AWS Certified Solutions Architect SAA-C03

CONFIDENTIAL – DO NOT DISTRIBUTE

Certification exam changes

AWS Training & Certification announced that starting August 30, 2022, a new version of the AWS Certified Solutions Architect - Associate (SAA-C03) exam. The
new exam version includes updated content to reflect the rapid pace of innovation on the AWS console and the latest in best practices for architecting on the
AWS Cloud.
The following guide includes information about the new exam, a breakdown of the domains covered in the SAA-C03 exam, and the list of services that might be
covered on the exam.

General exam information

Section SAA-C02 SAA-C03

The AWS Certified Solutions Architect - Associate (SAA-

The AWS Certified Solutions Architect – Associate
C03) exam is intended for individuals who perform in a
(SAA-C02) exam is intended for individuals who
solutions architect role. The exam validates a
perform in a solutions architect role. The exam
candidate’s ability to use AWS technologies to design
validates a candidate’s ability to design secure and
solutions based on the AWS Well-Architected
robust solutions by using AWS technologies.
Framework.
The exam also validates a candidate’s ability to
The exam also validates a candidate’s ability to complete
Introduction complete the following tasks:
the following tasks:
* Design a solution by using appropriate AWS
• Design solutions that incorporate AWS services to
services and by following architectural principles
meet current business requirements and future
based on requirements
projected needs
* Provide implementation guidance based on best
• Design architectures that are secure, resilient, high-
practices to the organization throughout the workload
performing, and cost-optimized
lifecycle
• Review existing solutions and determine improvements

The target candidate should have at least 1 year of

The target candidate should have at least 1 year of
hands-on experience designing secure, high-
Target hands-on experience designing cloud solutions that
performing, cost-effective, highly available, and
use AWS services.
scalable systems by using AWS services.
Responses types There are no changes in the exam responses types.
Exam
Unscored content There are no changes in the unscored content
content
Exam results There are no changes in the exam results.

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 1
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

This exam guide includes weightings, test domains, and This exam guide includes weightings, test domains, and
objectives for the exam. It is not a comprehensive task statements for the exam. It is not a comprehensive
listing of the content on the exam. However, additional listing of the content on the exam. However, additional
context for each of the objectives is available to help context for each of the task statements is available to
guide your preparation for the exam. The following help guide your preparation for the exam. The following
Content outline
table lists the main content domains and their table lists the main content domains and their
weightings. The table precedes the complete exam weightings. The table precedes the complete exam
content outline, which includes the additional context. content outline, which includes the additional context.
The percentage in each domain represents only scored The percentage in each domain represents only scored
content. content.
Design Secure Architectures 30% (Previously Domain 3
Domain 1 Design Resilient Architectures 30%
increased weighting to 30% from 24%)
Design Resilient Architectures 26% (Previously Domain 1
Domain 2 Design High-Performing Architectures 28%
decrease weighting to 26% from 30%)
Design High-Performing Architectures 24% (Previously
Domain 3 Design Secure Applications and Architectures 24%
Domain 2 decrease weighting to 24% from 28%)
Design Cost-Optimized Architectures 20 % (Increased
Domain 4 Design Cost-Optimized Architectures 18%
weighting to 20% from 18%)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 2
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

SAA-C03 Domain 1: Design Secure Architectures

SAA-C02 SAA-C03
Domain Design Secure Applications and Architectures Design Secure Architectures
Task Design secure access to AWS resources Design secure access to AWS resources.
Access controls and management across multiple accounts.

AWS federated access and identity services (for example, AWS Identity and Access
Management [IAM], AWS Single Sign-On [AWS SSO]).
No criteria related
AWS global infrastructure (for example, Availability Zones, AWS Regions).
AWS security best practices (for example, the principle of least privilege).
The AWS shared responsibility model.

Applying AWS security best practices to IAM users and root users (for example,
Select appropriate techniques to secure a root account.
multi-factor authentication [MFA]).
Determine when to choose between users, groups, and roles. Designing a flexible authorization model that includes IAM users, groups, roles,
Criteria
Interpret the net effect of a given access policy. and policies.

Determine ways to secure credentials using features of AWS Designing a role-based access control strategy (for example, AWS Security Token
IAM. Service [AWS STS], role switching, cross-account access).

