Amazon AWS-Solution-Architect-Associate Dumps Questions 2021

Exam Code: AWS-Solution-Architect-Associate (aws solution architect associate dumps), Exam Name: AWS Certified Solutions Architect - Associate, Certification Provider: Amazon Certifitcation, Free Today! Guaranteed Training- Pass AWS-Solution-Architect-Associate Exam.

Online AWS-Solution-Architect-Associate free questions and answers of New Version:

NEW QUESTION 1
Which features can be used to restrict access to data in 53? Choose 2 answers

  • A. Set an 53 ACL on the bucket or the object.
  • B. Create a Cloud Front distribution for the bucket.
  • C. Set an 53 bucket policy.
  • D. Enable IAM Identity Federation
  • E. Use 53 Virtua I Hosting

Answer: CD

Explanation: Reference:
http://docs.aws.amazon.com/AmazonCioudFront/latest/DeveIoperGuide/private-contentrestricting-access
-to-s3.html

NEW QUESTION 2
An instance is launched into a VPC subnet with the network ACL configured to al low all inbound traffic and deny all outbound traffic. The instance's security group is configured to allow SSH from any IP address and deny all outbound traffic. What changes need to be made to allow SSH access to the instance?

  • A. The out bound security group needs to be modified to allow out bound traffic.
  • B. The outbound network ACL needs to be modified to allow outbound traffic.
  • C. Nothing, it can be accessed from any IP address using SSH.
  • D. Both the outbound security group and outbound network ACL need to be modified to allow outbound traffic.

Answer: B

Explanation: http://docs.aws.amazon.com/AmazonVPC/|atest/UserGuide/VPC_ACLs.htm|

NEW QUESTION 3
Which of the below mentioned options is not available when an instance is launched by Auto Scaling with EC2 Classic?

  • A. Public IP
  • B. Elastic IP
  • C. Private DNS
  • D. Private IP

Answer: B

Explanation: Auto Scaling supports both EC2 classic and EC2-VPC. When an instance is launched as a part of EC2 classic, it will have the public IP and DNS as well as the private IP and DNS.
Reference: http://docs.aws.amazon.com/AutoScaIing/latest/DeveIoperGuide/GettingStartedTutoriaI.html

NEW QUESTION 4
For which of the following use cases are Simple Workflow Service (SWF) and Amazon EC2 an appropriate solution? Choose 2 answers

  • A. Using as an endpoint to collect thousands of data points per hourfrom a distributed fileet of sensors
  • B. Managing a multi-step and multi-decision checkout process of an e-commerce website
  • C. Orchestrating the execution of distributed and auditable business processes
  • D. Using as an SNS (Simple Notification Service) endpoint to trigger execution of video transcoding jobs
  • E. Using as a distributed session store for your web application

Answer: AB

NEW QUESTION 5
In regards to IAM you can edit user properties later, but you cannot use the console to change the

  • A. user name
  • B. password
  • C. default group

Answer: A

NEW QUESTION 6
If your DB instance runs out of storage space or file system resources, its status will change to _ and your DB Instance will no longer be available.

  • A. storage-overflow
  • B. storage-full
  • C. storage-exceed
  • D. storage-overage

Answer: B

NEW QUESTION 7
You have a video transcoding application running on Amazon EC2. Each instance pol Is a queue to find out which video should be transcoded, and then runs a transcoding process. If this process is interrupted, the video will be transcoded by another instance based on the queuing system. You have a large backlog of videos which need to be transcoded and would like to reduce this backlog by adding more instances. You will need these instances only until the backlog is reduced. Which type of Amazon EC2 instances should you use to reduce the backlog in the most cost efficient way?

  • A. Reserved instances
  • B. Spot instances
  • C. Dedicated instances
  • D. On-demand instances

Answer: B

Explanation: Reference: http://aws.amazon.com/ec2/purchasing-options/spot-instances/

NEW QUESTION 8
A favored client needs you to quickly deploy a database that is a relational database service with minimal administration as he wants to spend the least amount of time administering it. Which database would be the best option?

