SAP-C02 Exam Dumps
Amazon SAP-C02 Dumps - AWS Certified Solutions Architect - Professional PDF Sample Questions
Amazon SAP-C02 This Week Result
They can't be wrong
Score in Real Exam at Testing Centre
Questions came word by word from this dumps
If you are preparing for the AWS Certified Solutions Architect - Professional (SAP-C02) exam, In that case, you may be wondering about the best study materials and resources to help you pass the SAP-C02 exam on the first attempt. One of the most popular resources for exam preparation is AWS Certified Solutions Architect Professional dumps.
What are SAP-C02 Dumps?
SAP-C02 dumps are practice questions and answers designed to help you prepare for the SAP-C02 exam. These dumps are created by experts with extensive knowledge of the exam topics and are based on the exam questions.
Why use SAP-C02 Practice Test?
Using AWS SAP-C02 Practice test can provide you with several benefits, including:
- Practice: SAP-C02 Study Material can help you practice answering questions in a simulated exam environment, which can help you get familiar with the exam format and types of questions you may encounter.
- Time-saving: SAP-C02 Braindumps can save you time by providing you with targeted practice questions, so you can focus on areas where you need the most improvement.
- Confidence: AWS Certified Solutions Architect - Professional Practice Test can help you build your confidence by allowing you to test your knowledge and identify areas where you need to improve.
- Updated information: SAP-C02 Question Answers are regularly updated to reflect changes in the exam content and format, so you can be sure you are preparing with the most current information.
Where To Find SAP-C02 Dumps?
You can find SAP-C02 dumps from Realexamdumps.com Choosing a reputable source that provides reliable and up-to-date dumps is important.
AWS Certified Solutions Architect - Professional Exam Details:
- Exam Name: AWS Certified Solutions Architect - Professional
- Exam Code: SAP-C02
- Exam Duration: 180 minutes
- Exam Format: Multiple-choice and multiple-response questions
- Passing Score: 750 out of 1000
- Exam Fee: $300
User's FAQs:
- Who is the SAP-C02 exam for?
Answer: The SAP-C02 exam is intended for IT professionals with experience designing and deploying AWS-based applications and systems. This exam is designed for individuals seeking to advance their careers and demonstrate their expertise in AWS. - How can I prepare for the SAP-C02 exam?
Answer: You can prepare for the SAP-C02 exam using various resources, including SAP-C02 dumps, official AWS training courses, practice exams, and study groups. Choosing a method that suits your learning style and provides the most effective preparation is important. - How much does the SAP-C02 certification cost?
Answer: The cost of the SAP-C02 exam is $300. However, the cost of preparation materials and training courses may vary.
How Much Can A Candidate Earn After This Certification?
The AWS Certified Solutions Architect - Professional (SAP-C02) certification is a highly regarded credential in the IT industry. According to salary data from PayScale, the average salary for an AWS Solutions Architect is $119,000 per year in the United States. However, the salary range may vary depending on experience, location, and industry.
Overall, obtaining the SAP-C02 certification can be a valuable investment in your career, as it can demonstrate your expertise in AWS and open up opportunities for advancement and higher salaries.
Best Amazon SAP-C02 Dumps - pass your exam In First Attempt
Our SAP-C02 dumps are better than all other cheap SAP-C02 study material.
Only best way to pass your Amazon SAP-C02 is that if you will get reliable exam study materials. We ensure you that realexamdumps is one of the most authentic website for Amazon AWS Certified Professional exam question answers. Pass your SAP-C02 AWS Certified Solutions Architect - Professional with full confidence. You can get free AWS Certified Solutions Architect - Professional demo from realexamdumps. We ensure 100% your success in SAP-C02 Exam with the help of Amazon Dumps. you will feel proud to become a part of realexamdumps family.
Our success rate from past 5 year very impressive. Our customers are able to build their carrier in IT field.
