AWS-Certified-Solutions-Architect-Professional Free Practice Test

- (Exam Topic 2)
A company has applications in an AWS account that is named Source. The account is in an organization in AWS Organizations. One of the applications uses AWS Lambda functions and stores inventory data in an Amazon Aurora database. The application deploys the Lambda functions by using a deployment package. The company has configured automated backups for Aurora.
The company wants to migrate the Lambda functions and the Aurora database to a new AWS account that is named Target. The application processes critical data, so the company must minimize downtime.
Which solution will meet these requirements?

1. A. Download the Lambda function deployment package from the Source accoun
2. B. Use the deployment package and create new Lambda functions in the Target accoun
3. C. Share the automated Aurora DB cluster snapshot with the Target account.
4. D. Download the Lambda function deployment package from the Source accoun
5. E. Use the deployment package and create new Lambda functions in the Target account Share the Aurora DB cluster with the Target account by using AWS Resource Access Manager {AWS RAM). Grant the Target account permission to clone the Aurora DB cluster.
6. F. Use AWS Resource Access Manager (AWS RAM) to share the Lambda functions and the Aurora DB cluster with the Target accoun
7. G. Grant the Target account permission to clone the Aurora DB cluster.
8. H. Use AWS Resource Access Manager (AWS RAM) to share the Lambda functions with the Target accoun
9. I. Share the automated Aurora DB cluster snapshot with the Target account.

Correct Answer: C

- (Exam Topic 2)
A financial services company in North America plans to release a new online web application to its customers on AWS . The company will launch the application in the us-east-1 Region on Amazon EC2 instances. The application must be highly available and must dynamically scale to meet user traffic. The company also wants to implement a disaster recovery environment for the application in the us-west-1 Region by using active-passive failover.
Which solution will meet these requirements?

1. A. Create a VPC in us-east-1 and a VPC in us-west-1 Configure VPC peering In the us-east-1 VP
2. B. create an Application Load Balancer (ALB) that extends across multiple Availability Zones in both VPCs Create an Auto Scaling group that deploys the EC2 instances across the multiple Availability Zones in both VPCs Place the Auto Scaling group behind the ALB.
3. C. Create a VPC in us-east-1 and a VPC in us-west-1. In the us-east-1 VP
4. D. create an Application Load Balancer (ALB) that extends across multiple Availability Zones in that VP
5. E. Create an Auto Scaling group that deploys the EC2 instances across the multiple Availability Zones in the us-east-1 VPC Place the Auto Scaling group behind the ALB Set up the same configuration in the us-west-1 VP
6. F. Create an Amazon Route 53 hosted zone Create separate records for each ALB Enable health checks to ensure high availability between Regions.
7. G. Create a VPC in us-east-1 and a VPC in us-west-1 In the us-east-1 VP
8. H. create an Application LoadBalancer (ALB) that extends across multiple Availability Zones in that VPC Create an Auto Scaling group that deploys the EC2 instances across the multiple Availability Zones in the us-east-1 VPC Place the Auto Scaling group behind the ALB Set up the same configuration in the us-west-1 VPC Create an Amazon Route 53 hosted zon
9. I. Create separate records for each ALB Enable health checks and configure a failover routing policy for each record.
10. J. Create a VPC in us-east-1 and a VPC in us-west-1 Configure VPC peering In the us-east-1 VP
11. K. create an Application Load Balancer (ALB) that extends across multiple Availability Zones in Create an Auto Scaling group that deploys the EC2 instances across the multiple Availability Zones in both VPCs Place the Auto Scaling group behind the ALB Create an Amazon Route 53 host.. Create a record for the ALB.

Correct Answer: C

- (Exam Topic 2)
A company runs a content management application on a single Windows Amazon EC2 instance in a development environment. The application reads and writes static content to a 2 TB Amazon Elastic Block Store (Amazon EBS) volume that is attached to the instance as the root device. The company plans to deploy this application in production as a highly available and fault-tolerant solution that runs on at least three EC2 instances across multiple Availability Zones.
A solutions architect must design a solution that joins all the instances that run the application to an Active Directory domain. The solution also must implement Windows ACLs to control access to file contents. The application always must maintain exactly the same content on all running instances at any given point in time.
Which solution will meet these requirements with the LEAST management overhead?

