AWS Solutions Architect Associate 2019 with Practice Test Set 4

How can you utilize read replicas to distribute RDS workload across multiple instances?


Options are :

  • Configure DB clients manually to point queries to the Read Replicas. (Correct)
  • Use an EC2 Auto Scaling group to automatically create and terminate read replicas
  • Use an Elastic Load Balancer to distribute traffic across RDS read replicas

Answer : Configure DB clients manually to point queries to the Read Replicas.

AWS Solutions Architect Associate 2019 with Practice Test Set 2

A Network Load Balancer is configured to perform an HTTP health check on a group of Web Server instances. What action will be taken if an target fails a health check?


Options are :

  • The load balancer will not route traffic to an instance that has failed a health check. (Correct)
  • ELB will try to restore the failed instance by automatically rebooting it.
  • The load balancer will migrate the instance to a different host
  • ELB will terminate the failed instance and replace it.

Answer : The load balancer will not route traffic to an instance that has failed a health check.

You have a group of web servers running on EC2. A requests are received by the Web Servers they must be passed along to the application servers which provide the required service. You would like to decouple the web and application servers so that they do not directly communicate with each other.


Options are :

  • SWF
  • SQS (Correct)
  • S3
  • SNS

Answer : SQS

Which of the following methods can be used to increase the number of IOPs that an instance can handle? (Choose three.)


Options are :

  • Configure cross-zone load balancing
  • Load balance IOPs across Availability Zones
  • Configure RAID 0 (Correct)
  • Use an EBS-Optimized Instance (Correct)
  • Increase the size of the instance (Correct)

Answer : Configure RAID 0 Use an EBS-Optimized Instance Increase the size of the instance

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 8

Which statement about VPC peering is correct?


Options are :

  • VPCs must be in the same region
  • VPCs must be in the same account
  • VPCs can have overlapping addresses ranges
  • Transitive peering is not supported (Correct)

Answer : Transitive peering is not supported

You need to mount an NFS 4.1 share to an EC2 instance. Which AWS service can provide storage capacity compatible with NFS 4.1?


Options are :

  • Glacier
  • S3
  • EFS (Correct)
  • EBS

Answer : EFS

Which statements regarding ELB Cross-zone load balancing are correct? (Choose two.)


Options are :

  • Multiple AZs are not recommended when using the Classic Load Balancer.
  • Cross-zone load balancing is automatically enabled for a Classic Load Balancer.
  • Cross-zone load balancing is automatically enabled for an Application Load Balancer. (Correct)
  • Traffic is distributed evenly across all instances in all Availability Zones. (Correct)

Answer : Cross-zone load balancing is automatically enabled for an Application Load Balancer. Traffic is distributed evenly across all instances in all Availability Zones.

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 6

You need to monitor a group of EC2 instances using CloudWatch. Some instances require more frequent monitoring than others. What are the default and minimum monitoring intervals?


Options are :

  • 15 minutes default, 2 minutes minimum.
  • 15 minutes default, 1 minute minimum.
  • 5 minutes default, 1 minute minimum. (Correct)
  • 5 minutes default, 2 minutes minimum.

Answer : 5 minutes default, 1 minute minimum.

Which AWS service allows you to preserve and revert to all old versions of a file, including files that have been deleted?


Options are :

  • EBS with Snapshots
  • EBS with Versioning
  • S3 with Lifecycle Management
  • S3 with Versioning (Correct)

Answer : S3 with Versioning

A group of EC2 instances contain sensitive data on unencrypted EBS volumes. These instnaces need to be encrypted, along with any other new instances that are created in the future. Which EBS encryption options will accomplish these goals? (Select TWO.)


Options are :

  • Encrypt the exsiting volumes using snapshots (Correct)
  • Enable encryption by default (Correct)
  • Enable encryption on the existing volumes on the fly
  • Configure encryption for the entire VPC

Answer : Encrypt the exsiting volumes using snapshots Enable encryption by default

AWS Develops Engineer Professional Practice Final File Exam Set 2

Which statements regarding EC2 Instance Store are correct? (Choose two.)


