How many questions are on the AWS SAA-C03 exam?

The AWS SAA-C03 exam contains 65 questions (scored) to be completed in 130 minutes. Questions are multiple choice (one correct answer) or multiple response (two or more correct answers).

What is the passing score for the AWS SAA-C03?

The AWS Solutions Architect Associate exam requires a minimum score of 720 out of 1000 to pass.

What domains does the AWS SAA-C03 cover?

The exam covers four domains: Design Secure Architectures (30%), Design Resilient Architectures (26%), Design High-Performing Architectures (24%), and Design Cost-Optimized Architectures (20%).

How long is the AWS Solutions Architect Associate certification valid?

AWS certifications are valid for 3 years. Recertification is achieved by passing the same exam or a higher-level AWS exam.

ExpertMinds

AWS Solutions Architect Associate (SAA-C03)

AWS SAA-C03 Practice Exam 2

65 free questions · No sign-up required to browse

Comprehensive practice exam for the AWS Certified Solutions Architect - Associate (SAA-C03) certification. Covers designing secure, resilient, high-performing, and cost-optimized architectures.

Questions

Mixed

Difficulty

72%

Pass mark

Difficulty breakdown

Easy(15)

Medium(37)

Hard(13)

Topics covered

Browse all topics →

Domain 1.1: Secure Access Domain 1.2: Secure Workloads Domain 1.3: Data Security Domain 2.1: Scalable Architectures Domain 2.2: Highly Available Architectures Domain 2.3: Decoupling Domain 2.4: Resilient Storage Domain 3.1: Storage Performance Domain 3.2: Compute Performance Domain 3.3: Database Performance Domain 3.4: Network Performance Domain 3.5: Data Ingestion Domain 4.1: Storage Cost Optimization Domain 4.2: Compute Cost Optimization Domain 4.3: Database Cost Optimization Domain 4.4: Network Cost Optimization

Sample questions

Q01Easy1 mark

A company wants to ensure that no AWS resources can be created in the ap-northeast-1 region across all of its AWS accounts. What is the MOST efficient way to enforce this?

View question with guidance →

Q02Easy1 mark

A web application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The company wants to protect the application from common web exploits like SQL injection. Which service should be used?

View question with guidance →

Q03Medium1 mark

A company is storing highly sensitive data in an Amazon S3 bucket. The security team requires that the data is encrypted at rest using keys managed by the company, and that all API calls to the keys are logged. Which TWO actions should a solutions architect take? (Select TWO.)

View question with guidance →

Q04Hard1 mark

An application running on an EC2 instance needs to access an Amazon DynamoDB table in a different AWS account. What is the MOST secure way to grant this access?

View question with guidance →

Q05Medium1 mark

A company needs to store database credentials securely. The credentials must be automatically rotated every 30 days. Which AWS service should be used?

View question with guidance →

Ready to Practice the full exam?

All 65 questions with worked answers, mark schemes, and AI tutoring.

All questions (65)

