StudyTechStudyTech
Back to Blog
Solutions Architect AssociateSAA-C03Study Guide13 min read

AWS Solutions Architect Associate Study Guide 2026 (SAA-C03)

The complete SAA-C03 study guide for 2026. Covers all four exam domains, what actually shows up on the exam, and the exact prep method that gets you certified faster than a video course.

By Soleyman Shahir · AWS Certified Solutions Architect Professional | Founder, StudyTech
Published May 13, 2026 · Last updated May 13, 2026

Short answer

SAA-C03 covers four domains: Design Secure Architectures (30%), Design Resilient Architectures (26%), Design High-Performing Architectures (24%), and Design Cost-Optimized Architectures (20%). The most efficient prep path is a baseline mock exam on day one, then active recall on your weak domains — not a linear 30-hour video course.

Key takeaways

  • SAA-C03 has four domains — Design Secure Architectures carries the most weight at 30%
  • The exam tests scenario-based application of knowledge, not memorisation of service features
  • A baseline mock exam on day one is more valuable than 10 hours of video for identifying what to study
  • Most technical professionals can pass SAA-C03 in 4 to 8 weeks with focused gap-based prep
  • The hardest parts of SAA-C03 are IAM permissions, networking (VPC, Transit Gateway, Direct Connect), and knowing when to use which storage or database service

StudyTech AI

Finally know when you're ready to pass.

Start Free Assessment

SAA-C03 is the most popular AWS certification exam in the world. It's also one of the most misunderstood in terms of what it actually tests and how to prepare for it efficiently.

This guide covers everything you need: the exam structure, what each domain actually tests, the services that show up most often, and the prep method that gets you certified faster than a 30-hour video course.

SAA-C03 Exam Overview

DetailInfo
Exam codeSAA-C03
Number of questions65 (50 scored, 15 unscored)
Time limit130 minutes
Passing score720 / 1000
Cost$150 (USD)
FormatMultiple choice, multiple response, ordering, matching
DeliveryPearson VUE or PSI (testing centre or online proctored)

The Four SAA-C03 Domains

Domain 1: Design Secure Architectures — 30%

The heaviest domain. Nearly a third of your score comes from here.

What it covers:

  • IAM — users, roles, policies, cross-account access, permission boundaries, SCPs
  • S3 bucket policies, ACLs, encryption (SSE-S3, SSE-KMS, SSE-C, client-side)
  • VPC security — security groups, NACLs, VPC endpoints, PrivateLink
  • KMS, Secrets Manager, Parameter Store
  • AWS Shield, WAF, GuardDuty, Security Hub, Macie

What the exam actually tests: Not definitions, but decisions. Given a multi-account setup with specific compliance requirements, which combination of IAM policies and S3 bucket policies achieves the correct access control? That's the level of application required.

Most commonly failed topics: Cross-account IAM roles, the difference between resource-based and identity-based policies, when to use VPC endpoints vs PrivateLink.

Domain 2: Design Resilient Architectures — 26%

What it covers:

  • Multi-AZ vs Multi-Region designs
  • RDS Multi-AZ, Read Replicas, Aurora Global Database
  • Route 53 routing policies — Failover, Latency, Weighted, Geolocation
  • Elastic Load Balancing — ALB vs NLB vs CLB (know the difference cold)
  • Auto Scaling groups — target tracking, step scaling, scheduled
  • S3 versioning, replication (SRR vs CRR), lifecycle policies
  • DynamoDB global tables, point-in-time recovery, DAX

What the exam actually tests: RTO and RPO trade-offs. When a scenario gives you a recovery time objective of 5 minutes, which architecture achieves that? Multi-AZ RDS vs a Read Replica? Pilot light vs warm standby? These are the questions.

Domain 3: Design High-Performing Architectures — 24%

What it covers:

  • Compute — EC2 instance types, placement groups, Spot vs On-Demand vs Reserved
  • Storage performance — EBS volume types (gp3, io2, st1, sc1), instance store
  • Database performance — ElastiCache (Redis vs Memcached), DynamoDB DAX
  • Networking — Enhanced Networking, Placement Groups, Global Accelerator vs CloudFront
  • Serverless — Lambda concurrency, API Gateway throttling, SQS vs SNS vs Kinesis for event streaming

Most commonly failed topics: When to use SQS vs SNS vs Kinesis vs EventBridge — each exists for specific use cases and the exam loves to test these distinctions.

Domain 4: Design Cost-Optimized Architectures — 20%

What it covers:

  • EC2 purchasing options — On-Demand, Reserved (Standard vs Convertible), Savings Plans, Spot
  • S3 storage classes and lifecycle automation
  • Right-sizing and compute optimizer
  • Serverless vs EC2 cost trade-offs for bursty workloads
  • Data transfer costs — knowing which data transfers incur charges

The Services You Must Know Cold

These appear across multiple domains in scenario questions:

Compute: EC2 (instance types, purchasing options), Lambda, ECS, EKS, Fargate Storage: S3 (storage classes, encryption, replication), EBS, EFS, FSx Database: RDS, Aurora, DynamoDB, ElastiCache, Redshift Networking: VPC (subnets, route tables, IGW, NAT), ALB, NLB, Route 53, CloudFront, Global Accelerator, Direct Connect, VPN Security: IAM, KMS, Secrets Manager, Shield, WAF, GuardDuty Integration: SQS, SNS, EventBridge, Kinesis, Step Functions Monitoring: CloudWatch, CloudTrail, Config, X-Ray

How to Prepare for SAA-C03 (The Method That Actually Works)

The standard advice is: buy a 30-hour video course and work through it. This approach produces mediocre results for a straightforward reason — video courses train recognition, not recall. The exam tests recall.

The approach that works:

Day 1: Take a full practice exam cold, before studying anything. Score it by domain. Your two lowest domains are where your study time goes first.

Weeks 1–4: Work through your weakest domains using active recall — flashcards, scenario-based quizzes, explaining concepts from memory. Use video only to look up specific things you can't recall at all. Never passively watch a full module on something you already partially understand.

Weekly: Take a domain-specific practice exam on your weakest area. Check whether the score moved.

Every 2–3 weeks: Take a full mock exam. Check overall domain balance.

Book the exam: When every domain consistently clears 80% on fresh practice exam banks.

The Hardest Questions on SAA-C03

The questions that trip up most candidates aren't about obscure services — they're about trade-offs between common ones:

  • ALB vs NLB vs CLB for a specific workload requirement
  • When to use SQS vs SNS vs Kinesis vs EventBridge
  • S3 Standard vs Standard-IA vs Glacier Instant Retrieval vs Glacier Flexible Retrieval for a given access pattern
  • Multi-AZ RDS vs Aurora vs a read replica for a given RTO/RPO
  • VPC peering vs Transit Gateway vs PrivateLink for a given network topology
  • CloudFront vs Global Accelerator for a given latency problem

Build a mental model for each of these trade-offs. Don't memorise a table — understand why each service exists and what problem it uniquely solves. That's what the scenario questions test.

Next Steps

Take a baseline practice exam today and see where your domain scores land. That single exercise will tell you more about what you need to study than any course outline.

Frequently asked questions

How hard is the AWS Solutions Architect Associate exam?

SAA-C03 is a mid-difficulty exam. The questions are scenario-based, which means you can't just memorise service definitions — you have to apply knowledge to choose the right architecture for a given set of constraints. Most technical professionals who prepare correctly pass on their first attempt. The most commonly failed domains are networking and IAM.

How long does it take to study for the AWS Solutions Architect Associate?

4 to 8 weeks with a focused gap-based approach. 3 to 6 months with a traditional video course approach. The difference is entirely about method — starting with a baseline mock exam to identify your gaps, then studying only those gaps with active recall rather than working through a full course linearly.

What is on the SAA-C03 exam?

SAA-C03 covers four domains: Design Secure Architectures (30%), Design Resilient Architectures (26%), Design High-Performing Architectures (24%), and Design Cost-Optimized Architectures (20%). The exam has 65 questions — 50 scored and 15 unscored — and a 130-minute time limit. Passing score is 720 out of 1000.

What AWS services are most important for SAA-C03?

EC2, S3, VPC, IAM, RDS, DynamoDB, Lambda, CloudFront, Route 53, ELB (ALB vs NLB vs CLB), Auto Scaling, EFS, SQS, SNS, and CloudWatch appear consistently across exam scenarios. Know not just what each service does but when to use it over alternatives — that's what the scenario questions test.

Should I get Cloud Practitioner before Solutions Architect Associate?

Not necessarily. Cloud Practitioner is a confidence and momentum builder, and it earns you a 50% exam voucher. But if you already have a technical background in development, networking, or systems administration, you can go straight to SAA-C03. Cloud Practitioner adds roughly 2 to 4 weeks to your certification timeline.

What score do I need to pass the SAA-C03?

720 out of 1000 on a scaled scoring system. On practice exams, aim for consistently above 80% before you book the real exam. If you're hitting 75% overall but one domain is sitting at 50%, you are not ready — track domain scores, not just the total.

Related Certification

AWS Solutions Architect AssociateSAA-C03

The new way to get AWS certified

Stop guessing. Start with your gaps.

Most people study everything and hope for the best. StudyTech shows you exactly what you don't know, focuses your time on those gaps, and tells you the moment you're ready to book.

1

Find your gaps

Take a 10-minute AI assessment. StudyTech maps every domain of your target exam and shows you exactly where your knowledge falls short — before you waste a single hour studying the wrong things.

2

Study what matters

Every session is built around your weakest domains. Flashcards, quizzes, and focused material — no 30-hour courses, no passive watching, no studying topics you already know.

3

Know when you're ready

Your exam readiness score updates in real time across every domain. No more guessing, no more flying blind. StudyTech tells you exactly when to book — based on data, not feelings.

Start your free assessment
StudyTechStudyTechAI Assessment

Get AWS certified in 4 weeks, not six months.

Our AI identifies your knowledge gaps in 10 minutes and builds a focused study plan so you only learn what you need to pass.

  • Find your weakest AWS exam domains
  • Get a personalized roadmap to pass
  • Know what to study next instead of guessing
Start Free Assessment

Continue reading

Solutions Architect Associate·11 min read

Is the AWS Solutions Architect Associate Actually Worth It in 2026?

Honest answer from someone who holds it — and the professional level. For some people this certification is career-changing. For others it's a complete waste of time. Here's how to know which one you are.

AWS Certification·12 min read

How to Get AWS Certified for Under $200 (Complete Strategy)

Get AWS certified without breaking the bank. A complete strategy to pass your AWS exam for under $200 including exam fee, study materials, and practice tests.

AWS Certification·10 min read

How to Get AWS Certified for Free (Or Under $100)

Complete guide to getting AWS certified with minimal cost. Free study resources, discount strategies, and how to avoid expensive courses.

AWS Solutions Architect·15 min read

How to Pass AWS Solutions Architect Associate in 6 Weeks (2026 Guide)

A proven 6-week study plan for the AWS Solutions Architect Associate (SAA-C03) exam. Includes week-by-week breakdown, resources, and the gap-based strategy that works.

Cloud Practitioner·11 min read

AWS Cloud Practitioner Study Guide 2026 (CLF-C02)

The complete CLF-C02 study guide for 2026. What's on the exam, which domains carry the most weight, the services you actually need to know, and the fastest way to pass.