A Solutions Architect is designing an application on AWS that uses persistent block storage Data must be encrypted at rest.
Which solution meets the requirement? Encrypt Amazon EC2 Instance Storage Enable server-side encryption on Amazon S3 Encrypt Amazon EBS volumes on Amazon EC2 instances Enable SSL on Amazon EC2.
A company is running its application in a single region on Amazon EC2 with Amazon EBS and Amazon S3 part of the storage design.
What should be done to reduce data transfer costs? Create an Amazon CloudFront distribution with Amazon S3 as the origin Convert the application to run on Lambda@Edge Replicate Amazon S3 data to buckets in regions closer to the requester Create a copy of the compute environment in another region.
A company´s new web application running on Amazon EC2 across multiple Availability Zones (AZs) will be heavily accessed during regular business hours. After business hours, usage will be minimal.
What fleet-scaling approach should be used to size the EC2 fleet to handle the traffic demands? Programmatic termination of all instances in one AZ during off-peak hours Sceduled scaling Manual scaling across all AZs Provisioning for peak traffic.
A customer has a legacy application with a large amount of data.The files accessed by the application are approximately 10GB each but are rarely accessed. However, when files are accessed, they are retrieved sequentially. The customer is migrating the application to AWS and would like to use Amazon EC2 and Amazon EBS.
What is the least expensive EBS volume type for this use case? Throughput Optimized HDD (stl) General Purpose SSD (gp2) Provisioned IOPS SSD (iol) Cold HDD (scl).
An application currently stores objects in Amazon 53-Standard. The application accesses new objects frequently for one week. After one week, they are accessed occasionally for analysis batch jobs. A Solutions Architect has been asked to reduced storage costs for the application while allowing immediate access for batch jobs.
How can costs be reduced without reducing data durability? Keep the data on Amazon S3, then create a lifecycle policy to move the data to S3 Standard - Infrequent Access storage after 7 days. Move all Amazon S3 data to S3 Standard-Infrequent Access storage, and create a lifecycle policy to move the data to Amazon Glacier after 7 days. Create a lifecycle policy that moves Amazon S3 data to Amazon S3 One Zone-Infrequent Access storage after 7 days. After 30 days, move the data to Amazon Glacier Keep the data on Amazon S3, and create a lifecycle policy to move S3 data to Amazon Glacier after 7 days. .
A Solutions Architect has a multi-layer application running in Amazon VPC. The application has an ELB Classic Load Balancer as the front end in a public subnet, and an Amazon EC2 based reserve proxy that performs content based routing to two backend set up will be insufficient.
Which actions should the Architect take to achieve a cost-effective solution that ensures the application automatically scales to meet traffic demand? (Select two) Add Auto Scaling to the Amazon EC2 reverse proxy layer Replace the Amazon EC2 reverse proxy with an ELB internal Classic Load Balancer Add Auto Scaling to the Amazon EC2 backend fleet Use t2 burstable instance types for the backend fleet Replace both the frontend and reverse proxy layers with an ELB Application Load Balancer.
A team has developed a new web application in an AWS Region that has three Availability Zones: AZ-a, AZ-b, AZ-c. This application must be fault tolerant and needs al least six Amazon EC2 instances running at all time: The application must tolerate the loss of connectivity to any single Availability Zone so that the application can continue to run.
Which configuration will meet these requirements? (Select two) Az-a with three EC2 instances, AZ-b with three EC2, and AZ-c with three EC2 instances. Az-a with six EC2 instances, AZ-b with six EC2, and AZ-c with no EC2 instances. Az-a with two EC2 instances, AZ-b with two EC2, and AZ-c with two EC2 instances. Az-a with four EC2 instances, AZ-b with two EC2, and AZ-c with two EC2 instances. Az-a with three EC2 instances, AZ-b with three EC2, and AZ-c with no EC2 instances.
A Solutions Architect was tasked with reviewing several templates that build VPCs and ensuring that they meet specific security requirements. After reviewing the templates, the Architect realizes that all of the templates are missing important security best practices.