45000+ Exams
Desire Exam
Exam
Related Exam
Realexamdumps Providing most updated AWS Certified Professional Question Answers. Here are a few exams:
Sample Questions
Realexamdumps Providing most updated AWS Certified Professional Question Answers. Here are a few sample questions:
Amazon SAP-C02 Sample Question 1
A company has registered 10 new domain names. The company uses the domains for online marketing. The company needs a solution that will redirect online visitors to a specific URL for each domain. All domains and target URLs are defined in a JSON document. All DNS records are managed by Amazon Route 53. A solutions architect must implement a redirect service that accepts HTTP and HTTPS requests. Which combination of steps should the solutions architect take to meet these requirements with the LEAST amount of operational effort? (Choose three.)
Options:
Answer: C, E, F Explanation: Explanation: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/lambda-edge-how-it-works-tutorial.htmm
Amazon SAP-C02 Sample Question 2
A company provides a centralized Amazon EC2 application hosted in a single shared VPC. The centralized application must be accessible from client applications running in the VPCs of other business units. The centralized application front end is configured with a Network Load Balancer (NLB) for scalability. Up to 10 business unit VPCs will need to be connected to the shared VPC. Some of the business unit VPC CIDR blocks overlap with the shared VPC. and some overlap with each other. Network connectivity to the centralized application in the shared VPC should be allowed from authorized business unit VPCs only. Which network configuration should a solutions architect use to provide connectivity from the client applications in the business unit VPCs to the centralized application in the shared VPC?
Options:
Answer: B Explanation: Explanation: Amazon Transit Gateway doesnât support routing between Amazon VPCs with overlapping CIDRs. If you attach a new Amazon VPC that has a CIDR which overlaps with an already attached Amazon VPC, Amazon Transit Gateway will not propagate the new Amazon VPC route into the Amazon Transit Gateway route table.https://docs.aws.amazon.com/elasticloadbalancing/latest/net work/load-balancer-target-groups.html#client-ip-preservatioo
Amazon SAP-C02 Sample Question 3
A solutions architect is responsible (or redesigning a legacy Java application to improve its availability, data durability, and scalability. Currently, the application runs on a single high-memory Amazon EC2 instance. It accepts HTTP requests from upstream clients, adds them to an in-memory queue, and responds with a 200 status. A separate application thread reads items from the queue, processes them, and persists the results to an Amazon RDS MySQL instance. The processing time for each item takes 90 seconds on average, most of which is spent waiting on external service calls, but the application is written to process multiple items in parallel. Traffic to this service is unpredictable. During periods of high load, items may sit in the internal queue for over an hour while the application processes the backlog. In addition, the current system has issues with availability and data loss if the single application node fails. Clients that access this service cannot be modified. They expect to receive a response to each HTTP request they send within 10 seconds before they will time out and retry the request. Which approach would improve the availability and durability of (he system while decreasing the processing latency and minimizing costs?
Options:
Answer: B Explanation: Explanation: The obvious challenges here are long workloads, scalability based on queue load, and reliability. Almost always the defacto answer to queue related workload is SQS. Since the workloads are very long (90 minutes) Lambdas cannot be used (15 mins max timeout). So, autoscaled smaller EC2 nodes that wait on external services to complete the task makes more sense. If the task fails, the message is returned to the queue and retried.
Amazon SAP-C02 Sample Question 4
A solution architect is designing an AWS account structure for a company that consists of multiple terms. All the team will work in the same AWS Region. The company needs a VPC that is connected to the on-premises network. The company expects less than 50 Mbps of total to and from the on-premises network. Which combination of steps will meet these requirements MOST cost-effectively? (Select TWO)
Options:
Answer: B, E
Amazon SAP-C02 Sample Question 5
A company uses a service to collect metadata from applications that the company hosts on premises. Consumer devices such as TVs and internet radios access the applications. Many older devices do not support certain HTTP headers and exhibit errors when these headers are present in responses. The company has configured an on-premises load balancer to remove the unsupported headers from responses sent to older devices, which the company identified by the User-Agent headers. The company wants to migrate the service to AWS, adopt serverless technologies, and retain the ability to support the older devices. The company has already migrated the applications into a set of AWS Lambda functions. Which solution will meet these requirements?
Options:
Answer: D Explanation: Explanation: https://docs.aws.amazon.com/A mazonCloudFront/latest/DeveloperGuide/lambda-examples.htmm
Amazon SAP-C02 Sample Question 6
A company hosts a web application that tuns on a group of Amazon EC2 instances that ate behind an Application Load Balancer (ALB) in a VPC. The company wants to analyze the network payloads lo reverse-engineer a sophisticated attack of the application. Which approach should the company take to achieve this goal?