Options are :

  • Instance Store can be detached from one instance and attached to another.
  • Data is discarded when the associated EC2 instance is rebooted.
  • Instance Store is ideal when you need high performance and low latency, but do not need data to persist. (Correct)
  • Data is discarded when the associated EC2 instance stops or is terminated. (Correct)

Answer : Instance Store is ideal when you need high performance and low latency, but do not need data to persist. Data is discarded when the associated EC2 instance stops or is terminated.

AWS DVA-C00 Certified Developer Associate Practice Exam Set 8

Which statements regarding Multi-AZ RDS failover are correct? (Choose two.)


Options are :

  • During failover the CNAME record is not modified.
  • Failovers complete nearly instantaneously.
  • You can initiate a failover to avoid downtime when rebooting your instance. (Correct)
  • Failovers normally complete within 1 to 2 minutes. (Correct)

Answer : You can initiate a failover to avoid downtime when rebooting your instance. Failovers normally complete within 1 to 2 minutes.

You need to create a fast a flexible database in the cloud that does not require complex queries or other features of a relational database. You should be able to easily scale the performance of the solution by changing the read and write capacity units. Which service should you use?


Options are :

  • RDS
  • Redshift
  • DyanmoDB (Correct)
  • S3

Answer : DyanmoDB

You are going to terminate an EC2 instance and plan to also delete the EBS volume, but you want to store a copy of the volume in case you ever need to access the data on it again. Which option should you use?


Options are :

  • Detach the volume and store it in EBS.
  • Detach the volume and store it in S3.
  • Take a snapshot, which will store a copy of the volume in EBS.
  • Take a snapshot, which will store a copy of the volume in S3. (Correct)

Answer : Take a snapshot, which will store a copy of the volume in S3.

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 7

What is the maximum amount of data that can be stored in an S3 bucket?


Options are :

  • Unlimited (Correct)
  • 1 Petabyte
  • 5 TB
  • 500 TB

Answer : Unlimited

How frequently can ELB publish log files?


Options are :

  • Every 30 seconds
  • Once per minute
  • Once per hour
  • Every 5 minutes (Correct)

Answer : Every 5 minutes

You have a large amount of processing that needs to be performed using EC2 instances. You want to temporarily increase the number of instances to get the work finished, and will terminate these instances as soon as the task is complete. What type of instance would be most cost effective for this use case?


Options are :

  • On demand instances
  • Dedicated Hosts
  • Reserved instances
  • Spot Instances (Correct)

Answer : Spot Instances

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 3

Can a new IAM role be granted to a running EC2 instance?


Options are :

  • Roles can be assigned to an instance at any time (Correct)
  • Roles can be changed with a user data script
  • Roles can only be assigned during instance creation
  • Roles can only be assigned to users

Answer : Roles can be assigned to an instance at any time

Which techniques could be used to encrypt data prior to uploading it to S3 over the Internet? (Choose two.)


Options are :

  • Use the Amazon S3 encryption client with a client-side master key that you provide (Correct)
  • AWS KMS Managed Keys (SSE-KMS)
  • Use the Amazon S3 encryption client with an AWS provided Customer Master Key (CMK) (Correct)
  • Server Side Encryption with Customer Provided keys (SSE-C)

Answer : Use the Amazon S3 encryption client with a client-side master key that you provide Use the Amazon S3 encryption client with an AWS provided Customer Master Key (CMK)

You are writing data to S3 using the API. You have just completed a POST operation. Which codes returned indicate that the operation was successful?


Options are :

  • 200, 201, 202
  • 300, 301, or 304
  • 200, 201, or 204 (Correct)
  • No code is generated. To validate the operation you should check the logs.

Answer : 200, 201, or 204

AWS SCS-C01 Certified Security Speciality Practice Exam Set 5

Which of the following methods can be used to manage IAM? (Choose all that apply.)


Options are :

  • API (Correct)
  • CLI (Correct)
  • AWS Management Console (Correct)
  • Existing SDK Libraries (Correct)

Answer : API CLI AWS Management Console Existing SDK Libraries

You have an app that allows users to upload, view, and download pictures into Amazon S3. You expect to have an enormous amount of users that are going to self-register. Your solution must be able to scale to more than 100,000 users. What option should be used to register each user and grant access?


