(s):
35.

Question:

A media company is evaluating the possibility of moving its systems to the AWS Cloud. The company needs at least 10 TB of storage with the maximum possible I/O performance for video processing. 300 TB of very durable storage for storing media content, and 900 TB of storage to meet requirements for archival media that is not in use anymore.

Which set of services should a solutions architect recommend to meet these requirements?

Select 1 option(s):
36.

Question:

An ecommerce company is experiencing an increase in user traffic. The company's store is deployed on Amazon EC2 instances as a two-tier two application consisting of a web tier and a separate database tier As traffic increases, the company notices that the architecture is causing significant delays in sending timely marketing and order confirmation email to users. The company wants to reduce the time it spends resolving complex email delivery issues and minimize operational overhead

What should a solutions architect do to meet these requirements?

Select 1 option(s):
37.

Question:

A manufacturing company wants to implement predictive maintenance on its machinery equipment The company will install thousands of loT sensors that will send data to AWS in real time A solutions architect is tasked with implementing a solution that will receive events in an ordered manner for each machinery asset and ensure that data is saved for further processing at a later time

Which solution would be MOST efficient?

Select 1 option(s):

38.

Question:

An online photo application lets users upload photos and perform image editing operations The application offers two classes of service free and paid Photos submitted by paid users are processed before those submitted by free users Photos are uploaded to Amazon S3 and the job information is sent to Amazon SQS.

Which configuration should a solutions architect recommend?

Select 1 option(s):
39.

Question:

A company has an application that ingests incoming messages. These messages are then quickly consumed by dozens of other applications and microservices. The number of messages varies drastically and sometimes spikes as high as 100.000 each second The company wants to decouple the solution and increase scalability

Which solution meets these requirements?

Select 1 option(s):
40.

Question:

A company has developed a microservices application It uses a client-facing API with Amazon API Gateway and multiple internal services hosted on Amazon EC2 instances to process user requests The API is designed to support unpredictable surges in traffic, but internal services may become overwhelmed and unresponsive for a period of time during surges A solutions architect needs to design a more reliable solution that reduces errors when internal services become unresponsive or unavailable.

Which solution meets these requirements?

Select 1 option(s):
41.

Question:

A company runs a multi-tier web application that hosts news content The application runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an EC2 Auto Scaling group across multiple Availability Zones and use an Amazon Aurora database. A solutions architect needs to make the application more resilient to periodic increases in request rates.

Which architecture should the solutions architect implement?

Select 2 option(s):

42.

Question:

A company runs an application on a group of Amazon Linux EC2 instances The application writes log files using standard API calls For compliance reasons, all log files must be retained indefinitely and will be analyzed by a reporting tool that must access all files concurrently

Which storage service should a solutions architect use to provide the MOST cost-effective solution?

Select 1 option(s):
43.

Question:

An application runs on Amazon EC2 instances in private subnets. The application needs to access an Amazon DynamoDB table. What is the MOST secure way to access the table while ensuring that the traffic does not leave the AWS network?

Select 1 option(s):
44.

Question:

A company has application running on Amazon EC2 instances in a VPC. One of the applications needs to call an Amazon S3 API to store and read objects. The company’s security policies restrict any internet-bound traffic from the applications.

Which action will fulfill these requirements and maintain security?

Select 1 option(s):
45.

Question:

A solution architect has created two IAM policies: Policy1 and Policy2. Both policies are attached to an IAM group.



A cloud engineer is added as an IAM user to the IAM group. Which action will the cloud engineer be able to perform?

Select 1 option(s):
46.

Question:

A company currently stores symmetric encryption keys in a hardware security module (HSM). A solution architect must design a solution to migrate key management to AWS. The solution should allow for key rotation and support the use of customer provided keys.

Where should the key material be stored to meet these requirements?

Select 1 option(s):
47.

Question:

A monolithic application was recently migrated to AWS and is now running on a single Amazon EC2 instance. Due to application limitations, it is not possible to use automatic scaling to scale out the application. The chief technology officer (CTO) wants an automated solution to restore the EC2 instance in the unlikely event the underlying hardware fails.

What would allow for automatic recovery of the EC2 instance as quickly as possible?

Select 1 option(s):
48.

Question:

A company allows its developers to attach existing IAM policies to existing IAM roles to enable (aster experimentation and agility However the security operations team is concerned that the developers could attach the existing administrator policy, which would allow the developers to circumvent any other security policies

How should a solutions architect address this issue?

Select 1 option(s):
49.

Question:

A solutions architect is implementing a document review application using an Amazon S3 bucket for storage The solution must prevent accidental deletion of the documents and ensure that all versions of the documents are available Users must be able to download, modify, and upload documents

Which combination of actions should be taken to meet these requirements'?

Select 2 option(s):
50.

Question:

A solutions architect at an ecommerce company wants to back up application log data to Amazon S3 The solutions architect is unsure how frequently the logs will be accessed or which logs will be accessed the most The company wants to keep costs as low as possible by using the appropriate S3 storage class.

Which S3 storage class should be implemented to meet these requirements?

Select 1 option(s):
51.

Question:

A company has an on-premises data center that is running out of storage capacity. The company wants to migrate its storage infrastructure to AWS while minimizing bandwidth costs The solution must allow for immediate retrieval of data at no additional cost.

How can these requirements be met?

Select 1 option(s):
52.

Question:

A company has migrated an on-premises Oracle database to an Amazon RDS (or Oracle Multi-AZ DB instance In the us-east-l Region. A solutions architect is designing a disaster recovery strategy to have the database provisioned In the us-west-2 Region In case the database becomes unavailable in the us-east-1 Region. The design must ensure the database is provisioned in the us-west-2 Region in a maximum of 2 hours, with a data loss window of no more than 3 hours.

How can these requirements be met?

Select 1 option(s):

53.

Question:

A company must migrate 20 TB of data from a data center to the AWS Cloud within 30 days. The company's network bandwidth is limited to 15 Mbps and cannot exceed 70% utilization. What should a solutions architect do to meet these requirements?

Select 1 option(s):
54.

Question:

A company has enabled AWS CloudTrail logs to deliver log files to an Amazon S3 bucket for each of its developer accounts. The company has created a central AWS account for streamlining management and audit reviews. An internal auditor needs to access the CloudTrail logs, yet access needs to be restricted for all developer account users. The solution must be secure and optimized.

How should a solutions architect meet these requirements?

Select 1 option(s):
55.

Question:

A company has recently updated its internal security standards. The company must now ensure all Amazon S3 buckets and Amazon Elastic Block Store (Amazon EBS) volumes are encrypted with keys created and periodically rotated by internal security specialists. The company is looking for a native, software-based AWS service to accomplish this goal.

What should a solutions architect recommend as a solution?

Select 1 option(s):
56.

Question:

A company wants to deploy a shared file system for its .NET application servers and Microsoft SQL Server database running on Amazon EC2 instance with Windows Server 2016. The solution must be able to be integrated in to the corporate Active Directory domain, be highly durable, be managed by AWS, and provided levels of throuput and IOPS.

Which solution meets these requirements?

Select 1 option(s):