DUMPS4US
Amazon
SAP-C02
https://dumps4us.com/shop/sap-c02-dumps/
AWS CERTIfiED SOLUTIONS ARCHITECTPROFESSIONAL
QUESTION & ANSWERS
QUESTION 1

A company runs a sports web portal that covers the latest cricket news in Australia. The
solutions architect manages the main AWS account which has resources in multiple AWS
regions. The web portal is hosted on a fleet of on-demand EC2 instances and an RDS
database which are also deployed to other AWS regions. The IT Security Compliance Officer
has given the solutions architect the task of developing a reliable and durable logging
solution to track changes made to all of your EC2, IAM, and RDS resources in all of the AWS
regions. The solution must ensure the integrity and confidentiality of the log data.

Which of the following solutions would be the best option to choose?
A.
Create a new trail in CloudTrail and assign it a new S3 bucket to store the logs. Configure
AWS SNS to send delivery notifications to your management system. Secure the S3 bucket
that stores your logs using IAM roles and S3 bucket policies.
B.
Create three new CloudTrail trails, each with its own S3 bucket to store the logs: one for the
AWS Management console, one for AWS SDKs, and one for command line tools. Then
create IAM roles and S3 bucket policies for the S3 buckets storing your logs.
C.
Create a new trail in AWS CloudTrail with the global services option selected, and create
one new Amazon S3 bucket to store the logs. Create IAM roles, S3 bucket policies, and
enable Multi Factor Authentication (MFA) Delete on the S3 bucket storing your logs
D.
Create a new trail in AWS CloudTrail with the global services option selected, and assign it
an existing S3 bucket to store the logs. Create S3 ACLs and enable Multi Factor
Authentication (MFA) delete on the S3 bucket storing your logs.


Correct Answer: C
QUESTION 2

A company has a team of data analysts that uploads generated data points to an Amazon S3 bucket.
The data points are used by other departments so the objects on this primary S3 bucket need to be
replicated to other S3 buckets on several AWS Accounts owned by the company. The Solutions
Architect created an AWS Lambda function that is triggered by S3 PUT events on the primary bucket.
This Lambda function will replicate the newly uploaded object to other destination buckets. Since there
will be thousands of object uploads on the primary bucket every day, the company is concerned that
this Lambda function may affect other critical Lambda functions because of the regional concurrency
limit in AWS Lambda. The replication of the objects does not need to happen in real-time. Which of the
following options will ensure that this Lambda function will not affect the execution of other critical
Lambda functions?
A.
A.
Configure a reserved concurrency limit for the new function to ensure that its executions will not
exceed this limit. Use Amazon CloudWatch alarms to monitor the Throttles metric for Lambda functions
to ensure that the concurrency limit is not being reached.
B.
B.
Implement an exponential backoff algorithm in the new Lambda function to ensure that it will
not run if the concurrency limit is being reached. Use Amazon CloudWatch alarms to monitor the
Throttles metric for Lambda functions to check if the concurrency limit is reached.
C.
C.
Set the execution timeout of the new Lambda function to 5 minutes. This will allow it to wait for
other Lambda function executions to finish in case the concurrency limit is reached. Use Amazon
CloudWatch alarms to monitor the Throttles metric for Lambda functions to check if the concurrency
limit is reached.
D.
D.
Decouple the Amazon S3 event notifications and send the events to an Amazon SQS queue in a
separate AWS account. Create the new Lambda function on this account too. Invoke the Lambda
function whenever an event message is received in the SQS queue.

Correct Answer: A
QUESTION
3
A company is running its enterprise resource planning application in AWS that handles supply chain,


order management, and delivery tracking. The architecture has a set of RESTful web services that
enable third-party companies to search for data that will be consumed by their respective
applications. The public web services consist of several AWS Lambda functions. DynamoDB is used
for its database tier and is integrated with an Amazon OpenSearch domain, which stores the indexes
and supports the search feature. A Solutions Architect has been instructed to ensure that in the
event of a failed deployment, there should be no downtime, and a system should be in place to
prevent subsequent deployments. The service must strictly maintain full capacity during API
deployment without any reduced compute capacity to avoid degradation of the service.
Among the options below, which can the Architect use to meet the requirements in the MOST
efficient way?
A.
A.
Do a blue/green deployment on all upcoming changes using AWS CodeDeploy. Using AWS
SAM, launch the DynamoDB tables, Lambda functions, and Amazon OpenSearch domain in your
AWS VPC. Host the web application in AWS Elastic Beanstalk and set the deployment policy to All
at Once.
B.
B.
Do a blue/green deployment on all upcoming changes using Amazon Lightsail. Let Amazon
Lightsail handle the provisioning of database instances, EC2 instances, and load balancers
needed by the web application. Use CloudFormation to deploy the AWS Lambda functions,
provision DynamoDB tables, and create an Amazon OpenSearch domain in your VPC
C.
C.
Do a blue/green deployment on all upcoming changes using AWS CodeDeploy. Using AWS
CloudFormation, launch the Amazon DynamoDB tables, AWS Lambda functions, and Amazon
OpenSearch domain in your AWS VPC. Host the web application in AWS Elastic Beanstalk and set
the deployment policy to Immutable
D.
D.
Do an in-place deployment on all upcoming changes using AWS CodeDeploy. Using AWS
SAM, launch the Amazon DynamoDB tables, Lambda functions, and Amazon OpenSearch
domain in your AWS VPC. Host the web application in AWS Elastic Beanstalk and set the
deployment policy to Rolling.

Correct Answer: C