Released the latest Amazon SAA-C02 exam dumps! You can get SAA-C02 VCE dumps and SAA-C02 PDF dumps from Pass4itsure, (including the latest SAA-C02 exam questions), which will ensure that your SAA-C02 exam is 100% passed! Pass4itsure SAA-C02 dumps VCE and PDF — https://www.pass4itsure.com/saa-c02.html Updated!
Latest Amazon AWS Certified Associate SAA-C02 exam practice test
QUESTION 1
Organizers for a global event want to put daily reports online as static HTML pages The pages are expected to generate
millions of views from users around the world The files are stored in an Amazon S3 bucket A solutions architect has
been asked to design an efficient and effective solution Which action should the solutions architect take to accomplish
this?
A. Generate pre-signed URLs for the files
B. Use cross-Region replication to all Regions
C. Use the geo proximity feature of Amazon Route 53
D. Use Amazon CloudFront with the S3 bucket as its origin
Correct Answer: D
Using Amazon S3 Origins, MediaPackage Channels, and Custom Origins for Web Distributions
Using Amazon S3 Buckets for Your Origin
When you use Amazon S3 as an origin for your distribution, you place any objects that you want CloudFront to deliver in
an Amazon S3 bucket. You can use any method that is supported by Amazon S3 to get your objects into Amazon S3,
for
example, the Amazon S3 console or API, or a third-party tool. You can create a hierarchy in your bucket to store the
objects, just as you would with any other Amazon S3 bucket.
Using an existing Amazon S3 bucket as your CloudFront origin server doesn\\’t change the bucket in any way; you can
still use it as you normally would store and access Amazon S3 objects at the standard Amazon S3 price. You incur
regular Amazon S3 charges for storing the objects in the bucket.
Using Amazon S3 Buckets Configured as Website Endpoints for Your Origin
You can set up an Amazon S3 bucket that is configured as a website endpoint as the custom origin with CloudFront.
When you configure your CloudFront distribution, for the origin, enter the Amazon S3 static website hosting endpoint for
your bucket. This value appears in the Amazon S3 console, on the Properties tab, in the Static website hosting pane.
For
example: http://bucket-name.s3-website-region.amazonaws.com
For more information about specifying Amazon S3 static website endpoints, see Website endpoints in the Amazon
Simple Storage Service Developer Guide.
When you specify the bucket name in this format as your origin, you can use Amazon S3 redirects and Amazon S3
custom error documents. For more information about Amazon S3 features, see the Amazon S3 documentation.
Using an Amazon S3 bucket as your CloudFront origin server doesn\\’t change it in any way. You can still use it as you
normally would and you incur regular Amazon S3 charges.
Reference:
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/DownloadDistS3AndCustomOrigins.html
QUESTION 2
A company is managing health records on-premises. The company must keep these records indefinitely, disable any
modifications to the records once they are stored, and granularly audit access at all levels. The chief technology officer
(CTO) is concerned because there are already millions of records not being used by any application, and the current
infrastructure is running out of space. The CTO has requested a solutions architect to design a solution to move existing
data and support future records.
Which services can the solutions architect recommend to meet these requirements?
A. Use AWS DataSync to move existing data to AWS. Use Amazon S3 to store existing and new data Enable Amazon
S3 object lock and enable AWS CloudTrail with data events.
B. Use AWS Storage Gateway to move existing data to AWS Use Amazon S3 to store existing and new data. Enable
Amazon S3 object locks and enable AWS CloudTrail with management events.
C. Use AWS DataSync to move existing data to AWS Use Amazon S3 to store existing and new data Enable Amazon
S3 object locks and enable AWS CloudTrail with management events.
D. Use AWS Storage Gateway to move existing data to AWS Use Amazon Elastic Block Store (Amazon EBS) to store
existing and new data Enable Amazon S3 object lock and enable Amazon S3 server access logging
Correct Answer: A
QUESTION 3
A solutions architect is designing the storage architecture for a new web application used for storing and viewing
engineering drawings. All application components will be deployed on the AWS infrastructure. The application design
must
support caching to minimize the amount of time that users wait for the engineering drawings to load. The application
must be able to store petabytes of data.
Which combination of storage and caching should the solutions architect use?
A. Amazon S3 with Amazon CloudFront
B. Amazon S3 Glacier with Amazon ElastiCache
C. Amazon Elastic Block Store (Amazon EBS) volumes with Amazon CloudFront
D. AWS Storage Gateway with Amazon ElastiCache
Correct Answer: B
QUESTION 4
A company has 150 TB of archived image data stored on-premises that need to be mowed to the AWS Cloud within
the next month. The company\\’s current network connection allows up to 100 Mbps uploads for this purpose during the night only.
