Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 31–40 of 483

Q31

Which service allows you to automate resource management using infrastructure as code?

  • A AWS CloudFormation
  • B Amazon CloudWatch
  • C AWS Lambda
  • D AWS IAM
Explanation AWS CloudFormation automates resource management using templates, while the others serve different purposes.
Q32

A company needs to securely store sensitive database credentials for its applications. What is the best solution?

  • A AWS Secrets Manager
  • B AWS S3 with encryption
  • C AWS EC2 user data
  • D AWS CloudTrail
Explanation AWS Secrets Manager is designed for managing sensitive credentials securely; the others are not intended for this purpose.
Q33

What happens when you disable a user's access key in AWS IAM?

  • A The user can still access services
  • B The user cannot access with that key
  • C The key is deleted permanently
  • D The user's permissions are revoked
Explanation Disabling access keys stops their use, while the other options are incorrect interpretations of access key management.
Q34

Which AWS service is best for storing large amounts of unstructured data?

  • A Amazon S3
  • B Amazon RDS
  • C AWS Lambda
  • D Amazon EBS
Explanation Amazon S3 is designed for vast amounts of unstructured data, while others are not optimized for this type.
Q35

A company needs to securely share application resources within its VPC based on user roles. Which service should they use?

  • A Amazon EC2
  • B AWS IAM
  • C AWS CloudFormation
  • D Amazon VPC Peering
Explanation AWS IAM allows fine-grained control over roles and permissions for accessing application resources securely.
Q36

What happens when you terminate an EC2 instance with an EBS root volume?

  • A Data on EBS is preserved
  • B EBS volume is deleted
  • C Instance stops functioning
  • D Data is retained in instance store
Explanation Terminating an EC2 instance with an EBS root volume usually deletes the root EBS volume, unless configured otherwise.
Q37

Which service allows you to run code without provisioning servers?

  • A AWS Lambda
  • B EC2 Instances
  • C S3 Storage
  • D RDS Database
Explanation AWS Lambda runs code in response to events without the need for server management, while EC2, S3 and RDS require provisioning and managing resources.
Q38

A company needs to ensure its EC2 instances can only access specific S3 buckets. What should be used?

  • A IAM Role
  • B Security Group
  • C Network ACL
  • D VPC Peering
Explanation An IAM Role can provide specific permissions to EC2 instances for accessing S3, whereas other options manage network controls, not permissions.
Q39

You are configuring an Auto Scaling group. What happens if there are multiple health checks failing?

  • A Instances are terminated immediately
  • B Scaling does not occur
  • C Instances are replaced after cooldown
  • D Health checks are ignored
Explanation Failed health checks lead to instances being replaced after cooldown, ensuring continuous availability, whereas other options misrepresent how scaling groups respond to health checks.
Q40

Which service allows you to create an isolated network in AWS?

  • A Amazon VPC
  • B AWS CloudFormation
  • C AWS Transit Gateway
  • D AWS Direct Connect
Explanation Amazon VPC creates isolated networks, while others serve different networking needs.