Premium

AWS Certified Solutions Architect – Associate Questions and Answers (Dumps and Practice Questions)



Question : How does RDS automate common administrative tasks, such as performing backups and patching the database software that powers your DB Instance?
: How does RDS automate common administrative tasks, such as performing backups and patching the database software that powers your DB Instance?
1. By default, Amazon RDS manage on my behalf
2. You have to configure during DB Instance Setup
 3. Access Mostly Uused Products by 50000+ Subscribers
4. DBInstance owner can configure it any time

Correct Answer : Get Lastest Questions and Answer :

Amazon RDS manages the work involved in setting up a relational database, from provisioning the infrastructure capacity
you request to installing the database software. Once your database is running on its own DB Instance, Amazon RDS automates
common administrative tasks, such as performing backups and patching the database software that powers your DB Instance.
For optional Multi-AZ deployments (currently supported for MySQL and Oracle database engines), Amazon RDS also manages synchronous
data replication across Availability Zones and automatic failover.

Since Amazon RDS provides native database access, you interact with the relational database software as you normally would.
This means you are still responsible for managing the database settings that are specific to your application. You will need to
build the relational schema that best fits your use case and are responsible for any performance tuning to optimize
your database for your applications workflow.







Question : Which of the following options will protect your objects in S from being both deleted and being overwritten accidentally?

: Which of the following options will protect your objects in S from being both deleted and being overwritten accidentally?
1. Access S3 data using only signed URLs.
2. Enable S3 versioning on the bucket and enable Enable Multifactor Authentication (MFA) on the bucket.
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Disable S3 delete using an IAM bucket policy.



Correct Answer : Get Lastest Questions and Answer

Explanation: Versioning is obvious, however by enabling versioning's MFA Delete capability, which uses multi-factor authentication, can be used to provide an
additional layer of security







Question : You are making a new web application which will be stateless (i.e. it will not store session data locally). What AWS services can you use to
store session data.

: You are making a new web application which will be stateless (i.e. it will not store session data locally). What AWS services can you use to
1. AWS Storage Gateway, Elasticache and ELB
2. ELB, Elasticache and RDS
 3. Access Mostly Uused Products by 50000+ Subscribers
4. RDS, DynamoDB and Elasticache.



Correct Answer : Get Lastest Questions and Answer




Related Questions

Question : A customer is hosting their company website on a cluster of web servers that are behind a
public-facing load balancer. The customer also uses Amazon Route 53 to manage their
public DNS. How should the customer configure the DNS zone apex record to point to the
load balancer?

 : A customer is hosting their company website on a cluster of web servers that are behind a
1. Create an A record pointing to the IP address of the load balancer
2. Create a CNAME record pointing to the load balancer DNS name.
3. Access Mostly Uused Products by 50000+ Subscribers
4. Create an A record aliased to the load balancer DNS name

Ans : 3
Exp : Associating Your Custom Domain Name with Your Load Balancer Name

First, if you haven't already done so, register your domain name. The Internet Corporation for Assigned Names and Numbers (ICANN) manages domain names on
the Internet. You register a domain name using a domain name registrar, an ICANN-accredited organization that manages the registry of domain names. The
website for your registrar will provide detailed instructions and pricing information for registering your domain name. For more information, see the
following resources:

To use Amazon Route 53 to register a domain name, see Registering Domain Names Using Amazon Route 53 in the Amazon Route 53 Developer Guide.

For a list of accredited registrars, see the Accredited Registrar Directory.

If you have a domain name but are using another DNS service, such as your domain registrar, consider the option to use Amazon Route 53 as your DNS
service.
When you use Amazon Route 53 as your DNS service, you can create an alias resource record set, which has the following advantages over other DNS services
for routing DNS queries to your load balancer:

Amazon Route 53 doesn't charge for DNS queries for alias resource record sets.

You can use alias record sets to route DNS queries to your load balancer for the zone apex of your domain (for example, example.com). If you're
using a
different DNS service, you need to create a CNAME resource record set to route queries to your load balancer, but DNS doesn't allow you to create a
CNAME resource record set for the zone apex. (Note that some DNS services provide a workaround.)


Question : What is the minimum time Interval for the data that Amazon CloudWatch receives and aggregates?
: A customer is hosting their company website on a cluster of web servers that are behind a
1. One second
2. Five seconds
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Three minutes
5. Five minutes

Ans : 1 Exp : What is the minimum time interval granularity for the data that Amazon CloudWatch receives and aggregates?

Many metrics are received and aggregated at 1-minute intervals. Some are at 3-minute or 5-minute intervals.


Question : Which of the following statements are true about Amazon Route resource records?
Choose 2 answers
A. An Alias record can map one DNS name to another Amazon Route 53 DNS name.
B. A CNAME record can be created for your zone apex.
C. An Amazon Route 53 CNAME record can point to any DNS record hosted anywhere.
D. TTL can be set for an Alias record in Amazon Route 53.
E. An Amazon Route 53 Alias record can point to any DNS record hosted anywhere.


: A customer is hosting their company website on a cluster of web servers that are behind a
1. A,B
2. A,C
 3. Access Mostly Uused Products by 50000+ Subscribers
4. B,D

Ans : 2 Exp :



Question : Which storage engines are supported for use with Read Replicas?

: A customer is hosting their company website on a cluster of web servers that are behind a
1. S3
2. EBS
 3. Access Mostly Uused Products by 50000+ Subscribers
4. MyISAM




Question : You need to pass a custom script to new Amazon Linux instances created in your Auto
Scaling group. Which feature allows you to accomplish this?

