Amazon AWS certified solution Architect - professional

JavaScript isn't enabled in your browser, so this file can't be opened. Enable and reload.

Amazon AWS certified solution Architect - professional - VI

Email *

Write your full Name? *

Write your mobile number? *

QUESTION NO: 501 A group of Amazon EC2 instances have been configured as a high performance computing (HPC)cluster. The instances are running in a placement group, and are able to communicate with each other at network speeds of up to 20 Gbps. The cluster needs to communicate with a control EC2 instance outside of the placement group.The control instance has the same instance type and AMI as the other instances, and is configured with a public IP address.How can the Solutions Architect improve the network speeds between the control instance and the instances in the placement group? *

1 point

A. Terminate the control instance and relaunch it in the placement group.

B. Ensure that the instances are communicating using their private IP addresses.

C. Ensure that the control instance is using an Elastic Network Adapter.

D. Move the control instance inside the placement group.

QUESTION NO: 502 A Solutions Architect has created an AWS Cloud Formation template for a three-tier application that contains an Auto Scaling group of Amazon EC2 instances running a custom AMI. The Solutions Architect wants to ensure that future updates to the custom AMI can be deployed toa running stack by first updating the template to refer to the new AMI, and then invoking Update Stack to replace the EC2 instances with instances launched from the new AMI. How can updates to the AMI be deployed to meet these requirements? *

1 point

A. Create a change set for a new version of the template, view the changes to the running EC2 instances to ensure that the AMI is correctly updated, and then execute the change set.

B. Edit the AWS::AutoScaling::LaunchConfiguration resource in the template, changing its DeletionPolicy to Replace.

C. Edit the AWS::AutoScaling:: AutoScalingGroup resource in the template, inserting an UpdatePolicy attribute.

D. Create a new stack from the updated template. Once it is successfully deployed, modify the DNS records to point to the new stack and delete the old stack.

QUESTION NO: 503 A Solutions Architect is designing a multi-account structure that has 10 existing accounts. The design must meet the following requirements:Consolidate all accounts into one organization.Allow full access to the Amazon EC2 service from the master account and the secondary accounts.Minimize the effort required to add additional secondary accounts.Which combination of steps should be included in the solution? (Choose two.) *

1 point

A. Create an organization from the master account. Send invitations to the secondary accounts from the master account. Accept the invitations and create an OU.

B. Create an organization from the master account. Send a join request to the master account from each secondary account. Accept the requests and create an OU.

C. Create a VPC peering connection between the master account and the secondary accounts. Accept the request for the VPC peering connection.

D. Create a service control policy (SCP) that enables full EC2 access, and attach the policy to the OU.

E. Create a full EC2 access policy and map the policy to a role in each account. Trust every other account to assume the role.

Required

QUESTION NO: 504 Any Company has acquired numerous companies over the past few years. The CIO for Any Company would like to keep the resources for each acquired company separate. The CIO also would like to enforce a charge back model where each company pays for the AWS services it uses.The Solutions Architect is tasked with designing an AWS architecture that allows Any Company to achieve the following:Implementing a detailed charge back mechanism to ensure that each company pays for there sources it uses. Any Company can pay for AWS services for all its companies through a single invoice.Developers in each acquired company have access to resources in their company only.Developers in an acquired company should not be able to affect resources in their single identity store is used to authenticate Developers across all companies.Which of the following approaches would meet these requirements? (Choose two.) *

1 point

A. Create a multi-account strategy with an account per company. Use consolidated billing to ensure that AnyCompany needs to pay a single bill only.

B. Create a multi-account strategy with a virtual private cloud (VPC) for each company. Reduce impact across companies by not creating any VPC peering links. As everything is in a single account, there will be a single invoice. Use tagging to create a detailed bill for each company.

C. Create IAM users for each Developer in the account to which they require access. Create policies that allow the users access to all resources in that account. Attach the policies to the IAM user.

D. Create a federated identity store against the company’s Active Directory. Create IAM roles with appropriate permissions and set the trust relationships with AWS and the identity store. Use AWS STS to grant users access based on the groups they belong to in the identity store.

