A Solutions Architect is designing an application that will encrypt all data in an Amazon Redshift cluster.Which action will encrypt the data at rest?
A website experiences unpredictable traffic. During peak traffic times, the database is unable to keep up with the write request.Which AWS service will help decouple the web application from the database?
A legacy application needs to interact with local storage using iSCSI. A team needs to design a reliable storage solution to provision all new storage on AWS.Which storage solution meets the legacy application requirements?
A Solutions Architect is designing an architecture for a mobile gaming application. The application is expected to be very popular. The Architect needs to prevent the Amazon RDS MySQL database from becoming a bottleneck due to frequently accessed queries.Which service or feature should the Architect add to prevent a bottleneck?
A company is launching an application that it expects to be very popular. The company needs a database that can scale with the rest of the application. The schema will change frequently. The application cannot afford any downtime for database changes.Which AWS service allows the company to achieve these objectives?
A Solution Architect is designing a disaster recovery solution for a 5 TB Amazon Redshift cluster. The recovery site must be at least 500 miles (805 kilometers) from the live site.How should the Architect meet these requirements?
A customer has written an application that uses Amazon S3 exclusively as a data store. The application works well until the customer increases the rate at which the application is updating information. The customer now reports that outdated data occasionally appears when the application accesses objects in Amazon S3.What could be the problem, given that the application logic is otherwise correct?
A Solutions Architect is designing a new social media application. The application must provide a secure method for uploading profile photos. Each user should be able to upload a profile photo into a shared storage location for one week after their profile is created.Which approach will meet all of these requirements?
An application requires block storage for file updates. The data is 500 GB and must continuously sustain 100 MiB/s of aggregate read/write operations.Which storage option is appropriate for this application?
A mobile application serves scientific articles from individual files in an Amazon S3 bucket. Articles older than 30 days are rarely read. Articles older than 60 days no longer need to be available through the application, but the application owner would like to keep them for historical purposes.Which cost-effective solution BEST meets these requirements?
An organization is currently hosting a large amount of frequently accessed data consisting of key-value pairs and semi-structured documents in their data center.They are planning to move this data to AWS.Which of one of the following services MOST effectively meets their needs?
A Lambda function must execute a query against an Amazon RDS database in a private subnet.Which steps are required to allow the Lambda function to access the Amazon RDS database? (Select two.)
A Solutions Architect needs to build a resilient data warehouse using Amazon Redshift. The Architect needs to rebuild the Redshift cluster in another region.Which approach can the Architect take to address this requirement?
A popular e-commerce application runs on AWS. The application encounters performance issues. The database is unable to handle the amount of queries and load during peak times. The database is running on the RDS Aurora engine on the largest instance size available.What should an administrator do to improve performance?
A Solutions Architect is designing the architecture for a new three-tier web-based e-commerce site that must be available 24/7. Requests are expected to range from 100 to 10,000 each minute. Usage can vary depending on time of day, holidays, and promotions. The design should be able to handle these volumes, with the ability to handle higher volumes if necessary.How should the Architect design the architecture to ensure the web tier is cost-optimized and can handle the expected traffic? (Select two.)
A Solution Architect is designing a three-tier web application. The Architect wants to restrict access to the database tier to accept traffic from the application servers only. However, these application servers are in an Auto Scaling group and may vary in quantity.How should the Architect configure the database servers to meet the requirements?
An Internet-facing multi-tier web application must be highly available. An ELB Classic Load Balancer is deployed in front of the web tier. Amazon EC2 instances at the web application tier are deployed evenly across two Availability Zones. The database is deployed using RDS Multi-AZ. A NAT instance is launched for AmazonEC2 instances and database resources to access the Internet. These instances are not assigned with public IP addresses.Which component poses a potential single point of failure in this architecture?
A call center application consists of a three-tier application using Auto Scaling groups to automatically scale resources as needed. Users report that every morning at 9:00 AM the system becomes very slow for about 15 minutes. A Solution Architect determines that a large percentage of the call center staff starts work at 9:00AM, so Auto Scaling does not have enough time to scale out to meet demand.How can the Architect fix the problem?
An e-commerce application is hosted in AWS. The last time a new product was launched, the application experienced a performance issue due to an enormous spike in traffic. Management decided that capacity must be doubled the week after the product is launched.Which is the MOST efficient way for management to ensure that capacity requirements are met?
A customer owns a simple API for their website that receives about 1,000 requests each day and has an average response time of 50 ms. It is currently hosted on one c4.large instance.Which changes to the architecture will provide high availability at the LOWEST cost?
A Solution Architect is designing an application that uses Amazon EBS volumes. The volumes must be backed up to a different region.How should the Architect meet this requirement?
A company is using an Amazon S3 bucket located in us-west-2 to serve videos to their customers. Their customers are located all around the world and the videos are requested a lot during peak hours. Customers in Europe complain about experiencing slow downloaded speeds, and during peak hours, customers in all locations report experiencing HTTP 500 errors.What can a Solutions Architect do to address these issues?
A Solutions Architect is designing a solution that includes a managed VPN connection.To monitor whether the VPN connection is up or down, the Architect should use:
A social networking portal experiences latency and throughput issues due to an increased number of users. Application servers use very large datasets from anAmazon RDS database, which creates a performance bottleneck on the database.Which AWS service should be used to improve performance?
A Solutions Architect is designing network architecture for an application that has compliance requirements. The application will be hosted on Amazon EC2 instances in a private subnet and will be using Amazon S3 for storing data. The compliance requirements mandate that the data cannot traverse the publicInternet.What is the MOST secure way to satisfy this requirement?
Developers are creating a new online transaction processing (OLTP) application for a small database that is very read-write intensive. A single table in the database is updated continuously throughout the day, and the developers want to ensure that the database performance is consistent.Which Amazon EBS storage option will achieve the MOST consistent performance to help maintain application performance?
A Solutions Architect is designing a log-processing solution that requires storage that supports up to 500 MB/s throughput. The data is sequentially accessed by an Amazon EC2 instance.Which Amazon storage type satisfies these requirements?
A company's development team plans to create an Amazon S3 bucket that contains millions of images. The team wants to maximize the read performance ofAmazon S3.Which naming scheme should the company use?
