A solutions architect is designing a solution that will include a database in Amazon RDS Corporate security policy mandates that the database its logs, and its backups are all encrypted What is the MOST efficient option to fulfill the security policy using Amazon RDS?
A. Launch an Amazon RDS instance with encryption enabled Enable encryption for logs and backups
B. Launch an Amazon RDS instance Enable encryption for the database, logs, and backups
C. Launch an Amazon RDS instance with encryption enabled Logs and backups are automatically encrypted
D. Launch an Amazon RDS instance Enable encryption for backups Encrypt logs with a database- engine feature
A company is using an Amazon S3 bucket to store data uploaded by different departments from multiple locations During an AWS Well-Architected review the financial manager notices that 10 TB of S3 Standard storage data has been charged each month However, in the AWS Management Console for Amazon S3, using the command to select all files and folders shows a total size of 5 TB What are the possible causes for this difference? (Select TWO )
A. Some files are stored with deduplication
B. The S3 bucket has versioning enabled
C. There are incomplete S3 multipart uploads
D. The S3 bucket has AWS Key Management Service (AWS KMS) enabled
E. The S3 bucket has Intelligent-Tiering enabled
A solutions architect is designing a shared storage solution for a web application that is deployed across multiple Availability Zones. The web application runs on Amazon EC2 instances in an Auto Scaling group. The company anticipates making frequent changes to the content, so the solution must have strong consistency Which solution meets these requirements?
A. Create an Amazon S3 bucket to store the web content Use Amazon CloudFront to deliver the content.
B. Create an Amazon Elastic File System (Amazon EFS) file system and mount it on the individual EC2 instances.
C. Create a shared Amazon Elastic Block Store (Amazon EBS) volume and mount it on the individual EC2 instances.
D. Use AWS DataSync to perform continuous synchronization of data between EC2 hosts in the Auto Scaling group.
A company designs a mobile app for its customers to upload photos to a website. The app needs a secure login with multi-factor authentication (MFA). The company wants to limit the initial build time and the maintenance of the solution Which solution should a solutions architect recommend to meet these requirements?
A. Use Amazon Cognito Identity with SMS based MFA.
B. Edit 1AM policies to require MFA for all users
C. Federate 1AM against the corporate Active Directory that requires MFA
D. Use Amazon API Gateway and require server-side encryption (SSE) for photos
A company runs a legacy application with a single-tier architecture on an Amazon EC2 instance Disk I/O is low. with occasional small spikes during business hours. The company requires the instance to be stopped from 8 PM to 8 AM daily Which storage option is MOST appropriate for this workload?
A. Amazon EC2 instance storage
B. Amazon EBS General Purpose SSD (gp2) storage
C. Amazon S3
D. Amazon EBS Provisioned IOPS SSD (io2) storage
A company is building a cloud storage and sharing application for photos. Users can upload photos from their computers and mobile phones to be stored durably in the cloud After photos are uploaded, most are shared and downloaded frequently for the first 40-90 days. The photos are generally accessed less often after 90 days but some photos maintain a high access rate. The application initially stores photos in Amazon S3 Standard A solutions architect needs to reduce the application's operational costs without sacrificing user experience or data durability Which strategy should the solutions architect use to meet these requirements MOST cost-effectively?
A. Define an S3 Lifecycle rule to transition objects to S3 Intelligent-Tiering immediately
B. Define an S3 Lifecycle rule to transition objects from S3 Standard to S3 Glacier after 90 days
C. Define an S3 Lifecycle rule to transition objects from S3 Standard to S3 Standard Infrequent Access (S3 Standard-IA) after 65 days
D. Define an S3 Lifecycle rule to transition objects from S3 Standard to S3 One Zone-Infrequent Access (S3 One zone-IA) after 90 days
After reviewing the cost optimization checks in AWS Trusted Advisor, a team finds that it has 10,000 Amazon Elastic Block Store (Amazon EBS) snapshots in its account that are more than 30 days old. When the team determines that it
needs to implement better governance for the lifecycle of its resources.
Which actions should the team take to automate the lifecycle management of the EBS snapshots with the LEAST effort? (Select TWO )
A. Create and schedule a backup plan with AWS Backup
B. Copy the EBS snapshots to Amazon S3 and then create lifecycle configurations in the S3 bucket
C. Use Amazon Data Lifecycle Manager (Amazon DLM)
D. Use a scheduled event in Amazon EventBridge (Amazon CloudWatch Events) and invoke AWS Step Functions to manage the snapshots
E. Schedule and run backups in AWS Systems Manager.
A company is running an application on Amazon EC2 instances hosted in a private subnet of a VPC . The EC2 instances are configured in an Auto Scaling group behind an Elastic Load Balancer (ELB) The EC2 instances use a NAT gateway for outbound internet access However the EC2 instances are not able to connect to the public internet to download software updates.
What are the possible root causes of this issue? (Select TWO )
A. The ELB is not configured with a proper health check
B. The route tables in the VPC are configured incorrectly
C. The EC2 instances are not associated with an Elastic IP address
D. The security group attached to the NAT gateway is configured incorrectly
E. The outbound rules on the security group attached to the EC2 Instances are configured incorrectly.
A company is running a database on Amazon Aurora.The database is idle every evening An application that performs extensive reads on the database experiences performance issues during morning hours when user traffic spikes During these peak periods, the application receives timeout errors when reading from the database The company does not have a dedicated operations team and needs an automated solution to address the performance issues
Which actions should a solutions architect take to automatically adjust to the increased read load on the database? (Select TWO )
A. Migrate the database to Aurora Serverless.
B. Increase the instance size of the Aurora database
C. Configure Aurora Auto Scaling with Aurora Replicas
D. Migrate the database to an Aurora multi-master cluster
E. Migrate the database to an Amazon RDS for MySQL Multi-AZ deployment
A company runs an application in the AWS Cloud and uses Amazon DynamoDB as the database The company deploys Amazon EC2 instances to a private network to process data from the database The company uses two NAT instances to provide connectivity to DynamoDB. The company wants to retire the NAT instances A solutions architect must implement a solution that provides connectivity to DynamoDB and that does not require ongoing management. What is the MOST cost-effective solution that meets these requirements?
A. Create a gateway VPC endpoint to provide connectivity to DynamoDB
B. Configure a managed NAT gateway to provide connectivity to DynamoDB
C. Establish an AWS Direct Connect connection between the private network and DynamoDB
D. Deploy an AWS PrivateLink endpoint service between the private network and DynamoDB
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SAA-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.