Options:
Answer: B Explanation: Explanation: Traffic Mirroring allows to copy network traffic from a network interface to a destination network interface, Amazon EC2 instance or Amazon S3 bucket. The company can use Traffic Mirroring to analyze network payloads, detect sophisticated attacks and reverse-engineer the same.Reference: [Reference: AWS Certified Solutions Architect Professional Official Text Book, Chapter 9: Networking and Content Delivery, section: VPC Traffic Mirroring, , ]
Amazon SAP-C02 Sample Question 7
A large payroll company recently merged with a small staffing company. The unified company now has multiple business units, each with its own existing AWS account. A solutions architect must ensure that the company can centrally manage the billing and access policies for all the AWS accounts. The solutions architect configures AWS Organizations by sending an invitation to all member accounts of the company from a centralized management account. What should the solutions architect do next to meet these requirements?
Options:
Answer: D
Amazon SAP-C02 Sample Question 8
A solutions architect is designing an application to accept timesheet entries from employees on their mobile devices. Timesheets will be submitted weekly, with most of the submissions occurring on Friday. The data must be stored in a format that allows payroll administrators to run monthly reports. The infrastructure must be highly available and scale to match the rate of incoming data and reporting requests. Which combination of steps meets these requirements while minimizing operational overhead? (Select TWO.)
Options:
Answer: A, F
Amazon SAP-C02 Sample Question 9
A public retail web application uses an Application Load Balancer (ALB) in front of Amazon EC2 instances running across multiple Availability Zones (AZs) in a Region backed by an Amazon RDS MySQL Multi-AZ deployment. Target group health checks are configured to use HTTP and pointed at the product catalogue page. Auto Scaling is configured to maintain the web fleet size based on the ALB health check. Recently, the application experienced an outage. Auto Scaling continuously replaced the instances during the outage. A subsequent investigation determined that the web server metrics were within the normal range, but the database tier was experiencing high load, resulting in severely elevated query response times. Which of the following changes together would remediate these issues while improving monitoring capabilities for the availability and functionality of the entire application stack for future growth? (Select TWO.)
Options:
Answer: B, E Explanation: Explanation: https://docs.aws.amazon.com/Route53/latest/D eveloperGuide/health-checks-types.htmm
Amazon SAP-C02 Sample Question 10
A company plans to migrate to AWS. A solutions architect uses AWS Application Discovery Service over the fleet and discovers that there is an Oracle data warehouse and several PostgreSQL databases. Which combination of migration patterns will reduce licensing costs and operational overhead? (Select TWO.)
Options:
Answer: B, D Explanation: Explanation: https://aws.amazon.com/getting-started/hands-on/migrate-oracle-to-amazon-red shift/https://docs.aws.amazon.com/ prescriptive-guidance/latest/patterns/migrate-an-on-premises-postgresql-database-to-amazon-rds-for-postgresql.htmm
Amazon SAP-C02 Sample Question 11
A finance company hosts a data lake in Amazon S3. The company receives financial data records over SFTP each night from several third parties. The company runs its own SFTP server on an Amazon EC2 instance in a public subnet of a VPC. After the files ate uploaded, they are moved to the data lake by a cron job that runs on the same instance. The SFTP server is reachable on DNS sftp.examWe.com through the use of Amazon Route 53. What should a solutions architect do to improve the reliability and scalability of the SFTP solution?
Options:
Answer: B Explanation: Explanation: https://aws.amazon.com/aws-transfer-family/faqs/ https://docs.aws.amazon.com/transfer/latest/userguide/what-is-aws-transfer-family.html https://aws.amazon.com/about-aws/whats-new/2018/11/aws-transfer-for-sftp-fully-managed-sftp-for-s3/?nc1=h_lt
Amazon SAP-C02 Sample Question 12
A company wants to control its cost of Amazon Athena usage The company has allocated a specific monthly budget for Athena usage A solutions architect must design a solution that will prevent the company from exceeding the budgeted amount Which solution will moot these requirements?
