Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 3

Your company is concerned with EBS volume backup on Amazon EC2 and wants to ensure they have proper backups and that the data is durable. What solution would you implement and why? Choose the correct answer from the options below


Options are :

  • Configure Amazon Storage Gateway with EBS volumes as the data source and store the backups on premise through the storage gateway
  • Write a cronjob on the server that compresses the data that needs to be backed up using gzip compression, then use AWS CLI to copy the data into an S3 bucket for durability
  • Use a lifecycle policy to back up EBS volumes stored on Amazon S3 for durability
  • Write a cronjob that uses the AWS CLI to take a snapshot of production EBS volumes. The data is durable because EBS snapshots are stored on the Amazon S3 standard storage class (Correct)

Answer : Write a cronjob that uses the AWS CLI to take a snapshot of production EBS volumes. The data is durable because EBS snapshots are stored on the Amazon S3 standard storage class

You are designing a site for a new start up which generates cartoon images for people automatically. Customers will log on to the site, upload an image which is stored in S3. The application then passes a job to AWS SQS and a fleet of EC2 instances poll the queue to receive new processing jobs. These EC2 instances will then turn the picture in to a cartoon and will then need to store the processed job somewhere. Users will typically download the image once (immediately), and then never download the image again. What is the most commercially feasible method to store the processed images?


Options are :

  • Rather than use S3, store the images inside a BLOB on RDS with MultiAZ configured for redundancy.
  • Store the images on S3 RRS, and create a lifecycle policy to delete the image after 24 hours. (Correct)
  • Store the images on glacier instead of S3.
  • Use elastic block storage volumes to store the images.

Answer : Store the images on S3 RRS, and create a lifecycle policy to delete the image after 24 hours.

Which route must be added to your routing table in order to allow connections to the internet from your subnet?


Options are :

  • Destination:0.0.0.0/0-->Target:your internet gateway (Correct)
  • Destination:192.168.1.257/0-->Target:your internet gateway
  • Destination:0.0.0.0/33-->Target:your virtual private gateway
  • Destination:0.0.0.0/0--> Target:0.0.0.0/24

Answer : Destination:0.0.0.0/0-->Target:your internet gateway

What is the best definition of an SQS message? Choose an answer from the options below


Options are :

  • A mobile push notification
  • A set of instructions stored in an SQS queue that can be up to 512KB in size
  • A notification sent via SNS
  • A set of instructions stored in an SQS queue that can be up to 256KB in size (Correct)

Answer : A set of instructions stored in an SQS queue that can be up to 256KB in size

There is a requirement for an iSCI device and the legacy application needs local storage. Which of the following can be used to meet the demands of the application.


Options are :

  • Configure the Simple storage service
  • Configure Storage gateway cached volume
  • Configure Storage gateway stored volume (Correct)
  • Configure Amazon Glacier

Answer : Configure Storage gateway stored volume

A consulting firm repeatedly build large architectures for their customers using AWS resources from many AWS services including IAM, Amazon EC2, Amazon RDS, DynamoDB and Amazon VPC. The consultants have architecture diagrams for each of their architectures and they are frustrated that they cannot use them to automatically create their resources. Which service should provide immediate benefits to the organization?


Options are :

  • AWS Beanstalk
  • AWS Cloudformation (Correct)
  • AWS CodeBuild
  • AWS CodeDeploy

Answer : AWS Cloudformation

You are the solution architect for a company. The company has a requirement to deploy an application which will need to have session management in place. Which of the following services can be used to store session data for session management?


Options are :

  • AWS Storage Gateway, Elasticache & ELB
  • ELB, Elasticache & RDS
  • Cloudwatch, RDS & DynamoDb
  • RDS, DynamoDB & Elasticache. (Correct)

Answer : RDS, DynamoDB & Elasticache.

A custom script needs to be passed to a new Amazon Linux instances created in your Auto Scaling group. Which feature allows you to accomplish this?


Options are :

  • User data (Correct)
  • EC2Config service
  • IAM roles
  • AWS Config

Answer : User data

You are running an instance store based instance. You shutdown and then start the instance. You then notice that the data which you have saved earlier is no longer available. What might be the cause of this? Choose the correct answer from the options below


Options are :

  • The volume was not big enough to handle all of the processing data
  • The EC2 instance was using EBS backed root volumes, which are ephemeral and only live for the life of the instance
  • The EC2 instance was using instance store volumes, which are ephemeral and only live for the life of the instance (Correct)
  • The instance might have been compromised

Answer : The EC2 instance was using instance store volumes, which are ephemeral and only live for the life of the instance

A company is hosting a MySQL database in AWS using the AWS RDS service. To offload the reads, a read replica has been created and reports are run off the read replica database. But at certain times, the reports are showing stale data. Why is this the case?


