SAP-C01 Exam Discussions & Posts
Silva
Commented on June 20, 2025
172. C seems more appropriate
Anonymous
A
Commented on June 06, 2025
Question 5. The answer should be A instead of B. API Gateway REST APIs don't provide a straightforward, native way to remove specific headers based on User-Agent.
Anonymous
D
Commented on May 28, 2025
Question 3. The answer should be B. When I read the explanation, it is B, not D.
Anonymous
Jayme
Commented on May 22, 2025
QUESTION: 69
Answer is B not D
This option D is similar to Option B but involves enabling all features in AWS Organizations, which might not be necessary unless other advanced organization features are required. For cost-efficiency, sticking to the necessary features (as in Option B) would be better.
Anonymous
Jayme
Commented on May 16, 2025
QUESTION: 48
Answer is A not C
Why A is correct:
ALB terminates SSL at the front, using ACM-provided certificate.
SSL certificate is exported and installed on EC2s, so each EC2 also speaks HTTPS.
Traffic is encrypted both ways (client ? ALB and ALB ? EC2) — end-to-end encryption is ensured.
Why C is incorrect:
C: Sounds similar to A, but mentions a third-party SSL certificate, which adds unnecessary complexity. Also, ACM can’t export certificates for use outside of AWS — only imported certificates can be exported.
Anonymous
Jayme
Commented on May 15, 2025
QUESTION: 44
Answer is A not B
Why A is correct:
AWS Lambda function URLs allow you to directly invoke a Lambda function without needing API Gateway or any other proxy.
Fully serverless and easy to manage.
Minimal setup: just assign a URL to each Lambda function and update Git server webhooks.
Lowest operational overhead — no need to manage gateways, load balancers, or containers.
Why B is more overhead
B. API Gateway HTTP API + Lambda:
Also serverless, but adds API Gateway as an additional layer, increasing configuration and cost compared to Lambda function URLs.
Anonymous
Jayme
Commented on May 15, 2025
QUESTION: 43
The Answer is D not C
Why D is correct:
Service Control Policies (SCPs) are enforced at the organization level via AWS Organizations.
Denying the action ec2:AuthorizeSecurityGroupIngress based on a condition (i.e., aws:SourceIp == 0.0.0.0/0) ensures:
No such rule can be created — proactive control.
Applied to all accounts in the NonProd OU centrally.
No need for Lambda functions, event triggers, or post-creation rollbacks — meaning lowest operational overhead.
C is incorrect
C. SCP allowing non-0.0.0.0/0:
You can't allow specific condition-based actions in SCPs. SCPs are deny-based only (allow by omission).
Anonymous
Jayme
Commented on May 15, 2025
QUESTION: 28
Answer is C not A
To accurately track costs for resources across AWS Organizations using user-defined tags, the following must happen:
1. Activate the tag ("costCenter") in each member account:
Tags must be activated at the account level for them to be used in billing and cost allocation.
Without activation, AWS will not include them in the Cost and Usage Reports (CUR).
2. Generate the AWS Cost and Usage Report (CUR) from the management account:
The management account in AWS Organizations is the only one that can see the full consolidated billing data across accounts.
CUR includes tag breakdowns (if tags are activated in member accounts).
3. Use tag breakdowns in the CUR:
This allows precise cost allocation based on the costCenter=compliance tag.
Anonymous
Jayme
Commented on May 14, 2025
QUESTION: 21
Answer is A not B
Why A is correct:
Exponential backoff with jitter (irregular variation) helps prevent request bursts and evenly distributes retries.
This is a best practice for handling throttling or transient errors, especially in DynamoDB and API Gateway integrations.
Descriptive error handling improves the customer experience even when failures occur.
B. API throttling with usage plan:
While this protects the backend, it still results in HTTP 429 errors that reach the client, which is not ideal for customer experience unless handled properly. Doesn’t directly address client retries or user-friendly error handling.
Anonymous
Jayme
Commented on May 14, 2025
QUESTION: 19
The answer is D not A
Why D is correct:
Lowest-cost storage:
S3 Glacier Deep Archive is the cheapest storage class for archival data with low access frequency — ideal for this scenario where data is rarely accessed and availability/speed are not important.
Private access:
Using an S3 interface endpoint restricts access to the S3 bucket from inside the VPC only, ensuring no public exposure.
Simple setup:
No need to manage EC2, EFS, or EBS, keeping operational overhead and cost low.
Anonymous
Gilbert
Commented on March 03, 2025
Cant wait to pass mine
Anonymous
Petro UA
Commented on February 28, 2025
hate DNS questions. So need to practice more
UNITED STATES
Mike
Commented on November 27, 2024
Not bad at all
CANADA
Paresh
Commented on April 19, 2023
There were only 3 new questions that I did not see in this exam dumps. There rest of the questions were all word by word from this dump.
UNITED STATES
Matthew
Commented on October 18, 2022
An extremely helpful study package. I highly recommend.
UNITED STATES
Peter
Commented on June 23, 2022
I thought these were practice exam questions but they turned out to be real questoins from the actual exam.
NETHERLANDS
Henry
Commented on September 29, 2021
I do not have the words to thank you guys. Passing this exam was creting many scary thoughts. I am gold I used your braindumps and passed. I can get a beer and relax now.
AUSTRALIA
Nik
Commented on April 12, 2021
I would not be able to pass my exam without your help. You guys rock!
SINGAPOR
Rohit
Commented on January 09, 2021
Thank you for the 50% sale. I really appreicate this price cut during this extra ordinary time where everyone is having financial problem.
INDIA
Roger-That
Commented on December 23, 2020
The 20% holiday discount is a sweet deal. Thank you for the discount code.
UNITED STATES
Duke
Commented on October 23, 2020
It is helpful. Questions are real. Purcahse is easy but the only problem, there is no option to pay in Euro. Only USD.
GERMANY
Tan Jin
Commented on September 09, 2020
The questions from this exam dumps is valid. I got 88% in my exam today.
SINGAPORE
Dave
Commented on November 05, 2019
Useful practice questions to get a feel of the actual exam. Some of the answers are not correct so please exercise caution.
EUROPEAN UNION
Je
Commented on October 02, 2018
Great
UNITED STATES
Invisible Angel
Commented on January 11, 2018
Have yet to try. But most recommend it
NEW ZEALAND
Mic
Commented on December 26, 2017
Nice dumps, site is secure and checkout process is a breeze.
UNITED STATES