Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 131–140 of 483

Q131

A company needs to ensure high availability for its web application deployed in two AWS regions. What combination of services is recommended?

  • A Amazon EC2 with Route 53
  • B Elastic Load Balancer and RDS
  • C CloudFront and S3
  • D AWS Direct Connect and VPC
Explanation Amazon EC2 with Route 53 offers failover and high availability across regions. Other options do not ensure the same level of availability.
Q132

You are configuring a security group for an EC2 instance. What happens when you remove an inbound rule that allows traffic from a specific IP?

  • A Traffic from that IP is blocked
  • B Traffic is allowed
  • C IP is permanently removed
  • D No impact on outgoing traffic
Explanation Removing an inbound rule blocks traffic from that specific IP. Other options misrepresent the functionality of security groups.
Q133

Which service allows you to manage encryption keys securely?

  • A AWS Key Management Service (KMS)
  • B AWS CloudTrail
  • C AWS Shield
  • D AWS Trusted Advisor
Explanation AWS KMS is specifically designed for managing cryptographic keys, while the others serve different purposes.
Q134

A company needs to improve application availability across multiple regions. What should they implement?

  • A Multi-AZ RDS
  • B Amazon S3
  • C Route 53 with latency-based routing
  • D AWS Direct Connect
Explanation Route 53's latency-based routing improves availability across regions by directing traffic to the best endpoint.
Q135

You are configuring a Lambda function with a timeout of 5 seconds. What happens if the function does not complete in time?

  • A It automatically extends the timeout
  • B The invocation returns an error
  • C The function retries automatically
  • D The function is terminated gracefully
Explanation If a Lambda function exceeds its timeout, it fails and returns an error instead of extending or retrying.
Q136

Which service provides managed relational databases?

  • A Amazon RDS
  • B Amazon S3
  • C AWS Lambda
  • D Amazon EC2
Explanation Amazon RDS offers managed relational database services, while the others serve different purposes.
Q137

A company needs to grant temporary access to its AWS resources for a third-party vendor. What is the best way to achieve this?

  • A Create IAM user
  • B Use IAM roles
  • C Enable AWS Config
  • D Share root account credentials
Explanation IAM roles allow temporary access for external entities, while the other options are less secure or permanent.
Q138

What happens when you use the AWS CLI to set a bucket policy for S3 that denies access to everyone?

  • A Access denied globally
  • B Only public access denied
  • C Bucket remains accessible
  • D Only owner can access
Explanation Setting a deny policy effectively restricts all access unless overridden, negating previous permissions.
Q139

Which AWS service is best for decoupling application components?

  • A Amazon SQS
  • B Amazon EC2
  • C AWS Lambda
  • D Amazon RDS
Explanation Amazon SQS allows asynchronous message queuing to decouple components, while the others are primarily compute or database services.
Q140

A company needs to analyze massive sets of data quickly. Which AWS service should they use?

  • A Amazon RDS
  • B Amazon Redshift
  • C Amazon SES
  • D Amazon S3
Explanation Amazon Redshift is a data warehouse optimized for OLAP, while the other services serve different purposes unrelated to analytics on massive datasets.