A Solutions Architect needs to design a solution that will enable a security team to detect, review, and perform root cause analysis of security incidents that occur in a cloud environment. The Architect must provide a centralized view of all API events for current and future AWS regions.How should the Architect accomplish this task?
A company has a legacy application using a proprietary file system and plans to migrate the application to AWS.Which storage service should the company use?
A company plans to use AWS for all new batch processing workloads. The company's developers use Docker containers for the new batch processing. The system design must accommodate critical and non-critical batch processing workloads 24/7.How should a Solutions Architect design this architecture in a cost-efficient manner?
A company is evaluating Amazon S3 as a data storage solution for their daily analyst reports. The company has implemented stringent requirements concerning the security of the data at rest. Specifically, the CISO asked for the use of envelope encryption with separate permissions for the use of an envelope key, automated rotation of the encryption keys, and visibility into when an encryption key was used and by whom.Which steps should a Solutions Architect take to satisfy the security requirements requested by the CISO?
A customer has a production application that frequently overwrites and deletes data, the application requires the most up-to-date version of the data every time it is requested.Which storage should a Solutions Architect recommend to bet accommodate this use case?
A Solutions Architect is designing a photo application on AWS. Every time a user uploads a photo to Amazon S3, the Architect must insert a new item to aDynamoDB table.Which AWS-managed service is the BEST fit to insert the item?
An application relies on messages being sent and received in order. The volume will never exceed more than 300 transactions each second.Which service should be used?
A Solutions Architect is designing an application on AWS that uses persistent block storage. Data must be encrypted at rest.Which solution meets the requirement?
A company is launching a static website using the zone apex (mycompany.com). The company wants to use Amazon Route 53 for DNS.Which steps should the company perform to implement a scalable and cost-effective solution? (Choose two.)
A manufacturing company captures data from machines running at customer sites. Currently, thousands of machines send data every 5 minutes, and this is expected to grow to hundreds of thousands of machines in the near future. The data is logged with the intent to be analyzed in the future as needed.What is the SIMPLEST method to store this streaming data at scale?
A bank is writing new software that is heavily dependent upon the database transactions for write consistency. The application will also occasionally generate reports on data in the database, and will do joins across multiple tables. The database must automatically scale as the amount of data grows.Which AWS service should be used to run the database?
A Solutions Architect is designing a new application that needs to access data in a different AWS account located within the same region. The data must not be accessed over the Internet.Which solution will meet these requirements with the LOWEST cost?
A Solutions Architect is designing a mobile application that will capture receipt images to track expenses. The Architect wants to store the images on Amazon S3.However, uploading images through the web server will create too much traffic.What is the MOST efficient method to store images from a mobile application on Amazon S3?
A company requires that the source, destination, and protocol of all IP packets be recorded when traversing a private subnet.What is the MOST secure and reliable method of accomplishing this goal.
A Solutions Architect has a multi-layer application running in Amazon VPC. The application has an ELB Classic Load Balancer as the front end in a public subnet, and an Amazon EC2-based reverse proxy that performs content-based routing to two backend Amazon EC2 instances hosted in a private subnet. The Architect sees tremendous traffic growth and is concerned that the reverse proxy and current backend set up will be insufficient.Which actions should the Architect take to achieve a cost-effective solution that ensures the application automatically scales to meet traffic demand? (Select two.)
A company is launching a marketing campaign on their website tomorrow and expects a significant increase in traffic. The website is designed as a multi-tiered web architecture, and the increase in traffic could potentially overwhelm the current design.What should a Solutions Architect do to minimize the effects from a potential failure in one or more of the tiers?
A web application experiences high compute costs due to serving a high amount of static web content.How should the web server architecture be designed to be the MOST cost-efficient?
A Solutions Architect plans to migrate NAT instances to NAT gateway. The Architect has NAT instances with scripts to manage high availability.What is the MOST efficient method to achieve similar high availability with NAT gateway?
A Solutions Architect is designing a solution to store a large quantity of event data in Amazon S3. The Architect anticipates that the workload will consistently exceed 100 requests each second.What should the Architect do in Amazon S3 to optimize performance?
A user is testing a new service that receives location updates from 3,600 rental cars every hour.Which service will collect data and automatically scale to accommodate production workload?
A Solutions Architect is designing a web application. The web and application tiers need to access the Internet, but they cannot be accessed from the Internet.Which of the following steps is required?
An application stack includes an Elastic Load Balancer in a public subnet, a fleet of Amazon EC2 instances in an Auto Scaling group, and an Amazon RDSMySQL cluster. Users connect to the application from the Internet. The application servers and database must be secure.How should a Solutions Architect perform this task?
A Solutions Architect is designing a solution for a media company that will stream large amounts of data from an Amazon EC2 instance. The data streams are typically large and sequential, and must be able to support up to 500 MB/s.Which storage type will meet the performance requirements of this application?
A legacy application running in premises requires a Solutions Architect to be able to open a firewall to allow access to several Amazon S3 buckets. The Architect has a VPN connection to AWS in place.How should the Architect meet this requirement?
A Solutions Architect is designing a database solution that must support a high rate of random disk reads and writes. It must provide consistent performance, and requires long-term persistence.Which storage solution BEST meets these requirements?
A Solutions Architect is designing solution with AWS Lambda where different environments require different database passwords.What should the Architect do to accomplish this in a secure and scalable way?
A news organization plans to migrate their 20 TB video archive to AWS. The files are rarely accessed, but when they are, a request is made in advance and a 3 to5-hour retrieval time frame is acceptable. However, when there is a breaking news story, the editors require access to archived footage within minutes.Which storage solution meets the needs of this organization while providing the LOWEST cost of storage?
A Solutions Architect is building a multi-tier website. The web servers will be in a public subnet, and the database servers will be in a private subnet. Only the web servers can be accessed from the Internet. The database servers must have Internet access for software updates.Which solution meets the requirements?
A Solutions Architect is designing a Lambda function that calls an API to list all running Amazon RDS instances.How should the request be authorized?
A Solutions Architect is building an application on AWS that will require 20,000 IOPS on a particular volume to support a media event. Once the event ends, theIOPS need is no longer required. The marketing team asks the Architect to build the platform to optimize storage without incurring downtime.How should the Architect design the platform to meet these requirements?
