Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. SAA-C03

Amazon SAA-C03 Exam Questions
AWS Certified Solutions Architect - Associate SAA-C03 (Page 18 )

Updated On: 13-Mar-2026
Page 18 of 205
PDF with 824 Questions

A solutions architect is designing the cloud architecture for a new application being deployed on AWS. The process should run in parallel while adding and removing application nodes as needed based on the number of jobs to be processed. The processor application is stateless. The solutions architect must ensure that the application is loosely coupled and the job items are durably stored.
Which design should the solutions architect use?

  1. Create an Amazon SNS topic to send the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch configuration that uses the AMI. Create an Auto Scaling group using the launch configuration. Set the scaling policy for the Auto Scaling group to add and remove nodes based on CPU usage.
  2. Create an Amazon SQS queue to hold the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch configuration that uses the AMI. Create an Auto Scaling group using the launch configuration. Set the scaling policy for the Auto Scaling group to add and remove nodes based on network usage.
  3. Create an Amazon SQS queue to hold the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch template that uses the AMI. Create an Auto Scaling group using the launch template. Set the scaling policy for the Auto Scaling group to add and remove nodes based on the number of items in the SQS queue.
  4. Create an Amazon SNS topic to send the jobs that need to be processed. Create an Amazon Machine Image (AMI) that consists of the processor application. Create a launch template that uses the AMI. Create an Auto Scaling group using the launch template. Set the scaling policy for the Auto Scaling group to add and remove nodes based on the number of messages published to the SNS topic.

Answer(s): C

Explanation:

The correct answer is C because an SQS queue provides durable, decoupled, and scalable job buffering for stateless processors; the Auto Scaling group can scale based on the actual backlog (number of items in the queue), ensuring parallel processing and automatic node adjustment. A launch template with an AMI supports flexible scaling.
A) Uses SNS, which is best for fan-out messaging, not durable queueing of work items; scaling on CPU is not tied to workload. B) Scales on network usage, not workload, and uses SQS but wrong scaling metric. D) SNS-based queuing infrastructure with scaling on published messages is not a standard durable work-queue approach; unnecessary coupling.



A company hosts its web applications in the AWS Cloud. The company configures Elastic Load Balancers to use certificates that are imported into AWS Certificate Manager (ACM). The company's security team must be notified 30 days before the expiration of each certificate.
What should a solutions architect recommend to meet this requirement?

  1. Add a rule in ACM to publish a custom message to an Amazon Simple Notification Service (Amazon SNS) topic every day, beginning 30 days before any certificate will expire.
  2. Create an AWS Config rule that checks for certificates that will expire within 30 days. Configure Amazon EventBridge (Amazon CloudWatch Events) to invoke a custom alert by way of Amazon Simple Notification Service (Amazon SNS) when AWS Config reports a noncompliant resource.
  3. Use AWS Trusted Advisor to check for certificates that will expire within 30 days. Create an Amazon CloudWatch alarm that is based on Trusted Advisor metrics for check status changes. Configure the alarm to send a custom alert by way of Amazon Simple Notification Service (Amazon SNS).
  4. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to detect any certificates that will expire within 30 days. Configure the rule to invoke an AWS Lambda function. Configure the Lambda function to send a custom alert by way of Amazon Simple Notification Service (Amazon SNS).

Answer(s): B

Explanation:

AWS Config provides continuously evaluated resource compliance with a 30-day expiry check for ACM certificates, and EventBridge can trigger alerts when Config reports noncompliance, ensuring timely notifications to SNS. This satisfies the requirement to be notified 30 days before expiration in a managed, auditable manner.
A) ACM does not publish expiration alerts via custom SNS topics; ACM alerting isn’t configurable this way.
C) Trusted Advisor checks are not configurable to trigger per-certificate expiry notifications or custom alerting via EventBridge/SNS.
D) An EventBridge rule and Lambda could work, but it requires building custom logic; Config provides a simpler, managed solution with automatic evaluation.
B) is the correct, declarative approach.



A company's dynamic website is hosted using on-premises servers in the United States. The company is launching its product in Europe, and it wants to optimize site loading times for new European users. The site's backend must remain in the United States. The product is being launched in a few days, and an immediate solution is needed.
What should the solutions architect recommend?

