A Curated List of AWS Resources To Prepare For The AWS Certifications GitHub PDF

A curated list of AWS resources to prepare for the AWS Certifications · GitHub 29/08/19, 4*37 AM
Instantly share code, notes, and snippets.
leonardofed / README.md
Last active 20 hours ago
Embed Download ZIP

<script src="https://gist.github.com/leonardofed/bbf6459ad154ad
A curated list of AWS resources to prepare for the AWS Certifications
README.md
A curated list of AWS resources to prepare for the AWS Certifications
A curated list of awesome AWS resources you need to prepare for the all 5 AWS Certifications. This gist will include: open
source repos, blogs & blogposts, ebooks, PDF, whitepapers, video courses, free lecture, slides, sample test and many
other resources.
Index:
K. Passing the AWS solutions architect - Associate exam (Published ☑)

Exam Overview
Prerequisites
General Learning Material
Blueprints exam
Direct experience from AWS Certified members
The exam
R. Passing the AWS solutions architect - Professional exam (Published ☑)
Exam Overview
Prerequisites
General Learning Material
Blueprints exam
Direct experience from AWS Certified members
The exam
Passing the AWS solutions architect - Associate exam > Exam Overview
You will find you make less errors when you donʼt feel rushed on time.
The AWS Certified Solutions Architect – Associate exam is intended for individuals with experience designing
distributed applications and systems on the AWS platform.
https://gist.github.com/leonardofed/bbf6459ad154ad5215d354f3825435dc Page 1 of 28
Exam concepts you should understand for this exam include:
K. Designing and deploying scalable, highly available, and fault tolerant systems on AWS
R. Lift and shift of an existing on-premises application to AWS
V. Ingress and egress of data to and from AWS
W. Selecting the appropriate AWS service based on data, compute, database, or security requirements
X. Identifying appropriate use of AWS architectural best practices
Y. Estimating AWS costs and identifying cost control mechanisms
Passing the AWS solutions architect - Associate exam > Prerequisites &
Requirements
Candidate Overview description provided by the AWS documentation
Eligible candidates for this exam have:
- One or more years of hands-on experience designing available, cost efficient, fault tolerant, and scalable
distributed systems on AWS
- In-depth knowledge of at least one high-level programming language
- Ability to identify and define requirements for an AWS-based application
- Experience with deploying hybrid systems with on-premises and AWS components
- Capability to provide best practices for building secure and reliable applications on the AWS platform
AWS Knowledge required for the Exam:
Hands-on experience using compute, networking, storage, and database AWS services
Professional experience architecting large-scale distributed systems
Understanding of elasticity and scalability concepts
Understanding of the AWS global infrastructure
Understanding of network technologies as they relate to AWS
A good understanding of all security features and tools that AWS provides and how they relate to traditional services
A strong understanding of client interfaces to the AWS platform
Hands-on experience with AWS deployment and management services
Key items you should know before you take the exam:
K. How to configure and troubleshoot a VPC inside and out, including basic IP subnetting. VPC is arguably one of the
more complex components of AWS and you cannot pass this exam without a thorough understanding of it.
R. The difference in use cases between Simple Workflow (SWF), Simple Queue Services (SQS), and Simple Notification
Services (SNS).
V. How an Elastic Load Balancer (ELB) interacts with auto-scaling groups in a high-availability deployment.
W. How to properly secure a S3 bucket in different usage scenarios
X. When it would be appropriate to use either EBS-backed or ephemeral instances.
Y. A basic understanding of CloudFormation.
b. How to properly use various EBS volume configurations and snapshots to optimize I/O performance and data
durability.
General IT Knowledge preferred for the Exam:
Excellent understanding of typical multi-tier architectures: web servers, caching, application servers, load balancers,
and storage
Understanding of Relational Database Management System (RDBMS) and NoSQL
Knowledge of message queuing and Enterprise Service Bus (ESB)
Familiarity with loose coupling and stateless systems
Understanding of different consistency models in distributed systems

Knowledge of Content Delivery Networks (CDN)
Hands-on experience with core LAN/WAN network technologies
Experience with route tables, access control lists, firewalls, NAT, HTTP, DNS, IP and OSI Network
Knowledge of RESTful Web Services, XML, JSON
Familiarity with the software development lifecycle
Work experience with information and application security concepts, mechanisms, and tools
Awareness of end-user computing and collaborative technologies
Passing the AWS solutions architect - Associate exam > General Learning
Material
K. Solutions Architect—Associate Certification for AWS (2016)

R. A Guide to AWS Certification Exams
V. AWS Solutions Architect Certification
W. AWS Certified Solutions Architect Associate Exam
X. AWS Certification Exams: What to expect
Y. Preparing for the AWS Solutions Architect Associate Exam - Webinar
b. AWS CLI: 10 Useful Commands You May Not Know
k. How I Got 5 AWS Certifications: continuous learning with AWS
l. Amazon AWS Certified Solutions Architect: What to Study, Tips and Resources
Km. AWS re:Invent 2015 | (ARC301) Scaling Up to Your First 10 Million Users
KK. AWS re:Invent 2015 | (CMP302) Amazon ECS: Distributed Applications at Scale
KR. AWS re:Invent 2014 | (SDD413) Amazon S3 Deep Dive and Best Practices
KV. AWS re:Invent 2015 | (DVO203) A Day in the Life of a Netflix Engineer
KW. Study guide for AWS Certification - GitHub Repo
KX. An app to track white AWS white papers I have read in preparation for architect certification.
KY. Prepare for AWS Certifications - Webinar
Kb. AWS Certifications for Teams - Webinar
Kk. Proper Setup pf a new AWS Account
Passing the AWS solutions architect - Associate exam > Blueprints exam
In this AWS whitepaper you'll find a sample exam. Here's a preview:
Amazon Glacier is designed for: (Choose 2 answers)
A. active database storage.

B. infrequently accessed data.
C. data archives.
D. frequently accessed data.
E. cached session data.
(Answer: B. infrequently accessed data. C. data archives.)
Your web application front end consists of multiple EC2 instances behind an Elastic Load Balancer. You configured
ELB to perform health checks on these EC2 instances. If an instance fails to pass health checks, which statement will
be true?
A. The instance is replaced automatically by the ELB.
B. The instance gets terminated automatically by the ELB.

