• Home
  • Blogs
  • Updated Nov 01, 2021 Certification Exam SAA-C02 Dumps - Practice Test Questions [Q157-Q176]

Updated Nov 01, 2021 Certification Exam SAA-C02 Dumps - Practice Test Questions [Q157-Q176]

Share

Updated Nov 01, 2021  Certification Exam SAA-C02 Dumps - Practice Test Questions

Updated Verified SAA-C02 dumps Q&As - Pass Guarantee or Full Refund


How to Prepare For Amazon SAA-C02 Exam

Preparation Guide for Amazon SAA-C02 Exam

Introduction

Amazon Web Services (AWS) is an Amazon subsidiary that, on a metered pay-as-you-go basis, offers on-demand cloud computing platforms and APIs to individuals, enterprises, and governments. AWS certification is a degree of cloud experience in Amazon Web Services that an IT specialist obtains after completing one or more AWS examinations.

To demonstrate and verify technical cloud expertise and skills, IT pros obtain AWS certifications. For cloud developers, managers, and architects, AWS offers various qualification exams. AWS certification lasts for two years, and after it expires, IT pros can recertify their particular certification. Around the world, there are hundreds of examination centers in which to take the exams.

Many organizations have adopted AWS and they lack individuals who can interact through this platform. However, having the requisite skills is the only way to land one of these job positions. You will get the skills needed to work with AWS with this associate-level badge, which will help you open up new job opportunities and receive a much higher salary.

This guide provides a detailed overview of the AWS Solutions Architect Associate SAA-C02 certification including all sorts of prerequisites for the exam, the exam format, topics covered, exam difficulty and preparation methods, and the target audience profile.

 

NEW QUESTION 157
A solutions architect is tasked with transferring 750 TB of data from a network-attached file system located at a branch office to Amazon S3 Glacier The solution must avoid saturating the branch office's low-bandwidth internet connection What is the MOST cost-effective solution1?

  • A. Mount the network-attached file system to Amazon S3 and copy the files directly. Create a lifecycle policy to transition the S3 objects to Amazon S3 Glacier
  • B. Order 10 AWS Snowball appliances and select an Amazon S3 bucket as the destination Create a lifecycle policy to transition the S3 objects to Amazon S3 Glacier
  • C. Order 10 AWS Snowball appliances and select an S3 Glacier vault as the destination Create a bucket policy to enforce a VPC endpoint
  • D. Create a site-to-site VPN tunnel to an Amazon S3 bucket and transfer the files directly Create a bucket policy to enforce a VPC endpoint

Answer: C

 

NEW QUESTION 158
A company has a three-tier image-sharing application it uses an Amazon EC2 instance for the front-end layer, another for the backend tier, and a third for the MySQL database A solutions architect has been tasked with designing a solution that is highly available, and requires the least amount of changes to the application Which solution meets these requirements'?

  • A. Use Amazon S3 to host the front-end layer and a fleet of Amazon EC2 instances in an Auto Scaling group for the backend layer Move the database to a memory optimized instance type to store and serve users' images
  • B. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end and backend layers Move the database to an Amazon RDS instance with multiple read replicas to store and serve users' images.
  • C. Use Amazon S3 to host the front-end layer and AWS Lambda functions for the backend layer Move the database to an Amazon DynamoDB table and use Amazon S3 to store and serve users' images
  • D. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end and backend layers Move the database to an Amazon RDS instance with a Multi-AZ deployment Use Amazon S3 to store and serve users' images

Answer: D

 

NEW QUESTION 159
A solutions architect is designing a customer-facing application. The application is expected to have a variable amount of reads and writes depending on the time of year and clearly defined access patterns throughout the year. Management requires that database auditing and scaling be managed in the AWS Cloud. The Recovery Point Objective (RPO) must be less than 5 hours.
Which solutions can accomplish this? (Select TWO.)

