H13-723_V2.0 Exam Discussions & Posts
Jayme
Commented on May 15, 2025
QUESTION: 44
Answer is A not B
Why A is correct:
AWS Lambda function URLs allow you to directly invoke a Lambda function without needing API Gateway or any other proxy.
Fully serverless and easy to manage.
Minimal setup: just assign a URL to each Lambda function and update Git server webhooks.
Lowest operational overhead — no need to manage gateways, load balancers, or containers.
Why B is more overhead
B. API Gateway HTTP API + Lambda:
Also serverless, but adds API Gateway as an additional layer, increasing configuration and cost compared to Lambda function URLs.
Anonymous
Jayme
Commented on May 15, 2025
QUESTION: 43
The Answer is D not C
Why D is correct:
Service Control Policies (SCPs) are enforced at the organization level via AWS Organizations.
Denying the action ec2:AuthorizeSecurityGroupIngress based on a condition (i.e., aws:SourceIp == 0.0.0.0/0) ensures:
No such rule can be created — proactive control.
Applied to all accounts in the NonProd OU centrally.
No need for Lambda functions, event triggers, or post-creation rollbacks — meaning lowest operational overhead.
C is incorrect
C. SCP allowing non-0.0.0.0/0:
You can't allow specific condition-based actions in SCPs. SCPs are deny-based only (allow by omission).
Anonymous
Black
Commented on May 15, 2025
Passed yesterday with score of 773.
this dump is roughly 50% valid for unpaid version. I got 3 PBQ which are host infections and autoscaling and one new i have not seen before.
Question: Recent system breach due to password, choose the best password practices and what mitigation will prevent it from happening again?
Password protection standard: Reuse, Complexity, Length, Expiration, Age (you can choose any possible combination, no limit)
Answer: Reuse, Expiration, length (as per comptia, age and complexity are not best password practices)
Mitigation: FIDO Hardware, PIN, Password, SMS OTP
Answer: FIDO Hardware
I came across one youtube channel a few days before my exams. He thoroughly explains every PBQs. All his questions are literally form dumps. I HIGHLY recommend to check it out.
https://www.youtube.com/@MohammadLotfiA
Anonymous
Jayme
Commented on May 15, 2025
QUESTION: 28
Answer is C not A
To accurately track costs for resources across AWS Organizations using user-defined tags, the following must happen:
1. Activate the tag ("costCenter") in each member account:
Tags must be activated at the account level for them to be used in billing and cost allocation.
Without activation, AWS will not include them in the Cost and Usage Reports (CUR).
2. Generate the AWS Cost and Usage Report (CUR) from the management account:
The management account in AWS Organizations is the only one that can see the full consolidated billing data across accounts.
CUR includes tag breakdowns (if tags are activated in member accounts).
3. Use tag breakdowns in the CUR:
This allows precise cost allocation based on the costCenter=compliance tag.
Anonymous
RR
Commented on May 15, 2025
Q.NO 43 answer need to be corrected
Answer is stash
Anonymous
RR
Commented on May 15, 2025
Q.NO 38 answer needs correction
right ans is script include
Anonymous