Amazon AWS-Solutions-Architect-Professional Exam Dumps - PDF Questions and Testing Engine [Q119-Q140]

Amazon AWS-Solutions-Architect-Professional Exam Dumps - PDF Questions and Testing Engine

Latest AWS-Solutions-Architect-Professional Exam Dumps for Pass Guaranteed

For more info read reference:

Amazon Web Services Website

NEW QUESTION 119
How does in-memory caching improve the performance of applications in ElastiCache?

• A. It improves application performance by using a part of instance RAM for caching important data.
• B. It improves application performance by storing critical pieces of data in memory for low-latency access.
• C. It improves application performance by implementing good database indexing strategies.
• D. It improves application performance by deleting the requests that do not contain frequently accessed data.

Answer: B

Explanation:
In Amazon ElastiCache, in-memory caching improves application performance by storing critical pieces of data in memory for low-latency access. Cached information may include the results of I/O-intensive database queries or the results of computationally intensive calculations.
http://aws.amazon.com/elasticache/faqs/#g4

 

NEW QUESTION 120
A company collects a steady stream of 10 million data records from 100,000 sources each day. These records are written to an Amazon RDS MySQL DB. A query must produce the daily average of a data source over the past 30 days. There are twice as many reads as writes. Queries to the collected data are for one source ID at a time.
How can the Solutions Architect improve the reliability and cost effectiveness of this solution?

• A. Ingest data into Amazon Kinesis using a retention period of 30 days. Use AWS Lambda to write data records to Amazon ElastiCache for read access.
• B. Use Amazon DynamoDB with the source ID as the partition key. Use a different table each day.
• C. Use Amazon DynamoDB with the source ID as the partition key and the timestamp as the sort key. Use a Time to Live (TTL) to delete data after 30 days.
• D. Use Amazon Aurora with MySQL in a Multi-AZ mode. Use four additional read replicas.

Answer: D

 

NEW QUESTION 121
An organization is planning to host a web application in the AWS VPC. The organization does not want to
host a database in the public cloud due to statutory requirements. How can the organization setup in this
scenario?

• A. The organization should use the public subnet for the app server and use RDS with a storage gateway
  to access as well as sync the data securely from the local data center.
• B. The organization should plan the app server on the public subnet and use RDS with the private subnet
  for a secure data operation.
• C. The organization should plan the app server on the public subnet and database in a private subnet so it
  will not be in the public cloud.
• D. The organization should plan the app server on the public subnet and database in the organization's
  data center and connect them with the VPN gateway.

Answer: D

Explanation:
A Virtual Private Cloud (VPC) is a virtual network dedicated to the user's AWS account.
The user can create subnets as per the requirement within a VPC. If the user wants to connect VPC from
his own data centre, he can setup a public and VPN only subnet which uses hardware VPN access to
connect with his data centre. When the user has configured this setup with Wizard, it will create a virtual
private gateway to route all the traffic of the VPN subnet.
If the virtual private gateway is attached with VPC and the user deletes the VPC from the console it will
first automatically detach the gateway and only then delete the VPC.
Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.html

 

NEW QUESTION 122
A user is trying to create a PIOPS EBS volume with 4000 IOPS and 100 GB size. AWS does not allow the user to create this volume. What is the possible root cause for this?

• A. The ratio between IOPS and the EBS volume is higher than 30
• B. The maximum IOPS supported by EBS is 3000
• C. The ratio between IOPS and the EBS volume is lower than 50
• D. PIOPS is supported for EBS higher than 500 GB size

Answer: A

Explanation:
A Provisioned IOPS (SSD) volume can range in size from 4 GiB to 16 TiB and you can provision up to 20,000 IOPS per volume. The ratio of IOPS provisioned to the volume size requested should be a maximum of 30; for example, a volume with 3000 IOPS must be at least 100 GB.
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSVolumeTypes.html#EBSVolumeTyp es_piops

 

NEW QUESTION 123
Which statement is NOT true about accessing remote AWS region in the US by your AWS Direct Connect which is located in the US?

