Amazon AWS

AWS Certified Solutions Architect – Professional

SAP-C02
Popular

The AWS Certified Solutions Architect – Professional (SAP-C02) exam validates advanced skills in designing distributed systems on AWS. It is ideal for experienced architects looking to demonstrate their expertise.

485 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 101–110 of 485

Q101

A company needs a highly available website with minimal downtime. Which service should they use?

  • A Single EC2 Instance
  • B Amazon Route 53
  • C Elastic Load Balancing
  • D AWS Systems Manager
Explanation Elastic Load Balancing distributes traffic to multiple instances, enhancing availability compared to a single EC2 instance.
Q102

You are configuring an S3 bucket with public access permissions. What happens if Block Public Access is enabled?

  • A Public access is allowed.
  • B All uploads are public.
  • C Public access is blocked.
  • D Bucket becomes private only.
Explanation If Block Public Access is enabled, it prevents any public access, overriding individual object permissions.
Q103

Which AWS service analyzes and visualizes streaming data in real-time?

  • A Amazon Kinesis
  • B Amazon S3
  • C Amazon RDS
  • D AWS CloudTrail
Explanation Amazon Kinesis is designed for real-time data processing, while S3 is for storage, RDS is for relational databases, and CloudTrail logs AWS API calls.
Q104

A company needs to provide temporary access to AWS resources for external vendors. Which AWS service should they use?

  • A AWS IAM Roles
  • B AWS Organizations
  • C Amazon VPC
  • D Amazon Cognito
Explanation AWS IAM Roles allow temporary access to AWS resources, while Organizations manages accounts, VPC deals with networking, and Cognito is for user sign-in.
Q105

What happens when a CloudFront distribution is invalidated?

  • A Cache is removed from edge locations
  • B Origin data is deleted
  • C Website goes offline temporarily
  • D CDN traffic is stopped
Explanation Invalidation removes cached objects from edge locations, while origin data is unaffected, the site remains online, and CDN traffic continues.
Q106

Which service would you use to analyze large data sets stored in S3 without provisioning infrastructure?

  • A AWS Lambda
  • B Amazon Athena
  • C Amazon RDS
  • D AWS Glue
Explanation Amazon Athena allows for serverless SQL queries on S3 data; Lambda is for functions, RDS is for relational databases, and Glue is for ETL processing.
Q107

A company needs to enable high availability for their web application across two AWS regions. Which architecture should they adopt?

  • A Single Region, Multi-AZ
  • B Multi-Region, DNS Failover
  • C Single Region, Elastic Load Balancer
  • D Multi-Account Architecture
Explanation Multi-Region with DNS failover provides redundancy; Multi-AZ is for a single region, while Single Region setups do not ensure cross-region availability.
Q108

What happens when you configure an AWS EBS volume with encryption using an AWS KMS key?

  • A Data cannot be accessed
  • B Encryption keys are user-managed
  • C Encryption is automatic and seamless
  • D Volume access is restricted to IAM users only
Explanation EBS encryption is automatic and seamless; options A, B, and D are incorrect as encryption does not restrict access nor require manual key management.
Q109

Which service is best for real-time data streaming?

  • A Amazon Kinesis
  • B AWS Glue
  • C AWS S3
  • D Amazon RDS
Explanation Amazon Kinesis is designed for real-time streams, while the others focus on batch processing or storage.
Q110

A company needs to migrate a large on-premises database to AWS with minimal downtime. Which service should they use?

  • A AWS Database Migration Service
  • B Amazon RDS
  • C AWS Snowball
  • D AWS Direct Connect
Explanation AWS Database Migration Service aids in minimally disruptive migrations, while the others do not serve this specific purpose.