- (Exam Topic 3)
A company has an AWS Lambda function that needs read access to an Amazon S3 bucket that is located in the same AWS account. Which solution will meet these requirement in the MOST secure manner?

1. A. Apply an S3 bucket pokey that grants road access to the S3 bucket
2. B. Apply an IAM role to the Lambda function Apply an IAM policy to the role to grant read access to the S3 bucket
3. C. Embed an access key and a secret key In the Lambda function's coda to grant the required IAM permissions for read access to the S3 bucket
4. D. Apply an IAM role to the Lambda functio
5. E. Apply an IAM policy to the role to grant read access to all S3 buckets In the account

Correct Answer: B

- (Exam Topic 2)
Organizers for a global event want to put daily reports online as static HTML pages. The pages are expected to generate millions of views from users around the world. The files are stored In an Amazon S3 bucket. A solutions architect has been asked to design an efficient and effective solution.
Which action should the solutions architect take to accomplish this?

1. A. Generate presigned URLs for the files.
2. B. Use cross-Region replication to all Regions.
3. C. Use the geoproximtty feature of Amazon Route 53.
4. D. Use Amazon CloudFront with the S3 bucket as its origin.

Correct Answer: D

- (Exam Topic 3)
An ecommerce company is experiencing an increase in user traffic. The company's store is deployed on Amazon EC2 instances as a two-tier web application consisting of a web tier and a separate database tier. As traffic increases, the company notices that the architecture is causing significant delays in sending timely marketing and order confirmation email to users. The company wants to reduce the time it spends resolving complex email delivery issues and minimize operational overhead.
What should a solutions architect do to meet these requirements?

1. A. Create a separate application tier using EC2 instances dedicated to email processing.
2. B. Configure the web instance to send email through Amazon Simple Email Service (Amazon SES).
3. C. Configure the web instance to send email through Amazon Simple Notification Service (Amazon SNS)
4. D. Create a separate application tier using EC2 instances dedicated to email processin
5. E. Place the instances in an Auto Scaling group.

Correct Answer: B

- (Exam Topic 1)
A company runs multiple Windows workloads on AWS. The company's employees use Windows file shares that are hosted on two Amazon EC2 instances. The file shares synchronize data between themselves and
maintain duplicate copies. The company wants a highly available and durable storage solution that preserves how users currently access the files.
What should a solutions architect do to meet these requirements?

1. A. Migrate all the data to Amazon S3 Set up IAM authentication for users to access files
2. B. Set up an Amazon S3 File Gatewa
3. C. Mount the S3 File Gateway on the existing EC2 Instances.
4. D. Extend the file share environment to Amazon FSx for Windows File Server with a Multi-AZ configuratio
5. E. Migrate all the data to FSx for Windows File Server.
6. F. Extend the file share environment to Amazon Elastic File System (Amazon EFS) with a Multi-AZ configuratio
7. G. Migrate all the data to Amazon EFS.

Correct Answer: A

- (Exam Topic 1)
A company stores call transcript files on a monthly basis. Users access the files randomly within 1 year of the call, but users access the files infrequently after 1 year. The company wants to optimize its solution by giving users the ability to query and retrieve files that are less than 1-year-old as quickly as possible. A delay in retrieving older files is acceptable.
Which solution will meet these requirements MOST cost-effectively?

1. A. Store individual files with tags in Amazon S3 Glacier Instant Retrieva
2. B. Query the tags to retrieve the files from S3 Glacier Instant Retrieval.
3. C. Store individual files in Amazon S3 Intelligent-Tierin
4. D. Use S3 Lifecycle policies to move the files to S3 Glacier Flexible Retrieval after 1 yea
5. E. Query and retrieve the files that are in Amazon S3 by using Amazon Athen
6. F. Query and retrieve the files that are in S3 Glacier by using S3 Glacier Select.
7. G. Store individual files with tags in Amazon S3 Standard storag
8. H. Store search metadata for each archive in Amazon S3 Standard storag
9. I. Use S3 Lifecycle policies to move the files to S3 Glacier Instant Retrieval after 1 yea
10. J. Query and retrieve the files by searching for metadata from Amazon S3.
11. K. Store individual files in Amazon S3 Standard storag
12. L. Use S3 Lifecycle policies to move the files to S3 Glacier Deep Archive after 1 yea
13. M. Store search metadata in Amazon RD
14. N. Query the files from Amazon RD
15. O. Retrieve the files from S3 Glacier Deep Archive.

Correct Answer: B
"For archive data that needs immediate access, such as medical images, news media assets, or genomics data, choose the S3 Glacier Instant Retrieval storage class, an archive storage class that delivers the lowest cost storage with milliseconds retrieval. For archive data that does not require immediate access but needs the flexibility to retrieve large sets of data at no cost, such as backup or disaster recovery use cases, choose S3 Glacier Flexible Retrieval (formerly S3 Glacier), with retrieval in minutes or free bulk retrievals in 5-12 hours."
https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-s3-glacier-instant-retrieval-storage-class/