2024 AWS SOLUTIONS ARCHITECT
ASSOCIATE EXAM WITH 100%
SMART ANSWERS
Which AWS service is effectively a NAS in the cloud, allowing you to connect
it to multiple EC2 instances at once?
A. EBS
B. EFS
C. SQS
D. SNS - CORRECT-ANSWERSB
Which of the following allows you to SSH or RDP into an EC2 instance located
in a private subnet?
A. Bastion Host
B. NAT Gateway
C. Internet Gateway
D. NAT Instance - CORRECT-ANSWERSA
By default, how many VPCs am I allowed in each AWS Region?
A. 6
B. 1
C. 2
D. 5 - CORRECT-ANSWERSD
At which of the following levels can VPC Flow Logs be created? (Choose 3)
A. Instance Level
B. Network Interface Level
C. Network Access Control List Level
D. VPC Level
E. Security Group Level
F. Subnet Level - CORRECT-ANSWERSB, D, F
How many internet gateways can I attach to my custom VPC
A. One per Availability Zone
B. 2
C. 3
D. 1 - CORRECT-ANSWERSD
Which of the following offers the largest range of internal IP addresses?
A. /20
,B. /24
C. /16
D. /28 - CORRECT-ANSWERSC
Which of the following are true for Security Groups? (Choose 3)
A. Security Groups evaluate all rules before deciding whether to allow traffic.
B. Security Groups operate at the subnet level.
C. Security Groups process rules in number order when deciding whether to
allow traffic.
D. Security Groups support "allow" rules only.
E. Security Groups operate at the instance level.
F. Security Groups support both "allow" and "deny" rules. - CORRECT-
ANSWERSA, D, E
By default, new subnets in a custom VPC can communicate with each other
across Availability Zones.
A. False
B. True - CORRECT-ANSWERSB
Security groups act like a firewall at the instance level, whereas _________ are
an additional layer of security that act at the subnet level
A. Network ACLs
B. DB Security Groups
C. Route Tables
D. VPC Security Groups - CORRECT-ANSWERSA
Are you permitted to conduct your own vulnerability scans on your own VPC
without alerting AWS first?
A. No.
B. Yes. - CORRECT-ANSWERSA
VPC stands for
A. Very Private Cloud
B. Very Public Cloud
C. Virtual Public Cloud
D. Virtual Private Cloud - CORRECT-ANSWERSD
What does Amazon SES stand for?
A. Simple Elastic Server.
B. Simple Email Service.
C. Software Email Solution.
D. Software Enabled Server. - CORRECT-ANSWERSB
Amazon SWF is designed to help users ________.
A. Manage user identification and authorization
B. Coordinate synchronous and asynchronous tasks
, C. Secure their VPCs
D. Help users store file based objects - CORRECT-ANSWERSB
What is the difference between SNS and SQS?
A. SNS is a push notification service, whereas SQS is message system that
requires worker nodes to poll a queue.
B. SQS sends messages to people on topics, whereas SNS manages tasks.
C. SNS pulls (polls), whereas SQS is push based message service.
D. SQS and SNS are basically the same service. - CORRECT-ANSWERSA
What application service allows you to decouple your infrastructure using
messaged based queues?
A. SQS
B. SNS
C. SES
D. SWF - CORRECT-ANSWERSA
In SWF, what does a "domain" refer to?
A. A collection of related workflows
B. A specialized security group configuration
C. A special type of worker instance
D. The DNS record for the Amazon SWF service - CORRECT-ANSWERSA
What does Amazon SWF stand for?
A. Simple Work Flow
B. Simple Web Flow
C. Simple Work Form
D. Simple Wireless Forms - CORRECT-ANSWERSA
What happens when you create a topic on Amazon SNS?
A. An Amazon Resource Name is created.
B. You cannot create a topic on SNS.
C. The topic will terminate your EC2 instances that aren't identified by tags.
D. Nothing, as topics are specific to Amazon SQS. - CORRECT-ANSWERSA
Amazon's SQS service guarantees a message will be delivered at least once.
A. True
B. False - CORRECT-ANSWERSA
Amazon SWF ensures that a task is assigned only once and is never
duplicated.
A. False
B. True - CORRECT-ANSWERSB
Auditing user access/API calls etc across the entire AWS estate can be
achieved by using ________.
