Certification : Get AWS Certified Solutions Architect in 1 Day (2018 Update) Set 8

You work for a major news network in Europe. They have just released a new app which allows users to report on events as and when they happen using their mobile phone. Users are able to upload pictures from the app and then other users will be able to view these pics. Your organization expects this app to grow very quickly, essentially doubling its user base every month. The app uses S3 to store the media and you are expecting sudden and large increases in traffic to S3 when a major news event takes place as people will be uploading content in huge numbers). You need to keep your storage costs to a minimum however and it does not matter if some objects are lost. Which storage media should you use to keep costs as low as possible?


Options are :

  • S3 – Infrequently Accessed Storage.
  • S3 – Reduced Redundancy Storage (RRS). (Correct)
  • Glacier.
  • S3 – Provisioned IOPS.

Answer : S3 – Reduced Redundancy Storage (RRS).

A company needs to deploy virtual desktops to its customers in a virtual private cloud, leveraging existing security controls. Which set of AWS services and features will meet the company’s requirements?


Options are :

  • Virtual Private Network connection. AWS Directory Services, and ClassicLink
  • Virtual Private Network connection. AWS Directory Services, and Amazon Workspaces (Correct)
  • AWS Directory Service, Amazon Workspaces, and AWS Identity and Access Management
  • Amazon Elastic Compute Cloud, and AWS Identity and Access Management

Answer : Virtual Private Network connection. AWS Directory Services, and Amazon Workspaces

What is the ability provided by AWS to enable fast, easy, and secure transfers of files over long distances between your client and your Amazon S3 bucket.


Options are :

  • File Transfer
  • HTTP Transfer
  • Transfer Acceleration (Correct)
  • S3 Acceleration

Answer : Transfer Acceleration

There is a requirement for EC2 Instances in a private subnet to access an S3 bucket. The traffic should not traverse to the internet. Which of the following can be used to fulfil this requirement


Options are :

  • VPC endpoint (Correct)
  • NAT Instance
  • NAT gateway
  • Internet gateway

Answer : VPC endpoint

You have a set of EC2 Instances launched via Autoscaling. You now want to change the Instance type for the instances that would be launched in the future via Autoscaling. What would you do in such a case


Options are :

  • Change the Launch configuration to reflect the new instance type
  • Change the Autoscaling Group and add the new instance type.
  • Create a new Launch Configuration with the new instance type and replace the existing Launch configuration attached to the Autoscaling Group. (Correct)
  • Create a new Launch Configuration with the new instance type and add it along with the existing Launch configuration attached to the Autoscaling Group.

Answer : Create a new Launch Configuration with the new instance type and replace the existing Launch configuration attached to the Autoscaling Group.

You are the system administrator for your company's AWS account of approximately 100 IAM users. A new company policy has just been introduced that will change the access of 20 of the IAM users to have a particular sort of access to S3 buckets. How can you implement this effectively so that there is no need to apply the policy at the individual user level? Choose the correct answer from the options below


Options are :

  • Use the IAM groups and add users, based upon their role, to different groups and apply the policy to group (Correct)
  • Create a policy and apply it to multiple users using a JSON script
  • Create an S3 bucket policy with unlimited access which includes each user's AWS account ID
  • Create a new role and add each user to the IAM role

Answer : Use the IAM groups and add users, based upon their role, to different groups and apply the policy to group

What is the best way to move an EBS volume currently attached to an EC2 instance from one availability zone to another ?


Options are :

  • Detach the volume and attach to an EC2 instance in another AZ.
  • Create a new volume in the other AZ and specify the current volume as the source.
  • Create a snapshot of the volume and then create a volume from the snapshot in the other AZ (Correct)
  • Create a new volume in the AZ and do a disk copy of contents from one volume to another.

Answer : Create a snapshot of the volume and then create a volume from the snapshot in the other AZ

You have a read intensive application hosted in AWS. The application is currently using the MySQL RDS feature in AWS. Which of the following can be used to reduce the read throughput on the MySQL database


Options are :

  • Enable the Multi-AZ on the MySQL RDS
  • Use Cold Storage Volumes for the MySQL RDS
  • Enable Read Replica’s and offload the reads to the replica’s (Correct)
  • Use SQS to queue up the reads

Answer : Enable Read Replica’s and offload the reads to the replica’s

Where does AWS beanstalk store the application files and server log files? Choose one answer from the options given below


Options are :

  • On the local server within Elastic beanstalk
  • AWS S3 (Correct)
  • AWS Cloudtrail
  • AWS DynamoDB

Answer : AWS S3

A company has a set of Hyper-V machines and VM ware virtual machines. They are now planning on migrating these instances to the AWS Cloud. Which of the following can be used to move these resources to the AWS Cloud.


