Free Online Amazon SAA-C03 Practice Test

Prepare Your Amazon SAA-C03 Exam Questions with Free online SAA-C03 Practice Test. Get Brilliant AWS Certified Solutions Architect - Associate Exam Results with Valid SAA C03 Exam Dumps.

Page: 1 / 196

Total 979 Questions | Updated On: Apr 22, 2024

Question 1

An Amazon EC2 administrator created the following policy associated with an IAM group containing several users:

What is the effect of this policy?

A : Users can terminate an EC2 instance in any AWS Region except us-east-1.

B : Users can terminate an EC2 instance with the IP address 10.100.100.1 in the us-east-1 Region

C : Users can terminate an EC2 instance in the us-east-1 Region when the user's source IP is 10.100.100.254.

D : Users cannot terminate an EC2 instance in the us-east-1 Region when the user's source IP is 10.100.100.254.

Answer: C

Question 2

A company recently launched a variety of new workloads on Amazon EC2 instances in its AWS account. The company needs to create a strategy to access and administer the instances remotely and securely. The company needs to implement a repeatable process that works with native AWS services and follows the AWS Well-Architected Framework. Which solution will meet these requirements with the LEAST operational overhead?

A : Use the EC2 serial console to directly access the terminal interface of each instance for administration.

B : Attach the appropriate IAM role to each existing instance and new instance. Use AWS Systems Manager Session Manager to establish a remote SSH session.

C : Create an administrative SSH key pair. Load the public key into each EC2 instance. Deploy a bastion host in a public subnet to provide a tunnel for administration of each instance.

D : Establish an AWS Site-to-Site VPN connection. Instruct administrators to use their local on-premises machines to connect directly to the instances by using SSH keys across the VPN tunnel.

Answer: B

Question 3

A company stores call transcript files on a monthly basis. Users access the files randomly within 1 year of the call, but users access the files infrequently after 1 year. The company wants to optimize its solution by giving users the ability to query and retrieve files that are less than 1-year-old as quickly as possible. A delay in retrieving older files is acceptable. Which solution will meet these requirements MOST cost-effectively?

A : Store individual files with tags in Amazon S3 Glacier Instant Retrieval. Query the tags to retrieve the files from S3 Glacier Instant Retrieval.

B : Store individual files in Amazon S3 Intelligent-Tiering. Use S3 Lifecycle policies to move the files to S3 Glacier Flexible Retrieval after 1 year. Query and retrieve the files that are in Amazon S3 by using Amazon Athena. Query and retrieve the files that are in S3 Glacier by using S3 Glacier Select.

C : Store individual files with tags in Amazon S3 Standard storage. Store search metadata for each archive in Amazon S3 Standard storage. Use S3 Lifecycle policies to move the files to S3 Glacier Instant Retrieval after 1 year. Query and retrieve the files by searching for metadata from Amazon S3.

D : Store individual files in Amazon S3 Standard storage. Use S3 Lifecycle policies to move the files to S3 Glacier Deep Archive after 1 year. Store search metadata in Amazon RDS. Query the files from Amazon RDS. Retrieve the files from S3 Glacier Deep Archive.

Answer: C

Question 4

A company developed a financial analytics web application hosted in a Docker container using MEAN (MongoDB, Express.js, AngularJS, and Node.js) stack. You want to easily port that web application to AWS Cloud which can automatically handle all the tasks such as balancing load, auto-scaling, monitoring, and placing your containers across your cluster.

Which of the following services can be used to fulfill this requirement?

A : AWS Elastic Beanstalk

B :

AWS Compute Optimizer

C : Amazon Elastic Container Service (Amazon ECS)

D : AWS CloudFormation

Answer: A

Question 5

A Solutions Architect designed a serverless architecture that allows AWS Lambda to access an Amazon DynamoDB table named tutorialsdojo in the US East (N. Virginia) region. The IAM policy attached to a Lambda function allows it to put and delete items in the table. The policy must be updated to only allow two operations in the tutorialsdojo table and prevent other DynamoDB tables from being modified.

Which of the following IAM policies fulfill this requirement and follows the principle of granting the least privilege?

A :

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "TutorialsdojoTablePolicy",

"Effect": "Allow",

"Action": [

"dynamodb:PutItem",

"dynamodb:DeleteItem"

"Resource": "arn:aws:dynamodb:us-east-1:120618981206:table/*"

}

]

}

B :

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "TutorialsdojoTablePolicy1",

"Effect": "Allow",

"Action": [

"dynamodb:PutItem",

"dynamodb:DeleteItem"

"Resource": "arn:aws:dynamodb:us-east-1:1206189812061898:table/tutorialsdojo"

{

"Sid": "TutorialsdojoTablePolicy2",

"Effect": "Allow",

"Action": "dynamodb:*",

"Resource": "arn:aws:dynamodb:us-east-1:1206189812061898:table/tutorialsdojo"

}

]

}

C :

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "TutorialsdojoTablePolicy",

"Effect": "Allow",

"Action": [

"dynamodb:PutItem",

"dynamodb:DeleteItem"

"Resource": "arn:aws:dynamodb:us-east-1:120618981206:table/tutorialsdojo"

}

]

}

D :

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "TutorialsdojoTablePolicy1",

"Effect": "Allow",

"Action": [

"dynamodb:PutItem",

"dynamodb:DeleteItem"

"Resource": "arn:aws:dynamodb:us-east-1:1206189812061898:table/tutorialsdojo"

{

"Sid": "TutorialsdojoTablePolicy2",

"Effect": "Deny",

"Action": "dynamodb:*",

"Resource": "arn:aws:dynamodb:us-east-1:1206189812061898:table/*"

}

]

}

Answer: C

Page: 1 / 196

Total 979 Questions | Updated On: Apr 22, 2024