  • A. Use Amazon RDS with Provisioned IOPS. Enable the database auditing parameter. Perform database snapshots every 5 hours.
  • B. Use Amazon Redshift Configure concurrency scaling. Enable audit logging. Perform database snapshots every 4 hours.
  • C. Use Amazon DynamoDB with auto scaling. Use on-demand backups and Amazon DynamoDB Streams.
  • D. Use Amazon DynamoDB with auto scaling. Use on-demand backups and AWS CloudTrail.
  • E. Use Amazon RDS with auto scaling. Enable the database auditing parameter. Configure the backup retention period to at least 1 day.

Answer: C,D

 

NEW QUESTION 160
A company collects temperature, humidity, and atmospheric pressure data in cities across multiple continents.
The average volume of data collected per site each day is 500 GB. Each site has a high-speed internet connection. The company's weather forecasting applications are based in a single Region and analyze the data daily.
What is the FASTEST way to aggregate data for all of these global sites?

  • A. Upload the data to an Amazon EC2 instance in the closes Region. Store the data in an Amazon EBS volume. One a day take an EBS snapshot and copy it to the centralize Region. Restore the EBS volume in the centralized Region and run an analysis on the data daily.
  • B. Upload site data to an Amazon S3 bucket in the closest AWS Region. Use S3 cross-Region replication to copy objects to the destination bucket.
  • C. Upload site data to an Amazon S3 bucket in the closest AWS Region. Use S3 cross-Region replication to copy objects to the destination bucket.
  • D. Enable Amazon S3 Transfer Acceleration on the destination bucket. Use multipart uploads to directly upload site data to the destination bucket.

Answer: B

Explanation:
Explanation
Step -1 To transfer to S3 from global sites : Amazon S3 Transfer Acceleration enables fast, easy, and secure transfers of files over long distances between your client and your Amazon S3 bucket. S3 Transfer Acceleration leverages Amazon CloudFront's globally distributed AWS Edge Locations. Used to accelerate object uploads to S3 over long distances (latency). Transfer acceleration is as secure as a direct upload to S3.
Step -2 : When the application analyze/aggregate the data from S3 and then again upload the results - Multipart upload
http://lavnish.blogspot.com/2017/06/aws
https://aws.amazon.com/s3/transfer-acceleration/

 

NEW QUESTION 161
A company receives inconsistent service from its data center provider because the company is headquartered in an area affected by natural disasters.
The company is not ready to fully migrate to the AWS Cloud, but it wants a failure environment on AWS in case the on-premises data center fails.
The company runs web servers that connect to external vendors. The data available on AWS and on premises must be uniform.
Which solution should a solutions architect recommend that has the LEAST amount of downtime?

  • A. Configure an Amazon Route 53 failover record.
    Run an AWS Lambda function to execute an AWS CloudFormation template to launch two Amazon EC2 instances.
    Set up AWS Storage Gateway with stored volumes to back up data to Amazon S3.
    Set up an AWS Direct Connect connection between a VPC and the data center.
  • B. Configure an Amazon Route 53 failover record.
    Execute an AWS CloudFormation template from a script to create Amazon EC2 instances behind an Application Load Balancer.
    Set up AWS Storage Gateway with stored volumes to back up data to Amazon S3.
  • C. Configure an Amazon Route 53 failover record.
    Set up an AWS Direct Connect connection between a VPC and the data center.
    Run application servers on Amazon EC2 in an Auto Scaling group.
    Run an AWS Lambda function to execute an AWS CloudFormation template to create an Application Load Balancer.
  • D. Configure an Amazon Route 53 failover record.
    Run application servers on Amazon EC2 instances behind an Application Load Balancer in an Auto Scaling group.
    Set up AWS Storage Gateway with stored volumes to back up data to Amazon S3.

Answer: D

 

NEW QUESTION 162
A solutions architect is designing a new workload in which an AWS Lambda function will access an Amazon DynamoDB table.
What is the MOST secure means of granting the Lambda function access to the DynamoDB labia?