Options are :

  • DB Migration utility
  • Use the VM import tools (Correct)
  • Use AWS Migration tools
  • Use AWS Config tools

Answer : Use the VM import tools

A company wants to host a selection of MongoDB instances. They are expecting a high load and want to have as low latency as possible. Which class of instances from the below list should they choose from.


Options are :

  • T2
  • I2 (Correct)
  • T1
  • G2

Answer : I2

A web application is hosted on EC2 instances and using SQS. Requests are saved as messages in the SQS queue. The SQS queue is configured with the maximum message retention period. After 10 days you notice that the application was in a hung state and 2000 messages are still lying in the queue unprocessed. You are going to resolve the issue but you need to send a communication to the users on the issue. What information will you provide? Choose the correct option.


Options are :

  • An apology for the delay in processing requests and telling them that unfortunately they have to resubmit all the requests.
  • An apology for the delay in processing requests, assurance that the application will be operational shortly, and a note that requests greater than five days old will need to be resubmitted.
  • An apology for the delay in processing requests, assurance that the application will be operational shortly, and a note that all received requests will be processed at that time. (Correct)
  • An apology for the delay in processing requests and telling them that unfortunately they have to resubmit all the requests since the queue would not be able to process the 2000 messages together.

Answer : An apology for the delay in processing requests, assurance that the application will be operational shortly, and a note that all received requests will be processed at that time.

You have an order processing system which is currently using SQS. It was noticed that an order was processed twice which had led to great customer dissatisfaction. Your management has requested that this should not happen in the future. What can you do to avoid this happening in the future? Choose an answer from the options given below


Options are :

  • Change the retention period of SQS
  • Change the visibility timeout of SQS
  • Change the system to use SWF (Correct)
  • Change the message size in SQS

Answer : Change the system to use SWF

You currently manage a set of web servers hosted on EC2 Servers with public IP addresses. These IP addresses are mapped to domain names. There was an urgent maintenance activity that had to be carried out on the servers and the servers had to be restarted. Now the web application hosted on these EC2 Instances is not accessible via the domain names configured earlier. Which of the following could be a reason for this.


Options are :

  • The Route53 hosted zone needs to be restarted.
  • The network interfaces need to initialized again.
  • The public IP addresses need to associated to the ENI again.
  • The public IP addresses have changed after the instance was stopped and started (Correct)

Answer : The public IP addresses have changed after the instance was stopped and started

Amazon RDS DB snapshots and automated backups are stored in


Options are :

  • Amazon S3 (Correct)
  • Amazon ECS Volume
  • Amazon RDS
  • Amazon EMR

Answer : Amazon S3

You have an ELB distributing traffic a fleet of EC2 instances inside your VPC, evenly spread across two Availability Zones. However, you realize that only half of our instances are actually receiving traffic. What is the most likely cause of this problem? Choose the correct answer from the options given below


Options are :

  • The ELBs listener is not set to port 80.
  • One or more security groups do not allow HTTP traffic.
  • Cross-zone load balancing has not been enabled. (Correct)
  • The health check ping port is set to port 80, but should be set to port 22.

Answer : Cross-zone load balancing has not been enabled.

Which of the following instance types are available as Amazon EBS-backed only? Choose 2 answers from the options below.


Options are :

  • General purpose T2 (Correct)
  • General purpose M3
  • Compute-optimized C4 (Correct)
  • Compute-optimized C3
  • Storage-optimized I2

Answer : General purpose T2 Compute-optimized C4

Which of the following are Invalid VPC peering configurations? Choose 3 answers from the options below


Options are :

  • Overlapping CIDR blocks (Correct)
  • Transitive Peering (Correct)
  • Edge to Edge routing via a gateway (Correct)
  • One to one relationship between 2 VPC’s

Answer : Overlapping CIDR blocks Transitive Peering Edge to Edge routing via a gateway

You want to get the reason for your EC2 Instance termination from the CLI. Which of the below commands is ideal in getting the reason.


Options are :

  • aws ec2 describe-instances (Correct)
  • aws ec2 describe-images
  • aws ec2 get-console-screenshot
  • aws ec2 describe-volume-status

Answer : aws ec2 describe-instances

Which Amazon Elastic Compute Cloud feature can you query from within the instance to access instance properties?


Options are :

  • Instance user data
  • Resource tags
  • Instance metadata (Correct)
  • Amazon Machine Image

Answer : Instance metadata

A company wants to utilize aws storage. For them low storage cost is paramount, the data is rarely retrieved, and data retrieval times of several hours are acceptable for them. What is the best storage option to use?


