Certification : Get AWS(Amazon Web Service) Certified Solutions Architect in 1 Day (2018 Update) Set 7

What is the term often used to describe a DR scenario in which a minimal version of an environment is always running in the cloud. Choose an answer from the options given below


Options are :

  • Backup and Restore
  • Pilot Light
  • Warm standby
  • Multi Site

Answer : Pilot Light

An application needs to have a messaging system in AWS. It is of the uttermost importance that the order of messages is preserved and duplicate messages are not sent. Which of the following services can help fulfil this requirement


Options are :

  • AWS SQS
  • AWS SNS
  • AWS Config
  • AWS ELB

Answer : AWS SQS

You are a solutions architect working for a company. They store their data on S3, however recently an someone accidentally deleted some critical files in S3. Youíve been asked to prevent this from happening in the future. What options below can prevent this?


Options are :

  • Make sure you provide signed URL's to all users.
  • Enable S3 versioning and Multifactor Authentication (MFA) on the bucket.
  • Use S3 Infrequently Accessed storage to store the data on.
  • Create an IAM bucket policy that disables deletes.

Answer : Enable S3 versioning and Multifactor Authentication (MFA) on the bucket.

After a Amazon Kinesis consumer consumes the records of a stream , which are the preferred data stores to where all can the consumer store the resulting records. Choose 3 answers from the options given below:


Options are :

  • Amazon S3
  • DynamoDB
  • Amazon Redshift
  • SQS

Answer : Amazon S3 DynamoDB Amazon Redshift

How many types of block devices does Amazon EC2 support? Choose one answer from the options below


Options are :

  • 2
  • 3
  • 4
  • 1

Answer : 2

Which of the following services allow the administrator access to the underlying operating system? Choose the 2 correct answers from the options below


Options are :

  • Amazon RDS
  • Amazon EMR
  • Amazon EC2
  • DynamoDB

Answer : Amazon EMR Amazon EC2

What database service should you choose if you need petabyte-scale data warehousing? Choose the correct answer from the options below


Options are :

  • DynamoDB
  • ElastiCache
  • RDS
  • Redshift

Answer : Redshift

You are designing a web application that stores static assets in an Amazon Simple Storage Service (S3) bucket. You expect this bucket to immediately receive over 150 PUT requests per second. What should you do to ensure optimal performance?


Options are :

  • Use multi-part upload.
  • Add a random prefix to the key names.
  • Amazon S3 will automatically manage performance at this scale.
  • Use a predictable naming scheme, such as sequential numbers or date time sequences, in the key names

Answer : Add a random prefix to the key names.

Which of the following statements are false about Amazon Glacier. Choose one answer from the options given below.


Options are :

  • It supports archive operations of Upload, Download and Delete
  • The archives are mutable
  • Uploading an archive is a synchronous operation
  • Archives can be as large at 40TB

Answer : The archives are mutable

What are the use case scenarios when you need Enhanced Networking? Choose 2 answers from the options given below


Options are :

  • high packet-per-second performance
  • low packet-per-second performance
  • high latency networking
  • low latency networking

Answer : high packet-per-second performance low latency networking

What are the two layers of security provided by AWS(Amazon Web Service) in the VPC?


Options are :

  • Security Groups and NACLs
  • NACLs and DHCP Options
  • Route Tables and Internet gateway
  • None

Answer : Security Groups and NACLs

Which of the following notification endpoints or clients are supported by Amazon Simple Notification Service? Choose 2 answers from the options below.


Options are :

  • Email
  • CloudFront distribution
  • File Transfer Protocol
  • Short Message Service
  • Simple Network Management Protocol

Answer : Email Short Message Service

Your company currently has an application hosted in their on-premise infrastructure. There is a mandate from management to move the application to the AWS(Amazon Web Service) Cloud. AS an architect you want to be cautious for the deployment of the application onto AWS. You have suggested to divert a percentage of the traffic from the users to the new application in AWS(Amazon Web Service) during the launch. Once it is confirmed that the cloud based application works with no issues, a full diversion to the new site can be implemented. Which of the following mechanisms can be used to ensure this scenario can be implemented.


