• Home
  • Articles
  • [Aug-2022] The Best AWS Certified Solutions Architect AWS-Solutions-Architect-Associate Professional Exam Questions [Q249-Q264]

[Aug-2022] The Best AWS Certified Solutions Architect AWS-Solutions-Architect-Associate Professional Exam Questions [Q249-Q264]

Share

[Aug-2022] The Best AWS Certified Solutions Architect AWS-Solutions-Architect-Associate Professional Exam Questions

Try 100% Updated AWS-Solutions-Architect-Associate Exam Questions [2022]


AWS Solutions Associate Certification Path

Test Preparation teaches you how the exam questions ought to be decoded and the more you squander your exercise. Our Exam Preparedness: AWS Trained Solutions associate - Technical arrangement course is conveyed in different configurations: study hall preparing for learning or taking an interest in a physical or reproduced homeroom with an AWS Approved Learner. Free media preparing for learning whenever it is reasonable for you. The course surveys test inquiries in each branch of knowledge and how the themes tried ought to be seen to such an extent that off base answers are simpler to stay away from. Track down the correct decision for you.

Knowledge of the use of AWS resources in computing, networking, storage, and database AWS implementation, and operations systems hands-on insight. The capacity of an AWS-based program to recognize and specify functional specifications. The ability to define which AWS programs satisfy particular technological needs. Knowledge of recommended best practices for safe and trustworthy AWS platform applications. Understanding the core associateural tenets of AWS Cloud construction. AWS global infrastructure awareness. An understanding of AWS-related network technology. Understand the security characteristics and resources provided by AWS and its ties with conventional providers.

 

NEW QUESTION 249
A company wants to experiment with individual AWS accounts tor its engineer team The company wants to be notified as soon as the Amazon EC2 instance usage for a given month exceeds a specific threshold for each account.
What should a solutions architect do to meet this requirement MOST cost-effectively?

  • A. Use Cost Explorer to create a monthly report of costs by service. Filter the report by EC2 instances Configure Cost Explorer to send an Amazon Simple Email Service (Amazon SES) notification when a threshold is exceeded
  • B. Use AWS Cost and Usage Reports to create a report with hourly granularity. Integrate the report data with Amazon Athena. Use Amazon EventBridge (Amazon CloudWatch Events) to schedule an Athena query Configure an Amazon Simple Notifiication Service (Amazon SNS) topic lo receive a notification when a threshold is exceeded
  • C. Use Cost Explorer to create a daily report of costs by service. Filter the report by EC2 instances.
    Configure Cost Explorer to send an Amazon Simple Email Service (Amazon SES) notification when a threshold is exceeded
  • D. Use AWS Budgets to create a cost budget for each account Set the period to monthly Set the scope to EC2 instances Set an alert threshold for the budget Configure an Amazon Simple Notification Service (Amazon SNS) topic to receive a notification when a threshold is exceeded.

Answer: A

 

NEW QUESTION 250
A company has an Amazon S3 data lake that is governed by AWS Lake Formation The company wants to create a visualization in Amazon QuickSight by joining the data in the data lake with operational data that is stored in an Amazon Aurora MySQL database The company wants to enforce column-level authorization so that the company's marketing team can access only a subset of columns in the database Which solution will meet these requirements with the LEAST operational overhead?

  • A. Use a Lake Formation blueprint to ingest the data from the database to the S3 data lake Use Lake Formation to enforce column-level access control for the QuickSight users Use Amazon Athena as the data source in QuickSight
  • B. Use Amazon EMR to ingest the data directly from the database to the QuickSight SPICE engine Include only the required columns
  • C. Use AWS Glue Studio to ingest the data from the database to the S3 data lake Attach an 1AM policy to the QuickSight users to enforce column-level access control. Use Amazon S3 as the data source in QuickSight
  • D. Use AWS Glue Elastic Views to create a materialized view for the database in Amazon S3 Create an S3 bucket policy to enforce column-level access control for the QuickSight users Use Amazon S3 as the data source in QuickSight.

Answer: A

 

NEW QUESTION 251
A developer has a script to generate daily reports that users previous. The script consistently complete in under
10 minutes. The developer needs to automate the process in a cost effective manner.
Which combination of services should the developer use? (Select two)

  • A. AWS CloudTrail
  • B. AWS Lambda
  • C. Amazon EventBridge (Amazon CloudWatch Event)
  • D. Cron on an Amazon EC2 instance
  • E. Amazon EC2 On-Demand instance with user data

Answer: A,B

 

NEW QUESTION 252
A Solutions Architect is designing an architecture for a mobile gaming application. The application is expected to be very popular. The Architect needs to prevent the Amazon ROS MySQL database from becoming a bottleneck due to frequently accessed queries.
Which service or feature should the Architect add to prevent a bottleneck?

