How as solution architect you provide a solution to divide VPC CIDR 10.0.0.0/24
into two subnets that contain 128 IP addresses?
Question 2 of 49
An organization has multi-tier PHP web application on the on-premises, and they
experience downtime because of massive web traffic due to some announcement. Now
they need to make its infrastructure better so in future if they experience this massive
traffic, then it doesn’t experience this. How you as a solution architect provide a
solution for this?
Question 3 of 49
A company has its video websites, and for that they need MP4 files streamed
publically, and streaming must be done on-demand. They also want that video files
archived and on mobile devices streamed globally and primarily. How they do this?
Question 4 of 49
You have legacy based software which you want to move to AWS, but this software
has some dependencies on license based on MAC address. How you make this legacy
software to work properly without losing its MAC address?
Question 5 of 49
An enterprise has two VPC’s that belongs to the same region, and they need that both
VPC’s can communicate to each other. How was it possible?
Question 6 of 49
A company set up its web application on ELB within a couple of zones. But they
observed that traffic among both AZ’s is not distributed equally. How you as a solution
architect professional provide a solution to overcome this issue?
Question 7 of 49
An organization wants to shift its legacy application not standard HTTP application
to Cloud. For high availability of the application, they decided to use ELB and
autoscaling service for traffic serving. Now they need to open port 80 and 8080 then
which listener configuration need to be created in the custom legacy application?
Question 8 of 49
A company needs to access a resource in a bucket from one domain to a bucket of
another domain. Which feature of S3 is used for this purpose?
Question 9 of 49
You have an application that uses auto-scaling and EC2 instances in multiple AZ’s.
Now they observed from logs of a load balancer that one of AZ is not getting request.
What was the reason behind this?
Question 10 of 49
A company has a legacy web application and need to shift it on Aws Cloud as urgent
as possible but application have some restriction like VM’s single 10GB VMDK is almost
full. The virtual network interface still uses the 10Mbps driver, which leaves your
100Mbps WAN connection completely underutilized. It is currently running on a highly
customized Windows VM within a VMware environment; You do not have the
installation media. This is a mission-critical application with an RTO (Recovery Time
Objective) of 8 hours. RPO (Recovery Point Objective) of 1 hour. How you as solution
architect professional shift this application AWS with it business requirements?
Question 11 of 49
You have two different departments and both departments need to use Redshift.
The processing of one department took an hour while processing of other department
took a few seconds. How you as solution architect professional provide a solution, so it
has no effect on performance and also deletes to second’s department queries?
Question 12 of 49
A company has a web application that is deployed in VPC and using IPSec VPN it is
connected to the company data center. The main objective of the application is to
authenticate against on-premises LDAP server and once authentication is done each
user who logged in can access only S3 key space which is related to that user. How can
this be achieved? (Choose any 2)
Question 13 of 49
An enterprise runs its very successful social application on Amazon EC2 with an
Elastic Load Balancer, an Auto-Scaling group of Java/Tomcat application-servers, and
DynamoDB as a data store. The main web application best runs on m2 x large instances
since it is highly memory- bound. Each new deployment requires the semi-automated
creation and testing of a new AMI for the application servers which takes quite a while
and is therefore only done once per week. Recently, a new chat feature has been
implemented in Node.js and waits to be integrated into the architecture. First tests
show that the new component is CPU bound because the company has some experience
with using Chef, they decided to streamline the deployment process and use AWS
OpsWorks as an application lifecycle tool to simplify management of the application
and reduce the deployment cycles. What configuration in AWS OpsWorks is necessary
to integrate the new chat module in the most cost-efficient and flexible way?
Question 14 of 49
A company has a multi-tier web application on AWS. Now they need to add
reporting tier in an application so it will collect and publish a status report after every 1
minute from information generated by the user and stored in the database. The
database tier is on Multi-AZ RDS MySQL instance, and for caching of the database, it
uses ElastiCache between application and database tier. How you add reporting tier in
the application, so it affects database tier minimal?
Question 15 of 49
An organization has a web application hosted on AWS. Application web server and
database server are deployed in public and private subnet of VPC. They need that
application must be highly available, scalable, cost-effective and minimum human
interference. When the application is accessing using a web browser application is not
accessible. What was the solution to overcome this problem? ( choose any 2)
Question 16 of 49
A company needs it analytics report on a regular basis. All log’s data is stored in S3,
and then it is analyzed by EMP jobs, and after that, it generates PDF report daily and
its combine tables in CSV format for the Redshift data warehouse. Now you are hired
as solution architect professional to provide a solution that how in a cost-effective way
they optimize the structure as average hourly usage of EMR is between 25 to 50 %?
Question 17 of 49
A company has its on-demand video training website. On websites, the video is
uploaded on a monthly basis with high resolution of MP4 format. Its client is global,
and they used a tablet for watching and for that they need HLS protocol in their tablet.