Options:
Answer: E
Amazon SAP-C02 Sample Question 13
A development team has created a new flight tracker application that provides near-real-time data to users. The application has a front end that consists of an Application Load Balancer (ALB) in front of two large Amazon EC2 instances in a single Availability Zone. Data is stored in a single Amazon RDS MySQL DB instance. An Amazon Route 53 DNS record points to the ALB. Management wants the development team to improve the solution to achieve maximum reliability with the least amount of operational overhead. Which set of actions should the team take?
Options:
Answer: D Explanation: Explanation: Multi AZ ASG + ALB + Aurora = Less over head and automatic scalinh
Amazon SAP-C02 Sample Question 14
A company is running a containerized application in the AWS Cloud. The application is running by using Amazon Elastic Container Service (Amazon ECS) on a set Amazon EC2 instances. The EC2 instances run in an Auto Scaling group. The company uses Amazon Elastic Container Registry (Amazon ECRJ to store its container images When a new image version is uploaded, the new image version receives a unique tag The company needs a solution that inspects new image versions for common vulnerabilities and exposures The solution must automatically delete new image tags that have Critical or High severity findings The solution also must notify the development team when such a deletion occurs Which solution meets these requirements?
Options:
Answer: D
Amazon SAP-C02 Sample Question 15
A company needs to run a software package that has a license that must be run on the same physical host for the duration of Its use. The software package is only going to be used for 90 days The company requires patching and restarting of all instances every 30 days How can these requirements be met using AWS?
Options:
Answer: B Explanation: Explanation: Host Affinity is configured at the instance level. It establishes a launch relationship between an instance and a Dedicated Host. (This set which host the instance can run on) Auto-placement allows you to manage whether instances that you launch are launched onto a specific host, or onto any available host that has matching configurations. Auto-placement must be configured at the host level. (This sets which instance the host can run.) When affinity is set to Host, an instance launched onto a specific host always restarts on the same host if stopped. This applies to both targeted and untargeted launches. https://docs.aws.amazon.com/AWSEC2/latest/User Guide/how-dedicated-hosts-work.htmlWhen affinity is set to Off, and you stop and restart the instance, it can be restarted on any available host. However, it tries to launch back onto the last Dedicated Host on which it ran (on a best-effort basis).
Amazon SAP-C02 Sample Question 16
A company is moving a business-critical multi-tier application to AWS. The architecture consists of a desktop client application and server infrastructure. The server infrastructure resides in an on-premises data center that frequently fails to maintain the application uptime SLA of 99.95%. A solutions architect must re-architect the application to ensure that it can meet or exceed the SLA. The application contains a PostgreSQL database running on a single virtual machine. The business logic and presentation layers are load balanced between multiple virtual machines. Remote users complain about slow load times while using this latency-sensitive application. Which of the following will meet the availability requirements with little change to the application while improving user experience and minimizing costs?
Options:
Answer: B Explanation: Explanation: Aurora would improve availability that can replicate to multiple AZ (6 copies). Auto scaling would improve the performance together with a ALB. AppStream is like Citrix that deliver hosted Apps to users.
Amazon SAP-C02 Sample Question 17
A large company with hundreds of AWS accounts has a newly established centralized internal process for purchasing new or modifying existing Reserved Instances. This process requires all business units that want to purchase or modify Reserved Instances to submit requests to a dedicated team for procurement or execution. Previously, business units would directly purchase or modify Reserved Instances in their own respective AWS accounts autonomously. Which combination of steps should be taken to proactively enforce the new process in the MOST secure way possible? (Select TWO.)
Options:
Answer: A, D Explanation: Explanation: https://docs.aws.amazon.com/organizations/latest/APIReference/API_EnableAllFeatures.html https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp-strategies.htmlA: By ensuring all AWS accounts are part of an organization in AWS Organizations, it allows for centralized management and control of the accounts. This can help enforce the new purchasing process by giving a dedicated team the ability to manage and enforce policies across all accounts. D: By creating an SCP (Service Control Policy) that denies access to the ec2:PurchaseReservedInstancesOffering and ec2:ModifyReservedInstances actions, it enforces the new centralized purchasing process. Attaching the SCP to each OU (organizational unit) within the organization ensures that all business units are adhering to the new process.