What should the Architect do to implement security best practices in an efficient manner? Provide the teams a nested AWS CloudFormation template that builds the VPC correctly Create AWS Identify ans Access Managements (IAM) policies that enforce the corporate VPC architecture standards Restrict users from deploying an AWS CloudFormation template. Use VPC peering to enforce network consistency.
An application stores data in an Amazon RDS PostgreSQL Multi-AZ database instance. The ratio of read request to write requests is about 2 to 1. Recent increases in traffic are causing very high latency.
How can this problem be corrected? Create a read replica and send all read traffic to it. Use a secondary instance of the Multiple Availability ZOne for read traffic only Create a read replica and send half of all traffic to it Create a similar RDS postgreSQL instance and direct all traffic to it.
A business team requires a structured storage solution to store all of a company´s historical sales data. Currently there are 4 TB of data, wich will grow to hundreds of terabytes within a few years. The team must be able to regularly run queries against the data using current business intelligence tools. Fast performance is required despite the dataset growth.
Which solution should the company use? Amazon S3 Amazon Redshift Amazon Aurora Amazon DynamoDB.
A company has a web application that makes request to a backend API service. The API service is behind an Elastic Load Balancer running on Amazon EC2 instances. Most backend API service endpoint calls finish very quickly, but one wndpoint that makes calls to create objects in an external service takes a long time to complete. These long-running calls are causing client timeouts and increasing overall system latency.
What should be done to minimize the system throughput impact of the slow-runinning endpoint? Use Amazon ElastiCache for Redis to cache responses from the external service. Use Amazon SQS to offload the long-running requests for asynchrnous processing by separate workers. Increase the load balancer idle timeout to allow the long-running requeststo complete. Change the EC2 instance size to increase memory and compute capacity.
A mobile application serves scientific artiles from individual files in an Amazon S3 bucket. Articles older than 30 days are rarely read. Articles older than 60 days no longer need to be available through the applicacion but the application owner would like to keep them for historical purposes.
WHich cost-effective solution BEST meets these requirements? Create lifecycle rules to move files older than 30 days to Amazon Glacier and move files older than 60 days to Amazon S3 Standard Infrequent Access. Create a Lambda function to move files older than 30 days to Amazon Glacier and move files older than 60 days to Amazon EBS Create a Lambda function to move files older than 30 days to Amazon EBS and move files older than 60 days to Amazon Glacier. Create lifecycle rules to move files older than 30 days to Amazon S3 Standard Infrequents Access and move files older than 60 days to Amazon Glacier.
An AWS workload in a VPC is running a legacy database on an Amazon EC2 instance. Data is stored on a 200GB Amazon EBS (gp2) volume. At peak load times, logs show excessive wait time.
What sollution should be implemented to improve database performance using persistent storage? Migrate the data on the Amazon EBS volume to an SSD-backed volume. Change the EC2 instance type to one with EC2 instance store volumes Change the EC2 instance type to one with Ebustable performance. Migrate the data on the EBS volume to provisioned IOPS SSD (iol).
An application uses an Amazon RDS My SQL cluster for the database yares. Database growth requires periodic resizing of the instance. Currently, administrators check the availability disk space manually once a week.
How can this process be improved?. Use Amazon CloudWatch to monitor storage capacity Use Auto Scaling to increase storage size Use the largest instance type for the database Use AWS CloudTrail to monitor storage capacity.
A Solution Architect has designed a VPC that meets all necessary security requirements for their organization. Any applications deployed in the organization must use this VPC design.
How can project teams deploy, manage, and delete VPCs that meet this design with the LEAST administrative effort? Deploy an AWS CloudFormation template that defines components of the VPC Clone the existing authorized VPC for each New project Run a script that uses the AWS Command Line Interface to deploy the VPC Use AWS Elastic Beanstalk to deploy both the VPC and the application. .
A company plans to migrate a website to AWS to use a serverless architecture. The website contains both static and dynamic content and is accessed by users across the world. THe website should maintain sessions for returning users to improve the user experience.
