Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 281–290 of 483

Q281

A company needs to transfer large amounts of data into AWS without incurring high transfer costs. What should they use?

  • A AWS Snowball
  • B AWS Direct Connect
  • C Amazon S3 Transfer Acceleration
  • D AWS DataSync
Explanation AWS Snowball is designed for transferring large data volumes cost-effectively; the others are less suited for this specific requirement.
Q282

What happens when you change an IAM user’s permissions with an explicit deny?

  • A Permission remains unchanged
  • B All access is denied
  • C Permissions are granted anyway
  • D User's previous permissions are retained
Explanation An explicit deny takes precedence and overrides any allow policy; the other options incorrectly assume deny has no effect.
Q283

You are configuring an Amazon RDS instance for a production application. What is the main benefit of enabling Multi-AZ deployments?

  • A Improved read performance
  • B Automatic failover
  • C Reduced cost
  • D Better data encryption
Explanation Multi-AZ provides automatic failover to a replica in a different AZ for high availability and durability.
Q284

A company needs to store temporary files that can be quickly accessed and do not need to be durable. Which service is most appropriate?

  • A S3 Standard
  • B Amazon EFS
  • C S3 Intelligently Tiered
  • D Amazon S3 One Zone-IA
Explanation S3 One Zone-IA is ideal for infrequent access at lower cost but without durability.
Q285

What happens when you enable AWS CloudTrail in a region?

  • A Logs API calls across all regions
  • B Logs only S3 bucket activity
  • C Logs write activities only
  • D Logs API calls within that region
Explanation CloudTrail logs API calls made within the enabled region only.
Q286

Which service integrates machine learning for predictive insights on AWS?

  • A Amazon SageMaker
  • B Amazon RDS
  • C AWS Lambda
  • D Amazon CloudFront
Explanation Amazon SageMaker is designed specifically for building, training, and deploying machine learning models, while the others serve different purposes.
Q287

A company needs to allow web users access to their S3 bucket while keeping files private. What should they implement?

  • A S3 Block Public Access
  • B S3 Pre-signed URLs
  • C S3 Access Control Lists
  • D S3 Transfer Acceleration
Explanation S3 Pre-signed URLs grant temporary access to private objects, while the others do not achieve the same goal.
Q288

What happens when you disable an IAM user’s access keys?

  • A User can still access AWS resources
  • B User cannot access AWS resources
  • C User's permissions are revoked
  • D User can reset their keys
Explanation Disabling access keys prevents the user from performing actions using the API, while the others do not accurately describe the result.
Q289

Which service allows for automatic scaling of EC2 instances?

  • A Auto Scaling
  • B Elastic Load Balancing
  • C AWS Lambda
  • D Amazon RDS
Explanation Auto Scaling automatically adjusts the number of EC2 instances, while the others serve different purposes.
Q290

A company needs real-time data processing for IoT devices. Which service should they use?

  • A AWS Glue
  • B Amazon Kinesis
  • C Amazon S3
  • D AWS Backup
Explanation Amazon Kinesis is designed for real-time data processing, unlike the other options.