  • A. Create an IAM user, and create access and secret keys for the user.
    Give the user the necessary permissions to access the DynarnoOB table.
    Have the developer use these keys to access the resources.
  • B. Create a DynamoDB user name and password and give them to the developer to use in the Lambda function.
  • C. Create an IAM role allowing access from AWS Lambda.
    Assign the role to the DynamoDB table
  • D. Create an IAM role with the necessary permissions to access the DynamoDB table.
    Assign the role to the Lambda function.

Answer: D

 

NEW QUESTION 163
A company is le-architecting a strongly coupled application to be loosely coupled Previously the application used a request/response pattern to communicate between tiers. The company plans to use Amazon Simple Queue Service (Amazon SQS) to achieve decoupling requirements. The initial design contains one queue for requests and one for responses However, this approach is not processing all the messages as the application scales.
What should a solutions architect do to resolve this issue?

  • A. Create a queue for each request and response on startup for each producer, and use a correlation ID message attribute.
  • B. Configure a dead-letter queue on the ReceiveMessage API action of the SQS queue.
  • C. Configure a FIFO queue, and use the message deduplication ID and message group ID.
  • D. Create a temporary queue, with the Temporary Queue Client to receive each response message.

Answer: B

 

NEW QUESTION 164
A company runs an internal browser-based application The application runs on Amazon EC2 instances behind an Application Load Balancer.
The instances run in an Amazon EC2 Auto Scaling group across multiple Availability Zones.
The Auto Scaling group scales up to 20 instances during work hours, but scales down to 2 instances overnight Staff are complaining that the application is very slow when the day begins, although it runs well by mid-morning.
How should the scaling be changed to address the staff complaints and keep costs to a minimum?

  • A. Implement a target tracking action triggered at a lower CPU threshold and decrease the cooldown period
  • B. Implement a step scaling action triggered at a lower CPU threshold, and decrease the cooldown period
  • C. Implement a scheduled action that sets the desired capacity to 20 shortly before the office opens
  • D. Implement a scheduled action that sets the minimum and maximum capacity to 20 shortly before the office opens

Answer: C

Explanation:
Though this sounds like a good use case for scheduled actions, both answers using scheduled actions will have 20 instances running regardless of actual demand. A better option to be more cost effective is to use a target tracking action that triggers at a lower CPU threshold.
With this solution the scaling will occur before the CPU utilization gets to a point where performance is affected. This will result in resolving the performance issues whilst minimizing costs. Using a reduced cooldown period will also more quickly terminate unneeded instances, further reducing costs.

References:
https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-scaling-target-tracking.html

 

NEW QUESTION 165
A company must generate sales reports at the beginning of every month. The reporting process launches 20 Amazon EC2 instances on the first of the month. The process runs for 7 days and cannot be interrupted. The company wants to minimize costs.
Which pricing model should the company choose?

  • A. Spot Block Instances
  • B. Scheduled Reserved Instances
    D18912E1457D5D1DDCBD40AB3BF70D5D
  • C. Reserved Instances
  • D. On-Demand Instances

Answer: B

Explanation:
Explanation
Scheduled Reserved Instances (Scheduled Instances) enable you to purchase capacity reservations that recur on a daily, weekly, or monthly basis, with a specified start time and duration, for a one-year term. You reserve the capacity in advance, so that you know it is available when you need it. You pay for the time that the instances are scheduled, even if you do not use them. Scheduled Instances are a good choice for workloads that do not run continuously, but do run on a regular schedule. For example, you can use Scheduled Instances for an application that runs during business hours or for batch processing that runs at the end of the week.
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-scheduled-instances.html

 

NEW QUESTION 166
A company is building an application on Amazon EC2 instances that generates temporary transactional data. The application requires access to data storage that can provide configurable and consistent IOPS.
What should a solutions architect recommend?

