AWS Solutions Architect Associate 2019 with Practice Test Set 3

You are using AWS Direct Connect to access resources inside your AWS VPC. You want your general Internet traffic to flow over a different connection that is not associated with AWS. Which configuration tasks will accomplish this? (Choose three.)


Options are :

  • Create a private interface on your AWS Direct Connect link
  • Advertise a default route to AWS using BGP
  • Redistribute BGP routes from AWS into your existing routing infrastructure (Correct)
  • Configure a public Interface on your AWS Direct Connect link (Correct)
  • Advertise specific networks into AWS (Correct)
  • Configure a static route that points to Amazon S3

Answer : Redistribute BGP routes from AWS into your existing routing infrastructure Configure a public Interface on your AWS Direct Connect link Advertise specific networks into AWS

AWS SOA-C00 Certified Sys Ops Administrator Associate Exam Set 3

What level of durability does S3-Infrequent Access provide?


Options are :

  • 99.99 Percent
  • 99.999999999 Percent (Correct)
  • 100 Percent
  • 99 Percent

Answer : 99.999999999 Percent

Your organization has instances that need to download software from specific servers on the Internet for updates. All other outbound traffic should be blocked. Other instances exist on the same subnet and should not be restricted.  Which of the following options will accomplish this goal?


Options are :

  • Create a security group and only allow outbound traffic to the required servers. (Correct)
  • Manually configure routing tables to remove all routes not specific to the required servers.
  • Create an access control list and only allow outbound traffic to the required servers.
  • Create a proxy server and enforce URL rules

Answer : Create a security group and only allow outbound traffic to the required servers.

You want to store a group of objects using an AWS solution that can tolerate the loss of two physical facilities in a way that minimizes costs. Which solution should you use?


Options are :

  • S3 (Correct)
  • CloudFront
  • EBS
  • Instance Store

Answer : S3

AWS DVA-C01 Certified Developer Associate Practice Exam Set 5

You have a running instance equipped with multiple Elastic Network Interfaces (ENI). You want to detach some of these ENIs and attach them to another instance. Which statements regarding this task are correct? (Choose two.)


Options are :

  • The primary interface (eth0) can only be detached from an instance that is stopped.
  • You can detach secondary interfaces from a running instance (Correct)
  • Interfaces cannot be detached from one instance and attached to another.
  • You cannot detach the primary (eth0) instance from an instance, even if the instance is stopped (Correct)

Answer : You can detach secondary interfaces from a running instance You cannot detach the primary (eth0) instance from an instance, even if the instance is stopped

You are a developer with limited knowledge of AWS Architecture. Which tool should you use to automatically create a load balanced, auto scaling AWS environment for your application?


Options are :

  • Elastic Transcoder
  • EBS
  • Elastic Beanstalk (Correct)
  • Cloud Formation

Answer : Elastic Beanstalk

Which services on AWS allow you root/admin access to the operating system?


Options are :

  • Elastic Beanstalk, Elastic MapReduce, OpsWorks, EC2 (Correct)
  • DynamoDB, Elastic MapReduce, RDS, EC2
  • Elastic Beanstalk, Glacier, OpsWorks, S3
  • DynamoDB, Elastic MapReduce, OpsWorks, EC2

Answer : Elastic Beanstalk, Elastic MapReduce, OpsWorks, EC2

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 15

Which statements regarding RDS automated backups are correct? (Choose two.)


Options are :

  • Automated backups are preserved when you delete an instance.
  • Retention periods can be set between 0-14 days.
  • Retention periods can be set between 0-35 days. (Correct)
  • The default retention interval is 1 day. (Correct)

Answer : Retention periods can be set between 0-35 days. The default retention interval is 1 day.

What are the minimum and maximum object sizes for S3?


Options are :

  • 0 bytes to 5 TB (Correct)
  • 1 byte to 5 TB
  • 1 byte to 5 GB
  • 0 bytes to 5 GB

Answer : 0 bytes to 5 TB

Which statements regarding EBS volumes are correct? (Choose two.)


