We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible

https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

Amazon-Web-Services
Exam Questions SAA-C02
AWS Certified Solutions Architect - Associate (SAA-C02)

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

NEW QUESTION 1
A company is hosting a website behind multiple Application Load Balancers. The company has different distribution rights for its content around the world. A
solutions architect needs to ensure that users are served the correct content without violating distribution rights.
Which configuration should the solutions architect choose to meet these requirements?
D18912E1457D5D1DDCBD40AB3BF70D5D

A. Configure Amazon CloudFront with AWS WAF.

B. Configure Application Load Balancers with AWS WAF.
C. Configure Amazon Route 53 with a geolocation policy.
D. Configure Amazon Route 53 with a geoproximity routing policy.

Answer: C

NEW QUESTION 2
A company is running an ecommerce application on Amazon EC2 The application consists of a stateless web tier that requires a minimum of 10 instances, and a
peak of 250 instances to support the application's usage The application requires 50 instances 80% of the time
Which solution should be used to minimize costs?

A. Purchase Reserved Instances to cover 250 instances

B. Purchase Reserved Instances to cover 80 instances Use Spot Instances to cover the remaining instances
C. Purchase On-Demand Instances to cover 40 instances Use Spot Instances to cover the remaining instances
D. Purchase Reserved Instances to cover 50 instances Use On-Demand and Spot Instances to cover the remaining instances

Answer: D

NEW QUESTION 3
A recently acquired company is required to buikl its own infrastructure on AWS and migrate multiple applications to the cloud within a month Each application has
approximately 50 TB of data to be transferred After the migration is complete this company and its parent company will both require secure network connectivity
with consistent throughput from their data centers to the applications A solutions architect must ensure one-time data migration and ongoing network connectivity
Which solution will meet these requirements''

A. AWS Direct Connect for both the initial transfer and ongoing connectivity
B. AWS Site-to-Site VPN for both the initial transfer and ongoing connectivity
C. AWS Snowball for the initial transfer and AWS Direct Connect for ongoing connectivity
D. AWS Snowball for the initial transfer and AWS Site-to-Site VPN for ongoing connectivity

Answer: C

NEW QUESTION 4
A company is planning to use Amazon S3 lo store images uploaded by its users The images must be encrypted at rest in Amazon S3 The company does not want
to spend time managing and rotating the keys, but it does want to control who can access those keys
What should a solutions architect use to accomplish this?

A. Server-Side Encryption with keys stored in an S3 bucket

B. Server-Side Encryption with Customer-Provided Keys (SSE-C)
C. Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
D. Server-Side Encryption with AWS KMS-Managed Keys (SSE-KMS)

Answer: C

NEW QUESTION 5
A security team wants to limit access to specific services or actions in all of the team's AWS accounts. All accounts belong to a large organization in AWS
Organizations The solution must be scalable and there must be a single point where permissions can be maintained.
What should a solutions architect do to accomplish this?

A. Create an ACL to provide access to the services or actions.

B. Create a security group to allow accounts and attach it to user groups
C. Create cross-account roles in each account to deny access to the services or actions.
D. Create a service control policy in the root organizational unit to deny access to the services or actions

Answer: D

NEW QUESTION 6
An application running on AWS uses an Amazon Aurora Multi-AZ deployment for its database When evaluating performance metrics, a solutions architect
discovered that the database reads are causing high I/O and adding latency to the write requests against the database
What should the solutions architect do to separate the read requests from the write requests?

A. Enable read-through caching on the Amazon Aurora database

B. Update the application to read from the Multi-AZ standby instance
C. Create a read replica and modify the application to use the appropriate endpoint
D. Create a second Amazon Aurora database and link it to the primary database as a read replica.

Answer: C

NEW QUESTION 7

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

An Amazon EC2 administrator created the following policy associated with an 1AM group containing several users.

What is the effect of this policy?

A. Users can terminate an EC2 instance in any AWS Region except us-east-1.
B. Users can terminate an EC2 instance with the IP address 10.100. 1001 in the us-east-1 Region
C. Users can terminate an EC2 instance in the us-east-1 Region when the user's source IP is 10.100.100.254
D. Users cannot terminate an EC2 instance in the us-east-1 Region when the user's source IP is 10.100. 100. 254

Answer: C

NEW QUESTION 8
A data science team requires storage for nightly log processing The size and number of logs is unknown and will persist for 24 hours only What is the MOST cost-
effective solution?

