Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 161–170 of 483

Q161

A company needs to ensure that an EC2 instance can only access a specific S3 bucket. What is the best approach?

  • A Set S3 bucket policy
  • B Use IAM role with permissions
  • C Modify instance security group
  • D Create a VPC endpoint
Explanation Attaching an IAM role grants the instance specific permissions including access to the S3 bucket.
Q162

What happens when an EC2 instance is stopped?

  • A All data is lost
  • B The instance loses its IP
  • C The instance state is preserved
  • D The data on EBS is deleted
Explanation Stopping an EC2 instance releases its public IP and maintains data on EBS, but does not delete it.
Q163

Which service provides serverless compute power in AWS?

  • A AWS Lambda
  • B EC2 Instances
  • C Elastic Beanstalk
  • D Amazon Lightsail
Explanation AWS Lambda is specifically designed for serverless computing, whereas the others require server management or provisioning.
Q164

A company needs to manage access to AWS services across multiple accounts. Which AWS service should they use?

  • A AWS Organizations
  • B IAM Roles
  • C AWS Config
  • D CloudTrail
Explanation AWS Organizations allows for centralized management and governance of multiple AWS accounts, whereas the others manage security and monitoring within a single account.
Q165

What happens when a user loses their MFA device while accessing AWS?

  • A Access is permanently revoked
  • B User must reset their password
  • C User can access IAM roles
  • D User must use backup codes
Explanation Users can use backup codes for MFA recovery, while the other options imply irreversible actions not applicable in this scenario.
Q166

Which service is best for serverless code execution?

  • A AWS Lambda
  • B EC2
  • C ECS
  • D S3
Explanation AWS Lambda is designed for serverless execution, while the others require server management, making them less suitable.
Q167

A company needs to ensure highly available applications across multiple regions. What should they use?

  • A Global Accelerator
  • B Route 53 Failover
  • C Elastic Load Balancer
  • D CloudFront
Explanation Route 53 Failover provides failover for applications, while the others focus on speed, distribution, or balancing workloads.
Q168

You are configuring an S3 bucket for static website hosting. What is required for public access?

  • A IAM Role Permissions
  • B Bucket policy for public read
  • C CloudFront Configuration
  • D VPC Endpoints
Explanation A bucket policy that grants public read permissions is required, unlike the other choices that do not directly enable website access.
Q169

Which service provides a fully managed NoSQL database?

  • A Amazon DynamoDB
  • B Amazon RDS
  • C Amazon Redshift
  • D Amazon Aurora
Explanation DynamoDB is specifically designed as a fully managed NoSQL database, while RDS and Aurora are relational databases and Redshift is a data warehouse.
Q170

A company needs to securely share data across its VPCs. Which service should they use?

  • A AWS Direct Connect
  • B AWS VPN
  • C AWS Resource Access Manager
  • D Amazon EC2
Explanation AWS Resource Access Manager enables secure resource sharing across VPCs, while Direct Connect and VPN are for connectivity and EC2 is a compute service.