C. The ELB stops sending traffic to the instance that failed its health check.
D. The instance gets quarantined by the ELB for root cause analysis.
(Answer: C. The ELB stops sending traffic to the instance that failed its health check.)
You are building a system to distribute confidential training videos to employees. Using CloudFront, what method
could be used to serve content that is stored in S3, but not publically accessible from S3 directly?
A. Create an Origin Access Identity (OAI) for CloudFront and grant access to the objects in your S3 bucket to
that OAI.
B. Add the CloudFront account security group “amazon-cf/amazon-cf-sg” to the appropriate S3 bucket policy.
C. Create an Identity and Access Management (IAM) User for CloudFront and grant access to the objects in your S3
bucket to that IAM User.
D. Create a S3 bucket policy that lists the CloudFront distribution ID as the Principal and the target bucket as the
Amazon Resource Name (ARN).
(Answer: A. Create an Origin Access Identity (OAI) for CloudFront and grant access to the objects in your S3 bucket
to that OAI.)
In this amazing post Markos Rendell gave a deep explanation to every single AWS question.
Passing the AWS solutions architect - Associate exam > Direct experience from
AWS Certified members
Here are some general observations by Miha Kralj in this great post.
There were several questions related to DR solutions with specified RPO/RTO times. Modern cloud-born solutions
use completely different BCP approach, but hey, someone in AWS really likes traditional disaster recovery scenarios
and is making sure that you love them too. I know it is 2016, but you need to learn the old skool BCP techniques for
this exam.
Questions about the AWS Storage Gateway appear at least 3 times. Yeah. Storage Gateway. The stuff that cloud-
native architects never saw in action - nor do we want to. You have to learn the difference between Cached Volumes,
Stored Volumes and understand how VTL works.
Lots and lots and lots of questions on deployment management. CloudFormation. Elastic Beanstalk. OpsWorks. Learn
these three technologies well - not well for an architect, but well for a 2nd-tier escalation operations engineer. One of
the examiners really really really liked cloud deployment automation. And now you will like it too. Who cares if you use
SaltStack, Terraform or Ansible - learn CF, Beanstalk and OpsWorks!
Networking questions were everywhere, like 30% of the test or even more: VPN/DirectConnect/VPC peering. For me,
DDOS protection, WAF, Cloudfront, and SSL/TLS stuff is networking too, although AWS treats them as security
issues. Anyway, the examiners *love* networking. Learn networking. I mean, learn it like this is a Cisco exam, not a
cloud architecture exam. Federated access, SAML, IAM roles and all possible AuthZ/AuthN scenarios - learn them all.
Learn how IAM policies work. How cross-account trust works. And specifically how they don't work. Think like
troubleshooting support personnel and what they need to know about identity flows; that's what you need to know
for this exam.
Whenever you see the need for high-performing scalable solution, the answer is always DynamoDB. Even if you think
that architecturally there might be a better choice (Cassandra, or CouchDB anyone?), the correct answer will be
DynamoDB. People that wrote the test were clearly in love with DynamoDB, Elasticache and Kinesis. Just pick the
answer that includes all three of them and you'll be right.
If a scenario is asking for something cheap (cost-effective), the answer must include spot instances, SQS for
throttling and perhaps S3 RRS or Glacier.
There were at least two questions where I was simply forced to propose the AWS Data Pipeline. Yeah, the obscure
and rarely-seen Data Pipeline service, in the age when Lambda solves the same problem way more efficiently. No,
Lambda was not an option at all and it didn't appear anywhere in the test.
-- In this other write-up on LinkedIn Wong Chun Yin explained how to get all 5 AWS Certifications in Asia. Below, a couple
of great hints for the SA - Associate.
First of all, associate certifications are not hard, and if you have a chance to take the AWS training, then you just need to
concentrate on reading the training slides is more than enough! Remember to read the details explanation under the
slides. Good understanding of VPC and IAM is important for all associate exams.
--
Dan-Claudiu Dragos shared his experience here on how he prepared for the AWS Solutions Architect Certifications in 7
days and succesfully passed it.
I'd like to share my experience of getting AWS CSA(A) certified with Cloud Academy:
The background:
I have registered my personal AWS account late 2014 and still do not do much with it. Without a professional
motivator this is actually a dead end, more like buying a book and never reading it.
Mid-2015 I started doing DevOps work for a customer of my employer. They have a 1000+ node AWS environment
that was fully configured with multiple VPCs, VPN access, IAM groups and the like. That become my playground and
was the actual game changer, the single big detail that made the difference, certification-wise.
The process:
Late April 2016 I have found the r/sysadmin (reddit) message with one month promotion by Cloud Academy. At that
point I did not know anything about the AWS certifications but the seed got planted. I found the message a bit late,
though, when the seats were already filled up, so did not register at that time.
During the first week or so afterwards I was a bit confused, did not know what path to take. My first intention was to
go to the Sysops cert but then I read on the Cloud Academy page that there is a big overlap with the "simpler"
Architecture certification.
By looking around I have found some course recordings from 2 years ago (don't ask) and listened to them for a total
of 14 to 16 hours (not sure about this detail). They helped me get in the right mood to start doing tests, quizes,
practice stuff...
Mid-May, I register myself with Cloud Academy and get the 7 days trial. Well, I did the best out of that - my public
profile says I have completed 1600+ quizes and got 35,000+ karma during that time. I have taken every quiz from the
then AWS CSA(A) learning path multiple times until I got my score above 90%. The EC2/EBS quizes were quite easy,
actually, with my experience; the S3 and IAM ones were average and Cloud Academy helped me fill in many blanks in
that area. The database ones (DynamoDB and RDS) were the hardest and I had to open a lab to see how things were
done and what concepts were important.
In the last 3 days of the trial I have taken the 150+ questions exam at the end of the learning path and got 75% on the
first try. I have taken it 2 or 3 more times, but as I started to remember questions I no longer considered it that useful
to figure out what I still don't know.
By that time I have also started to read white papers from Amazon on topics that were lightly touched by Cloud
Academy, e.g. EBS RAID configurations and Route 53 special record types, health checks and failovers.
I also got 4 apps from the Google Play Store, I found "AWS Architect - Associate" and "Cloud Pros- AWS Certified
Arch" best. At that point I was already above the 90% passing threshold, though, and could not find many questions
online I could not provide the expected correct answer to.
I have also taken the practice exam from Amazon (a $20 cost). Please note that the questions do not change so
taking it once and taking photos of the screen really helps on figuring out the failed questions. Nevertheless, I got
90% and scheduled myself a slot for "the real thing".
May 27th - I went to the testing center and passed the AWS CSA(A) exam with 83%; I assume this is an average
passing score. Amazon doesn't tell what is the failing threshold, but tells you how well you did in 4 areas (I had 80-
85-90% in all of them).
On the exam itself:
I got one question from the sample questions and one from the practice exam; they were on the simpler side.
33% are "easy", in the sense that fall in the "is water wet? true/false" type - relative to the AWS concepts, though.
33% are "average", more like "what feels wetter, water or oil?"
33% are hard or even crazy, covering all sorts of service details or requiring you to provide answers in the line of
Amazon recommendations regarding certain service usage.
About half of them are multiple answer, with no partial points given.
Oh, don't look for dumps, Amazon has hundreds of possible questions out of which a subset is being given for each
exam, there simply is no way to pass such exam with brain dumps, so forget it.
That's it. I'm the number 16.891, not sure if this is small or big, or even if it matters.
A redditor on r/aws gave awesome tips about the exam day
Passing the AWS solutions architect - Associate exam > The Exam
Exam Registration fee is USD 150

You have 80 minutes to complete a 40 quizzes exam. Most of the questions are up to 3 lines long in the multiple choice
format. You should consider no more than 1.5/2 minutes per question if you want to read each question carefully and
answer to all of them correctly.
It's possible to set a question for review and skip, you can get back to what you marked in this way at the end.
Now you're ready to go. Here's where you book your exam!
Passing the AWS solutions architect - Professional Exam > Exam Overview
This is a curated list of hands-on material to help you passing this AWS Certification! This advanced list of selected points
are especially for students who already have a working knowledge of AWS and who have passed the Solutions Architect -
Associate Certification for AWS exam (prerequisite for sitting the Solutions Architect - Professional Certification for AWS
exam). This should be helpful to build and develop your skills as an AWS professional.
Exam Overview
K. Multiple choice and multiple answer questions
R. 170 minutes to complete the exam. It's all multiple choice on a PC
V. Exam available in English and Japanese
W. Practice Exam Registration fee is USD 40
X. The Exam blueprint specified that there would be 100+ questions given in a 180 minute period and did not specify a
pass grade.
Y. The exam will test your knowledge with 80 questions
b. In terms of question complexity, it requires a good understanding of all available AWS services
k. AWS Certification passing scores are set by using statistical analysis and are subject to change. AWS does not
publish exam passing scores because exam questions and passing scores are subject to change without notice
l. Exam Registration fee is USD 300
Km. Recommend taking Advanced Architecting on AWS
KK. Sample questions for the exam are available here.
What should I bring to an AWS Certification exam?

-
Candidates must show two forms of personal identification (ID). Primary form must be a valid, government-issued ID
containing both a photo and signature. The secondary form of ID needs to be valid and contain a signature.
Acceptable Forms of Primary ID (name, photograph, signature, valid/current):
Government-issued Driverʼs license

U.S. Department of State Driverʼs License
National/State/Country Identification Card
Passport
Passport cards
Military ID
Alien Registration Card (Green Card, Permanent Resident Visa)
Note: Irish natives may use a Public Services Card as a primary form of identification, in Ireland only.
Acceptable forms of Secondary ID (name, signature, valid/current):
U.S. Social Security Card
Debit/(ATM) Card
Credit Card
School ID (without a signature for minors is acceptable) any form of ID on the primary list
Note: In Japan, the blue colored (not pink) Health Insurance Card is an acceptable form of secondary identification.
However, the paper form of the Health Insurance is not acceptable.
You can NOT bring food, laptops, backpacks, notepads, or other personal equipment to the test area. For all exams, you
can request a whiteboard and marker (some centers may hand out paper and pencil), which must be returned before you
leave. During check in youʼll be asked to turn out your pockets (on jackets, pants, etc.) to verify theyʼre empty and free of
prohibited items. Eyewear will also be inspected to ensure that itʼs not technology-enabled.
Passing the AWS solutions architect - Professional exam > Prerequisites &
Requirements
To be eligible for this exam, you must already be certified at the AWS Certified Solutions Architect – Associate Level.
You should have multiple years of hands-on experience designing and deploying cloud architecture on AWS, along with
the ability to evaluate cloud application requirements and make architectural recommendations for implementation,
deployment, and provisioning applications on AWS. Additionally, you should have the experience and the capability to
provide best practices guidance on the architectural design across multiple applications, projects, or the enterprise.
Note that in the event that you fail to pass an AWS certification exam, you may retake the exam subject to the following
conditions:
a. You must wait 14 days from the day you fail to take the exam again
b. You can take an exam up to three times in one year from the date of your first attempt
This is valid for any AWS Certifiation Exam.
To pass the AWS Certified Solutions Architect - Professional exam, you have to master advanced and technical skills,
not to mention the experience in designing distributed applications and systems using AWS. Check the short list below to
understand you need to master in order to pass the exam.
Exam concepts you should understand for this exam include:

K. Designing and deploying dynamically scalable, highly available, fault tolerant, and reliable applications on AWS
R. Selecting appropriate AWS services to design and deploy an application based on given requirements
V. Migrating complex, multi-tier applications on AWS
W. Designing and deploying enterprise-wide scalable operations on AWS
X. Implementing cost control strategies
Candidate Overview
This exam tests your knowledge of advanced AWS use cases. Eligible candidates for this exam have:
K. Achieved AWS Certified Solutions Architect - Associate

R. 2+ years hands-on experience designing and deploying cloud architecture on AWS
V. Abilities to evaluate cloud application requirements and make architectural recommendations for implementation,
deployment, and provisioning applications on AWS.
W. Capabilities to provide best practices guidance on the architectural design across multiple applications, projects, or
the enterprise.
Key Points to pass the Exam:
Demonstrate ability to architect the appropriate level of availability based on stakeholder

requirements
K. Stakeholder requirements is key phrase here – look at what the requirements are first before deciding the best way to
architect the solution
R. What is availability? Basically up time. Does the customer need 99.99% up time or less? Which products may need to
be used to meet this requirement?
V. Look at products which are single AZ, multi AZ and multi region. It may be the case that a couple of instances in a
single AZ will suffice if cost is a factor
W. CloudWatch can be used to perform EC2 or auto scaling actions when status checks fail or metrics are exceeded
(alarms, etc)
Demonstrate ability to implement DR for systems based on RPO and RTO

