Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 371–380 of 483

Q371

A company needs to secure their API, ensuring only authorized users can access it. What is the best practice?

  • A Use VPC Security Groups
  • B Implement API Keys
  • C Use AWS IAM Roles
  • D Enable CORS settings
Explanation Implementing AWS IAM Roles provides fine-grained access control for APIs, unlike the other options.
Q372

You are configuring an RDS instance. What happens when you enable Multi-AZ deployments?

  • A Performance doubles immediately
  • B Automatic failover for high availability
  • C Backups are stored in S3
  • D Increased storage limit available
Explanation Enabling Multi-AZ provides high availability through automatic failover; others do not apply.
Q373

Which AWS service is best for real-time stream processing?

  • A Amazon Kinesis
  • B Amazon S3
  • C AWS Lambda
  • D Amazon EC2
Explanation Amazon Kinesis is specifically designed for real-time data streaming, while the others serve different purposes.
Q374

A company needs to control API access to Lambda functions. What should they use?

  • A IAM Roles
  • B Amazon S3 Bucket Policy
  • C CloudFormation Policy
  • D Lambda Deployment Package
Explanation IAM Roles provide the necessary access control, while the others do not govern API access for Lambda.
Q375

What happens when an EC2 instance is stopped?

  • A Data on ephemeral storage is lost
  • B Elastic IP is released automatically
  • C Instance ID changes
  • D All data remains intact
Explanation Ephemeral storage is temporary and lost on stop, while the instance ID remains and Elastic IP is retained if attached.
Q376

Which AWS service is used for real-time monitoring of resources?

  • A Amazon CloudWatch
  • B AWS IAM
  • C Amazon S3
  • D AWS Lambda
Explanation Amazon CloudWatch is specifically designed for real-time monitoring, while IAM manages access control and S3 is a storage service.
Q377

A company needs to limit access to S3 buckets based on IP addresses. Which feature should they use?

  • A IAM Policies
  • B Bucket Policies
  • C VPC Peering
  • D S3 Transfer Acceleration
Explanation Bucket Policies can specify conditions like IP addresses, while IAM Policies apply to users and roles.
Q378

What happens when you set a Lambda function timeout to 30 seconds?

  • A Function stops after 30s.
  • B Function runs for 60s max.
  • C Function is immediately terminated.
  • D Function will log for 30s.
Explanation The function will stop executing once the timeout reaches 30 seconds, while B and C are incorrect interpretations.
Q379

Which AWS service can handle large-scale event-driven applications?

  • A AWS Lambda
  • B Amazon S3
  • C AWS CloudTrail
  • D Amazon RDS
Explanation AWS Lambda is designed for serverless event-driven applications; S3 stores data, CloudTrail monitors API calls, and RDS is for databases.
Q380

A company needs to manage access to AWS resources at a granular level. Which service should they use?

  • A AWS Identity and Access Management (IAM)
  • B AWS Simple Notification Service (SNS)
  • C Amazon CloudWatch
  • D AWS Config
Explanation IAM allows detailed permissions management; SNS is for notifications, CloudWatch for monitoring, and Config for resource compliance.