  • A. Amazon SQS in front of RDS MySQL Database
  • B. Multi-AZ feature on the RDS MySQL Database
  • C. ELB Classic Load Balancer in front of the web application tier.
  • D. Amazon ElastiCache in front of the RDS MySQL Database.

Answer: D

 

NEW QUESTION 253
A Solutions Architect must design a solution that encrypts data in Amazon S3. Corporate policy mandates encryption keys be generated and managed on premises.
Which solution should the Architect use to meet the security requirements?

  • A. SSE-C: Server-side encryption with customer-provided encryption keys
  • B. AWS CloudHSM
  • C. SSE-KMS: Server-side encryption with AWS KMS managed keys
  • D. SSE-S3: Server-side encryption with Amazon-managed master key

Answer: A

 

NEW QUESTION 254
A company hosts a popular web application. The web application connects to a database running in a private VPC subnet. The web servers must be accessible only to customers on an SSL connection. The RDS MySQL database server must be accessible only from the web servers.
How should the Architect design a solution to meet the requirements without impacting running applications?

  • A. Create a network ACL on the web server's subnet, and allow HTTPS inbound and MySQL outbound.
    Place both database and web servers on the same subnet.
  • B. Create a network ACL on the web server's subnet, and allow HTTPS inbound, and specify the source as
    0.0.0.0/0. Create a network ACL on a database subnet, allow MySQL port inbound for web servers, and deny all outbound traffic.
  • C. Open an HTTPS port on the security group for web servers and set the source to 0.0.0.0/0. Open the MySQL port on the database security group and attach it to the MySQL instance. Set the source to Web Server Security Group.
  • D. Open the MySQL port on the security group for web servers and set the source to 0.0.0.0/0. Open the HTTPS port on the database security group and attach it to the MySQL instance. Set the source to Web Server Security Group

Answer: C

 

NEW QUESTION 255
A company has a service that reads and writes large amounts of data from an Amazon S3 bucket in the same AWS Region The service is deployed on Amazon EC2 instances within the private subnet of a VPC. The service communicates with Amazon S3 over a NAT gateway in the public subnet However, the company wants a solution that will reduce the data output costs.
Which solution will meet these requirements MOST cost-effectively?

  • A. Provision a dedicated EC2 NAT instance in the public subnet. Configure the route table for the private subnet to use the elastic network interface of this instance as the destination for all S3 traffic
  • B. Provision a dedicated EC2 NAT instance in the private subnet. Configure the route table for the public subnet to use the elastic network interface of this instance as the destination for all S3 traffic.
  • C. Provision a VPC gateway endpoint. Configure the route table for the private subnet to use the gateway endpoint as the route for all S3 traffic.
  • D. Provision a second NAT gateway. Configure the route table foe the private subnet to use this NAT gateway as the destination for all S3 traffic.

Answer: C

 

NEW QUESTION 256
Which of the following are true regarding encrypted Amazon Elastic Block Store (EBS) volumes? Choose 2 answers

  • A. Available to all instance types
  • B. shared volumes can be encrypted
  • C. Supported on all Amazon EBS volume types
  • D. Snapshots are automatically encrypted
  • E. Existing volumes can be encrypted

Answer: C,D

Explanation:
This feature is supported on all Amazon EBS volume types (General Purpose (SSD), Provisioned IOPS (SSD), and Magnetic). You can access encrypted Amazon EBS volumes the same way you access existing volumes; encryption and decryption are handled transparently and they require no additional action from you, your Amazon EC2 instance, or your application. Snapshots of encrypted Amazon EBS volumes are automatically encrypted, and volumes that are created from encrypted Amazon EBS snapshots are also automatically encrypted.
Reference: http://docs.aws.amazon.com/kms/latest/developerguide/services-ebs.html

 

NEW QUESTION 257
Can you create IAM security credentials for existing users?

  • A. Yes, but only IAM credentials, not ordinary security credentials.
  • B. No, security credentials are created within GROUPS, and then users are associated to GROUPS at a later time.
  • C. Yes, existing users can have security credentials associated with their account.
  • D. No, IAM requires that all users who have credentials set up are not existing users

Answer: C

 

NEW QUESTION 258
By default, EBS volumes that are created and attached t o an instance at launch are deleted when t hat instance is terminated. You can modify this behavior by changing the value of the flag _ to false when you launch the instance

  • A. Delete On Termination
  • B. Terminate On Deletion
  • C. Remove On Deletion
  • D. Remove On Termination

Answer: A

 

NEW QUESTION 259
A company runs a legacy application with a single-tier architecture on an Amazon EC2 instance. Disk I/O is low, with occasional small spikes during business hours. The company requires the instance to be stopped from 8 PM to 8 AM daily.
Which storage option is MOST appropriate for this workload?