K. What is DR? It is the recovery of systems, services and applications after an unplanned period of downtime.
R. What is RPO? Recovery Point Objective. At which point in time do we need to get back to when DR processes are
invoked? 3. 3. This would come from a customer requirement – when systems are recovered, data is consistent from
30 minutes prior to the outage, or 1 hour, or 4 hours etc. What is acceptable to the stakeholder?
V. What is RTO? Recovery Time Objective. How quickly must systems and services be recovered after invoking DR
processes? It may be that all critical systems must be back online within a maximum of four hours.
W. RTO and RPO are often paired together to provide an SLA to end users as to when services will be fully restored and
how much data may be lost. For example, an RTO of 2 hours and an RPO of 15 minutes would mean all systems would
be recovered in two hours or less and consistent to within 15 minutes of the failure.
X. How can low RTO be achieved? This can be done by using elastic scaling, for example or using monitoring scripts to
power up new instances using the AWS API. You may also use multi AZ services such as EBS and RDS to provide
additional resilience
Y. How can low RPO be achieved? This can be done by using application aware and consistent backup tools, usually
native ones such as VSS aware ones from Microsoft or RMAN for Oracle, for example. Databases and real time
systems may need to be acquiesced to obtain a crash consistent backup. Standard snapshot tools may not provide
this. RMAN can backup to S3 or use point in time snapshots using RDS. RMAN is supported on EC2. Use data dump
to move large databases.
b. AWS has multi AZ, multi region and services like S3 which has 11 nines of durability with cross region replication
k. Glacier – long term archive storage. Cheap but not appropriate for fast recovery (several hours retrieval SLA)
l. Storage Gateway is a software appliance that sits on premises that can operate in three modes – gateway cached
(hot data kept locally but most data stored in S3), gateway stored (all data kept locally but also replicated to S3) and
VTL-Tape Library (virtual disk tapes stored in S3, virtual tape shelf stored in Glacier)
Km. You should use gateway cached when the requirement is for low cost primary storage with hot data stored locally
KK. Gateway stored keeps all data locally but takes asynchronous snapshots to S3
KR. Gateway cached volumes can store 32TB of data, 32 volumes are supported (32 x 32, 1PB)
KV. Gateway stored volumes are 16TB in size, 12 volumes are supported (16 x 12, 192TB)
KW. Virtual tape library supports 1500 virtual tapes in S3 (150 TB total)
KX. Virtual tape shelf is unlimited tapes (uses Glacier)
KY. Storage Gateway can be on premises or EC2. Can also schedule snapshots, supports Direct Connect and also
bandwidth throttling.
Kb. Storage Gateway supports ESXi or Hyper-V, 7.5GB RAM, 75GB storage, 4 or 8 vCPU for installation. To use the
Marketplace appliance, you must choose xlarge instance or bigger and m3, i2, c3, c4, r3, d2, or m4 instance types
Kk. Gateway cached requires a separate volume as a buffer upload area and caching area
Kl. Gateway stored requires enough space to hold your full data set and also an upload buffer VTL also requires an
upload buffer and cache area
Rm. Ports required for Storage Gateway include 443 (HTTPS) to AWS, port 80 for initial activation only, port 3260 for
iSCSI internally and port 53 for DNS (internal)
RK. Gateway stored snapshots are stored in S3 and can be used to recover data quickly. EBS snapshots can also be used
to create a volume to attach to new EC2 instances
RR. Can also use gateway snapshots to create a new volume on the gateway itself
RV. Snapshots can also be used to migrate cached volumes into stored volumes, stored volumes into cached volumes
and also snapshot a volume to create a new EBS volume to attach to an instance
RW. Use System Resource Check from the appliance menu to ensure the appliance has enough virtual resources to run
(RAM, vCPU, etc.)
RX. VTL virtual tape retrieval is instantaneous, whereas Tape Shelf (Glacier) can take up to 24 hours
RY. VTL supports Backup Exec 2012-15, Veeam 7 and 8, NetBackup 7, System Center Data Protection 2012, Dell NetVault
10
Rb. Snapshots can either be scheduled or done ad hoc
Rk. Writes to S3 get throttled as the write buffer gets close to capacity – you can monitor this with CloudWatch
Rl. EBS – Elastic Block Store – block based storage replicated across hosts in a single AZ in a region
Vm. Direct Connect – connection directly into AWSʼs data centre via a trusted third party. This can be backed up with
standby Direct Connect links or even software VPN
VK. Route53 also has 100% uptime SLA, Elastic Load Balancing and VPC can also provide a level of resilience if required
VR. DynamoDB has three copies per region and also can perform multi-region replication
VV. RDS also supports multi-AZ deployments and read only replicas of data. 5 read only replicas for MySQL, MariaDB and
PostGres, 15 for Aurora
VW. There are four DR models in the AWS white paper:
Backup and restore (cheap but slow RPO and RTO, use S3 for quick restores and AWS Import/Export for large
datasets)
Pilot Light (minimal replication of the live environment, like the pilot light in a gas heater, itʼs used to bring services up
with the smallest footprint running in DR. AMIs ready but powered off, brought up manually or by autoscaling
Data must be replicated to DR from the primary site for failover)
Warm Standby (again a smaller replication of the live environment but with some services always running to facilitate
a quicker failover. It can also be the full complement of servers but running on smaller instances than live. Horizontal
scaling is preferred to add more instances to a load balancer)
Multi-site (active/active configuration where DNS sends traffic to both sites simultaneously. Auto scaling can also
add instances for load where required. DNS weighting can be used to route traffic accordingly). DNS weighting is
done as a percentage, so if two records have weightings of 10, then the overall is 20 and the percentage is 50%
chance of either being used, this is round robin. Weights of 10 and 40 would mean a total of weight 50, with 1 in 5
chance of weight 10 DNS record being used
VX. Import/Export can import data sets into S3, EBS or Glacier. You can only export from S3
VY. Import/Export makes sense for large datasets that cannot be moved or copied into AWS over the internet in an
efficient manner (time, cost, etc)
Vb. AWS will export data back to you encrypted with TrueCrypt
Vk. AWS will wipe devices after import if specified
Vl. If exporting from an S3 bucket with versioning enabled, only the most recent version is exported
Wm. Encryption for imports is optional, mandatory for exports
WK. Some services have automated backup:
RDS
Redshift
Elasticache (Redis only)
WR. EC2 does not have automated backup. You can use either EBS snapshots or create an AMI Image from a running or
stopped instance. The latter option is especially useful if you have an instance storage on the host which is
ephemeral and will get deleted when the instance is stopped (Bundle Instance). You can “copy” the host storage for
the instance by creating an AMI, which can then be copied to another region
WV. To restore a file on a server for example, take regular snapshots of the EBS volume, create a volume from the
snapshot, mount the volume to the instance, browse and recover the files as necessary
WW. MySQL requires InnoDB for automated backups, if you delete an instance then all automated backups are deleted,
manual DB snapshots stored in S3 are not deleted
WX. All backups are stored in S3 When you do an RDS restore, you can change the engine type (SQL Standard to
Enterprise, for example), assuming you have enough storage space.
WY. Elasticache automated backups snapshot the whole cluster, so there will be performance degradation whilst this
takes place. Backups are stored on S3.
Wb. Redshift backups are stored on S3 and have a 1 day retention period by default and only backs up delta changes to
keep storage consumption to a minimum
Wk. EC2 snapshots are stored in S3 and are incremental and each snapshot still contains the base snapshot data. You are
only charged for the incremental snapshot storage
Determine appropriate use of multi-Availability Zones vs. multi-Region architectures

K. Multi-AZ services examples are S3, RDS, DynamoDB. Using multi-AZ can mitigate against the loss of up to two AZs
(data centres, assuming there are three. Some regions only have two). This can provide a good balance between
cost, complexity and reliability
R. Multi-region services can mitigate failures in AZs or individual regions, but may cost more and introduce more
infrastructure and complexity. Use ELB for multi-region failover and resilience, CloudFront
V. DynamoDB offers cross region replication, RDS offers the ability to snapshot from one region to another to have read
only replicas. Code Pipeline has a built in template for replicating DynamoDB elsewhere for DR
W. Redshift can snapshot within the same region and also replicate to another region
Demonstrate ability to implement self-healing capabilities