A Solutions Architect is building a new feature using a Lambda to create metadata when a user uploads a picture to Amazon S3. All metadata must be indexed.Which AWS service should the Architect use to store this metadata?
An interactive, dynamic website runs on Amazon EC2 instances in a single subnet behind an ELB Classic Load Balancer.Which design changes will make the site more highly available?
A Solutions Architect is designing a web application that is running on an Amazon EC2 instance. The application stores data in DynamoDB. The Architect needs to secure access to the DynamoDB table.What combination of steps does AWS recommend to achieve secure authorization? (Select two.)
A Solutions Architect is about to deploy an API on multiple EC2 instances in an Auto Scaling group behind an ELB. The support team has the following operational requirements:1 They get an alert when the requests per second go over 50,0002 They get an alert when latency goes over 5 seconds3 They can validate how many times a day users call the API requesting highly-sensitive dataWhich combination of steps does the Architect need to take to satisfy these operational requirements? (Select two.)
A Solutions Architect is designing a highly-available website that is served by multiple web servers hosted outside of AWS. If an instance becomes unresponsive, the Architect needs to remove it from the rotation.What is the MOST efficient way to fulfill this requirement?
A company hosts a popular web application. The web application connects to a database running in a private VPC subnet. The web servers must be accessible only to customers on an SSL connection. The RDS MySQL database server must be accessible only from the web servers.How should the Architect design a solution to meet the requirements without impacting running applications?
Which service should an organization use if it requires an easily managed and scalable platform to host its web application running on Nginx?
An Administrator is hosting an application on a single Amazon EC2 instance, which users can access by the public hostname. The administrator is adding a second instance, but does not want users to have to decide between many public hostnames.Which AWS service will decouple the users from specific Amazon EC2 instances?
A Solutions Architect is designing a microservices-based application using Amazon ECS. The application includes a WebSocket component, and the traffic needs to be distributed between microservices based on the URL.Which service should the Architect choose to distribute the workload?
A Solutions Architect is designing the storage layer for a production relational database. The database will run on Amazon EC2. The database is accessed by an application that performs intensive reads and writes, so the database requires the LOWEST random I/O latency.Which data storage method fulfills the above requirements?
A Solutions Architect is designing a VPC. Instances in a private subnet must be able to establish IPv6 traffic to the Internet. The design must scale automatically and not incur any additional cost.This can be accomplished with:
A web application stores all data in an Amazon RDS Aurora database instance. A Solutions Architect wants to provide access to the data for a detailed report for the Marketing team, but is concerned that the additional load on the database will affect the performance of the web application.How can the report be created without affecting the performance of the application?
A company has an application that stores sensitive data. The company is required by government regulations to store multiple copies of its data.What would be the MOST resilient and cost-effective option to meet this requirement?
A company is using AWS Key Management Service (AWS KMS) to secure their Amazon RDS databases. An auditor has recommended that the company log all use of their AWS KMS keys.What is the SIMPLEST solution?
A Solutions Architect is designing a stateful web application that will run for one year (24/7) and then be decommissioned. Load on this platform will be constant, using a number of r4.8xlarge instances. Key drivers for this system include high availability, but elasticity is not required.What is the MOST cost-effective way to purchase compute for this platform?
A media company asked a Solutions Architect to design a highly available storage solution to serve as a centralized document store for their Amazon EC2 instances. The storage solution needs to be POSIX-compliant, scale dynamically, and be able to serve up to 100 concurrent EC2 instances.Which solution meets these requirements?
A Solution Architect has a two-tier application with a single Amazon EC2 instance web server and Amazon RDS MySQL Multi-AZ DB instances. The Architect is re-architecting the application for high availability by adding instances in a second Availability Zone.Which additional services will improve the availability of the application? (Choose two.)
A company is migrating its data center to AWS. As part of this migration, there is a three-tier web application that has strict data-at-rest encryption requirements.The customer deploys this application on Amazon EC2 using Amazon EBS, and now must provide encryption at-rest.How can this requirement be met without changing the application?
A Solutions Architect is developing software on AWS that requires access to multiple AWS services, including an Amazon EC2 instance. This is a security sensitive application, and AWS credentials such as Access Key ID and Secret Access Key need to be protected and cannot be exposed anywhere in the system.What security measure would satisfy these requirements?
An AWS workload in a VPC is running a legacy database on an Amazon EC2 instance. Data is stored on a 200GB Amazon EBS (gp2) volume. At peak load times, logs show excessive wait time.What solution should be implemented to improve database performance using persistent storage?
A company's website receives 50,000 requests each second, and the company wants to use multiple applications to analyze the navigation patterns of the users on their website so that the experience can be personalized.What can a Solutions Architect use to collect page clicks for the website and process them sequentially for each user?
A company wants to migrate a highly transactional database to AWS. Requirements state that the database has more than 6 TB of data and will grow exponentially.Which solution should a Solutions Architect recommend?
A company hosts a two-tier application that consists of a publicly accessible web server that communicates with a private database. Only HTTPS port 443 traffic to the web server must be allowed from the Internet.Which of the following options will achieve these requirements? (Choose two.)
A Solutions Architect is designing an Amazon VPC. Applications in the VPC must have private connectivity to Amazon DynamoDB in the same AWS Region.The design should route DynamoDB traffic through:
A Solutions Architect is architecting a workload that requires a performant object-based storage system that must be shared with multiple Amazon EC2 instances.Which AWS service meets this requirement?
A Solutions Architect is developing a solution for sharing files in an organization. The solution must allow multiple users to access the storage service at once from different virtual machines and scale automatically. It must also support file-level locking.Which storage service meets the requirements of this use case?
A company runs a legacy application with a single-tier architecture on an Amazon EC2 instance. Disk I/O is low, with occasional small spikes during business hours. The company requires the instance to be stopped from 8 PM to 8 AM daily.Which storage option is MOST appropriate for this workload?
As part of securing an API layer built on Amazon API gateway, a Solutions Architect has to authorize users who are currently authenticated by an existing identity provider. The users must be denied access for a period of one hour after three unsuccessful attempts.How can the Solutions Architect meet these requirements?
