Amazon AWS

AWS Certified Solutions Architect – Associate

SAA-C03
Popular Trending

The AWS Certified Solutions Architect – Associate (SAA-C03) exam tests your ability to design distributed systems on AWS. It is one of the most sought-after certifications in the cloud domain.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 471–480 of 483

Q471

A company needs to ensure their S3 buckets are more secure. What happens when you enable S3 Block Public Access?

  • A Allows all public access.
  • B Prevents public access controls.
  • C Enables versioning for files.
  • D Changes bucket names.
Explanation Enabling S3 Block Public Access prevents any public access controls on the buckets, securing them from public reach.
Q472

Which service provides detailed monitoring of AWS resources?

  • A AWS CloudTrail
  • B Amazon CloudWatch
  • C AWS Config
  • D AWS Lambda
Explanation Amazon CloudWatch is designed for resource monitoring, while the others serve different functions.
Q473

A company needs to securely share files between its employees. Which service should it use?

  • A Amazon S3
  • B AWS EFS
  • C Amazon WorkDocs
  • D AWS FSx
Explanation Amazon WorkDocs is purpose-built for secure document sharing, while the others focus more on storage.
Q474

What happens when you reduce an EC2 instance size while it’s running?

  • A The instance shuts down immediately
  • B It fails if it’s under load
  • C You must stop it first
  • D The size change is applied instantly
Explanation You must stop the instance to change its size; otherwise, it cannot be resized.
Q475

Which service provides serverless data lakes on AWS?

  • A AWS Lake Formation
  • B Amazon RDS
  • C Amazon EC2
  • D AWS Snowball
Explanation AWS Lake Formation simplifies building data lakes; others do not serve this purpose.
Q476

A company wants to restrict access to its S3 bucket to specific IP addresses. Which AWS service should be used?

  • A IAM Policies
  • B VPC Peering
  • C S3 Bucket Policies
  • D AWS Organizations
Explanation S3 Bucket Policies can restrict access based on IPs, while others cannot.
Q477

What happens when a resource in an AWS account is marked as 'tagged'?

  • A Resource is hidden from users
  • B Resource can be cost-allocated
  • C Resource becomes unmodifiable
  • D Resource is automatically backed up
Explanation Tagging a resource helps in cost allocation, while others are incorrect outcomes of tagging.
Q478

Which service allows you to run code without provisioning servers?

  • A AWS Lambda
  • B Amazon EC2
  • C AWS Elastic Beanstalk
  • D Amazon S3
Explanation AWS Lambda runs code in response to events without server management, while the others require server provisioning or management.
Q479

A company needs to ensure that its data in S3 is protected as it is transferred over the internet. What should they enable?

  • A S3 Versioning
  • B S3 Bucket Policy
  • C S3 Transfer Acceleration
  • D S3 Encryption in Transit
Explanation Enabling S3 Encryption in Transit protects data while being transferred, while others do not specifically focus on data transfer protection.
Q480

What happens when an EC2 instance initialized with a default VPC is started?

  • A It connects to a public IP automatically.
  • B It uses an Elastic IP by default.
  • C It cannot access the internet.
  • D It is only accessible via VPN.
Explanation A default VPC assigns a public IP upon launch, while the others are incorrect regarding default behavior for a default VPC instance.