Book Image

AWS Certified Solutions Architect Practice Tests: Associate SAA–C01 Exam

By : BRETT MCLAUGHLIN
Book Image

AWS Certified Solutions Architect Practice Tests: Associate SAA–C01 Exam

By: BRETT MCLAUGHLIN

Overview of this book

With five unique practice tests, covering the five AWS Certified Solutions Architect Associate Exam objective domains, PLUS one additional practice exam,?AWS Certified Solutions Architect Practice Tests provides?a total of 1,000 practice test questions to make sure you are prepared for exam day. Coverage of all exam objective domains includes: Design Resilient Architectures, Define Performant Architectures, Specify Secure Applications and Architectures, Design Cost-Optimized Architectures, Define Operationally Excellent Architectures.

Related Content you might be interested in

Current Title:

Small book image
AWS Certified Solutions Architect Practice Tests: Associate SAA–C01 Exam
BRETT MCLAUGHLIN
Apr, 2019 | 288 pages
No titles found
Table of Contents (13 chapters)
Free Chapter
1
Cover
Cover
2
Acknowledgments
Acknowledgments
3
About the Author
About the Author
4
Introduction
Introduction
Certification Pays
Steps to Getting Certified and Staying Certified
Taking the Exam
How to Use This Book and the Interactive Online Learning Environment and Test Bank
Exam Objectives
Objective Map
5
Chapter 1 Domain 1: Design Resilient Architectures
Chapter 1 Domain 1: Design Resilient Architectures
Review Questions
6
Chapter 2 Domain 2: Define Performant Architectures
Chapter 2 Domain 2: Define Performant Architectures
Review Questions
7
Chapter 3 Domain 3: Specify Secure Applications and Architectures
Chapter 3 Domain 3: Specify Secure Applications and Architectures
Review Questions
8
Chapter 4 Domain 4: Design Cost-Optimized Architectures
Chapter 4 Domain 4: Design Cost-Optimized Architectures
Review Questions
9
Chapter 5 Domain 5: Define Operationally Excellent Architectures
Chapter 5 Domain 5: Define Operationally Excellent Architectures
Review Questions
10
Chapter 6 Practice Test
Chapter 6 Practice Test
11
Index
Index
12
WILEY END USER LICENSE AGREEMENT
WILEY END USER LICENSE AGREEMENT
Appendix Answers to Review Questions
Appendix Answers to Review Questions
Domain 1: Design Resilient Architectures
Domain 2: Define Performant Architectures
Domain 3: Specify Secure Applications and Architectures
Domain 4: Design Cost-Optimized Architectures
Domain 5: Define Operationally Excellent Architectures
Practice Test

Domain 3: Specify Secure Applications and Architectures

  1. B, D. Option A is false, but option B is true. Default security groups prevent all traffic in and allow all traffic out. Options C and D are about whether or not a security group is stateful: whether an incoming connection automatically can get back out. Security groups are stateful, so D is true. If the subject of the question was a NACL, then option C would be true, as NACLs are stateless.
  2. B. D is not a good answer because relying on encryption outside of S3 does not best address the concerns around consistency. It is generally better to allow AWS to handle encryption in cases where you want to ensure all encryption is the same across a data store. SSE-C, SSE-KMS, and SSE-C all provide this. However, among those three, KMS is the best option for providing clear audit trails.
  3. A, C. A bastion host is a publicly accessible host that allows traffic to connect to it. Then, an additional connection is made from the bastion host into...
Previous Section
End of Section
Next Section