Free to browse · no sign-up required

Q01A company wants to ensure that no AWS resources can be created in the ap-northeast-1 region across all of its AWS acc...Easy Q02A web application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The company wants to protec...Easy Q03A company is storing highly sensitive data in an Amazon S3 bucket. The security team requires that the data is encryp...Medium Q04An application running on an EC2 instance needs to access an Amazon DynamoDB table in a different AWS account. What i...Hard Q05A company needs to store database credentials securely. The credentials must be automatically rotated every 30 days. ...Medium Q06A solutions architect needs to implement a threat detection service that continuously monitors for malicious activity...Easy Q07A company has an Amazon S3 bucket containing confidential files. The bucket must only be accessible from a specific A...Medium Q08A mobile application requires users to sign in using their social media accounts (Google, Facebook). Once authenticat...Medium Q09A financial institution requires a dedicated, single-tenant hardware security module (HSM) to manage their cryptograp...Hard Q10A company wants to protect its Amazon Route 53 hosted zones and Amazon CloudFront distributions from large-scale DDoS...Medium Q11A company needs to automatically discover, classify, and protect sensitive data, such as Personally Identifiable Info...Easy Q12A company uses AWS Organizations to manage multiple AWS accounts. They want to implement a single sign-on solution fo...Medium Q13A company must store financial records in Amazon S3 for 7 years. During this time, the records cannot be deleted or m...Medium Q14A company has 50 VPCs across multiple AWS accounts. They want to inspect all traffic leaving the VPCs for the interne...Hard Q15A developer accidentally created an unencrypted Amazon RDS MySQL database. The security team requires the database to...Medium Q16A company wants to receive real-time alerts whenever an IAM policy is modified in their AWS account. Which TWO servic...Medium Q17A company is deploying a web application on an Application Load Balancer (ALB). They need to secure the traffic in tr...Easy Q18A company is migrating a NoSQL database to Amazon DynamoDB. The security team mandates that all data must be encrypte...Medium Q19A company wants to ensure that developers can only launch EC2 instances of type 't3.micro' in their development AWS a...Hard Q20A company exposes a REST API using Amazon API Gateway. They want to restrict access to the API so that only authentic...Medium Q21A company is building an order processing system. Messages must be processed exactly once and in the exact order they...Easy Q22An application runs on EC2 instances in an Auto Scaling group behind an Application Load Balancer (ALB). Instances ar...Medium Q23A global application requires a multi-region active-active architecture to ensure high availability. The application ...Medium Q24A company requires a relational database that spans multiple AWS Regions for disaster recovery. The database must hav...Hard Q25An application needs to react to state changes in Amazon EC2 instances (e.g., when an instance goes from 'pending' to...Medium Q26A company wants to protect its Amazon S3 data from accidental deletion. They want to ensure that even if an administr...Easy Q27A company is designing a highly available architecture for a legacy application that requires a shared file system. T...Medium Q28A company's primary Amazon RDS database instance experienced a hardware failure. The database was configured with Mul...Medium Q29A company is building an IoT application that receives millions of sensor readings per second. Multiple backend appli...Hard Q30A company has a complex order fulfillment process involving payment processing, inventory checking, and shipping. Eac...Medium Q31A company hosts a static website on Amazon S3. They want to display a custom error page hosted in a different S3 buck...Easy Q32A company is implementing a 'Pilot Light' disaster recovery strategy for their on-premises database and web servers. ...Medium Q33An application processes messages from an Amazon SQS queue. Occasionally, a malformed message causes the processing a...Medium Q34A company is migrating a legacy Windows application to AWS. The application requires a shared file system that suppor...Hard Q35A popular mobile game uses Amazon API Gateway and AWS Lambda. During special events, traffic spikes unpredictably, ca...Medium Q36A company wants to back up their on-premises file servers to AWS. They want to maintain local access to frequently ac...Medium Q37A company has a single EC2 instance hosting a legacy application that cannot be load balanced. If the instance fails,...Easy Q38A company is running a high-performance computing (HPC) workload that requires massive amounts of memory to process l...Easy Q39A global media company allows users to upload large video files to an Amazon S3 bucket located in the us-east-1 regio...Medium Q40A company is migrating a read-heavy application to AWS. They want to implement an in-memory caching layer to reduce t...Medium Q41An application uses Amazon DynamoDB to store product catalog data. During flash sales, the application experiences ma...Hard Q42A startup is building an application with unpredictable, intermittent traffic. They need a relational database that c...Medium Q43A company has an application hosted on EC2 instances in the eu-west-1 region. Users globally are experiencing high la...Easy Q44A database administrator is provisioning storage for a high-performance relational database on Amazon EC2. The databa...Medium Q45A company is using Amazon EFS for a big data analytics workload. Hundreds of EC2 instances are reading and writing to...Medium Q46A company has petabytes of historical data stored in Amazon S3. They want to query this data using standard SQL witho...Hard Q47A company needs to ingest streaming log data from thousands of EC2 instances, transform the data format from JSON to ...Medium Q48A research vessel at sea has limited internet connectivity. They need to collect terabytes of sensor data, perform lo...Easy Q49A company has two VPCs (VPC A and VPC B) in the same AWS Region. They need to establish a private, high-bandwidth net...Medium Q50A company is migrating a microservices application to AWS using Docker containers. They want to run the containers wi...Medium Q51A company is deploying a tightly coupled High Performance Computing (HPC) application on Amazon EC2. The application ...Hard Q52A data analyst needs to run ad-hoc SQL queries on CSV files stored in Amazon S3. They want a serverless solution that...Medium Q53A company stores millions of images in Amazon S3. The access patterns are highly unpredictable; some images are acces...Easy Q54A company runs a batch processing job every night that takes 4 hours to complete. The job can be interrupted and resu...Medium Q55A company has a steady-state workload running on EC2 instances. They want to commit to a 1-year term to reduce costs....Medium Q56A company has applications running in private subnets that frequently access Amazon DynamoDB. They are currently rout...Hard Q57A new startup is launching a mobile app backed by Amazon DynamoDB. They have no historical data to predict traffic pa...Medium Q58A company wants to be alerted via email whenever their monthly AWS spending is forecasted to exceed $1,000. Which AWS...Easy Q59A company stores log files in Amazon S3. The logs are frequently accessed for the first 30 days. After 30 days, they ...Medium Q60A media company serves large video files directly from an Amazon S3 bucket to users globally. Their AWS bill shows ma...Medium Q61A company has a multi-tier web application. The database tier runs on Amazon RDS for PostgreSQL. The database is only...Hard Q62A company takes daily snapshots of their Amazon EBS volumes. They have noticed that their snapshot storage costs are ...Medium Q63A company has hundreds of EC2 instances. They suspect many instances are over-provisioned (e.g., running on m5.xlarge...Easy Q64A company transfers 50 TB of data monthly from their on-premises data center to AWS over the public internet. They wa...Medium Q65A company has an Amazon RDS database in the us-east-1 region. They want to create a Read Replica in the eu-west-1 reg...Hard