An organization runs an online media site, hosted on-premises. An employee posted a product review that contained videos and pictures. The review went viral and the organization needs to handle the resulting spike in website traffic.What action would provide an immediate solution?
A client notices that their engineers often make mistakes when creating Amazon SQS queues for their backend system.Which action should a Solutions Architect recommend to improve this process?
A development team is building an application with front-end and backend application tiers. Each tier consists of Amazon EC2 instances behind an ELB ClassicLoad Balancer. The instances run in Auto Scaling groups across multiple Availability Zones. The network team has allocated the 10.0.0.0/24 address space for this application. Only the front-end load balancer should be exposed to the Internet. There are concerns about the limited size of the address space and the ability of each tier to scale.What should the VPC subnet design be in each Availability Zone?
A Solutions Architect must select the storage type for a big data application that requires very high sequential I/O. The data must persist if the instance is stopped.Which of the following storage types will provide the best fit at the LOWEST cost for the application?
Two Auto Scaling applications, Application A and Application B, currently run within a shared set of subnets. A Solutions Architect wants to make sure thatApplication A can make requests to Application B, but Application B should be denied from making requests to Application A.Which is the SIMPLEST solution to achieve this policy?
Legacy applications currently send messages through a single Amazon EC2 instance, which then routes the messages to the appropriate destinations. TheAmazon EC2 instance is a bottleneck and single point of failure, so the company would like to address these issues.Which services could address this architectural use case? (Choose two.)
A Solutions Architect needs to design an architecture for a new, mission-critical batch processing billing application. The application is required to run Monday,Wednesday, and Friday from 5 AM to 11 AM.Which is the MOST cost-effective Amazon EC2 pricing model?
A workload consists of downloading an image from an Amazon S3 bucket, processing the image, and moving it to another Amazon S3 bucket. An Amazon EC2 instance runs a scheduled task every hour to perform the operation.How should a Solutions Architect redesign the process so that it is highly available?
An application is running on an Amazon EC2 instance in a private subnet. The application needs to read and write data onto Amazon Kinesis Data Streams, and corporate policy requires that this traffic should not go to the internet.How can these requirements be met?
A Solutions Architect is building an application that stores object data. Compliance requirements state that the data stored is immutable.Which service meets these requirements?
A Solutions Architect is defining a shared Amazon S3 bucket where corporate applications will save objects.How can the Architect ensure that when an application uploads an object to the Amazon S3 bucket, the object is encrypted?
An application tier currently hosts two web services on the same set of instances, listening on different ports.Which AWS service should a Solutions Architect use to route traffic to the service based on the incoming request path?
A data analytics startup company asks a Solutions Architect to recommend an AWS data store options for indexed data. The data processing engine will generate and input more than 64 TB of processed data every day, with item sizes reaching up to 300 KB. The startup is flexible with data storage and is more interested in a database that requires minimal effort to scale with a growing dataset size.Which AWS data store service should the Architect recommend?
A Solutions Architect needs to allow developers to have SSH connectivity to web servers. The requirements are as follows:
Limit access to users origination from the corporate network.
Web servers cannot have SSH access directly from the Internet.
Web servers reside in a private subnet.Which combination of steps must the Architect complete to meet these requirements? (Choose two.)
A Solutions Architect needs to use AWS to implement pilot light disaster recovery for a three-tier web application hosted in an on-premises datacenter.Which solution allows rapid provision of working, fully-scaled production environment?
A Solutions Architect notices slower response times from an application. The CloudWatch metrics on the MySQL RDS indicate Read IOPS are high and fluctuate significantly when the database is under load.How should the database environment be re-designed to resolve the IOPS fluctuation?
A Solutions Architect is designing a solution that can monitor memory and disk space utilization of all Amazon EC2 instances running Amazon Linux andWindows.Which solution meets this requirement?
A Solutions Architect is creating a new relational database. The Compliance team will use the database, and mandates that data content must be stored across three different Availability Zones.Which of the following options should the Architect Use?
A company needs to quickly ensure that all files created in an Amazon S3 bucket in us-east-1 are also available in another bucket in ap-southeast-2.Which option represents the SIMPLIEST way to implement this design?
An organization has a long-running image processing application that runs on Spot Instances that will be terminated when interrupted. A highly available workload must be designed to respond to Spot Instance interruption notices. The solution must include a two-minute warning when there is not enough capacity.How can these requirements be met?
A company has an Amazon RDS-managed online transaction processing system that has very heavy read and write. The Solutions Architect notices throughput issues with the system.How can the responsiveness of the primary database be improved?
A company is designing a failover strategy in Amazon Route 53 for its resources between two AWS Regions. The company must have the ability to route a user's traffic to the region with least latency, and if both regions are healthy, Route 53 should route traffic to resources in both regions.Which strategy should the Solutions Architect recommend?
A company is developing several critical long-running applications hosted on Docker.How should a Solutions Architect design a solution to meet the scalability and orchestration requirements on AWS?
A Solutions Architect is developing a new web application on AWS. The Architect expects the application to become very popular, so the application must scale to support the load. The Architect wants to focus on software development and deploying new features without provisioning or managing instances.What solution is appropriate?
A Solutions Architect is deploying a new production MySQL database on AWS. It is critical that the database is highly available.What should the Architect do to achieve this goal with Amazon RDS?
An organization designs a mobile application for their customers to upload photos to a site. The application needs a secure login with MFA. The organization wants to limit the initial build time and maintenance of the solution.Which solution should a Solutions Architect recommend to meet the requirements?
A Solutions Architect is designing a solution to monitor weather changes by the minute. The frontend application is hosted on Amazon EC2 instances. The backend must be scalable to a virtually unlimited size, and data retrieval must occur with minimal latency.Which AWS service should the Architect use to store the data and achieve these requirements?
A company hosts a website on premises. The website has a mix of static and dynamic content, but users experience latency when loading static files.Which AWS service can help reduce latency?
A company wants to analyze all of its sales information aggregated over the last 12 months. The company expects there to be over 10TB of data from multiple sources.What service should be used?
A media company has deployed a multi-tier architecture on AWS. Web servers are deployed in two Availability Zones using an Auto Scaling group with a defaultAuto Scaling termination policy. The web servers' Auto Scaling group currently has 15 instances running.Which instance will be terminated first during a scale-in operation?
