A company wants to provide users with access lo AWS resources. The company has 1.500 users and manages their access to on-premises resources through Active Directory user groups on the corporate network However, the company does not want users to have to maintain another identity to access the resources A solutions architect must manage user access to the AWS resources while preserving access to the on-premises resources
What should the solutions architect do to meet these requirements?
A. Create an IAM user for each user in the company Attach the appropriate policies to each user
B. Use Amazon Cognito with an Active Directory user pool Create rotes with the appropriate policies attached
C. Define cross-account roles with the appropriate policies attached Map the roles to the Active Directory groups
D. Configure Security Assertion Markup Language (SAML) 2 0-based federation Create roles with the appropriate policies attached Map the roles to the Active Directory groups
A company needs the ability to analyze the log files of its proprietary application The logs are stored in JSON format in an Amazon S3 bucket Queries will be simple and will run on- demand A solutions architect needs to perform the analysis with minimal changes to the existing architecture
What should the solutions architect do to meet these requirements with the LEAST amount of operational overhead?
A. Use Amazon Redshift to load all the content into one place and run the SQL queries as needed
B. Use Amazon CloudWatch Logs to store the logs Run SQL queries as needed from the Amazon CloudWatch console
C. Use Amazon Athena directly with Amazon S3 to run the queries as needed
D. Use AWS Glue to catalog the logs Use a transient Apache Spark cluster on Amazon EMR to run the SQL queries as needed
A security learn needs to enforce the rotation of all 1AM users' access keys every 90 days If an access key Is found to be older, the key must be made inactive and removed A solutions architect must create a solution that will check for and remediate any keys older than 90 days
Which solution meets these requirements with the LEAST operational effort?
A. Create an AWS Config rule to check for the key age Configure the AWS Config rule to run an AWS Batch job to remove the key
B. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age Configure the rule to run an AWS Batch job to remove the key
C. Create an AWS Config rule to check for the key age Define an Amazon EventBridge (Amazon CloudWatch Events) rule to schedule an AWS Lambda function to remove the key
D. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age Define an EventBridge (CloudWatch Events) rule to run an AWS Batch job to remove the key
A solutions architect is creating an application that will handle batch processing of large amounts of data The input data will be held in Amazon S3 and the output data will be stored in a different S3 bucket For processing, the application will transfer the data over the network between multiple Amazon EC2 instances
What should the solutions architect do to reduce the overall data transfer costs?
A. Place ail the EC2 instances in an Auto Scaling group
B. Place all the EC2 instances in the same AWS Region
C. Place ail the EC2 instances in the same Availability Zone
D. Place all the EC2 Instances in private subnets in multiple Availability Zones
A company has been running a web application with an Oracle relational database in an on-premises data center for the past 15 years. The company must migrate the database to AWS. The company needs to reduce operational overhead without having to modify the application's code.
Which solution meets these requirements?
A. Use AWS Database Migration Service (AWS DMS) to migrate the database servers to Amazon RDS.
B. Use AWS Database Migration Service (AWS DMS) to migrate the database servers to Amazon DynamoDB.
C. Use an AWS Snowball Edge Storage Optimized device to migrate the data from Oracle to Amazon Aurora.
A company runs a three-tier web application in a VPC across multiple Availability Zones Amazon EC2 instances run in an Auto Scaling group tor the application tier
The company needs to make an automated scaling plan that will analyze each resource's daily and weekly historical workload trends The configuration must scale resources appropriately according to both the forecast and live changes in utilization Which scaling strategy should a solutions architect recommend to meet these requirements?
A. Implement dynamic scaling with step scaling based on average CPU utilization from the EC2 instances
B. Enable predictive scaling to forecast and scale Configure dynamic scaling with target tracking
C. Create an automated scheduled scaling action based on the traffic patterns of the web application
D. Set up a simple scaling policy Increase the cool down period based on the EC2 instance start up time
A company wants lo build an immutable infrastructure for its software applications The company wants to test the software applications before sending traffic to them The company seeks an efficient solution that limits the effects of application bugs
Which combination of steps should a solutions architect recommend? {Select TWO)
A. Use AWS Cloud Formation to update the production infrastructure and roll back the stack if the update fails
B. Apply Amazon Route 53 weighted routing to test the staging environment and gradually increase the traffic as the tests pass
C. Apply Amazon Route 53 failover routing to test the staging environment and fail over to the production environment if the tests pass
D. Use AWS Cloud Formation with a parameter set to the staging value in a separate environment other than the production environment
E. Use AWS Cloud Formation to deploy the staging environment with a snapshot deletion policy and reuse the resources in the production environment if the tests pass
A company is developing an Internal application that uses a PostgreSQL database. The company has decided to host the database on Amazon Aurora The application does not need to be highly available but data must be stored in multiple Availability Zones to maximize durability.
Which database configuration meets these requirements MOST cost-effectively?
A. An Aurora PostgreSQL DB cluster with a single D8 Instance
B. An Aurora PostgreSQL DB cluster with a primary DB instance and a read replica
C. An Aurora PostgreSQL DB cluster with Multi-AZ deployment enabled
D. An Aurora PostgreSQL global database cluster
A weather forecasting company needs to process hundreds of gigabytes of data with sub- mill (second latency. The company has a high performance computing (HPC) environment in its data center and wants to expand its forecasting capabilities
A solutions architect must identify a highly available cloud storage solution that can handle large amounts of sustained throughput Files that are stored in the solution should be accessible to thousands of compute instances that will simultaneously access and process the entire dataset
What should the solutions architect do to meet these requirements?
A. Use Amazon FSx for Lustre scratch file systems.
B. Use Amazon FSx for Lustre persistent file systems
C. Use Amazon Elastic File System (Amazon EFS) with Bursting Throughput mode
D. Use Amazon Elastic File System (Amazon EFS) with Provisioned Throughput mode
A company has an application that uses overnight digital images of products on store shelves to analyze inventory data. The application runs on Amazon EC2 instances behind an Application Load Balancer (ALB) and obtains the images from an Amazon S3 bucket for its metadata to be processed by worker nodes for analysis. A solutions architect needs to ensure that every image is processed by the worker nodes.
What should the solutions architect do to meet this requirement in the MOST cost-efficient way?
A. Send the image metadata from the application directly to a second ALB for the worker nodes that use an Auto Scaling group of EC2 Spot Instances as the target group.
B. Process the image metadata by sending it directly to EC2 Reserved Instances in an Auto Scaling group. With a dynamic scaling policy, use an Amazon CloudWatch metric for average CPU utilization of the Auto Scaling group as soon as the front-end application obtains the images.
C. Write messages to Amazon Simple Queue Service (Amazon SQS) when the front-end application obtains an image. Process the images with EC2 On-Demand instances in an Auto Scaling group with instance scale-in protection and a fixed number of instances with periodic health checks.
D. Write messages to Amazon Simple Queue Service (Amazon SQS) when the application obtains an image. Process the images with EC2 Spot Instances in an Auto Scaling group with instance scale-in protection and a dynamic scaling policy using a custom Amazon CloudWatch metric for the current number of messages in the queue.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SAA-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.