ANSWERED: Amazon Web Services (AWS) Certified Solutions Architect (CSA) – Associate Level, Sample Exam Questions

There are many posts with various accounts from the AWS CSA exam, so I will try to keep mine concise and to the point. The exam requires a foundational understanding of all AWS services. Questions are situational and focused on technical nuances. Rather than a test of deep systems architecture, it is largely a test of your familiarity with the AWS product ecosystem.

Historical Perspective: This post was originally written in 2014. While the core concepts of S3, EC2, and ELB remain foundational, modern AWS exams (like SAA-C03) now include advanced topics like Serverless, Containers, and the Well-Architected Framework.

My studies began with the sample exam questions provided by AWS. Since AWS does not provide the answers to those samples, I've documented my research and answers for them below.

Sample Exam Question Deep Dive

  1. Amazon Glacier is designed for (Choose 2 answers)

    • Answer(s): B - Infrequently accessed data, C - Data archives.
    • Explanation: Glacier is an archival storage service. You are charged for data retrieval, so it's intended for data you don't expect to need more than once a month.

  2. If an instance fails a health check behind an ELB, what happens?

    • Answer(s): C - The ELB stops sending traffic to the instance that failed its health check.
    • Explanation: ELBs dynamically forward traffic only to healthy instances. Once a failure is detected, the ELB pulls the instance out of the rotation until it passes again.

  3. How can you serve confidential training videos in S3 via CloudFront without making S3 public?

    • Answer(s): A - Create an Origin Access Identity (OAI) for CloudFront and grant it access to the S3 objects.
    • Explanation: An OAI acts as a virtual user for your CloudFront distribution. By granting access to the OAI and blocking public access to the bucket, you ensure users must go through CloudFront.

  4. What occurs when an EC2 instance in a VPC with an Elastic IP is stopped and started? (Choose 2 answers)

    • Answer(s): B - All data on instance-store devices will be lost; E - The underlying host for the instance is changed.
    • Explanation: Because instance storage is physically attached to the host, that data is volatile. Stopping the instance releases the hardware reservation; starting it again provisions it on a new physical host.

  5. In the basic monitoring package for EC2, what metrics does CloudWatch provide?

    • Answer(s): D - Hypervisor visible metrics such as CPU utilization.
    • Explanation: AWS respects the guest OS boundary. Without an agent installed, CloudWatch can only see what the hypervisor sees—like CPU, Disk I/O, and Network I/O.

Reference: For the latest exam requirements, visit the Official AWS CSA Certification Page.

Labels: , , , ,