Amazon AWS

AWS Certified Solutions Architect – Professional

SAP-C02
Popular

The AWS Certified Solutions Architect – Professional (SAP-C02) exam validates advanced skills in designing distributed systems on AWS. It is ideal for experienced architects looking to demonstrate their expertise.

485 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 411–420 of 485

Q411

You are configuring a CloudFormation stack. What happens if you update a stack but reference a deleted resource?

  • A The stack update will fail.
  • B CloudFormation recreates the resource.
  • C CloudFormation skips the resource.
  • D The stack updates successfully.
Explanation If a mandatory resource is deleted, the update will fail, enforcing the integrity of the stack configuration.
Q412

Which service allows for infrastructure as code in AWS?

  • A AWS CloudFormation
  • B AWS IAM
  • C AWS Lambda
  • D AWS Direct Connect
Explanation AWS CloudFormation enables defining infrastructure as code, while others serve different purposes.
Q413

A company needs to analyze streaming data in real-time. Which AWS service should they use?

  • A Amazon Redshift
  • B Amazon Kinesis
  • C AWS Glue
  • D Amazon S3
Explanation Amazon Kinesis is designed for real-time data processing, unlike others which focus on different data scenarios.
Q414

What happens when an EC2 instance is stopped?

  • A Data on the root volume persists
  • B Instance is deleted permanently
  • C Public IP is retained
  • D Instance cannot be restarted
Explanation Stopping an EC2 instance retains data on the root volume, unlike the other options.
Q415

Which service allows you to run Docker containers at scale?

  • A Amazon S3
  • B Amazon ECS
  • C AWS Lambda
  • D Amazon RDS
Explanation Amazon ECS is designed for container orchestration, while S3 is for storage, Lambda for serverless, and RDS for databases.
Q416

A company needs to ensure encryption of data in transit for its web applications. Which AWS service provides this capability?

  • A AWS Shield
  • B AWS WAF
  • C AWS Certificate Manager
  • D AWS CloudTrail
Explanation AWS Certificate Manager manages SSL/TLS certificates for encryption in transit, while Shield and WAF provide protection and CloudTrail is for logging.
Q417

What happens when you use AWS Auto Scaling with a scaling policy that triggers based on low CPU utilization?

  • A Instances are added for high demand
  • B Instances are removed during low demand
  • C No change occurs
  • D Load balancer is deactivated
Explanation The policy reduces instances during low CPU, while option A adds instances for high demand, and C and D are incorrect actions for scaling.
Q418

Which service allows for automatic distribution of incoming application traffic?

  • A Amazon Route 53
  • B AWS Elastic Load Balancing
  • C Amazon CloudFront
  • D AWS Direct Connect
Explanation AWS Elastic Load Balancing automatically distributes incoming traffic, while the others serve different purposes.
Q419

A company needs to ensure its data in S3 remains encrypted at rest and in transit. What should they implement?

  • A AWS Key Management Service and SSL
  • B CloudTrail for auditing
  • C IAM policies for encryption
  • D S3 Lifecycle policies
Explanation AWS KMS provides encryption keys, and SSL ensures data is encrypted in transit; other options do not ensure both types of encryption.
Q420

You are configuring a multi-Region application with Amazon RDS. What potentially increases costs?

  • A Using Cross-Region Replication
  • B Setting up read replicas
  • C Potential data transfer fees
  • D Implementing backups
Explanation Cross-Region data transfers incur costs, while other options may have associated but not necessarily increased costs.