WGU D319 OA AWS CLOUD 2025
ARCHITECTURE
ANSWER ALL QUESTIONS IN THIS SECTION
QUESTION 1
A company has a multi-tier application that is very read intensive at the
database layer. The company is looking to implement a caching strategy for
the data, and its security department requires it to be encrypted.
Which solution fits this requirement?
A) Amazon CloudFront cache
B) Amazon ElastiCache for Memcached
C) Amazon ElastiCache for Redis
D) Amazon IoT Greengrass cache
C
QUESTION 2
An administrator needs a relational database that can support online
analytical processing (OLAP) and provide fast performance despite many
concurrent queries.
Which solution should this administrator choose?
A) Amazon DynamoDB
END OF
PAGE
1
, WGU D319 OA AWS CLOUD 2025
ARCHITECTURE
B) AWS RDS
C) Amazon RDS Multi-AZ
D) Amazon Redshift
D
QUESTION 3
An application running in an EC2 instance needs to access an Amazon S3
bucket with temporary credentials generated by AWS Security Token Service
(AWS STS). Credentials cannot be stored in the EC2 instance.
Which principal type should the client use to configure the application access
to the Amazon S3 bucket?
A) IAM user
B) IAM federated user
C) IAM role
D) IAM group
C
QUESTION 4
An organization has signed up for an AWS account.
Which action should be performed to ensure the account is secured and used
END OF
PAGE
2
, WGU D319 OA AWS CLOUD 2025
ARCHITECTURE
according to the principle of least privilege?
A) Log in as root for all resource creation tasks
B) Delete the root access keys and secret
C) Log in as root only from AWS CLI
D) Deploy AWS Single Sign-On (SSO)
B
QUESTION 5
A company needs to configure an EC2 instance for delegate access to a
DynamoDB table.
Which policy should this company use?
A) Trust
B) Permissions
B) Password
C) Session
B
QUESTION 6
What is used in the IAM policy evaluation logic?
END OF
PAGE
3
ARCHITECTURE
ANSWER ALL QUESTIONS IN THIS SECTION
QUESTION 1
A company has a multi-tier application that is very read intensive at the
database layer. The company is looking to implement a caching strategy for
the data, and its security department requires it to be encrypted.
Which solution fits this requirement?
A) Amazon CloudFront cache
B) Amazon ElastiCache for Memcached
C) Amazon ElastiCache for Redis
D) Amazon IoT Greengrass cache
C
QUESTION 2
An administrator needs a relational database that can support online
analytical processing (OLAP) and provide fast performance despite many
concurrent queries.
Which solution should this administrator choose?
A) Amazon DynamoDB
END OF
PAGE
1
, WGU D319 OA AWS CLOUD 2025
ARCHITECTURE
B) AWS RDS
C) Amazon RDS Multi-AZ
D) Amazon Redshift
D
QUESTION 3
An application running in an EC2 instance needs to access an Amazon S3
bucket with temporary credentials generated by AWS Security Token Service
(AWS STS). Credentials cannot be stored in the EC2 instance.
Which principal type should the client use to configure the application access
to the Amazon S3 bucket?
A) IAM user
B) IAM federated user
C) IAM role
D) IAM group
C
QUESTION 4
An organization has signed up for an AWS account.
Which action should be performed to ensure the account is secured and used
END OF
PAGE
2
, WGU D319 OA AWS CLOUD 2025
ARCHITECTURE
according to the principle of least privilege?
A) Log in as root for all resource creation tasks
B) Delete the root access keys and secret
C) Log in as root only from AWS CLI
D) Deploy AWS Single Sign-On (SSO)
B
QUESTION 5
A company needs to configure an EC2 instance for delegate access to a
DynamoDB table.
Which policy should this company use?
A) Trust
B) Permissions
B) Password
C) Session
B
QUESTION 6
What is used in the IAM policy evaluation logic?
END OF
PAGE
3