• A. Any data transfer out of a remote region is billed at the location of your AWS Direct Connect data transfer rate.
• B. To connect to a VPC in a remote region, you can use a virtual private network (VPN) connection over your public virtual interface.
• C. You can use a single AWS Direct Connect connection to build multi-region services.
• D. AWS Direct Connect locations in the United States can access public resources in any US region.

Answer: A

Explanation:
Explanation
AWS Direct Connect locations in the United States can access public resources in any US region. You can use a single AWS Direct Connect connection to build multi-region services. To connect to a VPC in a remote region, you can use a virtual private network (VPN) connection over your public virtual interface.
To access public resources in a remote region, you must set up a public virtual interface and establish a border gateway protocol (BGP) session. Then your router learns the routes of the other AWS regions in the US. You can then also establish a VPN connection to your VPC in the remote region.
Any data transfer out of a remote region is billed at the remote region data transfer rate.
http://docs.aws.amazon.com/directconnect/latest/UserGuide/remote_regions.html

 

NEW QUESTION 124
A company runs its production workload on an Amazon Aurora MySQL DB cluster that includes six Aurora Replicas. The company wants near-real-lime reporting queries from one of its departments to be automatically distributed across three of the Aurora Replicas. Those three replicas have a different compute and memory specification from the rest of the DB cluster.
Which solution meets these requirements?

• A. Use the reader endpoint to automatically distribute the read-only workload.
• B. Use any of the instance endpoints for the selected three nodes.
• C. Create and use a custom endpoint for the workload.
• D. Create a three-node cluster clone and use the reader endpoint.

Answer: D

 

NEW QUESTION 125
A company has a policy that all Amazon EC2 instances that are running a database must exist within the same subnets in a shared VPC Administrators must follow security compliance requirements and are not allowed to directly log in to the shared account All company accounts are members of the same organization in AWS Organizations. The number of accounts will rapidly increase as the company grows.
A solutions architect uses AWS Resource Access Manager to create a resource share in the shared account What is the MOST operationally efficient configuration to meet these requirements?

• A. Add the VPC to the resource share. Add the account IDs as principals
• B. Add all subnets within the VPC to the resource share. Add the account IDs as principals
• C. Add all subnets within the VPC to the resource share. Add the organization as a principal.
• D. Add the VPC to the resource share. Add the organization as a principal

Answer: B

 

NEW QUESTION 126
A user is planning to host a Highly Available system on the AWS VPC. Which of the below mentioned
statements is helpful in this scenario?

• A. Create VPC with only one public subnet and launch instances in different AZs using that subnet.
• B. Create VPC subnets in two separate availability zones and launch instances in different subnets.
• C. Create two VPCs in two separate zones and setup failover with ELB such that if one VPC fails it will
  divert traffic to another VPC.
• D. Create VPC with only one private subnet and launch instances in different AZs using that subnet.

Answer: B

Explanation:
A Virtual Private Cloud (VPC) is a virtual network dedicated to the user's AWS account. It enables the
user to launch AWS resources into a virtual network that the user has defined. The VPC is always specific
to a region. The user can create a VPC which can span multiple Availability Zones by adding one or more
subnets in each Availability Zone. Each subnet must reside entirely within one Availability Zone and
cannot span across zones.
Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.html#VPCSubnet

 

NEW QUESTION 127
You have deployed a three-tier web application in a VPC with a CIDR block of 10.0.0.0/28 You initially
deploy two web servers, two application servers, two database servers and one NAT instance tor a total
of seven EC2 instances The web. Application and database servers are deployed across two availability
zones (AZs). You also deploy an ELB in front of the two web servers, and use Route53 for DNS Web
(raffle gradually increases in the first few days following the deployment, so you attempt to double the
number of instances in each tier of the application to handle the new load unfortunately some of these
new instances fail to launch.
Which of the following could be the root caused? (Choose 2 answers)

