Exam Logo

Amazon (SAP-C01) Exam Questions And Answers page 41

An organization has hosted an application on the EC2 instances. There will be multiple users connecting to the instance for setup and configuration of application. The organization is planning to implement certain security best practices.

Which of the below mentioned pointers will not help the organization achieve better security arrangement?
Implementing cost control strategies Designing for security and compliance
An organization has setup RDS with VPC. The organization wants RDS to be accessible from the internet. Which of the below mentioned configurations is not required in this scenario?
Designing highly available, cost-efficient, fault-tolerant, scalable systems Designing for security and compliance
An organization has two Amazon EC2 instances:
• The first is running an ordering application and an inventory application.
• The second is running a queuing system.

During certain times of the year, several thousand orders are placed per second. Some orders were lost when the queuing system was down. Also, the organization s inventory application has the incorrect quantity of products because some orders were processed twice.

What should be done to ensure that the applications can handle the increasing number of orders?
Designing highly available, cost-efficient, fault-tolerant, scalable systems Designing for security and compliance
An organization hosts an app on EC2 instances which multiple developers need access to in order to perform updates.
The organization plans to implement some security best practices related to instance access.

Which one of the following recommendations will not help improve its security in this way?
Designing highly available, cost-efficient, fault-tolerant, scalable systems Designing for security and compliance
An organization is creating a VPC for their application hosting. The organization has created two private subnets in the same AZ and created one subnet in a separate zone.
The organization wants to make a HA system with the internal ELB.

Which of these statements is true with respect to an internal ELB in this scenario?
Designing highly available, cost-efficient, fault-tolerant, scalable systems Designing for security and compliance
An organization is having an application which can start and stop an EC2 instance as per schedule. The organization needs the MAC address of the instance to be registered with its software. The instance is launched in EC2-CLASSIC.

How can the organization update the MAC registration every time an instance is booted?
Designing highly available, cost-efficient, fault-tolerant, scalable systems Designing for security and compliance
An organization is having a VPC for the HR department, and another VPC for the Admin department. The HR department requires access to all the instances running in the Admin VPC while the Admin department requires access to all the resources in the HR department.

How can the organization setup this scenario?
Designing enterprise-wide scalable operations on AWS Designing for security and compliance
An organization is hosting a scalable web application using AWS. The organization has configured ELB and Auto Scaling to make the application scalable.

Which of the below mentioned statements is not required to be followed for ELB when the application is planning to host a web application on VPC?
Designing highly available, cost-efficient, fault-tolerant, scalable systems
An organization is making software for the CIA in USA. CIA agreed to host the application on AWS but in a secure environment. The organization is thinking of hosting the application on the AWS GovCloud region. Which of the below mentioned difference is not correct when the organization is hosting on the AWS GovCloud in comparison with the AWS standard region?
Migrating complex, multi-tier applications on AWS Designing for security and compliance
An organization is planning to create a secure scalable application with AWS VPC and ELB. The organization has two instances already running and each instance has an ENI attached to it in addition to a primary network interface. The primary network interface and additional ENI both have an elastic IP attached to it.
If those instances are registered with ELB and the organization wants ELB to send data to a particular EIP of the instance, how can they achieve this?
Designing enterprise-wide scalable operations on AWS Designing for security and compliance