Designing a security strategy for multiple AWS accounts (for example, AWS
No criteria related.
Control Tower, service control policies [SCPs]).
Determine the secure method for an application to access
AWS APIs.
Determining the appropriate use of resource policies for AWS services.
Select appropriate services to create traceability for access
to AWS resources.
No criteria related Determining when to federate a directory service with IAM roles.
Task Design secure application tiers. Design secure workloads and applications.
Application configuration and credentials security.
Criteria No criteria related AWS service endpoints.
Control ports, protocols, and network traffic on AWS.

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 3
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Secure application access.

Security services with appropriate use cases (for example, Amazon Cognito,
Amazon GuardDuty, Amazon Macie).

Threat vectors external to AWS (for example, DDoS, SQL injection).

Given traffic control requirements, determine when and how Designing VPC architectures with security components (for example, security
to use security groups and network ACLs. groups, route tables, network ACLs, NAT gateways) .

Determine a network segmentation strategy using public Determining network segmentation strategies (for example, using public subnets
and private subnets. and private subnets).

Select appropriate AWS services to protect applications Integrating AWS services to secure applications (for example, AWS Shield, AWS
from external threats. WAF, AWS SSO, AWS Secrets Manager).
Select the appropriate routing mechanism to securely access
Securing external network connections to and from the AWS Cloud (for example,
AWS service endpoints or internet-based resources from
VPN, AWS Direct Connect).
Amazon VPC.
Task Select appropriate data security options. Determine appropriate data security controls.
Data access and governance
Data recovery
No criteria related
Data retention and classification
Encryption and appropriate key management
No criteria related Aligning AWS technologies to meet compliance requirements

Criteria Select appropriate encryption options for data at rest and in Encrypting data at rest (for example, AWS Key Management Service [AWS KMS])
transit for AWS services. Encrypting data in transit (for example, AWS Certificate Manager [ACM] using TLS)
Select appropriate key management options based on
Implementing access policies for encryption keys
requirements.
Determine the policies that need to be applied to objects Implementing data backups and replications
based on access patterns. Implementing policies for data access, lifecycle, and protection
No criteria related Rotating encryption keys and renewing certificates

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 4
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

SAA-C03 Domain 2: Design Resilient Architectures

SAA-C02 SAA-C03
Domain Design Resilient Architectures Design Resilient Architectures
Design a multi-tier architecture solution
Task Design scalable and loosely coupled architectures.
Design decoupling mechanisms using AWS services
API creation and management (for example, Amazon API Gateway, REST API)

AWS managed services with appropriate use cases (for example, AWS Transfer
Family, Amazon Simple Queue Service [Amazon SQS], Secrets Manager)

Caching strategies

Design principles for microservices (for example, stateless workloads compared

with stateful workloads)

Event-driven architectures
Horizontal scaling and vertical scaling
How to appropriately use edge accelerators (for example, content delivery network
[CDN])
No criteria related How to migrate applications into containers
Criteria
Load balancing concepts (for example, Application Load Balancer)
Multi-tier architectures
Queuing and messaging concepts (for example, publish/subscribe)
Serverless technologies and patterns (for example, AWS Fargate, AWS Lambda)
Storage types with associated characteristics (for example, object, file, block)

The orchestration of containers (for example, Amazon Elastic Container Service

[Amazon ECS], Amazon Elastic Kubernetes Service [Amazon EKS])

When to use read replicas

Workflow orchestration (for example, AWS Step Functions)
Determine when to leverage serverless technologies to Designing event-driven, microservice, and/or multi-tier architectures based on
enable decoupling. requirements

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 5
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Determining when to use containers

Determine a scaling strategy for components used in a

Determining scaling strategies for components used in an architecture design
design.
Determine which AWS services can be leveraged to achieve Determining the AWS services required to achieve loose coupling based on
loose coupling of components. requirements

Determine a solution design based on access patterns. Determining when to use serverless technologies and patterns
Select an appropriate database based on requirements.
Recommending appropriate compute, storage, networking, and database
Select an appropriate compute and storage service based on technologies based on requirements
requirements.
No criteria related Using purpose-built AWS services for workloads
Design highly available and/or fault-tolerant architectures
Task Design highly available and/or fault-tolerant architectures.
Choose appropriate resilient storage
AWS global infrastructure (for example, Availability Zones, AWS Regions, Amazon
Route 53)
AWS managed services with appropriate use cases (for example, Amazon
Comprehend, Amazon Polly)

Basic networking concepts (for example, route tables)