What is the MOST cost-effective mechanism to move this data and meet the migration deadline?
A. Use AWS Snowmobile to ship the data to AWS.
B. Order multiple AWS Snowball devices to ship the data to AWS.
C. Enable Amazon S3 Transfer Acceleration and securely upload the data.
D. Create an Amazon S3 VPC endpoint and establish a VPN to upload the data.
Correct Answer: B
QUESTION 5
A company is reviewing its AWS Cloud deployment to ensure its data is not accessed by anyone without appropriate
authorization. A solutions architect is tasked with identifying all open Amazon S3 buckets and recording any S3 bucket
configuration changes.
What should the solutions architect do to accomplish this?
A. Enable AWS Config service with the appropriate rules
B. Enable AWS Trusted Advisor with the appropriate checks.
C. Write a script using an AWS SDK to generate a bucket report
D. Enable Amazon S3 server access logging and configure Amazon CloudWatch Events.
Correct Answer: A
QUESTION 6
A company has a Microsoft Windows-based application that must be migrated to AWS. This application requires the use
of a shared Windows file system attached to multiple Amazon EC2 Windows instances.
What should a solution architect do to accomplish this?
A. Configure a volume using Amazon EFS Mount the EPS volume to each Windows Instance
B. Configure AWS Storage Gateway in Volume Gateway mode Mount the volume to each Windows instance
C. Configure Amazon FSx for Windows File Server Mount the Amazon FSx volume to each Windows Instance
D. Configure an Amazon EBS volume with the required size Attach each EC2 instance to the volume Mount the file
the system within the volume to each Windows instance
Correct Answer: C
QUESTION 7
A company wants to use an AWS Region as a disaster recovery location for its on-premises infrastructure. The
company has 10 TB of existing data, and the on-premise data center has a 1 Gbps internet connection. Solutions
architect must
find a solution so the company can have its existing data on AWS in 72 hours without transmitting it using an
unencrypted channel.
Which solution should the solutions architect select?
A. Send the initial 10 TB of data to AWS using FTP.
B. Send the initial 10 TB of data to AWS using AWS Snowball.
C. Establish a VPN connection between Amazon VPC and the company\\’s data center.
D. Establish an AWS Direct Connect connection between Amazon VPC and the company\\’s data center.
Correct Answer: C
QUESTION 8
A company\\’s website is using an Amazon RDS MySQL Multi-AZ DB instance for its transactional data storage.
There are other internal systems that query this DB instance to fetch data for internal batch processing. The RDS DB
instance slows down significantly the internal systems fetch data This impacts the website\\’s read and write
performance, and
the users experience slow response times.
Which solution will improve website\\’s performance?
A. Use an RDS PostgreSQL DB instance instead of a MySQL database.
B. Use Amazon ElastiCache to cache the query responses for the website.
C. Add an additional Availability Zone to the current RDS MySQL Multi. AZ DB instance.
D. Add a read replica to the RDS DB instance and configure the internal systems to query the read replica.
Correct Answer: D
Amazon RDS Read Replicas
Enhanced performance
You can reduce the load on your source DB instance by routing read queries from your applications to the read replica.
Read replicas allow you to elastically scale out beyond the capacity constraints of a single DB instance for read-heavy
database workloads. Because read replicas can be promoted to master status, they are useful as part of a sharding
implementation.
To further maximize read performance, Amazon RDS for MySQL allows you to add table indexes directly to Read
Replicas, without those indexes being present on the master.
Reference: https://aws.amazon.com/rds/features/read-replicas
QUESTION 9
A solutions architect is helping a developer design a new eCommerce shopping cart application using AWS services.
The developer is unsure of the current database schema and expects to make changes as the eCommerce site grows.
The solution needs to be highly resilient and capable of automatically scaling read and write capacity.
Which database solution meets these requirements?
A. Amazon Aurora PostgreSQL
B. Amazon DynamoDB with on-demand enabled
C. Amazon DynamoDB with DynamoDB Streams enabled
D. Amazon SQS and Amazon Aurora PostgreSQL
Correct Answer: A
QUESTION 10
A three-tier web application processes orders from customers. The web tier consists of Amazon EC2 instances behind
an Application Load Balancer, a middle tier of three EC2 instances decoupled from the web tier using Amazon SQS.
and an Amazon DynamoDB backend. At peak times, customers who submit orders using the site have to wait much
longer than normal to receive confirmations due to lengthy processing times. A solutions architect needs to reduce
these processing times.
Which action will be MOST effective in accomplishing this?