  1. Launch an Amazon EC2 instance in us-east-1 and migrate the site to it.
  2. Move the website to Amazon S3. Use Cross-Region Replication between Regions.
  3. Use Amazon CloudFront with a custom origin pointing to the on-premises servers.
  4. Use an Amazon Route 53 geoproximity routing policy pointing to on-premises servers.

Answer(s): C

Explanation:

CloudFront with a custom origin enables edge caching and low-latency delivery to European users while keeping the backend in the United States, meeting the globalization objective quickly.
A) Incorrect: Launching EC2 in us-east-1 does not reduce latency for Europe; it relocates compute but increases latency for European users.
B) Incorrect: S3 with Cross-Region Replication is for object storage in another region, not suitable for dynamic site hosting or immediate global latency reduction.
D) Incorrect: Route 53 geoproximity routes traffic based on location but requires endpoints in AWS or elsewhere; it doesn’t provide edge caching or rapid deployment with on-prem origin.



A company wants to reduce the cost of its existing three-tier web architecture. The web, application, and database servers are running on Amazon EC2 instances for the development, test, and production environments. The EC2 instances average 30% CPU utilization during peak hours and 10% CPU utilization during non-peak hours.
The production EC2 instances run 24 hours a day. The development and test EC2 instances run for at least 8 hours each day. The company plans to implement automation to stop the development and test EC2 instances when they are not in use.
Which EC2 instance purchasing solution will meet the company's requirements MOST cost-effectively?

  1. Use Spot Instances for the production EC2 instances. Use Reserved Instances for the development and test EC2 instances.
  2. Use Reserved Instances for the production EC2 instances. Use On-Demand Instances for the development and test EC2 instances.
  3. Use Spot blocks for the production EC2 instances. Use Reserved Instances for the development and test EC2 instances.
  4. Use On-Demand Instances for the production EC2 instances. Use Spot blocks for the development and test EC2 instances.

Answer(s): B

Explanation:

The best fit is B because production runs continuously, so Reserved Instances (RI) provide cost savings over On-Demand. Development/test run only part of each day and can be shut off; On-Demand is simplest and avoids paying for idle capacity, aligning with automation to stop when unused.
A) Spotted for production is risky due to interruption; RI/On-Demand mix could be cheaper than relying on Spot for prod.
C) Spot blocks for production expose volatility; development/test RIs don’t align with low utilization and shutdown.
D) On-Demand for prod misses continuous-use savings; Spot blocks for dev/test rely on interruptions and forecasted usage.



A company has a production web application in which users upload documents through a web interface or a mobile app. According to a new regulatory requirement. new documents cannot be modified or deleted after they are stored.
What should a solutions architect do to meet this requirement?

  1. Store the uploaded documents in an Amazon S3 bucket with S3 Versioning and S3 Object Lock enabled.
  2. Store the uploaded documents in an Amazon S3 bucket. Configure an S3 Lifecycle policy to archive the documents periodically.
  3. Store the uploaded documents in an Amazon S3 bucket with S3 Versioning enabled. Configure an ACL to restrict all access to read-only.
  4. Store the uploaded documents on an Amazon Elastic File System (Amazon EFS) volume. Access the data by mounting the volume in read-only mode.

Answer(s): A

Explanation:

S) A) is correct because enabling S3 Object Lock in Compliance mode with Versioning ensures immutability: objects cannot be modified or deleted for a defined retention period, satisfying regulatory immutability.
B) Incorrect: Lifecycle policies archive data but do not guarantee immutability or prevent deletion/modification.
C) Incorrect: Read-only ACL does not prevent deletions if bucket/object permissions allow it and does not enforce a retention period or immutability.
D) Incorrect: EFS does not provide built-in object-level immutability or retention controls; mounting read-only does not guarantee protection against deletions or modifications.



Viewing page 18 of 205
Viewing questions 86 - 90 out of 824 questions



Post your Comments and Discuss Amazon SAA-C03 exam dumps with other Community members:

SAA-C03 Exam Discussions & Posts

AI Tutor