K. HA available already for most popular databases:-
R. SQL Server Availability Groups, SQL Mirroring, log shipping. Read replicas in other AZs not supported
V. MySQL – Asynchronous mirroring
W. Oracle – Data Guard, RAC (RAC not supported on AWS but can run on EC2 by using VPN and Placement Groups as
multicast is not supported)
X. RDS has multi-AZ automatic failover to protect against
Y. Loss of availability in primary AZ
b. Loss of connectivity to primary DB
k. Storage or host failure of primary DB
l. Software patching (done by AWS, remember)
Km. Rebooting of primary DB
KK. Uses master and slave model
KR. MySQL, Oracle and Postgres use physical layer replication to keep data consistent on the standby instance
KV. SQL Server uses application layer mirroring but achieves the same result
KW. Multi-AZ uses synchronous replication (consistent read/write), asynchronous (potential data loss) is only used for
read replicas
KX. DB backups are taken from the secondary to reduce I/O load on the primary
KY. DB restores are taken from the secondary to avoid I/O suspension on the primary
Kb. AZ failover can be forced by rebooting your instance either via the console or via the RebootDBInstance API call
Kk. Multi-AZ databases are used for DR, not as a scaling solution. Scale can be achieved by using read replicas, this can
be done via the AWS console or by using the CreateDBInstanceReadReplica API call
Kl. Amazon Aurora employs a highly durable, SSD-backed virtualized storage layer purpose-built for database
workloads.
Rm. Amazon Aurora automatically replicates your volume six ways, across three Availability Zones. Amazon Aurora
storage is fault-tolerant, transparently handling the loss of up to two copies of data without affecting database write
availability and up to three copies without affecting read availability. Amazon Aurora storage is also self-healing. Data
blocks and disks are continuously scanned for errors and replaced automatically.
RK. Creating a read replica means a snapshot of your primary DB instance, this may result in a pause of about a minute in
non multi-AZ deployments
RR. Multi-AZ deployments will use a secondary for a snapshot
RV. A new DNS endpoint address is given for the read only replica, you need to update the app
RW. You can promote a read only replica to be a standalone, but this breaks replication
RX. MySQL and Postgres can have up to 5 replicas
RY. Read replicas in different regions for MySQL only
Rb. Replication is asynchronous only
Rk. Read replicas can be built off Multi-AZ databases
Rl. Read replicas are not multi-AZ
Vm. MySQL can have read replicas of read replicas, but this increases latency
VK. DB Snapshots and automated backups cannot be taken of read replicas
VR. Consider using DynamoDB instead of RDS if your database does not require:-
VV. Transaction support
VW. Atomicity
VX. Consistency
VY. Isolation
Vb. Durability
Vk. ACID (durability) compliance
Vl. Joins
Wm. SQL
Credits to Chris Beckett @ BlueClouds
Passing the AWS solutions architect - Professional exam > General Learning
Material
To prepare at best for the exam you should start with an overview of the concepts and knowledge areas covered on the
exam and walks you through the exam structure and question formats. Get an hands-on practice with advanced use
cases, while practice exam questions test your understanding of key architectural concepts.
R. Solutions Architect— Professional Certification for AWS (2016)
Y. A Guide to AWS Certification Exams
Z. AWS Best Practices for DDoS Resiliency
]. Amazon Kinesis Streams FAQs
`. Amazon Kinesis Streams: Developer Guide
a. AWS Identity and Access Management User Guide
c. Amazon CloudFront - Dynamic Content Delivery
d. Amazon Redshift FAQs
e. Amazon AWS Certified Solutions Architect: What to Study, Tips and Resources
Rf. VPC Migration: NATs & Bandwidth Bottleneck
RR. Amazon Simple Notification Service Developer Guide
RY. Amazon Simple Storage Service Developer Guide
RZ. Amazon Virtual Private Cloud User Guide
13. Best Practices for Migrating from RDBMS to Amazon DynamoDB 14. AWS Certification Exams: What to expect at the
Exam 15. Enabling Federation to AWS Using Windows Active Directory, ADFS, and SAML 2.0 16. AWS Certified Solutions
Architect – Professional Level Sample Exam Questions 17. AWS Certified Solutions Architect Professional Exam Blueprint
18. Cloud Architectures with AWS Direct Connect (ARC304) | AWS re:Invent 2013 19. AWS re: Invent STG 204: Using AWS
Storage Gateway 20. Storage TCO using AWS Storage Gateway, Amazon S3 and Amazon Glacier (STG202) | AWS
re:Invent 2013 21. AWS re:Invent 2014 | (ARC206) Architecting Reactive Applications on AWS (Playlist) 22. AWS June
Webinar Series - Deep dive: Hybrid Architectures 23. AWS January 2016 Webinar Series - Managing your Infrastructure
as Code 24. Complete AWS IAM Reference 25. Free Templates for AWS CloudFormation 26. How to study for the AWS
Solutions Architect Professional Certification (Webinar) 27. Interview with 5 AWS Certified Greg Cockburn (Podcast) 28.
Interview with 5 AWS Certified Stephen Wilding (Podcast)
Passing the AWS solutions architect - Professional Exam > Blueprints Exam
In this PDF you can download the Sample Question provided by AWS We reviewed all the questions provided by AWS and
you can find the correct answers marked in bold.
Which AWS based disaster recovery strategy will give you the best RTO?
A) Deploy the Oracle database and the JBoss app server on EC2. Restore the RMAN Oracle backups from Amazon
S3. Generate an EBS volume of static content from the Storage Gateway and attach it to the JBoss EC2 server.
B) Deploy the Oracle database on RDS. Deploy the JBoss app server on EC2. Restore the RMAN Oracle backups from
Amazon Glacier. Generate an EBS volume of static content from the Storage Gateway and attach it to the JBoss EC2
server.
C) Deploy the Oracle database and the JBoss app server on EC2. Restore the RMAN Oracle backups from Amazon S3.
Restore the static content by attaching an AWS Storage Gateway running on Amazon EC2 as an iSCSI volume to the
JBoss EC2 server.
D) Deploy the Oracle database and the JBoss app server on EC2. Restore the RMAN Oracle backups from Amazon S3.
Restore the static content from an AWS Storage Gateway-VTL running on Amazon EC2
An ERP application is deployed in multiple Availability Zones in a single region. In the event of failure, the RTO must
be less than 3 hours, and the RPO is 15 minutes. The customer realizes that data corruption occurred roughly 1.5
hours ago. Which DR strategy can be used to achieve this RTO and RPO in the event of this kind of failure?
A) Take 15-minute DB backups stored in Amazon Glacier, with transaction logs stored in Amazon S3 every 5 minutes.
B) Use synchronous database master-slave replication between two Availability Zones.
C) Take hourly DB backups to Amazon S3, with transaction logs stored in S3 every 5 minutes.
D) Take hourly DB backups to an Amazon EC2 instance store volume, with transaction logs stored in Amazon S3 every 5
minutes.
The Marketing Director in your company asked you to create a mobile app that lets users post sightings of good
deeds known as random acts of kindness in 80-character summaries. You decided to write the application in
JavaScript so that it would run on the broadest range of phones, browsers, and tablets. Your application should
provide access to Amazon DynamoDB to store the good deed summaries. Initial testing of a prototype shows that
there arenʼt large spikes in usage. Which option provides the most costeffective and scalable architecture for this
application?
A) Provide the JavaScript client with temporary credentials from the Security Token Service using a Token Vending
Machine (TVM) on an EC2 instance to provide signed credentials mapped to an Amazon Identity and Access Management
(IAM) user allowing DynamoDB puts and S3 gets. You serve your mobile application out of an S3 bucket enabled as a web
site. Your client updates DynamoDB.
B) Register the application with a Web Identity Provider like Amazon, Google, or Facebook, create an IAM role for
that provider, and set up permissions for the IAM role to allow S3 gets and DynamoDB puts. You serve your mobile
application out of an S3 bucket enabled as a web site. Your client updates DynamoDB.
C) Provide the JavaScript client with temporary credentials from the Security Token Service using a Token Vending
Machine (TVM) to provide signed credentials mapped to an IAM user allowing DynamoDB puts. You serve your mobile
application out of Apache EC2 instances that are load-balanced and autoscaled. Your EC2 instances are configured with
an IAM role that allows DynamoDB puts. Your server updates DynamoDB.
D) Register the JavaScript application with a Web Identity Provider like Amazon, Google, or Facebook, create an IAM role
for that provider, and set up permissions for the IAM role to allow DynamoDB puts. You serve your mobile application out
of Apache EC2 instances that are load-balanced and autoscaled. Your EC2 instances are configured with an IAM role that
allows DynamoDB puts. Your server updates DynamoDB.
You are building a website that will retrieve and display highly sensitive information to users. The amount of traffic
the site will receive is known and not expected to fluctuate. The site will leverage SSL to protect the communication
between the clients and the web servers. Due to the nature of the site you are very concerned about the security of
your SSL private key and want to ensure that the key cannot be accidentally or intentionally moved outside your
environment. Additionally, while the data the site will display is stored on an encrypted EBS volume, you are also
concerned that the web serversʼ logs might contain some sensitive information; therefore, the logs must be stored
so that they can only be decrypted by employees of your company. Which of these architectures meets all of the
requirements?
A) Use Elastic Load Balancing to distribute traffic to a set of web servers. To protect the SSL private key, upload the key to
the load balancer and configure the load balancer to offload the SSL traffic. Write your web server logs to an ephemeral
volume that has been encrypted using a randomly generated AES key.
B) Use Elastic Load Balancing to distribute traffic to a set of web servers. Use TCP load balancing on the load balancer
and configure your web servers to retrieve the private key from a private Amazon S3 bucket on boot. Write your web
server logs to a private Amazon S3 bucket using Amazon S3 server-side encryption.
C) Use Elastic Load Balancing to distribute traffic to a set of web servers, configure the load balancer to perform TCP
load balancing, use an AWS CloudHSM to perform the SSL transactions, and write your web server logs to a private
Amazon S3 bucket using Amazon S3 server-side encryption.
D) Use Elastic Load Balancing to distribute traffic to a set of web servers. Configure the load balancer to perform
TCP load balancing, use an AWS CloudHSM to perform the SSL transactions, and write your web server logs to an
ephemeral volume that has been encrypted using a randomly generated AES key.
You are designing network connectivity for your fat client application. The application is designed for business
travelers who must be able to connect to it from their hotel rooms, cafes, public Wi-Fi hotspots, and elsewhere on
the Internet. You do not want to publish the application on the Internet. Which network design meets the above
requirements while minimizing deployment and operational costs?
A) Implement AWS Direct Connect, and create a private interface to your VPC. Create a public subnet and place your
application servers in it.
B) Implement Elastic Load Balancing with an SSL listener that terminates the back-end connection to the application.
C) Configure an IPsec VPN connection, and provide the users with the configuration details. Create a public subnet in
your VPC, and place your application servers in it.
D) Configure an SSL VPN solution in a public subnet of your VPC, then install and configure SSL VPN client software
on all user computers. Create a private subnet in your VPC and place your application servers in it.
Your company hosts an on-premises legacy engineering application with 900GB of data shared via a central file
server. The engineering data consists of thousands of individual files ranging in size from megabytes to multiple
gigabytes. Engineers typically modify 5-10 percent of the files a day. Your CTO would like to migrate this application
to AWS, but only if the application can be migrated over the weekend to minimize user downtime. You calculate that
it will take a minimum of 48 hours to transfer 900GB of data using your companyʼs existing 45-Mbps Internet
connection. After replicating the applicationʼs environment in AWS, which option will allow you to move the
applicationʼs data to AWS without losing any data and within the given timeframe?
A) Copy the data to Amazon S3 using multiple threads and multi-part upload for large files over the weekend, and work in
parallel with your developers to reconfigure the replicated application environment to leverage Amazon S3 to serve the
engineering files.
B) Sync the application data to Amazon S3 starting a week before the migration, on Friday morning perform a final
sync, and copy the entire data set to your AWS file server after the sync completes.
C) Copy the application data to a 1-TB USB drive on Friday and immediately send overnight, with Saturday delivery, the
USB drive to AWS Import/Export to be imported as an EBS volume, mount the resulting EBS volume to your AWS file
server on Sunday.
D) Leverage the AWS Storage Gateway to create a Gateway-Stored volume. On Friday copy the application data to the
Storage Gateway volume. After the data has been copied, perform a snapshot of the volume and restore the volume as an
EBS volume to be attached to your AWS file server on Sunday.
The Exam Day

