Questionnaire Part 1 Certified Solutions Architect Associate Level
AWS certification examination for those who are performing the role of AWS Solutions Architect with at least one year of experience in designing scalable, available, robust, and cost-effective distributed applications and systems on the AWS platform. It is required to follow the right preparation path to pass the AWS Solutions Architect Associate exam. Solutions Architect Associate exam helps the AWS Architect to demonstrate his knowledge of architecting and deploying robust and secure applications on the AWS platform using AWS technologies.
Here are some more Sample Questions for AWS Certification for AWS Certified Solution Architect. Answers with explanations are at the bottom. If you have not yet attempted
Try to solve and analyze how many questions you can solve easily?
Question: Does DynamoDB support in-place atomic updates?
- It does support in-place non-atomic updates
- It is not defined
Explanation: DynamoDB supports in-place atomic updates.
Question: Your manager has just given you access to multiple VPN connections that someone else has recently set up between all your company's offices. She needs you to make sure that the communication between the VPNs is secure. Which of the following services would be best for providing a low-cost hub-and-spoke model for primary or backup connectivity between these remote offices?
- Amazon CloudFront
- AWS Direct Connect
- AWS CloudHSM
- AWS VPN CIoudHub
Explanation: If you have multiple VPN connections, you can provide secure communication between sites using the AWS VPN CIoudHub. The VPN CIoudHub operates on a simple hub-and-spoke model that you can use with or without a VPC. This design is suitable for customers with multiple branch offices and existing Internet connections who would like to implement a convenient, potentially low-cost hub-and-spoke model for primary or backup connectivity between these remote offices.
Question: Amazon EC2 provides a. It is an HTTP or HTTPS request that uses the HTTP verbs GET or POST?
- web database
- .net framework
- Query API
- C library
Explanation: Amazon EC2 provides a Query API. These requests are HTTP or HTTPS requests that use the HTTP verbs GET or POST and a Query parameter named Action.
Question: In Amazon AWS, which of the following statements is true of key pairs?
- Key pairs are used only for Amazon SDKs.
- Key pairs are used only for Amazon EC2 and Amazon Cloud Front.
- Key pairs are used only for Elastic Load Balancing and AWS IAM.
- Key pairs are used for all Amazon services.
Explanation: Key pairs consist of a public and private key, where you use the private key to create a digital signature, and then AWS uses the corresponding public key to validate the signature. Key pairs are used only for Amazon EC2 and Amazon Cloud Front.
Question: Does Amazon DynamoDB support both increment and decrement atomic operations?
- Only increment, since decrement is inherently impossible with DynamoDB's data model.
- No, neither increment nor decrement operations.
- Yes, both increment and decrement operations.
- Only decrement, since increment is inherently impossible with DynamoDB's data model.
Explanation: Amazon DynamoDB supports increment and decrements of atomic operations.
Question: An organization has three separate AWS accounts, one each for development, testing, and production. The organization wants the testing team to have access to certain AWS resources in the production account. How can the organization achieve this?
- It is not possible to access the resources of one account with another account.
- Create IAM roles with cross-account access.
- Create the IAM user in a test account, and allow it access to the production environment with the IAM policy.
- Create IAM users with cross-account access.
Explanation: An organization has multiple AWS accounts to isolate a development environment from a testing or production environment. At times the users from one account need to access resources in the other account, such as promoting an update from the development environment to the production environment. In this case, the IAM role with cross-account access will provide a solution. Cross account access lets one account share access to their resources with users in the other AWS accounts.
Question: You need to import several hundred megabytes of data from a local Oracle database to an Amazon RDS DB instance. What does AWS recommend you use to accomplish this?
- Oracle export/import utilities
- Oracle SQL Developer
- Oracle Data Pump
Explanation: How you import data into an Amazon RDS DB instance depends on the amount of data you have and the number and variety of database objects in your database. For example, you can use Oracle SQL Developer to import a simple, 20 MB database; you want to use Oracle Data Pump to import complex databases or databases that are several hundred megabytes or several terabytes in size.
Question: A user has created an EBS volume with 1000 IOPS. What is the average IOPS that the user will get for most of the year as per EC2 SLA if the instance is attached to the EBS optimized instance?
Explanation: As per AWS SLA if the instance is attached to an EBS-Optimized instance, then the Provisioned IOPS volumes are designed to deliver within 10% of the provisioned IOPS performance 99.9% of the time in a given year. Thus, if the user has created a volume of 1000 IOPS, the user will get a minimum of 900 IOPS 99.9% time of the year.
Question: You need to migrate a large amount of data into the cloud that you have stored on a hard disk and you decide that the best way to accomplish this is with AWS Import/Export and you mail the hard disk to AWS. Which of the following statements is incorrect in regards to AWS Import/Export?
- It can export from Amazon S3
- It can Import to Amazon Glacier
- It can export from Amazon Glacier.