Which service should a Solutions Architect use for a cost -efficient solution with the LOWEST latency? Amazon CloudFront, Elastic Load Balancing, Amazon EC2, And Amazon RDS Amazon S3, Amazon ClaudFront; AWS Lambda, Amazon API Gateway, and Amazon DynamoDB Amazon CloudFront, AWS Lambda, API Gateway, and Amazon RDS Amazon S3, AWS Lambda, Amazon API Gateway, and Amazon DynamoDB.
A company plans to use AWS for all new batch processing workloads. The company´s developers use Docker containers for the new batch processing. THe system design must accomodate critical and non-critical batch processing workloads 24/7.
How should a Solution Architect design this architecture in a cost-efficient manner? Purchase Reserved Instances to run all containers. Use Auto Scaling groups to schedule jobs Use Amazon ECS orchestration and Auto Scaling groups: one with Reserve Instances, one with Spot Instances Use Amazon ECS to manage container orchestration. Purchase Reserved Instances to run all batch workloads at the same time. Host a container management service on Spot Instances. Use Reserved Instances to run Docker containers.
A Solutions Architect is designing a web application. The web and application tiers need to access the internet, but they cannot be accessed from the internet.
Which of the following steps is required? Launch Amazon EC2 instances in the public subnet and change the security group to allow outbound traffic on port 80 Launch a NAT gateway in the public subnet and add a route to it from the private subnet Attach an Elastic IP address to each Amazon EC2 instance and add a route from the private subnet to the public subnet. Launch a NAT gateway in the private subnet and deploy a NAT instance in the private subnet.
A SOlution Architect designed a system based on Amazon Kinesis Data Stream. After the workflow was put into production, the company noticed it performed slowly and identified Kinesis Data Streams as the problem. One of the streams has a total of 10Mb/s throughput.
What should the Solutions Architect recommend to improve performance? Change the workflow to use Amazon Kinesis Data Firehose to gain a higher throughput. Use AWS Lambda to preprocess the data and transform the records into de simpler format, such as CSV Run the MergeShard command to reduce the number of shards that the consumer can more easily process Run the UpdateShardCount command to increase the number of shards in the stream.
When designing an Amazon SQS message-processing solution: message in the queue must be processed before the maximun retention time has elapsed
Which action will meet this requirement? (Choose two) Use Amazon EC2 instances in an Auto Scaling group with Scaling triggered based on the queue length Convert the SQS queue to a first-in first-out (FIFO queue) Use AWS STS to process the messages Use Amazon EBS-optimized Amazon EC2 instances to process the messages Increase the SQS queue attribute for the message retention period.
A Solutions Architect is building a multi- tier website. The web servers will be in a public subnet, and the database servers will be in a private subnet. Only the web servers can be accessed from the internet. The database servers must have Internet access for software updates.
Which solution meets the requirements? Allow internet traffic on the private subnet through the network ACL Assign Elastic IP Addresses to the database instances Use a NAT Gateway Use an egress-only Internet Gateway.
A customer set up an Amazon VPC with one private subnet and one public subnet with a NAT gateway. THe VPC will contain a group of Amazon EC2 instances. All instances will configure themselves at startup by downloading a bootstrap script from an Amazon S3 bucket with a policy that only allows access fomthe customers Amazon EC2 instances and then deploys an Application through GIT. A Solutions Architect Has been asked to design a solution that provides the highest level of security regarding network connectivity to the Amazon EC2 instances.
How should the Architect design the infrastructure? Place the Amazon EC2 instances in a private subnet, and assign EIPs; route outgoin gtraffic through the internet gateway Place the Amazon EC2 instances in a public subnet, and assign EIPs; route outgoing traffic through the NAT gateway Place the Amazon EC2 instances in a private subnet, with no EIPs; route outgoing traffic through the NAT gateway Place the Amazon EC2 instances in the public subnet, with no EIPs and assign EIPs; route outgoing traffic through the internet gateway.
A company wants to analyze all of its sales information aggregated over the last 12 months. The company expects there to be over 10TB of data from multiple sources.
What service should be used? Amazon Aurora MySQL Amazon RDS My SQL Amazon Redshift Amazon DynamoDB.
A customer is migrating to AWS and requires applications to access Network File System shares without code changes. Data is critical and accessed frequently.