A. Replace the SQS queue with Amazon Kinesis Data Firehose.
B. Use Amazon ElastiCache for Redis in front of the DynamoDB backend tier.
C. Add an Amazon CloudFront distribution to cache the responses for the web tier.
D. Use Amazon EC2 Auto Scaling to scale out the middle tier instances based on the SOS queue depth.
Correct Answer: D
QUESTION 11
A solutions architect is designing a mission-critical web application. It will consist of Amazon EC2 instances behind an
Application Load Balancer and a relational database. The database should be highly available and fault-tolerant.
Which database implementations will meet these requirements? (Choose two.)
A. Amazon Redshift
B. Amazon DynamoDB
C. Amazon RDS for MySQL
D. MySQL-compatible Amazon Aurora Multi-AZ
E. Amazon RDS for SQL Server Standard Edition Mufti-AZ
Correct Answer: DE
QUESTION 12
A start-up company has a web application based in the us-east-1 Region with multiple Amazon EC2 instances running
behind an Application Load Balancer across multiple Availability Zones. As the company\, \’s user base grows in the uswest1 Region, it needs a solution with low latency and high availability.
What should a solutions architect do to accomplish this?
A. Provision EC2 instances in us-west-1. Switch the Application Load Balancer to a Network Load Balancer to achieve
cross-Region load balancing.
B. Provision EC2 instances and an Application Load Balancer in us-west-1. Make the load balancer distribute the traffic
based on the location of the request.
C. Provision EC2 instances and configure an Application Load Balancer in us-west-1. Create an accelerator in AWS
Global Accelerator that uses an endpoint group that includes the load balancer
D. Provision EC2 instances and configure an Application Load Balancer in us-west-1. Configure Amazon Route 53 with
a weighted routing policy. Create alias records in Route 53 that point to the Application Load Balancer.
Correct Answer: B
Register endpoints for endpoint groups: You register one or more regional resources, such as Application Load
Balancers, Network Load Balancers, EC2 Instances, or Elastic IP addresses, in each endpoint group. Then you can set
weights to choose how much traffic is routed to each endpoint.
Endpoints in AWS Global Accelerator
Endpoints in AWS Global Accelerator can be Network Load Balancers, Application Load Balancers, Amazon EC2
instances, or Elastic IP addresses. A static IP address serves as a single point of contact for clients, and Global
Accelerator then distributes incoming traffic across healthy endpoints. Global Accelerator directs traffic to endpoints by
using the port (or port range) that you specify for the listener that the endpoint group for the endpoint belongs to.
Each endpoint group can have multiple endpoints. You can add each endpoint to multiple endpoint groups, but the
endpoint groups must be associated with different listeners.
Global Accelerator continually monitors the health of all endpoints that are included in an endpoint group. It routes traffic
only to the active endpoints that are healthy. If Global Accelerator doesn\\’t have any healthy endpoints to route traffic
to, it routes traffic to all endpoints.
Reference: https://docs.aws.amazon.com/global-accelerator/latest/dg/about-endpoints.html
https://aws.amazon.com/global-accelerator/faqs/
QUESTION 13
A company has enabled AWS CloudTrail logs to deliver log files to an Amazon S3 bucket for each of its developer
accounts. The company has created a central AWS account for streamlining management and audit reviews. An
internal auditor needs to access the CloudTrail logs, yet access needs to be restricted for all developer account users.
The solution must be secure and optimized.
How should a solutions architect meet these requirements?
A. Configure an AWS Lambda function in each developer account to copy the log files to the central account. Create an
IAM role in the central account for the auditor. Attach an IAM policy providing read-only permissions to the bucket.
B. Configure CloudTrail from each developer account to deliver the log files to an S3 bucket in the central account.
Create an IAM user in the central account for the auditor. Attach an IAM policy providing full permissions to the bucket.
C. Configure CloudTrail from each developer account to deliver the log files to an S3 bucket in the central account.
Create an IAM role in the central account for the auditor. Attach an IAM policy providing read-only permissions to the
bucket.
D. Configure an AWS Lambda function in the central account to copy the log files from the S3 bucket in each developer
account. Create an IAM user in the central account for the auditor. Attach an IAM policy providing full permissions to the
bucket.
Correct Answer: A
You may be interested in other Amazon exam practice, click to view!
Amazon SAA-C02 dumps pdf free download
[100% free] AmazonSAA-C02 dumps pdf https://drive.google.com/file/d/1meWQ_ZpHLabijM52oHyCUn9AnKWZvdKl/view?usp=sharing
Pass4itsure discount code 2020
P.S.
This is a free Amazon SAA-C02 study guide for the AWS Certified Foundational certification exam! It includes Amazon SAA-C02 pdf dumps, SAA-C02 exam video, SAA-C02 exam practice test & more free and paid resources! For more, please visit https://www.pass4itsure.com/saa-c02.html Q&As. Study hard and practice a lot. This will help you prepare for the SAA-C02 exam. Good luck!