AWS Certified Solutions Architect Professional (SAP C02)

The AWS Certified Solutions Architect Professional (SAP C02) were last updated on today.

Viewing page 1 out of 270 pages.
Viewing questions 1-5 out of 1,350 questions

Disclaimers:

- ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.and Azure
- Trademarks, certification & product names are used for reference only and belong to Amazon.and Azure

Topic 1 - Exam A

Question #1 Topic 1

A company has an asynchronous HTTP application that is hosted as an AWS Lambda function. A public Amazon API Gateway endpoint invokes the Lambda function. The Lambda function and the API Gateway endpoint reside in the us-east-1 Region. A solutions architect needs to redesign the application to support failover to another AWS Region. Which solution will meet these requirements?

A Create an API Gateway endpoint in the us-west-2 Region to direct traffic to the Lambda function in us-east-1. Configure Amazon Route 53 to use a failover routing policy to route traffic for the two API Gateway endpoints.
B Create an Amazon Simple Queue Service (Amazon SQS) queue. Configure API Gateway to direct traffic to the SQS queue instead of to the Lambda function. Configure the Lambda function to pull messages from the queue for processing.
C Deploy the Lambda function to the us-west-2 Region. Create an API Gateway endpoint in us-west-2 10 direct traffic to the Lambda function in us-west-2. Configure AWS Global Accelerator and an Application Load Balancer to manage traffic across the two API Gateway endpoints.
D Deploy the Lambda function and an API Gateway endpoint to the us-west-2 Region. Configure Amazon Route 53 to use a failover routing policy to route traffic for the two API Gateway endpoints.

Suggested Answer: D
NOTE: Answer is :D
Explanation :To support failover to another AWS Region, a new Lambda function and a new API Gateway endpoint should be deployed to an alternate Region (us-west-2 in this case). Configuring Amazon Route 53 with a failover routing policy helps to route traffic amongst these two API Gateway endpoints, ensuring high availability and redundancy. Other options fail to provide the required inter-region redundancy.

Question #2 Topic 1

A retail company has structured its AWS accounts to be part of an organization in AWS Organizations. The company has set up consolidated billing and has mapped its departments to the following OUs: Finance, Sales, Human Resources (HR), Marketing, and Operations. Each OU has multiple AWS accounts, one for each environment within a department. These environments are development, test, pre-production, and production. The HR department is releasing a new system that will launch in 3 months. In preparation, the HR department has purchased several Reserved Instances (RIs) in its production AWS account. The HR department will install the new application on this account. The HR department wants to make sure that other departments cannot share the RI discounts. Which solution will meet these requirements?

A In the AWS Billing and Cost Management console for the HR department's production account turn off RI sharing.
B Remove the HR department's production AWS account from the organization. Add the account 10 the consolidating billing configuration only.
C In the AWS Billing and Cost Management console. use the organization’s management account 10 turn off RI Sharing for the HR departments production AWS account.
D Create an SCP in the organization to restrict access to the RIs. Apply the SCP to the OUs of the other departments.

Suggested Answer: A
NOTE: Answer is :A
Explanation :In AWS, you can turn off Reserved Instance (RI) sharing in the Billing and Cost Management console of the account that purchased the RIs, which in this case is the HR department's production account. So the best approach would be to turn off RI sharing in the AWS Billing and Cost Management console for the HR department's production account. The other options either remove the account from the organization or restrict access which does not directly address the requirement.

Question #3 Topic 1

A company has an on-premises monitoring solution using a PostgreSQL database for persistence of events. The database is unable to scale due to heavy ingestion and it frequently runs out of storage. The company wants to create a hybrid solution and has already set up a VPN connection between its network and AWS. The solution should include the following attributes: ? Managed AWS services to minimize operational complexity. ? A buffer that automatically scales to match the throughput of data and requires no ongoing administration. ? A visualization tool to create dashboards to observe events in near-real time. ? Support for semi-structured JSON data and dynamic schemas. Which combination of components will enable the company to create a monitoring solution that will satisfy these requirements? (Choose two.)