Options are :

  • The Read replica has not been created properly
  • The backup of the original database has not been set properly
  • This is due to the replication lag
  • The Multi-AZ feature is not enable (Correct)

Answer : The Multi-AZ feature is not enable

An application currently stores all data on Amazon EBS Volumes. All EBS volumes must be backed up durably across multiple Availability Zones. What is the MOST resilient way to backup the volumes?


Options are :

  • Take regular EBS snapshots (Correct)
  • Enable EBS volume encryption
  • Create a script to copy data to an EC2 Instance store
  • Mirror data across 2 EBS volumes

Answer : Take regular EBS snapshots

You are using an EC2 instance that is backed by an S3-based AMI. You are planning on terminating that instance. When the instance is terminated, what happens to the data on the root volume?


Options are :

  • Data is automatically saved as an EBS snapshot.
  • Data is automatically saved as an EBS volume.
  • Data is unavailable until the instance is restarted.
  • Data is automatically deleted. (Correct)

Answer : Data is automatically deleted.

A company is hosting EC2 instances which focuses on work-loads are on non-production and non-priority batch loads. Also these processes can be interrupted at any time. What is the best pricing model which can be used for EC2 instances in this case?


Options are :

  • Reserved Instances
  • On-Demand Instances
  • Spot Instances (Correct)
  • Regular Instances

Answer : Spot Instances

There is a new facility from AWS which allows for fast, easy, and secure transfers of files over long distances between your client and your Amazon S3 bucket. What is this service called?


Options are :

  • File Transfer
  • HTTP Transfer
  • S3 Transfer Acceleration (Correct)
  • Kinesis Acceleration

Answer : S3 Transfer Acceleration

What type of monitoring for EBS volumes is available automatically in 5 minute periods at no charge?


Options are :

  • Basic (Correct)
  • Primary
  • Detailed
  • Local

Answer : Basic

You have a video transcoding application running on Amazon EC2. Each instance polls a queue to find out which video should be transcoded, and then runs a transcoding process. If this process is interrupted, the video will be transcoded by another instance based on the queuing system. You have a large backlog of videos which need to be transcoded and would like to reduce this backlog by adding more instances. You will need these instances only until the backlog is reduced. Which type of Amazon EC2 instances should you use to reduce the backlog in the most cost efficient way?


Options are :

  • Reserved instances
  • Spot instances (Correct)
  • Dedicated instances
  • On-demand instances

Answer : Spot instances

A company wants to host a web application and a database layer in AWS. This will be done with the use of subnets in a VPC. Which of the following is the proper architecture design for supporting the required tiers of the application


Options are :

  • Use a public subnet for the web tier and a public subnet for the database layer
  • Use a public subnet for the web tier and a private subnet for the database layer (Correct)
  • Use a private subnet for the web tier and a private subnet for the database layer
  • Use a private subnet for the web tier and a public subnet for the database layer

Answer : Use a public subnet for the web tier and a private subnet for the database layer

An infrastructure is being hosted in AWS using the following resources a) A couple of EC2 instances serving a web based application b) An Elastic Balancer in front of the EC2 Instances c) An AWS RDS with Multi-AZ enabled Which of the following can be added to the setup to ensure scalability.


Options are :

  • Add another ELB to the setup
  • Add more EC2 Instances to the setup
  • Enable Read Replica’s for the AWS RDS
  • Add an Autoscaling Group to the setup (Correct)

Answer : Add an Autoscaling Group to the setup

Your supervisor asks you to create a highly available website which serves static content from EC2 instances. Which of the following is not a requirement to accomplish this goal? Choose the correct option


Options are :

  • Multiple Availability Zones
  • Multiple subnets
  • An SQS queue (Correct)
  • An auto scaling group to recover from EC2 instance failures

Answer : An SQS queue

You have a video transcoding application running on Amazon EC2. Each instance polls a queue to find out which video should be transcoded, and then runs a transcoding process. If this process is interrupted, the video will be transcoded by another instance based on the queuing system. You have a large backlog of videos which need to be transcoded and would like to reduce this backlog by adding more instances. You will need these instances only until the backlog is reduced. Which type of Amazon EC2 instances should you use to reduce the backlog in the most cost efficient way?


Options are :

  • Reserved instances
  • Spot instances (Correct)
  • Dedicated instances
  • On-demand instances

Answer : Spot instances

You receive a Linux Spot Instance at a bid of $0.05/hr. After 30 minutes, the Spot prices increases to $0.06/hr and your Spot Instance is terminated by AWS. What was the total EC2 compute cost of running your Spot Instances?