  • A. Amazon EBS General Purpose SSD (gp2) storage
  • B. Amazon EC2 instance storage
  • C. Amazon S3
  • D. Amazon EBS Provision IOPS SSD (io1) storage

Answer: A

Explanation:
Explanation
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSVolumeTypes.html

 

NEW QUESTION 260
After you recommend Amazon Redshift to a client as an alternative solution to paying data warehouses to analyze his data, your client asks you to explain why you are recommending Redshift. Which of the following would be a reasonable response to his request?

  • A. It prevents reporting and analytic processing from interfering with the performance of OLTP workloads.
  • B. You don't have the administrative burden of running your own data warehouse and dealing with setup, durability, monitoring, scaling, and patching.
  • C. It has high performance at scale as data and query complexity grows.
  • D. All answers listed are a reasonable response to his question

Answer: D

Explanation:
Amazon Redshift delivers fast query performance by using columnar storage technology to improve I/O efficiency and parallelizing queries across multiple nodes. Redshift uses standard PostgreSQL JDBC and
ODBC drivers, allowing you to use a wide range of familiar SQL clients. Data load speed scales linearly with cluster size, with integrations to Amazon S3, Amazon DynamoDB, Amazon Elastic MapReduce,
Amazon Kinesis or any SSH-enabled host.
AWS recommends Amazon Redshift for customers who have a combination of needs, such as:
High performance at scale as data and query complexity grows
Desire to prevent reporting and analytic processing from interfering with the performance of OLTP workloads
Large volumes of structured data to persist and query using standard SQL and existing BI tools
Desire to the administrative burden of running one's own data warehouse and dealing with setup, durability, monitoring, scaling and patching
Reference: https://aws.amazon.com/running_databases/#redshift_anchor

 

NEW QUESTION 261
A customer needs corporate IT governance and cost oversight of all AWS resources consumed by its divisions. The divisions want to maintain administrative control of the discrete AWS resources they consume and keep those resources separate from the resources of other divisions. Which of the following options, when used together will support the autonomy/control of divisions while enabling corporate IT to maintain governance and cost oversight? Choose 2 answers

  • A. Enable lAM cross-account access for all corporate IT administrators in each child account.
  • B. Use AWS Consolidated Billing to link the divisions' accounts to a parent corporate account.
  • C. Write all child AWS CloudTrail and Amazon CloudWatch logs to each child account's Amazon 53 'Log' bucket.
  • D. Create separate VPCs for each division within the corporate IT AWS account.
  • E. Use AWS Consolidated Billing and disable AWS root account access for the child accounts.

Answer: B,C

 

NEW QUESTION 262
A company is launching a new slake website on Amazon S3 and Amazon CloudFront The company wants to ensure that all web requests go through only CloudFront How can a Solutions Architect meet this requirement?

  • A. Configure the S3 bucket policy to allow only CloudFront IP addresses to read objects.
  • B. Create a CloudFront origin access identity (OAI) then update the S3 bucket policy to allow the OAl read access
  • C. Convert the S3 bucket to an EC2 instance then give CloudFront access to the instance by using security groups
  • D. Create 1AM users in a group mat has read access to the S3 bucket Configuration CloudFront to pass credential to the S3 bucket

Answer: B

 

NEW QUESTION 263
A company has a web application with an apache front end, a Memcached cache, and a postgreSQL database.
The company also has a data warehouse that is accessed with standard SQL tools. The company would like to migrate the architecture to AWS with as little work as possible.
Which of the following AWS services should a solution Architect recommend?

  • A. Amazon ElastiCache with Redis
  • B. Amazon ElastiCache and Amazon Redshift
  • C. AWS identity and Access Management (1AM) with AWS Lambda
  • D. Amazon DynamoDB end Amazon ElastiCache

Answer: D

 

NEW QUESTION 264
......


Difficulty in Writing AWS Solutions Associate

This examination can not be instantly finished because the AMAZON AWS SOLUTIONS ASSOCIATE exam dumps are needed to pass the examinations. These exam dumps require time and correct and up to date content to pass the exam with effectiveness. Several applicants are doubtful about the nature of questions posed in the exam and the complexity of exam questions and the time needed to finish the questions before writing a credential AWS Accredited Developer Professional certification. The most suitable way to pass the Professional Test is to question and prepare with AWS Solutions associate- Associate PROFESSIONAL exam dumps. AWS Accredited Developer Applicants are assessing their education and finding places for change in the real review style. The most solid way is to practice the Professional Credential Review with an AWS Certified Developer, as the examination is an important part of the AWS Certified Developer.

 

AWS-Solutions-Architect-Associate Exam Questions Get Updated [2022] with Correct Answers: https://freedownload.prep4sures.top/AWS-Solutions-Architect-Associate-real-sheets.html

Related Articles

more
Amazon AWS-Solutions-Architect-Associate Certification Practice Exam