• A. AWS reserves the first four and the last IP address in each subnet's CIDR block so you do not have
  enough addresses left to launch all of the new EC2 instances
• B. AWS reserves one IP address in each subnet's CIDR block for Route53 so you do not have enough
  addresses left to launch all of the new EC2 instances
• C. The ELB has scaled-up, adding more instances to handle the traffic spike, reducing the number of
  available private IP addresses for new instance launches
• D. AWS reserves the first and the last private IP address in each subnet's CIDR block so you do not have
  enough addresses left to launch all of the new EC2 instances
• E. The Internet Gateway (IGW) of your VPC has scaled-up, adding more instances to handle the traffic
  spike, reducing the number of available private IP addresses for new instance launches

Answer: A,C

 

NEW QUESTION 128
A solutions architect is designing a web application on AWS that requires 99.99% availability. The application will consist of a three-tier architecture that supports 300.000 web requests each minute when experiencing peak traffic. The application will use Amazon Route 53 for DNS resolution. Amazon CloudFront as the content delivery network (CDN), an Elastic Load Balancer far load balancing. Amazon EC2 Auto Scaling groups to scale the application tier, and Amazon Aurora MySQL as the backend database. The backend database load will average 90% reads and 10% writes. The company wants to build a cost-effective solution, but reliability is critical.
Which set of strategies should the solutions architect use?

• A. Build the application in a single AWS Region. Deploy the EC2 application layer to three Availability Zones using an Auto Scaling group with a minimum desired capacity sufficient to process 450.000 requests each minute. Use a Multi-AZ Amazon Aurora MySQL DB duster with two Aurora Replicas.
  Each Aurora Replica must have enough capacity to support 100% of the peak read queries.
• B. Build the application in a single AWS Region. Deploy the EC2 application layer to two Availability Zones using an Auto Scaling group with a minimum desired capacity sufficient to process 300.000 requests each minute. Use a Multi-AZ Amazon Aurora MySQL DB cluster with one Aurora Replica.
  The Aurora Replica must have enough capacity to support 50% of the peak read and write queries.
• C. Build the application in two AWS Regions Deploy the EC2 application layer to two Availability Zones using an Auto Scaling group with dynamic scaling based on the request metrics in each Region. In the second Region, deploy an Amazon Aurora MySQL cross-Region replica. Use Amazon Route 53 to distribute traffic between Regions and configure failover if a Region becomes unavailable.
• D. Build the application in a single AWS Region. Deploy the EC2 application layer to three Availably Zones using an Auto Scaling group with dynamic scaling based on request metrics. Use a Multi-AZ Amazon Aurora MySQL DB duster with two Aurora Replicas. Each Aurora Replica must have enough capacity to support 50% of the peak read queries.

Answer: A

 

NEW QUESTION 129
A bank is designing an online customer service portal where customers can chat with customer service agents.
The portal is required to maintain a 15-minute RPO or RTO in case of a regional disaster. Banking regulations require that all customer service chat transcripts must be preserved on durable storage for at least 7 years, chat conversations must be encrypted in-flight, and transcripts must be encrypted at rest. The Data Lost Prevention team requires that data at rest must be encrypted using a key that the team controls, rotates, and revokes.
Which design meets these requirements?

• A. The chat application logs each chat message into Amazon CloudWatch Logs. The CloudWatch Logs group is configured to export logs into an Amazon Glacier vault with a 7-year vault lock policy. Glacier cross-region replication mirrors chat archives to the backup region. Separate AWS KMS keys are specified for the CloudWatch Logs group and the Amazon Glacier vault.
• B. The chat application logs each chat message into Amazon CloudWatch Logs. A scheduled AWS Lambda function invokes a CloudWatch Logs. CreateExportTask every 5 minutes to export chat transcripts to Amazon S3. The S3 bucket is configured for cross-region replication to the backup region.
  Separate AWS KMS keys are specified for the CloudWatch Logs group and the S3 bucket.
• C. The chat application logs each chat message into two different Amazon CloudWatch Logs groups in two different regions, with the same AWS KMS key applied. Both CloudWatch Logs groups are configured to export logs into an Amazon Glacier vault with a 7-year vault lock policy with a KMS key specified.
• D. The chat application logs each chat message into Amazon CloudWatch Logs. A subscription filter on the CloudWatch Logs group feeds into an Amazon Kinesis Data Firehose which streams the chat messages into an Amazon S3 bucket in the backup region. Separate AWS KMS keys are specified for the CloudWatch Logs group and the Kinesis Data Firehose.