 : You need to pass a custom script to new Amazon Linux instances created in your Auto
1. User data
2. EC2Config service
 3. Access Mostly Uused Products by 50000+ Subscribers
4. AWS Config



Question : When a user is uploading the SSL certificate for ELB, which of the below mentioned criteria IAM validates hence certificate comply?

 : When a user is uploading the SSL certificate for ELB, which of the below mentioned criteria IAM validates hence certificate comply?
1. Certificates must follow the X.509 PEM format.
2. Public and private certificate files can have more than one certificate
 3. Access Mostly Uused Products by 50000+ Subscribers
4. 2 and 3 both are correct
5. 1 and 3 are correct



Question : After the server certificate is uploaded, you can verify that the information is stored in IAM. Each certificate object has a unique _________
 : After the server certificate is uploaded, you can verify that the information is stored in IAM. Each certificate object has a unique _________
1. Amazon Resource Name (ARN)
2. ID
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Amazon Resource Name (ARN) and Password
5. Amazon Resource Name (ARN) and encrypted Password


Question : Which of the following services natively encrypts data at rest within an AWS region?
Choose 2 answers
A. AWS Storage Gateway
B. Amazon DynamoDB
C. Amazon CloudFront
D. Amazon Glacier
E. Amazon Simple Queue Service
 : Which of the following services natively encrypts data at rest within an AWS region?
1. A,B
2. A,D
 3. Access Mostly Uused Products by 50000+ Subscribers
4. B,D

Ans : 2
Exp : The AWS Storage Gateway is a service connecting an on-premises software appliance with cloud-based storage to provide seamless and secure
integration
between an organization"s on-premises IT environment and AWS"s storage infrastructure. The service enables you to securely store data to the AWS cloud
for
scalable and cost-effective storage. The AWS Storage Gateway supports industry-standard storage protocols that work with your existing applications. It
provides low-latency performance by maintaining frequently accessed data on-premises while encrypting and storing all of your data in Amazon Simple
Storage
Service (Amazon S3) or Amazon Glacier.
Q. Does the AWS Storage Gateway encrypt my data?

The AWS Storage Gateway encrypts all data in-transit to and from AWS via SSL. All volume and snapshot data stored in AWS using Gateway-Stored
Volumes/Gateway-Cached Volumes and all virtual tape data stored in AWS using Gateway-VTL is encrypted-at-rest using Advanced Encryption Standard (AES)
256,
a secure symmetric-key encryption standard using 256-bit encryption keys.
: Is my data encrypted?
Yes, all data in the service will be encrypted on the server side. Amazon Glacier handles key management and key protection for you. Amazon Glacier uses
one
of the strongest block ciphers available, 256-bit Advanced Encryption Standard (AES-256). 256-bit is the largest key size defined for AES. Customers
wishing
to manage their own keys can encrypt data prior to uploading it.



It is suggested please do not memorize the answers. Understand each questions and
concepts in detail before appearing in real exam.

If you have any updates or questions with respect to real exam please share with hadoopexam@gmail.com

So other learner can get benefit out of this.

Whishing you all the best
www.HadoopExam.com and www.QuickTechie.com

Please do not forget to create your profile on our technical professionals website www.QuickTechie.com
1. You will get new Articles on modern technologies like Cloud, BigData, Virtualization, Data Science, Hadoop , NoSQL etc.
2. You wil get new Jobs alerts
3. You will get updates on global software companies reviews
4. Free Tutorials
. Interview Questions


Question : A customer implemented AWS Storage Gateway with a gateway-cached volume at their
main office. An event takes the link between the main and branch office offline. Which
methods will enable the branch office to access their data? Choose 3 answers

A. Use a HTTPS GET to the Amazon S3 bucket where the files are located.
B. Restore by implementing a lifecycle policy on the Amazon S3 bucket.
C. Make an Amazon Glacier Restore API call to load the files into another Amazon S3 bucket within four to six hours.
D. Launch a new AWS Storage Gateway instance AMI in Amazon EC2, and restore from a gateway snapshot.
E. Create an Amazon EBS volume from a gateway snapshot, and mount it to an Amazon EC2 instance.
F. Launch an AWS Storage Gateway virtual iSCSI device at the branch office, and restore from a gateway snapshot.


: Which of the following services natively encrypts data at rest within an AWS region?
1. A,D,F
2. A,B,D
 3. Access Mostly Uused Products by 50000+ Subscribers
4. C,D,E
5. B,C,E

Ans : 1
Exp :



Question : Select the which correcly applies to changing the DB Subnet Group of your DB Instance
1. An existing DB Subnet Group can be updated to add more subnets, for existing Availability Zones

2. An existing DB Subnet Group can not be updated to add more subnets, for new Availability Zones

3. Access Mostly Uused Products by 50000+ Subscribers
running in a particular AZ that gets removed from the subnet group

4. Updating an existing DB Subnet Group does not change the current subnet of the deployed DB instance

5. Explicitly changing the DB Subnet Group of a deployed DB instance is not currently allowed

: Which of the following services natively encrypts data at rest within an AWS region?
1. 1,2,3,4
2. 1,2,3
 3. Access Mostly Uused Products by 50000+ Subscribers
4. 1,4,5
5. All 1,2,3,4,5



Question : If want to use an SSL protocol but do not want to terminate the connection on your load balancer,
you can use a ______________ protocol for connection from the client to your load balancer

 : If want to use an SSL protocol but do not want to terminate the connection on your load balancer,
1. HTTP
2. TSL
 3. Access Mostly Uused Products by 50000+ Subscribers
4. TCP
5. SSL