Free AWS Certified Solutions Architect - Professional Practice Test

A company uses AWS Organizations with multiple accounts for development, testing, and production. Security requires that no user in any member account can disable AWS CloudTrail or leave the organization. The company also wants centralized governance with minimal operational overhead. Which solution best meets these requirements?

An enterprise has separate AWS accounts for each business unit. A central networking team manages all VPC connectivity. The company needs a scalable design to provide transitive connectivity between hundreds of VPCs across accounts and Regions while simplifying route management. Which architecture should a solutions architect recommend?

A company has a centralized security account and several workload accounts in AWS Organizations. The security team needs read-only access to investigate resources in all member accounts without creating long-lived credentials in each account. Which solution is the MOST secure and operationally efficient?

A global company uses AWS Organizations and wants to enforce encryption of all newly created Amazon EBS volumes and Amazon S3 buckets in every account. The company also wants to detect and report any noncompliant resources that already exist. Which combination of actions will meet these requirements with the LEAST ongoing administration?

A company is acquiring another company. Both companies currently use AWS Organizations and have overlapping VPC CIDR ranges in multiple accounts. They need to enable private connectivity between selected application environments during the integration period without immediately renumbering networks. Which solution is the MOST appropriate?

A company is designing a highly available web application on AWS. The application must continue to serve traffic if one Availability Zone fails. Which architecture best meets this requirement?

A company is building an event-driven order processing system. Incoming orders must be durably captured, processed by multiple independent consumers, and retried if downstream systems are temporarily unavailable. Which architecture is the MOST appropriate?

A media company needs to store millions of video files in Amazon S3. Files are uploaded once and rarely modified. Some files are accessed frequently for the first 30 days, then infrequently for several months, and are rarely needed after one year. The company wants to minimize storage costs while maintaining durability. Which solution is best?

A company runs a three-tier application on AWS. The database tier requires low-latency, encrypted shared storage for Linux-based compute instances across multiple Availability Zones. The storage must support standard POSIX file semantics. Which service should the company choose?

A company is building a new application that must use a serverless architecture. The application receives requests through an HTTPS endpoint, executes business logic, stores structured data, and must handle sudden traffic spikes automatically. Which solution best meets these requirements?

A financial application requires a multi-Region architecture with an RPO near zero and automatic failover for the database layer. The application uses a relational database and requires strong consistency for writes in the active Region. Which solution best meets these requirements?

A company must expose an internal application running in private subnets to partner organizations over private connectivity. The partners use their own VPCs in separate AWS accounts. The company wants to avoid overlapping CIDR issues and does not want to grant the partners access to the entire application VPC. Which solution should the company use?

A company notices that its Amazon EC2 costs are increasing due to low utilization across a fleet of instances running a stateless internal API. Traffic varies significantly throughout the day. The company wants to optimize cost without reducing availability. Which action should a solutions architect recommend first?

An application hosted on EC2 instances in private subnets cannot reach Amazon S3 to download software packages. The instances have no public IP addresses. The VPC has a NAT gateway, and internet access works for other destinations. The company wants to improve security and reduce unnecessary internet-path dependency for S3 access. What should the company do?

A company runs an application behind an Application Load Balancer. During peak traffic, users report intermittent 5xx errors. CloudWatch metrics show that the load balancer is healthy, but a subset of targets is becoming unhealthy due to slow response times. What is the BEST action to improve availability immediately?

A company wants to improve observability across hundreds of microservices running on Amazon ECS and AWS Lambda. The company needs end-to-end request tracing to identify latency bottlenecks across service boundaries. Which solution should a solutions architect recommend?

A company stores application logs in Amazon S3 and must ensure that no object can be deleted or overwritten for seven years to meet regulatory requirements. The company also wants protection against accidental deletion by administrators. Which solution best meets these requirements?

A company wants to migrate hundreds of on-premises VMware virtual machines to AWS with minimal disruption and centralized progress tracking. The company needs an agentless approach when possible and wants to automate replication and cutover. Which AWS service should the company use?

A company is migrating a large on-premises NFS file share to AWS. The data set is several petabytes, changes continuously, and must remain accessible during migration with minimal application changes. The company eventually wants to use a managed AWS file service. Which approach is MOST appropriate?

A company is modernizing a monolithic application into microservices on AWS. The current application uses a single shared relational database schema. Teams need to deploy services independently, reduce blast radius, and support gradual decomposition with minimal business disruption. Which strategy is the BEST long-term approach?