  • A. Amazon Simp|eDB
  • B. Your choice of relational AMs on Amazon EC2 and EBS.
  • C. Amazon RDS
  • D. Amazon Redshift

Answer: C

Explanation: Amazon Relational Database Service (Amazon RDS) is a web service that makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while managing time-consuming database administration tasks, freeing you up to focus on your applications and business.
Amazon RDS gives you access to the capabilities of a familiar MySQL, Oracle, SQL Server, or PostgreSQL database engine. This means that the code, applications, and tools you already use today with your existing databases can be used with Amazon RDS. Amazon RDS automatically patches the database software and backs up your database, storing the backups for a user-defined retention period and enabling point-in-time recovery.
Reference: https://aws.amazon.com/running_databases/#rds_anchor

NEW QUESTION 9
A user is trying to launch a similar EC2 instance from an existing instance with the option "Launch More like this". The AMI ofthe selected instance is deleted. What will happen in this case?

  • A. AWS does not need an AMI for the "Launch more like this" option
  • B. AWS will launch the instance but will not create a new AMI
  • C. AWS will create a new AMI and launch the instance
  • D. AWS will throw an error saying that the AMI is deregistered

Answer: D

Explanation: If the user has deregistered the AMI of an EC2 instance and is trying to launch a similar instance with the option "Launch more like this", AWS will throw an error saying that the AMI is deregistered or not available.
Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/launching-instance.html

NEW QUESTION 10
Your department creates regular analytics reports from your company's log files All log data is collected in Amazon 53 and processed by daily Amazon Elastic MapReduce (EMR) jobs that generate daily PDF reports and aggregated tables in CSV format for an Amazon Redshift data warehouse.
Your CFO requests that you optimize the cost structure for this system.
Which of the following alternatives will lower costs without compromising average performance of the system or data integrity for the raw data?

  • A. Use reduced redundancy storage (RRS) for all data In 53. Use a combination of Spot Instances and Reserved Instances for Amazon EMR job
  • B. Use Reserved Instances for Amazon Redshift.
  • C. Use reduced redundancy storage (RRS) for PDF and .csv data in 53. Add Spot Instances to EMR job
  • D. Use Spot Instances for Amazon Redshift.
  • E. Use reduced redundancy storage (RRS) for PDF and .csv data In Amazon 53. Add Spot Instances to Amazon EMR job
  • F. Use Reserved Instances for Amazon Redshift.
  • G. Use reduced redundancy storage (RRS) for all data in Amazon 53. Add Spot Instances to Amazon EMR job
  • H. Use Reserved Instances for Amazon Redshift.

Answer: C

Explanation: Using Reduced Redundancy Storage
Amazon 53 stores objects according to their storage class. It assigns the storage class to an object when it is written to Amazon 53. You can assign objects a specific sto rage class (standard or reduced redundancy) only when you write the objects to an Amazon 53 bucket or when you copy objects that are already stored in Amazon 53. Standard is the default storage class. For information about storage classes, see Object Key and Metadata.
In order to reduce storage costs, you can use reduced redundancy storage for noncritical, reproducible data at lower levels of redundancy than Amazon 53 provides with standard storage. The lower level of redundancy results in less durability and availability, but in many cases, the lower costs can make
reduced redundancy storage an acceptable storage solution. For example, it can be a cost effective solution for sharing media content that is durably stored elsewhere. It can also make sense if you are storing thumbnails and other resized images that can be easily reproduced from an original image. Reduced redundancy storage is designed to provide 99.99% durability of objects over a given year.
This durability level corresponds to an average annual expected loss of 0.01% of objects. For example, if you store 10,000 objects using the RRS option, you can, on average, expect to incur an annual loss of a single object per year (0.01% of 10,000 objects).
Note
This annual loss represents an expected average and does not guarantee the loss of less than 0.01% of objects in a given year.
Reduced redundancy storage stores objects on multiple devices across multiple facilities, providing 400 times the durability of a typical disk drive, but it does not replicate objects as many times as Amazon 53 standard storage. In addition, reduced redundancy storage is designed to sustain the loss of data in a single facility.
If an object in reduced redundancy storage has been lost, Amazon 53 will return a 405 error on requests made to that object. Amazon 53 also offers notifications for reduced redundancy storage object loss: you can configure your bucket so that when Amazon 53 detects the loss of an RRS object, a notification will be sent through Amazon Simple Notification Service (Amazon SNS). You can then replace the lost object. To enable notifications, you can use the Amazon 53 console to set the Notifications property of your bucket.

