1. A company runs a multi-tier web application that hosts news content. The application runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an EC2 Auto Scaling group across multiple Availability Zones and use an Amazon Aurora database. A solutions architect needs to make the application more resilient to periodic increases in request rates.Which architecture should the solutions architect implement? (Choose two.)(Select 2answers)

A) Add AWS Direct Connect.
B) Add Aurora Replica.
C) Add AWS Shield.
D) Add AWS Global Accelerator.
E) Add an Amazon CloudFront distribution in front of the Application Load Balancer.


2. A company is planning to use Amazon S3 to store images uploaded by its users. The images must be encrypted at rest in Amazon S3. The company does not want to spend time managing and rotating the keys, but it does want to control who can access those keys.What should a solutions architect use to accomplish this?

A) Server-Side Encryption with Customer-Provided Keys (SSE-C)
B) Server-Side Encryption with AWS KMS-Managed Keys (SSE-KMS)
C) Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
D) Server-Side Encryption with keys stored in an S3 bucket.



3. A company runs a multi-tier web application that hosts news content. The application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The instances run in an EC2 Auto Scaling group across multiple Availability Zones and use an Amazon Aurora database. A solutions architect needs to make the application more resilient to periodic increases in request rates. Which architecture should the solutions architect implement? Select two(Select 2answers)

A) Add AWS Direct Connect
B) Add an Amazon CloudFront distribution in front of the Application Load Balancer.
C) Add AWS Global Accelerator
D) Add AWS Shield
E) Add Aurora Replicas


4. A gaming company has multiple Amazon EC2 instances in a single Availability Zone for its multiplayer game that communicates with users on Layer 4. The Chief Technology Officer (CTO) wants to make the architecture highly available and cost-effective.What should a solutions architecture do to meet these requirements ? (select two)(Select 2answers)

A) Decrease the number of EC2 instances.
B) Configure an Auto Scaling group to add or remove instances in multiple Availability Zones automatically
C) Configure a Network Load Balancer in front of the EC2 instances.
D) Configure an Application Load Balancer in front of the EC2 instances.
E) Increase the number of EC2 instances.


5. A company allows its developers to attach existing IAM policies to existing IAM roles to enable faster experimentation and agility. However, the security operations team is concerned that the developers could attach the existing administrator policy, when would allow the developers to circumvent any other security policies.How should a solutions architect address this issue?

A) Prevent the developers from attaching any policies and assign all IAM duties to the security operations team.
B) Set an IAM permissions boundary on the developer IAM role that explicitly denies attaching the administrator policy.
C) Create an Amazon SNS topic to send an alert every time a developer creates a new policy.
D) Use service control policies to disable IAM activity across all account in the organizational unit.