Disaster recovery (DR) strategies (for example, backup and restore, pilot light,
warm standby, active-active failover, recovery point objective [RPO], recovery time
objective [RTO])
Criteria No criteria related Distributed design patterns
Failover strategies
Immutable infrastructure
Load balancing concepts (for example, Application Load Balancer)
Proxy concepts (for example, Amazon RDS Proxy)

Service quotas and throttling (for example, how to configure the service quotas for
a workload in a standby environment)

Storage options and characteristics (for example, durability, replication)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 6
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Workload visibility (for example, AWS X-Ray)

No criteria related Determining automation strategies to ensure infrastructure integrity

Determine the amount of resources needed to provide a Determining the AWS services required to provide a highly available and/or fault-
fault-tolerant architecture acrossAvailability Zones. tolerant architecture across AWS Regions or Availability Zones

Identify key performance indicators to ensure the high Identifying metrics based on business requirements to deliver a highly available
availability of the solution. solution
Select a highly available configuration to mitigate single
Implementing designs to mitigate single points of failure
points of failure.

Define a strategy to ensure the durability of data.

Identify how data service consistency will affect the

operation of the application. Implementing strategies to ensure the durability and availability of data (for
Select data services that will meet the access requirements example, backups)
of the application.
Identify storage services that can be used with hybrid or
non-cloud-native applications.
Select an appropriate disaster recovery strategy to meet
Selecting an appropriate DR strategy to meet business requirements
business requirements.

Apply AWS services to improve the reliability of legacy Using AWS services that improve the reliability of legacy applications and
applications when application changes applications not built
are not possible. for the cloud (for example, when application changes are not possible)

No criteria related Using purpose-built AWS services for workloads

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 7
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

SAA-C03 Domain 3: Design High-Performing Architectures

SAA-C02 SAA-C03
Domain Design High-Performing Architectures Design High-Performing Architectures
Select high-performing and scalable storage solutions for a
Task Determine high-performing and/or scalable storage solutions.
workload
Hybrid storage solutions to meet business requirements.

Storage services with appropriate use cases (for example, Amazon S3, Amazon
No criteria related
Elastic File System [Amazon EFS], Amazon Elastic Block Store [Amazon EBS]).
Criteria Storage types with associated characteristics (for example, object, file, block).
Select a storage service and configuration that meets
Determining storage services and configurations that meet performance demands.
performance demands
Determine storage services that can scale to accommodate
Determining storage services that can scale to accommodate future needs.
future needs
Identify elastic and scalable compute solutions for a
Task Design high-performing and elastic compute solutions.
workload
AWS compute services with appropriate use cases (for example, AWS Batch,
Amazon EMR, Fargate).
Distributed computing concepts supported by AWS global infrastructure and edge
services.
Queuing and messaging concepts (for example, publish/subscribe)
No criteria related
Scalability capabilities with appropriate use cases (for example, Amazon EC2 Auto
Scaling, AWS Auto Scaling)
Criteria Serverless technologies and patterns (for example, Lambda, Fargate)
The orchestration of containers (for example, Amazon ECS, Amazon EKS)

Choose the appropriate architecture and services that scale

Decoupling workloads so that components can scale independently
to meet performance requirements.

Identify metrics to monitor the performance of the solution. Identifying metrics and conditions to perform scaling actions

Select the appropriate instance(s) based on compute, Selecting the appropriate compute options and features (for example, EC2
storage, and networking requirements. instance types) to meet business requirements

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 8
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Selecting the appropriate resource type and size (for example, the amount of
No criteria related
Lambda memory) to meet business requirements

Task Choose high-performing database solutions for a workload Determine high-performing database solutions.
AWS global infrastructure (for example, Availability Zones, AWS Regions)
Caching strategies and services (for example, Amazon ElastiCache)
Data access patterns (for example, read-intensive compared with write-intensive)
Database capacity planning (for example, capacity units, instance types,
Provisioned IOPS)
No criteria related Database connections and proxies

Database engines with appropriate use cases (for example, heterogeneous

migrations, homogeneous migrations)

Database replication (for example, read replicas)

Criteria
Database types and services (for example, serverless, relational compared with
non-relational, in-memory)

Configuring read replicas to meet business requirements

Select an appropriate database scaling strategy.
Designing database architectures

Determining an appropriate database engine (for example, MySQL compared with

Choose a suitable database service to meet performance PostgreSQL)
needs.
Determining an appropriate database type (for example, Amazon Aurora, Amazon
DynamoDB)
Determine when database caching is required for
Integrating caching to meet business requirements
performance improvement.
Task Select high-performing networking solutions for a workload Determine high-performing and/or scalable network architectures.