Amazon SAP-C02 Sample Question 18
A company is running an application distributed over several Amazon EC2 instances in an Auto Seating group behind an Application Load Balancer The security team requires that all application access attempts be made available for analysis information about the client IP address, connection type, and user agent must be included Which solution will meet these requirements?
Options:
Answer: C Explanation: Explanation: https://docs.aws.amazon.com/elastic loadbalancing/latest/application/load-balancer-access-logs.htmlhttps://docs.aws.amazon.com/vpc/latest/mirroring/what-is-tr affic-mirroring.htmm
Amazon SAP-C02 Sample Question 19
A company uses an AWS CodeCommit repository The company must store a backup copy of the data that is in the repository in a second AWS Region Which solution will meet these requirements?
Options:
Answer: B Explanation: Explanation: AWS Backup is a fully managed service that makes it easy to centralize and automate the creation, retention, and restoration of backups across AWS services. It provides a way to schedule automatic backups for CodeCommit repositories on an hourly basis. Additionally, it also supports cross-Region replication, which allows you to copy the backups to a second Region for disaster recovery.By using AWS Backup, the company can set up an automatic and regular backup schedule for the CodeCommit repository, ensuring that the data is regularly backed up and stored in a second Region. This can provide a way to recover quickly from any disaster event that might occur.Reference: [Reference:, AWS Backup documentation: https://aws.amazon.com/backup/, AWS Backup for AWS CodeCommit documentation: https://aws.amazon.com/about-aws/whats-new/2020/07/aws-backup-now-supports-aws-codecommit-repositories/, , , ]
Amazon SAP-C02 Sample Question 20
A solutions architect is evaluating the reliability of a recently migrated application running on AWS. The front end is hosted on Amazon S3 and accelerated by Amazon CloudFront. The application layer is running in a stateless Docker container on an Amazon EC2 On-Demand Instance with an Elastic IP address. The storage layer is a MongoDB database running on an EC2 Reserved Instance in the same Availability Zone as the application layer. Which combination of steps should the solutions architect take to eliminate single points of failure with minimal application code changes? (Select TWO.)
Options:
Answer: B, D Explanation: Explanation: https://aws.amazon.com/documentdb/?nc1=h_ lshttps://aws.amazon.com/blogs/containers/using-alb-ingress-controller-with-amazon-eks-on-fargate/
Amazon SAP-C02 Sample Question 21
A company has implemented a global multiplayer gaming platform The platform requires gaming clients to have reliable, low-latency access to the server infrastructure that is hosted on a fleet of Amazon EC2 instances in a single AWS Region The gaming clients use a custom TCP protocol to connect to the server infrastructure The application architecture requires client IP addresses to be available to the server software Which solution meets these requirements?
Options:
Answer: C
Amazon SAP-C02 Sample Question 22
A retail company is running an application that stores invoice files in an Amazon S3 bucket and metadata about the files in an Amazon DynamoDB table. The application software runs in both us-east-1 and eu-west-1 The S3 bucket and DynamoDB table are in us-east-1. The company wants to protect itself from data corruption and loss of connectivity to either Region Which option meets these requirements?
Options:
Answer: E
Amazon SAP-C02 Sample Question 23
A company runs a new application as a static website in Amazon S3. The company has deployed the application to a production AWS account and uses Amazon CloudFront to deliver the website. The website calls an Amazon API Gateway REST API. An AWS Lambda function backs each API method. The company wants to create a CSV report every 2Â weeks to show each API Lambda functionâs recommended configured memory, recommended cost, and the price difference between current configurations and the recommendations. The company will store the reports in an S3 bucket. Which solution will meet these requirements with the LEAST development time?
Options:
Answer: B Explanation: Explanation: https://docs.aws.amazon.com/compute-optimizer/latest/APIReference/API_ExportLambdaFunctionRecommendations.htmm
Amazon SAP-C02 Sample Question 24
A company is planning to store a large number of archived documents and make the documents available to employees through the corporate intranet. Employees will access the system by connecting through a client VPN service that is attached to a VPC. The data must not be accessible to the public. The documents that the company is storing are copies of data that is held on physical media elsewhere. The number of requests will be low. Availability and speed of retrieval are not concerns of the company. Which solution will meet these requirements at the LOWEST cost?