ASSOCIATE EXAM WITH 100%
SMART ANSWERS
Which AWS service is effectively a NAS in the cloud, allowing you to connect
it to multiple EC2 instances at once?
A. EBS
B. EFS
C. SQS
D. SNS - CORRECT-ANSWERSB
Which of the following allows you to SSH or RDP into an EC2 instance located
in a private subnet?
A. Bastion Host
B. NAT Gateway
C. Internet Gateway
D. NAT Instance - CORRECT-ANSWERSA
By default, how many VPCs am I allowed in each AWS Region?
A. 6
B. 1
C. 2
D. 5 - CORRECT-ANSWERSD
At which of the following levels can VPC Flow Logs be created? (Choose 3)
A. Instance Level
B. Network Interface Level
C. Network Access Control List Level
D. VPC Level
E. Security Group Level
F. Subnet Level - CORRECT-ANSWERSB, D, F
How many internet gateways can I attach to my custom VPC
A. One per Availability Zone
B. 2
C. 3
D. 1 - CORRECT-ANSWERSD
Which of the following offers the largest range of internal IP addresses?
A. /20
,B. /24
C. /16
D. /28 - CORRECT-ANSWERSC
Which of the following are true for Security Groups? (Choose 3)
A. Security Groups evaluate all rules before deciding whether to allow traffic.
B. Security Groups operate at the subnet level.
C. Security Groups process rules in number order when deciding whether to
allow traffic.
D. Security Groups support "allow" rules only.
E. Security Groups operate at the instance level.
F. Security Groups support both "allow" and "deny" rules. - CORRECT-
ANSWERSA, D, E
By default, new subnets in a custom VPC can communicate with each other
across Availability Zones.
A. False
B. True - CORRECT-ANSWERSB
Security groups act like a firewall at the instance level, whereas _________ are
an additional layer of security that act at the subnet level
A. Network ACLs
B. DB Security Groups
C. Route Tables
D. VPC Security Groups - CORRECT-ANSWERSA
Are you permitted to conduct your own vulnerability scans on your own VPC
without alerting AWS first?
A. No.
B. Yes. - CORRECT-ANSWERSA
VPC stands for
A. Very Private Cloud
B. Very Public Cloud
C. Virtual Public Cloud
D. Virtual Private Cloud - CORRECT-ANSWERSD
What does Amazon SES stand for?
A. Simple Elastic Server.
B. Simple Email Service.
C. Software Email Solution.
D. Software Enabled Server. - CORRECT-ANSWERSB
Amazon SWF is designed to help users ________.
A. Manage user identification and authorization
B. Coordinate synchronous and asynchronous tasks
, C. Secure their VPCs
D. Help users store file based objects - CORRECT-ANSWERSB
What is the difference between SNS and SQS?
A. SNS is a push notification service, whereas SQS is message system that
requires worker nodes to poll a queue.
B. SQS sends messages to people on topics, whereas SNS manages tasks.
C. SNS pulls (polls), whereas SQS is push based message service.
D. SQS and SNS are basically the same service. - CORRECT-ANSWERSA
What application service allows you to decouple your infrastructure using
messaged based queues?
A. SQS
B. SNS
C. SES
D. SWF - CORRECT-ANSWERSA
In SWF, what does a "domain" refer to?
A. A collection of related workflows
B. A specialized security group configuration
C. A special type of worker instance
D. The DNS record for the Amazon SWF service - CORRECT-ANSWERSA
What does Amazon SWF stand for?
A. Simple Work Flow
B. Simple Web Flow
C. Simple Work Form
D. Simple Wireless Forms - CORRECT-ANSWERSA
What happens when you create a topic on Amazon SNS?
A. An Amazon Resource Name is created.
B. You cannot create a topic on SNS.
C. The topic will terminate your EC2 instances that aren't identified by tags.
D. Nothing, as topics are specific to Amazon SQS. - CORRECT-ANSWERSA
Amazon's SQS service guarantees a message will be delivered at least once.
A. True
B. False - CORRECT-ANSWERSA
Amazon SWF ensures that a task is assigned only once and is never
duplicated.
A. False
B. True - CORRECT-ANSWERSB
Auditing user access/API calls etc across the entire AWS estate can be
achieved by using ________.