Options are :

  • Snapshots are a good way to copy a volume to a different Availability Zone. (Correct)
  • An EBS volume is local to an Availability Zone (AZ). (Correct)
  • EBS volumes are global resources that can be accessed in multiple regions.
  • An EC2 instance store should be used for the operating system of the instance.

Answer : Snapshots are a good way to copy a volume to a different Availability Zone. An EBS volume is local to an Availability Zone (AZ).

AWS SOA-C00 Certified Sys Ops Administrator Associate Exam Set 3

Which service is used to create users, groups, and policies to control access to AWS resources?


Options are :

  • IAM (Correct)
  • Web Application Firewall
  • CloudWatch
  • AWS Directory Service

Answer : IAM

Which of the following statements accurately describe a Customer Master Key? (Choose two.)


Options are :

  • A customer master key (CMKs) must be managed by AWS.
  • A customer master key (CMKs) is typically used to protect data encryption keys. (Correct)
  • A customer master key (CMKs) can be managed by Amazon or the customer. (Correct)
  • Each object in S3 uses a unique customer master key

Answer : A customer master key (CMKs) is typically used to protect data encryption keys. A customer master key (CMKs) can be managed by Amazon or the customer.

Your organization has a group of EC2 instances that are of critical importance. You want to ensure that these instances can only be terminated by specific employees. Which option will accomplish this goal?


Options are :

  • Configure Resource-based tagging (Correct)
  • Create a role that prevents the termination of critical instances
  • Configure MFA
  • Configure EC2 termination protection

Answer : Configure Resource-based tagging

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 6

You want to create a network interface that you can detach from an instance, and attach to another if needed. The IP and MAC addresses must migrate without changes.


Options are :

  • EBS
  • ENI (Correct)
  • EIP
  • EDI

Answer : ENI

You need to store many large video files as objects in S3. Which services could be used to expedite the upload process? (Choose two.)


Options are :

  • MultiPart Upload (Correct)
  • Transfer Acceleration (Correct)
  • Auto-scaling Write Capacity Units
  • Provisioned IOPs

Answer : MultiPart Upload Transfer Acceleration

Can you enable encryption on an EBS volume that has already been created?


Options are :

  • Yes
  • No (Correct)

Answer : No

AWS Develops Engineer Professional Practice Final File Exam Set 11

You require a Recovery Time Objective(RTO) of 2 hours or less and a Recovery Point Objective (RPO) of 30 minutes or less for a database running on an EC2 instance in the event of an AZ failure. How should this instance be backed up to accompish these goals at the minimum cost?


Options are :

  • Backup data to S3 One-Zone IA
  • Backup data to S3-IA (Correct)
  • Backup data to S3-Standard
  • Backup data to Glacier

Answer : Backup data to S3-IA

You need a low-cost archiving option to store data that should be retained for years. You can tolerate some delay if you ever need to retrieve this data. All data should be encrypted by default. Which AWS service should you use?


Options are :

  • S3
  • No AWS service provides all these features
  • EBS
  • Glacier (Correct)

Answer : Glacier

Which statements regarding RDS backups are correct? (Choose two.)


Options are :

  • Manual Snapshots are automatically deleted when you terminate an RDS instance.
  • Automatic Backups are retained even after you terminate an RDS instance.
  • Automatic Backups are automatically deleted when you terminate an RDS insta (Correct)
  • Manual Snapshots are retained even after you terminate an RDS instance. (Correct)

Answer : Automatic Backups are automatically deleted when you terminate an RDS insta Manual Snapshots are retained even after you terminate an RDS instance.

AWS SOA-C00 Certified Sys Ops Administrator Associate Exam Set 4

Which statements regarding SQS are correct? (Choose two.)