A Use Amazon Kinesis Data Firehose to buffer events. Create an AWS Lambda function to process and transform events.
B Create an Amazon Kinesis data stream to buffer events. Create an AWS Lambda function to process and transform events.
C Configure an Amazon Aurora PostgreSQL DB cluster to receive events. Use Amazon QuickSight to read from the database and create near-real-time visualizations and dashboards.
D Configure Amazon Elasticsearch Service (Amazon ES) to receive events. Use the Kibana endpoint deployed with Amazon ES to create near-real-time visualizations and dashboards.
E Configure an Amazon Neptune DB instance to receive events. Use Amazon QuickSight to read from the database and create near-real-time visualizations and dashboards.

Suggested Answer: AD
NOTE: Answer is :A, D
Explanation :Option A uses Amazon Kinesis Data Firehose, which can scale automatically to match the data throughput and does not require ongoing administration, fitting the company's needs. In addition, AWS Lambda can process and transform events, including semi-structured JSON data. Option D uses Amazon Elasticsearch Service (Amazon ES) which is suitable for handling semi-structured JSON data and provides a Kibana endpoint for creating near-real-time visualizations and dashboards. These options together provide a solution that satisfies all the listed requirements.

Question #4 Topic 1

A company developed a pilot application by using AWS Elastic Beanstalk and Java. To save costs during development, the company's development team deployed the application into a single-instance environment. Recent tests indicate that the application consumes more CPU than expected. CPU utilization is regularly greater than 85%, which causes some performance bottlenecks. A solutions architect must mitigate the performance issues before the company launches the application to production. Which solution will meet these requirements with the LEAST operational overhead?

A Create a new Elastic Beanstalk application. Select a load-balanced environment type. Select all Availability Zones. Add a scale-out rule that will run if the maximum CPU utilization is over 85% for 5 minutes.
B Create a second Elastic Beanstalk environment. Apply the traffic-splitting deployment policy. Specify a percentage of incoming traffic to direct to the new environment in the average CPU utilization is over 85% for 5 minutes.
C Modify the existing environment’s capacity configuration to use a load-balanced environment type. Select all Availability Zones. Add a scale-out rule that will run if the average CPU utilization is over 85% for 5 minutes.
D Select the Rebuild environment action with the load balancing option. Select an Availability Zones. Add a scale-out rule that will run if the sum CPU utilization is over 85% for 5 minutes.

Suggested Answer: C
NOTE: Answer is :C
Explanation :Modifying the existing environment to use a load-balanced environment type and adding a scale-out rule to handle higher CPU utilization would require the least operational overhead compared to creating a whole new environment or selecting the rebuild environment action.

Question #5 Topic 1

A large mobile gaming company has successfully migrated all of its on-premises infrastructure to the AWS Cloud. A solutions architect is reviewing the environment to ensure that it was built according to the design and that it is running in alignment with the Well-Architected Framework. While reviewing previous monthly costs in Cost Explorer, the solutions architect notices that the creation and subsequent termination of several large instance types account for a high proportion of the costs. The solutions architect finds out that the company’s developers are launching new Amazon EC2 instances as part of their testing and that the developers are not using the appropriate instance types. The solutions architect must implement a control mechanism to limit the instance types that only the developers can launch. Which solution will meet these requirements?

A Create a desired-instance-type managed rule in AWS Config. Configure the rule with the instance types that are allowed. Attach the rule to an event to run each time a new EC2 instance is launched.
B In the EC2 console, create a launch template that specifies the instance types that are allowed. Assign the launch template to the developers’ IAM accounts.
C Create a new IAM policy. Specify the instance types that are allowed. Attach the policy to an IAM group that contains the IAM accounts for the developers
D Use EC2 Image Builder to create an image pipeline for the developers and assist them in the creation of a golden image.

Suggested Answer: C
NOTE: Answer is :C
Explanation :Creating a new IAM policy and specifying the instance types that are allowed provides a direct control mechanism over the instance types that can be launched by the developers. Attaching this policy to the IAM group that contains the accounts for the developers then restricts their ability to launch inappropriate instances, meeting the solutions architect's requirements.