← Back to exam page

SAA-C03 AWS Certified Solutions Architect - Associate (SAA-C03)

Loading demo links...

Showing 13–15 of 20 questions

Question 13 (Exam Pool C)

A company runs an application on a large fleet of Amazon EC2 instances. The application reads and write entries into an Amazon DynamoDB table. The size of the DynamoDB table continuously grows, but the application needs only data from the last 30 days. The company needs a solution that minimizes cost and development effort.

Which solution meets these requirements?

Select an option, then click Submit answer.

  • Use an AWS CloudFormation template to deploy the complete solution. Redeploy the CloudFormation stack every 30 days, and delete the original stack.

  • Use an EC2 instance that runs a monitoring application from AWS Marketplace. Configure the monitoring application to use Amazon DynamoDB Streams to store the timestamp when a new item is created in the table. Use a script that runs on the EC2 instance to delete items that have a timestamp that is older than 30 days.

  • Configure Amazon DynamoDB Streams to invoke an AWS Lambda function when a new item is created in the table. Configure the Lambda function to delete items in the table that are older than 30 days.

  • Extend the application to add an attribute that has a value of the current timestamp plus 30 days to each new item that is created in the table. Configure DynamoDB to use the attribute as the TTL attribute.
Question 14 (Exam Pool C)

A company is building a data analysis platform on AWS by using AWS Lake Formation. The platform will ingest data from different sources such as Amazon S3 and Amazon RDS. The company needs a secure solution to prevent access to portions of the data that contain sensitive information.

Select an option, then click Submit answer.

  • Create an IAM role that includes permissions to access Lake Formation tables.

  • Create data filters to implement row-level security and cell-level security.

  • Create an AWS Lambda function that removes sensitive information before Lake Formation ingests re data.

  • Create an AWS Lambda function that perodically Queries and removes sensitive information from Lake Formation tables.
Question 15 (Exam Pool A)

A company recently migrated to AWS and wants to implement a solution to protect the traffic that flows in and out of the production VPC. The company had an inspection server in its on-premises data center. The inspection server performed specific operations such as traffic flow inspection and traffic filtering. The company wants to have the same functionalities in the AWS Cloud.

Which solution will meet these requirements?

Select an option, then click Submit answer.

  • Use Amazon GuardDuty for traffic inspection and traffic filtering in the production VPC

  • Use Traffic Mirroring to mirror traffic from the production VPC for traffic inspection and filtering.

  • Use AWS Network Firewall to create the required rules for traffic inspection and traffic filtering for the production VPC.

  • Use AWS Firewall Manager to create the required rules for traffic inspection and traffic filtering for the production VPC.