Answer: A

 

NEW QUESTION 130
You deployed your company website using Elastic Beanstalk and you enabled log file rotation to S3. An Elastic MapReduce Job is periodically analyzing the logs on S3 to build a usage dashboard that you share with your CIO.
You recently improved overall performance of the website using CloudFront for dynamic content delivery and your website as the origin.
After this architectural change, the usage dashboard shows that the traffic on your website dropped by an order of magnitude.
How do you fix your usage dashboard?

• A. Use Elastic Beanstalk "Restart App Server(s)" option to update log delivery to the Elastic MapReduce job.
• B. Change your log collection process to use CloudWatch ELB metrics as input of the Elastic MapReduce Job.
• C. Use Elastic Beanstalk "Rebuild Environment" option to update log delivery to the Elastic MapReduce job.
• D. Enable CloudFront to deliver access logs to S3 and use them as input of the Elastic MapReduce job.
• E. Turn on CloudTrail and use trail log files on S3 as input of the Elastic MapReduce job.

Answer: D

Explanation:
http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/AccessLogs.html

 

NEW QUESTION 131
You want to use Amazon Redshift and you are planning to deploy dw1.8xlarge nodes. What is the minimum amount of nodes that you need to deploy with this kind of configuration?

• A. 0
• B. 1
• C. 2
• D. 3

Answer: C

Explanation:
For a single-node configuration in Amazon Redshift, the only option available is the smallest of the two options. The 8XL extra-large nodes are only available in a multi-node configuration
http://docs.aws.amazon.com/redshift/latest/mgmt/working-with-clusters.html

 

NEW QUESTION 132
A European online newspaper service hosts its public-facing WordPress site in collocated data center in London. The current WordPress infrastructure consists of a load balancer, two web servers, and one MySQL database server. A solutions architect is tasked with designing a solution with the following requirements:
* Improve the websites performance.
* Make the web tier scalable and stateless.
* Improve the database server performance for read-heavy loads.
* Reduce latency for users across Europe and the US
* Design the new architecture with a goal of 99.9% availability.
Which solution meets these requirements while optimizing operational efficiency?

• A. Use an Application Load Balancer (ALB) in front of an Auto Scaling group of WordPress Amazon EC2 instances in one AWS Region and three Availability Zones. Configure an Amazon cluster in front of a Multi-AZ Amazon Aurora MySQL DB cluster. Move the WordPress shared files to Amazon EPS.
  Configure Amazon CloudFront with (he ALB as the origin, and select a price class that includes the US and Europe.
• B. Use an Application Load Balancer (ALB) in front of an Auto Scaling group of WordPress Amazon EC2 instances in two AWS Regions and three Availability Zones in each Region Configure an Amazon ElastiCache duster in front of a global Amazon Aurora MySQL database. Move the WordPress shared files to Amazon FSx with cross-Region synchronization. Configure Amazon CloudFront with the ALB as the origin and a price class mat includes the US and Europe.
• C. Use an Application Load Balancer (ALB) In front of an Auto Scaling group of WordPress Amazon EC2 Instances in one AWS Region and three Availability Zones. Configure an Amazon DocumentDB table in front of a Multi-AZ Amazon Aurora MySQL DB duster. Move the WordPress shared files to Amazon EFS Configure Amazon CloudFront with the ALB as the origin, and a price class that includes all global locations.
• D. Use an Application Load Balancer (ALB) in front of an Auto Scaling group of WordPress Amazon EC2 instances m two AWS Regions and two Availability Zones in each Region Configure an Amazon ElastiCache cluster in front of a global Amazon Aurora MySQL database. Move the WordPress shared files to Amazon EFS. Configure Amazon CloudFront with the ALB as the origin and select a price class that includes the US and Europe. Configure EFS cross-Region replication.

