AWS Certified Solutions Architect - Associate (Architecting on AWS) Quiz Questions and Answers

A consulting firm repeatedly builds large architectures for their customers using AWS resources from several AWS services including IAM, Amazon EC2, Amazon RDS, DynamoDB, and Amazon VPC. The consultants have architecture diagrams for each of their architectures and are frustrated that they cannot use them to automatically create their resources. Which service should provide immediate benefits to the organization?

Answer :
  • AWS Cloudformation

The security policy of an organization requires an application to encrypt data before writing to the disk. Which solution should the organization use to meet this requirement?

Answer :
  • AWS KMS API

A company is storing an access key (access key ID and secret access key) in a text file on a custom AMI. The company uses the access key to access DynamoDB tables from instances created from the AMI. The security team has mandated a more secure solution. Which solution will meet the security team’s mandate?

Answer :
  • Create an IAM role with permissions to access the table, and launch all instances with the new role

An application requires a highly available relational database with an initial storage capacity of 8 TB. The database will grow by 8 GB every day. To support expected traffic, at least eight read replicas will be required to handle database reads. Which option will meet these requirements?

Answer :
  • Amazon Aurora

A Solutions Architect is developing a document-sharing application and needs a storage layer. The storage should provide automatic support for versioning so that users can easily roll back to a previous version or recover a deleted account. Which AWS service will meet the above requirements?

Answer :
  • Amazon S3

Which of the following items are required to allow an application deployed on an EC2 instance to write data to a DynamoDB table? Assume that no security keys are allowed to be stored on the EC2 instance.

Answer :
  • Create an IAM role that allows write access to the DynamoDB table and attach to the instance.

Which of the following programming languages have an officially supported AWS SDK? Choose 2 answers.

Answer :
  • PHP
  • Java

An application running on Amazon EC2 must store objects in an S3 bucket. Which option follows best practices for granting the application access to the S3 bucket?

Answer :
  • Use an IAM role with the permission to write to S3 bucket.

Which of the following can be attached to EC2 Instances to store data?

Answer :
  • Amazon EBS Volumes

Which of the following networking component can be used to host EC2 resources in the AWS Cloud?

Answer :
  • AWS VPC