CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. SAA-C02

Free SAA-C02 Exam Braindumps

A company needs a storage solution for an application that runs on a high performance computing (HPC) cluster. The cluster is hosted on AWS Fargate for Amazon Elastic Container Service (Amazon ECS) The company needs a mountable file system that provides concurrent access to files while delivering hundreds of GBps of throughput at sub- millisecond latencies.

Which solution meets these requirements?

  1. Create an Amazon FSx for Lustre file share for the application data Create an IAM role that allows Fargate to access the FSx for Lustre file share.
  2. Create an Amazon Elastic File System (Amazon EFS) file share for the application data. Create an IAM role that allows Fargate to access the EFS file share.
  3. Create an Amazon S3 bucket for the application data. Create an S3 bucket policy that allows Fargate to access the S3 bucket.
  4. Create an Amazon Elastic Block Store (Amazon EBS) Provisioned IOPS SSD (io2) volume for the application data Create an IAM role that allows Fargate to access the volume.

Answer(s): A



The following IAM policy is attached to an IAM group. This is the only policy applied to the group.





What are the effective IAM permissions of this policy for group members?

  1. Group members are permitted any Amazon EC2 action within the us-east-1 Region. Statements after the Allow permission are not applied.
  2. Group members are denied any Amazon EC2 permissions in the us-east-1 Region unless they are logged in with multi-factor authentication (MFA).
  3. Group members are allowed the ec2 Stoplnstances and ec2. TerminateInstances permissions for all Regions when logged in with multi-factor authentication (MFA) Group members are permitted any other Amazon EC2 action.
  4. Group members are allowed the ec2 Stoplnstances and ec2. Terminateinstances permissions for the us-east-1 Region only when logged in with multi-factor authentication (MFA) Group members are permitted any other Amazon EC2 action within the us-east-1 Region.

Answer(s): D

Explanation:

https://docs.aws.amazon.com/AWSEC2/latest/APIReference/ec2-api- permissions.html
By default, AWS Identity and Access Management (IAM) users don't have permission to create or modify Amazon EC2 resources, or perform tasks using the Amazon EC2 API. To allow IAM users to create or modify resources and perform tasks, you must create IAM policies that grant IAM users permissions for the specific resources and API actions they'll need to use, and then attach those policies to the IAM users or groups that require those permissions.



A company has a customer relationship management (CRM) application that stores data in an Amazon RDS DB instance that runs Microsoft SQL Server. The company's IT staff has administrative access to the database. The database contains sensitive data. The company wants to ensure that the data is not accessible to the IT staff and that only authorized personnel can view the data.

What should a solutions architect do to secure the data?

  1. Use client-side encryption with an Amazon RDS managed key.
  2. Use client-side encryption with an AWS Key Management Service (AWS KMS) customer managed key.
  3. Use Amazon RDS encryption with an AWS Key Management Service (AWS KMS) default encryption key.
  4. Use Amazon RDS encryption with an AWS Key Management Service (AWS KMS) customer managed key.

Answer(s): D



A company operates a website on Amazon EC2 Linux instances Some of the instances are failing. Troubleshooting points to insufficient swap space on the failed instances. The operations team lead needs a solution to monitor this.

What should a solutions architect recommend?

  1. Configure an Amazon CloudWatch SwapUsage metric dimension Monitor the SwapUsage dimension in the EC2 metrics in CloudWatch.
  2. Use EC2 metadata to collect information, then publish it to Amazon CloudWatch custom metrics Monitor SwapUsage metrics in CloudWatch.
  3. Install an Amazon CloudWatch agent on the instances. Run an appropriate script on a set schedule. Monitor SwapUtilization metrics in CloudWatch.
  4. Enable detailed monitoring in the EC2 console Create an Amazon CloudWatch SwapUtilization custom metric Monitor SwapUtilization metrics in CloudWatch.

Answer(s): A






Post your Comments and Discuss Amazon SAA-C02 exam with other Community members:

Jaqulin commented on November 02, 2024
I appreciate the service and the questions being free. Finally something free in this world.
FRANCE
upvote

Ravi commented on October 20, 2023
I was able to pass. Thanks.
IRELAND
upvote

OOTPGuru commented on June 21, 2021
These practice exams help me make the best use of my time.
UNITED STATES
upvote

Rehaan Bhat commented on November 03, 2020
I just purchased the SAA-C02 dump, it was very easy and secure to buy. I will share the exam result once completed. cheers!
UNITED STATES
upvote