CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. SAA-C03

Free SAA-C03 Exam Braindumps (page: 65)

Page 64 of 256
PDF with 1019 Questions

A solutions architect has created two IAM policies: Policy1 and Policy2. Both policies are attached to an IAM group.
A cloud engineer is added as an IAM user to the IAM group. Which action will the cloud engineer be able to perform?

  1. Deleting IAM users
  2. Deleting directories
  3. Deleting Amazon EC2 instances
  4. Deleting logs from Amazon CloudWatch Logs

Answer(s): C



A company is reviewing a recent migration of a three-tier application to a VPC. The security team discovers that the principle of least privilege is not being applied to Amazon EC2 security group ingress and egress rules between the application tiers.
What should a solutions architect do to correct this issue?

  1. Create security group rules using the instance ID as the source or destination.
  2. Create security group rules using the security group ID as the source or destination.
  3. Create security group rules using the VPC CIDR blocks as the source or destination.
  4. Create security group rules using the subnet CIDR blocks as the source or destination.

Answer(s): B



A company has an ecommerce checkout workflow that writes an order to a database and calls a service to process the payment. Users are experiencing timeouts during the checkout process. When users resubmit the checkout form, multiple unique orders are created for the same desired transaction.
How should a solutions architect refactor this workflow to prevent the creation of multiple orders?

  1. Configure the web application to send an order message to Amazon Kinesis Data Firehose. Set the payment service to retrieve the message from Kinesis Data Firehose and process the order.
  2. Create a rule in AWS CloudTrail to invoke an AWS Lambda function based on the logged application path request. Use Lambda to query the database, call the payment service, and pass in the order information.
  3. Store the order in the database. Send a message that includes the order number to Amazon Simple Notification Service (Amazon SNS). Set the payment service to poll Amazon SNS, retrieve the message, and process the order.
  4. Store the order in the database. Send a message that includes the order number to an Amazon Simple Queue Service (Amazon SQS) FIFO queue. Set the payment service to retrieve the message and process the order. Delete the message from the queue.

Answer(s): D



A solutions architect is implementing a document review application using an Amazon S3 bucket for storage. The solution must prevent accidental deletion of the documents and ensure that all versions of the documents are available. Users must be able to download, modify, and upload documents.
Which combination of actions should be taken to meet these requirements? (Choose two.)

  1. Enable a read-only bucket ACL.
  2. Enable versioning on the bucket.
  3. Attach an IAM policy to the bucket.
  4. Enable MFA Delete on the bucket.
  5. Encrypt the bucket using AWS KMS.

Answer(s): B,D






Post your Comments and Discuss Amazon SAA-C03 exam with other Community members:

SAA-C03 Exam Discussions & Posts