Options are :

  • Use the Classic Elastic Load balancer to divert and proportion the traffic between the on-premise and AWS(Amazon Web Service) hosted application.
  • Use the Application Elastic Load balancer to divert and proportion the traffic between the on-premise and AWS(Amazon Web Service) hosted application.
  • Use Route53 with failover routing policy to divert and proportion the traffic between the on-premise and AWS(Amazon Web Service) hosted application.
  • Use Route53 with Weighted routing policy to divert and proportion the traffic between the on-premise and AWS(Amazon Web Service) hosted application.

Answer : Use Route53 with Weighted routing policy to divert and proportion the traffic between the on-premise and AWS(Amazon Web Service) hosted application.

When reviewing the Auto Scaling events, it is noticed that an application is scaling up and down multiple times within the hour. What design change could you make to optimize cost while preserving elasticity? Choose the correct answer from the options below


Options are :

  • Change the scale down CloudWatch metric to a higher threshold
  • Increase the instance type in the launch configuration
  • Increase the base number of Auto Scaling instances for the Auto Scaling group
  • Add provisioned IOPS to the instances

Answer : Change the scale down CloudWatch metric to a higher threshold

You are creating a Provisioned IOPS volume in AWS. The size of the volume is 8 GiB. Which of the following are the possible values that can put for the IOPS of the volume


Options are :

  • 400
  • 500
  • 600
  • 1000

Answer : 400

What is the purpose of an SWF decision task? Choose the correct answer from the options below


Options are :

  • It tells the worker to perform a function.
  • It tells the decider the state of the work flow execution.
  • It defines all the activities in the workflow.
  • It represents a single task in the workflow.

Answer : It tells the decider the state of the work flow execution.

Which of the following are characteristics of Amazon VPC subnets? Choose 2 answers from the options given below


Options are :

  • Each subnet spans at least 2 Availability Zones to provide a highavailability environment.
  • Each subnet maps to a single Availability Zone.
  • CIDR block mask of/25 is the smallest range supported
  • By default, all subnets can route between each other, whether they are private or public
  • Instances in a private subnet can communicate with the Internet only if they have an Elastic IP.

Answer : Each subnet maps to a single Availability Zone. By default, all subnets can route between each other, whether they are private or public

A company is migrating an on-premise 10TB MySQL database to AWS. The company expects the database to quadruple in size and the business requirement is that replica lag must be kept under 100 milliseconds. Which Amazon RDS engine meets these requirements?


Options are :

  • MySQL
  • Microsoft SQL Server
  • Oracle
  • Amazon Aurora

Answer : Amazon Aurora

In order to optimize performance for a compute cluster that requires low inter-node latency, which of the following feature should you use?


Options are :

  • Multiple Availability Zones
  • AWS Direct Connect
  • EC2 Dedicated Instances
  • Placement Groups
  • VPC private subnets

Answer : Placement Groups

An image named photo.jpg has been uploaded to a bucket named examplebucket in the us-east-1 region. Which of the below is the right URL to access the image, if it were made public? Consider that S3 is used as a static website.


Options are :

  • http://examplebucket.s3-website-us-east-1.amazonaws.com/photo.jpg
  • http://examplebucket.website-us-east-1.amazonaws.com/photo.jpg
  • http://examplebucket.s3-us-east-1.amazonaws.com/photo.jpg
  • http://examplebucket.amazonaws.s3-website-us-east-1./photo.jpg

Answer : http://examplebucket.s3-website-us-east-1.amazonaws.com/photo.jpg

After creating a new IAM user which of the following must be done before they can successfully make API calls?


Options are :

  • Add a password to the user.
  • Enable Multi-Factor Authentication for the user.
  • Assign a Password Policy to the user.
  • Create a set of Access Keys for the user.

Answer : Create a set of Access Keys for the user.

You have written a CloudFormation template that creates 1 elastic load balancer fronting 2 EC2 instances. Which section of the template should you edit so that the DNS of the load balancer is returned upon creation of the stack?


Options are :

  • Resources
  • Parameters
  • Outputs
  • Mappings

Answer : Outputs

In a VPC, you have launched two web servers and attached to an internet facing ELB. Both your web servers and ELB are located in the public subnet. Yet, you are still not able to access your web application via the ELB's DNS through the internet. What could be done to resolve this issue?