A. Amazon S3 Glacier
B. Amazon S3 Standard
C. Amazon S3 intelligent-Tiering
D. Amazon S3 One Zone-Infrequent Access {S3 One Zone-IA)

Answer: B

NEW QUESTION 9
A company must generate sales reports at the beginning of every month. The reporting process launches 20 Amazon EC2 instances on the first of the month. The
process runs for 7 days and cannot be interrupted. The company wants to minimize costs.
Which pricing model should the company choose?

A. Reserved Instances
B. Spot Block Instances
C. On-Demand Instances
D. Scheduled Reserved Instances D18912E1457D5D1DDCBD40AB3BF70D5D

Answer: C

NEW QUESTION 10
A company's legacy application is currently relying on a single-instance Amazon RDS MySQL database without encryption Due to new compliance requirements,
all existing and new data in this database must be encrypted
How should this be accomplished?

A. Create an Amazon S3 bucket with server-side encryption enabled Move all the data to Amazon S3 Delete the RDS instance
B. Enable RDS Multi-AZ mode with encryption at rest enabled Perform a failover to the standby instance to delete the original instance
C. Take a snapshot of the RDS instance Create an encrypted copy of the snapshot Restore the RDS instance from the encrypted snapshot
D. Create an RDS read replica with encryption at rest enabled Promote the read replica to master and switch the application over to the new master Delete the old
RDS instance.

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

Answer: C

NEW QUESTION 10
A company's website is used to sell products to the public The site runs on Amazon EC2 instances in an Auto Scaling group behind an Application Load Balancer
(ALB) There is also an Amazon CloudFront distribution and AWS WAF is being used to protect against SQL injection attacks The ALB is the origin for the
CloudFront distribution A recent review of security logs revealed an external malicious IP that needs to be blocked from accessing the website
What should a solutions architect do to protect the application"?

A. Modify the network ACL on the CloudFront distribution to add a deny rule for the malicious IP address
B. Modify the configuration of AWS WAF to add an IP match condition to block the malicious IP address
C. Modify the network ACL for the EC2 instances in the target groups behind the ALB to deny the malicious IP address
D. Modify the security groups for the EC2 instances in the target groups behind the ALB to deny the malicious IP address

Answer: B

NEW QUESTION 13
A media streaming company collects real-time data and stores it in a disk-optimized database system The company is not getting the expected throughput and
wants an in-memory database storage solution that performs faster and provides high availability using data replication.
Which database should a solutions architect recommend'?

A. Amazon RDS for MySQL

B. Amazon RDS for PostgreSQL
C. Amazon ElastiCache for Redis
D. Amazon ElastiCache for Memcached

Answer: C

NEW QUESTION 15
A company has a three-tier image-sharing application it uses an Amazon EC2 instance for the front-end layer, another for the backend tier, and a third for the
MySQL database A solutions architect has been tasked with designing a solution that is highly available, and requires the least amount of changes to the
application
Which solution meets these requirements'?

A. Use Amazon S3 to host the front-end layer and AWS Lambda functions for the backend layer Move the database to an Amazon DynamoDB table and use
Amazon S3 to store and serve users' images
B. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end and backend layersMove the database to an Amazon RDS instance with
multiple read replicas to store and serve users' images.
C. Use Amazon S3 to host the front-end layer and a fleet of Amazon EC2 instances in an Auto Scaling group for the backend layer Move the database to a
memory optimized instance type to store and serve users' images
D. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end and backend layers Move the database to an Amazon RDS instance with a
Multi-AZ deployment Use Amazon S3 to store and serve users' images

Answer: D

NEW QUESTION 18
A solutions architect is designing a new service behind Amazon API Gateway The request patterns for the service will be unpredictable and can change suddenly
from 0 requests to over 500 per second The total size of the data that needs to be persisted in a backend database is currently less than 1 GB with unpredictable
future growth Data can be queried using simple key-value requests
Which combination of AWS services would meet these requirements'? (Select TWO )

A. AWS Fargate
B. AWS Lambda
C. Amazon DynamoDB
D. Amazon EC2 Auto Scaling
E. MySQL-compatible Amazon Aurora

Answer: BC

NEW QUESTION 21
A company is performing an AWS Well-Architected Framework review of an existing workload deployed on AWS. The review identified a public-facing website
running on the same Amazon EC2 instance as a Microsoft Active Directory domain controller that was install recently to support other AWS services. A solutions
architect needs to recommend a new design that would improve the security of the architecture and minimize the administrative demand on IT staff.
What should the solutions architect recommend?

