Amazon (SAA-C03) Exam Questions And Answers page 63
A solutions architect is using Amazon S3 to design the storage architecture of a new digital media application. The media files must be resilient to the loss of an Availability Zone. Some files are accessed frequently while other files are rarely accessed in an unpredictable pattern. The solutions architect must minimize the costs of storing and retrieving the media files.
Which storage option meets these requirements?
Which storage option meets these requirements?
S3 Intelligent-Tiering
S3 Standard-Infrequent Access (S3 Standard-IA)
S3 One Zone-Infrequent Access (S3 One Zone-IA)
Design Resilient Architectures
Define Performant Architectures
A solutions architect is working on optimizing a legacy document management application running on Microsoft Windows Server in an on-premises data center. The application stores a large number of files on a network file share. The chief information officer wants to reduce the on-premises data center footprint and minimize storage costs by moving on-premises storage to AWS.
What should the solutions architect do to meet these requirements?
What should the solutions architect do to meet these requirements?
Set up an AWS Storage Gateway file gateway.
Set up Amazon Elastic File System (Amazon EFS)
Set up AWS Storage Gateway as a volume gateway
Set up an Amazon Elastic Block Store (Amazon EBS) volume.
Design Cost-Optimized Architectures
A solutions architect must analyze and update a company s existing IAM policies prior to deploying a new workload. The solutions architect created the following policy:
What is the net effect of this policy?
What is the net effect of this policy?
Users will be allowed all actions except s3:PutObject if multi-factor authentication (MFA) is enabled.
Users will be allowed all actions except s3:PutObject if multi-factor authentication (MFA) is not enabled.
Users will be denied all actions except s3:PutObject if multi-factor authentication (MFA) is enabled.
Users will be denied all actions except s3:PutObject if multi-factor authentication (MFA) is not enabled.
Design Resilient Architectures
Specify Secure Applications and Architectures
A solutions architect must analyze and update a company s existing IAM policies prior to deploying a new workload. The solutions architect created the following policy:
What is the net effect of this policy?
What is the net effect of this policy?
Users will be allowed all actions except s3:PutObject if multi-factor authentication (MFA) is enabled.
Users will be allowed all actions except s3:PutObject if multi-factor authentication (MFA) is not enabled.
Users will be denied all actions except s3:PutObject if multi-factor authentication (MFA) is enabled.
Users will be denied all actions except s3:PutObject if multi-factor authentication (MFA) is not enabled.
Design Resilient Architectures
Specify Secure Applications and Architectures
A solutions architect must create a highly available bastion host architecture. The solution needs to be resilient within a single AWS Region and should require only minimal effort to maintain.
What should the solutions architect do to meet these requirements?
What should the solutions architect do to meet these requirements?
Create a Network Load Balancer backed by an Auto Scaling group with a UDP listener.
Create a Network Load Balancer backed by a Spot Fleet with instances in a partition placement group.
Create a Network Load Balancer backed by the existing servers in different Availability Zones as the target.
Create a Network Load Balancer backed by an Auto Scaling group with instances in multiple Availability Zones as the target.
Design Resilient Architectures
Define Performant Architectures
A solutions architect must design a database solution for a high-traffic ecommerce web application. The database stores customer profiles and shopping cart information. The database must support a peak load of several million requests each second and deliver responses in milliseconds. The operational overhead form an aging and scaling the database must be minimized.
Which database solution should the solutions architect recommend?
Which database solution should the solutions architect recommend?
Amazon Aurora
Amazon DynamoDB
Amazon RDS
Amazon Redshift
Define Performant Architectures
Design Cost-Optimized Architectures
A solutions architect must design a solution for a persistent database that is being migrated from on-premises to AWS. The database requires 64,000 IOPS according to the database administrator. If possible, the database administrator wants to use a single Amazon Elastic Block Store (Amazon EBS) volume to host the database instance.
Which solution effectively meets the database administrator's criteria?
Which solution effectively meets the database administrator's criteria?
Use an instance from the I3 I/O optimized family and leverage local ephemeral storage to achieve the IOPS requirement.
Create a Nitro-based Amazon EC2 instance with an Amazon Elastic Block Store (Amazon EBS) Provisioned IOPS SSD (io1) volume attached. Configure the volume to have 64,000 IOPS.
Create and map an Amazon Elastic File System (Amazon EFS) volume to the database instance and use the volume to achieve the required IOPS for the database.
Provision two volumes and assign 32,000 IOPS to each. Create a logical volume at the operating system level that aggregates both volumes to achieve the IOPS requirements.
Design Resilient Architectures
Define Performant Architectures
A solutions architect must design a solution for a persistent database that is being migrated from on-premises to AWS. The database requires 64,000 IOPS according to the database administrator. If possible, the database administrator wants to use a single Amazon Elastic Block Store (Amazon EBS) volume to host the database instance.
Which solution effectively meets the database administrator's criteria?
Which solution effectively meets the database administrator's criteria?
Use an instance from the I3 I/O optimized family and leverage local ephemeral storage to achieve the IOPS requirement.
Create an Nitro-based Amazon EC2 instance with an Amazon EBS Provisioned IOPS SSD (io1) volume attached. Configure the volume to have 64,000 IOPS.
Create and map an Amazon Elastic File System (Amazon EFS) volume to the database instance and use the volume to achieve the required IOPS for the database.
Provision two volumes and assign 32,000 IOPS to each. Create a logical volume at the operating system level that aggregates both volumes to achieve the IOPS requirements.
Design Resilient Architectures
Define Performant Architectures
A solutions architect must design a solution that uses Amazon CloudFront with an Amazon S3 origin to store a static website. The company s security policy requires that all website traffic be inspected by AWS WAF.
How should the solutions architect comply with these requirements?
How should the solutions architect comply with these requirements?
Configure an S3 bucket policy to accept requests coming from the AWS WAF Amazon Resource Name (ARN) only.
Configure Amazon CloudFront to forward all incoming requests to AWS WAF before requesting content from the S3 origin.
Configure a security group that allows Amazon CloudFront IP addresses to access Amazon S3 only. Associate AWS WAF to CloudFront.
Configure Amazon CloudFront and Amazon S3 to use an origin access identity (OAI) to restrict access to the S3 bucket. Enable AWS WAF on the distribution.
Define Performant Architectures
Specify Secure Applications and Architectures
A Solutions Architect must design a web application that will be hosted on AWS, allowing users to purchase access to premium, shared content that is stored in an S3 bucket. Upon payment, content will be available for download for 14 days before the user is denied access.
Which of the following would be the LEAST complicated implementation?
Which of the following would be the LEAST complicated implementation?
Use an Amazon CloudFront distribution with an origin access identity (OAI). Configure the distribution with an Amazon S3 origin to provide access to the file through signed URLs. Design a Lambda function to remove data that is older than 14 days.
Use an S3 bucket and provide direct access to the file. Design the application to track purchases in a DynamoDB table. Configure a Lambda function to remove data that is older than 14 days based on a query to Amazon DynamoDB.
Use an Amazon CloudFront distribution with an OAI. Configure the distribution with an Amazon S3 origin to provide access to the file through signed URLs. Design the application to set an expiration of 14 days for the URL.
Use an Amazon CloudFront distribution with an OAI. Configure the distribution with an Amazon S3 origin to provide access to the file through signed URLs. Design the application to set an expiration of 60 minutes for the URL and recreate the URL as necessary.
Define Performant Architectures
Design Cost-Optimized Architectures
Comments