CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. SAP-C01

Free SAP-C01 Exam Braindumps (page: 11)

Page 11 of 134
PDF with 529 Questions

A company is using AWS Organizations to manage multiple AWS accounts. For security purposes, the company requires the creation of an Amazon Simple Notification Service (Amazon SNS) topic that enables integration with a third-party alerting system in all the Organizations member accounts.

A solutions architect used an AWS CloudFormation template to create the SNS topic and stack sets to automate the deployment of CloudFormation stacks. Trusted access has been enabled in Organizations.

What should the solutions architect do to deploy the CloudFormation StackSets in all AWS accounts?

  1. Create a stack set in the Organizations member accounts. Use service-managed permissions. Set deployment options to deploy to an organization. Use CloudFormation StackSets drift detection.
  2. Create stacks in the Organizations member accounts. Use self-service permissions. Set deployment options to deploy to an organization. Enable the CloudFormation StackSets automatic deployment.
  3. Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment.
  4. Create stacks in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets drift detection.

Answer(s): C

Explanation:

C) Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment is the correct answer because it leverages CloudFormation StackSets with service-managed permissions to automatically deploy resources, such as the SNS topic, across all member accounts in AWS Organizations. This setup enables centralized management from the management account, and automatic deployment ensures that the resources are consistently created in all member accounts, meeting the security and integration requirements for the third-party alerting system.



A company wants to migrate its workloads from on premises to AWS. The workloads run on Linux and Windows. The company has a large on-premises infrastructure that consists of physical machines and VMs that host numerous applications.

The company must capture details about the system configuration, system performance, running processes, and network connections of its on-premises workloads. The company also must divide the on-premises applications into groups for AWS migrations. The company needs recommendations for Amazon EC2 instance types so that the company can run its workloads on AWS in the most cost-effective manner.

Which combination of steps should a solutions architect take to meet these requirements? (Choose three.)

  1. Assess the existing applications by installing AWS Application Discovery Agent on the physical machines and VMs.
  2. Assess the existing applications by installing AWS Systems Manager Agent on the physical machines and VMs.
  3. Group servers into applications for migration by using AWS Systems Manager Application Manager.
  4. Group servers into applications for migration by using AWS Migration Hub.
  5. Generate recommended instance types and associated costs by using AWS Migration Hub.
  6. Import data about server sizes into AWS Trusted Advisor. Follow the recommendations for cost optimization.

Answer(s): A,D,E

Explanation:

A) Assess the existing applications by installing AWS Application Discovery Agent on the physical machines and VMs,
D) Group servers into applications for migration by using AWS Migration Hub, and
E) Generate recommended instance types and associated costs by using AWS Migration Hub are the correct answers.

AWS Application Discovery Service with the Application Discovery Agent collects detailed information on system configuration, performance, running processes, and network connections from the physical and virtual machines.
AWS Migration Hub helps group servers into applications, simplifying migration tracking and management. It also provides EC2 instance type recommendations based on the collected data for a cost-effective migration strategy.
This combination ensures detailed system discovery, efficient grouping, and cost-optimized EC2 instance recommendations.



A company is hosting an image-processing service on AWS in a VPC. The VPC extends across two Availability Zones. Each Availability Zone contains one public subnet and one private subnet.

The service runs on Amazon EC2 instances in the private subnets. An Application Load Balancer in the public subnets is in front of the service. The service needs to communicate with the internet and does so through two NAT gateways. The service uses Amazon S3 for image storage. The EC2 instances retrieve approximately 1 ТВ of data from an S3 bucket each day.

The company has promoted the service as highly secure. A solutions architect must reduce cloud expenditures as much as possible without compromising the service’s security posture or increasing the time spent on ongoing operations.

Which solution will meet these requirements?

  1. Replace the NAT gateways with NAT instances. In the VPC route table, create a route from the private subnets to the NAT instances.
  2. Move the EC2 instances to the public subnets. Remove the NAT gateways.
  3. Set up an S3 gateway VPC endpoint in the VP Attach an endpoint policy to the endpoint to allow the required actions on the S3 bucket.
  4. Attach an Amazon Elastic File System (Amazon EFS) volume to the EC2 instances. Host the images on the EFS volume.

Answer(s): C

Explanation:

C) Set up an S3 gateway VPC endpoint in the VPC. Attach an endpoint policy to the endpoint to allow the required actions on the S3 bucket is the correct answer.

Using an S3 gateway VPC endpoint allows EC2 instances in the private subnets to communicate with Amazon S3 directly without needing to route traffic through the NAT gateways, thus reducing the data transfer costs associated with the NAT gateways. Since the traffic does not leave the AWS network, this solution also enhances security. This solution reduces costs without compromising security or requiring significant ongoing maintenance efforts.



A company recently deployed an application on AWS. The application uses Amazon DynamoDB. The company measured the application load and configured the RCUs and WCUs on the DynamoDB table to match the expected peak load. The peak load occurs once a week for a 4-hour period and is double the average load. The application load is close to the average load for the rest of the week. The access pattern includes many more writes to the table than reads of the table.

A solutions architect needs to implement a solution to minimize the cost of the table.
Which solution will meet these requirements?

  1. Use AWS Application Auto Scaling to increase capacity during the peak period. Purchase reserved RCUs and WCUs to match the average load.
  2. Configure on-demand capacity mode for the table.
  3. Configure DynamoDB Accelerator (DAX) in front of the table. Reduce the provisioned read capacity to match the new peak load on the table.
  4. Configure DynamoDB Accelerator (DAX) in front of the table. Configure on-demand capacity mode for the table.

Answer(s): A

Explanation:

A) Use AWS Application Auto Scaling to increase capacity during the peak period. Purchase reserved RCUs and WCUs to match the average load is the correct answer because AWS Application Auto Scaling allows you to adjust capacity automatically during peak periods. By purchasing reserved RCUs and WCUs for the average load, you can save on costs during the non-peak times while dynamically scaling the capacity to handle the peak load, which happens once a week. This approach minimizes the cost by optimizing for the typical load and scaling only when needed.






Post your Comments and Discuss Amazon SAP-C01 exam with other Community members:

SAP-C01 Exam Discussions & Posts