A retail company has sensors placed in its physical retail stores. The sensors send messages over HTTP when customers interact with in-store product displays.A Solutions Architect needs to implement a system for processing those sensor messages; the results must be available for the Data Analysis team.Which architecture should be used to meet these requirements?
A client is migrating a legacy web application to the AWS Cloud. The current system uses an Oracle database as a relational database management system solution. Backups occur every night, and the data is stored on-premises. The Solutions Architect must automate the backups and identity a storage solution while keeping costs low.Which AWS service will meet these requirements?
A company has an Amazon RDS database backing its production website. The Sales team needs to run queries against the database to track training program effectiveness. Queries against the production database cannot impact performance, and the solution must be easy to maintain.How can these requirements be met?
A company must collect temperature data from thousands of remote weather devices. The company must also store this data in a data warehouse to run aggregations and visualizations.Which services will meet these requirements? (Choose two.)
A company has a legal requirement to store point-in-time copies of its Amazon RDS PostGreSQL database instance in facilities that are at least 200 miles apart.Use of which of the following provides the easiest way to comply with this requirement?
After reviewing their logs, a startup company noticed large, random spikes in traffic to their web application. The company wants to configure a cost-efficient AutoScaling solution to support high availability of the web application.Which scaling plan should a Solutions Architect recommend to meet the company's needs?
To meet compliance standards, a company must have encrypted archival data storage. Data will be accessed infrequently, with lead times well in advance of when archived data must be recovered. The company requires that the storage be secure, durable, and provided at the lowest price per 1TB of data stored.What type of storage should be used?
An online company wants to conduct real-time sentiment analysis about its products from its social media channels using SQL.Which of the following solutions has the LOWEST cost and operational burden?
An organization must process a stream of large-volume hashtag data in real time and needs to run custom SQL queries on the data to get insights on certain tags.The organization needs this solution to be elastic and does not want to manage clusters.Which of the following AWS services meets these requirements?
Which requirements must be met in order for a Solutions Architect to specify that an Amazon EC2 instance should stop rather than terminate when its SpotInstance is interrupted? (Choose two.)
An application hosted on AWS uses object storage for storing internal reports that are accessed daily by the CFO. Currently, these reports are publicly available.How should a Solutions Architect re-design this architecture to prevent unauthorized access to these reports?
A Solutions Architect is designing an application on AWS that will connect to the on-premise data center through a VPN connection. The solution must be able to log network traffic over the VPN.Which service logs this network traffic?
A company wants to durably store data in 8 KB chunks. The company will access the data once every few months. However, when the company does access the data, it must be done with as little latency as possible.Which AWS service should a Solutions Architect recommend if cost is NOT a factor?
A media company has more than 100TB of data to be stored and retrieved infrequently. However, the company occasionally receives requests for data within an hour. The company needs a low-cost retrieval method to handle the requests.Which service meets this requirement?
An on-premises database is experiencing significant performance problems when running SQL queries. With 10 users, the lookups are performing as expected.As the number of users increases, the lookups take three times longer than expected to return values to an application.Which action should a Solutions Architect take to maintain performance as the user count increases?
A team has an application that detects new objects being uploaded into an Amazon S3 bucket. The uploads trigger a Lambda function to write object metadata into an Amazon DynamoDB table and RDS PostgreSQL database.Which action should the team take to ensure high availability?
A media company must store 10 TB of audio recordings. Retrieval happens infrequently and requestors agree on an 8-hour turnaround time.What is the MOST cost-effective solution to store the files?
A company wants to improve the performance of their web application after receiving customer complaints. An analysis concluded that the same complex database queries were causing increased latency.What should a Solutions Architect recommend to improve the application's performance?
Which tool analyzes account resources and provides a detailed inventory of changes over time?
A Solutions Architect is designing a solution that will include a database in Amazon RDS. Corporate security policy mandates that the database, its logs, and its backups are all encrypted.Which is the MOST efficient option to fulfill the security policy using Amazon RDS?
A Solutions Architect is designing a public-facing web application for employees to upload images to their social media account. The application consists of multiple Amazon EC2 instances behind an elastic load balancer, an Amazon S3 bucket where uploaded images are stored, and an Amazon DynamoDB table for storing image metadata.Which AWS service can the Architect use to automate the process of updating metadata in the DynamoDB table upon image upload?
A company's policy requires that all data stored in Amazon S3 is encrypted. The company wants to use the option with the least overhead and does not want to manage any encryption keys.Which of the following options will meet the company's requirements?
A company has gigabytes of web log files stored in an Amazon S3 bucket. A Solutions Architect wants to copy those files into Amazon Redshift for analysis. The company's security policy mandates that data is encrypted at rest both in the Amazon Redshift cluster and the Amazon S3 bucket.Which process will fulfill the security requirements?
An application runs on Amazon EC2 instances in an Auto Scaling group. When instances are terminated, the Systems Operations team cannot determine the route cause, because the logs reside on the terminated instances and are lost.How can the root cause be determined?
A Solutions Architect is designing a customer order processing application that will likely have high usage spikes.What should the Architect do to ensure that customer orders are not lost before being written to an Amazon RDS database? (Choose two.)
Employees from several companies use an application once a year during a specific 30-day period. The periods are different for each company. Traffic to the application spikes during these 30-day periods.How can the application be designed to handle these traffic spikes?
A restaurant reservation application needs the ability to maintain a waiting list. When a customer tries to reserve a table, and none are available, the customer must be put on the waiting list, and the application must notify the customer when a table becomes free.What service should the Solutions Architect recommend to ensure that the system respects the order in which the customer requests are put onto the waiting list?
A Solutions Architect is designing a solution for a dynamic website, "example.com," that is deployed in two regions: Tokyo, Japan and Sydney, Australia. TheArchitect wants to ensure that users located in Australia are directed to the website deployed in the Sydney region and users located in Japan are redirected to the website in the Tokyo region when they browse to "example.com".Which service should the Architect use to achieve this goal with the LEAST administrative effort?