Edge networking services with appropriate use cases (for example, Amazon
CloudFront, AWS Global Accelerator).
Criteria No criteria related How to design network architecture (for example, subnet tiers, routing, IP
addressing).
Load balancing concepts (for example, Application Load Balancer).

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 9
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Network connection options (for example, AWS VPN, Direct Connect, AWS
PrivateLink).
Creating a network topology for various architectures (for example, global, hybrid,
No criteria related
multi-tier)
No criteria related Determining network configurations that can scale to accommodate future needs
Determine an edge caching strategy to provide Determining the appropriate placement of resources to meet business
performance benefits. requirements
No criteria related Selecting the appropriate load balancing strategy
Select appropriate AWS connectivity options to meet
performance demands.
Select appropriate features to optimize connectivity to AWS
No criteria related
public services
Select appropriate data transfer service for migration
and/or ingestion.
Task No task related Determine high-performing data ingestion and transformation solutions.

Data analytics and visualization services with appropriate use cases (for example,
Amazon Athena, AWS Lake Formation, Amazon QuickSight)

Data ingestion patterns (for example, frequency)

Data transfer services with appropriate use cases (for example, AWS DataSync,
AWS Storage Gateway)

Data transformation services with appropriate use cases (for example, AWS Glue)
Secure access to ingestion access points
Criteria Sizes and speeds needed to meet business requirements
Streaming data services with appropriate use cases (for example, Amazon Kinesis)
Building and securing data lakes
No criteria related
Designing data streaming architectures
Designing data transfer solutions
Implementing visualization strategies
Selecting appropriate compute options for data processing (for example, Amazon
EMR)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 10
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Selecting appropriate configurations for ingestion

Transforming data between formats (for example, .csv to .parquet)

SAA-C03 Domain 4: Design Cost-Optimized Architectures

SAA-C02 SAA-C03
Domain Design cost-optimized storage solutions. Design cost-optimized storage solutions.
Task Identify cost-effective storage solutions Design cost-optimized storage solutions.
Access options (for example, an S3 bucket with Requester Pays object storage)

AWS cost management service features (for example, cost allocation tags, multi-
account billing)

AWS cost management tools with appropriate use cases (for example, AWS Cost
Explorer, AWS Budgets, AWS Cost and Usage Report)

No criteria related AWS storage services with appropriate use cases (for example, Amazon FSx,
Amazon EFS, Amazon S3, Amazon EBS)

Criteria Backup strategies.

Block storage options (for example, hard disk drive [HDD] volume types, solid state
drive [SSD] volume types).
Data lifecycles.
Hybrid storage options (for example, DataSync, Transfer Family, Storage Gateway).
Storage access patterns.
Storage tiering (for example, cold tiering for object storage).
Storage types with associated characteristics (for example, object, file, block).

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 11
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Designing appropriate storage strategies (for example, batch uploads to Amazon

S3 compared with individual uploads).

Determining the correct storage size for a workload.

Determining the lowest cost method of transferring data for a workload to AWS
storage.
Determining when storage auto scaling is required
Managing S3 object lifecycles
Selecting the appropriate backup and/or archival solution
Selecting the appropriate service for data migration to storage services
Selecting the appropriate storage tier
Apply automated processes to ensure that data over
Selecting the correct data lifecycle for storage
time is stored on storage tiers that minimize costs.
Determine the most cost-effective data storage options
Selecting the most cost-effective storage service for a workload
based on requirements.
Task Identify cost-effective compute and database services Design cost-optimized compute solutions.

AWS cost management service features (for example, cost allocation tags, multi-
account billing)

AWS cost management tools with appropriate use cases (for example, Cost
Explorer, AWS Budgets, AWS Cost and Usage Report)

AWS global infrastructure (for example, Availability Zones, AWS Regions)

AWS purchasing options (for example, Spot Instances, Reserved Instances, Savings
Criteria Plans)
No criteria related
Distributed compute strategies (for example, edge processing)
Hybrid compute options (for example, AWS Outposts, AWS Snowball Edge)

Instance types, families, and sizes (for example, memory optimized, compute
optimized, virtualization)

Optimization of compute utilization (for example, containers, serverless

computing, microservices)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 12
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Scaling strategies (for example, auto scaling, hibernation)

