A company has a small Python application that processes JSON documents and outputs the results to an on-premises SQL database. The application runs thousands of times each day. The company wants to move the application to the AWS Cloud. The company needs a highly available solution that maximizes scalability and minimizes operational overhead.Which solution will meet these requirements?
Answer(s): B
The correct answer is B because using S3 with a Lambda function provides serverless, highly available, and scalable processing as events arrive, with minimal operational overhead; the Python code runs in managed Lambda execution environments and results can be stored in Aurora for relational queries.A) While scalable, EC2-based processing requires managing instances and scaling, increasing operational overhead compared to Lambda.C) EBS Multi-Attach is for shared block storage, not ideal for stateless serverless processing; EC2 management and availability concerns remain.D) ECS with EC2 requires cluster management and scaling; SQS decoupling adds latency and operational overhead versus a direct Lambda-triggered workflow.
A company wants to use high performance computing (HPC) infrastructure on AWS for financial risk modeling. The company’s HPC workloads run on Linux. Each HPC workflow runs on hundreds of Amazon EC2 Spot Instances, is short-lived, and generates thousands of output files that are ultimately stored in persistent storage for analytics and long-term future use.The company seeks a cloud storage solution that permits the copying of on-premises data to long-term persistent storage to make data available for processing by all EC2 instances. The solution should also be a high performance file system that is integrated with persistent storage to read and write datasets and output files.Which combination of AWS services meets these requirements?
Answer(s): A
Amazon FSx for Lustre integrated with Amazon S3 provides a high-performance parallel file system (Lustre) for HPC workloads and can automatically link with S3 for persistent storage, enabling on-demand data ingest from on-premises and long-term storage with parallel read/write across hundreds of EC2 Spot Instances.A) Correct. FSx for Lustre + S3 offers HPC-optimized throughput, Lustre metadata management, and scalable storage with durable S3 backing.B) FSx for Windows File Server is a Windows-based file system, not optimized for Linux HPC workloads and Lustre-like performance.C) S3 Glacier is archival storage with retrieval delays, not a high-performance file system for HPC read/write workloads.D) S3 with EBS gp2 is not a unified HPC file system; lacks built-in parallel file system semantics and seamless on-demand data ingest from on-premises.
A company is building a containerized application on premises and decides to move the application to AWS. The application will have thousands of users soon after it is deployed. The company is unsure how to manage the deployment of containers at scale. The company needs to deploy the containerized application in a highly available architecture that minimizes operational overhead.Which solution will meet these requirements?
AWS Fargate with ECS provides a serverless, highly available, and low-operational-overhead container deployment that scales automatically based on demand, without managing underlying EC2 instances. A uses ECR+ECS with Fargate and target tracking, meeting HA and scalability with minimal ops.B uses ECS with EC2 launch type, which requires managing EC2 instances, increasing operational overhead.C relies on self-managed EC2 scaling and manual capacity planning, increasing complexity and maintenance.D uses traditional EC2 AMIs and Auto Scaling groups, which involves more management and less abstraction for containerized workloads.
A company has two applications: a sender application that sends messages with payloads to be processed and a processing application intended to receive the messages with payloads. The company wants to implement an AWS service to handle messages between the two applications. The sender application can send about 1,000 messages each hour. The messages may take up to 2 days to be processed: If the messages fail to process, they must be retained so that they do not impact the processing of any remaining messages.Which solution meets these requirements and is the MOST operationally efficient?
Answer(s): C
SQS with a standard queue and a dead-letter queue meets the throughput, message retention (up to 14 days by default, configurable), and exactly-once-like processing guarantees via idempotent processing, while decoupling sender and processor for operational efficiency.A) EC2/Redis requires managing infrastructure, does not guarantee durable retention or message processing semantics, and adds operational burden.B) Kinesis is streaming with limited message retention (default 24 hours, extended) and higher complexity; not ideal for per-message retry/dead-letter semantics.D) SNS is pub/sub, not a durable queue; messages may be lost if no subscribers, and it lacks robust retry/dead-letter semantics for processing failures.
A solutions architect must design a solution that uses Amazon CloudFront with an Amazon S3 origin to store a static website. The company’s security policy requires that all website traffic be inspected by AWS WAF.How should the solutions architect comply with these requirements?