Options:
Answer: D Explanation: Explanation: The S3 Glacier Deep Archive storage class is the lowest-cost storage class offered by Amazon S3, and it is designed for archival data that is accessed infrequently and for which retrieval time of several hours is acceptable. S3 interface endpoint for the VPC ensures that access to the bucket is only from resources within the VPC and this will meet the requirement of not being accessible to the public. And also, S3 bucket can be configured for website hosting, and this will allow employees to access the documents through the corporate intranet. Using an EC2 instance and a file system or block store would be more expensive and unnecessary because the number of requests to the data will be low and availability and speed of retrieval are not concerns. Additionally, using Amazon S3 bucket will provide durability, scalability and availability of data.
Amazon SAP-C02 Sample Question 25
A solutions architect must provide a secure way for a team of cloud engineers to use the AWS CLI to upload objects into an Amazon S3 bucket Each cloud engineer has an IAM user. IAM access keys and a virtual multi-factor authentication (MFA) device The IAM users for the cloud engineers are in a group that is named S3-access The cloud engineers must use MFA to perform any actions in Amazon S3 Which solution will meet these requirements?
Options:
Answer: D Explanation: Explanation: This option meets the requirement by attaching a policy to the S3-access group to deny all S3 actions unless MFA is present. This ensures that the cloud engineers must use their MFA device when performing any actions in Amazon S3. Additionally, it also requests temporary credentials from AWS STS, which are short-lived credentials that are generated on-demand, and attaches them in a profile that Amazon S3 will reference when the user performs actions in Amazon S3, this will provide an extra layer of security and protection against any misuse of the access keys. Reference : https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_request.html You could use AWS CLI with the temporary credentials to call Amazon S3 and perform the necessary actions. Reference: https://aws.amazon.com/cli/
Amazon SAP-C02 Sample Question 26
A company wants to migrate its workloads from on premises to AWS. The workloads run on Linux and Windows. The company has a large on-premises intra structure that consists of physical machines and VMs that host numerous applications. The company must capture details about the system configuration. system performance. running processure and network coi.net lions of its o. -premises ,on boards. The company also must divide the on-premises applications into groups for AWS migrations. The company needs recommendations for Amazon EC2 instance types so that the company can run its workloads on AWS in the most cost-effective manner. Which combination of steps should a solutions architect take to meet these requirements? (Select THREE.)
Options:
Answer: A, B, D Explanation: Explanation: A. The AWS Application Discovery Service (ADF) is a service that helps you plan your migration to AWS by identifying the servers and applications running in your on-premises data centers. By installing the ADF agent on your physical machines and VMs, you can collect information about the system configuration, performance metrics, and running processes of your workloads.B. The AWS Systems Manager Agent (SSM) is a lightweight agent that you can install on your on-premises servers and VMs to collect operational data and automate management tasks such as software inventory and patch management.D. AWS Migration Hub is a service that provides a central location to track the status of your migration and group servers into applications for migration. This can help you organize your migration effort and ensure that all the necessary steps are taken to migrate each application.Reference: [Reference:, AWS Application Discovery Service: https://aws.amazon.com/application-discovery/, AWS Systems Manager: https://aws.amazon.com/systems-manager/, AWS Migration Hub: https://aws.amazon.com/migration-hub/, , ]
Amazon SAP-C02 Sample Question 27
A company is running an application in the AWS Cloud. The application collects and stores a large amount of unstructured data in an Amazon S3 bucket. The S3 bucket contains several terabytes of data and uses the S3 Standard storage class. The data increases in size by several gigabytes every day. The company needs to query and analyze the data. The company does not access data that is more than 1 year old. However, the company must retain all the data indefinitely for compliance reasons. Which solution will meet these requirements MOST cost-effectively?