A company has a popular multi-player mobile game hosted in its on-premises datacenter. The current infrastructure can no longer keep up with demand and the company is considering a move to the cloud.Which solution should a Solutions Architect recommend as the MOST scalable and cost-effective solution to meet these needs?
A company has instances in private subnets that require outbound access to the internet.This requires:
An organization regularly backs up their application data. The application backups are required to be stored on Amazon S3 for a certain amount of time. The backups should be accessed instantly in the event of a disaster recovery.Which of the following Amazon S3 storage classes would be the MOST cost-effective option to meet the needs of this scenario?
An organization runs an online voting system for a television program. During broadcasts, hundreds of thousands of votes are submitted within minutes and sent to a front-end fleet of auto-scaled Amazon EC2 instances. The EC2 instances push the votes to an RDBMS database. The database is unable to keep up with the front-end connection requests.What is the MOST efficient and cost-effective way of ensuring that votes are processed in a timely manner?
An application publishes Amazon SNS messages in response to several events. An AWS Lambda function subscribes to these messages. Occasionally the function will fail while processing a message, so the original event message must be preserved for root cause analysis.What architecture will meet these requirements without changing the workflow?
An application uses an Amazon RDS MySQL cluster for the database layer. Database growth requires periodic resizing of the instance. Currently, administrators check the available disk space manually once a week.How can this process be improved?
A customer owns a MySQL database that is accessed by various clients who expect, at most, 100 ms latency on requests. Once a record is stored in the database, it rarely changed. Clients only access one record at a time.Database access has been increasing exponentially due to increased client demand. The resultant load will soon exceed the capacity of the most expensive hardware available for purchase. The customer wants to migrate to AWS, and is willing to change database systems.Which service would alleviate the database load issue and offer virtually unlimited scalability for the future?
A business team requires a structured storage solution to store all of a company's historical sales data. Currently there are 4 TB of data, which will grow to hundreds of terabytes within a few years. The team must be able to regularly run queries against the data using current business intelligence tools. Fast performance is required despite the dataset growth.Which solution should the company use?
A prediction process requires access to a trained model that is stored in an Amazon S3 bucket. The process takes a few seconds to process an image and make a prediction. The process is not overly resource-intensive, does not require any specialized hardware, and takes less than 512 MB of memory to run.What would be the MOST effective compute solution for this use case?
An application that runs on an Amazon EC2 instance must make secure calls to Amazon S3 buckets.Which steps can a Solutions Architect take to ensure that the calls are made without exposing credentials?
A Solutions Architect needs to design a centralized logging solution for a group of web applications running on Amazon EC2 instances. The solution requires minimal development effort due to budget constraints.Which of the following should the Architect recommend?
A company is using Amazon S3 as its local repository for weekly analysis reports. One of the company-wide requirements is to secure data at rest using encryption. The company chose Amazon S3 server-side encryption. The company wants to know how the object is decrypted when a GET request is issued.Which of the following answers this question?
A company is looking for a fully-managed solution to store its players' state information for a rapidly growing game. The application runs on multiple Amazon EC2 nodes, which can scale according to the incoming traffic. The request can be routed to any of the nodes, therefore, the state information must be stored in a centralized database. The players' state information needs to be read with strong consistency and needs conditional updates for any changes.Which service would be MOST cost-effective, and scale seamlessly?
An application is running on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Auto Scaling group across multiple AvailabilityZones. Four instances are required to handle a predictable traffic load. The Solutions Architect wants to ensure that the operation is fault-tolerant up to the loss of one Availability Zone.Which is the MOST cost-efficient way to meet these requirements?
A Solutions Architect is designing a three-tier web application that includes an Auto Scaling group of Amazon EC2 instances running behind an ELB Classic LoadBalancer. The security team requires that all web servers must be accessible only through the Load Balancer, and that none of the web servers are directly accessible from the Internet.How should the Architect meet these requirements?
A Solutions Architect is designing a web application that will be hosted on Amazon EC2 instances in a public subnet. The web application uses a MySQL database in a private subnet. The database should be accessible to database administrators.Which of the following options should the Architect recommend? (Choose two.)
A web application running on Amazon EC2 instances writes data synchronously to an Amazon DynamoDB table configured for 60 write capacity units. During normal operation the application writes 50 KB/s to the tale, but can scale up to 500 KB/ s during peak hours. The application is currently throttling errors from theDynamoDB table during peak hours.What is the MOST cost-efficient change to support the increased traffic with minimal changes to the application?
One company wants to share the contents of their Amazon S3 bucket with another company. Security requirements mandate that only the other company's AWS accounts have access to the contents of the Amazon S3 bucket.Which Amazon S3 feature will allow secure access to the Amazon S3 bucket?
A Solutions Architect is designing a service that must have four Amazon EC2 instances running between 8 AM and 6 PM daily. The service requires one EC2 instance outside of those hours.What is the MOST cost-effective way to provide enough compute?
A company plans to use an Amazon VPC to deploy a web application consisting of an elastic load balancer, a fleet of web and application servers, and anAmazon RDS MySQL database that should not be accessible from the Internet. The proposed design must be highly available and distributed over two AvailabilityZones.What would be the MOST appropriate VPC design for this specific use case?
A workload in an Amazon VPC consists of a single web server launched from a custom AMI. Session state is stored in a database.How should the Solutions Architect modify this workload to be both highly available and scalable?
A Solutions Architect is developing a new web application on AWS. The services must scale to support an increasing load. The Architect wants to focus on software development and deploying new features rather than provisioning or managing servers.Which AWS service is appropriate?
A company wants to migrate a three-tier web application to AWS. The company wants to control the placement of the instances and have visibility into underlying sockets and cores for licensing purposes.Which compute model should a Solutions Architect choose to accomplish this task?
An application runs on multiple Amazon EC2 instances. Each running instance of the application must have access to a shared file system.Where should the data be stored?