  • A. Provision an EC2 instance with a General Purpose SSD (gp2) root volume. Configure the application to store its data in an Amazon S3 bucket.
  • B. Provision an EC2 instance with a General Purpose SSD (gp2) root volume and Provisioned IOPS SSD (io1) data volume.
  • C. Provision an EC2 instance with a Throughput Optimized HDD (st1) root volume and a Cold HDD (sc1) data volume.
  • D. Provision an EC2 instance with a Throughput Optimized HDD (st1) volume that will serve as the root and data volume.

Answer: D

 

NEW QUESTION 167
A company has data stored in an on-premises data center that is used by several on-premises applications.
The company wants to maintain its existing application environment and be able to use AWS services for data analytics and future visualizations.
Which storage service should a solutions architect recommend?

  • A. AWS Storage Gateway for files
  • B. Amazon Redshift
  • C. Amazon Elastic Block Store (Amazon EBS)
  • D. Amazon Elastic File System (Amazon EFS)

Answer: A

 

NEW QUESTION 168
A company's website is using an Amazon RDS MySQL Multi-AZ DB instance for its transactional data storage.
There are other internal systems that query this DB instance to fetch data for internal batch processing. The RDS DB instance slows down significantly the internal systems fetch data. This impacts the website's read and write performance, and the users experience slow response times.
Which solution will improve the website's performance?

  • A. Add a read replica to the RDS DB instance and configure the internal systems to query the read replica.
  • B. Add an additional Availability Zone to the current RDS MySQL Multi.AZ DB instance.
  • C. Use Amazon ElastiCache to cache the query responses for the website.
  • D. Use an RDS PostgreSQL DB instance instead of a MySQL database.

Answer: A

 

NEW QUESTION 169
A solutions architect is tasked with transferring 750 TB of data from a network-attached file system located at a branch office to Amazon S3 Glacier The solution must avoid saturating the branch office's low-bandwidth internet connection.
What is the MOST cost-effective solution?

  • A. Mount the network-attached file system to Amazon S3 and copy the files directly. Create a lifecycle policy to transition the S3 objects to Amazon S3 Glacier
  • B. Order 10 AWS Snowball appliances and select an S3 Glacier vault as the destination Create a bucket policy to enforce a VPC endpoint
  • C. Order 10 AWS Snowball appliances and select an Amazon S3 bucket as the destination. Create a lifecycle policy to transition the S3 objects to Amazon S3 Glacier Regional Limitations for AWS Snowball The AWS Snowball service has two device types, the standard Snowball and the Snowball Edge. The following table highlights which of these devices are available in which regions.
  • D. Create a site-to-site VPN tunnel to an Amazon S3 bucket and transfer the files directly Create a bucket policy to enforce a VPC endpoint

Answer: C

Explanation:

Limitations on Jobs in AWS Snowball
The following limitations exist for creating jobs in AWS Snowball:
For security purposes, data transfers must be completed within 90 days of the Snowball being prepared.
Currently, AWS Snowball Edge device doesn't support server-side encryption with customer-provided keys (SSE-C). AWS Snowball Edge device does support server-side encryption with Amazon S3-managed encryption keys (SSE-S3) and server-side encryption with AWS Key Management Service-managed keys (SSE-KMS). For more information, see Protecting Data Using Server-Side Encryption in the Amazon Simple Storage Service Developer Guide.
In the US regions, Snowballs come in two sizes: 50 TB and 80 TB. All other regions have the 80 TB Snowballs only. If you're using Snowball to import data, and you need to transfer more data than will fit on a single Snowball, create additional jobs. Each export job can use multiple Snowballs.
The default service limit for the number of Snowballs you can have at one time is 1. If you want to increase your service limit, contact AWS Support.
All objects transferred to the Snowball have their metadata changed. The only metadata that remains the same is filename and filesize. All other metadata is set as in the following example: -rw-rw-r-- 1 root root [filesize] Dec 31 1969 [path/filename] Object lifecycle management To manage your objects so that they are stored cost effectively throughout their lifecycle, configure their Amazon S3 Lifecycle. An S3 Lifecycle configuration is a set of rules that define actions that Amazon S3 applies to a group of objects. There are two types of actions:
Transition actions-Define when objects transition to another storage class. For example, you might choose to transition objects to the S3 Standard-IA storage class 30 days after you created them, or archive objects to the S3 Glacier storage class one year after creating them.
Expiration actions-Define when objects expire. Amazon S3 deletes expired objects on your behalf.
The lifecycle expiration costs depend on when you choose to expire objects.
https://docs.aws.amazon.com/snowball/latest/ug/limits.html
https://docs.aws.amazon.com/AmazonS3/latest/dev/object-lifecycle-mgmt.html

