CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. SAP-C01

Free SAP-C01 Exam Braindumps (page: 68)

Page 68 of 134
PDF with 529 Questions

A company wants to refactor its retail ordering web application that currently has a load-balanced Amazon EC2 instance fleet for web hosting, database API services, and business logic. The company needs to create a decoupled, scalable architecture with a mechanism for retaining failed orders while also minimizing operational costs.

Which solution will meet these requirements?

  1. Use Amazon S3 for web hosting with Amazon API Gateway for database API services. Use Amazon Simple Queue Service (Amazon SQS) for order queuing. Use Amazon Elastic Container Service (Amazon ECS) for business logic with Amazon SQS long polling for retaining failed orders.
  2. Use AWS Elastic Beanstalk for web hosting with Amazon API Gateway for database API services. Use Amazon MQ for order queuing. Use AWS Step Functions for business logic with Amazon S3 Glacier Deep Archive for retaining failed orders.
  3. Use Amazon S3 for web hosting with AWS AppSync for database API services. Use Amazon Simple Queue Service (Amazon SQS) for order queuing. Use AWS Lambda for business logic with an Amazon SQS dead-letter queue for retaining failed orders.
  4. Use Amazon Lightsail for web hosting with AWS AppSync for database API services. Use Amazon Simple Email Service (Amazon SES) for order queuing. Use Amazon Elastic Kubernetes Service (Amazon EKS) for business logic with Amazon OpenSearch Service for retaining failed orders.

Answer(s): C

Explanation:

C) Using Amazon S3 for web hosting and AWS AppSync for database API services provides a highly scalable and cost-effective architecture. For order queuing, Amazon Simple Queue Service (SQS) ensures decoupling and scalability. Integrating AWS Lambda for business logic provides a serverless, scalable solution that minimizes operational overhead. Implementing an SQS dead-letter queue ensures that failed orders are retained for future processing or debugging. This solution effectively refactors the application to meet the requirements of scalability, decoupling, and operational cost minimization.



A company hosts a web application on AWS in the us-east-1 Region. The application servers are distributed across three Availability Zones behind an Application Load Balancer. The database is hosted in a MySQL database on an Amazon EC2 instance. A solutions architect needs to design a cross-Region data recovery solution using AWS services with an RTO of less than 5 minutes and an RPO of less than 1 minute. The solutions architect is deploying application servers in us-west-2, and has configured Amazon Route 53 health checks and DNS failover to us-west-2.

Which additional step should the solutions architect take?

  1. Migrate the database to an Amazon RDS for MySQL instance with a cross-Region read replica in us-west-2.
  2. Migrate the database to an Amazon Aurora global database with the primary in us-east-1 and the secondary in us-west-2.
  3. Migrate the database to an Amazon RDS for MySQL instance with a Multi-AZ deployment.
  4. Create a MySQL standby database on an Amazon EC2 instance in us-west-2.

Answer(s): B

Explanation:

B) Using an Amazon Aurora global database provides a highly available and low-latency cross-Region replication solution. With the primary database in us-east-1 and a secondary in us-west-2, Aurora ensures RPO of less than 1 minute due to asynchronous replication with low lag. In case of a failure in us-east-1, the secondary in us-west-2 can be promoted to primary within the required RTO of less than 5 minutes. This solution meets both the RTO and RPO requirements and ensures seamless cross-Region disaster recovery.



A company is using AWS Organizations to manage multiple accounts. Due to regulatory requirements, the company wants to restrict specific member accounts to certain AWS Regions, where they are permitted to deploy resources. The resources in the accounts must be tagged, enforced based on a group standard, and centrally managed with minimal configuration.

What should a solutions architect do to meet these requirements?

  1. Create an AWS Config rule in the specific member accounts to limit Regions and apply a tag policy.
  2. From the AWS Billing and Cost Management console, in the management account, disable Regions for the specific member accounts and apply a tag policy on the root.
  3. Associate the specific member accounts with the root. Apply a tag policy and an SCP using conditions to limit Regions.
  4. Associate the specific member accounts with a new OU. Apply a tag policy and an SCP using conditions to limit Regions.