Determining an appropriate load balancing strategy (for example, Application

Load Balancer [Layer 7] compared with Network Load Balancer [Layer 4]
compared with Gateway Load Balancer)

Select appropriate scaling strategies from a cost Determining appropriate scaling methods and strategies for elastic workloads (for
perspective. example, horizontal compared with vertical, EC2 hibernation)

Determine the most cost-effective Amazon EC2 billing Determining cost-effective AWS compute services with appropriate use cases (for
options for each aspect of the workload. example, Lambda, Amazon EC2, Fargate)

Determining the required availability for different classes of workloads (for

No criteria related
example, production workloads, non-production workloads)
Select and size compute resources that are optimally
Selecting the appropriate instance family for a workload
suited for the workload.
No criteria related Selecting the appropriate instance size for a workload
Determine options to minimize total cost of ownership
(TCO) through managed services and serverless No criteria related
architectures.
Task Identify cost-effective compute and database services Design cost-optimized database solutions.
AWS cost management service features (for example, cost allocation tags, multi-
account billing)
AWS cost management tools with appropriate use cases (for example, Cost
Explorer, AWS Budgets, AWS Cost and Usage Report)

No criteria related Caching strategies

Criteria Data retention policies

Database capacity planning (for example, capacity units)
Database connections and proxies

Database engines with appropriate use cases (for example, heterogeneous

migrations, homogeneous migrations)

Database replication (for example, read replicas)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 13
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Database types and services (for example, relational compared with non-relational,
Aurora, DynamoDB)
Designing appropriate backup and retention policies (for example, snapshot
frequency)
Determining an appropriate database engine (for example, MySQL compared with
PostgreSQL)

Determine the most cost-effective database options Determining cost-effective AWS database services with appropriate use cases (for
based on requirements. example, DynamoDB compared with Amazon RDS, serverless)

Determining cost-effective AWS database types (for example, time series format,
No criteria related columnar format)
Migrating database schemas and data to different locations and/or different
database engines.
Task Design cost-optimized network architectures Design cost-optimized network architectures.

AWS cost management service features (for example, cost allocation tags, multi-
account billing)

AWS cost management tools with appropriate use cases (for example, Cost
Explorer, AWS Budgets, AWS Cost and Usage Report)

Load balancing concepts (for example, Application Load Balancer)

NAT gateways (for example, NAT instance costs compared with NAT gateway
costs)
Criteria Network connectivity (for example, private lines, dedicated lines, VPNs)
No criteria related Network routing, topology, and peering (for example, AWS Transit Gateway, VPC
peering)
Network services with appropriate use cases (for example, DNS)

Configuring appropriate NAT gateway types for a network (for example, a single
shared NAT gateway compared with NAT gateways for each Availability Zone)

Configuring appropriate network connections (for example, Direct Connect

compared with VPN compared with internet)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 14
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Configuring appropriate network routes to minimize network transfer costs (for

Determine strategies to reduce data transfer costs
example, Region to Region, Availability Zone to Availability Zone, private to public,
within AWS.
Global Accelerator, VPC endpoints)

Identify when content delivery can be used to reduce Determining strategic needs for content delivery networks (CDNs) and edge
costs. caching
Determine the most cost-effective connectivity options
Reviewing existing workloads for network optimizations
between AWS and on-premises environments.

Selecting an appropriate throttling strategy

No criteria related Selecting the appropriate bandwidth allocation for a network device (for example,
a single VPN compared with multiple VPNs, Direct Connect speed)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 15
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

SAA-C03 Appendix: Which key tools, technologies, and concepts might be covered on the exam?
Compute
Cost management
Database
Disaster recovery
High performance
Management and governance
Tools and technologies Microservices and component decoupling
Migration and data transfer
Networking, connectivity, and content delivery
Security
Serverless and event-driven design principles
Storage
Resiliency (New)
AWS services and features
Amazon Athena
Amazon OpenSearch Service (Amazon Elasticsearch Service)
Amazon EMR
AWS Glue
Amazon Kinesis
Analytics: Amazon QuickSight
AWS Data Exchange (New)
AWS Data Pipeline (New)
AWS Lake Formation (New)
Amazon Managed Streaming for Apache Kafka (Amazon MSK) (New)
Amazon Redshift (New)
Application Integration: Amazon Simple Notification Service (Amazon SNS)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 16
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Amazon Simple Queue Service (Amazon SQS)