Now they need to implement this architecture in a cost-effective way without any
compromise in the quality of video and viability. How as solution architect provide a
solution for this?
Question 18 of 49
An enterprise has its web application in AWS Asia Pacific region. The application is
on EC2 instances and Multi-AZ RDS database, and now they want logs that are reliable
and durable to monitor changes in EC2, RDS and IAM resources. How they do this with
maintaining its integrity and confidentiality of log data.?
Question 19 of 49
A company needs to develop a structure in which VPC’s instances want access to
the internet only for a specific update of product and except that no outbound traffic is
allowed from the internet. The updates accessed by the third party via URL. How you
as a solution architect provide a solution for this?
Question 20 of 49
A company has an application which is hosted on auto scaling group of EC2
instance. As per company policy, the outbound connection of instances to other
services in their VC must be authenticated via X.509 certificate that is designed by AWS
KMS for trusted authentication. This certificate contained a specific instance ID. How
you as a solution architect fulfill company’s requirement?
Question 21 of 49
An organization, IT department staff, want to a login AWS Management console
and administer EC2 instances as per requirement. The data center of the organization
is in VPC on AWS because of its extension in robust compute capacity. Now they don’t
want to create IAM user of each staff member as they require to log in again into
management console. How you provide a solution for IT staff member to login AWS
Question 22 of 49
A company needs communication between its on-premises infrastructure and
Amazon VPC. For that they use IPsec tunnel over the internet and VPN gateway on
AWS supported customer gateway instead of IPsec tunnel. What was the benefit of
using IPsec tunnel over the internet? (Choose any 4)
Question 23 of 49
An online image collage application is design in which users upload images in it via
mobile app, and it is stored in S3. Now the user needs to access its own uploaded picture
directly from S3. Now you want to manage millions of users in a secure way and what
configurations they need to do when new user register to the app?
Question 24 of 49
A company has its social media site, and in that site, there is the presence of DDoS
attacks. How they minimize the DDoS attack? (choose any 2)
Question 25 of 49
A company decides to use S3 instead of purchasing more hardware because by use
of S3 they allow each member of staff to access S3 for storage of their files in their
respective folder in the bucket. How you as solution architect provide a solution to set
up this system with SSO from LDAP directory or corporate AD and restrict access of
each user to its own folder? (Choose any 2)
Question 26 of 49
An enterprise needs to shifts its legacy client-server application to AWS. It has a 2-
tier architecture, with multiple application servers and a database server application.
The application responds to a specific DNS domain (e.g., www.example.com). Remote
clients use TCP to connect to the application servers. The application servers need to
know the IP address of the clients in order to function properly and are currently taking
that information from the TCP socket. Now they decided to use multi-AZ RDS MySQL
instance for the database. The application code is changed during migration, but for
that, they need to file a change request. How you as solution architect do this to
maximize the high ability and scalability?
Question 27 of 49
You have a website on which you need to analyze the behavior of clickstream data
on the website to know which sequence of pages and ads are clicked by visitors. As they
need to modify the data in real time as its client click through the site to increase
stickiness and advertising click through. How you as a solution architect meet this
Question 28 of 49
A company has its website running on Ec2 instances which are deployed on Multiple
AZ’s with RDS MySQL xlarge DB instance. Now site performs a huge number of small
read and writes per second and rely on the eventual consistent model. After some
testing, they found that there is read contention on RDS. How you as a solution
architect meet these requirements? (Choose any 2)
Question 29 of 49
A company is implementing a URL whitelisting system to restrict outbound HTTPS
connections to specific domains from their EC2-hosted applications. They deploy a
single EC2 instance running proxy software and configure it to accept traffic from all
subnets and EC2 instances in the VPC. Then configure the proxy to only pass through
traffic to domains that you define in its whitelist configuration. Now they have a nightly
maintenance window or 10 minutes where all instances fetch new software updates and
update size is 200MB. There are 500 instances and in the VPC that routinely fetch
updates. After some time they observed that some machines are failing to download
some successfully, but not all of their updates within the maintenance window. The
download URLs used for these updates are correctly listed in the proxy’s whitelist
configuration, and you are able to access them manually using a web browser on the
instances. What might be happening? (Choose any 2)
Question 30 of 49
A company has a website that works as read-only news reporting. The site comprises
of web, application and database tier. Now on this site they are getting a huge amount
of traffic which is unpredicted then how you as solution architect professional provide
them a solution of using which AWS service to respond to these traffic changes
Question 31 of 49
An educational institution has an application on which they need to add a locationbased alert in a cost-effective way. Currently, the application is in AWS and server
approx. 3million students in US region. Now they want that whoever uses this service
will get alerts about university courses offers in the closest branch from their location.
The alerts must be relevant about their interest, reach with the minimal minute count.