NEW QUESTION 11
True or False: Common points of failures like generators and cooling equipment are shared across Availability Zones.

  • A. TRUE
  • B. FALSE

Answer: B

NEW QUESTION 12
Can a single EBS volume be attached to multiple EC2 instances at the same time?

  • A. Yes
  • B. No
  • C. Only for high-performance EBS volumes.
  • D. Only when the instances are located in the US region

Answer: B

Explanation: You can't attach an EBS volume to multiple EC2 instances. This is because it is equivalent to using a single hard drive with many computers at the same time.
Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AmazonEBS.htmI

NEW QUESTION 13
Your company has multiple IT departments, each with their own VPC. Some VPCs are located within the same AWS account, and others in a different AWS account. You want to peer together all VPCs to enable the IT departments to have full access to each others' resources. There are certain limitations placed on VPC peering. Which of the following statements is incorrect in relation to VPC peering?

  • A. Private DNS values cannot be resolved between instances in peered VPCs.
  • B. You can have up to 3 VPC peering connections between the same two VPCs at the same time.
  • C. You cannot create a VPC peering connection between VPCs in different regions.
  • D. You have a limit on the number active and pending VPC peering connections that you can have per VPC.

Answer: B

Explanation: To create a VPC peering connection with another VPC, you need to be aware of the following limitations and rules:
You cannot create a VPC peering connection between VPCs that have matching or overlapping CIDR blocks.
You cannot create a VPC peering connection between VPCs in different regions.
You have a limit on the number active and pending VPC peering connections that you can have per VPC. VPC peering does not support transitive peering relationships; in a VPC peering connection, your VPC will not have access to any other VPCs that the peer VPC may be peered with. This includes VPC peering connections that are established entirely within your own AWS account.
You cannot have more than one VPC peering connection between the same two VPCs at the same time. The Maximum Transmission Unit (MTU) across a VPC peering connection is 1500 bytes.
A placement group can span peered VPCs; however, you will not get full-bisection bandwidth between instances in peered VPCs.
Unicast reverse path forwarding in VPC peering connections is not supported.
You cannot reference a security group from the peer VPC as a source or destination for ingress or egress rules in your security group. Instead, reference CIDR blocks of the peer VPC as the source or destination of your security group's ingress or egress rules.
Private DNS values cannot be resolved between instances in peered VPCs. Reference:
http://docs.aws.amazon.com/AmazonVPC/Iatest/PeeringGuide/vpc-peering-overview.htmI#vpc-peering-Ii mitations

NEW QUESTION 14
A user has configured a website and launched it using the Apache web server on port 80. The user is using ELB with the EC2 instances for Load Balancing. What should the user do to ensure that the EC2 instances accept requests only from ELB?

  • A. Configure the security group of EC2, which allows access to the ELB source security group
  • B. Configure the EC2 instance so that it only listens on the ELB port
  • C. Open the port for an ELB static IP in the EC2 security group
  • D. Configure the security group of EC2, which allows access only to the ELB listener

Answer: A

Explanation: When a user is configuring ELB and registering the EC2 instances with it, ELB will create a source security group. If the user wants to allow traffic only from ELB, he should remove all the rules set for the other requests and open the port only for the ELB source security group.
Reference:
http://docs.aws.amazon.com/EIasticLoadBaIancing/latest/DeveIoperGuide/using-elb-security-groups.htmI

NEW QUESTION 15
When should I choose Provisioned IOPS over Standard RDS storage?