Answer(s): D

Explanation:

D) Associating the specific member accounts with a new Organizational Unit (OU) and applying both a tag policy and a Service Control Policy (SCP) is the best approach. The SCP can be used to restrict access to certain AWS Regions, while the tag policy ensures consistent tagging across resources in those accounts. This solution allows for centralized management and enforces the required limitations on Region access and tagging, fulfilling the regulatory requirements with minimal configuration.



A company has an application that generates reports and stores them in an Amazon S3 bucket. When a user accesses their report, the application generates a signed URL to allow the user to download the report. The company's security team has discovered that the files are public and that anyone can download them without authentication. The company has suspended the generation of new reports until the problem is resolved.

Which set of actions will immediately remediate the security issue without impacting the application's normal workflow?

  1. Create an AWS Lambda function that applies a deny all policy for users who are not authenticated. Create a scheduled event to invoke the Lambda function.
  2. Review the AWS Trusted Advisor bucket permissions check and implement the recommended actions.
  3. Run a script that puts a private ACL on all of the objects in the bucket.
  4. Use the Block Public Access feature in Amazon S3 to set the IgnorePublicAcIs option to TRUE on the bucket.

Answer(s): D

Explanation:

D) Using the Block Public Access feature in Amazon S3 and setting the IgnorePublicAcls option to TRUE on the bucket will immediately prevent any public access to the objects in the bucket without disrupting the application's normal workflow. This will ensure that only authenticated and authorized users can access the reports via signed URLs, addressing the security issue while maintaining the application's functionality.



Page 68 of 134



Post your Comments and Discuss Amazon SAP-C01 exam with other Community members:

Mike commented on October 08, 2024
Not bad at all
CANADA
upvote

Petro UA commented on October 01, 2024
hate DNS questions. So need to practice more
UNITED STATES
upvote

Gilbert commented on September 14, 2024
Cant wait to pass mine
Anonymous
upvote

Paresh commented on April 19, 2023
There were only 3 new questions that I did not see in this exam dumps. There rest of the questions were all word by word from this dump.
UNITED STATES
upvote

Matthew commented on October 18, 2022
An extremely helpful study package. I highly recommend.
UNITED STATES
upvote

Peter commented on June 23, 2022
I thought these were practice exam questions but they turned out to be real questoins from the actual exam.
NETHERLANDS
upvote

Henry commented on September 29, 2021
I do not have the words to thank you guys. Passing this exam was creting many scary thoughts. I am gold I used your braindumps and passed. I can get a beer and relax now.
AUSTRALIA
upvote

Nik commented on April 12, 2021
I would not be able to pass my exam without your help. You guys rock!
SINGAPOR
upvote

Rohit commented on January 09, 2021
Thank you for the 50% sale. I really appreicate this price cut during this extra ordinary time where everyone is having financial problem.
INDIA
upvote

Roger-That commented on December 23, 2020
The 20% holiday discount is a sweet deal. Thank you for the discount code.
UNITED STATES
upvote

Duke commented on October 23, 2020
It is helpful. Questions are real. Purcahse is easy but the only problem, there is no option to pay in Euro. Only USD.
GERMANY
upvote

Tan Jin commented on September 09, 2020
The questions from this exam dumps is valid. I got 88% in my exam today.
SINGAPORE
upvote

Dave commented on November 05, 2019
Useful practice questions to get a feel of the actual exam. Some of the answers are not correct so please exercise caution.
EUROPEAN UNION
upvote

Je commented on October 02, 2018
Great
UNITED STATES
upvote

Invisible Angel commented on January 11, 2018
Have yet to try. But most recommend it
NEW ZEALAND
upvote

Mic commented on December 26, 2017
Nice dumps, site is secure and checkout process is a breeze.
UNITED STATES
upvote