Amazon (SAA-C03) Exam Questions And Answers page 5
A company has a mobile game that reads most of its metadata from an Amazon RDS DB instance. As the game increased in popularity developers noticed slowdowns related to the game s metadata load times. Performance metrics indicate that simply scaling the database will not help. A solutions architect must explore all options that include capabilities for snapshots replication and sub-millisecond response times.
What should the solutions architect recommend to solve these issues?
What should the solutions architect recommend to solve these issues?
Migrate the database to Amazon DyramoDB with global tables.
Add an Amazon ElastiCache for Redis layer in front of the database.
Add an Amazon ElastiCache for Memcached layer in front of the database.
Define Performant Architectures
A company has a multi-tier application deployed on several Amazon EC2 instances in an Auto Scaling group. An Amazon RDS for Oracle instance is the application, data layer that uses Oracle-specific PSQL functions. Traffic to the application has been steadily increasing. This is causing the EC2 instances to become overloaded and RDS instance to run out of storage. The Auto Scaling group does not have any scaling metrics and defines the minimum healthy instance count only. The company predicts that traffic will continue to increase at a steady but unpredictable rate before leveling off.
What should a solutions architect do to ensure the system can automatically scale for the increased traffic? (Choose two.)
What should a solutions architect do to ensure the system can automatically scale for the increased traffic? (Choose two.)
Configure storage Auto Scaling on the RDS for Oracle instance.
Migrate the database to Amazon Aurora to use Auto Scaling storage.
Configure an alarm on the RDS for Oracle instance for low free storage space.
Configure the Auto Scaling group to use the average CPU as the scaling metric.
Configure the Auto Scaling group to use the average free memory as the scaling metric.
Design Resilient Architectures
Define Performant Architectures
A company has a multi-tier application deployed on several Amazon EC2 instances in an Auto Scaling group. An Amazon RDS for Oracle instance is the application's data layer that uses Oracle-specific PL/SQL functions. Traffic to the application has been steadily increasing. This is causing the EC2 instances to become overloaded and the RDS instance to run out of storage. The Auto Scaling group does not have any scaling metrics and defines the minimum healthy instance count only. The company predicts that traffic will continue to increase at a steady but unpredictable rate before leveling off.
What should a solutions architect do to ensure the system can automatically scale for the increased traffic? (Choose two.)
What should a solutions architect do to ensure the system can automatically scale for the increased traffic? (Choose two.)
Configure storage Auto Scaling on the RDS for Oracle instance.
Migrate the database to Amazon Aurora to use Auto Scaling storage.
Configure an alarm on the RDS for Oracle instance for low free storage space.
Configure the Auto Scaling group to use the average CPU as the scaling metric.
Configure the Auto Scaling group to use the average free memory as the scaling metric.
Design Resilient Architectures
Define Performant Architectures
A company has a multi-tier application that runs six front-end web servers in an Amazon EC2 Auto Scaling group in a single Availability Zone behind an Application Load Balancer (ALB). A solutions architect needs to modify the infrastructure to be highly available without modifying the application.
Which architecture should the solutions architect choose that provides high availability?
Which architecture should the solutions architect choose that provides high availability?
Create an Auto Scaling group that uses three instances across each of two Regions.
Modify the Auto Scaling group to use three instances across each of two Availability Zones.
Create an Auto Scaling template that can be used to quickly create more instances in another Region.
Change the ALB in front of the Amazon EC2 instances in a round-robin configuration to balance traffic to the web tier.
Design Resilient Architectures
Define Performant Architectures
A company has an Amazon EC2 instance running on a private subnet that needs to access a public website to download patches and updates. The company does not want external websites to see the EC2 instance IP address or initiate connections to it.
How can a solutions architect achieve this objective?
How can a solutions architect achieve this objective?
Create a site-to-site VPN connection between the private subnet and the network in which the public site is deployed.
Create a NAT gateway in a public subnet. Route outbound traffic from the private subnet through the NAT gateway.
