Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. Amazon
  3. AWS Certified Solutions Architect - Associate

Amazon AWS Certified Solutions Architect - Associate SAA-C03 AWS Certified Solutions Architect - Associate Exam Questions in PDF

Free Amazon AWS Certified Solutions Architect - Associate Dumps Questions (page: 11)

AWS Certified Solutions Architect - Associate PDF — 903 Questions

A solutions architect is designing the cloud architecture for a new application being deployed on AWS. The process should run in parallel while adding and removing application nodes as needed based on the number of jobs to be processed. The processor application is stateless. The solutions architect must ensure that the application is loosely coupled and the job items are durably stored.
Which design should the solutions architect use?

  1. Create an Amazon SNS topic to send the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch configuration that uses the AMI. Create an Auto Scaling group using the launch configuration. Set the scaling policy for the Auto Scaling group to add and remove nodes based on CPU usage.
  2. Create an Amazon SQS queue to hold the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch configuration that uses the AMI. Create an Auto Scaling group using the launch configuration. Set the scaling policy for the Auto Scaling group to add and remove nodes based on network usage.
  3. Create an Amazon SQS queue to hold the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch template that uses the AMI. Create an Auto Scaling group using the launch template. Set the scaling policy for the Auto Scaling group to add and remove nodes based on the number of items in the SQS queue.
  4. Create an Amazon SNS topic to send the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch template that uses the AMI. Create an Auto Scaling group using the launch template. Set the scaling policy for the Auto Scaling group to add and remove nodes based on the number of messages published to the SNS topic.

Answer(s): C

Explanation:

The correct answer is C because an SQS queue provides durable, decoupled, and scalable job buffering for stateless processors; the Auto Scaling group can scale based on the actual backlog (number of items in the queue), ensuring parallel processing and automatic node adjustment. A launch template with an AMI supports flexible scaling.
A) Uses SNS, which is best for fan-out messaging, not durable queueing of work items; scaling on CPU is not tied to workload. B) Scales on network usage, not workload, and uses SQS but wrong scaling metric. D) SNS-based queuing infrastructure with scaling on published messages is not a standard durable work-queue approach; unnecessary coupling.



A company hosts its web applications in the AWS Cloud. The company configures Elastic Load Balancers to use certificates that are imported into AWS Certificate Manager (ACM). The company's security team must be notified 30 days before the expiration of each certificate.
What should a solutions architect recommend to meet this requirement?

  1. Add a rule in ACM to publish a custom message to an Amazon Simple Notification Service (Amazon SNS) topic every day, beginning 30 days before any certificate will expire.
  2. Create an AWS Config rule that checks for certificates that will expire within 30 days. Configure Amazon EventBridge (Amazon CloudWatch Events) to invoke a custom alert by way of Amazon Simple Notification Service (Amazon SNS) when AWS Config reports a noncompliant resource.
  3. Use AWS Trusted Advisor to check for certificates that will expire within 30 days. Create an Amazon CloudWatch alarm that is based on Trusted Advisor metrics for check status changes. Configure the alarm to send a custom alert by way of Amazon Simple Notification Service (Amazon SNS).
  4. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to detect any certificates that will expire within 30 days. Configure the rule to invoke an AWS Lambda function. Configure the Lambda function to send a custom alert by way of Amazon Simple Notification Service (Amazon SNS).

Answer(s): B

Explanation:

AWS Config provides continuously evaluated resource compliance with a 30-day expiry check for ACM certificates, and EventBridge can trigger alerts when Config reports noncompliance, ensuring timely notifications to SNS. This satisfies the requirement to be notified 30 days before expiration in a managed, auditable manner.
A) ACM does not publish expiration alerts via custom SNS topics; ACM alerting isn’t configurable this way.
C) Trusted Advisor checks are not configurable to trigger per-certificate expiry notifications or custom alerting via EventBridge/SNS.
D) An EventBridge rule and Lambda could work, but it requires building custom logic; Config provides a simpler, managed solution with automatic evaluation.
B) is the correct, declarative approach.



