SAP-C01 Exam Details

  • Exam Code
    :SAP-C01
  • Exam Name
    :AWS Certified Solutions Architect - Professional (SAP-C01)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :973 Q&As
  • Last Updated
    :Jul 09, 2023

Amazon SAP-C01 Online Questions & Answers

  • Question 61:

    One of the AWS account owners faced a major challenge in June as his account was hacked and the hacker deleted all the data from his AWS account. This resulted in a major blow to the business. Which of the below mentioned steps would not have helped in preventing this action?

    A. Setup an MFA for each user as well as for the root account user.
    B. Take a backup of the critical data to offsite / on premise.
    C. Create an AMI and a snapshot of the data at regular intervals as well as keep a copy to separate regions.
    D. Do not share the AWS access and secret access keys with others as well do not store it inside programs, instead use IAM roles.

  • Question 62:

    An online retail company hosts its stateful web-based application and MySQL database in an on-premises data center on a single server. The company wants to increase its customer base by conducting more marketing campaigns and promotions. In preparation, the company wants to migrate its application and database to AWS to increase the reliability of its architecture.

    Which solution should provide the HIGHEST level of reliability?

    A. Migrate the database to an Amazon RDS MySQL Multi-AZ DB instance. Deploy the application in an Auto Scaling group on Amazon EC2 instances behind an Application Load Balancer Store sessions in Amazon Neptune.
    B. Migrate the database to Amazon Aurora MySQL. Deploy the application in an Auto Scaling group on Amazon EC2 instances behind an Application Load Balancer. Store sessions in an Amazon ElastiCache for Redis replication group.
    C. Migrate the database to Amazon DocumentDB (with MongoDB compatibility). Deploy the application in an Auto Scaling group on Amazon EC2 instances behind a Network Load Balancer. Store sessions in Amazon Kinesis Data Firehose.
    D. Migrate the database to an Amazon RDS MariaDB Multi-AZ DB instance. Deploy the application in an Auto Scaling group on Amazon EC2 instances behind an Application Load Balancer. Store sessions in Amazon ElastiCache for Memcached.

  • Question 63:

    After setting an AWS Direct Connect, which of the following cannot be done with an AWS Direct Connect Virtual Interface?

    A. You can exchange traffic between the two ports in the same region connecting to different Virtual Private Gateways (VGWs) if you have more than one virtual interface.
    B. You can change the region of your virtual interface.
    C. You can delete a virtual interface; if its connection has no other virtual interfaces, you can delete the connection.
    D. You can create a hosted virtual interface.

  • Question 64:

    An organization is creating a VPC for their application hosting. The organization has created two private subnets in the same AZ and created one subnet in a separate zone. The organization wants to make a HA system with the internal ELB.

    Which of these statements is true with respect to an internal ELB in this scenario?

    A. ELB can support only one subnet in each availability zone.
    B. ELB does not allow subnet selection; instead it will automatically select all the available subnets of the VPC.
    C. If the user is creating an internal ELB, he should use only private subnets.
    D. ELB can support all the subnets irrespective of their zones.

  • Question 65:

    To get started using AWS Direct Connect, in which of the following steps do you configure Border Gateway Protocol (BGP)?

    A. Complete the Cross Connect
    B. Configure Redundant Connections with AWS Direct Connect
    C. Create a Virtual Interface D. Download Router Configuration

  • Question 66:

    You have been asked to set up a public website on AWS with the following criteria:

    You want the database and the application server running on an Amazon VPC. You want the database to be able to connect to the Internet so that it can be automatically updated to the correct patch level.

    You do not want to receive any incoming traffic from the Internet to the database.

    Which solutions would be the best to satisfy all the above requirements for your planned public website on AWS? (Choose two.)

    A. Set up both the public website and the database on a public subnet and block all incoming requests from the Internet with a Network Access Control List (NACL)
    B. Set up both the public website and the database on a public subnet, and block all incoming requests from the Internet with a security group which only allows access from the IP of the public website.
    C. Set up the public website on a public subnet and set up the database in a private subnet which connects to the Internet via a NAT instance.
    D. Set up both the public website and the database on a private subnet and block all incoming requests from the Internet with a Network Access Control List (NACL). Set up a Security group between the public website and the database which only allows access via port 80.

  • Question 67:

    What is the maximum number of data points for an HTTP data request that a user can include in PutMetricRequest in the CloudWatch?

    A. 30
    B. 50
    C. 10 D. 20

  • Question 68:

    In Amazon VPC, what is the default maximum number of BGP advertised routes allowed per route table?

    A. 15
    B. 100
    C. 5
    D. 10

  • Question 69:

    A Solutions Architect is designing a deployment strategy for an application tier and has the following requirements:

    1.

    The application code will need a 500 GB static dataset to be present before application startup.

    2.

    The application tier must be able to scale up and down based on demand with as little startup time as possible.

    3.

    The Development team should be able to update the code multiple times each day.

    4.

    Critical operating system (OS) patches must be installed within 48 hours of being released. Which deployment strategy meets these requirements?

    A. Use AWS Systems Manager to create a new AMI with the updated OS patches. Update the Auto Scaling group to use the patched AMI and replace existing unpatched instances. Use AWS CodeDeploy to push the application code to the instances. Store the static data in Amazon EFS.
    B. Use AWS Systems Manager to create a new AMI with updated OS patches. Update the Auto Scaling group to use the patched AMI and replace existing unpatched instances. Update the OS patches and the application code as batch job every night. Store the static data in Amazon EFS.
    C. Use an Amazon-provided AMI for the OS. Configure an Auto Scaling group set to a static instance count. Configure an Amazon EC2 user data script to download the data from Amazon S3. Install OS patches with AWS Systems Manager when they are released. Use AWS CodeDeploy to push the application code to the instances.
    D. Use an Amazon-provided AMI for the OS. Configure an Auto Scaling group. Configure an Amazon EC2 user data script to download the data from Amazon S3. Replace existing instances after each updated Amazon-provided AMI release. Use AWS CodeDeploy to push the application code to the instances.

  • Question 70:

    If I write the below command, what does it do? ec2-run ami-e3a5408a -n 20 -g appserver

    A. Start twenty instances as members of appserver group.
    B. Creates 20 rules in the security group named appserver
    C. Terminate twenty instances as members of appserver group.
    D. Start 20 security groups

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SAP-C01 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.