Create a network ACL for the private subnet where the EC2 instance deployed only allows access from the IP address range of the public website.
Create a security group that only allows connections from the IP address range of the public website. Attach the security group to the EC2 instance.
Define Performant Architectures
Specify Secure Applications and Architectures
A company has an Amazon S3 bucket that contains mission-critical data. The company wants to ensure this data is protected from accidental deletion. The data should still be accessible, and a user should be able to delete the data intentionally.
Which combination of steps should a solutions architect take to accomplish this? (Choose two.)
Which combination of steps should a solutions architect take to accomplish this? (Choose two.)
Create a lifecycle policy for the objects in the S3 bucket.
Enable versioning on the S3 bucket.
Enable MFA Delete on the S3 bucket.
Create a bucket policy on the S3 bucket.
Enable default encryption on the S3 bucket.
Define Performant Architectures
Specify Secure Applications and Architectures
A company has an API-based inventory reporting application running on Amazon EC2 instances. The application stores information in an Amazon DynamoDB table. The company s distribution centers have an on-premises shipping application that calls an API to update the inventory before printing shipping labels. The company has been experiencing application interruptions several times each day, resulting in lost transactions.
What should a solutions architect recommend to improve application resiliency?
What should a solutions architect recommend to improve application resiliency?
Configure Amazon API Gateway to call the EC2 inventory application APIs.
Modify the shipping application to write to a local database.
Modify the application APIs to run serverless using AWS Lambda
Modify the application to send inventory updates using Amazon Simple Queue Service (Amazon SQS).
Design Resilient Architectures
A company has an application hosted on Amazon EC2 instances in two VPCs across different AWS Regions. To communicate with each other, the instances use the internet for connectivity. The security team wants to ensure that no communication between the instances happens over the internet.
What should a solutions architect do to accomplish this?
What should a solutions architect do to accomplish this?
Create a NAT gateway and update the route table of the EC2 instances subnet.
Create a VPC endpoint and update the route table of the EC2 instances subnet.
Create a VPN connection and update the route table of the EC2 instances subnet.
Create a VPC peering connection and update the route table of the EC2 instances subnet.
Define Performant Architectures
Specify Secure Applications and Architectures
A company has an application running on Amazon EC2 instances in a private subnet. The application needs to store and retrieve data in Amazon S3. To reduce costs, the company wants to configure its AWS resources in a cost-effective manner.
How should the company accomplish this?
How should the company accomplish this?
Deploy a NAT gateway to access the S3 buckets.
Deploy AWS Storage Gateway to access the S3 buckets.
Deploy an S3 gateway endpoint to access the S3 buckets.
Deploy an S3 interface endpoint to access the S3 buckets.
Design Cost-Optimized Architectures
A company has an application that calls AWS Lambda functions. A code review shows that database credentials are stored in a Lambda function s source code, which violates the company s security policy. The credentials must be securely stored and must be automatically rotated on an ongoing basis to meet security policy requirements.
What should a solutions architect recommend to meet these requirements in the MOST secure manner?
What should a solutions architect recommend to meet these requirements in the MOST secure manner?
Store the password in AWS CloudHSM. Associate the Lambda function with a role that can use the key ID to retrieve the password from CloudHSM. Use CloudHSM to automatically rotate the password.
Store the password in AWS Secrets Manager. Associate the Lambda function with a role that can use the secret ID to retrieve the password from Secrets Manager. Use Secrets Manager to automatically rotate the password.
Store the password in AWS Key Management Service (AWS KMS). Associate the Lambda function with a role that can use the key ID to retrieve the password from AWS KMS. Use AWS KMS to automatically rotate the uploaded password.
Move the database password to an environment variable that is associated with the Lambda function. Retrieve the password from the environment variable by invoking the function. Create a deployment script to automatically rotate the password.
Specify Secure Applications and Architectures
Design Cost-Optimized Architectures
Comments