E. Create a multi-account strategy with an account per company. For billing purposes, use a tagging solution that uses a tag to identify the company that creates each resource.

Required

QUESTION NO: 505 A company deployed a three-tier web application in two regions: us-east-1 and eu-west-1. The application must be active in both regions at the same time. The database tier of the application uses a single Amazon RDS Aurora database globally, with a master in us-east-1 and a read replica in eu-west-1. Both regions are connected by a VPN.The company wants to ensure that the application remains available even in the event of a region level failure of all of the application’s components. It is acceptable for the application to be in read only mode for up to 1 hour. The company plans to configure two Amazon Route 53 record sets,one for each of the regions.How should the company complete the configuration to meet its requirements while providing thelowest latency for the application end-users? (Choose two.) *

1 point

A. Use failover routing and configure the us-east-1 record set as primary and the eu-west-1 record set as secondary. Configure an HTTP health check for the web application in us-east-1, and associate it to the us-east-1 record set.

B. Use weighted routing and configure each record set with a weight of 50. Configure an HTTP health check for each region, and attach it to the record set for that region.

C. Use latency-based routing for both record sets. Configure a health check for each region and attach it to the record set for that region.

D. Configure an Amazon CloudWatch alarm for the health checks in us-east-1, and have it invoke an AWS Lambda function that promotes the read replica in eu-west-1.

E. Configure Amazon RDS event notifications to react to the failure of the database in us-east-1 by invoking an AWS Lambda function that promotes the read replica in eu-west-1.

Required

QUESTION NO: 506 A company runs a Windows Server host in a public sub net that is configured to allow a team of administrators to connect over RDP to troubleshoot issues with hosts in a private sub net. The host must be available at all times outside of a scheduled maintenance window, and needs to receive the latest operating system updates within 3 days of release.What should be done to manage the host with the LEAST amount of administrative effort? *

1 point

A. Run the host in a single-instance AWS Elastic Beanstalk environment. Configure the environment with a custom AMI to use a hardened machine image from AWS Marketplace. Apply system updates with AWS Systems Manager Patch Manager.

B. Run the host on AWS WorkSpaces. Use Amazon Work Spaces Application Manager (WAM) to harden the host. Configure Windows automatic updates to occur every 3 days.

C. Run the host in an Auto Scaling group with a minimum and maximum instance count of 1. Use a hardened machine image from AWS Marketplace. Apply system updates with AWS Systems Manager Patch Manager.

D. Run the host in AWS OpsWorks Stacks. Use a Chief recipe to harden the AMI during instance launch. Use an AWS Lambda scheduled event to run the Upgrade Operating System stack command to apply system updates.

QUESTION NO: 507 A company has a large on-premises Apache Hadoop cluster with a 20 PB HDFS database. The cluster is growing every quarter by roughly 200 instances and 1 PB. The company’s goals are to enable resiliency for its Hadoop data, limit the impact of losing cluster nodes, and significantly reduce costs. The current cluster runs 24/7 and supports a variety of analysis workloads, including interactive queries and batch processing.Which solution would meet these requirements with the LEAST expense and down time? *

1 point

A. Use AWS Snowmobile to migrate the existing cluster data to Amazon S3. Create a persistent Amazon EMR cluster initially sized to handle the interactive workload based on historical data from the on-premises cluster. Store the data on EMRFS. Minimize costs using Reserved Instances for master and core nodes and Spot Instances for task nodes, and auto scale task nodes based on Amazon CloudWatch metrics. Create job-specific, optimized clusters for batch workloads that are similarly optimized.

B. Use AWS Snowmobile to migrate the existing cluster data to Amazon S3. Create a persistent Amazon EMR cluster of a similar size and configuration to the current cluster. Store the data on EMRFS. Minimize costs by using Reserved Instances. As the workload grows each quarter, Write your mobile number?

C.Use AWS Snowball to migrate the existing cluster data to Amazon S3. Create a persistent Amazon EMR cluster initially sized to handle the interactive workloads based on historical data from the on-premises cluster. Store the data on EMRFS. Minimize costs using Reserved Instances for master and core nodes and Spot Instances for task nodes, and auto scale task nodes based on Amazon CloudWatch metrics. Create job-specific, optimized clusters for batch workloads that are similarly optimized.