A Solutions Architect is designing a microservice to process records from Amazon Kinesis Streams. The metadata must be stored in Amazon DynamoDB. The microservice must be capable of concurrently processing 10,000 records daily as they arrive in the Kinesis stream.The MOST scalable way to design the microservice is:
A university is running an internal web application on AWS that students can access from the university network to check their exam results. The web application runs on Amazon EC2 instances and pulls results from an Amazon DynamoDB table. Auto Scaling is currently configured to add a new web server when CPU is greater than 80% for 5 minutes. DynamoDB is configured to increase both read and write capacity units by five when utilization is greater than 80%. Exam results are released at 9:00 a.m. each Monday, and 80% of students, attempt to access their unique result within the first 30 minutes. Despite Auto Scaling being enabled, students are complaining of slow response times and errors when they view the site. There are no performance complaints after 9:30 a.m. on Monday.Which recommendation should a Solutions Architect make to improve performance in a cost-effective manner?
As part of a migration strategy, a Solutions Architect needs to analyze workloads that can be optimized for performance and cost. The Solutions Architect has identified a stateless application that serves static content as a potential candidate to move to the cloud. The Solutions Architect has the flexibility to choose an identity solution between Facebook, Twitter, and Amazon.Which AWS solution offers flexibility and ease of use, and the LEAST operational overhead for this migration?
A company needs to capture all client connection information from its Application Load Balancer every five minutes. This data will be used to analyze traffic patterns and troubleshoot the application.How can a Solutions Architect meet this requirement?
An application runs on EC2 instances behind an Elastic Load Balancing Application Load Balancer. The instances run in an EC2 Auto Scaling group across multiple Availability Zones. The application provides a RESTful interface with both synchronous and asynchronous operations. The asynchronous operations require up to 5 minutes to complete. Although the application must remain available at all times, after business hours, the traffic going to the application is greatly reduced and often results in the Auto Scaling group running the minimum number of On-Demand Instances.What should the Solutions Architect recommend to optimize the cost of the environment after business hours?
A Solutions Architect is designing a web application for document sharing. The users will upload documents that are then made available to other users. There will be tens of thousands of these documents.What is the MOST cost-effective storage solution?
A Solutions Architect was tasked with reviewing several templates that build VPCs and ensuring that they meet specific security requirements. After reviewing the templates, the Architect realizes that all of the templates are missing important security best practices.What should the Architect do to implement security best practices in an efficient manner?
A Solutions Architect has been given the following requirements for a company's VPC:
The solution is a two-tiered application with a web tier and a database tier.
All web traffic to the environment must be directed from the Internet to an Application Load Balancer.
The web servers and the databases should not obtain public IP addresses or be directly accessible from the public Internet.
Because of security requirements, databases may not share a route table or subnet with any other service.
The environment must be highly available within the same VPC for all services.What is the minimum number of subnets that the Solutions Architect will need based on these requirements and best practices?
An application currently stores objects in Amazon S3-Standard. The application accesses new objects frequently for one week. After one week, they are accessed occasionally for analysis batch jobs. A Solutions Architect has been asked to reduce storage costs for the application while allowing immediate access for batch jobs.How can costs be reduced without reducing data durability?
A company is building a critical ingestion service on AWS that will receive 1,000 incoming events per second. The events must be processed in order, and no events may be lost. Multiple applications will need to process each event. The company will expose the service as RESTful calls through an API Gateway.What should a Solutions Architect use to receive the events based on these requirements?
An AWS Lambda function requires access to an Amazon RDS for SQL Server instance. It is against company policy to store passwords in Lambda functions.How can a Solutions Architect enable the Lambda function to retrieve the database password without violating company policy?
A company has two different types of reporting needs on their 200-GB data warehouse:
Data scientists run a small number of concurrent ad hoc SQL queries that can take several minutes each to run.
Display screens throughout the company run many fast SQL queries to populate dashboards.Which design would meet these requirements with the LEAST cost?
A company has an application that uses Amazon CloudFront for content that is hosted on an Amazon S3 bucket. After an unexpected refresh, the users are still seeing old content.Which step should the Solutions Architect take to ensure that new content is displayed?
A company expects its user base to increase five times over one year. Its application is hosted in one region and uses an Amazon RDS MySQL database, an ELBApplication Load Balancer, and Amazon ECS to host the website and its microservices.Which design changes should a Solutions Architect recommend to support the expected growth? (Choose two.)
A company is rolling out a new web service, but is unsure how many customers the service will attract. However, the company is unwilling to accept any downtime.What could a Solutions Architect recommend to the company in order to keep track of customers' current session data?
A web application is running on Amazon EC2 instances behind an Elastic Load Balancing Application Load Balancer (ALB). The EC2 instances should receive no traffic, except for web requests to the application.Based on these requirements, what security group rules should be put on the Amazon EC2 instances?
A Solutions Architect must migrate a monolithic on-premises application to AWS. It is a web application with a load balancer, web server, application server, and relational database. The key requirement driving the migration is that the application should perform better and be more elastic.Which of the following architectures would meet these requirements?
A company has asked the Solutions Architect to modify its AWS-hosted internal application to allow for load balancing. The customer requests always come from the company domain (example.net). The company requires that incoming HTTP and HTTPS traffic is routed based on the path element of the URL in the request.Which implementation can satisfy all requirements?
A Solutions Architect is asked to improve the fault tolerance of an existing Python application. The web application places 1-MB images is an S3 bucket. The application then uses a single t2.large instance to transform the image to include a watermark with the company's brand before writing the image back to the S3 bucket.What should the Solutions Architect recommend to increase the fault tolerance of the solution?
A Solutions Architect has been asked to deliver video content stored on Amazon S3 to specific users from Amazon CloudFront while restricting access by unauthorized users.How can the Architect implement a solution to meet these requirements?
A Solutions Architect needs to deploy a node.js-based web application that is highly available and scales automatically. The Marketing team needs to roll back on application releases quickly, and they need to have an operational dashboard. The Marketing team does not want to manage deployment of OS patches to theLinux servers.Use of which AWS service will satisfy these requirements?
A company has a website running on Amazon EC2. The application DNS name points to an Elastic IP address associated with the EC2 instance. In the event of an attack on the website coming from a specific IP address, the company wants a way to block the offending IP address.Which tool or service should a Solutions Architect recommend to block the IP address?
A customer is looking for a storage archival solution for 1,000 TB of data. The customer requires that the solution be durable and data be available within a few hours of requesting it, but not exceeding a day. The solution should be as cost-effective as possible. To meet security compliance policies, data must be encrypted at rest. The customer expects they will need to fetch the data two times in a year.Which storage solution should a Solutions Architect recommend to meet these requirements?
