CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. SAP-C01

Free SAP-C01 Exam Braindumps (page: 42)

Page 42 of 134
PDF with 529 Questions

A company is running a web application in a VPC. The web application runs on a group of Amazon EC2 instances behind an Application Load Balancer (ALB). The ALB is using AWS WAF.

An external customer needs to connect to the web application. The company must provide IP addresses to all external customers.

Which solution will meet these requirements with the LEAST operational overhead?

  1. Replace the ALB with a Network Load Balancer (NLB). Assign an Elastic IP address to the NLB.
  2. Allocate an Elastic IP address. Assign the Elastic IP address to the ALProvide the Elastic IP address to the customer.
  3. Create an AWS Global Accelerator standard accelerator. Specify the ALB as the accelerator's endpoint. Provide the accelerator's IP addresses to the customer.
  4. Configure an Amazon CloudFront distribution. Set the ALB as the origin. Ping the distribution's DNS name to determine the distribution's public IP address. Provide the IP address to the customer.

Answer(s): C

Explanation:

C) Create an AWS Global Accelerator standard accelerator. Specify the ALB as the accelerator's endpoint. Provide the accelerator's IP addresses to the customer.
1.IP Address Provisioning: AWS Global Accelerator provides static IP addresses that can be used by clients to connect to the application. This eliminates the need for clients to change IP addresses if the underlying infrastructure changes.
2.Load Balancing: By specifying the ALB as the endpoint for the Global Accelerator, it maintains the load balancing functionality while directing traffic efficiently to the application instances.
3.High Availability and Performance: Global Accelerator automatically routes traffic to the optimal endpoint based on performance, health, and routing policies, ensuring low latency and high availability.
4.Least Operational Overhead: Once set up, the Global Accelerator requires minimal ongoing management, making it a low-overhead solution for providing stable IP addresses to external customers.



A company has a few AWS accounts for development and wants to move its production application to AWS. The company needs to enforce Amazon Elastic Block Store (Amazon EBS) encryption at rest current production accounts and future production accounts only. The company needs a solution that includes built-in blueprints and guardrails.

Which combination of steps will meet these requirements? (Choose three.)

  1. Use AWS CloudFormation StackSets to deploy AWS Config rules on production accounts.
  2. Create a new AWS Control Tower landing zone in an existing developer account. Create OUs for accounts. Add production and development accounts to production and development OUs, respectively.
  3. Create a new AWS Control Tower landing zone in the company’s management account. Add production and development accounts to production and development OUs. respectively.
  4. Invite existing accounts to join the organization in AWS Organizations. Create SCPs to ensure compliance.
  5. Create a guardrail from the management account to detect EBS encryption.
  6. Create a guardrail for the production OU to detect EBS encryption.

Answer(s): C,D,F

Explanation:

C) Create a new AWS Control Tower landing zone in the company’s management account. Add production and development accounts to production and development OUs, respectively.
-Landing Zone Setup: Setting up a Control Tower landing zone in the management account establishes a governance framework for managing multiple AWS accounts and provides built-in guardrails.
D) Invite existing accounts to join the organization in AWS Organizations. Create SCPs to ensure compliance.
-Account Management: Inviting existing accounts to join ensures they are managed under the organization's governance model. Service Control Policies (SCPs) can be used to enforce compliance with EBS encryption at rest.
F) Create a guardrail for the production OU to detect EBS encryption.
-Guardrail Implementation: Guardrails in AWS Control Tower help enforce best practices and compliance. Creating a specific guardrail for the production OU will ensure that EBS encryption is enforced for all production accounts automatically.
These steps provide a comprehensive solution to enforce EBS encryption at rest while leveraging AWS Control Tower’s capabilities for governance and compliance.



A company is running a critical stateful web application on two Linux Amazon EC2 instances behind an Application Load Balancer (ALB) with an Amazon RDS for MySQL database. The company hosts the DNS records for the application in Amazon Route 53. A solutions architect must recommend a solution to improve the resiliency of the application.

The solution must meet the following objectives:

•Application tier: RPO of 2 minutes. RTO of 30 minutes
•Database tier: RPO of 5 minutes. RTO of 30 minutes

The company does not want to make significant changes to the existing application architecture. The company must ensure optimal latency after a failover.

Which solution will meet these requirements?

  1. Configure the EC2 instances to use AWS Elastic Disaster Recovery. Create a cross-Region read replica for the RDS DB instance. Create an ALB in a second AWS Region. Create an AWS Global Accelerator endpoint, and associate the endpoint with the ALBs. Update DNS records to point to the Global Accelerator endpoint.
  2. Configure the EC2 instances to use Amazon Data Lifecycle Manager (Amazon DLM) to take snapshots of the EBS volumes. Configure RDS automated backups. Configure backup replication to a second AWS Region. Create an ALB in the second Region. Create an AWS Global Accelerator endpoint, and associate the endpoint with the ALBs. Update DNS records to point to the Global Accelerator endpoint.
  3. Create a backup plan in AWS Backup for the EC2 instances and RDS DB instance. Configure backup replication to a second AWS Region. Create an ALB in the second Region. Configure an Amazon CloudFront distribution in front of the ALB. Update DNS records to point to CloudFront.
  4. Configure the EC2 instances to use Amazon Data Lifecycle Manager (Amazon DLM) to take snapshots of the EBS volumes. Create a cross-Region read replica for the RDS DB instance. Create an ALB in a second AWS Region. Create an AWS Global Accelerator endpoint, and associate the endpoint with the ALBs.