Which storage solution should a Solutions Architect recommend to maximize availability and durability? Amazon EFS Amazon EBS AWS Storage Gateway for files Amazon S3.
A Solutions Architect needs to design a solution that will allow website developers to deploy static web content without managing server infrastructure. All web content must be accessed over HTTPS with a custom domain name. The solution should be scalable as the company continues to grow.
Which of the following will provide the MOST cost-effective solution? Amazon S3 with a stactic website Amazon CloudFront with an Amazon S3 bucket origin Amazon EC2 instance with Amazon EBS AWS Lambda function with Amazon API Gateway.
A Solutions Architect is designing a new architecture that will use an Amazon EC2 Auto Scaling group.
Which of the following factors determine the health check grace period? (Select two) How much of the application code is embedded in the AMI How long it takes for the Auto Scaling group to detect a failure How many Amazon CloudWatch alarms are configured for status checks How long the bootstrap script takes to run How frequently the Auto Sacling group scales up or down.
An e-commerce application places orders in an Amazon SQS queue. When a message is received, Ammazon EC2 worker instances process the request. The EC2 instances are in an Auto Scaling group.
How should the Architecture be designed to scale up and down with the LEAST amount of operational overhead? Use an Amazon CloudWatch alarm on the EC2 CPU to scale the Auto Scaling group up and down. Use an Amazon CloudWatch alarm based on the number of visible messages to scale the Auto Scaling group up or down. Use an EC2 Auto Scaling health check for messages processed on the EC2 instances to scale up and down. Use an Amazon CloudWatch alarm based on the CPU to scale the Auto Scaling group up or down.
A Solutions Architect needs to configure scaling policies based on Amazon Cloud Watch metrics for an Auto Scaling group. The application running on the instances is memory intensive.
How can the Architect meet this requirement? Publish custom Metrics to Cloud Watch from the application Set up high -resolution alarms for the Auto Scaling group Configure lifecycle policies for the Amazon EC2 instances Enable detailed monitoring on the Amazon EC2 instances.
A company runs a legacy application with a single-tier architecture on an Amazon EC2 instance. Disk 110 is low, with occasional small spikes during business hours. The company requires the instance to be stopped from 8PM to 8AM daily.
Which storage option is MOST appropiate for this workload? Amazon EBS General Purpose SSD (gp2) storage Amazon EC2 instance storage Amazon EBS Provision IOPS SSD (iol)storage Amazon S3.
A company needs to capture all client connection information from its Application Load Balancer every five minutes. This data will be used to analyze traffic pattern and troubleshoot the application.
How can a Solutions Architect meet this requirement? Enable Access Logs on the Application Load Balancer Enable Cloud Watch metrics on the Application Load Balancer Enable AWS CloudTrail for the Application Load Balancer Install CloudWatch Agent on the Application Load Balancer.
A company needs to capture all client connection information from its Application Load Balancer every five minutes. This data will be used to analyze traffic patterns and troubleshoot the application.
How can a Solutions Architect meet this requirement? Enable Access Logs on the applicacion Load Balancer Enable CLoudWatch metrics on the Application Load Balancer Enable AWS CLoudTrail for Application Load Balancer Install CLoudWatch Agent on the Application Load Balancer.
A SOlution Architect is designing an Application that will run on Amazon ECS behind an Application Load Balancer (ALB). For security reasons.the Amazon EC2 host instances for the ECS cluster are in a private subnet.
What should be done to ensure that the incoming traffic to the host instances is from the ALB only? Modify the security group used by the ECS cluster to allow incoming traffic from the security group used by ALB only Enable AWS WAF on the ALB and enable the ECS rule. Create network ACL rules for the private subnet to allow incoming traffic on ports 32768 through 61000 from the IP address of the ALB only Update the ECS cluster security group to allow incoming access from the IP address of the ALB only.
A company uses Amazon S3 for storing a varity of files. A Solution Architect needs to design a feature that will allow users to instantly restore any deleted files within 30 days of deletion.
