Weekend Special Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

  1. Home
  2. Amazon Web Services
  3. AWS Certified Associate
  4. SAA-C02 - AWS Certified Solutions Architect - Associate (SAA-C03)
Note! Following SAA-C02 Exam is Retired now. Please select the alternative replacement for your Exam Certification. The new exam code is SAA-C03

SAA-C02 Exam Dumps - AWS Certified Solutions Architect - Associate (SAA-C03)

Go to page:
Question # 73

A company is seeing access requests by some suspicious IP addresses The security team discovers the requests are from different IP addresses under the same CIDR range

What should a solutions architect recommend to the team?

A.

Add a rule in the inbound table of the secunty group to deny the traffic from that CIDR range

B.

Add a rule in the outbound table of the security group to deny the traffic from that CIDR range

C.

Add a deny rule in the inbound table of the network ACL with a lower rule number than other rules

D.

Add a deny rule in the outbound table of the network ACL with a lower rule number than other rules

Full Access
Question # 74

A company is planning to build a new web application on AWS The company expects predictable traffic most of the year and very high traffic on occasion. The web application needs to be highly available and fault tolerant with minimal latency.

What should a solutions architect recommend to meet these requirements?

A.

Use an Amazon Route 53 routing policy to distribute requests to two AWS Regions each with one Amazon EC2 instance

B.

Use Amazon EC2 instances in an Auto Scaling group with an Application Load Balancer across multiple Availability Zones

C.

Use Amazon EC2 instances in a cluster placement group with an Application Load Balancer across multiple Availability Zones

D.

Use Amazon EC2 instances in a cluster placement group and include the cluster placement group within a new Auto Scaling group

Full Access
Question # 75

A company uses Application Load Balancers (ALBs) in different AWS Regions The ALBs receive inconsistent traffic that can spike and drop throughout the year The company's networking team needs to allow the IP addresses of the ALBs in the on-premises firewall to enable connectivity

Which solution is the MOST scalable with minimal configuration changes?

A.

Write an AWS Lambda script to get the IP addresses of the ALBs in different Regions. Update the on-premises firewall's rule to allow the IP addresses of the ALBs

B.

Migrate all ALBs in different Regions to the Network Load Balancers (NLBs) Update the on-premises firewall's rule to allow the Elastic IP addresses of all the NLBs

C.

Launch AWS Global Accelerator Register the ALBs in different Regions to the accelerator Update the on-premises firewall's rule to allow static IP addresses associated with the accelerator

D.

Launch a Network Load Balancer (NLB) in one Region Register the private IP addresses of the ALBs in different Regions with the NLB. Update the on-premises firewall's rule to allow the Elastic IP address attached to the NLB.

Full Access
Question # 76

A company is hosting a web application from an Amazon S3 bucket. The application uses Amazon Cognito as an identity provider lo authenticate users and return a JSON Web Token (JWT) that provides access to protected resources that am restored in another S3 bucket.

Upon deployment of the application, users report errors and are unable to access the protected content. A solutions architect must resolve this issue by providing proper permissions so that users can access the protected content.

Which solution meets these requirements?

A.

Update the Amazon Cognito identity pool to assume the proper IAM role for access to the protected consent.

B.

Update the S3 ACL to allow the application to access the protected content

C.

Redeploy the application to Amazon 33 to prevent eventually consistent reads m the S3 bucket from affecting the ability of users to access the protected content.

D.

Update the Amazon Cognito pool to use custom attribute mappings within tie Identity pool and grant users the proper permissions to access the protected content

Full Access
Question # 77

A company runs an application in the AWS Cloud and uses Amazon DynamoDB as the database. The company deploys Amazon EC2 instances to a private network to process data horn the database. The company uses two NAT instances to provide connectivity lo DynamoDB

The company wants to retire the NAT instances. A solutions architect must implement a solution that provides connectivity to DynamoDB and that does not require ongoing management

What Is the MOST cost-effective solution that meets these requirements?

A.

Create a gateway VPC endpoint to provide connectivity to DynamoDB.

B.

Configure a managed NAT gateway to provide connectivity to DynamoDB.

C.

Establish an AWS Direct Connect connection behaviour to private network and DynamoDB.

D.

Deploy an AWS PrivateLink endpoint service between the private network and DynamoDB.

Full Access
Question # 78

A company is rebelling its data canter and wants to securely transfer 50 TB of data lo AWS *ilhm 2 weeks. The existing data center has a Site-to-Site VPN connection to AWS that is 90 % utilized

Which AWS service should a solutions architect use to meet these requirements?

A.

AWS DataSync with a VPC endpoint

B.

AWS Direct Conned

C.

AWS Snowball Edge Storage Optimized

D.

AWS Storage Gateway

Full Access
Question # 79

A company uses an application to present metrics from sporting events to the public. The application must scale quickly during live events and must store these metrics for log-term reporting purposes. The company’s architecture includes the following:

* Amazon EC2 instances that run in an Auto Scaling group in private subnets

* A network Load Balancer That runs in public subnets

* A MongoDB database cluster that runs across multiple EC2 instances

A solutions architect must implement a solution that minimizes operational overhead The solution alto must be able to Kale automatically. What should the solutions architect set up to meet these requirements?

A.

An Amazon DynamoDB database

B.

An Amazon ROS for MySQL D6 instance

C.

EC2 instances that run MySQL

D.

Amazon Redshift

Full Access
Question # 80

A company has an on-premises MySQL database used by the global tales team with infrequent access patterns. The sales team requires the database to have minimal downtime. A database administrate wants to migrate this database to AWS without selecting a particular instance type in anticipation of more users In the future.

Which service should a solutions architect recommend?

A.

Amazon Aurora MySQL

B.

Amazon Aurora Serverless tor MySQL

C.

Amazon Redshift Spectrum

D.

Amazon RDS for MySQL

Full Access
Go to page:

Hot Exams

ADM-201 Dumps
Platform-App-Builder Dumps
AZ-500 Dumps
350-701 Dumps
SY0-601 Dumps
NCSE-Core Dumps
PDP9 Dumps
DP-203 Dumps
AZ-700 Dumps
NSE7_EFW-7.0 Dumps
Integration-Architect Dumps
CS0-003 Dumps