A web application runs on 10 EC2 instances launched from a single customer Amazon Machine Image (AMI). The EC2 instances are behind an InternetApplication Load Balancer. Amazon Route 53 provides DNS for the application.How should a Solutions Architect automate recovery when a web server instance stops replying to request?
A company has a Node.js application running on Amazon EC2 that currently retrieves data for customers from a DynamoDB table. The company is seeing many repeat queries for the same items, and the number of queries is continuing to increase as the application gains popularity.What solution will reduce the number of read capacity units (RCUs) required while minimizing the amount of refactoring that must be done to the application?
A company has an application that accesses a MySQL database installed on a single EC2 instance. The instance recently experienced a fault and brought down the entire application for several hours. The company wants to address the issue but is concerned about spending too much time modifying application code or managing the legacy application.What should the Solutions Architect recommend to remove this single point of failure with the FEWEST changes to the application code and the LEAST amount of administrative effort?
A team is launching a marketing campaign and the peak database read activity in Amazon Aurora for MySQL is expected to increase. A Solutions Architect decides to add two Read Replicas to the cluster.How should the Solutions Architect ensure that the connections for read activities are load balanced?
A company plans to migrate a website to AWS to use a serverless architecture. The website contains both static and dynamic content and is accessed by users across the world. The website should maintain sessions for returning users to improve the user experience.Which service should a Solutions Architect use for a cost-efficient solution with the LOWEST latency?
A Solutions Architect is helping a customer migrate an application to AWS. The application is composed of a fleet of Linux servers that currently use a shared file system to read and write data. One of the goals of moving this application to AWS is to increase the reliability of the storage tier.What solution would increase reliability while minimizing the operational overhead of managing this infrastructure?
A Solution Architect is designing a two-tier application for maximum security, with a web tier running on EC2 instances and the data stored in an RDS DB instance.The web tier should accept user access only through HTTPS connections (port 443) from the Internet, and the data must be encrypted in transit to and from the database.What combination of steps will MOST securely meet the stated requirements? (Choose two.)
A credit card processing application, hosted on an on-premises server, needs to communicate directly with a database hosted on an Amazon EC2 instance running in a private subnet of a VPC. Compliance requirements state that end-to-end communication should be encrypted.Which solution will ensure that this requirement is met?
A company has asked a Solutions Architect to ensure that data is protected during data transfer to and from Amazon S3.Use of which service will protect the data in transit?
A Solutions Architect is trying to bring a data warehouse workload to an Amazon EC2 instance. The data will reside in Amazon EBS volumes and full table scans will be executed frequently.What type of Amazon EBS volume would be most suitable in this scenario?
A Solutions Architect has a three-tier web application that serves customers worldwide. Analysis reveals that product images take more time to load than expected.Which action will improve the image load time?
A gaming application is heavily dependent on caching and uses Amazon ElastiCache for Redis. The application performance was recently degraded due to failure of the cache node.What should a Solutions Architect recommend to minimize performance degradation in the future?
A client has set up an Auto Scaling group associated with a load balancer. The client has noticed that instances launched by the Auto Scaling group are reported unhealthy as the result of an Elastic Load Balancing (ELB) health check, but these unhealthy instances are not being terminated.What can a Solutions Architect do to ensure that the instances marked unhealthy will be terminated and replaced?
A Solutions Architect must review an application deployed on EC2 instances that currently stores multiple 5-GB files on attached instance store volumes. The company recently experienced a significant data loss after stopping and starting their instances and wants to prevent the data loss from happening again. The solution should minimize performance impact and the number of code changes required.What should the Solutions Architect recommend?
An organization is deploying Amazon ElastiCache for Redis and requires password protection to improve their data security posture.Which solution should a Solutions Architect recommend?
A Solutions Architect is designing a solution to send Amazon CloudWatch Alarm notifications to a group of users on a smartphone mobile application.What are the key steps to this solution? (Choose two.)
A company uses Amazon S3 for storing a variety of files. A Solutions Architect needs to design a feature that will allow users to instantly restore any deleted files within 30 days of deletion.Which is the MOST cost-efficient solution?
An application running on Amazon EC2 has been experiencing performance issues when accessing an Amazon RDS for Oracle database. The database has been provisioned correctly for average workloads, but there are several usage spikes each day that have saturated the database, causing the application to time out. The application is write-heavy, updating information more often than reading information. A Solutions Architect has been asked to review the application design.What should the Solutions Architect recommend to improve performance?
During performance testing of an application, the Amazon RDS database caused a performance bottleneck.What steps can be taken to improve the database performance? (Choose two.)
A Solutions Architect must design an Amazon DynamoDB table to store data about customer activities. The data is used to analyze recent customer behavior, so data that is less than a week old is heavily accessed and older data is accessed infrequently. Data that is more than one month old never needs to be referenced by the application, but needs to be archived for year-end analytics.What is the MOST cost-efficient way to meet these requirements? (Choose two.)
A Solutions Architect is concerned that the current security group rules for a database tier are too permissive and may permit requests that should be restricted.Below are the current security group permissions for the database tier:
Port Range: 1433 (MS SQL)
Source: ALLCurrently, the only identified resource that needs to connect to the databases is the application tier consisting of an Auto Scaling group of EC2 instances.What changes can be made to this security group that would offer the users LEAST privilege?
A large media site has multiple applications in Amazon ECS. A Solutions Architect needs to use content metadata and route traffic to specific services.What is the MOST efficient method to perform this task?
A Solutions Architect must build a secure document ""storage platform that allows clients to access data stored on Amazon S3. Documents must be readily available for the first 15 days. After that, documents need not be readily available, and storage costs should be reduced as much as possible.Which of the following approaches will satisfy these requirements?
A Solutions Architect needs to configure scaling policies based on Amazon CloudWatch metrics for an Auto Scaling group. The application running on the instances is memory intensive.How can the Architect meet this requirement?
A customer has a service based out of Oregon, U.S. and Paris, France. The application is storing data in an S3 bucket located in Oregon, and that data is updated frequently. The Paris office is experiencing slow response times when retrieving objects.What should a Solutions Architect do to resolve the slow response times for the Paris office?