Options:
Answer: C Explanation: Explanation: Generally, unstructured data should be converted structured data before querying them. AWS Glue can do that. https://docs.aws.amazon.com/glue/latest/dg/schema-relationalize.html https://docs.aws.amazon.com/athena/latest/ug/glue-athena.htmm
Amazon SAP-C02 Sample Question 28
A company is creating a sequel for a popular online game. A large number of users from all over the world will play the game within the first week after launch. Currently, the game consists of the following components deployed in a single AWS Region: ⢠Amazon S3 bucket that stores game assets ⢠Amazon DynamoDB table that stores player scores A solutions architect needs to design a multi-Region solution that will reduce latency improve reliability, and require the least effort to implement What should the solutions architect do to meet these requirements?
Options:
Answer: C Explanation: Explanation: By creating another S3 bucket in a new Region, and configuring S3 Cross-Region Replication between the buckets, the game assets will be replicated to the new Region, reducing latency for users accessing the assets from that region. Additionally, by creating an Amazon CloudFront distribution and configuring origin failover with two origins accessing the S3 buckets in each Region, it ensures that the game assets will be served to users even if one of the regions becomes unavailable.
Amazon SAP-C02 Sample Question 29
A company plans to migrate a three-tiered web application from an on-premises data center to AWS The company developed the Ui by using server-side JavaScript libraries The business logic and API tier uses a Python-based web framework The data tier runs on a MySQL database The company custom built the application to meet business requirements The company does not want to re-architect the application The company needs a solution to replatform the application to AWS with the least possible amount of development The solution needs to be highly available and must reduce operational overhead Which solution will meet these requirements?
Options:
Answer: A Explanation: Explanation: This solution utilizes Amazon S3 and CloudFront to deploy the UI as a static website, which can be done with minimal development effort. The business logic and API tier can be containerized in a Docker image and stored in Amazon Elastic Container Registry (ECR) and run on Amazon Elastic Container Service (ECS) with the Fargate launch type, which allows the application to be highly available with minimal operational overhead. The data layer can be deployed on an Amazon Aurora MySQL DB cluster which is a fully managed relational database service.Amazon Aurora provides high availability and performance for the data layer without the need for managing the underlying infrastructure.
Amazon SAP-C02 Sample Question 30
A company is using AWS Organizations lo manage multiple AWS accounts For security purposes, the company requires the creation of an Amazon Simple Notification Service (Amazon SNS) topic that enables integration with a third-party alerting system in all the Organizations member accounts A solutions architect used an AWS CloudFormation template to create the SNS topic and stack sets to automate the deployment of CloudFormation stacks Trusted access has been enabled in Organizations What should the solutions architect do to deploy the CloudFormation StackSets in all AWS accounts?
Options:
Answer: C Explanation: Explanation: https://aws.amazon.com/blogs/aws/use-cloudformation-stacksets-to-provision-resources-across-multiple-aws-accounts-a nd-regions/
Amazon SAP-C02 Sample Question 31
An ecommerce company runs its infrastructure on AWS. The company exposes its APIs to its web and mobile clients through an Application Load Balancer (ALB) in front of an Amazon Elastic Kubernetes Service (Amazon EKS) cluster. The EKS cluster runs thousands of pods that provide the APIs. After extending delivery to a new continent, the company adds an Amazon CloudFront distribution and sets the ALB as the origin. The company also adds AWS WAF to its architecture. After implementation of the new architecture, API calls are significantly. However, there is a sudden increase in HTTP status code 504 (Gateway Timeout) errors and HTTP status code 502 (Bad Gateway) errors. This increase in errors seems to be for a specific domain. Which factors could be a cause of these errors? (Select TWO.)
Options:
Answer: A, E Explanation: Explanation: A is a possible cause, because AWS WAF is designed to block suspicious requests, and if it is configured incorrectly or is too aggressive in blocking requests, it can cause these errors.E is also a likely cause, as some pods may be taking more than 30 seconds to answer API calls, causing them to time out. This can lead to the 504 and 502 errors if the timeout period is exceeded.
Amazon SAP-C02 Sample Question 32
A company has multiple business units Each business unit has its own AWS account and runs a single website within that account. The company also has a single logging account. Logs from each business unit website are aggregated into a single Amazon S3 bucket in the logging account. The S3 bucket policy provides each business unit with access to write data into the bucket and requires data to be encrypted. The company needs to encrypt logs uploaded into the bucket using a Single AWS Key Management Service {AWS KMS) CMK The CMK that protects the data must be rotated once every 365 days Which strategy is the MOST operationally efficient for the company to use to meet these requirements?