How you as solution architect professional design this architecture in existing
Question 32 of 49
You are head of society in university and for selection of the best candidate for the
upcoming head in society you have polling system. All the students in university visit
the website of society view profile of candidates and then vote to their favorite
candidate. But all students first log in to the site by credentials of AWS and submit the
vote. After completion of voting the result will be displayed on site with votes. How you
as solution architect build a site so that it can handle this rapid influx of traffic with
good performance and least cost?
Question 33 of 49
You have an application, and you need to deploy it in deployment, test and
production environment. Then they opt to use Elastic Beanstalk due to its tight
integration with your developer tools and RDS due to its ease of management. Your QA
team lead points out that you need to roll a sanitized set of production data into your
environment on a nightly basis. Similarly, other software teams in your organization
want access to that same restored data via their EC2 instances in your VPC. What of the
following would be the optimal setup for persistence and security that meets the above
Question 34 of 49
A company needs to cut costs and put things in the budget. There are multiple
accounts which are linked to master account for billing purpose and for that it uses
consolidated billing feature of AWS. How you as solution architect give access to stop,
start and terminate the resources?
Question 35 of 49
A company needs to put its service in a highly available application that is on VPC.
Instances of application are placed behind the public-facing ELB. It also used the autoscaling feature to scale the instances as per requirement for traffic load. An application
is running on 2 instances that are in auto scaling group, but in peak load, it scales it in
3x in size. The application instances need to communicate with the service over the
Internet and fro that they need whitelisting of all public IP addresses used to
communicate with it. They also need that maximum of 4 whitelisting IP addresses are
allowed at a time and can be added through an API. How you as solution architect
professional provide the solution for the requirement?
Question 36 of 49
If you have two VPC that are peered together, one VPC contain all private subnets
(VPC-1), and other contains all public subnets (VPC-2) and use single Direct Connect
and private virtual interface for connecting to its on-premises network with the VPC
that has all private subnet. Then how they make this connection fault tolerance?
(Choose any 2)
Question 37 of 49
An organization has an application in AWS in which it uses AWS Data Pipeline.
Which component of this service is used to poll for the task and then perform that
Question 38 of 49
A company has an on-premises application through which allows the public to
search its back catalog and retrieve individual pages via a website written in Java. They
have scanned the old newspapers into JPEGs (approx 17TB) and used Optical Character
Recognition (OCR) to populate a commercial search product. Now they need to shift
its archive to AWS and produce a cost-efficient architecture and still be designed for
availability and durability which is the most appropriate?
Question 39 of 49
An organization has a system which consists of application tier, database tier, and
static content. Application tier has an application server with java code, in the database
server, there is an Oracle database which is backed up to S3 via Oracle RMAN backup
utility. 512GB gateway storage volumes are stored as static content to the application
server via the iSCSI interface. How you as solution architect provide a solution for
disaster recovery strategy with best RTO?
Question 40 of 49
An NGO needs to create a mobile app so that whoever wants to a charity that NGO
post there any act of kindness in summarizing form. The application format is
and tablets. The summary by the people should be stored in DynamoDB. Initially, in
the start, there are not too many people than how you as solution architect design this
application in a cost-effective and scalable way?
Question 41 of 49
A company uses Oracle RAC cluster in public cloud of AWS, and now they need a
backup of that cluster. How you as a solution architect professional provide a solution
Question 42 of 49
A company has an application which needs access to DynamoDB table for each
client. How you as solution architect allow each mobile device application to access
DynamoDB table for storage?
Question 43 of 49
A company is facing DDoS attacks, and they need to reduce the surface area by
minimizing the DDoS strategy in AWS. How you as a solution architect professional
provide a solution for this issue? (Choose any 2)
Question 44 of 49
A company hired the developer that has access to production AWS account. Now
the developer has a chance to delete the production base EC2 resources potentially.
How can you mitigate this chance? (Choose any 2)
Question 45 of 49
You have multi-tier application which depends on DynamoDB in one region. Now
they need disaster recovery of that in another region with RTO 2hr and RPO 24 hr. the
data should be synchronized on a regular basis and should be able to provision web
application using CloudFormation rapidly. Now they want to reduce the changes to the
existing application, the throughput of DynamoDB for synchronization of data and
synchronize the modified element only. How you as solution architect professional
provide the solution for this?
Question 46 of 49
A company needs analyzing of clickstreams from web application then how they do
this in AWS?
Question 47 of 49
A company launches an instance with encrypted EBS volume then what types of
data is encrypted?
Question 48 of 49
An enterprise has a web application on AWS. They observed that a specific set of
IP’s are sending a huge amount of request and now they need to restrict this type of
attack. How you as a solution architect provide a solution for that?
Question 49 of 49
A company has its legacy application on is n-premises VM, and now they need to
shift this application to AWS. How you as solution architect professional provide a way
to migrate it? (Choose any 2)