A. Use AWS Directory Service to create a managed Active Director

B. Uninstall Active Directory on the current EC2 instance.
C. Create another EC2 instance in the same subnet and reinstall Active Directory on i
D. Uninstall Active Directory.
E. Use AWS Directory Service to create an Active Directory connecto
F. Proxy Active Directory requests to the Active domain controller running on the current EC2 instance.
G. Enable AWS Single Sign-On (AWS SSO) with Security Assertion Markup Language (SAML) 2.0 federation with the current Active Directory controlle
H. Modify the EC2 instance’s security group to deny public access to Active Directory.

Answer: C

NEW QUESTION 23
A company is hosting a web application on AWS using a single Amazon EC2 instance that stores

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

user-uploaded documents in an Amazon EBS volume For better scalability and availability the company duplicated the architecture and created a second EC2
instance and EBS volume in another Availability Zone: placing both behind an Application Load Balancer After completing this change users reported that each
time they refreshed the website they could see one subset of their documents or the other but never all of the documents at the same time
What should a solutions architect propose to ensure users see all of their documents at once''

A. Copy the data so both EBS volumes contain all the documents
B. Configure the Application Load Balancer to direct a user to the server with the documents
C. Copy the data from both EBS volumes to Amazon EFS Modify the application to save new documents to Amazon EPS
D. Configure the Application Load Balancer to send the request to both servers Return each document from the correct server

Answer: C

NEW QUESTION 26
A solutions architect is designing an application for a two-step order process The first step is synchronous and must return to the user with little latency The second
step takes longer, so it will be implemented in a separate component Orders must be processed exactly once and in the order in which they are received
How should the solutions architect integrate these components?

A. Use Amazon SQS FIFO queues.

B. Use an AWS Lambda function along with Amazon SQS standard queues
C. Create an SNS topic and subscribe an Amazon SQS FIFO queue to that topic
D. Create an SNS topic and subscribe an Amazon SQS Standard queue to that topic.

Answer: C

NEW QUESTION 29
A bicycle sharing company is developing a multi-tier architecture to track the location of its bicycles during peak operating hours The company wants to use these
data points in its existing analytics platform A solutions architect must determine the most viable multi-tier option to support this architecture The data points must
be accessible from the REST API
Which action meets these requirements for storing and retrieving location data?

A. Use Amazon Athena with Amazon S3

B. Use Amazon API Gateway with AWS Lambda
C. Use Amazon QuickSight with Amazon Redshift
D. Use Amazon API Gateway with Amazon Kinesis Data Analytics

Answer: D

NEW QUESTION 30
A company allows its developers to attach existing 1AM policies to existing 1AM roles to enable (aster experimentation and agility However the security operations
team is concerned that the developers could attach the existing administrator policy, which would allow the developers to circumvent any other security policies
How should a solutions architect address this issue?

A. Create an Amazon SNS topic to send an alert every time a developer creates a new policy
B. Use service control policies to disable IAM activity across all accounts in the organizational unit
C. Prevent the developers from attaching any policies and assign all 1AM duties to the security operations team
D. Set an IAM permissions boundary on the developer 1AM role that explicitly denies attaching the administrator policy

Answer: D

Explanation:
https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html

NEW QUESTION 35
......

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

About Exambible

Your Partner of IT Exam

Found in 1998

Exambible is a company specialized on providing high quality IT exam practice study materials, especially Cisco CCNA, CCDA,
CCNP, CCIE, Checkpoint CCSE, CompTIA A+, Network+ certification practice exams and so on. We guarantee that the
candidates will not only pass any IT exam at the first attempt but also get profound understanding about the certificates they have
got. There are so many alike companies in this industry, however, Exambible has its unique advantages that other companies could
not achieve.

Our Advances

* 99.9% Uptime
All examinations will be up to date.
* 24/7 Quality Support
We will provide service round the clock.
* 100% Pass Rate
Our guarantee that you will pass the exam.
* Unique Gurantee
If you do not pass the exam at the first time, we will not only arrange FULL REFUND for you, but also provide you another
exam of your claim, ABSOLUTELY FREE!