Options:
Answer: B
Amazon SAP-C02 Sample Question 33
A company is configuring connectivity to a multi-account AWS environment to support application workloads fiat serve users in a single geographic region. The workloads depend on a highly available, on-premises legacy system deployed across two locations It is critical for the AWS workloads to manias connectivity to the legacy system, and a minimum of 5 Gbps of bandwidth is required All application workloads within AWS must have connectivity with one another. Which solution will meet these requirements?
Options:
Answer: C
Amazon SAP-C02 Sample Question 34
A company has more than 10.000 sensors that send data to an on-premises Apache Kafka server by using the Message Queuing Telemetry Transport (MQTT) protocol . The on-premises Kafka server transforms the data and then stores the results as objects in an Amazon S3 bucket Recently, the Kafka server crashed. The company lost sensor data while the server was being restored A solutions architect must create a new design on AWS that is highly available and scalable to prevent a similar occurrence Which solution will meet these requirements?
Options:
Answer: C Explanation: Explanation: Because MSK has Maximum number of client connections 1000 per second and the company has 10,000 sensors, the MSK likely will not be able to handle all connections, so have to select C as the answer https://docs.aws.amazon.com/msk/latest/developerguide/limits.htmm
Amazon SAP-C02 Sample Question 35
A company is migrating an application to the AWS Cloud. The application runs in an on-premises data center and writes thousands of images into a mounted NFS file system each night After the company migrates the application, the company will host the application on an Amazon EC2 instance with a mounted Amazon Elastic File System (Amazon EFS) file system. The company has established an AWS Direct Connect connection to AWS Before the migration cutover. a solutions architect must build a process that will replicate the newly created on-premises images to the EFS file system What is the MOST operationally efficient way to replicate the images?
Options:
Answer: D Explanation: Explanation: https://aws.amazon.com/blogs/storage/transferring-files-from-on-premises-to-aws-and-back-without-leaving-your-vpc-using-aws-datasync/
Amazon SAP-C02 Sample Question 36
A company that develops consumer electronics with offices in Europe and Asia has 60 TB of software images stored on premises in Europe. The company wants to transfer the images to an Amazon S3 bucket in the ap-northeast-1 Region. New software images are created daily and must be encrypted in transit. The company needs a solution that does not require custom development to automatically transfer all existing and new software images to Amazon S3. What is the next step in the transfer process?
Options:
Answer: B
Amazon SAP-C02 Sample Question 37
A company has developed APIs that use Amazon API Gateway with Regional endpoints. The APIs call AWS Lambda functions that use API Gateway authentication mechanisms. After a design review, a solutions architect identifies a set of APIs that do not require public access. The solutions architect must design a solution to make the set of APIs accessible only from a VPC. All APIs need to be called with an authenticated user. Which solution will meet these requirements with the LEAST amount of effort?
Options:
Answer: C Explanation: Explanation: This solution requires the least amount of effort as it only requires to update the API endpoint to private in API Gateway and create an interface VPC endpoint. Then create a resource policy and attach it to the API. This will make the API only accessible from the VPC and still keep the authentication mechanism intact. Reference:https://aws.amazon.com/premiumsupport/knowledge-center/private-api-gateway-vpc-endpoint/https://aws.amazon.com/api-gateway/features/
Amazon SAP-C02 Sample Question 38
A company has an application that sells tickets online and experiences bursts of demand every 7 days. The application has a stateless presentation layer running on Amazon EC2. an Oracle database to store unstructured data catalog information, and a backend API layer. The front-end layer uses an Elastic Load Balancer to distribute the load across nine On-Demand Instances over three Availability Zones (AZs). The Oracle database is running on a single EC2 instance. The company is experiencing performance issues when running more than two concurrent campaigns. A solutions architect must design a solution that meets the following requirements: ⢠Address scalability issues. ⢠Increase the level of concurrency. ⢠Eliminate licensing costs. ⢠Improve reliability. Which set of steps should the solutions architect take?
Options:
Answer: C Explanation: Explanation: Combination of On-Demand and Spot Instances + DynamoDB.