Options are :

  • Glacier (Correct)
  • Reduced Redundancy Storage
  • EBS backed storage connected to EC2
  • Cloud Front

Answer : Glacier

Which of the following is an example of synchronous replication which occurs in the AWS service?


Options are :

  • AWS RDS Read Replica's for MySQL, MariaDB and PostgreSQL
  • AWS Multi-AZ RDS (Correct)
  • Redis engine for Amazon ElastiCache replication
  • AWS RDS Read Replica's for Oracle

Answer : AWS Multi-AZ RDS

What is one key difference between an Amazon EBS-backed and an instancestore backed instance?


Options are :

  • Amazon EBS-backed instances can be stopped and restarted. (Correct)
  • Instance-store backed instances can be stopped and restarted.
  • Auto scaling requires using Amazon EBS-backed instances.
  • Virtual Private Cloud requires EBS backed instances.

Answer : Amazon EBS-backed instances can be stopped and restarted.

A company is currently SWF for their order processing. Some of the orders seem to be stuck for 3 weeks. What could be the possible reason for this? Choose the correct answer from the options below


Options are :

  • SWF is awaiting human input from an activity task. (Correct)
  • The last task has exceeded SWF’s 14-day maximum task execution time
  • The workflow has exceeded SWF’s 14-day maximum workflow execution time
  • SWF is not the right service to be used

Answer : SWF is awaiting human input from an activity task.

What are the main benefits of AWS regions? Select 2 options.


Options are :

  • Regions allow you to design applications to conform to specific laws and regulations for specific parts of the world. (Correct)
  • All regions offer the same service at the same prices.
  • Regions allow you to choose a location in any country in the world.
  • Regions allow you to place AWS resources in the area of the world closest to your customers who access those resources. (Correct)

Answer : Regions allow you to design applications to conform to specific laws and regulations for specific parts of the world. Regions allow you to place AWS resources in the area of the world closest to your customers who access those resources.

What are the 2 main components of AutoScaling? Select 2 options.


Options are :

  • Launch Configuration (Correct)
  • Cloudtrail
  • Cloudwatch
  • AutoScaling Groups (Correct)

Answer : Launch Configuration AutoScaling Groups

You are developing a highly available web application using stateless web servers. Which services are suitable for storing session state data? Choose 3 answers


Options are :

  • Amazon CloudWatch
  • Amazon Relational Database Service (RDS) (Correct)
  • Elastic Load Balancing
  • Amazon ElastiCache (Correct)
  • AWS Storage Gateway
  • F. Amazon DynamoDB (Correct)

Answer : Amazon Relational Database Service (RDS) Amazon ElastiCache F. Amazon DynamoDB

You are IOT sensors to monitor the number of bags that are handled at an airport. The data gets sent back to a Kinesis stream with default settings. Every alternate day, the data from the stream is sent to S3 for processing. But you notice that S3 is not receiving all of the data that is being sent to the Kinesis stream. What could be the reason for this?


Options are :

  • The sensors probably stopped working on some days hence data is not sent to the stream.
  • S3 can only store data for a day
  • Data records are only accessible for a default of 24 hours from the time they are added to a stream (Correct)
  • Kinesis streams are not meant to handle IoT related data

Answer : Data records are only accessible for a default of 24 hours from the time they are added to a stream

A company has the following EC2 instance configuration. They are trying to connect to the instance from the internet. They have verified the existence of the Internet gateway and the route tables are in place. What could be the issue?


Options are :

  • It’s launched in the wrong Availability Zone
  • The AMI used to launch the instance cannot be accessed from the internet
  • The private IP is wrongly assigned
  • There is no Elastic IP Assigned (Correct)

Answer : There is no Elastic IP Assigned

A company has been asked to comply with the HIPPA laws, and they have been told that all data being backed up or stored on Amazon S3 needs to be encrypted at rest. What is the best method for encryption for your data? Please choose 2 options.


Options are :

  • Encrypt the data locally using your own encryption keys, then copy the data to Amazon S3 over HTTPS endpoints (Correct)
  • Store the data on EBS volumes with encryption enabled instead of using Amazon S3
  • Store the data in encrypted EBS snapshots
  • Enable SSE on an S3 bucket to make use of AES-256 encryption. (Correct)

Answer : Encrypt the data locally using your own encryption keys, then copy the data to Amazon S3 over HTTPS endpoints Enable SSE on an S3 bucket to make use of AES-256 encryption.