Amazon AppFlow (New)
AWS AppSync (New)
Amazon EventBridge (Amazon CloudWatch Events) (New)
Amazon MQ (New)
AWS Step Functions (New)
AWS Budgets
AWS Cost Explorer
AWS Cost Management:
AWS Cost and Usage Report (New)
Savings Plans (New)
Amazon EC2
AWS Elastic Beanstalk
Amazon Elastic Container Service (Amazon ECS)
Amazon Elastic Kubernetes Service (Amazon EKS)
Under Networking and content delivery
AWS Fargate
AWS Lambda
AWS Batch (New)
Compute, Containers, Serverless Amazon EC2 Auto Scaling (New)
AWS Outposts (New)
AWS Serverless Application Repository (New)
VMware Cloud on AWS (New)
AWS Wavelength (New)
AWS AppSync (New)
Amazon Elastic Container Registry (Amazon ECR) (New)
Amazon ECS Anywhere (New)
Amazon EKS Anywhere (New)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 17
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Amazon EKS Distro (New)

Amazon Aurora
Amazon DynamoDB
Amazon ElastiCache
Amazon RDS
Amazon Redshift
Database: Amazon Aurora Serverless (New)
Amazon DocumentDB (with MongoDB compatibility) (New)
Amazon Keyspaces (for Apache Cassandra) (New)
Amazon Neptune (New)
Amazon Quantum Ledger Database (Amazon QLDB) (New)
Amazon Timestream (New)
AWS X-Ray (New)
AWS Amplify Front-End Web and Mobile (New)
Developer Tools and
Amazon API Gateway (New)
Front-End Web and Mobile
AWS Device Farm (New)
Amazon Pinpoint (New)
Amazon Comprehend (New)
Amazon Forecast (New)
Amazon Fraud Detector (New)
Amazon Kendra (New)
Amazon Lex (New)
Machine Learning:
Amazon Polly (New)
Amazon Rekognition (New)
Amazon SageMaker (New)
Amazon Textract (New)
Amazon Transcribe (New)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 18
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Amazon Translate (New)

AWS Auto Scaling
AWS Backup
AWS CloudFormation
AWS CloudTrail
Amazon CloudWatch
AWS Organizations
AWS Systems Manager
AWS Trusted Advisor
AWS Command Line Interface (AWS CLI) (New)
AWS Compute Optimizer (New)
Management and Governance:
AWS Config (New)
AWS Control Tower (New)
AWS License Manager (New)
Amazon Managed Grafana (New)
Amazon Managed Service for Prometheus (New)
AWS Management Console (New)
AWS Personal Health Dashboard (New)
AWS Proton (New)
AWS Service Catalog (New)
AWS Well-Architected Tool (New)
AWS Database Migration Service (AWS DMS)
AWS DataSync
Media Services and AWS Migration Hub
Migration and Transfer AWS Server Migration Service (AWS SMS)
AWS Snow Family
AWS Transfer Family

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 19
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Amazon Elastic Transcoder (New)

Amazon Kinesis Video Streams (New)
AWS Application Discovery Service (New)
AWS Application Migration Service (CloudEndure Migration) (New)
Amazon CloudFront
AWS Direct Connect
AWS Global Accelerator
Amazon Route 53
Networking and Content Delivery: AWS Transit Gateway
Amazon VPC
Elastic Load Balancing (ELB)
AWS PrivateLink (New)
AWS VPN (New)
AWS Certificate Manager (ACM)
AWS Directory Service
Amazon GuardDuty
AWS Identity and Access Management (IAM)
Amazon Inspector
AWS Key Management Service (AWS KMS)
Amazon Macie
Security, Identity, and Compliance:
AWS Secrets Manager
AWS Shield
AWS Single Sign-On
AWS WAF
AWS Artifact (New)
AWS Audit Manager (New)
AWS CloudHSM (New)

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 20
AWS Certified Solutions Architect SAA-C03
CONFIDENTIAL – DO NOT DISTRIBUTE

Amazon Cognito (New)

Amazon Detective (New)
AWS Firewall Manager (New)
AWS Network Firewall (New)
AWS Resource Access Manager (AWS RAM) (New)
AWS Security Hub (New)
Amazon Elastic Block Store (Amazon EBS)
Amazon Elastic File System (Amazon EFS)
Amazon FSx (for all types)
Storage:
Amazon S3
Amazon S3 Glacier
AWS Storage Gateway

aws.amazon.com/training/awsacademy
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 21