1. A. Create an Amazon Elastic File System (Amazon EFS) file shar
2. B. Create an Auto Scaling group that extends across three Availability Zones and maintains a minimum size of three instance
3. C. Implement a user data script to install the application, join the instance to the AD domain, and mount the EFS file share.
4. D. Create a new AMI from the current EC2 instance that is runnin
5. E. Create an Amazon FSx for Lustre file syste
6. F. Create an Auto Scaling group that extends across three Availability Zones and maintains a minimum size of three instance
7. G. Implement a user data script to join the instance to the AD domain and mount the FSx for Lustre file system.
8. H. Create an Amazon FSx for Windows File Server file syste
9. I. Create an Auto Scaling group that extends across three Availability Zones and maintains a minimum size of three instance
10. J. Implement a user data script to install the application and mount the FSx for Windows File Server file syste
11. K. Perform a seamless domain join to join the instance to the AD domain.
12. L. Create a new AMI from the current EC2 instance that is runnin
13. M. Create an Amazon Elastic File System (Amazon EFS) file syste
14. N. Create an Auto Scaling group that extends across three Availability Zones and maintains a minimum size of three instance
15. O. Perform a seamless domain join to join the instance to the AD domain.

Correct Answer: B

- (Exam Topic 2)
A retail company has a small ecommerce web application that uses an Amazon RDS for PostgreSQL DB instance The DB instance is deployed with the Multi-AZ option turned on.
Application usage recently increased exponentially and users experienced frequent HTTP 503 errors Users reported the errors, and the company's reputation suffered The company could not identify a definitive root cause.
The company wants to improve its operational readiness and receive alerts before users notice an incident The company also wants to collect enough information to determine the root cause of any future incident.
Which solution will meet these requirements with the LEAST operational overhead?

1. A. Turn on Enhanced Monitoring for the DB instance Modify the corresponding parameter group to turn on query logging for all the slow queries Create Amazon CloudWatch alarms Set the alarms to appropriate thresholds that are based on performance metrics in CloudWatch
2. B. Turn on Enhanced Monitoring and Performance Insights for the DB instance Create Amazon CloudWatch alarms Set the alarms to appropriate thresholds that are based on performance metrics in CloudWatch
3. C. Turn on log exports to Amazon CloudWatch for the PostgreSQL logs on the DB instance Analyze the logs by using Amazon Elasticsearch Service (Amazon ES) and Kibana Create a dashboard in Kibana Configure alerts that are based on the metrics that are collected
4. D. Turn on Performance Insights for the DB instance Modify the corresponding parameter group to turn on query logging for all the slow queries Create Amazon CloudWatch alarms Set the alarms to appropriate thresholds that are based on performance metrics in CloudWatch

Correct Answer: A

- (Exam Topic 2)
A solutions architect wants to make sure that only AWS users or roles with suitable permissions can access a new Amazon API Gateway endpoint The solutions architect wants an end-to-end view of each request to analyze the latency of the request and create service maps
How can the solutions architect design the API Gateway access control and perform request inspections''

1. A. For the API Gateway method, set the authorization to AWSJAM Then, give the IAM user or role execute-api Invoke permission on the REST API resource Enable the API caller to sign requests with AWS Signature when accessing the endpoint Use AWS X-Ray to trace and analyze user requests to API Gateway
2. B. For the API Gateway resource set CORS to enabled and only return the company's domain inAccess-Control-Allow-Origin headers Then give the IAM user or role execute-api Invoke permission on the REST API resource Use Amazon CloudWatch to trace and analyze user requests to API Gateway
3. C. Create an AWS Lambda function as the custom authorizer ask the API client to pass the key and secret when making the call, and then use Lambda to validate the key/secret pair against the IAM system Use AWS X-Ray to trace and analyze user requests to API Gateway
4. D. Create a client certificate for API Gateway Distribute the certificate to the AWS users and roles that need to access the endpoint Enable the API caller to pass the client certificate when accessing the endpoin
5. E. Use Amazon CloudWatch to trace and analyze user requests to API Gateway.

Correct Answer: A