A company's dynamic website is hosted using on-premises servers in the United States. The company is launching its product in Europe, and it wants to optimize site loading times for new European users. The site's backend must remain in the United States. The product is being launched in a few days, and an immediate solution is needed.
What should the solutions architect recommend?

  1. Launch an Amazon EC2 instance in us-east-1 and migrate the site to it.
  2. Move the website to Amazon S3. Use Cross-Region Replication between Regions.
  3. Use Amazon CloudFront with a custom origin pointing to the on-premises servers.
  4. Use an Amazon Route 53 geoproximity routing policy pointing to on-premises servers.

Answer(s): C

Explanation:

CloudFront with a custom origin enables edge caching and low-latency delivery to European users while keeping the backend in the United States, meeting the globalization objective quickly.
A) Incorrect: Launching EC2 in us-east-1 does not reduce latency for Europe; it relocates compute but increases latency for European users.
B) Incorrect: S3 with Cross-Region Replication is for object storage in another region, not suitable for dynamic site hosting or immediate global latency reduction.
D) Incorrect: Route 53 geoproximity routes traffic based on location but requires endpoints in AWS or elsewhere; it doesn’t provide edge caching or rapid deployment with on-prem origin.



A company wants to reduce the cost of its existing three-tier web architecture. The web, application, and database servers are running on Amazon EC2 instances for the development, test, and production environments. The EC2 instances average 30% CPU utilization during peak hours and 10% CPU utilization during non-peak hours.
The production EC2 instances run 24 hours a day. The development and test EC2 instances run for at least 8 hours each day. The company plans to implement automation to stop the development and test EC2 instances when they are not in use.
Which EC2 instance purchasing solution will meet the company's requirements MOST cost-effectively?

  1. Use Spot Instances for the production EC2 instances. Use Reserved Instances for the development and test EC2 instances.
  2. Use Reserved Instances for the production EC2 instances. Use On-Demand Instances for the development and test EC2 instances.
  3. Use Spot blocks for the production EC2 instances. Use Reserved Instances for the development and test EC2 instances.
  4. Use On-Demand Instances for the production EC2 instances. Use Spot blocks for the development and test EC2 instances.

Answer(s): B

Explanation:

The best fit is B because production runs continuously, so Reserved Instances (RI) provide cost savings over On-Demand. Development/test run only part of each day and can be shut off; On-Demand is simplest and avoids paying for idle capacity, aligning with automation to stop when unused.
A) Spotted for production is risky due to interruption; RI/On-Demand mix could be cheaper than relying on Spot for prod.
C) Spot blocks for production expose volatility; development/test RIs don’t align with low utilization and shutdown.
D) On-Demand for prod misses continuous-use savings; Spot blocks for dev/test rely on interruptions and forecasted usage.



A company has a production web application in which users upload documents through a web interface or a mobile app. According to a new regulatory requirement. new documents cannot be modified or deleted after they are stored.
What should a solutions architect do to meet this requirement?

  1. Store the uploaded documents in an Amazon S3 bucket with S3 Versioning and S3 Object Lock enabled.
  2. Store the uploaded documents in an Amazon S3 bucket. Configure an S3 Lifecycle policy to archive the documents periodically.
  3. Store the uploaded documents in an Amazon S3 bucket with S3 Versioning enabled. Configure an ACL to restrict all access to read-only.
  4. Store the uploaded documents on an Amazon Elastic File System (Amazon EFS) volume. Access the data by mounting the volume in read-only mode.

Answer(s): A

Explanation:

S) A) is correct because enabling S3 Object Lock in Compliance mode with Versioning ensures immutability: objects cannot be modified or deleted for a defined retention period, satisfying regulatory immutability.
B) Incorrect: Lifecycle policies archive data but do not guarantee immutability or prevent deletion/modification.
C) Incorrect: Read-only ACL does not prevent deletions if bucket/object permissions allow it and does not enforce a retention period or immutability.
D) Incorrect: EFS does not provide built-in object-level immutability or retention controls; mounting read-only does not guarantee protection against deletions or modifications.



A company has several web servers that need to frequently access a common Amazon RDS MySQL Multi-AZ DB instance. The company wants a secure method for the web servers to connect to the database while meeting a security requirement to rotate user credentials frequently.
Which solution meets these requirements?

