Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 461–470 of 483

Q461

A company needs to enable MFA for IAM user access. What should they implement?

  • A IAM policies
  • B AWS Secrets Manager
  • C AWS Control Tower
  • D IAM MFA Device
Explanation IAM MFA Devices specifically enforce multi-factor authentication for IAM users, unlike the other options.
Q462

What happens when an S3 bucket policy denies access to all users?

  • A Public access is allowed
  • B Access can be granted via ACLs
  • C No object can be accessed
  • D MFA must be used for access
Explanation When a bucket policy denies access, all operations are forbidden on that bucket, regardless of ACLs.
Q463

Which service is optimal for real-time analytics on streaming data?

  • A Amazon Kinesis
  • B Amazon RDS
  • C AWS Lambda
  • D Amazon EC2
Explanation Amazon Kinesis is specifically designed for real-time streaming data analytics, while the others serve different purposes.
Q464

A company needs to securely store secrets used by their applications. Which AWS service should they use?

  • A AWS Secret Manager
  • B AWS S3
  • C IAM Policies
  • D AWS Cognito
Explanation AWS Secret Manager provides a secure way to manage sensitive information, while the others do not focus on secret management.
Q465

You are configuring a VPC and want to allow resources to communicate with each other securely. What should you use?

  • A NAT Gateway
  • B VPC Peering
  • C Security Groups
  • D Internet Gateway
Explanation Security Groups act as virtual firewalls to control traffic within a VPC, while the others serve different connectivity purposes.
Q466

Which service helps to automate the deployment of applications in AWS?

  • A AWS CodeDeploy
  • B AWS IAM
  • C AWS CloudFormation
  • D AWS DMS
Explanation AWS CodeDeploy automates application deployments, while others serve different functions in AWS.
Q467

A company needs to configure access for multiple users in different departments but maintain strict control. What should they use?

  • A IAM User Groups
  • B IAM Roles
  • C IAM Policies
  • D Attribute-Based Access Control
Explanation IAM User Groups simplify management of permissions for multiple users, while other options do not group users effectively.
Q468

You are configuring an Elastic Load Balancer (ELB) with health checks. What happens when a registered instance fails health checks?

  • A Instance is terminated
  • B Traffic is redirected to it
  • C Instance is marked as unhealthy
  • D Instance is unregistered
Explanation An unhealthy instance is marked by ELB, allowing traffic to avoid it, unlike the other options which are incorrect scenarios.
Q469

Which service provides an in-memory caching solution?

  • A Amazon ElastiCache
  • B Amazon RDS
  • C Amazon EC2
  • D Amazon S3
Explanation Amazon ElastiCache is specifically designed for in-memory caching, while others serve different purposes.
Q470

You are configuring CloudFront for a web application. What is the primary purpose of setting up an origin?

  • A To define data retention policies.
  • B To serve as a source for content.
  • C To enhance security via IAM.
  • D To limit data transfer size.
Explanation An origin acts as the source for content delivery via CloudFront, while other options do not pertain to its core functionality.