Just a couple of suggestions to pass the AWS Solutions Architect Professional level certification:
R. Wake up early every day and have a nice breakfast in the morning
Y. No coffee, try to eat a banana and a cup of orange juice every morning
Z. Practice with our specific resources for the AWS Certifications
]. Drink water every day
`. Get the most out of this GitHub repository

a. Rewatch the AWS Solution Architect Professional level certification detailed study-guide with tips and tricks on how
to pass the certification
c. AWS Youtube channel: watch as many of the technical seminars and re:Invent presentations as you can. Then re-
watch. Make notes.
d. I would say that your chance of passing the course if you have not have had any practical experience to be seriously
compromised. You have no excuse, get an account, login and play.
e. Do some sport every day to reset your mind out of work and try to sleep 7h every night
Rf. Repeat
RR. Once you are feeling confident enough you are ready to take a practice exam here
RY. Smile at least once every day
RZ. Have fun
If you've found this gist useful you can follow me @leonardofed for more info about AWS Certifications.
simonebrunozzi commented on Aug 2, 2016
Great list of resources!
redavis22 commented on Aug 5, 2016
Awesome list! Thanks!
ingvarch commented on Aug 5, 2016
Nice! Thanks!
jalemayehu commented on Aug 5, 2016
amazing
techsyslonghorn commented on Aug 5, 2016
Great resources in one place, Thanks!
fiberpython commented on Aug 12, 2016
November 2016 release date "AWS Certified Solutions Architect Official Study Guide: Associate Exam 1st Edition".
DanEmord commented on Sep 20, 2016
The first set of observations from Miha Kralj are related to the CSA:Pro exam, not the Associate as it is currently listed.
gmani1978 commented on Nov 21, 2016
Hello Leonardo
I came across free practice quizzes for AWS CERTIFIED SOLUTIONS ARCHITECT in the below website. please add it
http://thecertschool.com
amazondumps commented on Nov 24, 2016 • edited by leonardofed
Thanks for sharing your experience. Because i have facing problem that how get aws certified. and Your tips solve my problem. Now i have
try again exam and i hop now i have get easily aws solution architect certified....
and Thanks a lot for greats tips
yichantsai commented on Nov 25, 2016
Amazing work! Thx!
sailesh1978 commented on Dec 9, 2016
After all my research with respect to mock or practice Quizzes for AWS CSA and CDA. I noticed http://thecertschool.com is providing
good set of questions(with test engine) at very low cost and value for money.
angelinawilliams commented on Jan 24, 2017
Very nice and informative, preparing for AWS certification, recently joined Kerneltraining.com for amazon aws training, can any one
suggest me some books and videos on this.
derekpurdy commented on Jan 24, 2017
this page could use better structure, perhaps placing all exam types onto seperate pages.
leonardofed commented on Jan 26, 2017 Author Owner
@derekpurdy yep. I'll review all the doc very soon.
leonardofed commented on Jan 26, 2017 Author Owner
@amazondumps thank you for the hint.

I'll give it a try and insert eventually if it's worthy.
ledwinson commented on Feb 2, 2017
Good one thanks.
stevenhen commented on Feb 14, 2017
# New AWS Certified DevOps Engineer - Professional Exam Questions and Answers Updated Recently (13/Feb/2017) by
passleader.com:
NEW QUESTION 31
The project you are working on currently uses a single AWS CloudFormation template to deploy its AWS infrastructure, which supports a
multi-tier web application. You have been tasked with organizing the AWS CloudFormation resources so that they can be maintained in the
future, and so that different departments such as Networking and Security can review the architecture before it goes to Production. How
should you do this in a way that accommodates each department, using their existing workflows?
A. Organize the AWS CloudFormation template so that related resources are next to each other in the template, such as VPC subnets and
routing rules for Networking and security groups and IAM information for Security.
B. Separate the AWS CloudFormation template into a nested structure that has individual templates for the resources that are to be
governed by different departments, and use the outputs from the networking and security stacks for the application template that you
control.
C. Organize the AWS CloudFormation template so that related resources are next to each other in the template for each department's use,
leverage your existing continuous integration tool to constantly deploy changes from all parties to the Production environment, and then
run tests for validation.
D. Use a custom application and the AWS SDK to replicate the resources defined in the current AWS CloudFormation template, and use
the existing code review system to allow other departments to approve changes before altering the application for future deployments.
Answer: B
NEW QUESTION 32
You currently run your infrastructure on Amazon EC2 instances behind an Auto Scaling group> All logs for you application are currently
written to ephemeral storage. Recently your company experienced a major bug in code that made it through testing and was ultimately
deployed to your fleet. This bug triggered your Auto Scaling group to scale up and back down before you could successfully retrieve the
logs off your server to better assist you in troubleshooting the bug. Which technique should you use to make sure you are able to review
your logs after your instances have shut down?
A. Configure the ephemeral policies on your Auto Scaling group to back up on terminate.
B. Configure your Auto Scaling policies to create a snapshot of all ephemeral storage on terminate.
C. Install the CloudWatch Logs Agent on your AMI, and configure CloudWatch Logs Agent to stream your logs.
D. Install the CloudWatch monitoring agent on your AMI, and set up new SNS alert for CloudWatch metrics that triggers the CloudWatch
monitoring agent to backup all logs on the ephemeral drive.
E. Install the CloudWatch monitoring agent on your AMI, Update your Auto Scaling policy to enable automated CloudWatch Log copy.
Answer: C
NEW QUESTION 33
Management has reported an increase in the monthly bill from Amazon web services, and they are extremely concerned with this
increased cost. Management has asked you to determine the exact cause of this increase. After reviewing the billing report, you notice an
increase in the data transfer cost. How can you provide management with a better insight into data transfer use?
A. Update your Amazon CloudWatch metrics to use five-second granularity, which will give better detailed metrics that can be combined
with your billing data to pinpoint anomalies.
B. Use Amazon CloudWatch Logs to run a map-reduce on your logs to determine high usage and data transfer.
C. Deliver custom metrics to Amazon CloudWatch per application that breaks down application data transfer into multiple, more specific
data points.
D. Using Amazon CloudWatch metrics, pull your Elastic Load Balancing outbound data transfer metrics monthly, and include them with
your billing report to show which application is causing higher bandwidth usage.
Answer: C
NEW QUESTION 34
During metric analysis, your team has determined that the company's website is experiencing response times during peak hours that are
higher than anticipated. You currently rely on Auto Scaling to make sure that you are scaling your environment during peak windows. How
can you improve your Auto Scaling policy to reduce this high response time? Choose 2 answers.
A. Push custom metrics to CloudWatch to monitor your CPU and network bandwidth from your servers, which will allow your Auto Scaling
policy to have better fine-grain insight.
B. Increase your Auto Scaling group's number of max servers.
C. Create a script that runs and monitors your servers; when it detects an anomaly in load, it posts to an Amazon SNS topic that triggers
Elastic Load Balancing to add more servers to the load balancer.
D. Push custom metrics to CloudWatch for your application that include more detailed information about your web application, such as
how many requests it is handling and how many are waiting to be processed.
E. Update the CloudWatch metric used for your Auto Scaling policy, and enable sub-minute granularity to allow auto scaling to trigger
faster.
Answer: BD
NEW QUESTION 35
You are responsible for your company's large multi-tiered Windows-based web application running on Amazon EC2 instances situated
behind a load balancer. While reviewing metrics, you've started noticing an upwards trend for slow customer page load time. Your
manager has asked you to come up with a solution to ensure that customer load time is not affected by too many requests per second.
Which technique would you use to solve this issue?
A. Re-deploy your infrastructure using an AWS CloudFormation template.

Configure Elastic Load Balancing health checks to initiate a new AWS CloudFormation stack when health checks return failed.
B. Re-deploy your infrastructure using an AWS CloudFormation template.
Spin up a second AWS CloudFormation stack.
Configure Elastic Load Balancing SpillOver functionality to spill over any slow connections to the second AWS CloudFormation stack.
C. Re-deploy your infrastructure using AWS CloudFormation, Elastic Beanstalk, and Auto Scaling.
Set up your Auto Scaling group policies to scale based on the number of requests per second as well as the current customer load time.
D. Re-deploy your application using an Auto Scaling template.
Configure the Auto Scaling template to spin up a new Elastic Beanstalk application when the customer load time surpasses your threshold.
Answer: C
NEW QUESTION 36
Your company has multiple applications running on AWS. Your company wants to develop a tool that notifies on-call teams immediately via
email when an alarm is triggered in your environment. You have multiple on-cal teams that work different shifts, and the tool should handle
notifying the correct teams at the correct times. How should you implement this solution?
A. Create an Amazon SNS topic and an Amazon SQS queue.