Answer: A

 

NEW QUESTION 133
Your company has HQ in Tokyo and branch offices all over the world and is using a logistics software with
a multi-regional deployment on AWS in Japan, Europe and USA. The logistic software has a 3-tier
architecture and currently uses MySQL 5.6 for data persistence. Each region has deployed its own
database In the HQ region you run an hourly batch process reading data from every region to compute
cross-regional reports that are sent by email to all offices this batch process must be completed as fast as
possible to quickly optimize logistics how do you build the database architecture in order to meet the
requirements'?

• A. For each regional deployment, use MySQL on EC2 with a master in the region and use S3 to copy data
  files hourly to the HQ region
• B. Use Direct Connect to connect all regional MySQL deployments to the HQ region and reduce network
  latency for the batch process
• C. For each regional deployment, use RDS MySQL with a master in the region and a read replica in the
  HQ region
• D. For each regional deployment, use MySQL on EC2 with a master in the region and send hourly EBS
  snapshots to the HQ region
• E. For each regional deployment, use RDS MySQL with a master in the region and send hourly RDS
  snapshots to the HQ region

Answer: C

 

NEW QUESTION 134
Complete this statement: "When you load your table directly from an Amazon_____ table, you have the option to control the amount of provisioned throughput you consume."

• A. DataPipeline
• B. DynamoDB
• C. S3
• D. RDS

Answer: B

Explanation:
Explanation
When you load your table directly from an Amazon DynamoDB table, you have the option to control the amount of Amazon DynamoDB provisioned throughput you consume.
http://docs.aws.amazon.com/redshift/latest/dg/t_Loading_tables_with_the_COPY_command.html

 

NEW QUESTION 135
A company has an application that uses Amazon EC2 instances in an Auto Scaling group. The Quality Assurance (QA) department needs to launch a large number of short-lived environments to test the application. The application environments are currently launched by the Manager of the department using an AWS CloudFormation template. To launch the stack, the Manager uses a role with permission to use CloudFormation, EC2 and Auto Scaling APIs. The Manager wants to allow testers to launch their own environments, but does not want to grant broad permission to each user. Which set up would achieve these goals?

• A. Create an AWS Service Catalog product form the environment template. Add a launch constraint to the product with the existing role. Give users in the QA department permission to use AWS Service Catalog APIs only. Train users to launch the templates form the AWS Service Catalog console.
• B. Upload the AWS CloudFormation template to Amazon S3. Give users in the QA department permission to use CloudFormation and S3 APIs, with conditions that restrict the permission to the template and the resources it creates. Train users to launch the template form the CloudFormation console.
• C. Upload the AWS CloudFormation template to Amazon S3. Give users in the QA department permission to assume the Manager's role and add a policy that restricts the permissions to the template and the resources it creates. Train users to launch the template from the CloudFormation console.
• D. Create an AWS Elastic Beanstalk application from the environment template. Give users in the QA department permission to use Elastic Beanstalk permissions only. Train users to launch Elastic beanstalk environments with the Elastic Beanstalk CLI, passing the existing role to the environment as a service role.

Answer: A

Explanation:
https://aws.amazon.com/blogs/mt/how-to-launch-secure-and-governed-aws-resources-with-aws-cloudformation-and-aws-service-catalog/

 

NEW QUESTION 136
A company hosts its product information webpages on AWS. The existing solution uses multiple Amazon C2 instances behind an Application Load Balancer in an Auto Scaling group. The website also uses a custom DNS name and communicates with HTTPS only using a dedicated SSL certificate. The company is planning a new product launch and wants to be sure that users from around the world have the best possible experience on the new website.
What should a solutions architect do to meet these requirements?

