Amazon AWS

AWS Certified Solutions Architect – Professional

SAP-C02
Popular

The AWS Certified Solutions Architect – Professional (SAP-C02) exam validates advanced skills in designing distributed systems on AWS. It is ideal for experienced architects looking to demonstrate their expertise.

485 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 421–430 of 485

Q421

Which AWS service is primarily used for event-driven applications?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon S3
  • D AWS CloudFormation
Explanation AWS Lambda executes code in response to events, while the others do not primarily focus on event-driven architecture.
Q422

A company needs low-latency access to its applications in multiple regions. Which AWS service should they configure for this?

  • A Amazon SNS
  • B Amazon Route 53
  • C AWS CloudFront
  • D Amazon DynamoDB
Explanation Amazon Route 53 provides DNS routing, which can direct users to the nearest application instance, while the others serve different purposes.
Q423

What happens when an AWS Lambda function exceeds its timeout setting?

  • A Function automatically retries on its own
  • B Lambda function fails and returns error
  • C Data is lost in execution state
  • D Function pauses without errors
Explanation The function fails due to timeout, while the others either imply incorrect behaviors or outcomes.
Q424

Which service can store large amounts of data securely and durably for backup and restore operations?

  • A Amazon S3
  • B Amazon RDS
  • C AWS Glue
  • D Amazon CloudFront
Explanation Amazon S3 is designed for durable storage, while the others serve different roles.
Q425

A company needs to allow users from external business partners to access AWS resources temporarily. What is the best approach?

  • A IAM Roles with SAML
  • B IAM Users with Admin Access
  • C EC2 Instance Profiles
  • D Security Groups
Explanation IAM Roles with SAML provide secure temporary access, unlike the other options which are less secure for external users.
Q426

You are configuring an Amazon RDS instance. What happens if you set the Multi-AZ configuration to 'true'?

  • A RDS replicates data in two DBs
  • B RDS lowers performance significantly
  • C Data gets encrypted automatically
  • D Snapshots are taken daily
Explanation True Multi-AZ ensures high availability with data redundancy, the others do not pertain to this feature.
Q427

Which service allows for automated scaling of EC2 instances?

  • A Auto Scaling
  • B Elastic Load Balancing
  • C Amazon RDS
  • D CloudFormation
Explanation Auto Scaling dynamically adjusts EC2 capacity; the others do not provide this functionality.
Q428

A company needs to securely provide temporary AWS credentials to applications running on EC2. Which AWS service should they use?

  • A IAM Roles
  • B AWS Secrets Manager
  • C Amazon Cognito
  • D EC2 Key Pairs
Explanation IAM Roles provide temporary credentials for EC2 instances; others do not offer this capability for EC2 directly.
Q429

What happens when an organization uses an Amazon S3 bucket policy to allow public access to specific objects but disables public access at the account level?

  • A Public access is granted to objects.
  • B Public access is restricted by the account.
  • C Objects become private automatically.
  • D Bucket policy overrides account settings.
Explanation Account-level public access settings take precedence over bucket policies limiting public access regardless of the policy.
Q430

Which service provides managed Kubernetes clusters?

  • A Amazon EKS
  • B Amazon ECS
  • C AWS Lambda
  • D AWS Batch
Explanation Amazon EKS is specifically designed for managing Kubernetes clusters, while the others serve different purposes.