New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

Pass SAP-C02 Exam Guide

Previous
Page: 10 / 35
Next
Question 40

A company has an environment that has a single AWS account. A solutions architect is reviewing the environment to recommend what the company could improve specifically in terms of access to the AWS Management Console. The company's IT support workers currently access the console for administrative tasks, authenticating with named IAM users that have been mapped to their job role.

The IT support workers no longer want to maintain both their Active Directory and IAM user accounts. They want to be able to access the console by using their existing Active Directory credentials. The solutions architect is using AWS Single Sign-On (AWS SSO) to implement this functionality.

Which solution will meet these requirements MOST cost-effectively?

Options:

A.

Create an organization in AWS Organizations. Turn on the AWS SSO feature in Organizations Create and configure a directory in AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD) with a two-way trust to the company's on-premises Active Directory. Configure AWS SSO and set the AWS Managed Microsoft AD directory as the identity source. Create permission sets and map them to the existing groups within the AWS Managed

B.

Create an organization in AWS Organizations. Turn on the AWS SSO feature in Organizations Create and configure an AD Connector to connect to the company's on-premises Active Directory. Configure AWS SSO and select the AD Connector as the identity source. Create permission sets and map them to the existing groups within the company's Active Directory.

C.

Create an organization in AWS Organizations. Turn on all features for the organization. Create and configure a directory in AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD) with a two-way trust to the company's on-premises Active Directory. Configure AWS SSO and select the AWS Managed Microsoft AD directory as the identity source. Create permission sets and map them to the existing groups within the AWS Manage

D.

Create an organization in AWS Organizations. Turn on all features for the organization. Create and configure an AD Connector to connect to the company's on-premises Active Directory. Configure AWS SSO and select the AD Connector as the identity source. Create permission sets and map them to the existing groups within the company's Active Directory.

Question 41

A company is running a critical application that uses an Amazon RDS for MySQL database to store data. The RDS DB instance is deployed in Multi-AZ mode.

A recent RDS database failover test caused a 40-second outage to the application A solutions architect needs to design a solution to reduce the outage time to less than 20 seconds.

Which combination of steps should the solutions architect take to meet these requirements? (Select THREE.)

Options:

A.

Use Amazon ElastiCache for Memcached in front of the database

B.

Use Amazon ElastiCache for Redis in front of the database.

C.

Use RDS Proxy in front of the database

D.

Migrate the database to Amazon Aurora MySQL

E.

Create an Amazon Aurora Replica

F.

Create an RDS for MySQL read replica

Question 42

A company is using AWS Organizations lo manage multiple AWS accounts For security purposes, the company requires the creation of an Amazon Simple Notification Service (Amazon SNS) topic that enables integration with a third-party alerting system in all the Organizations member accounts

A solutions architect used an AWS CloudFormation template to create the SNS topic and stack sets to automate the deployment of CloudFormation stacks Trusted access has been enabled in Organizations

What should the solutions architect do to deploy the CloudFormation StackSets in all AWS accounts?

Options:

A.

Create a stack set in the Organizations member accounts. Use service-managed permissions. Set deployment options to deploy to an organization. Use CloudFormation StackSets drift detection.

B.

Create stacks in the Organizations member accounts. Use self-service permissions. Set deployment options to deploy to an organization. Enable the CloudFormation StackSets automatic deployment.

C.

Create a stack set in the Organizations management account Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment.

D.

Create stacks in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets drift detection.

Question 43

A financial company is planning to migrate its web application from on premises to AWS. The company uses a third-party security tool to monitor the inbound traffic to the application. The company has used the security tool for the last 15 years, and the tool has no cloud solutions available from its vendor. The company's security team is concerned about how to integrate the security tool with AWS technology.

The company plans to deploy the application migration to AWS on Amazon EC2 instances. The EC2 instances will run in an Auto Scaling group in a dedicated VPC. The company needs to use the security tool to inspect all packets that come in and out of the VPC. This inspection must occur in real time and must not affect the application's performance. A solutions architect must design a target architecture on AWS that is highly available within an AWS Region.

Which combination of steps should the solutions architect take to meet these requirements? (Select TWO.)

Options:

A.

Deploy the security tool on EC2 instances in a new Auto Scaling group in the existing VPC.

B.

Deploy the web application behind a Network Load Balancer.

C.

Deploy an Application Load Balancer in front of the security tool instances.

D.

Provision a Gateway Load Balancer for each Availability Zone to redirect the traffic to the security tool.

E.

Provision a transit gateway to facilitate communication between VPCs.

Previous
Page: 10 / 35
Next
AWS Certified Professional SAP-C02 Dumps PDF, Ace Your SAP-C02 AWS Certified Professional Exam, Passed Exam Today SAP-C02, Free SAP-C02 Questions Attempt, AWS Certified Professional SAP-C02 Exam Questions and Answers PDF, Amazon Web Services SAP-C02 Questions Answers, All SAP-C02 Test Inside Amazon Web Services Questions, SAP-C02 Leak Questions, Pass SAP-C02 Exam Guide, Vce SAP-C02 Questions Latest, Legit SAP-C02 Exam Download, AWS Certified Professional Changed SAP-C02 Questions, Amazon Web Services SAP-C02 Actual Questions, Full Access Amazon Web Services SAP-C02 Tutorials, Online SAP-C02 Questions Video, Pearson SAP-C02 New Attempt, SAP-C02 Amazon Web Services Exam Lab Questions, SAP-C02 VCE Exam Download, Amazon Web Services SAP-C02 Based on Real Exam Environment, Free SAP-C02 Amazon Web Services Updates, SAP-C02 Questions Bank, Download Latest SAP-C02 Questions, SAP-C02 Premium Exam Questions, SAP-C02 Reviews Questions, Sure Pass Exam SAP-C02 PDF, AWS Certified Professional SAP-C02 Full Course Free, AWS Certified Professional SAP-C02 Amazon Web Services Study Notes, SAP-C02 Exam Results, Download Full Version SAP-C02 Amazon Web Services Exam, AWS Certified Professional SAP-C02 Book, AWS Certified Professional SAP-C02 Passing Score, Exactprep SAP-C02 Questions, Amazon Web Services SAP-C02 Online Access, Selected SAP-C02 AWS Certified Professional Questions Answers,
Exam Code: SAP-C02
Exam Name: AWS Certified Solutions Architect - Professional
Last Update: Dec 22, 2024
Questions: 483
SAP-C02 pdf

SAP-C02 PDF

$25.5  $84.99
 Add to Cart
SAP-C02 Engine

SAP-C02 Testing Engine

$28.5  $94.99
 Add to Cart
SAP-C02 PDF + Engine

SAP-C02 PDF + Testing Engine

$40.5  $134.99
 Add to Cart