Amazon AWS

AWS Certified Solutions Architect – Professional

SAP-C02
Popular

The AWS Certified Solutions Architect – Professional (SAP-C02) exam validates advanced skills in designing distributed systems on AWS. It is ideal for experienced architects looking to demonstrate their expertise.

485 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 231–240 of 485

Q231

What happens when an EC2 instance is stopped and started again?

  • A IP Address remains the same
  • B Data on ephemeral storage is lost
  • C Instance type can no longer be changed
  • D All EBS volumes are deleted
Explanation Ephemeral storage is ephemeral; other options reflect incorrect behaviors of EC2 instances.
Q232

Which service allows you to create serverless applications?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon RDS
  • D AWS CloudFormation
Explanation AWS Lambda enables running code without provisioning servers, while others do not provide serverless functionality.
Q233

A company needs to store non-relational data with high scalability. Which AWS service should they use?

  • A Amazon S3
  • B Amazon DynamoDB
  • C Amazon RDS
  • D Amazon Aurora
Explanation Amazon DynamoDB is a managed NoSQL database that provides high scalability, whereas the others are not non-relational databases.
Q234

What happens when an EC2 instance is stopped and started again?

  • A IP address remains the same
  • B Data on instance store is lost
  • C Instance type cannot change
  • D Root volume is deleted
Explanation Stopping an EC2 instance loses all data on instance store volumes, while other options are incorrect under this behavior.
Q235

A company needs to host a website with rapid scaling needs. Which service should they choose?

  • A Amazon EC2 Auto Scaling
  • B AWS Lambda
  • C Amazon S3
  • D AWS CloudFormation
Explanation Amazon EC2 Auto Scaling effectively adjusts capacity, while AWS Lambda is for serverless compute, S3 is for storage, and CloudFormation is for infrastructure as code.
Q236

What happens when a VPC's route table does not contain a route to the internet?

  • A Instances cannot access the internet
  • B Instances can access the internet
  • C VPC automatically creates a route
  • D Internet connection is restricted by default
Explanation Without a route to the internet in the route table, instances are isolated from public access, while options B and C are incorrect assumptions.
Q237

You are configuring an IAM policy that grants full access to S3 resources. Which of the following actions MUST be included?

  • A s3:PutObject
  • B s3:GetBucket
  • C s3:ListAllMyBuckets
  • D s3:UpdateBucketPolicy
Explanation s3:PutObject is required for uploading, while B and C are about listing and buckets permissions, and D does not pertain to general S3 access.
Q238

Which service provides scalable DNS management?

  • A Route 53
  • B CloudTrail
  • C GuardDuty
  • D VPC
Explanation Route 53 enables scalable DNS management while others serve different purposes.
Q239

A company needs to store sensitive data compliant with HIPAA. Which service should they use?

  • A S3 Standard
  • B S3 Glacier
  • C S3 with Encryption at Rest
  • D S3 Intelligent-Tiering
Explanation S3 with Encryption at Rest ensures compliance with HIPAA for sensitive data, as other options lack necessary security features.
Q240

What happens when you modify a security group by adding new rules?

  • A Existing connections are reset
  • B New rules apply only to new connections
  • C All traffic is immediately denied
  • D Rules only affect inbound traffic
Explanation New rules apply only to new connections; existing connections are unaffected, while the other options misrepresent security group behaviors.