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

NEW QUESTION 1
A company is hosting a website behind multiple Application Load Balancers. The company has different distribution rights for its content around the world. A
solutions architect needs to ensure that users are served the correct content without violating distribution rights.
Which configuration should the solutions architect choose to meet these requirements?
D18912E1457D5D1DDCBD40AB3BF70D5D

A. Configure Amazon CloudFront with AWS WAF.

B. Configure Application Load Balancers with AWS WAF.
C. Configure Amazon Route 53 with a geolocation policy.
D. Configure Amazon Route 53 with a geoproximity routing policy.

Answer: C

NEW QUESTION 2
A company is running an ecommerce application on Amazon EC2 The application consists of a stateless web tier that requires a minimum of 10 instances, and a
peak of 250 instances to support the application's usage The application requires 50 instances 80% of the time
Which solution should be used to minimize costs?

A. Purchase Reserved Instances to cover 250 instances

B. Purchase Reserved Instances to cover 80 instances Use Spot Instances to cover the remaining instances
C. Purchase On-Demand Instances to cover 40 instances Use Spot Instances to cover the remaining instances
D. Purchase Reserved Instances to cover 50 instances Use On-Demand and Spot Instances to cover the remaining instances

Answer: D

NEW QUESTION 3
A recently acquired company is required to buikl its own infrastructure on AWS and migrate multiple applications to the cloud within a month Each application has
approximately 50 TB of data to be transferred After the migration is complete this company and its parent company will both require secure network connectivity
with consistent throughput from their data centers to the applications A solutions architect must ensure one-time data migration and ongoing network connectivity
Which solution will meet these requirements''

A. AWS Direct Connect for both the initial transfer and ongoing connectivity
B. AWS Site-to-Site VPN for both the initial transfer and ongoing connectivity
C. AWS Snowball for the initial transfer and AWS Direct Connect for ongoing connectivity
D. AWS Snowball for the initial transfer and AWS Site-to-Site VPN for ongoing connectivity

Answer: C

NEW QUESTION 4
A company is planning to use Amazon S3 lo store images uploaded by its users The images must be encrypted at rest in Amazon S3 The company does not want
to spend time managing and rotating the keys, but it does want to control who can access those keys
What should a solutions architect use to accomplish this?

A. Server-Side Encryption with keys stored in an S3 bucket

B. Server-Side Encryption with Customer-Provided Keys (SSE-C)
C. Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
D. Server-Side Encryption with AWS KMS-Managed Keys (SSE-KMS)

Answer: C

NEW QUESTION 5
A security team wants to limit access to specific services or actions in all of the team's AWS accounts. All accounts belong to a large organization in AWS
Organizations The solution must be scalable and there must be a single point where permissions can be maintained.
What should a solutions architect do to accomplish this?

A. Create an ACL to provide access to the services or actions.

B. Create a security group to allow accounts and attach it to user groups
C. Create cross-account roles in each account to deny access to the services or actions.
D. Create a service control policy in the root organizational unit to deny access to the services or actions

Answer: D

NEW QUESTION 6
An application running on AWS uses an Amazon Aurora Multi-AZ deployment for its database When evaluating performance metrics, a solutions architect
discovered that the database reads are causing high I/O and adding latency to the write requests against the database
What should the solutions architect do to separate the read requests from the write requests?

A. Enable read-through caching on the Amazon Aurora database

B. Update the application to read from the Multi-AZ standby instance
C. Create a read replica and modify the application to use the appropriate endpoint
D. Create a second Amazon Aurora database and link it to the primary database as a read replica.

Answer: C

NEW QUESTION 7

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

An Amazon EC2 administrator created the following policy associated with an 1AM group containing several users.

What is the effect of this policy?

A. Users can terminate an EC2 instance in any AWS Region except us-east-1.
B. Users can terminate an EC2 instance with the IP address 10.100. 1001 in the us-east-1 Region
C. Users can terminate an EC2 instance in the us-east-1 Region when the user's source IP is 10.100.100.254
D. Users cannot terminate an EC2 instance in the us-east-1 Region when the user's source IP is 10.100. 100. 254

Answer: C

NEW QUESTION 8
A data science team requires storage for nightly log processing The size and number of logs is unknown and will persist for 24 hours only What is the MOST cost-
effective solution?

