Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-SOLUTION-ARCHITECT-ASSOCIATE

Amazon AWS-SOLUTION-ARCHITECT-ASSOCIATE Exam Questions
AWS Certified Solutions Architect - Associate SAA-C03 (Page 35 )

Updated On: 24-Feb-2026
Page 35 of 205
PDF with 779 Questions

Organizers for a global event want to put daily reports online as static HTML pages. The pages are expected to generate millions of views from users around the world. The files are stored in an Amazon S3 bucket. A solutions architect has been asked to design an efficient and effective solution.
Which action should the solutions architect take to accomplish this?

  1. Generate presigned URLs for the files.
  2. Use cross-Region replication to all Regions.
  3. Use the geoproximity feature of Amazon Route 53.
  4. Use Amazon CloudFront with the S3 bucket as its origin.

Answer(s): D



A company runs a production application on a fleet of Amazon EC2 instances. The application reads the data from an Amazon SQS queue and processes the messages in parallel. The message volume is unpredictable and often has intermittent traffic. This application should continually process messages without any downtime.
Which solution meets these requirements MOST cost-effectively?

  1. Use Spot Instances exclusively to handle the maximum capacity required.
  2. Use Reserved Instances exclusively to handle the maximum capacity required.
  3. Use Reserved Instances for the baseline capacity and use Spot Instances to handle additional capacity.
  4. Use Reserved Instances for the baseline capacity and use On-Demand Instances to handle additional capacity.

Answer(s): D



A security team wants to limit access to specific services or actions in all of the team’s AWS accounts. All accounts belong to a large organization in AWS Organizations. The solution must be scalable and there must be a single point where permissions can be maintained.
What should a solutions architect do to accomplish this?

  1. Create an ACL to provide access to the services or actions.
  2. Create a security group to allow accounts and attach it to user groups.
  3. Create cross-account roles in each account to deny access to the services or actions.
  4. Create a service control policy in the root organizational unit to deny access to the services or actions.

Answer(s): D



A company is concerned about the security of its public web application due to recent web attacks. The application uses an Application Load Balancer (ALB). A solutions architect must reduce the risk of DDoS attacks against the application.
What should the solutions architect do to meet this requirement?

  1. Add an Amazon Inspector agent to the ALB.
  2. Configure Amazon Macie to prevent attacks.
  3. Enable AWS Shield Advanced to prevent attacks.
  4. Configure Amazon GuardDuty to monitor the ALB.

Answer(s): C



A company’s web application is running on Amazon EC2 instances behind an Application Load Balancer. The company recently changed its policy, which now requires the application to be accessed from one specific country only.
Which configuration will meet this requirement?

  1. Configure the security group for the EC2 instances.
  2. Configure the security group on the Application Load Balancer.
  3. Configure AWS WAF on the Application Load Balancer in a VP
  4. Configure the network ACL for the subnet that contains the EC2 instances.

Answer(s): C






Post your Comments and Discuss Amazon AWS-SOLUTION-ARCHITECT-ASSOCIATE exam dumps with other Community members:

Join the AWS-SOLUTION-ARCHITECT-ASSOCIATE Discussion