Free AWS-SOLUTIONS-ARCHITECT-PROFESSIONAL Exam Braindumps (page: 55)

Page 55 of 134

A company has set up its entire infrastructure on AWS. The company uses Amazon EC2 instances to host its ecommerce website and uses Amazon S3 to store static data. Three engineers at the company handle the cloud administration and development through one AWS account. Occasionally, an engineer alters an EC2 security group configuration of another engineer and causes noncompliance issues in the environment.

A solutions architect must set up a system that tracks changes that the engineers make. The system must send alerts when the engineers make noncompliant changes to the security settings for the EC2 instances.

What is the FASTEST way for the solutions architect to meet these requirements?

  1. Set up AWS Organizations for the company. Apply SCPs to govern and track noncompliant security group changes that are made to the AWS account.
  2. Enable AWS CloudTrail to capture the changes to EC2 security groups. Enable Amazon CloudWatch rules to provide alerts when noncompliant security settings are detected.
  3. Enable SCPs on the AWS account to provide alerts when noncompliant security group changes are made to the environment.
  4. Enable AWS Config on the EC2 security groups to track any noncompliant changes. Send the changes as alerts through an Amazon Simple Notification Service (Amazon SNS) topic.

Answer(s): D

Explanation:

D: Enabling AWS Config on the EC2 security groups allows tracking of any changes and automatically checks for compliance against predefined rules. AWS Config can send notifications via Amazon SNS when noncompliant changes are detected, providing the fastest and most efficient way to meet the requirement of tracking and alerting on noncompliant changes.



A company has IoT sensors that monitor traffic patterns throughout a large city. The company wants to read and collect data from the sensors and perform aggregations on the data.

A solutions architect designs a solution in which the IoT devices are streaming to Amazon Kinesis Data Streams. Several applications are reading from the stream. However, several consumers are experiencing throttling and are periodically encountering a ReadProvisionedThroughputExceeded error.

Which actions should the solutions architect take to resolve this issue? (Choose three.)

  1. Reshard the stream to increase the number of shards in the stream.
  2. Use the Kinesis Producer Library (KPL). Adjust the polling frequency.
  3. Use consumers with the enhanced fan-out feature.
  4. Reshard the stream to reduce the number of shards in the stream.
  5. Use an error retry and exponential backoff mechanism in the consumer logic.
  6. Configure the stream to use dynamic partitioning.

Answer(s): A,C,E

Explanation:

-A) Resharding the stream increases the number of shards, allowing more throughput and reducing throttling by distributing the data across more shards.
-C) Using the enhanced fan-out feature allows each consumer to have a dedicated 2 MBps throughput, reducing contention and throttling among consumers.
-E) Implementing error retry and exponential backoff in the consumer logic helps handle temporary throttling issues by retrying with increasing delays, improving the chances of successful reads.
These actions help resolve the throttling issue and the ReadProvisionedThroughputExceeded error by optimizing stream consumption and throughput.



A company uses AWS Organizations to manage its AWS accounts. The company needs a list of all its Amazon EC2 instances that have underutilized CPU or memory usage. The company also needs recommendations for how to downsize these underutilized instances.

Which solution will meet these requirements with the LEAST effort?

  1. Install a CPU and memory monitoring tool from AWS Marketplace on all the EC2 instances. Store the findings in Amazon S3. Implement a Python script to identify underutilized instances. Reference EC2 instance pricing information for recommendations about downsizing options.
  2. Install the Amazon CloudWatch agent on all the EC2 instances by using AWS Systems Manager. Retrieve the resource optimization recommendations from AWS Cost Explorer in the organization’s management account. Use the recommendations to downsize underutilized instances in all accounts of the organization.
  3. Install the Amazon CloudWatch agent on all the EC2 instances by using AWS Systems Manager. Retrieve the resource optimization recommendations from AWS Cost Explorer in each account of the organization. Use the recommendations to downsize underutilized instances in all accounts of the organization.
  4. Install the Amazon CloudWatch agent on all the EC2 instances by using AWS Systems Manager. Create an AWS Lambda function to extract CPU and memory usage from all the EC2 instances. Store the findings as files in Amazon S3. Use Amazon Athena to find underutilized instances. Reference EC2 instance pricing information for recommendations about downsizing options.