Configure the Amazon SQS queue as a subscriber to the Amazon SNS topic.
Configure CloudWatch alarms to notify this topic when an alarm is triggered.
Create an Amazon EC2 Auto Scaling group with both minimum and desired Instances configured to 0.
Worker nodes in this group spawn when messages are added to the queue.
Workers then use Amazon Simple Email Service to send messages to your on call teams.
B. Create an Amazon SNS topic and configure your on-call team email addresses as subscribers.
Use the AWS SDK tools to integrate your application with Amazon SNS and send messages to this new topic.
Notifications will be sent to on-call users when a CloudWatch alarm is triggered.
C. Create an Amazon SNS topic and configure your on-call team email addresses as subscribers.
Create a secondary Amazon SNS topic for alarms and configure your CloudWatch alarms to notify this topic when triggered.
Create an HTTP subscriber to this topic that notifies your application via HTTP POST when an alarm is triggered.
Use the AWS SDK tools to integrate your application with Amazon SNS and send messages to the first topic so that on-call engineers
receive alerts.
D. Create an Amazon SNS topic for each on-call group, and configure each of these with the team member emails as subscribers.
Create another Amazon SNS topic and configure your CloudWatch alarms to notify this topic when triggered.
Create an HTTP subscriber to this topic that notifies your application via HTTP POST when an alarm is triggered.
Use the AWS SDK tools to integrate your application with Amazon SNS and send messages to the correct team topic when on shift.
Answer: D
NEW QUESTION 37
Your company releases new features with high frequency while demanding high application availability. As part of the application's A/B
testing, logs from each updated Amazon EC2 instance of the application need to be analyzed in near real-time, to ensure that the
application is working flawlessly after each deployment. If the logs show arty anomalous behavior, then the application version of the
instance is changed to a more stable one. Which of the following methods should you use for shipping and analyzing the logs in a highly
available manner?
A. Ship the logs to Amazon S3 for durability and use Amazon EMR to analyze the logs in a batch manner each hour.
B. Ship the logs to Amazon CloudWatch Logs and use Amazon EMR to analyze the logs in a batch manner each hour.
C. Ship the logs to an Amazon Kinesis stream and have the consumers analyze the logs in a live manner.
D. Ship the logs to a large Amazon EC2 instance and analyze the logs in a live manner.
E. Store the logs locally on each instance and then have an Amazon Kinesis stream pull the logs for live analysis.
Answer: C
NEW QUESTION 38
You have a code repository that uses Amazon S3 as a data store. During a recent audit of your security controls, some concerns were
raised about maintaining the integrity of the data in the Amazon S3 bucket. Another concern was raised around securely deploying code
from Amazon S3 to applications running on Amazon EC2 in a virtual private cloud. What are some measures that you can implement to
mitigate these concerns? (Choose two.)
A. Add an Amazon S3 bucket policy with a condition statement to allow access only from Amazon EC2 instances with RFC 1918 IP
addresses and enable bucket versioning.
B. Add an Amazon S3 bucket policy with a condition statement that requires multi-factor authentication in order to delete objects and
enable bucket versioning.
C. Use a configuration management service to deploy AWS Identity and Access Management user credentials to the Amazon EC2
instances.
Use these credentials to securely access the Amazon S3 bucket when deploying code.
D. Create an Amazon Identity and Access Management role with authorization to access the Amazon S3 bucket, and launch all of your
application's Amazon EC2 instances with this role.
E. Use AWS Data Pipeline to lifecycle the data in your Amazon S3 bucket to Amazon Glacier on a weekly basis.
F. Use AWS Data Pipeline with multi-factor authentication to securely deploy code from the Amazon S3 bucket to your Amazon EC2
instances.
Answer: BD
NEW QUESTION 39
You have an application consisting of a stateless web server tier running on Amazon EC2 instances behind load balancer, and are using
Amazon RDS with read replicas. Which of the following methods should you use to implement a self-healing and cost-effective
architecture? (Choose two.)
A. Set up a third-party monitoring solution on a cluster of Amazon EC2 instances in order to emit custom CloudWatch metrics to trigger
the termination of unhealthy Amazon EC2 instances.
B. Set up scripts on each Amazon EC2 instance to frequently send ICMP pings to the load balancer in order to determine which instance is
unhealthy and replace it.
C. Set up an Auto Scaling group for the web server tier along with an Auto Scaling policy that uses the Amazon RDS DB CPU utilization
CloudWatch metric to scale the instances.
D. Set up an Auto Scaling group for the web server tier along with an Auto Scaling policy that uses the Amazon EC2 CPU utilization
CloudWatch metric to scale the instances.
E. Use a larger Amazon EC2 instance type for the web server tier and a larger DB instance type for the data storage layer to ensure that
they don't become unhealthy.
F. Set up an Auto Scaling group for the database tier along with an Auto Scaling policy that uses the Amazon RDS read replica lag
CloudWatch metric to scale out the Amazon RDS read replicas.
G. Use an Amazon RDS Multi-AZ deployment.
Answer: AD
NEW QUESTION 40
Your application is currently running on Amazon EC2 instances behind a load balancer. Your management has decided to use a Blue/Green
deployment strategy. How should you implement this for each deployment?
A. Set up Amazon Route 53 health checks to fail over from any Amazon EC2 instance that is currently being deployed to.
B. Using AWS CloudFormation, create a test stack for validating the code, and then deploy the code to each production Amazon EC2
instance.
C. Create a new load balancer with new Amazon EC2 instances, carry out the deployment, and then switch DNS over to the new load
balancer using Amazon Route 53 after testing.
D. Launch more Amazon EC2 instances to ensure high availability, de-register each Amazon EC2 instance from the load balancer, upgrade
it, and test it, and then register it again with the load balancer.
Answer: C
NEW QUESTION 41
……
Those New AWS Certified DevOps Engineer - Professional Exam Questions Were Just Updated From The Real AWS Certified DevOps
Engineer - Professional Exam, You Can Get The Newest AWS Certified DevOps Engineer - Professional Dumps In PDF And VCE From --
http://www.passleader.com/aws-devops-engineer-professional.html (190q VCE and PDF)
Good Luck!
Besides, that new 190Q AWS Certified DevOps Engineer - Professional Dumps are Available here for Free:
https://drive.google.com/open?id=0B-ob6L_QjGLpblF1NzNWWjFiRGc
Best Regards!
andrewoh531 commented on Mar 3, 2017 • edited
Question 39 - I believe the answer is D and G.
A - I don't think many answers will be correct if it relies on a third party solution. Cloudwatch provide many default metrics for the ec2 and
ELB and you can put your own custom metrics if required.
B - Load balancers do the pinging, they don't receive pings.
C - Scaling an ec2 instance when db has high CPU isn't right.
D - Correct way to configure for autoscaling
E - Gives you buffer for increased load but is not self healing nor would it be cost effective.
F - Scaling out read replicas is not for self-healing (availability) but for increased throughput.
G - Multi-AZ is the correct solution for increased availability (self healing) at the RDS layer.
@Abrahamlincoln006 - I believe the correct answer is A. You need to use chef recipes which would mean you'd use Opsworks hence the
answer A.
princeku commented on May 10, 2017
I think ANS inincorrect...
Use Elastic Load Balancing to distribute traffic to a set of web servers. Configure the load balancer to perform TCP load balancing, use an
AWS CloudHSM to perform the SSL transactions, and write your web server logs to an ephemeral volume that has been encrypted using a
randomly generated AES key
As mentioned servers logs are sensitive can't be store in an ephemeral storage
Vigneshnarayanan commented on May 16, 2017
@stevenhen Great post. Do you have AWS Solutions Architect Associate Dumps?
devendradhoot commented on May 20, 2017
Can someone share answers to sample questions from AWS DevOps Professsionl.
AEiosApp commented on Jul 26, 2017
Good option to test yourself and to train yourself is AroundTheCloud iphone app
https://twitter.com/Around_Cloud
alfallouji commented on Aug 4, 2017
Hi Leonardo,
I fixed some minor formatting issues. If you want to merge those changes, they are available here :
https://gist.github.com/alfallouji/627a66d41bf05fc0e3ed77161a63bfee/revisions
https://gist.githubusercontent.com/alfallouji/627a66d41bf05fc0e3ed77161a63bfee/raw/a75248f94ddd46670d264db044a8dffff8a0fd9a/
README.md
leonardofed commented on Sep 7, 2017 Author Owner
thanks @alfallouji. Merged your revisions.
benpiper commented on Oct 2, 2017
The link on line 282 is dead.
kitos9112 commented on Oct 2, 2017
Keep the good work up!

Nice summary :)
I am looking forwards to starting and preparing my CSA - Professional certification after recently passing the associate exam!
jamesoflol commented on Oct 10, 2017
Hey Leonardo. Great list, thank you! I'm lecturing a university class and provided the link to my students.
One point to pick, if I may be so rude: "DynamoDB offers cross region replication". I would perhaps elaborating a little to say that cross-
region replication is possible, but is not part of the managed service. AWS provide a couple of open-source tools to DIY, but IMO they're
pretty unideal. Like, way more hassle than writing it yourself in Lambda. I haven't seen anything about it being possible with Code
Pipeline? Sounds odd. But I imagine that would be high-RPO the-world-is-ending DR. Check this presentation out
https://www.slideshare.net/AmazonWebServices/aws-reinvent-2016-crossregion-replication-with-amazon-dynamodb-streams-dat201
Kiran564 commented on Nov 20, 2017
Hi,
I love the advice given on this thread. I found a couple of test banks that would really help anyone who is taking their AWS exams.
https://www.simplilearn.com/aws-solutions-architect-exam-free-practice-test
https://www.simplilearn.com/aws-technical-essentials-free-practice-test
I found that these are free of cost and they can be taken multiple times. Each paper has about 60 MCQs, so its great for anyone who is
trying to map their progress.
I hope this helps!
rstilekar commented on Dec 5, 2017 • edited
I passed my AWS Architect Associate exam yesterday with 89 score (still cant believe myself ;) ).
Exam Topics coverage for my exam-
There were 55 Qs. Exam started with relatively tough Qs on start and mostly were API Gateway and DyamoDB. I almost choked on seeing
so many Qs on API Gateway in depth and all were in 1st 15 Qs of exam. Then it started with medium tough Qs from 20 to 40 Qs and end it
were preety easier Qs last 15. I know it might be purposefully formulated like this to make your nerves breakdown but being patient and
moving on is the key as it gets relatively better as you progress in exam. I was doubtful for anwsers for around 15 Qs (so anwered it what
thought is best in 1st glance) and flagged them for review at end. Believe me It helps a lot instead of choking on 1 Q and missing easier
part at the end.
Lots of Questions on Core Services -

EC2 , EBS, DynamoDB, S3.
EC2 - Userdata, Metadata, SSH, choosing Access keys and passwords - difference for EC2 login, and other preety easy Qs, choosing NAT
Gateway over NAT instance - know main differences
EBS - Know IOPS limits to use for GP2 and IO1 volumes and which to use for given scnerio based on IOPS limits. Snapshots & Encrytion
and few other easier Q
Atlest 7 Questions on API gateway & 6 on DyamoDB (Please study it in depth from all available resources on Amazon realted to these 2
services - it was weighted quite heavily and really tough Qs for API especially) -
DynamoDB use cases - Atlest 5 Questions where i had to choose DyanmoDB
Know difference between usecases where to use Elasticache and DynamoDB - Got 2 similar Qs with one small difference based on which
u need to choose elasticache in one and DynamoDB in other.
Only 2-3 Qs on VPC