D. Use AWS Direct Connect to migrate the existing cluster data to Amazon S3. Create a persistent Amazon EMR cluster initially sized to handle the interactive workload based on historical data from the on-premises cluster. Store the data on EMRFS. Minimize costs using Reserved Instances for master and core nodes and Spot Instances for task nodes, and auto scale task nodes based on Amazon CloudWatch metrics. Create job-specific, optimized clusters for batch workloads that are similarly optimized.

QUESTION NO: 508 A company is running a large application on premises. Its technology stack consists of Microsoft.NET for the web server platform and Apache Cassandra for the database. The company wants to migrate this application to AWS to improve service reliability. The IT team also wants to reduce the time it spends on capacity management and maintenance of this infrastructure. The Development team is willing and available to make code changes to support the migration.Which design is the LEAST complex to manage after the migration? *

1 point

A. Migrate the web servers to Amazon EC2 instances in an Auto Scaling group that is running .NET. Migrate the existing Cassandra database to Amazon Aurora with multiple read replicas, and run both in a Multi-AZ mode.

B. Migrate the web servers to an AWS Elastic Beanstalk environment that is running the .NET platform in a Multi-AZ Auto Scaling configuration. Migrate the Cassandra database to Amazon EC2 instances that are running in a Multi-AZ configuration.

C. Migrate the web servers to an AWS Elastic Beanstalk environment that is running the .NET platform in a Multi-AZ Auto Scaling configuration. Migrate the existing Cassandra database to Amazon DynamoDB.

D. Migrate the web servers to Amazon EC2 instances in an Auto Scaling group that is running .NET. Migrate the existing Cassandra database to Amazon DynamoDB.

QUESTION NO: 509 A company has a requirement that only allows specially hardened AMIs to be launched into public sub nets in a VPC, and for the AMIs to be associated with a specific security group. Allowing non compliant in stances to launch into the public sub net could present a significant security risk if they are allowed to operate.A mapping of approved AMIs to sub nets to security groups exists in an Amazon DynamoDB table in the same AWS account. The company created an AWS Lambda function that, when invoked,will terminate a given Amazon EC2 instance if the combination of AMI, sub net, and security group are not approved in the DynamoDB table.What should the Solutions Architect do to MOST quickly mitigate the risk of compliance deviations? *

1 point

A. Create an Amazon CloudWatch Events rule that matches each time an EC2 instance is launched using one of the allowed AMIs, and associate it with the Lambda function as the target.

B. For the Amazon S3 bucket receiving the AWS CloudTrail logs, create an S3 event notification configuration with a filter to match when logs contain the ec2:RunInstances action, and associate it with the Lambda function as the target.

C.Enable AWS CloudTrail and configure it to stream to an Amazon CloudWatch Logs group. Create a metric filter in CloudWatch to match when the ec2:RunInstances action occurs, and trigger the Lambda function when the metric is greater than 0.

D. Create an Amazon CloudWatch Events rule that matches each time an EC2 instance is launched, and associate it with the Lambda function as the target.

QUESTION NO: 510 A Solutions Architect must migrate an existing on-premises web application with 70 TB of static files supporting a public open-data initiative. The Architect wants to upgrade to the latest version of the host operating system as part of the migration effort.Which is the FASTEST and MOST cost-effective way to perform the migration? *

1 point

A. Run a physical-to-virtual conversion on the application server. Transfer the server image over the internet, and transfer the static data to Amazon S3.

B. Run a physical-to-virtual conversion on the application server. Transfer the server image over AWS Direct Connect, and transfer the static data to Amazon S3.

C. Re-platform the server to Amazon EC2, and use AWS Snowball to transfer the static data to Amazon S3.

D.Re-platform the server by using the AWS Server Migration Service to move the code and data to a new Amazon EC2 instance.

Clear form

Never submit passwords through Google Forms.

This content is neither created nor endorsed by Google. Report Abuse - Terms of Service - Privacy Policy

Forms