Question: 1A solutions architect is creating a new VPC design. There are two public subnet for the load balancer, two private subnets for web servers, and two private subnets for MySQL. The web serves use only HTTPS. The solutions architect has already created a security group for the load Balancer allowing port 443 from 0.0 0.0/0. Company policy requires that each resource has the least access required to still be able to perform its tasks.Which additional configuration strategy should the solution architect use to meet these requirements?
A. Create a security group far the web servers and allow port 443 from 0.0.0.070. Create a securitygroup tor the MySQL serve's aid allow port 3306 from the web servers security group.
B. Create a network ACL for the web servers and allow port 443 from 0.0.0.0/0. Create a network ACL for the MySQL servers and allow port 3306 from the web servers security group
C. Create a security group for the web servers and allow port 443 from the load balancer. Create asecurity group tor the MySQL servers and allow port 3306 from the web sewers security group
D. Create a network ACL for the web servers and allow port 443 from the web balancer. Create anetwork ACL for the MySQL servers and allow port 3306 from the web servers security group.
Answer: C
Question: 2
A company runs an application on an Amazon EC2 instance Backed by Amazon Elastic Block Store (Amazon EBS). The instance needs to be available for 12 hours daily. The company wants to save costs by making the instance unavailable outside the window required for the application However the contents of the instance's memory must be preserved whenever the instance is unavailable What should a solutions architect do lo meet this requirement?
A. Stop the instance outside the application's availability window. Start up the Instance again whenrequired.
B. Hibernate tie instance outside the application's availability window. Start up the instance again whenrequired.
C. Use Auto Scaling to scale down the instance outside the application's availability window. Scale up the instance when required.
D. Terminate the instance outside the application's availability window Launch the instance by using apreconfigured Amazon Machine Image (AMI) when required
Answer: B
Question: 3
A company Is migrating lo the AWS Cloud. A file server is the first workload to migrate. Users must beable to access the file share using the Server Message Block (SMB) protocol.
Which AWS managed service meets these requirements?
A. Amazon EBS
B. Amazon EC2
C. Amazon FSx
D. Amazon S3
Answer: B
Question: 4
A solutions architect needs to design a resilient solution for Windows users' home directories. The solution must provide fault tolerance, file-level backup and recovery, and access control, based upon the company's Active Directory. Which storage solution meets these requirements?
A. Configure Amazon S3 to store the users' home directories. Join Amazon S3 to Active Directory.
B. Configure a Multi-AZ file system with Amazon FSx for Windows File Server Join Amazon FSx to Active Directory.
C. Configure Amazon Elastic File System (Amazon EFS) for the users' home directories. Configure AWS Single Sign-On with Active Directory.
D. Configure Amazon Elastic Block Store (Amazon EBS) to store the users' home directories Configure AWS Single Sign-On with Active Directory.
Answer: C
Question: 5
A company has a legacy application that processes data in two parts. The second part of the process takes longer than the first, so the company has decided to rewrite the application as two microservices running on Amazon ECS that can scale independently How should a solutions architect integrate the microservices?
A. Implement code in microservice 1 to send data to an Amazon S3 bucket. Use S3 event notifications to invoke microservice 2
B. Implement code in microservice 1 to publish data to an Amazon SNS topic. Implement code In microservice 2 to subscribe to this topic.
C. Implement code in microservice 1 to send data to Amazon Kinesis Data Firehose. Implement code in microservice 2 to read from Kinesis Data Firehose.
D. Implement code in microservice 1 to send data to an Amazon SQS queue. Implement code in microservice 2 to process messages from the queue.
Answer: D
For Get More Queries:
https://www.dumpspass4sure.com/amazon/saa-c02-dumps.html
Why You Should Always Choose Dumpspass4sure.com?
- The Widest Collection of Exams from all Leading Vendors
- Every Product Comes with 100% Money Back Guarantee
- Updated & Latest Dumps
- Printable PDF Files
- Live Updates of Exams Software
- Free Updates for 90 Days