Which is the MOST cost-efficient solution? Enable cross-region replication. Empty the replica bucket every 30 days using an AWS Lambda function Enable versioning and create a lifecycle policy to remove expired versions after 30 days. Create lifecycle policies that move the objects to Amazon Glacier and delete them after 30 days Enable versioning and MFA Delete Using a Lambda function. remove MFA delete from objects more than 30 days old.
An application runs on EC2 instances behind an Elastic Load Balancing Application Load Balancer. The instances run in an EC2 Auto Scaling Group across multiple Availability Zones. The application provides a RESTful interface with both synchronous and asynchronous aperations. THe asynchronous operations require up to 5 minutes to complete. Although the application must remain available at all times, after business hours, the traffic going to the application is greatly reduced and often results in the Auto Scaling group running the minimum number of On-Demand Instances.
What should the Solutions Architect recommend to optimize the cost of the environment after business hours? Purchase Reserved Instances for the minimum number of Auto Scaling instances Change the Availability Zones in which the instances were created to another Availability Zone in the same region with a lower cost. Replace all On-Demand Instances with Spot Instances in the Auto Scaling group Reduce the number of minimum instances to 0. New requests to the Application Load Balancer create new instances. .
A company is migrating on-premises databases to AWS. The company´s backend application produces a large amount of database queries for reporting purposes, and the company wants to offload some of those reads to Rea Replica, allowing the primary database to continue performing efficiently.
Which AWS database platform will accomplish this? (Select two) Amazon RDS for MariaDB Amazon DynamoDB Amazon RDS for Oracle Amazon RDS for PostgreSQL Amazon RDS for Microsoft SQL Server.
An online company wants to conduct real-time sentiment analysis about its products fron its social media channels using SQL.
Which of the following solution has the LOWEST cost and operational burden? Set up streaming data ingestion appication on Amazon EC2 and send the output to Amazon S3 using Kinesis Data Firehose. Use Athena to analize the data. Configure the input stream using Amazon Kinesis Data Streams. Use Amazon Kinesis Data Analytics to write SQL queries againsta the stream. Configure the input stream using Amazon Kinesis Data Streams. Use Amazon Kinesis Data Firehose to send data to an Amazon Redshift cluster. and then query directly against Amazon Redshift. Set up a streaming data ingestion application on Amazon EC2 and connect it to a Hadoop cluuster for data processing. Send the output to Amazon S3 and use Amazon Athena to analyze the data.
A company is using AWS Key Management Service (AWS KMS) to secure their Amazon RDS databases. An auditor has recommended that the company log all wse of their AWS KMS keys.
What is the SIMPLEST solution? Deploy a monitoring agent on the RDS instances Associate AWS KMS metrics with Amazon CLoudWatch Use AWS CloudTrail to log AWS KMS key usage Poll AWS KMS periodically with a scheduled job.
A Solutions Architect is designing a disaster recovery (DR) environment in a separate AWS region from an application´s primary workload. The application uses a multi-tier architecture, and only the RDS instance will have frequent changes. The application installation process takes 60 minutes on average. The disaster recovery plan must have an RPO of less than 90 minutes and an RTO of less than 30 minutes.
Which of the following would enable the Solutions Architec to meet these requirements? (Choose two) Inter-region VPC peering between the primary workload VPC and the DR VPC An Aurora instance as the primary database with a read replica in the DR region A cross-region Amazon EC2 Amazon Machine Image (AMI) copy Amazon S3 cross-region replication of application-tier installers Amazon CloudWatch Events in the primary region that trigger the failover to the DR region.
A reatil company has sensors placed in its physical retail stores. The sensors send messages over HTTP when customers interact with in-store product displays. A Solution Architect needs to implement a systemfor processing those sensor messages; the results must be available for the Data Analysis team.
Which architecture should be used to meet these requirements? Create an Amazon EC2 instance to server as the HTTP endpoint and to process the message. Save the results to Amazon S3 for the Data Analysis team to download. Use Amazon Route 53 to direct incoming sensor messages to a Lambda function to process the message and save the results to an Amazon DynamoDB table Use AWS Direct COnnect to connect sensors to DynamoDB so that data can be written directly to a DynamoDB table where it can be accessed by the data analysis team Implement an Amazon API gateway to server as the HTTP endpoint. Have the API Gateway trigger an AWS Lambda function to process the messages, and save the results to an Amazon DynamoDB table.
