Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 101–110 of 483

Q101

You are configuring a VPC with public and private subnets. Which component is essential for private subnet to access the internet?

  • A Internet Gateway
  • B NAT Gateway
  • C VPC Peering
  • D Direct Connect
Explanation A NAT Gateway allows instances in a private subnet to initiate outbound traffic to the internet, while others do not provide this functionality.
Q102

A company needs to ensure that its EC2 instances can automatically scale based on CPU utilization. What should they implement?

  • A Elastic Load Balancer
  • B Amazon CloudWatch
  • C Auto Scaling Group
  • D Amazon Route 53
Explanation An Auto Scaling Group automatically adjusts instance count based on metrics like CPU utilization, while the others do not directly manage scaling.
Q103

Which service provides Object Storage in AWS?

  • A Amazon S3
  • B Amazon RDS
  • C Amazon EFS
  • D Amazon EC2
Explanation Amazon S3 is designed specifically for object storage; RDS is for relational databases, EFS is for file storage, and EC2 is a compute service.
Q104

A company needs to protect test data from being accessed by unauthorized users. What should they implement?

  • A IAM roles
  • B VPC peering
  • C S3 bucket policy
  • D EC2 instances
Explanation An S3 bucket policy allows fine-grained access control to protect data; IAM roles control authorization but don’t help with bucket access directly.
Q105

What happens when you launch an Amazon EC2 Instance without a security group?

  • A Instance cannot be launched
  • B Instance is launched with default rules
  • C No network connectivity available
  • D Instance remains stopped
Explanation If no security group is specified, the instance will be launched with the default security group rules, allowing basic traffic.
Q106

What happens to an instance in an Auto Scaling group after a scheduled scaling action is completed?

  • A Instance is automatically terminated
  • B Instance health is re-evaluated
  • C Scheduled action is deleted
  • D Instance remains in stopped state
Explanation The instance health is re-evaluated to ensure it meets the criteria.
Q107

A company needs to ensure that sensitive data in S3 cannot be accessed by unauthorized users. Which service should they use?

  • A AWS CloudTrail
  • B IAM Policies
  • C S3 Versioning
  • D AWS X-Ray
Explanation IAM Policies control user and service access to S3 resources.
Q108

You are configuring an AWS Lambda function for image processing that requires various permissions. Which AWS service can you use to manage permissions for this function?

  • A AWS Secrets Manager
  • B AWS IAM Roles
  • C AWS Lambda Layers
  • D AWS CloudFormation
Explanation AWS IAM Roles provide the necessary permissions for Lambda functions.
Q109

Which AWS service allows you to create virtual, scalable, and segregated compute resources in the cloud?

  • A EC2
  • B RDS
  • C S3
  • D Lambda
Explanation EC2 provides virtual servers, unlike RDS, S3, and Lambda which serve different purposes.
Q110

A customer needs to migrate a large amount of data from on-premises storage to S3. What is the fastest way to do this?

  • A AWS Snowball
  • B AWS Direct Connect
  • C S3 Transfer Acceleration
  • D CLI Tools
Explanation AWS Snowball is designed for large data transfers efficiently, unlike Direct Connect and S3 Transfer Acceleration which serve different use cases.