 

NEW QUESTION 170
A gaming company hosts a browser-based application on AWS The users of the application consume a large number of videos and images that are stored in Amazon S3. This content is the same for all users The application has increased in popularity, and millions of users worldwide are accessing these media files.
The company wants to provide the files to the users while reducing the load on the origin Which solution meets these requirements MOST cost-effectively?

  • A. Deploy an Amazon CloudFront web distribution in front of the S3 bucket
  • B. Deploy an Amazon ElastiCache for Redis instance in front of the web servers
  • C. Deploy an Amazon ElastiCache for Memcached instance in front of the web servers
  • D. Deploy an AWS Global Accelerator accelerator in front of the web servers

Answer: A

 

NEW QUESTION 171
A company recently implemented hybrid cloud connectivity using AWS Direct Connect and is migrating data to Amazon S3. The company is looking for a fully managed solution that will automate and accelerate the replication of data between the on-premises storage systems and AWS storage services.
Which solution should a solutions architect recommend to keep the data private?

  • A. Deploy an AWS Storage Gateway file gateway for the on-premises environment. Configure it to store data locally, and asynchronously back up point-in-time snapshots to AWS.
  • B. Deploy an AWS DataSync agent for the on-premises environment. Configure a sync job to replicate the data and connect it with an AWS service endpoint.
  • C. Deploy an AWS DataSync agent for the on-premises environment. Schedule a batch job to replicate point- in-time snapshots to AWS.
  • D. Deploy an AWS Storage Gateway volume gateway for the on-premises environment. Configure it to store data locally, and asynchronously back up point-in-time snapshots to AWS.

Answer: B

 

NEW QUESTION 172
A company hosts an application on multiple Amazon EC2 instances.
The application processes messages from an Amazon SQS queue writes to an Amazon RDS table and deletes the message from the queue Occasional duplicate records are found in the RDS table.
The SQS queue does not contain any duplicate messages.
What should a solutions archived do to ensure messages are being processed once only?

  • A. Use the ReceiveMessage API call to set an appropriate wait time.
  • B. Use the ChangeMessageVisibility API call to increase the visibility timeout
  • C. Use the AddPermission API call to add appropriate permissions
  • D. Use the CreateQueue API call to create a new queue

Answer: B

Explanation:
Keyword: SQS queue writes to an Amazon RDS
From this, Option D best suite & other Options ruled out [Option A - You can't intruduce one more Queue in the existing one; Option B - only Permission & Option C - Only Retrieves Messages] FIFO queues are designed to never introduce duplicate messages. However, your message producer might introduce duplicates in certain scenarios: for example, if the producer sends a message, does not receive a response, and then resends the same message. Amazon SQS APIs provide deduplication functionality that prevents your message producer from sending duplicates.
Any duplicates introduced by the message producer are removed within a 5-minute deduplication interval.
For standard queues, you might occasionally receive a duplicate copy of a message (at-least- once delivery). If you use a standard queue, you must design your applications to be idempotent (that is, they must not be affected adversely when processing the same message more than once).
CreateQueue - You can't change the queue type after you create it and you can't convert an existing standard queue into a FIFO queue. You must either create a new FIFO queue for your application or delete your existing standard queue and recreate it as a FIFO queue.
AddPermission - You create a queue, you have full control access rights for the queue. Only you, the owner of the queue, can grant or deny permissions to the queue.
ReceiveMessage - Retrieves one or more messages (up to 10), from the specified queue.
FIFO queues provide exactly-once processing, which means that each message is delivered once and remains available until a consumer processes it and deletes it.