A. Amazon S3 Glacier
B. Amazon S3 Standard
C. Amazon S3 intelligent-Tiering
D. Amazon S3 One Zone-Infrequent Access {S3 One Zone-IA)

Answer: B

NEW QUESTION 9
A company must generate sales reports at the beginning of every month. The reporting process launches 20 Amazon EC2 instances on the first of the month. The
process runs for 7 days and cannot be interrupted. The company wants to minimize costs.
Which pricing model should the company choose?

A. Reserved Instances
B. Spot Block Instances
C. On-Demand Instances
D. Scheduled Reserved Instances D18912E1457D5D1DDCBD40AB3BF70D5D

Answer: C

NEW QUESTION 10
A company's legacy application is currently relying on a single-instance Amazon RDS MySQL database without encryption Due to new compliance requirements,
all existing and new data in this database must be encrypted
How should this be accomplished?

A. Create an Amazon S3 bucket with server-side encryption enabled Move all the data to Amazon S3 Delete the RDS instance
B. Enable RDS Multi-AZ mode with encryption at rest enabled Perform a failover to the standby instance to delete the original instance
C. Take a snapshot of the RDS instance Create an encrypted copy of the snapshot Restore the RDS instance from the encrypted snapshot
D. Create an RDS read replica with encryption at rest enabled Promote the read replica to master and switch the application over to the new master Delete the old
RDS instance.

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

Answer: C

NEW QUESTION 10
A company's website is used to sell products to the public The site runs on Amazon EC2 instances in an Auto Scaling group behind an Application Load Balancer
(ALB) There is also an Amazon CloudFront distribution and AWS WAF is being used to protect against SQL injection attacks The ALB is the origin for the
CloudFront distribution A recent review of security logs revealed an external malicious IP that needs to be blocked from accessing the website
What should a solutions architect do to protect the application"?

A. Modify the network ACL on the CloudFront distribution to add a deny rule for the malicious IP address
B. Modify the configuration of AWS WAF to add an IP match condition to block the malicious IP address
C. Modify the network ACL for the EC2 instances in the target groups behind the ALB to deny the malicious IP address
D. Modify the security groups for the EC2 instances in the target groups behind the ALB to deny the malicious IP address

Answer: B

NEW QUESTION 13
A media streaming company collects real-time data and stores it in a disk-optimized database system The company is not getting the expected throughput and
wants an in-memory database storage solution that performs faster and provides high availability using data replication.
Which database should a solutions architect recommend'?

A. Amazon RDS for MySQL

B. Amazon RDS for PostgreSQL
C. Amazon ElastiCache for Redis
D. Amazon ElastiCache for Memcached

Answer: C

NEW QUESTION 15
A company has a three-tier image-sharing application it uses an Amazon EC2 instance for the front-end layer, another for the backend tier, and a third for the
MySQL database A solutions architect has been tasked with designing a solution that is highly available, and requires the least amount of changes to the
application
Which solution meets these requirements'?

A. Use Amazon S3 to host the front-end layer and AWS Lambda functions for the backend layer Move the database to an Amazon DynamoDB table and use
Amazon S3 to store and serve users' images
B. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end and backend layersMove the database to an Amazon RDS instance with
multiple read replicas to store and serve users' images.
C. Use Amazon S3 to host the front-end layer and a fleet of Amazon EC2 instances in an Auto Scaling group for the backend layer Move the database to a
memory optimized instance type to store and serve users' images
D. Use load-balanced Multi-AZ AWS Elastic Beanstalk environments for the front-end and backend layers Move the database to an Amazon RDS instance with a
Multi-AZ deployment Use Amazon S3 to store and serve users' images

Answer: D

NEW QUESTION 18
A solutions architect is designing a new service behind Amazon API Gateway The request patterns for the service will be unpredictable and can change suddenly
from 0 requests to over 500 per second The total size of the data that needs to be persisted in a backend database is currently less than 1 GB with unpredictable
future growth Data can be queried using simple key-value requests
Which combination of AWS services would meet these requirements'? (Select TWO )

A. AWS Fargate
B. AWS Lambda
C. Amazon DynamoDB
D. Amazon EC2 Auto Scaling
E. MySQL-compatible Amazon Aurora

Answer: BC

NEW QUESTION 21
A company is performing an AWS Well-Architected Framework review of an existing workload deployed on AWS. The review identified a public-facing website
running on the same Amazon EC2 instance as a Microsoft Active Directory domain controller that was install recently to support other AWS services. A solutions
architect needs to recommend a new design that would improve the security of the architecture and minimize the administrative demand on IT staff.
What should the solutions architect recommend?