Answer(s): D
CloudFront with an origin access identity (OAI) ensures CloudFront is the sole requester to S3, preventing direct S3 access, while enabling WAF to inspect traffic at the CloudFront distribution.A) S3 bucket policy with WAF ARN does not integrate WAF inspection on requests; WAF sits in front of CloudFront, not via S3 bucket policy.B) WAF is associated with CloudFront, but you don’t forward requests to WAF before S3; WAF sits at the edge in front of CloudFront, not between CloudFront and S3.C) Security groups and CloudFront IPs are not applicable to S3 access control; WAF attachment is on CloudFront, not via SGs.
Organizers for a global event want to put daily reports online as static HTML pages. The pages are expected to generate millions of views from users around the world. The files are stored in an Amazon S3 bucket. A solutions architect has been asked to design an efficient and effective solution.Which action should the solutions architect take to accomplish this?
Using Amazon CloudFront with the S3 bucket as its origin provides a global content delivery network that caches static HTML and serves from edge locations worldwide, reducing latency and handling high request volumes efficiently.A) Presigned URLs are for time-limited access control, not for global caching or performance of static pages.B) Cross-Region replication copies data between buckets, not performance or global delivery for static content.C) Route 53 geoproximity affects DNS routing, but does not optimize content delivery or caching for static hosting.D) Correct: CloudFront edge caching and low-latency delivery from edge locations best meets the requirements.
A company runs a production application on a fleet of Amazon EC2 instances. The application reads the data from an Amazon SQS queue and processes the messages in parallel. The message volume is unpredictable and often has intermittent traffic. This application should continually process messages without any downtime.Which solution meets these requirements MOST cost-effectively?
Using Reserved Instances for baseline capacity provides cost savings for steady-state load, while On-Demand instances cover variable, unpredictable spikes without long-term commitment, ensuring continuous processing without downtime at the lowest overall cost for variable traffic.A) Incorrect: Spot Instances are cost-effective but can interrupt, risking downtime for production processing.B) Incorrect: Reserved Instances alone fix capacity and can lead to idle or insufficient capacity during spikes; not cost-optimal for variable traffic.C) Incorrect: Mixing RI with Spot can risk interruption during spikes and adds complexity; Spot interruptions may cause downtime, not ideal for continuous processing.D) Correct: Baseline with RI plus On-Demand for variability balances cost and reliability for unpredictable queue-driven load.
A security team wants to limit access to specific services or actions in all of the team’s AWS accounts. All accounts belong to a large organization in AWS Organizations. The solution must be scalable and there must be a single point where permissions can be maintained.What should a solutions architect do to accomplish this?
A single Service Control Policy (SCP) in the Organizations root OU provides centralized, scalable permission boundaries for all member accounts, enforcing deny/allow across the entire organization. This is the correct approach for a single-point-of-maintenance solution. A) ACLs are not applicable to AWS service permissions at scale across accounts. B) Security groups control network traffic, not IAM permissions across accounts. C) Cross-account roles would require configuring in each account and do not provide centralized policy enforcement. D) SCPs are the correct, scalable mechanism for centralized permission control in AWS Organizations.
Share your comments for Amazon SAA-C02 exam with other users:
a company runs its workloads on premises. the company wants to forecast the cost of running a large application on aws. which aws service or tool can the company use to obtain this information? pricing calculator ... the aws pricing calculator is primarily used for estimating future costs
looks interesting
thanks! that’s amazing
the exam dumps are helping me get a solid foundation on the practical techniques and practices needed to be successful in the auditing world.
q 14 should be dmz sever1 and notepad.exe why does note pad have a 443 connection
question # 108, correct answers are business growth and risk reduction.
are these valid chfi questions
question: 162 should be dlp (b)
good exam questions
I have to say this is really close to real exam. Passed my exam with this.
good analytics question
this looks accurate
question 46, the answer should be data "virtualization" (not visualization).
its useful.
Pass this exam 3 days ago. The PDF version and the Xengine App is quite useful.
informative for me.
question 134s answer shoule be "dlp"
in 72 the answer must be [sys_user_has_role] table.
i appreciated the mix of multiple-choice and short answer questions. i passed my exam this morning.
great to find this website, thanks
examination questions seem to be relevant.
planning to take psm test
please allow to download
please provide dumps
is the answer to question 15 correct ? i feel like the answer should be b
its getting more technical
i think these questions are what i need.
helpful assessment
i am confused about the answers to the questions. do you know if the answers are correct?
hi, please make the dumps available for my upcoming examination.
good practice
so far it is really informative
hi i want it please please upload it
am preparing for exam ,just nice questions