- It can Import to Amazon EBS
Explanation: AWS Import/Export supports: Import to Amazon S3 Export from Amazon S3 Import to Amazon EBS Import to Amazon Glacier
Question: You are in the process of creating a Route 53 DNS failover to direct traffic to two EC2 zones. Obviously, if one fails, you would like Route 53 to direct traffic to the other region. Each region has an ELB with some instances being distributed. What is the best way for you to configure the Route 53 health check?
- Route 53 doesn't support ELB with an internal health check. You need to create your own Route 53 health check of the ELB
- Route 53 natively supports ELB with an internal health check. Turn "Evaluate target health" off and "Associate with Health Check" on and R53 will use the ELB's internal health check.
- Route 53 doesn't support ELB with an internal health check. You need to associate your resource record set for the ELB with your own health check
- Route 53 natively supports ELB with an internal health check. Turn "Evaluate target health" on and "Associate with Health Check" off and R53 will use the ELB's internal health check.
Explanation: With DNS Failover, Amazon Route 53 can help detect an outage of your website and redirect your end users to alternate locations where your application is operating properly. When you enable this feature, Route 53 uses health checks-regularly making Internet requests to your application’s endpoints from multiple locations around the world to determine whether each endpoint of your application is up or down. To enable DNS Failover for an ELB endpoint, create an Alias record pointing to the ELB and set the "Evaluate Target Health" parameter to true. Route 53 creates and manages the health checks for your ELB automatically. You do not need to create your own Route 53 health check of the ELB. You also do not need to associate your resource record set for the ELB with your own health check, because Route 53 automatically associates it with the health checks that Route 53 manages on your behalf. The ELB health check will also inherit the health of your backend instances behind that ELB.
Question: A user wants to use an EBS-backed Amazon EC2 instance for a temporary job. Based on the input data, the job is most likely to finish within a week. Which of the following steps should be followed to terminate the instance automatically once the job is finished?
- Configure the EC2 instance with a stop instance to terminate it.
- Configure the EC2 instance with ELB to terminate the instance when it remains idle.
- Configure the CIoudWatch alarm on the instance that should perform the termination action once the instance is idle.
- Configure the Auto Scaling schedule activity that terminates the instance after 7 days.
Explanation: Auto Scaling can start and stop the instance at a pre-defined time. Here, the total running time is unknown. Thus, the user has to use the CIoudWatch alarm, which monitors the CPU utilization. The user can create an alarm that is triggered when the average CPU utilization percentage has been lower than 10 percent for 24 hours, signaling that it is idle and no longer in use. When the utilization is below the threshold limit, it will terminate the instance as a part of the instance action.
Question: Which of the following is true of the Amazon EC2 security group?
- You can modify the outbound rules for EC2-Classic.
- You can modify the rules for a security group only if the security group controls the traffic for just one instance.
- You can modify the rules for a security group only when a new instance is created.
- You can modify the rules for a security group at any time.
Explanation: A security group acts as a virtual firewall that controls the traffic for one or more instances. When you launch an instance, you associate one or more security groups with the instance. You add rules to each security group that allows traffic to or from its associated instances. You can modify the rules for a security group at any time; the new rules are automatically applied to all instances that are associated with the security group.
Question: An Elastic IP address (EIP) is a static IP address designed for dynamic cloud computing. With an EIP, you can mask the failure of an instance or software by rapidly remapping the address to another instance in your account. Your EIP is associated with your AWS account, not a particular EC2 instance, and it remains associated with your account until you choose to explicitly release it. By default how many EIPs is each AWS account limited to on a per-region basis?
Explanation: By default, all AWS accounts are limited to 5 Elastic IP addresses per region for each AWS account, because public (IPv4) Internet addresses are a scarce public resource. AWS strongly encourages you to use an EIP primarily for load balancing use cases, and use DNS hostnames for all other inter-node communication. If you feel your architecture warrants additional EIPs, you would need to complete the Amazon EC2 Elastic IP Address Request Form and give reasons as to your need for additional addresses.
Question: In Amazon EC2, partial instance-hours are billed?
- Per second used in the hour
- Per-minute used
- By combining partial segments into full hours
- As full hours
Explanation: Partial instance-hours are billed to the next hour.
Question: In EC2, what happens to the data in an instance store if an instance reboots (either intentionally or unintentionally)?
- Data is deleted from the instance store for security reasons.
- Data persists in the instance store.
- Data is partially present in the instance store.
- Data in the instance store will be lost.
Explanation: The data in an instance store persists only during the lifetime of its associated instance. If an instance reboots (intentionally or unintentionally), data in the instance store persists. However, data on instance store volumes is lost under the following circumstances. Failure of an underlying drive Stopping an Amazon EBS-backed instance Terminating an instance.
Thoughts on “Questionnaire Part 1 Certified Solutions Architect Associate Level ””
Leave a Reply
Your email address will not be published. Required fields are marked *