Direct connect and VPN use cases # mixing possibilities.
Only 2 Qs on RDS - Especially Read replica and Standby RDS instance use case, MultiAZ and Stanby RDS instance differences.
Autoscaling and ELB's - relatively medium and easy level Qs (Around 4 Qs), Byhard the Autoscaling termination policy (Quite tedious Q
asked but if you know chart by hard u can answer it correctly)
Route 53 - only 1 Q (scnerio based - make choice between ELB or route 53)
EFS - 1 Q (Sharing)
IAM - 3 Questions (pretty easier Qs),
S3 - Scenraio based Qs (Around 3-4) - use case, choose appropriate S3 storage between STD, IA, RRS and Glacie in data lifecycling
scnerio (was quite logical)
SQS & SWF (Around 2 Qs) - Pretty easy use case Qs, Know the differnces so u can choose correct one.
VPC flow logs vs cloudwatch logs monitoring for network monitoring - which will you use or will you use both?
Lambda - 2 questions
Cloudwatch logs and cloudwatch events - difference and use cases
Cloudtrail - API logs monitoring
STS - which login types are covered by STS - Federated (SAML - AD connector, Amazon, FB, Google).
Does IAM Roles or cross account access comes under STS?
Know difference between AD connector and Simple AD and its use cases.
Cross account access - use cases
Kinesis Streams vs Firehose VS Analytics # Know the difference which to use when?
ECS & EMR - 1 question each - was quite medium Q for ECS and tough one for EMR.
AWS shared responsibility model
Other Qs - VPC peering, IAM Roles, RDS on EC2, Storage Gateway.
No questions on Redis, Memcached, Data Pipeline, Cognito, Workspaces, WAF, Billing, AWS support, Elastic Beanstalks, Opsworks.
Exam Tips (Based on my study) -

1. Do Acloudguru course from Ryan on UDemy with all its Questions and Answers (Its the best) # make your own notes out of it.
2. Do Eissa course "AWS Certified Solutions Architect Associate Exam Master" on Udemy for in depth of core services - VPC, EC2, EBS,
ELB & Autoscaling - really helped me gain mastery over these hard core subjects (No need to do Q&A sections in this course as such in
depth scnerios will not be asked. No need to do S3 & RDS from this as I felt doing S3 and RDS from just Acloudguru course is good
enough for exam as Qs for these topics were less and relatively easy) - Make your notes.
3. Practise on Free tier or buy Qwiklabs and practise the Architect Associate Quest and few other free labs on it. Really helps to get into
the depth and understanding services more better.
4. Read FAQs for VPC, S3, EC2, EBS, DynamoDB, API Gateway (Quick glance on Qs in good enough)
5. Whitepapers - No need to read any of whitepaper (AWS cloudguru covers them all and is good enough). Security whitepaper is only
important if you really want to read it (Do it if you have time else skip this whitepaper as well).
6. Do revision for your exam with your notes from above 2 courses and jayendrapatil's and
chrisfwilliams blogs - really helps for quick last minute reviews in short and (
http://jayendrapatil.com/aws-certification-exam-cheat-sheet/
http://mistwire.com/2016/05/aws-certified-solutions-architect-associate-study-notes/)
7. Do as many practise exams as possible available on Udemy, Simplilearn (Free test), Free exam Apps available on Android, Sybex book
(300 Q) and Whizlabs (420 + Qs -). No real exam Qs with any of them but preety close atleast for 7-8 Questions. But it gives a quest of
how and what type of Qs can came and helps you for readiness for exam. Don't byhard any Qs & Answers from here - just do them once
to check your prepardness. If you have less time, just do Whizlabs and you can skip other Udemy and Sybex book Qs - main thing to
check explanations for each answer that develops in depth knowledge of theory and they have links to AWS for proof of anwers # read
them as well for any tough Qs that helps a lot ). Whizlabs is designed more close enough to actual exam based question framing (Though
only 5-6 Qs came similar from it in my exam) and its expalinations gain more insight into theory.
Final tip -
Knowing the theory deep enough and little bit of practical labs practise is the real thing that makes you pass with flying colours. Dont rely
on any Dumps as Qs are really new and logical answering based on your knowledge is the key to pass with flying colours. You need lots of
patience for stuyding AWS from so many resources. I studied for almost 6 months (Average 12 hours weekly doing theory, labs, practise
Qs, FAQs topic by topic and then simulating it all together in last 3 weeks with revising all of theory).
All the Best!!!
ananthu99 commented on Jan 21, 2018
Hi @leonardofed - wonderful list of resources to prepare for the AWS CSAA and CSA Pro Certs!
Thanks for the detailed information.
abdennour commented on Jan 29, 2018
#UPDATE
Old : "26. Read replicas in different regions for MySQL only"

New : "Read Replicas of MariaDB, MySQL, and PostgreSQL DB Instances .. in different regions"
REF : https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_ReadRepl.html
qualityjacks commented on Feb 23, 2018 • edited by leonardofed
Great Resource.
leonardofed commented on Mar 21, 2018 Author Owner
Thanks @abdennour for the update, can you open a PR?
LinnykOleh commented on Apr 19, 2018
Thanks, man!
cmartinson commented on May 1, 2018
Thanks for the extensive list you've put together here!
I would also like to add that I have just launched a free 65 question practice exam which is geared towards the new 2018 exam objectives.
It currently is strictly for the AWS Solutions Architect Associate exam but will aim to also include Professional practice exams as well in the
near future.
Check it out here:
https://www.awsapprentice.com
Good luck to all of you working towards your certification.
Please send me your thoughts, suggestions and overall feedback.
Cheers!
Arianalacey commented on May 21, 2018
ATTENTION PLEASE!!! THE AWS SOLUTION ARCHITECT ASSOCIATE EXAM UPDATED RECENTLY (May/2018) WITH MANY NEW
QUESTIONS!!!
Question 1
Which of the following services natively encrypts data at rest within an AWS region? Choose 2 answers
A. AWS Storage Gateway
B. Amazon DynamoDB
C. Amazon CloudFront
D. Amazon Glacier
E. Amazon Simple Queue Service
Answer: A,D
Question 2
A customer wants to track access to their Amazon Simple Storage Service (S3) buckets and also use this information for their internal
security and access audits. Which of the following will meet the Customer requirement?
A. Enable AWS CloudTrail to audit all Amazon S3 bucket access.
B. Enable server access logging for all required Amazon S3 buckets.
C. Enable the Requester Pays option to track access via AWS Billing
D. Enable Amazon S3 event notifications for Put and Post.
Answer: A
Question 3
Which of the following are true regarding encrypted Amazon Elastic Block Store (EBS) volumes? Choose 2 answers
A. Supported on all Amazon EBS volume types
B. Snapshots are automatically encrypted
C. Available to all instance types
D. Existing volumes can be encrypted
E. shared volumes can be encrypted
Answer: A,B
Explanation:
This feature is supported on all Amazon EBS volume types (General Purpose (SSD), Provisioned IOPS (SSD), and Magnetic). You can
access encrypted Amazon EBS volumes the same way you access existing volumes; encryption and decryption are handled transparently
and they require no additional action from you, your Amazon EC2 instance, or your application. Snapshots of encrypted Amazon EBS
volumes are automatically encrypted, and volumes that are created from encrypted Amazon EBS snapshots are also
automatically encrypted.
Question 4
A customer implemented AWS Storage Gateway with a gateway-cached volume at their main office. An event takes the link between the
main and branch office offline. Which methods will enable the branch office to access their data? Choose 3 answers
A. Use a HTTPS GET to the Amazon S3 bucket where the files are located.
B. Restore by implementing a lifecycle policy on the Amazon S3 bucket.
C. Make an Amazon Glacier Restore API call to load the files into another Amazon S3 bucket within four to six hours.
D. Launch a new AWS Storage Gateway instance AMI in Amazon EC2, and restore from a gateway snapshot.
E. Create an Amazon EBS volume from a gateway snapshot, and mount it to an Amazon EC2 instance.
F. Launch an AWS Storage Gateway virtual iSCSI device at the branch office, and restore from a gateway snapshot.
Answer: A,D,F
Question 5
You are designing a web application that stores static assets in an Amazon Simple Storage Service (S3) bucket. You expect this bucket to
immediately receive over 150 PUT requests per second. What should you do to ensure optimal performance?
A. Use multi-part upload.
B. Add a random prefix to the key names.
C. Amazon S3 will automatically manage performance at this scale.
D. Use a predictable naming scheme, such as sequential numbers or date time sequences,
in the key names
Answer: A
NOTE: IF YOU HAVE QUESTIONS PLEASE CONTACT THE EMAIL ADDRESS PROVIDED: arianalacey1@gmail.com
phspies commented on Jul 26, 2018
Answer for Question 5 should be B and not A.
https://aws.amazon.com/premiumsupport/knowledge-center/s3-bucket-performance-improve/
gitoutthere commented on Nov 29, 2018 • edited
Storage Gateway is a software appliance that sits on premises that can operate in three modes – gateway cached (hot data kept
locally but most data stored in S3), gateway stored (all data kept locally but also replicated to S3) and VTL-Tape Library (virtual disk
tapes stored in S3, virtual tape shelf stored in Glacier)
We now have: Volume - Tape and File this is current for current exam!
Gateway stored volumes are 16TB in size, 12 volumes are supported (16 x 12, 192TB)
All storage gateways support 32 volumes therefor, 16 X 32, 512TB
gitoutthere commented on Nov 29, 2018
Gateway stored snapshots are stored in S3 and can be used to recover data quickly. EBS snapshots can also be used to create a
volume to attach to new EC2 instances
Gateway stored snapshots can also be used to create a volume to attach to new EC2 instances
chendeshen commented on Jan 30
thanks
neel-thakkar commented on Feb 7
does anyone know what is the new/latest passing score for AWS - Solutions Architect Associate Exam?
jsbonso commented on Feb 14
@neel-thakkar - The passing score is 720 out of 1000. This is indicated in the exam guide: https://d1.awsstatic.com/training-and-
certification/docs-sa-assoc/AWS_Certified_Solutions_Architect_Associate_Feb_2018_%20Exam_Guide_v1.5.2.pdf
jsbonso commented on Feb 14 • edited
Hey guys,
I took the new AWS Certified Solutions Architect - Professional (SAP-C01) exam - Feb 2019 version. Here are the things I saw in the exam,
and some tips that can help you.
The new exam has 75 questions that you have to finish within 3 hours (180 minutes) with a minimum passing score of 750 out of
1000. The official AWS exam page says the exam is 170 minutes, but that is actually incorrect. I took the exam and it is 180 minutes
and not 170 minutes.
You won't pass the exam if you don't know about AWS Organizations, Difference between SCP vs IAM Policy, Cross-Region Disaster
Recovery, AWS Serverless Application Model (AWS SAM), AWS Server Migration Service (SMS), AWS Systems Manager, AWS CI/CD
Tools (CodeCommit, CodeBuild, CodeDeploy, CodePipeline) and many more!
New test domains covered in the exam:
K. Design for Organizational Complexity 12.5%