  1. Store the database user credentials in AWS Secrets Manager. Grant the necessary IAM permissions to allow the web servers to access AWS Secrets Manager.
  2. Store the database user credentials in AWS Systems Manager OpsCenter. Grant the necessary IAM permissions to allow the web servers to access OpsCenter.
  3. Store the database user credentials in a secure Amazon S3 bucket. Grant the necessary IAM permissions to allow the web servers to retrieve credentials and access the database.
  4. Store the database user credentials in files encrypted with AWS Key Management Service (AWS KMS) on the web server file system. The web server should be able to decrypt the files and access the database.

Answer(s): A

Explanation:

A) Storing credentials in AWS Secrets Manager and granting web servers access aligns with rotating credentials automatically and securely via built-in secret rotation for RDS-compatible databases.
B) OpsCenter is for operational issue management, not credential storage or rotation.
C) Storing credentials in S3 requires manual rotation and access controls; not as seamless or secure for frequent rotation as Secrets Manager.
D) Per-host file-based encryption with KMS lacks centralized rotation, auditability, and scalable credential management compared to Secrets Manager.



A company hosts an application on AWS Lambda functions that are invoked by an Amazon API Gateway API. The Lambda functions save customer data to an Amazon Aurora MySQL database. Whenever the company upgrades the database, the Lambda functions fail to establish database connections until the upgrade is complete. The result is that customer data is not recorded for some of the event.
A solutions architect needs to design a solution that stores customer data that is created during database upgrades.
Which solution will meet these requirements?

  1. Provision an Amazon RDS proxy to sit between the Lambda functions and the database. Configure the Lambda functions to connect to the RDS proxy.
  2. Increase the run time of the Lambda functions to the maximum. Create a retry mechanism in the code that stores the customer data in the database.
  3. Persist the customer data to Lambda local storage. Configure new Lambda functions to scan the local storage to save the customer data to the database.
  4. Store the customer data in an Amazon Simple Queue Service (Amazon SQS) FIFO queue. Create a new Lambda function that polls the queue and stores the customer data in the database.

Answer(s): D

Explanation:

The correct answer is D.
D) Using an SQS FIFO queue decouples data ingestion from the database write. API Gateway/Lambda can enqueue events when the database is unavailable during upgrades, ensuring no data is lost, and a separate Lambda consumer can reliably persist data to Aurora once connections are available.
A) RDS Proxy helps manage database connections, but does not guarantee data durability during upgrade outages; it doesn’t inherently buffer writes when the DB is unavailable.
B) Extending Lambda duration and retries may still fail to preserve data if the DB is unreachable; timing is unpredictable and may violate data integrity.
C) Storing locally in Lambda is volatile and not durable across function invocations or instances, risking data loss.



A survey company has gathered data for several years from areas in the United States. The company hosts the data in an Amazon S3 bucket that is 3 TB in size and growing. The company has started to share the data with a European marketing firm that has S3 buckets. The company wants to ensure that its data transfer costs remain as low as possible.
Which solution will meet these requirements?

  1. Configure the Requester Pays feature on the company's S3 bucket.
  2. Configure S3 Cross-Region Replication from the company's S3 bucket to one of the marketing firm's S3 buckets.
  3. Configure cross-account access for the marketing firm so that the marketing firm has access to the company's S3 bucket.
  4. Configure the company's S3 bucket to use S3 Intelligent-Tiering. Sync the S3 bucket to one of the marketing firm's S3 buckets.

Answer(s): B

Explanation:

Cross-Region Replication minimizes transfer costs by keeping copies in the destination region, allowing data sharing with the European firm without egress charges from the source region for replicated objects.
A) Requester Pays shifts data access costs to the requester, not reducing cross-border data transfer fees for shared data, so it doesn’t minimize overall transfer costs for this workflow.
C) Cross-account access enables access rights but does not automatically reduce data transfer costs or replicate data to the partner’s region.
D) S3 Intelligent-Tiering optimizes storage costs, not cross-region data sharing or transfer costs, and syncing to another bucket does not inherently reduce egress charges.