Options are :

  • Attach an Internet gateway to the VPC and route it to the subnet
  • Add an elastic IP address to the instance
  • Use Amazon Elastic Load Balancer to serve requests to your instances located in the internal subnet
  • Recreate the instances again

Answer : Attach an Internet gateway to the VPC and route it to the subnet

A customer is running a multi-tier web application farm in a virtual private cloud (VPC) that is not connected to their corporate network. They are connecting to the VPC over the Internet to manage all of their Amazon EC2 instances running in both the public and private subnets. They have only authorized the bastion-security-group with Microsoft Remote Desktop Protocol (RDP) access to the application instance security groups, but the company wants to further limit administrative access to all of the instances in the VPC. Which of the following Bastion deployment scenarios will meet this requirement?


Options are :

  • Deploy a Windows Bastion host on the corporate network that has RDP access to all instances in the VPC.
  • Deploy a Windows Bastion host with an Elastic IP address in the public subnet and allow SSH access to the bastion from anywhere.
  • Deploy a Windows Bastion host with an Elastic IP address in the private subnet, and restrict RDP access to the bastion from only the corporate public IP addresses.
  • Deploy a Windows Bastion host with an Elastic IP address in the public subnet and allow RDP access to bastion only from corporate IP addresses.

Answer : Deploy a Windows Bastion host with an Elastic IP address in the public subnet and allow RDP access to bastion only from corporate IP addresses.

You've been tasked with building out a duplicate environment in another region for disaster recovery purposes. Part of your environment relies on EC2 instances with preconfigured software. What steps would you take to configure the instances in another region? Choose the correct answer from the options below


Options are :

  • Create an AMI of the EC2 instance
  • Create an AMI of the EC2 instance and copy the AMI to the desired region
  • Make the EC2 instance shareable among other regions through IAM permissions
  • None

Answer : Create an AMI of the EC2 instance and copy the AMI to the desired region

What are the different options available when creating a VPC using the VPC wizard? Please choose all options that apply.


Options are :

  • VPC with a Primary and Secondary subnet
  • VPC with Public and Private Subnets
  • VPC with Public and Private Subnets and Hardware VPN Access
  • VPC with default settings

Answer : VPC with Public and Private Subnets VPC with Public and Private Subnets and Hardware VPN Access

An application consists of the following architecture. A. EC2 Instances in a single AZ behind an ELB. B. A NAT instance which is used to ensure that instances can download updates from the internet. Which of the following can be used to ensure better fault tolerance in this setup. Choose 2 answers from the options given below


Options are :

  • Add more instances in the existing Availability Zone
  • Add an Autoscaling Group to the setup
  • Add more instances in another Availability Zone
  • Add another ELB for more fault tolerance

Answer : Add an Autoscaling Group to the setup Add more instances in another Availability Zone

In order to establish a successful site-to-site VPN connection from your onpremise network to the VPC (Virtual Private Cloud), which of the following needs to be configured outside of the VPC? Choose the correct answer from the options below


Options are :

  • The main route table to route traffic through a NAT instance
  • A public IP address on the customer gateway for the on-premise network
  • A dedicated NAT instance in a public subnet
  • An Elastic IP address to the Virtual Private Gateway

Answer : A public IP address on the customer gateway for the on-premise network

You are developing a highly available web application using stateless web servers. Which services are suitable for storing session state data? Choose 3 answers from the options below


Options are :

  • Amazon RDS
  • Amazon Elastic Cache
  • Amazon Cloudwatch
  • Elastic Load Balancing (ELB)
  • Amazon DynamoDB

Answer : Amazon RDS Amazon Elastic Cache Amazon DynamoDB

An application is currently configured on an EC2 instance to process messages in SQS. The queue has been created with the default settings. The application is configured to just read the messages once a week. It has been noticed that not all the messages are being picked by the application. What could be the issue?


Options are :

  • The application is configured to long polling, so some messages are not being picked up
  • The application is configured to short polling, so some messages are not being picked up
  • Some of the messages have surpassed the retention period defined for the queue
  • Some of the messages donít have the right permissions to be picked up by the application

Answer : Some of the messages have surpassed the retention period defined for the queue