Answer(s): B

Explanation:

B) Using AWS Cost Explorer provides built-in resource optimization recommendations for EC2 instances, including downsizing suggestions for underutilized resources. Installing the Amazon CloudWatch agent via AWS Systems Manager enables resource usage monitoring for CPU and memory. Retrieving recommendations from Cost Explorer in the organization's management account allows central management across all accounts, making this the most efficient and low-effort solution.



A company wants to run a custom network analysis software package to inspect traffic as traffic leaves and enters a VPC. The company has deployed the solution by using AWS CloudFormation on three Amazon EC2 instances in an Auto Scaling group. All network routing has been established to direct traffic to the EC2 instances.

Whenever the analysis software stops working, the Auto Scaling group replaces an instance. The network routes are not updated when the instance replacement occurs.

Which combination of steps will resolve this issue? (Choose three.)

  1. Create alarms based on EC2 status check metrics that will cause the Auto Scaling group to replace the failed instance.
  2. Update the CloudFormation template to install the Amazon CloudWatch agent on the EC2 instances. Configure the CloudWatch agent to send process metrics for the application.
  3. Update the CloudFormation template to install AWS Systems Manager Agent on the EC2 instances. Configure Systems Manager Agent to send process metrics for the application.
  4. Create an alarm for the custom metric in Amazon CloudWatch for the failure scenarios. Configure the alarm to publish a message to an Amazon Simple Notification Service (Amazon SNS) topic.
  5. Create an AWS Lambda function that responds to the Amazon Simple Notification Service (Amazon SNS) message to take the instance out of service. Update the network routes to point to the replacement instance.
  6. In the CloudFormation template, write a condition that updates the network routes when a replacement instance is launched.

Answer(s): B,D,E

Explanation:

B) Installing the Amazon CloudWatch agent enables monitoring of the custom software's process metrics, allowing detection of failures.
D) Creating a CloudWatch alarm for failure scenarios ensures that any issue with the software is detected promptly. The alarm can send a notification to an SNS topic, which triggers further actions.
E) An AWS Lambda function can respond to the SNS notification, taking the failed instance out of service and updating the network routes to point to the new instance, ensuring traffic flows through the replacement instance.
This combination ensures automatic monitoring, detection of software failures, and proper rerouting of network traffic to the new instance.



Page 55 of 134



Post your Comments and Discuss Amazon AWS-SOLUTIONS-ARCHITECT-PROFESSIONAL exam with other Community members:

Zak commented on June 28, 2024
@AppleKid, I manged to pass this exam after failing once. Do not set for your exam without memorizing these questions. These are what you will see in the real exam.
Anonymous
upvote

Apple Kid commented on June 26, 2024
Did anyone gave exam recently and tell if these are good?
Anonymous
upvote

Captain commented on June 26, 2024
This is so helpful
Anonymous
upvote

udaya commented on April 25, 2024
stulll learning and seem to be questions are helpful
Anonymous
upvote

Jerry commented on February 18, 2024
very good for exam !!!!
HONG KONG
upvote

AWS-Guy commented on February 16, 2024
Precise and to the point. I aced this exam and now going for the next exam. Very great full to this site and it's wonderful content.
CANADA
upvote

Jerry commented on February 12, 2024
very good exam stuff
HONG KONG
upvote

travis head commented on November 16, 2023
I gave the Amazon SAP-C02 tests and prepared from this site as it has latest mock tests available which helped me evaluate my performance and score 919/1000
Anonymous
upvote

Weed Flipper commented on October 07, 2020
This is good stuff man.
CANADA
upvote

IT-Guy commented on September 29, 2020
Xengine software is good and free. Too bad it is only in English and no support for French.
FRANCE
upvote

pema commented on August 30, 2019
Can I have the latest version of this exam?
GERMANY
upvote

MrSimha commented on February 23, 2019
Thank you
Anonymous
upvote

Phil C. commented on November 12, 2018
To soon to tell, but I will be back to post a review after my exam.
Anonymous
upvote

MD EJAZ ALI TANWIR commented on August 20, 2017
This is valid dump in US. Thank you guys for providing this.
UNITED STATES
upvote

flypig commented on June 02, 2017
The Braindumps will short my ready time for this exam!
CHINA
upvote