Skip to content
Home » AWS Solutions Architect Questions and Answers Part-57

AWS Solutions Architect Questions and Answers Part-57

    AWS Solutions Architect Questions and Answers Part-57

    Get ready to excel in your AWS Solutions Architect certification with this comprehensive collection of questions and answers. Covering critical topics like cloud architecture design, AWS services, security best practices, and cost optimization, these Q&A sessions will help you gain a deep understanding of AWS concepts and prepare effectively for the exam. Whether you are a beginner or an experienced professional, these answers provide clear explanations and practical examples to solidify your AWS knowledge and boost your confidence.

    1.A company is storing data on Amazon Simple Storage Service (S3). The company’s security policy mandates that data is encrypted at rest. Which of the following methods can achieve this?

    Choose 3 answers

    A.Use Amazon S3 server-side encryption with AWS Key Management Service managed keys.

    B.Use Amazon S3 server-side encryption with customer-provided keys.

    C.Use Amazon S3 server-side encryption with EC2 key pair.

    D.Use Amazon S3 bucket policies to restrict access to the data at rest.

    E.Encrypt the data on the client-side before ingesting to Amazon S3 using their own master key.

    F.Use SSL to encrypt the data while in transit to Amazon S3.

    1. Use Amazon S3 server-side encryption with AWS Key Management Service managed keys.

    2. Use Amazon S3 server-side encryption with customer-provided keys.

    3. Encrypt the data on the client-side before ingesting to Amazon S3 using their own master key.

    Explanation:

    1. Amazon S3 Server-Side Encryption with AWS KMS (SSE-KMS):

      • Encrypts data at rest using keys managed by AWS Key Management Service (KMS).

    2. Amazon S3 Server-Side Encryption with Customer-Provided Keys (SSE-C):

      • Allows customers to supply their own encryption keys for Amazon S3 to use for encryption and decryption.

    3. Client-Side Encryption:

      • Data can be encrypted on the client-side before uploading to S3 using a customer-managed master key, ensuring data security before it even reaches AWS.

    Click to know the Answer Collapse

    2.Location of Instances are ____________

    A.Regional

    B.based on Availability Zone

    C.Global

    Answer:B

    based on Availability Zone

    Explanation:

    • Amazon EC2 instances are launched in a specific Availability Zone (AZ) within a region.

    • An Availability Zone is a distinct location within a region that provides isolated, fault-tolerant infrastructure.

    • While regions are geographically distributed, instances are physically located in an assigned Availability Zone within that region

    Click to know the Answer Collapse

    3.Can I use Provisioned IOPS with VPC?

    A.Only Oracle based RDS

    B.No

    C.Only with MSSQL based RDS

    D.Yes for all RDS instances

    Answer:D

    Yes for all RDS instances

    Explanation:

    • Provisioned IOPS (PIOPS) can be used with all Amazon RDS instances running in a VPC.

    • It is available for all supported database engines, including:

      • MySQL

      • PostgreSQL

      • Oracle

      • SQL Server

      • MariaDB

      • Amazon Aurora

    • PIOPS provides high-performance, consistent storage ideal for I/O-intensive applications.

    Click to know the Answer Collapse

    4.An Auto-Scaling group spans 3 AZs and currently has 4 running EC2 instances. When Auto Scaling needs to terminate an EC2 instance by default, AutoScaling will:

    Choose 2 answers

    A.Allow at least five minutes for Windows/Linux shutdown scripts to complete, before terminating the instance.

    B.Terminate the instance with the least active network connections. If multiple instances meet this criterion, one will be randomly selected.

    C.Send an SNS notification, if configured to do so.

    D.Terminate an instance in the AZ which currently has 2 running EC2 instances.

    E.Randomly select one of the 3 AZs, and then terminate an instance in that AZ.

    1. Send an SNS notification, if configured to do so.

    2. Terminate an instance in the AZ which currently has 2 running EC2 instances.

    Explanation:

    1. SNS Notification:

      • Auto Scaling can be configured to send an SNS notification when an instance is launched or terminated.

      • This allows administrators to monitor and track Auto Scaling activities.

    2. Terminate in the AZ with More Instances:

      • By default, Auto Scaling tries to maintain balance across Availability Zones (AZs).

      • If there is an imbalance, Auto Scaling terminates instances in the AZ with the highest number of running instances to maintain even distribution.

    Click to know the Answer Collapse

    You have a video transcoding application running on Amazon EC2. Each instance polls a queue to find out which video should be transcoded, and then runs a transcoding process If this process is interrupted, the video will be transcoded by another instance based on the queuing system. You have a large backlog of videos which need to be transcoded and would like to reduce this backlog by adding more instances. You will need these instances only until the backlog is reduced. Which type of Amazon EC2 instances should you use to reduce the backlog in the most cost efficient way?

    A.Reserved instances

    B.Spot instances

    C.Dedicated instances

    D.On-demand instances

    Answer:B

    Spot instances

    Explanation:

    • Spot Instances are ideal for workloads that are fault-tolerant and can handle interruptions, such as batch processing or video transcoding.

    • They offer significant cost savings (up to 90% cheaper than On-Demand instances).

    • Since your transcoding process can be resumed by another instance if interrupted, Spot Instances are the most cost-efficient option to reduce the backlog quickly

     
    Click to know the Answer Collapse

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Need Help?
    Call Now