Options are :

  • Use Cognito to auto-create unique identifiers for users. Store each user's information in DynamoDB. Grant the mobile app temporary credentials using Security Token Service. (Correct)
  • Use Security Token Service to create permanent credentials, and then store the credentials in the mobile application.
  • Create an IAM role with the correct permissions. Grant the mobile app temporary credentials using Security Token Service.
  • Create an IAM user and auto-assign a role. Use Security Token Service to grant the mobile app temporary credentials.

Answer : Use Cognito to auto-create unique identifiers for users. Store each user's information in DynamoDB. Grant the mobile app temporary credentials using Security Token Service.

How can you set up zone apex support for Route 53, and point to an ELB? For example, a zone apex could be "trainertests.com". It is the root domain for a site.


Options are :

  • By using an NS record in Route 53
  • By using an alias record in Route 53 (Correct)
  • By using an A record in Route 53
  • By using an MX record in Route 53

Answer : By using an alias record in Route 53

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 2

When you create a new user in IAM what permissions do they have be default?


Options are :

  • Read-only
  • Administrator
  • None (Correct)
  • Console only

Answer : None

Your organization has an database application running on EC2 that has a Recovery Time Objective (RTO) of less than 2 hours, and the Recovery Point Objective (RPO) must be 30 minutes or less. The application is deployed in multiple availability zones. What DR strategy could be used to achieve this RTO and RPO in the event of this kind of failure?


Options are :

  • Back up the DB every 30 minutes to EC2 Instance Store and store transaction logs in S3 every 10 minutes
  • Back up the DB every 30 minutes to S3 and store transaction logs in S3 every 10 minutes (Correct)
  • Back up the DB every 30 minutes to EC2 Instance Store and store transaction logs in an EC2 Instance Store every 10 minutes
  • Back up the DB every 30 minutes to Glacier and store transaction logs in S3 every 10 minutes

Answer : Back up the DB every 30 minutes to S3 and store transaction logs in S3 every 10 minutes

What is the purpose of tagging an EC2 resource?


Options are :

  • You can assign your own metadata to resources (Correct)
  • You can group instances together for high availability purposes
  • You can mark certain traffic with VLAN tags
  • You can mark certain traffic with QoS tags

Answer : You can assign your own metadata to resources

Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 8

Which statement regarding Lambda is correct?


Options are :

  • Lambda never charges you for idle resources. (Correct)
  • Lambda uses Elastic Beanstalk to deploy resources that can run your code.
  • You have root level access to instances that run your Lambda functions.
  • Lambda allows you to run code on EC2 instances.

Answer : Lambda never charges you for idle resources.

You have detached an Elastic Network Interface (ENI) from an instance. You plan to now attach it to an instance that is currently stopped. What is it called when you attach an ENI to a stopped instance?


Options are :

  • Cold Attach
  • Suspended Attach
  • Warm Attach (Correct)
  • Hot Attach

Answer : Warm Attach

Which statements regarding EBS Snapshots are correct? (Choose two.)


Options are :

  • A maximum of 5 pending snapshots can exist per a single gp2, io1, or Magnetic volume. (Correct)
  • If you have multiple snapshots that are in the pending (in-progress) state, it can affect the performance of the instance. (Correct)
  • Multiple snapshots cannot be in progress at the same time.
  • Snapshots are stored on EC2, and cannot impact the performance of the instance.

Answer : A maximum of 5 pending snapshots can exist per a single gp2, io1, or Magnetic volume. If you have multiple snapshots that are in the pending (in-progress) state, it can affect the performance of the instance.

AWS CLF-C01 Certified Cloud Certification Practical Exam Set 1

You have attached multiple IAM policies to the same entity. A request to complete an operation is allowed by Policy1, but is denied by Policy2. What is the result of this scenario?


Options are :

  • The allow statement overrides any deny statements.
  • Multiple policies cannot be assigned to a single entity.
  • The first matching statement analyzed will be applied.
  • The deny statement overrides any allow statements. (Correct)

Answer : The deny statement overrides any allow statements.

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions