Amazon (SAA-C03) Exam Questions And Answers page 64
A solutions architect must migrate a Windows internet information Services (IIS) web application to AWS. The application currently relies on a file share hosted in the user s on-premises network-attached storage (NAS). The solutions architected has proposed migrating the IIS web servers to Amazon EC2 instances in multiple Availability Zones that are connected to the storage solution, and configuring an Elastic Load Balancer attached to the instances.
Which replacement to the on-premises file share is MOST resilient and durable?
Which replacement to the on-premises file share is MOST resilient and durable?
Migrate the file Share to AWS Storage Gateway
Migrate the file Share to Amazon FSx for Windows File Server.
Migrate the file share to Amazon Elastic File System (Amazon EFS)
Design Resilient Architectures
A solutions architect must provide a fully managed replacement for an on-premises solution that allows employees and partners to exchange files. The solution must be easily accessible to employees connecting from on-premises systems, remote employees, and external partners.
Which solution meets these requirements?
Which solution meets these requirements?
Use AWS Transfer for SFTP to transfer files into and out of Amazon S3.
Use AWS Snowball Edge for local storage and large-scale data transfers.
Use Amazon FSx to store and transfer files to make them available remotely.
Use AWS Storage Gateway to create a volume gateway to store and transfer files to Amazon S3.
Define Performant Architectures
Design Cost-Optimized Architectures
A solutions architect must provide an automated solution for a company s compliance policy that states security groups cannot include a rule that allows SSH from 0.0.0.0/0. The company needs to be notified if there is any breach in the policy. A solution is needed as soon as possible.
What should the solutions architect do to meet these requirements with the LEAST operational overhead?
What should the solutions architect do to meet these requirements with the LEAST operational overhead?
Write an AWS Lambda script that monitors security groups for SSH being open to 0.0.0.0/0 addresses and creates a notification every time it finds one.
Enable the restricted-ssh AWS Config managed rule and generate an Amazon Simple Notification Service (Amazon SNS) notification when a noncompliant rule is created.
Create an IAM role with permissions to globally open security groups and network ACLs. Create an Amazon Simple Notification Service (Amazon SNS) topic to generate a notification every time the role is assumed by a user.
Configure a service control policy (SCP) that prevents non-administrative users from creating or editing security groups. Create a notification in the ticketing system when a user requests a rule that needs administrator permissions.
Specify Secure Applications and Architectures
A solutions architect needs to design a low-latency solution for a static single-page application accessed by users utilizing a custom domain name. The solution must be serverless, encrypted in transit, and cost-effective.
Which combination of AWS services and features should the solutions architect use? (Choose two.)
Which combination of AWS services and features should the solutions architect use? (Choose two.)
Amazon S3
Amazon EC2
AWS Fargate
Amazon CloudFront
Elastic Load Balancer
Define Performant Architectures
Design Cost-Optimized Architectures
A solutions architect needs to design a managed storage solution for a company s application that includes high-performance machine learning functionality. This application runs on AWS Fargate and the connected storage needs to have concurrent access to files and deliver high performance.
Which storage option should the solutions architect recommend?
Which storage option should the solutions architect recommend?
Create an Amazon S3 bucket for the application and establish an IAM role for Fargate to communicate with Amazon S3.
Create an Amazon FSx for Lustre file share and establish an IAM role that allows Fargate to communicate with FSx for Lustre.
Create an Amazon Elastic File System (Amazon EFS) file share and establish an IAM role that allows Fargate to communicate with Amazon Elastic File System (Amazon EFS).
Create an Amazon Elastic Block Store (Amazon EBS) volume for the application and establish an IAM role that allows Fargate to communicate with Amazon Elastic Block Store (Amazon EBS).
Design Resilient Architectures
Define Performant Architectures
A solutions architect needs to design a managed storage solution for a company s application that includes high-performance machine learning. This application runs on AWS Fargate, and the connected storage needs to have concurrent access to files and deliver high performance.
Which storage option should the solutions architect recommend?
Which storage option should the solutions architect recommend?
Create an Amazon S3 bucket for the application and establish an IAM role for Fargate to communicate with Amazon S3.
Create an Amazon FSx for Lustre file share and establish an IAM role that allows Fargate to communicate with FSx for Lustre.
Create an Amazon Elastic File System (Amazon EFS) file share and establish an IAM role that allows Fargate to communicate with Amazon EFS.
Create an Amazon Elastic Block Store (Amazon EBS) volume for the application and establish an IAM role that allows Fargate to communicate with Amazon EBS.
Design Resilient Architectures
Define Performant Architectures
A solutions architect needs to design a managed storage solution for a company s application that includes high-performance machine learning. This application runs on AWS Fargate, and the connected storage needs to have concurrent access to files and deliver high performance.
Which storage option should the solutions architect recommend?
Which storage option should the solutions architect recommend?
Create an Amazon S3 bucket for the application and establish an IAM role for Fargate to communicate with Amazon S3.
Create an Amazon FSx for Lustre file share and establish an IAM role that allows Fargate to communicate with FSx for Lustre.
Create an Amazon Elastic File System (Amazon EFS) file share and establish an IAM role that allows Fargate to communicate with Amazon Elastic File System (Amazon EFS).
Create an Amazon Elastic Block Store (Amazon EBS) volume for the application and establish an IAM role that allows Fargate to communicate with Amazon Elastic Block Store (Amazon EBS).
Design Resilient Architectures
Define Performant Architectures
A solutions architect needs to design a network that will allow multiple Amazon EC2 instances to access a common data source used for mission-critical data that can be accessed by all the EC2 instances simultaneously. The solution must be highly scalable, easy to implement and support the NFS protocol.
Which solution meets these requirements?
Which solution meets these requirements?
Create an Amazon Elastic File System (Amazon EFS) file system. Configure a mount target in each Availability Zone. Attach each instance to the appropriate mount target.
Create an additional EC2 instance and configure it as a file server. Create a security group that allows communication between the Instances and apply that to the additional instance.
Create an Amazon S3 bucket with the appropriate permissions. Create a role in AWS IAM that grants the correct permissions to the S3 bucket. Attach the role to the EC2 Instances that need access to the data.
Create an Amazon Elastic Block Store (Amazon EBS) volume with the appropriate permissions. Create a role in AWS IAM that grants the correct permissions to the EBS volume. Attach the role to the EC2 instances that need access to the data.
Design Resilient Architectures
Define Performant Architectures
A solutions architect needs to design a network that will allow multiple Amazon EC2 instances to access a common data source used for mission-critical data that can be accessed by all the EC2 instances simultaneously. The solution must be highly scalable, easy to implement and support the NFS protocol.
Which solution meets these requirements?
Which solution meets these requirements?
Create an Amazon EFS file system. Configure a mount target in each Availability Zone. Attach each instance to the appropriate mount target.
Create an additional EC2 instance and configure it as a file server. Create a security group that allows communication between the Instances and apply that to the additional instance.
Create an Amazon S3 bucket with the appropriate permissions. Create a role in AWS IAM that grants the correct permissions to the S3 bucket. Attach the role to the EC2 Instances that need access to the data.
Create an Amazon EBS volume with the appropriate permissions. Create a role in AWS IAM that grants the correct permissions to the EBS volume. Attach the role to the EC2 instances that need access to the data.
Design Resilient Architectures
Define Performant Architectures
A solutions architect needs to design a resilient solution for Windows users home directories. The solution must provide fault tolerance, file-level backup and recovery, and access control, based upon the company s Active Directory.
Which storage solution meets these requirements?
Which storage solution meets these requirements?
Configure Amazon S3 to store the users home directories. Join Amazon S3 to Active Directory.
Configure a Multi-AZ file system with Amazon FSx for Windows File Server. Join Amazon FSx to Active Directory.
Configure Amazon Elastic File System (Amazon EFS) for the users home directories. Configure AWS Single Sign-On with Active Directory.
Configure Amazon Elastic Block Store (Amazon EFS) to store the users home directories. Configure AWS Single Sign-On with Active Directory.
Design Resilient Architectures
Comments