Daily AWS Solution Architect questions #17

Daily AWS Solution Architect questions #17

Q81: A company has an automobile sales website that stores its listings in a database on Amazon RDS. When an automobile is sold, the listing needs to be removed from the website and the data must be sent to multiple target systems. Which design should a solutions architect recommend?

  • A.?Create an AWS Lambda function triggered when the database on Amazon RDS is updated to send the information to an Amazon Simple Queue Service (Amazon SQS) queue for the targets to consume.
  • B.?Create an AWS Lambda function triggered when the database on Amazon RDS is updated to send the information to an Amazon Simple Queue Service (Amazon SQS) FIFO queue for the targets to consume.
  • C.?Subscribe to an RDS event notification and send an Amazon Simple Queue Service (Amazon SQS) queue fanned out to multiple Amazon Simple Notification Service (Amazon SNS) topics. Use AWS Lambda functions to update the targets.
  • D.?Subscribe to an RDS event notification and send an Amazon Simple Notification Service (Amazon SNS) topic fanned out to multiple Amazon Simple Queue Service (Amazon SQS) queues. Use AWS Lambda functions to update the targets.
  • Explain: Interesting point that Amazon RDS event notification doesn't support any notification when data inside DB is updated. https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Events.overview.html So subscription to RDS events doesn't give any value for Fanout = SNS => SQS B is out because FIFO is not required here. A is left as correct answer

Q82: A company needs to store data in Amazon S3 and must prevent the data from being changed. The company wants new objects that are uploaded to Amazon S3 to remain unchangeable for a nonspecific amount of time until the company decides to modify the objects. Only specific users in the company's AWS account can have the ability 10 delete the objects. What should a solutions architect do to meet these requirements?

  • A.?Create an S3 Glacier vault. Apply a write-once, read-many (WORM) vault lock policy to the objects.
  • B.?Create an S3 bucket with S3 Object Lock enabled. Enable versioning. Set a retention period of 100 years. Use governance mode as the S3 bucket’s default retention mode for new objects.
  • C.?Create an S3 bucket. Use AWS CloudTrail to track any S3 API events that modify the objects. Upon notification, restore the modified objects from any backup versions that the company has.
  • D.?Create an S3 bucket with S3 Object Lock enabled. Enable versioning. Add a legal hold to the objects. Add the s3:PutObjectLegalHold permission to the IAM policies of users who need to delete the objects.
  • Explain:
  • S3 Object Lock: This?feature allows?you to?store objects using a write-once-read-many (WORM) model. It can help prevent?objects from?being deleted or?overwritten for a?fixed amount of time?or indefinitely.
  • Versioning: Enabling versioning ensures?that any?changes?to objects are preserved as different versions, which?helps?in maintaining data integrity.
  • Legal Hold: Adding a?legal hold to objects ensures?that they cannot?be?deleted or modified until the hold is removed. This is useful for retaining data until a specific decision?is made.
  • IAM?Policies: By adding the?s3:PutObjectLegalHold?permission?to specific users, you?control who can remove the legal hold?and thus who?can delete?the objects.

  • This approach?meets?the requirement of?preventing data changes and allowing only specific?users?to delete objects.


Q83: A social media company allows users to upload images to its website. The website runs on Amazon EC2 instances. During upload requests, the website resizes the images to a standard size and stores the resized images in Amazon S3. Users are experiencing slow upload requests to the website. The company needs to reduce coupling within the application and improve website performance. A solutions architect must design the most operationally efficient process for image uploads. Which combination of actions should the solutions architect take to meet these requirements? (Choose two.)

  • A.?Configure the application to upload images to S3 Glacier.
  • B.?Configure the web server to upload the original images to Amazon S3.
  • C.?Configure the application to upload images directly from each user's browser to Amazon S3 through the use of a presigned URL
  • D.?Configure S3 Event Notifications to invoke an AWS Lambda function when an image is uploaded. Use the function to resize the image.
  • E.?Create an Amazon EventBridge (Amazon CloudWatch Events) rule that invokes an AWS Lambda function on a schedule to resize uploaded images.
  • Explain:
  • B. Configure?the web?server?to?upload?the?original?images to Amazon S3: This action?offloads?the?storage?of images?from the?EC2 instances to?S3, which?is?more?scalable and reduces?the?load on?the web?server, improving?performance.
  • D. Configure?S3?Event Notifications?to invoke?an?AWS Lambda function?when an?image?is?uploaded. Use the function to resize the?image: This?action decouples?the image?processing?from the upload process. When an image is?uploaded?to?S3, an?event notification?triggers a?Lambda function?to resize?the image. This improves the?operational efficiency?and?performance?of?the website by handling image resizing asynchronously.

Q84: A company recently migrated a message processing system to AWS. The system receives messages into an ActiveMQ queue running on an Amazon EC2 instance. Messages are processed by a consumer application running on Amazon EC2. The consumer application processes the messages and writes results to a MySQL database running on Amazon EC2. The company wants this application to be highly available with low operational complexity. Which architecture offers the HIGHEST availability?

  • A.?Add a second ActiveMQ server to another Availability Zone. Add an additional consumer EC2 instance in another Availability Zone. Replicate the MySQL database to another Availability Zone.
  • B.?Use Amazon MQ with active/standby brokers configured across two Availability Zones. Add an additional consumer EC2 instance in another Availability Zone. Replicate the MySQL database to another Availability Zone.
  • C.?Use Amazon MQ with active/standby brokers configured across two Availability Zones. Add an additional consumer EC2 instance in another Availability Zone. Use Amazon RDS for MySQL with Multi-AZ enabled.
  • D.?Use Amazon MQ with active/standby brokers configured across two Availability Zones. Add an Auto Scaling group for the consumer EC2 instances across two Availability Zones. Use Amazon RDS for MySQL with Multi-AZ enabled.
  • Explain:
  • Amazon MQ with?active/standby brokers?across two Availability?Zones: This ensures?high availability?for the?message queue, as the standby?broker can?take over?if the active broker?fails.
  • Auto Scaling?group for consumer EC2?instances across two?Availability?Zones: This provides high availability and scalability for?the consumer application, ensuring?that there?are always?instances available to process?messages, even if?some?instances fail.
  • Amazon RDS?for MySQL?with Multi-AZ?enabled: This provides?high availability for?the MySQL?database, as RDS automatically?replicates the database?to?a standby instance in another?Availability Zone?and handles failover?if the?primary instance fails.
  • This architecture?offers the?highest availability?with low operational complexity?by?leveraging?managed services and built-in high availability features of AWS.

Q85: A company hosts a containerized web application on a fleet of on-premises servers that process incoming requests. The number of requests is growing quickly. The on-premises servers cannot handle the increased number of requests. The company wants to move the application to AWS with minimum code changes and minimum development effort. Which solution will meet these requirements with the LEAST operational overhead?

  • A.?Use AWS Fargate on Amazon Elastic Container Service (Amazon ECS) to run the containerized web application with Service Auto Scaling. Use an Application Load Balancer to distribute the incoming requests.
  • B.?Use two Amazon EC2 instances to host the containerized web application. Use an Application Load Balancer to distribute the incoming requests.
  • C.?Use AWS Lambda with a new code that uses one of the supported languages. Create multiple Lambda functions to support the load. Use Amazon API Gateway as an entry point to the Lambda functions.
  • D.?Use a high performance computing (HPC) solution such as AWS ParallelCluster to establish an HPC cluster that can process the incoming requests at the appropriate scale.
  • Explain: The keyword is LEAST operational overhead which means Fargate a serverless service fully managed by AWS

Q86: A company uses 50 TB of data for reporting. The company wants to move this data from on premises to AWS. A custom application in the company’s data center runs a weekly data transformation job. The company plans to pause the application until the data transfer is complete and needs to begin the transfer process as soon as possible. The data center does not have any available network bandwidth for additional workloads. A solutions architect must transfer the data and must configure the transformation job to continue to run in the AWS Cloud. Which solution will meet these requirements with the LEAST operational overhead?

  • A.?Use AWS DataSync to move the data. Create a custom transformation job by using AWS Glue.
  • B.?Order an AWS Snowcone device to move the data. Deploy the transformation application to the device.
  • C.?Order an AWS Snowball Edge Storage Optimized device. Copy the data to the device. Create a custom transformation job by using AWS Glue.
  • D.?Order an AWS Snowball Edge Storage Optimized device that includes Amazon EC2 compute. Copy the data to the device. Create a new EC2 instance on AWS to run the transformation application.
  • Explain:
  • AWS Snowball?Edge Storage?Optimized?device: This device is designed for?large-scale?data transfer?and can?handle the 50 TB of?data efficiently. It?provides a?high-capacity storage?solution?for transferring large amounts of data without relying on?network bandwidth.
  • AWS Glue: AWS Glue is a fully managed ETL (extract, transform, load) service that makes it easy?to prepare?and transform data for analytics. By?using AWS Glue, you can?create a custom transformation?job?to run in?the?AWS Cloud, which reduces?operational overhead?compared to?managing?your own EC2 instances.
  • This solution?meets the requirements?with?the least operational overhead by?leveraging?AWS?managed services?for both data transfer and?data transformation.


  • Q87: A company has created an image analysis application in which users can upload photos and add photo frames to their images. The users upload images and metadata to indicate which photo frames they want to add to their images. The application uses a single Amazon EC2 instance and Amazon DynamoDB to store the metadata. The application is becoming more popular, and the number of users is increasing. The company expects the number of concurrent users to vary significantly depending on the time of day and day of week. The company must ensure that the application can scale to meet the needs of the growing user base. Which solution meats these requirements?
  • A.?Use AWS Lambda to process the photos. Store the photos and metadata in DynamoDB.
  • B.?Use Amazon Kinesis Data Firehose to process the photos and to store the photos and metadata.
  • C.?Use AWS Lambda to process the photos. Store the photos in Amazon S3. Retain DynamoDB to store the metadata.
  • D.?Increase the number of EC2 instances to three. Use Provisioned IOPS SSD (io2) Amazon Elastic Block Store (Amazon EBS) volumes to store the photos and metadata.
  • Explain: Solution C offloads the photo processing to Lambda. Storing the photos in S3 ensures scalability and durability, while keeping the metadata in DynamoDB allows for efficient querying of the associated information.

Q88: A medical records company is hosting an application on Amazon EC2 instances. The application processes customer data files that are stored on Amazon S3. The EC2 instances are hosted in public subnets. The EC2 instances access Amazon S3 over the internet, but they do not require any other network access. A new requirement mandates that the network traffic for file transfers take a private route and not be sent over the internet. Which change to the network architecture should a solutions architect recommend to meet this requirement?

  • A.?Create a NAT gateway. Configure the route table for the public subnets to send traffic to Amazon S3 through the NAT gateway.
  • B.?Configure the security group for the EC2 instances to restrict outbound traffic so that only traffic to the S3 prefix list is permitted.
  • C.?Move the EC2 instances to private subnets. Create a VPC endpoint for Amazon S3, and link the endpoint to the route table for the private subnets.
  • D.?Remove the internet gateway from the VPC. Set up an AWS Direct Connect connection, and route traffic to Amazon S3 over the Direct Connect connection.
  • Explain: The correct answer is C. Move the EC2 instances to private subnets. Create a VPC endpoint for Amazon S3, and link the endpoint to the route table for the private subnets. To meet the new requirement of transferring files over a private route, the EC2 instances should be moved to private subnets, which do not have direct access to the internet. This ensures that the traffic for file transfers does not go over the internet. To enable the EC2 instances to access Amazon S3, a VPC endpoint for Amazon S3 can be created. VPC endpoints allow resources within a VPC to communicate with resources in other services without the traffic being sent over the internet. By linking the VPC endpoint to the route table for the private subnets, the EC2 instances can access Amazon S3 over a private connection within the VPC.

Q89: A company uses a popular content management system (CMS) for its corporate website. However, the required patching and maintenance are burdensome. The company is redesigning its website and wants a new solution. The website will be updated four times a year and does not need to have any dynamic content available. The solution must provide high scalability and enhanced security. Which combination of changes will meet these requirements with the LEAST operational overhead? (Choose two.)

  • A.?Configure Amazon CloudFront in front of the website to use HTTPS functionality.
  • B.?Deploy an AWS WAF web ACL in front of the website to provide HTTPS functionality.
  • C.?Create and deploy an AWS Lambda function to manage and serve the website content.
  • D.?Create the new website and an Amazon S3 bucket. Deploy the website on the S3 bucket with static website hosting enabled.
  • E.?Create the new website. Deploy the website by using an Auto Scaling group of Amazon EC2 instances behind an Application Load Balancer.
  • Explain: For hosting static website we obviously use S3 since S3 is super scalable, about CDN we should think about CloudFront which come with HTTPS security is enhanced. B does not make sense because you are not replacing the CDN with anything, E works too but takes too much effort and compared to S3, S3 still wins in term of scalability.

Q90: A company is building a web-based application running on Amazon EC2 instances in multiple Availability Zones. The web application will provide access to a repository of text documents totaling about 900 TB in size. The company anticipates that the web application will experience periods of high demand. A solutions architect must ensure that the storage component for the text documents can scale to meet the demand of the application at all times. The company is concerned about the overall cost of the solution. Which storage solution meets these requirements MOST cost-effectively?

  • A.?Amazon Elastic Block Store (Amazon EBS)
  • B.?Amazon Elastic File System (Amazon EFS)
  • C.?Amazon OpenSearch Service (Amazon Elasticsearch Service)
  • D.?Amazon S3.
  • Explain: The price of using S3 is the cheapest amongst EBS, EFS, and OpenSearch Service.

Tài Nguy?n

Team Lead at CASTIS Co.,Ltd.

2 个月

Building your AWS expertise is great! Collaboration can be even more impactful.

要查看或添加评论,请登录