A user is designing a new service that receives location updates from 3,600 rental cars every hour. The cars upload their location to an Amazon S3 bucket. Each location must be checked for distance from the original rental location.
Which Services will prcess the updates and automatically scale? Amazon EC2 and Amazon EBS Amazon S3 events and AWS Lambda Amazon ECS and Amazon RDS Amazon Kinesis Firehose and Amazon S3.
A web application running on Amazon EC2 instances writes data synchronously to an Amazon DynamoDB table configured for 60 write capacity units. During normal operation the application writes 50KB/s to the tale, but can scale up to 500 KB/s during peak hours. The application is currently throttling errors from the DynamoDB table during peak hours.
What is the MOST cost-efficient change to support the increased traffic with minimal changes to the application? Use Amazon SQS to manage the write operations to the DynamoDB table Increase the number of Amazon EC2 instances to support the traffic Configure Amazon DynamoDB Auto Scaling to handle the extra demand Change DynamoDB table configuration to 600 write capacity units.
A company is moving to AWS. Management has identified a set of approved AWS services that meet all deployment requirements. The company would like to restrict access to all other unapproved services to which employees would have access.
Which solution meets these requirements with the LEAST amount of operational overhead? Configure the AWS Trusted Advisor service utilization compliance report. Subscribe to Amazon SNS notifications from Trusted ADvisor. Create a custom AWS Lambda function that can automatically remediate the use of unauthorized services. Configure AWS Organizations. Create an organizational unit (OU) and place all AWS accounts into the OU. Apply a service control policy (SCP) to the OU that denies the use of certain services. Create a custom AWS IAM policy. Deploy the policy to each account using AWS CloudFormation StackSets. Include deny statements in the policy to restrict the use of certain services. Attach the policies to all IAM users in each account. Use AWS Conf to evaluate the configuration settings of AWS resources. Subscribe to Amazon SNS notifications from AWS Conf. Create a custom AWS Lambda function that can automatically remediate the use of unauthorized services.
A Solutions Architect needs to deploy an HTTP/HTTPS service on Amazon EC2 instances with support for WebSockets using load balancers.
How can the Architect meet these requirements? Configure a Layer-4 Load Balancer Configure an application Load Balancer Configure a Classic Load Balancer Configure a Network Load Balancer.
A sOlutions Architect plans to migrate NAT instances to NAT gateway. THe Architect has NAT instances with scripts to manage high availability
What is the MOST efficient method to achieve similar high availability with NAT gateway? Launch a NAT gateway in Each Availability Zone Add an ELB Application Load Balancer in front of NAT gateway Use a mix of NAT instances And NAT gateway Remove source/destination check on NAT instances.
A Solution Architect has a two-tier application with a single Amazon EC2 instance web server and Amazon RDS MySQL Multi-AZ DB instances. The Architect is re-artchitecting the application for high availability by adding instances in a second Availability zone.
Which additional services will improve the availability of the application? (Choose two) AWS CloudTrail ELB CLassic Load Balancer Amazon ElastiCache Amazon DynamoDN Amazon Scaling group.
A company´s development team plans to create an Amazon S3 bucket that contains millions of images. The team wants to maximize the read performance of Amazon S3.
Which naming scheme should the company use? Add a sequential id as the suffix Add hexadecimal hash as the suffix Add a date as the prefix Add a hexadecimal hash as the prefix.
A news organization plans to migrate their 20 TB video archive to AWS. The files are rarely accessed, but when they are, a request is made in advance and a 3 to 5 hour retrieval time frame is acceptable. However, when there is a breaking news story, the editor require access to archived footage within minutes.
Which storage solution meets the needs of this organization while providing the LOWEST cost of storage. Store the archive in Amazon Glacier and pay the additional charge for expedited retrieval when needed Store the archive in Amazon Glacier and use standard retrieval for all content Store the archive in Amazon S3 Reduced Redundancy Storage Store the archive in Amazon S3 with a lifecycle policy to move this to S3 Infrequent Access after 30 days.