Answer(s): A

Explanation:

A) Configure the EC2 instances to use AWS Elastic Disaster Recovery. Create a cross-Region read replica for the RDS DB instance. Create an ALB in a second AWS Region. Create an AWS Global Accelerator endpoint, and associate the endpoint with the ALBs. Update DNS records to point to the Global Accelerator endpoint.
-AWS Elastic Disaster Recovery: This service provides continuous replication of the EC2 instances to a second region, ensuring a low RPO (Recovery Point Objective) and facilitating quick recovery.
-Cross-Region Read Replica for RDS: This setup helps achieve the required RPO and ensures that the database can be quickly promoted to a master if the primary fails.
-Global Accelerator: By routing traffic through Global Accelerator, you can direct users to the closest healthy region, reducing latency during failover scenarios and ensuring optimal performance after a disaster.
This solution aligns with the company's requirements for RPO and RTO while minimizing changes to the existing architecture.



A solutions architect wants to cost-optimize and appropriately size Amazon EC2 instances in a single AWS account. The solutions architect wants to ensure that the instances are optimized based on CPU, memory, and network metrics.

Which combination of steps should the solutions architect take to meet these requirements? (Choose two.)

  1. Purchase AWS Business Support or AWS Enterprise Support for the account.
  2. Turn on AWS Trusted Advisor and review any “Low Utilization Amazon EC2 Instances” recommendations.
  3. Install the Amazon CloudWatch agent and configure memory metric collection on the EC2 instances.
  4. Configure AWS Compute Optimizer in the AWS account to receive findings and optimization recommendations.
  5. Create an EC2 Instance Savings Plan for the AWS Regions, instance families, and operating systems of interest.

Answer(s): C,D

Explanation:

C) Install the Amazon CloudWatch agent and configure memory metric collection on the EC2 instances.
-By installing the CloudWatch agent, you can gather detailed metrics about memory usage, which is not available by default. This allows for a comprehensive analysis of instance performance, including CPU, memory, and network utilization.
D) Configure AWS Compute Optimizer in the AWS account to receive findings and optimization recommendations.
-AWS Compute Optimizer analyzes your historical utilization data and provides recommendations for optimal instance types based on your actual resource usage patterns. This helps in resizing instances to match workload requirements effectively.
These two steps will allow the solutions architect to gather detailed utilization data and obtain actionable recommendations for cost optimization and proper sizing of EC2 instances.



Page 42 of 134



Post your Comments and Discuss Amazon SAP-C01 exam with other Community members:

Mike commented on October 08, 2024
Not bad at all
CANADA
upvote

Petro UA commented on October 01, 2024
hate DNS questions. So need to practice more
UNITED STATES
upvote

Gilbert commented on September 14, 2024
Cant wait to pass mine
Anonymous
upvote

Paresh commented on April 19, 2023
There were only 3 new questions that I did not see in this exam dumps. There rest of the questions were all word by word from this dump.
UNITED STATES
upvote

Matthew commented on October 18, 2022
An extremely helpful study package. I highly recommend.
UNITED STATES
upvote

Peter commented on June 23, 2022
I thought these were practice exam questions but they turned out to be real questoins from the actual exam.
NETHERLANDS
upvote

Henry commented on September 29, 2021
I do not have the words to thank you guys. Passing this exam was creting many scary thoughts. I am gold I used your braindumps and passed. I can get a beer and relax now.
AUSTRALIA
upvote

Nik commented on April 12, 2021
I would not be able to pass my exam without your help. You guys rock!
SINGAPOR
upvote

Rohit commented on January 09, 2021
Thank you for the 50% sale. I really appreicate this price cut during this extra ordinary time where everyone is having financial problem.
INDIA
upvote

Roger-That commented on December 23, 2020
The 20% holiday discount is a sweet deal. Thank you for the discount code.
UNITED STATES
upvote

Duke commented on October 23, 2020
It is helpful. Questions are real. Purcahse is easy but the only problem, there is no option to pay in Euro. Only USD.
GERMANY
upvote

Tan Jin commented on September 09, 2020
The questions from this exam dumps is valid. I got 88% in my exam today.
SINGAPORE
upvote

Dave commented on November 05, 2019
Useful practice questions to get a feel of the actual exam. Some of the answers are not correct so please exercise caution.
EUROPEAN UNION
upvote

Je commented on October 02, 2018
Great
UNITED STATES
upvote

Invisible Angel commented on January 11, 2018
Have yet to try. But most recommend it
NEW ZEALAND
upvote

Mic commented on December 26, 2017
Nice dumps, site is secure and checkout process is a breeze.
UNITED STATES
upvote