  • A. If you use production online transaction processing (OLTP) workloads.
  • B. If you have batch-oriented workloads
  • C. If you have workloads that are not sensitive to consistent performance

Answer: A

NEW QUESTION 16
You receive a bill from AWS but are confused because you see you are incurring different costs for the exact same storage size in different regions on Amazon S3. You ask AWS why this is so. What response would you expect to receive from AWS?

  • A. We charge less in different time zones.
  • B. We charge less where our costs are less.
  • C. This will balance out next bill.
  • D. It must be a mistak

Answer: B

Explanation: Amazon S3 is storage for the internet. |t’s a simple storage service that offers software developers a highly-scalable, reliable, and low-latency data storage infrastructure at very low costs.
AWS charges less where their costs are less.
For example, their costs are lower in the US Standard Region than in the US West (Northern California) Region.
Reference: https://aws.amazon.com/s3/faqs/

NEW QUESTION 17
What is a placement group in Amazon EC2?

  • A. It is a group of EC2 instances within a single Availability Zone.
  • B. It the edge location of your web content.
  • C. It is the AWS region where you run the EC2 instance of your web content.
  • D. It is a group used to span multiple Availability Zone

Answer: A

Explanation: A placement group is a logical grouping of instances within a single Availability Zone. Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/placement-groups.html

NEW QUESTION 18
As AWS grows, most of your cIients' main concerns seem to be about security, especially when all of their competitors also seem to be using AWS. One of your clients asks you whether having a competitor who hosts their EC2 instances on the same physical host would make it easier for the competitor to hack into the cIient's data. Which of the following statements would be the best choice to put your cIient's mind at rest?

  • A. Different instances running on the same physical machine are isolated from each other via a 256-bit Advanced Encryption Standard (AES-256).
  • B. Different instances running on the same physical machine are isolated from each other via the Xen hypervisor and via a 256-bit Advanced Encryption Standard (AES-256).
  • C. Different instances running on the same physical machine are isolated from each other via the Xen hypervisor.
  • D. Different instances running on the same physical machine are isolated from each other via IAM permissions.

Answer: C

Explanation: Amazon Elastic Compute Cloud (EC2) is a key component in Amazon’s Infrastructure as a Service (IaaS), providing resizable computing capacity using server instances in AWS’s data centers. Amazon EC2 is designed to make web-scale computing easier by enabling you to obtain and configure capacity with minimal friction.
You create and launch instances, which are collections of platform hardware and software. Different instances running on the same physical machine are isolated from each other via the Xen hypervisor.
Amazon is active in the Xen community, which provides awareness of the latest developments. In addition, the AWS firewall resides within the hypervisor layer, between the physical network interface and the instance's virtual interface. All packets must pass through this layer, thus an instance’s neighbors have no more access to that instance than any other host on the Internet and can be treated as if they are on
separate physical hosts. The physical RAM is separated using similar mechanisms.
Reference: http://d0.awsstatic.com/whitepapers/Security/AWS%20Security%20Whitepaper.pdf

NEW QUESTION 19
In the Launch Db Instance Wizard, where can I select the backup and maintenance options?

  • A. Under DB INSTANCE DETAILS
  • B. Under REVI EW
  • C. Under MANAGEMENT OPTIONS
  • D. Under ENGINE SELECTION

Answer: C

100% Valid and Newest Version AWS-Solution-Architect-Associate Questions & Answers shared by Passcertsure, Get Full Dumps HERE: https://www.passcertsure.com/AWS-Solution-Architect-Associate-test/ (New 672 Q&As)