AN organization uses Amazon S3 to store video content served via its website. It only has rights to deliver this content to users within its own country and needs to restrict access.
How can the organization wnsure that these files are only accessible fron within its country? Use file-based ACL permissions on each video file to allow access only to users inside the organization´s country Use Amazon CLoud Front and Geo Restriction to allow access only to users inside the organization´s country Use an Amazon S3 bucket ACL to allow access only to users inside the organization´s country Use a custom Amazon S3 bucket policy to allow access only to users inside the organization´s country.
An application stack includes an Elastic Load Balancer in a public subnet, a fleet of Amazon EC2 instances in an Auto Scaling group, and an Amazon RDS MySQL cluster. Users connect to the application from the internet. The application servers and database must be secure.
How should a Solutions Architect performthis task? Create a public subnet for the Amazon EC2 instances and a public subnet for the Amazon RDS cluster Create a private subnet for the Amazon EC2 instances and a private subnet for the Amazon RDS cluster Create a public subnet for the Amazon EC2 instances and a private subnet for the Amazon RDS cluster Create a private subnet for the Amazon EC2 instances and a public subnet for the Amazon RDS cluster.
A Solution Architect is designing an Amazon VPC. Application in the VPC must have private connectivity to Amazon DynamoDB in the same AWS Region.
The design should route DynamoDB traffic though NAT gateway VPC endpoint AWS Direct Connect VPC pëering connection.
A Solutions Architect is designing a new social media application. The application must provide a secure method for uploading profile photos. Each user should be able to upload a profile photo into a shared storageg location for one week after their profile is created.
Which approach wiil meet all of these requirements? Use Amazon CLoudFront with AWS CLoudTrail for aditing the specific times when profile photos are uploaded Use Amazon Kinesis with AWS CloudTrail for auditing the specific times when profile photos are uploaded Use Amazon S3 with private access policy and generate pre-signed URLs each time a new site profile is created. Use AmazonEBS volumes with IAM policies restricting user access to specific time periods.
A Solutions Architect is designing a solution that includes a managed VPN connection . To monitor whether the VPN connection is up or down, the Architect should use: AWS CloudTrail to monitor the endpoint an AWS Lambda function that parses the VPN connection logs an external service to ping the VPN endpoint from outside the VPC the Cloud Watch TunnelState Metric.
An application produces monthly reports that must be inmediatly accessible for up to 7 days. After 7 days, the data can be archived. Compliance policies require that the archived data be retrievable within 24 hours of a request.
What is the MOST cost-effective approach to satisfy the compliance requirement? Store the data in Amazon S3 Standard storage with a lifecycle rule to transition the data to the GLACIER storage class after 7 days Store the data in Amazon S3 Standard storage with a lifecycle rule to transition the data to the GLACIER storage class after 30 days Store the data in Amazon S3 Standard storage with a lifecycle rule to transition the data to Amazon S3 Standard -Infrequent Access (S3 Standard -IA) after 7 days Store the data in Amazon S3 Standard storage with a lifecycle rule to transition the data to Amazon S3 Standard -Infrequent Access (S3 Standard -IA) after 7 days then transition to the GLACIER storage class after 30 days.
A company is developing a new stateless web service with low memory requirements. The service needs to scale based on demand.
What is the MOST cost-effective solution? Deploy the application onto AWS Beanstalk Deploy the application onto a container with an Amazon ECS EC2 launch type Deploy the application onto AWS Lambda with access through Amazon API Gateway Deploy the application onto an Amazon EC2 Spot Fleet.
A customer is deploying a production portal application on AWS. The database tier has structured data. The company requires a solution that is easily manageable and highly available.
How can these requirements be met? Use RDS with a single Available Zone option and schedule periodic database snapshots Deploy the database on multiple Amazon EC2 instances backed by Amazon EBS across multiplr Availability Zones. Use Amazon DynamoDB Use Amazon RDS with a multiple Availability Zone option.
|