• A. Redesign the application to use Amazon S3 static website hosting.
• B. Redesign the application to use Amazon CloudFront.
• C. Redesign the application to use a Network Load Balancer.
• D. Redesign the application to use AWS Elastic Beanstalk.

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 137
Which statement is NOT true about a stack which has been created in a Virtual Private Cloud (VPC) in
AWS OpsWorks?

• A. All instances in the stack should have access to any package repositories that your operating system
  depends on, such as the Amazon Linux or Ubuntu Linux repositories.
• B. Your app and custom cookbook repositories should be accessible for all instances in the stack.
• C. Subnets whose instances can communicate only with other instances in the VPC and cannot
  communicate directly with the Internet are referred to as private subnets.
• D. Subnets whose instances cannot communicate with the Internet are referred to as public subnets.

Answer: D

Explanation:
In AWS OpsWorks, you can control user access to a stack's instances by creating it in a virtual private
cloud (VPC). For example, you might not want users to have direct access to your stack's app servers or
databases and instead require that all public traffic be channeled through an Elastic Load Balancer.
A VPC consists of one or more subnets, each of which contains one or more instances. Each subnet has
an associated routing table that directs outbound traffic based on its destination IP address.
Instances within a VPC can generally communicate with each other, regardless of their subnet.
Subnets whose instances can communicate with the Internet are referred to as public subnets.
Subnets whose instances can communicate only with other instances in the VPC and cannot
communicate directly with the Internet are referred to as private subnets.
AWS OpsWorks requires the VPC to be configured so that every instance in the stack, including
instances in private subnets, has access to the following endpoints:
The AWS OpsWorks service, https://opsworks-instance-service.us-east-1.amazonaws.com .
Amazon S3
The package repositories for Amazon Linux or Ubuntu 12.04 LTS, depending on which operating system
you specify.
Your app and custom cookbook repositories.
Reference:
http://docs.aws.amazon.com/opsworks/latest/userguide/workingstacks-vpc.html#workingstacks-vpc-basi
cs

 

NEW QUESTION 138
A company receives clickstream data files to Amazon S3 every five minutes. A Python script runs as a cron job once a day on an Amazon EC2 instance to process each file and load it into a database hosted on Amazon RDS. The cron job takes 15 to 30 minutes to process 24 hours of data. The data consumers ask for the data be available as soon as possible.
Which solution would accomplish the desired outcome?

• A. Create an AWS Lambda function that runs when a file is delivered to Amazon S3 using S3 event notifications.
• B. Convert the cron job to an AWS Lambda function and schedule it to run once an hour using Amazon CloudWatch events.
• C. Increase the size of the instance to speed up processing and update the schedule to run once an hour.
• D. Convert the cron job to an AWS Lambda function and trigger this new function using a cron job on an EC2 instance.

Answer: B

 

NEW QUESTION 139
Can a Direct Connect link be connected directly to the Internet?

• A. No
• B. Yes, this can be done only for certain regions.
• C. Yes
• D. Yes, this can be done if you pay for it.

Answer: A

Explanation:
Explanation
AWS Direct Connect is a network service that provides an alternative to using the Internet to utilize AWS cloud service. Hence, a Direct Connect link cannot be connected to the Internet directly.
http://aws.amazon.com/directconnect/faqs/

 

NEW QUESTION 140
......

What is the duration, language, and format of AWS Solutions Architect Professional Exam

• No negative marking for wrong answers
• Duration of Exam: 130 minutes
• Type of Questions: Multiple choice (MCQs), multiple answers
• Language of Exam: English, Japanese, Korean.
• Passing score: 72%
• Number of Questions: 65

Reliable AWS Certified Solutions Architect AWS-Solutions-Architect-Professional Dumps PDF Nov 12, 2021 Recently Updated Questions: https://www.dumpsfree.com/AWS-Solutions-Architect-Professional-valid-exam.html

Pass Your Amazon AWS-Solutions-Architect-Professional Exam with Correct 216 Questions and Answers: https://drive.google.com/open?id=1D4k882ByENu2DlPVzFQe1RTKsdx7uC7U