R. Design for New Solutions 31%
V. Migration Planning 15%
W. Cost Control 12.5%
X. Continuous Improvement for Existing Solutions 29%
TOTAL 100%
For more information, check out the Exam Guide here:
https://d1.awsstatic.com/training-and-certification/docs-sa-pro/AWS%20Certified%20Solutions%20Architect-
Professional_Exam%20Guide_2019.pdf
New Services/concepts that were introduced in the exam:
AWS Organizations
Managing Organizational Units (OU)
Service Control Policies (SCP)
Difference between SCP and IAM Policy
AWS Serverless Application Model (AWS SAM)
Cloud Migration
AWS Service Catalog
AWS Application Discovery Service
AWS Server Migration Service (SMS)
AWS Rekognition
AWS CI/CD Services (CodeCommit, CodeBuild, CodeDeploy, CodePipeline)
and many more!
Must read AWS documents/ whitepapers
I highly encourage you to do some intensive reading on the following topics:
Cloud Migration: https://aws.amazon.com/cloud-migration/

AWS Organizations & SCP: https://aws.amazon.com/organizations/getting-started/
SCP vs IAM Policy: https://aws.amazon.com/premiumsupport/knowledge-center/iam-policy-service-control-policy/
Serverless (SAM + Lambda) : https://aws.amazon.com/serverless/
Access Management: https://docs.amazonaws.cn/en_us/IAM/latest/UserGuide/access.html
Web application hosting in AWS: https://d0.awsstatic.com/whitepapers/aws-web-hosting-best-practices.pdf

AWS Disaster Recovery: http://d36cz9buwru1tt.cloudfront.net/AWS_Disaster_Recovery.pdf
The Official AWS practice exam does NOT reflect the actual AWS exam
I also took the official AWS online practice exam and I can confidently say that the provided AWS practice exam and the actual AWS SA
Pro exam is quite different. The actual AWS exam is loaded with AWS Organizations, SCP vs IAM Policy, SAM, and many other services
that I mentioned above, while the official AWS online practice exam only have less services covered.
Helpful AWS Practice Exams in Udemy and other sources
AWS Cheat Sheets from TutorialsDojo which will be helpful on the final days of your review: https://tutorialsdojo.com/aws-cheat-
sheets/
Get the AWS SA Professional practice tests in Udemy, which the TutorialsDojo team patterned the exam scenario, with up to 85% OFF
by using the coupon code: TUTORIALSDOJO or by visting this link: https://www.udemy.com/aws-solutions-architect-professional-
practice-exams-2018/?couponCode=TUTORIALSDOJO_M1
If you are not happy with these practice exams, then feel free to refund it or contact the Udemy support for the refund process. However,
it would be great if you can tell us how we can further improve our course.
Take note that this is not an exam dump and I am an active contributor for Tutorials Dojo. I actually tried using WhizLabs, A Cloud Guru,
Linux Academy and other sources and some of them are good. The good thing about us in Tutorials Dojo is that we respond to student
questions much faster and we always strive to provide quality content, with detailed explanations, diagrams and reference links.
Here are some of my approved pull-requests from the official AWS documentation - github repo:
awsdocs/amazon-ec2-user-guide#56
awsdocs/aws-snowball-developer-guide#1
awsdocs/iam-user-guide#57
Good luck everyone!
giparenz commented on Feb 14
Hi there , I tried for the first time (SAA-C01) and I had actually question over the subjects listed below , which unfortunately I was not
prepared for , is there anyone out there that had the same ? are those topics in the Architect Associate exam ?
AWS Organizations
Managing Organizationeal Units (OU)

Service Control Policies (SCP)
Difference between SCP and IAM Policy
AWS Serverless Application Model (AWS SAM)
Cloud Migration
AWS Service Catalog
AWS Application Discovery Service
AWS Server Migration Service (SMS)
AWS Rekognition
AWS CI/CD Services (CodeCommit, CodeBuild, CodeDeploy, CodePipeline)
ginigangadharan commented on Apr 3
wonderful.. thanks for sharing...
erichamm commented on May 9
I have passed my exam with 89% grades. I will like to suggest you to prepare your self with this Site.
aagarwal8 commented on May 21
Since the AWS Certified Solutions Architect - Professional exam was revised in Feb 2019, refer to the link below for the latest preparation
guide/tips...
https://www.linkedin.com/pulse/preparing-aws-certified-solutions-architect-2019-sap-c01-agarwal
Gunashree-G commented on May 29
Hey everyone, I'm glad to share that I was able to clear my AWS Solutions Architect Exam in my first attempt itself. All that I ever did was,
get my foundation right, basically, enrolled myself for a nice AWS Certification Training and understood the concepts well enough and
before I went to take up the actual exam, I spent some time practicing. Simplilearn's AWS Certification Dumps helped me in the process. I
practiced well as I was able to take the tests any number of times as the test had no pricing and I was well prepared in terms of the
concepts and time management. I really suggest that you grab some sample questions like this and gain proficiency before attending the
actual exam.
karkcoder commented on Jun 8
************************* People posting about dumps, you are cheating and it is illegal. Dont worry, questions I will ask you in interview,
your certification wont matter, experience will matter. I can weed out the cheaters in less than 5 minute thankfully.
leeadh commented 19 days ago
does anyone know where to get information for devops professional exam for 2019? The questions I heard are very different now esp with
quicksight and SSM.

A Curated List of AWS Resources To Prepare For The AWS Certifications GitHub PDF

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

A Curated List of AWS Resources To Prepare For The AWS Certifications GitHub PDF

Uploaded by

Copyright:

Available Formats

A curated list of AWS resources to prepare for the AWS Certifications · GitHub 29/08/19, 4*37 AM

Instantly share code, notes, and snippets.

Embed Download ZIP

A curated list of AWS resources to prepare for the AWS Certifications

A curated list of AWS resources to prepare for the AWS Certifications

K. Passing the AWS solutions architect - Associate exam (Published ☑)

Exam concepts you should understand for this exam include:

Candidate Overview description provided by the AWS documentation

Eligible candidates for this exam have:

AWS Knowledge required for the Exam:

General IT Knowledge preferred for the Exam:

Understanding of different consistency models in distributed systems

K. Solutions Architect—Associate Certification for AWS (2016)

In this AWS whitepaper you'll find a sample exam. Here's a preview:

Amazon Glacier is designed for: (Choose 2 answers)

A. active database storage.

(Answer: B. infrequently accessed data. C. data archives.)

A. The instance is replaced automatically by the ELB.

B. The instance gets terminated automatically by the ELB.

On the exam itself:

A redditor on r/aws gave awesome tips about the exam day

Exam Registration fee is USD 150

What should I bring to an AWS Certification exam?

Government-issued Driverʼs license

This is valid for any AWS Certifiation Exam.

Exam concepts you should understand for this exam include:

K. Achieved AWS Certified Solutions Architect - Associate

Key Points to pass the Exam:

Demonstrate ability to architect the appropriate level of availability based on stakeholder

Demonstrate ability to implement DR for systems based on RPO and RTO

Determine appropriate use of multi-Availability Zones vs. multi-Region architectures

Demonstrate ability to implement self-healing capabilities

Credits to Chris Beckett @ BlueClouds

The Exam Day

`. Get the most out of this GitHub repository

simonebrunozzi commented on Aug 2, 2016

Great list of resources!

redavis22 commented on Aug 5, 2016

Awesome list! Thanks!

ingvarch commented on Aug 5, 2016

jalemayehu commented on Aug 5, 2016

techsyslonghorn commented on Aug 5, 2016

Great resources in one place, Thanks!

fiberpython commented on Aug 12, 2016

DanEmord commented on Sep 20, 2016

gmani1978 commented on Nov 21, 2016

amazondumps commented on Nov 24, 2016 • edited by leonardofed

yichantsai commented on Nov 25, 2016

Amazing work! Thx!

sailesh1978 commented on Dec 9, 2016

angelinawilliams commented on Jan 24, 2017

derekpurdy commented on Jan 24, 2017

leonardofed commented on Jan 26, 2017 Author Owner

@derekpurdy yep. I'll review all the doc very soon.

leonardofed commented on Jan 26, 2017 Author Owner

@amazondumps thank you for the hint.

ledwinson commented on Feb 2, 2017

Good one thanks.

stevenhen commented on Feb 14, 2017

A. Re-deploy your infrastructure using an AWS CloudFormation template.

A. Create an Amazon SNS topic and an Amazon SQS queue.

andrewoh531 commented on Mar 3, 2017 • edited

Question 39 - I believe the answer is D and G.