Options are :

  • SQS provides FIFO delivery of messages.
  • SQS guarantees that all messages will be delivered at least once. (Correct)
  • SQS does not provide push notification of new messages. (Correct)
  • SQS guarantees that messages will not be delivered twice.

Answer : SQS guarantees that all messages will be delivered at least once. SQS does not provide push notification of new messages.

Which if the following is used to uniquely identify an AWS resource?


Options are :

  • AWS Record Name (ARN)
  • AWS Resource Name (ARN) (Correct)
  • AWS Resource Number (ARN)
  • AWS Resource Tag (ART)

Answer : AWS Resource Name (ARN)

You have an on-premise storage array that you would like to use to cache key data locally. The data would be persistently stored in your AWS account. Which service can you use to accomplish this?


Options are :

  • Elastic File Share
  • S3 and CloudFront
  • Elastic Block Store
  • Storage Gateway (Correct)

Answer : Storage Gateway

AWS SAP-C00 Certified Solution Architect Professional Exam Set 5

What are the primary benefits of a reserved instance? (Choose two.)


Options are :

  • To enforce standardization to a specific AMI.
  • To reduce total cost of ownership. (Correct)
  • To create instances on dedicated physical hardware.
  • To have reserved compute capacity. (Correct)

Answer : To reduce total cost of ownership. To have reserved compute capacity.

Which VPC component can be used to provide Internet Access to instances with Private IP addresses?


Options are :

  • Direct Connect
  • VPC Peering
  • Internet Gateway
  • NAT Gateway (Correct)

Answer : NAT Gateway

What is an EC2 Compute Unit (ECU)?


Options are :

  • A unit of CPU Capacity (Correct)
  • A CPU core attached to an instance
  • An EC2 instance
  • A thread of execution

Answer : A unit of CPU Capacity

Questions : AWS Certified Security Specialty

Which AWS feature can be used to place instances on different hardware within a single Availability Zone?


Options are :

  • Elastic Load Balancer
  • Autoscaling Group
  • EC2 Auto Recovery
  • Cluster Placement Group (Correct)

Answer : Cluster Placement Group

You have a web application running on EC2 that you would like to host in multiple regions to increase availability. Which service can you use to accomplish this?


Options are :

  • Auto Scaling Group
  • Elastic Load Balancer
  • Auto Recovery
  • Route 53 Health Checks (Correct)

Answer : Route 53 Health Checks

What modes can an ELB be configured to run in? (Choose three.)


Options are :

  • RDS Load Balancer
  • Application Load Balancer (Correct)
  • Cross-Region Load Balancer
  • Network Load Balancer (Correct)
  • Classic Load Balancer (Correct)

Answer : Application Load Balancer Network Load Balancer Classic Load Balancer

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 12

You have created an EC2 instance in a VPC, and want to apply some security controls to it. This instance is part of a group of application servers that are protected by a security group called "AppServersSG". You want to apply this existing security group, along with a new security group specially built for this application called "TopSecretSG". Which statements regarding this configuration are correct? (Choose two.)


Options are :

  • Security groups allow all outbound traffic by default. (Correct)
  • A maximum of 2 security groups can be applied to an instance.
  • Security groups block all traffic in both directions by default.
  • Security groups are stateful in nature, and will dynamically allow return traffic, even if an inbound rule does not exist. (Correct)

Answer : Security groups allow all outbound traffic by default. Security groups are stateful in nature, and will dynamically allow return traffic, even if an inbound rule does not exist.

You have stored a set of objects in an S3 bucket configured for the RRS storage class.


Options are :

  • This storage class provides slower performance, lower availability, and lower durability than S3 Standard.
  • This storage class is just as fast as S3 Standard, but should only be used for data that is not accessed frequently. (Correct)
  • This is Reduced Redundancy Storage, which decreases the durability of your stored data.
  • This is Read Replica Storage, which allows you to load balance read operations across multiple S3 buckets.

Answer : This storage class is just as fast as S3 Standard, but should only be used for data that is not accessed frequently.

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions