AWS Certified Solutions Architect – Associate Questions and Answers (Dumps and Practice Questions)
Question : Select the correct statement which applies for when you change the DB Subnet Group of your DB Instance?
1. An existing DB Subnet Group can be updated to add more subnets, either for existing Availability Zones or for new Availability Zones added since the
creation of the DB Instance.
2. Removing subnets from an existing DB Subnet Group can cause unavailability for instances if they are running in a particular AZ that gets removed from
the subnet group
3. Access Mostly Uused Products by 50000+ Subscribers
4. Explicitly changing the DB Subnet Group of a deployed DB instance is not currently allowed.
1. 1 ,2 and 3 are correct
2. Only 1,3 and 4 are correct
3. Access Mostly Uused Products by 50000+ Subscribers
4. All 1,2, 3 and 4 are correct
Correct Answer : Get Lastest Questions and Answer :
Explanation: An existing DB Subnet Group can be updated to add more subnets, either for existing Availability Zones or for new Availability Zones added since the
creation of the DB Instance. Removing subnets from an existing DB Subnet Group can cause unavailability for instances if they are running in a particular AZ
that gets removed from the subnet group.
At the present time, updating an existing DB Subnet Group does not change the current subnet of the deployed DB instance; an instance-type scale operation
is required. Explicitly changing the DB Subnet Group of a deployed DB instance is not currently allowed.
Question : Select the correct statement which applies to encrypt connections between your application and your DB Instance using SSL
1. This option is currently only supported for the MySQL, SQL Server, Oracle and PostgreSQL engines.
2. Amazon RDS generates an SSL certificate for each DB Instance. Once an encrypted connection is established, data transferred between the DB Instance and
your application will be encrypted during transfer.
3. Access Mostly Uused Products by 50000+ Subscribers
4. SSL support within Amazon RDS is for encrypting the connection between your application and your DB Instance; it should not be relied on for
authenticating the DB Instance itself.
5. SSL encryption is a compute-intensive operation and will increase the latency of your database connection
1. 1,2,3,4
2. 1,3,4,5
3. Access Mostly Uused Products by 50000+ Subscribers
4. All 1,2,3,4 and 5 are correct
Correct Answer : Get Lastest Questions and Answer :
Explanation: Exp This option is currently only supported for the MySQL, SQL Server, and PostgreSQL engines.
Amazon RDS generates an SSL certificate for each DB Instance. Once an encrypted connection is established, data transferred between the DB Instance and your
application will be encrypted during transfer. If you require your data to be encrypted while at rest in the database, your application must manage the
encryption and decryption of data. Also note that SSL support within Amazon RDS is for encrypting the connection between your application and your DB
Instance; it should not be relied on for authenticating the DB Instance itself.
While SSL offers security benefits, be aware that SSL encryption is a compute-intensive operation and will increase the latency of your database connection.
Question : You had a setup of CloudWatch alarm on the CPU utilization metric at % with a time interval of minutes and periods to monitor.
What will be the state of the alarm at the end of 50 minutes, if the CPU utilization is constant at 90%?
1. OK
2. ALARM
3. Access Mostly Uused Products by 50000+ Subscribers
4. INSUFFICIENT_DATA
Correct Answer : Get Lastest Questions and Answer :
You can create an CloudWatch alarm that sends an Amazon Simple Notification Service message when the alarm changes state. An alarm watches a single metric
over a time period you specify, and performs one or more actions based on the value of the metric relative to a given threshold over a number of time
periods. The action is a notification sent to an Amazon Simple Notification Service topic or Auto Scaling policy. Alarms invoke actions for sustained state
changes only. CloudWatch alarms will not invoke actions simply because they are in a particular state, the state must have changed and been maintained for a
specified number of periods.
After an alarm invokes an action due to a change in state, its subsequent behavior depends on the type of action that you have associated with the alarm.
For Auto Scaling policy notifications, the alarm continues to invoke the action for every period that the alarm remains in the new state. For Amazon Simple
Notification Service notifications, no additional actions are invoked.
An alarm has three possible states:
OK The metric is within the defined threshold
ALARM The metric is outside of the defined threshold
INSUFFICIENT_DATA The alarm has just started, the metric is not available, or not enough data is available for the metric to determine the alarm state
In this case the alarm watches a metric every 5 minutes for 5 intervals. Thus, it needs atleast 25 minutes to come to the OK state. Till then it will be in
the INSUFFUCIENT_DATA state.
Since 50 minutes have passed and CPU utilization is at 90% constant, the state of alarm will be ALARM.
Related Questions
Question :
If you are planning on deploying your load balancer within Amazon Virtual Private Cloud (Amazon VPC), then which of the following needs to be
configured to allow traffic to be routed between the subnets in your VPC.
1. Security group rules
2. Network ACLs
3. Access Mostly Uused Products by 50000+ Subscribers
4. Nothing extra needs to be configured
Question :
Select the correct statement in regards Elastic Load Balancing to distribute incoming requests across EC2 instances
1. Your load balancer does not distribute traffic across regions.
2. To distribute traffic across multiple Availability Zones, launch your Amazon EC2 instances in all the Availability Zones you plan to use and
then register the instances with your load balancer.
3. Access Mostly Uused Products by 50000+ Subscribers
4. Only 2 and 3 are correct
5. All 1,2 and 3 are correct
Question : In SNS topic , you have published a message successfully, and later you found this information
was private and should not be published, which is the best way to re-call this published message,
1. Ask topic admin to delete this message.
2. You can delete this message from topic UI monitoring tool
3. Access Mostly Uused Products by 50000+ Subscribers
4. Once a message has been successfully published to a topic, it cannot be recalled
Question :Select the correct statement which applies to receive SMS from SNS topic
1. All messages published to the topic can be delivered to that phone number as SMS messages.
2. Currently Amazon SNS accepts all Countries phone numbers as valid subscriptions
3. Access Mostly Uused Products by 50000+ Subscribers
4. All SMS subscriptions are associated with Amazon SNS topics. There is no way to create an SMS subscription without associating it with a topic
5. SNS also support MMS messaging at this time
1. 1,2,3
2. 1,3,4
3. Access Mostly Uused Products by 50000+ Subscribers
4. 3,4,5
5. 1,4,5
Question : Can I move my existing DB instances from inside VPC to outside VPC?
1. Only if configured during setup
2. Yes, but only admin can do that
3. Access Mostly Uused Products by 50000+ Subscribers
4. Yes, Anybody can do that
Question : Which if the following you should make sure or precaustions has to be taken care , so DB Instances in VPC are accessible by All applications.
1. You have to modify routing tables
2. You have to modify networking ACLs in your VPC
3. Access Mostly Uused Products by 50000+ Subscribers
You should configure your networking ACLs to ensure that cross-AZ communication is possible.
1. Only 3 is correct
2. 1,2 are correct
3. Access Mostly Uused Products by 50000+ Subscribers
4. All 1,2 and 3 are correct