Summer Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Note! Following SAA-C02 Exam is Retired now. Please select the alternative replacement for your Exam Certification. The new exam code is SAA-C03

Verified By IT Certified Experts

CertsTopics.com Certified Safe Files

Up-To-Date Exam Study Material

99.5% High Success Pass Rate

100% Accurate Answers

Instant Downloads

Exam Questions And Answers PDF

Try Demo Before You Buy

Certification Exams with Helpful Questions And Answers

What our customers are saying

Angola certstopics Angola
Warren
Apr 13, 2025
Passed with 810 marks in my Amazon Web Services SAA-C02 exam today. CertsTopics Study Guide is pretty awesome and taught me exactly what I needed to know to do well. I highly recommend CertsTopics to everyone who is intrested in taking the exam. Thank you so much!!!
Argentina certstopics Argentina
Jennifer
Mar 16, 2025
It is with a great pleasure that I am talking about my success here. I am writing to tell you that I passed my Amazon Web Services SAA-C02 exam today with high score. Unbelievably, the miracle has happened! I am so pleased, so happy, so glad that it seems to be a dream!!!! Thank you very much certstopics.com for everything.

AWS Certified Solutions Architect - Associate (SAA-C03) Questions and Answers

Question 1

A security learn needs to enforce the rotation of all IAM users' access keys every 90 days If an access key Is found to be older, the key must be made inactive and removed A solutions architect must create a solution that will check for and remediate any keys older than 90 days

Which solution meets these requirements with the LEAST operational effort?

Options:

A.

Create an AWS Config rule to check for the key age Configure the AWS Config rule to run an AWS Batch job to remove the key

B.

Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age Configure the rule to run an AWS Batch job to remove the key

C.

Create an AWS Config rule to check for the key age Define an Amazon EventBridge (Amazon CloudWatch Events) rule to schedule an AWS Lambda function to remove the key

D.

Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age Define an EventBridge (CloudWatch Events) rule to run an AWS Batch job to remove the key

Buy Now
Question 2

A company's web application consists of multiple Amazon EC2 instances that run behind an Application Load Balancer in a VPC. An Amazon ROS for MySQL DB instance contains the data. The company needs the ability to automatically detect and respond to suspicious or unexpected behaviour in its AWS environment the company already has added AWS WAF to its architecture.

What should a solutions architect do next lo protect against threats?

A, Use Amazon GuardDuty to perform threat detection. Configure Amazon EventBridge (Amazon CloudWatch Events) to filler for GuardDuty findings and to invoke pin AWS Lambda function to adjust the AWS WAF rules

B. Use AWS Firewall Manager to perform threat detection Configure Amazon EventBridge (Amazon CloudWatch Events) to filter for Firewall Manager findings and to invoke an AWS Lambda function to adjust the AWS WAF web ACL

C. Use Amazon Inspector to perform three! detection and to update the AWS WAT rules Create a VPC network ACL to limit access to the web application

D. Use Amazon Macie to perform throat detection and to update the AWS WAF rules Create a VPC network ACL to limit access to the web application

Options:

Question 3

A company runs an application on several Amazon EC2 instances that store persistent data on an Amazon Elastic File System (Amazon EFS) file system. The company needs to replicate the data to another AWS Region by using an AWS managed service solution

Which solution will meet these requirements MOST cost-effectively'?

Options:

A.

Use the EFS-to-EFS backup solution to replicate the data to an EFS file system in another Region

B.

Run a nightly script to copy data from the EFS file system to an Amazon S3 bucket Enable S3 Cross-Region Replication on the S3 bucket

C.

Create a VPC in another Region Establish a cross-Region VPC peer Run a nightly rsync to copy data from the original Region to the new Region.

D.

Use AWS Backup to create a backup plan with a rule that takes a daily backup and replicates it to another Region Assign the EFS file system resource to the backup plan