AWS Certified Solutions Architect - Associate (Architecting on AWS) Quiz Questions and Answers

An application running on Amazon EC2 must store objects in an S3 bucket. Which option follows best practices for granting the application access to the S3 bucket?

Answer :
  • Use an IAM role with the permission to write to S3 bucket.

Which of the following can be attached to EC2 Instances to store data?

Answer :
  • Amazon EBS Volumes

Which of the following networking component can be used to host EC2 resources in the AWS Cloud?

Answer :
  • AWS VPC

When designing a system, you use the principle of “design for failure and nothing will fail”. Which of the following services/features of AWS can assist in supporting this design principle? (Select all that apply)

Answer :
  • Availability Zones
  • Regions
  • Elastic Load Balancer

Which of the following services is a fully managed, petabyte-scale data warehouse service in the AWS cloud?

Answer :
  • Amazon Redshift

Company salespeople upload their sales figures daily. A Solutions Architect needs a durable storage solution for these documents that also protects against users accidentally deleting important documents. Which action will protect against unintended user actions?

Answer :
  • Store data in an S3 bucket and enable versioning.

An organization is building an Amazon Redshift cluster in their shared services VPC. The cluster will host sensitive data. How can the organization control which networks can access the cluster?

Answer :
  • Define a cluster security group for the cluster that allows access from the allowed networks.

A Developer is writing an application that runs on EC2 instances and stores 2 GB of objects in an S3 bucket. The Developer wants to minimize the time required to upload each item. Which API should the Developer use to minimize upload time?

Answer :
  • MultiPartUpload

A consulting firm repeatedly builds large architectures for its customers using AWS resources from several AWS services, including IAM, Amazon EC2, Amazon RDS, DynamoDB, and Amazon VPC. The consultants have architecture diagrams for each of their architectures and are frustrated that they cannot use them to automatically create their resources. Which service should provide immediate benefits to the organization?

Answer :
  • AWS Cloudformation

The security policy of an organization requires an application to encrypt data before writing to the disk. Which solution should the organization use to meet this requirement?

Answer :
  • AWS KMS API