A. Use AWS Directory Service to create a managed Active Director

B. Uninstall Active Directory on the current EC2 instance.
C. Create another EC2 instance in the same subnet and reinstall Active Directory on i
D. Uninstall Active Directory.
E. Use AWS Directory Service to create an Active Directory connecto
F. Proxy Active Directory requests to the Active domain controller running on the current EC2 instance.
G. Enable AWS Single Sign-On (AWS SSO) with Security Assertion Markup Language (SAML) 2.0 federation with the current Active Directory controlle
H. Modify the EC2 instance’s security group to deny public access to Active Directory.

Answer: C

NEW QUESTION 23
A company is hosting a web application on AWS using a single Amazon EC2 instance that stores

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

user-uploaded documents in an Amazon EBS volume For better scalability and availability the company duplicated the architecture and created a second EC2
instance and EBS volume in another Availability Zone: placing both behind an Application Load Balancer After completing this change users reported that each
time they refreshed the website they could see one subset of their documents or the other but never all of the documents at the same time
What should a solutions architect propose to ensure users see all of their documents at once''

A. Copy the data so both EBS volumes contain all the documents
B. Configure the Application Load Balancer to direct a user to the server with the documents
C. Copy the data from both EBS volumes to Amazon EFS Modify the application to save new documents to Amazon EPS
D. Configure the Application Load Balancer to send the request to both servers Return each document from the correct server

Answer: C

NEW QUESTION 26
A solutions architect is designing an application for a two-step order process The first step is synchronous and must return to the user with little latency The second
step takes longer, so it will be implemented in a separate component Orders must be processed exactly once and in the order in which they are received
How should the solutions architect integrate these components?

A. Use Amazon SQS FIFO queues.

B. Use an AWS Lambda function along with Amazon SQS standard queues
C. Create an SNS topic and subscribe an Amazon SQS FIFO queue to that topic
D. Create an SNS topic and subscribe an Amazon SQS Standard queue to that topic.

Answer: C

NEW QUESTION 29
A bicycle sharing company is developing a multi-tier architecture to track the location of its bicycles during peak operating hours The company wants to use these
data points in its existing analytics platform A solutions architect must determine the most viable multi-tier option to support this architecture The data points must
be accessible from the REST API
Which action meets these requirements for storing and retrieving location data?

A. Use Amazon Athena with Amazon S3

B. Use Amazon API Gateway with AWS Lambda
C. Use Amazon QuickSight with Amazon Redshift
D. Use Amazon API Gateway with Amazon Kinesis Data Analytics

Answer: D

NEW QUESTION 30
A company allows its developers to attach existing 1AM policies to existing 1AM roles to enable (aster experimentation and agility However the security operations
team is concerned that the developers could attach the existing administrator policy, which would allow the developers to circumvent any other security policies
How should a solutions architect address this issue?

A. Create an Amazon SNS topic to send an alert every time a developer creates a new policy
B. Use service control policies to disable IAM activity across all accounts in the organizational unit
C. Prevent the developers from attaching any policies and assign all 1AM duties to the security operations team
D. Set an IAM permissions boundary on the developer 1AM role that explicitly denies attaching the administrator policy

Answer: D

Explanation:
https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html

NEW QUESTION 35
......

Your Partner of IT Exam visit - https://www.exambible.com

 We recommend you to try the PREMIUM SAA-C02 Dumps From Exambible
https://www.exambible.com/SAA-C02-exam/ (80 Q&As)

Relate Links

100% Pass Your SAA-C02 Exam with Exambible Prep Materials

https://www.exambible.com/SAA-C02-exam/

Contact us

We are proud of our high-quality customer service, which serves you around the clock 24/7.

Viste - https://www.exambible.com/

Your Partner of IT Exam visit - https://www.exambible.com

Powered by TCPDF (www.tcpdf.org)