Options are :

  • $0.03 (Correct)
  • $0.03
  • $0.05
  • $0.06

Answer : $0.03

Which of the mentioned AWS services uses the concept of shards and is uniquely identified group of data records in a stream?


Options are :

  • Cloudfront
  • SQS
  • Kinesis (Correct)
  • SES

Answer : Kinesis

Currently you're helping design and architect a highly available application. After building the initial environment, you've found that part of your application does not work correctly until port 443 is added to the security group. After adding port 443 to the appropriate security group, how much time will it take before the changes are applied and the application begins working correctly? Choose the correct answer from the options below


Options are :

  • Generally, it takes 2-5 minutes in order for the rules to propagate
  • Immediately after a reboot of the EC2 instances belong to that security group
  • Changes apply instantly to the security group, and the application should be able to respond to 443 requests (Correct)
  • It will take 60 seconds for the rules to apply to all availability zones within the region

Answer : Changes apply instantly to the security group, and the application should be able to respond to 443 requests

You have been told that you need to set up a bastion host by your manager in the cheapest, most secure way, and that you should be the only person that can access it via SSH. Which of the following setups would satisfy your manager's request? Choose the correct option


Options are :

  • A large EC2 instance and a security group which only allows access on port 22
  • A large EC2 instance and a security group which only allows access on port 22 via your IP address
  • A small EC2 instance and a security group which only allows access on port 22
  • A small EC2 instance and a security group which only allows access on port 22 via your IP address (Correct)

Answer : A small EC2 instance and a security group which only allows access on port 22 via your IP address

Your company currently uses templates to deploy servers in their on-premise infrastructure. They want to have the same template configurations applied when deploying EC2 Instances. Which of the following can be done to ensure that EC2 Instances can be deployed as per the template standards defined by the organization.


Options are :

  • Use the EC2 metadata feature to deploy those features at runtime.
  • Use the AWSConfig service to deploy updates to the EC2 Instances before they are launched.
  • Create pre-built AMI’s with the desired configuration as the organization templates. (Correct)
  • It is not possible to define templates for EC2 Instances. You need to deploy the changes manually

Answer : Create pre-built AMI’s with the desired configuration as the organization templates.

A VPC public subnet is one that (Choose one of the correct option below):


Options are :

  • Has at least one route in its associated routing table that uses an Internet gateway (Correct)
  • Includes a route in its associated routing table via a Network Address Translation(NAT) instance.
  • Has a Network Access Control List (NACL) permitting outbound traffic to 0.0.0.0/0
  • Has the public Subnet option selected in its configuration

Answer : Has at least one route in its associated routing table that uses an Internet gateway

A customer wants to leverage Amazon Simple Storage Service (S3) and Amazon Glacier as part of their backup and archive infrastructure. The customer plans to use third-party software to support this integration. Which approach will limit the access of the third party software to only the Amazon S3 bucket named “company-backup”?


Options are :

  • A custom bucket policy limited to the Amazon S3 API in the Amazon Glacier archive “company-backup”
  • A custom bucket policy limited to the Amazon S3 API in “companybackup”
  • A custom IAM user policy limited to the Amazon S3 API for the Amazon Glacier archive “company-backup”.
  • A custom IAM user policy limited to the Amazon S3 API in “companybackup”. (Correct)

Answer : A custom IAM user policy limited to the Amazon S3 API in “companybackup”.

What is the maximum size of an EBS Provisioned IOPS SSD volume? Choose the correct option.


Options are :

  • 2TiB
  • 16TiB (Correct)
  • 4Gib
  • 500 GiB

Answer : 16TiB

A customer wants to track access to their Amazon Simple Storage Service (S3) buckets and also use this information for their internal security and access audits. Which of the following will meet the Customer requirement?


Options are :

  • Enable AWS CloudTrail to audit all Amazon S3 bucket access.
  • Enable server access logging for all required Amazon S3 buckets. (Correct)
  • Enable the Requester Pays option to track access via AWS Billing
  • Enable Amazon S3 event notifications for Put and Post.

Answer : Enable server access logging for all required Amazon S3 buckets.

A company wants to build a brand new application on the AWS Cloud. They want to ensure that the application follows the Microservices architecture. Which of the following services can be used to build this sort of architecture. Choose 3 answers from the options given below


Options are :

  • AWS Lambda (Correct)
  • AWS ECS (Correct)
  • AWS API gateway (Correct)
  • AWS Config

Answer : AWS Lambda AWS ECS AWS API gateway