Amazon SQS - Visibility Timeout

References:
https://aws.amazon.com/sqs/?nc2=h_ql_prod_ap_sqs
https://aws.amazon.com/sqs/faqs/
https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/FIFO- queues.html#FIFO-queues-exactly-once-processing
https://youtu.be/XrX7rb6M3jw
https://docs.aws.amazon.com/AWSSimpleQueueService/latest/APIReference/API_ChangeMessa geVisibility.html

 

NEW QUESTION 173
A solution architect is designing a shared storage solution for an Auto Scaling web application.
The company anticipates making frequent changes to the content, so the solution must have strong consistency.
Which solution requires the LEAST amount of effort?

  • A. Create an Amazon Elastic File system ( Amazon EFS ) file system and mount it on the individual Amazon EC2 instance
  • B. Create an Amazon S3 bucket to store the web content and use Amazon Cloudfront to deliver the content
  • C. Create a shared Amazon Elastic Block store (Amazon EBS) volume and mount it on the individual Amazon EC2 instance
  • D. Use AWS Datasync to perform continuous synchronization of data between Amazon EC2 hosts in the Auto scaling group.

Answer: A

 

NEW QUESTION 174
A company's website is used to sell products to the public.
The site runs on Amazon EC2 instances in an Auto Scaling group behind an Application Load Balancer (ALB).
There is also an Amazon CloudFront distribution and AWS WAF is being used to protect against SQL injection attacks.
The ALB is the origin for the CloudFront distribution.
A recent review of security logs revealed an external malicious IP that needs to be blocked from accessing the website.
What should a solutions architect do to protect the application?

  • A. Modify the network ACL on the CloudFront distribution to add a deny rule for the malicious IP address
  • B. Modify the configuration of AWS WAF to add an IP match condition to block the malicious IP address
  • C. Modify the network ACL for the EC2 instances in the target groups behind the ALB to deny the malicious IP address
  • D. Modify the security groups for the EC2 instances in the target groups behind the ALB to deny the malicious IP address

Answer: B

Explanation:
https://aws.amazon.com/blogs/aws/aws-web-application-firewall-waf-for-application- loadbalancers

 

NEW QUESTION 175
A solutions architect is designing a system to analyze the performance of financial markets while the markets are closed.
The system will run a series of compute-intensive jobs for 4 hours every night.
The time to complete the compute jobs is expected to remain constant, and jobs cannot be interrupted once started.
Once completed, the system is expected to run for a minimum of 1 year.
Which type of Amazon EC2 instances should be used to reduce the cost of the system?

  • A. Standard Reserved Instances
  • B. Spot Instances
  • C. Scheduled Reserved Instances
  • D. On-Demand Instances

Answer: C

 

NEW QUESTION 176
......

Exam Engine for SAA-C02 Exam Free Demo & 365 Day Updates: https://www.topexamcollection.com/SAA-C02-vce-collection.html

SAA-C02 PDF Questions and Testing Engine With 495 Questions: https://drive.google.com/open?id=15R2Qn-dS8vLpx31GadvhsytPQoroZzI5

Related Blogs

more
Amazon SAA-C02 Certification Practice Exam

TopExamCollection is a professional website offering the top pass-rate Exam Collection materials so that most of candidates feel our exam materials are helpful and help them pass exam casually in first time. If you want to study and prepare efficiently our Exam Collection should be your best products.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TOPEXAMCOLLECTION.COM. Privacy Policy

Disclaimer:
TopExamCollection material do not contain actual Business Architecture Guild Exam Questions or materials. TopExamCollection doesn't offer Real Amazon Exam Questions.
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
TopExamCollection does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. TopExamCollection does not own or claim any ownership on any of the brands.