Amazon (SAA-C03) Exam Questions And Answers page 48
A company wants to share data that is collected from self-driving cars with the automobile community. The data will be made available from within an Amazon S3 bucket. The company wants to minimize its cost of making this data available to other AWS accounts.
What should a solutions architect do to accomplish this goal?
What should a solutions architect do to accomplish this goal?
Configure the S3 bucket to be a Requester Pays bucket.
Create an Amazon CloudFront distribution in front of the S3 bucket.
Require that the files be accessible only with the use of the BitTorrent protocol.
Design Cost-Optimized Architectures
A company wants to share forensic accounting data that is stored in an Amazon RDS DB instance with an external auditor. The auditor has its own AWS account and requires its own copy of the database.
How should the company securely share the database with the auditor?
How should the company securely share the database with the auditor?
Create a read replica of the database and configure IAM standard database authentication to grant the auditor access.
Copy a snapshot of the database to Amazon S3 and assign an IAM role to the auditor to grant access to the object in that bucket.
Export the database contents to text files, store the files in Amazon S3, and create a new IAM user for the auditor with access to that bucket.
Make an encrypted snapshot of the database, share the snapshot, and allow access to the AWS Key Management Service (AWS KMS) encryption key.
Specify Secure Applications and Architectures
A company wants to use a custom distributed application that calculates various profit and loss scenarios. To achieve this goal, the company needs to provide a network connection between its Amazon EC2 instances. The connection must minimize latency and must maximize throughput
Which solution will meet these requirements?
Which solution will meet these requirements?
Provision the application to use EC2 Dedicated Hosts of the same instance type.
Configure a placement group for EC2 instances that have the same instance type.
Use multiple AWS elastic network interfaces and link aggregation.
Configure AWS PrivateLink for the EC2 instances.
Design Resilient Architectures
Define Performant Architectures
A company wants to use Amazon S3 for the secondary copy of its on-premises dataset. The company would rarely need to access this copy. The storage solution's cost should be minimal.
Which storage solution meets these requirements?
Which storage solution meets these requirements?
S3 Standard
S3 Intelligent-Tiering
S3 Standard-Infrequent Access (S3 Standard-IA)
S3 One Zone-Infrequent Access (S3 One Zone-IA)
Design Cost-Optimized Architectures
A company wants to use an AWS Region as a disaster recovery location for its on-premises infrastructure. The company has 10 TB of existing data, and the on-premise data center has a 1 Gbps internet connection. A solutions architect must find a solution so the company can have its existing data on AWS in 72 hours without transmitting it using an unencrypted channel.
Which solution should the solutions architect select?
Which solution should the solutions architect select?
Send the initial 10 TB of data to AWS using FTP.
Send the initial 10 TB of data to AWS using AWS Snowball.
Establish a VPN connection between Amazon VPC and the company's data center.
Establish an AWS Direct Connect connection between Amazon VPC and the company's data center.
Define Performant Architectures
Specify Secure Applications and Architectures
A company wants to use AWS Systems Manager to manage a fleet of Amazon EC2 instances. According to the company s security requirements, no EC2 instances can have internet access. A solutions architect needs to design network connectivity from the EC2 instances to Systems Manager while fulfilling this security obligation.
Which solution will meet these requirements?
Which solution will meet these requirements?
Deploy the EC2 instances into a private subnet with no route to the internet.
Configure an interface VPC endpoint for Systems Manager. Update routes to use the endpoint.
Deploy a NAT gateway into a public subnet. Configure private subnets with a default route to the NAT gateway.
Deploy an internet gateway. Configure a network ACL to deny traffic to all destinations except Systems Manager.
Specify Secure Applications and Architectures
A company wants to use high performance computing (HPC) infrastructure on AWS for financial risk modeling. The company s HPC workloads run on Linux. Each HPC workflow runs on hundreds of AmazonEC2 Spot Instances, is short-lived, and generates thousands of output files that are ultimately stored in persistent storage for analytics and long-term future use.
The company seeks a cloud storage solution that permits the copying of on premises data to long-term persistent storage to make data available for processing by all EC2 instances. The solution should also be a high performance file system that is integrated with persistent storage to read and write datasets and output files.
Which combination of AWS services meets these requirements?
The company seeks a cloud storage solution that permits the copying of on premises data to long-term persistent storage to make data available for processing by all EC2 instances. The solution should also be a high performance file system that is integrated with persistent storage to read and write datasets and output files.
Which combination of AWS services meets these requirements?
Amazon FSx for Lustre integrated with Amazon S3
Amazon FSx for Windows File Server integrated with Amazon S3
Amazon S3 Glacier integrated with Amazon Elastic Block Store (Amazon EBS)
Amazon S3 bucket with a VPC endpoint integrated with an Amazon Elastic Block Store (Amazon EBS) General Purpose SSD (gp2) volume
Define Performant Architectures
Specify Secure Applications and Architectures
A company with a single AWS account runs its internet-facing containerized web application on an Amazon Elastic Kubernetes Service (Amazon EKS) cluster. The EKS cluster is placed in a private subnet of a VPC. System administrators access the EKS cluster through a bastion host on a public subnet.
A new corporate security policy requires the company to avoid the use of bastion hosts. The company also must not allow internet connectivity to the EKS cluster.
Which solution meets these requirements MOST cost-effectively?
A new corporate security policy requires the company to avoid the use of bastion hosts. The company also must not allow internet connectivity to the EKS cluster.
Which solution meets these requirements MOST cost-effectively?
Set up an AWS Direct Connect connection.
Create a transit gateway.
Establish a VPN connection.
Use AWS Storage Gateway.
Design Cost-Optimized Architectures
A company with facilities in North America, Europe, and Asia is designing new distributed application to optimize its global supply chain and manufacturing process. The orders booked on one continent should be visible to all Regions in a second or less. The database should be able to support failover with a short Recovery Time Objective (RTO). The uptime of the application is important to ensure that manufacturing is not impacted.
What should a solutions architect recommend?
What should a solutions architect recommend?
Use Amazon RDS for MySQL with a cross-Region read replica.
Use Amazon DynamoDB global tables.
Use Amazon Aurora Global Database.
Use Amazon RDS for PostgreSQL with a cross-Region read replica.
Define Performant Architectures
Specify Secure Applications and Architectures
A database is on an Amazon RDS MySQL 5.6 Multi-AZ DB instance that experiences highly dynamic reads. Application developers notice a significant slowdown when testing read performance from a secondary AWS Region. The developers want a solution that provides less than 1 second of read replication latency.
What should the solutions architect recommend?
What should the solutions architect recommend?
Install MySQL on Amazon EC2 in the secondary Region.
Migrate the database to Amazon Aurora with cross-Region replicas.
Create another RDS for MySQL read replica in the secondary Region.
Implement Amazon ElastiCache to improve database query performance.
Define Performant Architectures
Design Cost-Optimized Architectures
Comments