AWS Solutions Architect Associate securearchitectures — practice questions
12 free MCQs with worked solutions. Tap any question for the answer + explanation, or practice them all in the app.
Practice AWS Solutions Architect Associate securearchitectures in the app →Which AWS service centralises access policies (Service Control Policies / SCPs) across many AWS accounts in anWhat is the BEST practice for granting an EC2 instance access to an S3 bucket?Which AWS service issues, manages, and renews TLS certificates for AWS-hosted endpoints (ALB, CloudFront, API An organisation needs a managed L7 web application firewall to filter SQL injection and cross-site scripting rWhich AWS service inspects CloudTrail / VPC flow logs / DNS query logs with ML to detect anomalous behaviour lWhich AWS service is purpose-built to find and classify sensitive data (e.g. PII, credit-card numbers) inside An organisation needs to give a partner read-only access to one specific S3 bucket across AWS accounts WITHOUTA workload needs to encrypt sensitive S3 objects with keys that the customer creates, rotates, and audits — buA team wants short-lived credentials (15 minutes) for an external CI/CD system running OUTSIDE AWS so it can dWhich combination implements defense-in-depth network segmentation inside a VPC for a public-facing 3-tier webWhich AWS service enables an organisation to enforce a baseline of security configuration across all member acWhich AWS feature lets you store and retrieve secrets (database passwords, API tokens) with automatic rotation