A company is planning to run a group of Amazon EC2 instances that connect to an Amazon Aurora database. The company has built an AWS Cloud Formation template to deploy the EC2 instances and the Aurora DB cluster. The company wants to allow the instances to authenticate to the database in a secure way. The company does not want to maintain static database credentials.
Which solution meets these requirements with the LEAST operational effort?
A. Create a database user with a user name and password. Add parameters for the database user name and password to the CloudFormation template. Pass the parameters to the EC2 instances when the instances are launched.A user wants to list the IAM role that is attached to their Amazon EC2 instance The user has login access to the EC2 instance but does not have IAM permissions What should a solutions architect do to retrieve this information?
A. Run the following EC2 command curl http://169.254.169.254/latest/meta-data/iam/infoA company runs an application on a group of Amazon Linux EC2 instances The application writes log files using standard API calls For compliance reasons, all log files must be retained indefinitely and will be analyzed by a reporting tool that must access all files concurrently Which storage service should a solutions architect use to provide the MOST cost-effective solution?
A. Amazon EBSA company wants to run a hybrid workload for data processing. The data needs to be accessed by on- premises applications for local data processing using an NFS protocol, and must also be accessible from the AWS Cloud for further analytics and batch processing.
Which solution will meet these requirements?
A. Use an AWS Storage Gateway fife gateway to provide file storage to AWS. then perform analytics on the data in the AWS Cloud.A company has enabled AWS CloudTrail logs to deliver log files to an Amazon S3 bucket for each of Its developer accounts. The company has created a central AWS account for streamlining management and audit reviews An internal auditor needs to access the CloudTrail logs, yet access needs to be restricted for all developer account users The solution must be secure and optimized How should a solutions architect meet these requirements?
A. Configure an AWS Lambda function m each developer account to copy the log files to the central account. Create an IAM role in the central account for the auditor Attach an IAM policy providing read-only permissions to the bucket.A solutions architect is using an AWS Cloud Formation template to deploy a three-tier web application The web application consists of a web tier and an application tier that stores and retrieves user data in Amazon DynamoDB tables The web and application tiers are hosted on Amazon EC2 instances, and the database tier is not publicly accessible The application EC2 instances need to access the DynamoDB tables without exposing API credentials in the template What should the solutions architect do to meet these requirements?
A. Create an 1AM role to read the DynamoOB tables Associate the role with the application instances by reference an instance profileA company recently released a new type of internet-connected sensor. The company is expecting lo sell thousands of sensors, which are designed to stream high volumes of data each second to a central location. A solutions architect must design a solution that ingests and stores data so that engineering teams can analyze it in near-real time with millisecond responsiveness. Which solution should the solutions architect recommend?
A. Use an Amazon SQS queue to ingest the data. Consume the data with an AWS Lambda function, which then stores the data in Amazon Redshift.A solutions architect is designing an architecture that includes web application and database tiers The web tier must be capable of auto scaling. The solutions architect has decided to separate each tier into itsown subnets. The design includes two public subnets and four private subnets. The security team requires that tiers be able to communicate with each other only when there is a business need and that all other network traffic be blocked What should the solutions architect do to meet these requirements?
A. Create an Amazon GuardDuty source'destmation rule set to control communicationA solutions architect is designing a highly available website that is served by multiple web servers hosted outside of AWS. If an instance becomes unresponsive, the architect needs to remove it from the rotation. What is the MOST efficient way to fulfill this requirement?
A. Use Amazon CloudWatch to monitor utilization.A company is building a website that relies on reading and writing to an Amazon DynamoDB database The website experiences high traffic during normal business hours, but the traffic declines drastically overnight and during weekends The company is concerned about operating costs
Which solution will meet the website's traffic demands MOST cost-effectively?
A. Enable DynamoDB Accelerator (DAX) to cache the dataNowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SAA-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.