CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. SAA-C03

Free SAA-C03 Exam Braindumps (page: 57)

Page 56 of 247
PDF with 1019 Questions

A company runs an application on a group of Amazon Linux EC2 instances. For compliance reasons, the company must retain all application log files for 7 years. The log files will be analyzed by a reporting tool that must be able to access all the files concurrently.

Which storage solution meets these requirements MOST cost-effectively?

  1. Amazon Elastic Block Store (Amazon EBS)
  2. Amazon Elastic File System (Amazon EFS)
  3. Amazon EC2 instance store
  4. Amazon S3

Answer(s): D



A company has hired an external vendor to perform work in the company’s AWS account. The vendor uses an automated tool that is hosted in an AWS account that the vendor owns. The vendor does not have IAM access to the company’s AWS account.

How should a solutions architect grant this access to the vendor?

  1. Create an IAM role in the company’s account to delegate access to the vendor’s IAM role. Attach the appropriate IAM policies to the role for the permissions that the vendor requires.
  2. Create an IAM user in the company’s account with a password that meets the password complexity requirements. Attach the appropriate IAM policies to the user for the permissions that the vendor requires.
  3. Create an IAM group in the company’s account. Add the tool’s IAM user from the vendor account to the group. Attach the appropriate IAM policies to the group for the permissions that the vendor requires.
  4. Create a new identity provider by choosing “AWS account” as the provider type in the IAM console. Supply the vendor’s AWS account ID and user name. Attach the appropriate IAM policies to the new provider for the permissions that the vendor requires.

Answer(s): A



A company has deployed a Java Spring Boot application as a pod that runs on Amazon Elastic Kubernetes Service (Amazon EKS) in private subnets. The application needs to write data to an Amazon DynamoDB table. A solutions architect must ensure that the application can interact with the DynamoDB table without exposing traffic to the internet.

Which combination of steps should the solutions architect take to accomplish this goal? (Choose two.)

  1. Attach an IAM role that has sufficient privileges to the EKS pod.
  2. Attach an IAM user that has sufficient privileges to the EKS pod.
  3. Allow outbound connectivity to the DynamoDB table through the private subnets’ network ACLs.
  4. Create a VPC endpoint for DynamoDB.
  5. Embed the access keys in the Java Spring Boot code.

Answer(s): A,D



A company recently migrated its web application to AWS by rehosting the application on Amazon EC2 instances in a single AWS Region. The company wants to redesign its application architecture to be highly available and fault tolerant. Traffic must reach all running EC2 instances randomly.

Which combination of steps should the company take to meet these requirements? (Choose two.)

  1. Create an Amazon Route 53 failover routing policy.
  2. Create an Amazon Route 53 weighted routing policy.
  3. Create an Amazon Route 53 multivalue answer routing policy.
  4. Launch three EC2 instances: two instances in one Availability Zone and one instance in another Availability Zone.
  5. Launch four EC2 instances: two instances in one Availability Zone and two instances in another Availability Zone.

Answer(s): C,E






Post your Comments and Discuss Amazon SAA-C03 exam with other Community members:

SAA-C03 Exam Discussions & Posts