Viewing page 11 of 129

Share your comments for Amazon AWS Certified Solutions Architect - Associate exam with other users:

9
9eagles
4/7/2023 10:04:00 AM

on question 10 and so far 2 wrong answers as evident in the included reference link.

Anonymous
T
Tai
8/28/2023 5:28:00 AM

wonderful material

SOUTH AFRICA
V
VoiceofMidnight
12/29/2023 4:48:00 PM

i passed!! ...but barely! got 728, but needed 720 to pass. the exam hit me with labs right out of the gate! then it went to multiple choice. protip: study the labs!

UNITED STATES
A
A K
8/3/2023 11:56:00 AM

correct answer for question 92 is c -aws shield

Anonymous
N
Nitin Mindhe
11/27/2023 6:12:00 AM

great !! it is really good

IRELAND
B
BailleyOne
11/22/2023 1:45:00 AM

explanations for the answers are to the point.

Anonymous
P
patel
10/25/2023 8:17:00 AM

how can rea next

INDIA
M
MortonG
10/19/2023 6:32:00 PM

question: 128 d is the wrong answer...should be c

EUROPEAN UNION
J
Jayant
11/2/2023 3:15:00 AM

thanks for az 700 dumps

Anonymous
B
Bipul Mishra
12/14/2023 7:12:00 AM

thank you for this tableau dumps . it will helpfull for tableau certification

UNITED STATES
H
hello
10/31/2023 12:07:00 PM

good content

Anonymous
M
Matheus
9/3/2023 2:14:00 PM

just testing if the comments are real

UNITED STATES
Y
yenvti2@gmail.com
8/12/2023 7:56:00 PM

very helpful for exam preparation

Anonymous
M
Miguel
10/5/2023 12:16:00 PM

question 11: https://help.salesforce.com/s/articleview?id=sf.admin_lead_to_patient_setup_overview.htm&type=5

SPAIN
N
Noushin
11/28/2023 4:52:00 PM

i think the answer to question 42 is b not c

CANADA
S
susan sandivore
8/28/2023 1:00:00 AM

thanks for the dump

Anonymous
A
Aderonke
10/31/2023 12:51:00 AM

fantastic assessments

Anonymous
P
Priscila
7/22/2022 9:59:00 AM

i find the xengine test engine simulator to be more fun than reading from pdf.

GERMANY
S
suresh
12/16/2023 10:54:00 PM

nice document

Anonymous
W
Wali
6/4/2023 10:07:00 PM

thank you for making the questions and answers intractive and selectable.

UNITED STATES
N
Nawaz
7/18/2023 1:10:00 AM

answers are correct?

UNITED STATES
D
das
6/23/2023 7:57:00 AM

can i belive this dump

INDIA
S
Sanjay
10/15/2023 1:34:00 PM

great site to practice for sitecore exam

INDIA
J
jaya
12/17/2023 8:36:00 AM

good for students

UNITED STATES
B
Bsmaind
8/20/2023 9:23:00 AM

nice practice dumps

Anonymous
K
kumar
11/15/2023 11:24:00 AM

nokia 4a0-114 dumps

Anonymous
V
Vetri
10/3/2023 12:59:00 AM

great content and wonderful to have the answers with explanation

UNITED STATES
R
Ranjith
8/21/2023 3:39:00 PM

for question #118, the answer is option c. the screen shot is showing the drop down, but the answer is marked incorrectly please update . thanks for sharing such nice questions.

Anonymous
E
Eduardo Ramírez
12/11/2023 9:55:00 PM

the correct answer for the question 29 is d.

Anonymous
D
Dass
11/2/2023 7:43:00 AM

question no 22: correct answers: bc, 1 per session 1 per page 1 per component always

UNITED STATES
R
Reddy
12/14/2023 2:42:00 AM

these are pretty useful

Anonymous
D
Daisy Delgado
1/9/2023 1:05:00 PM

awesome

UNITED STATES
A
Atif
6/13/2023 4:09:00 AM

yes please upload

UNITED STATES
X
Xunil
6/12/2023 3:04:00 PM

great job whoever put this together, for the greater good! thanks!

Anonymous
AI Tutor 👋 I’m here to help!