Amazon AWS Certified Solutions Architect - Professional SAP-C01
Prev

There are 579 results

Next
#321 (Accuracy: 100% / 1 votes)
When using the AWS CLI for AWS CloudFormation, which of the following commands returns a description of the specified resource in the specified stack?
  • A. describe-stack-events
  • B. describe-stack-resource
  • C. create-stack-resource
  • D. describe-stack-returns
#322 (Accuracy: 100% / 1 votes)
In the context of AWS CloudFormation, which of the following statements is correct?
  • A. Actual resource names are a combination of the resource ID, stack, and logical resource name.
  • B. Actual resource name is the stack resource name.
  • C. Actual resource name is the logical resource name.
  • D. Actual resource names are a combination of the stack and logical resource name.
#323 (Accuracy: 100% / 2 votes)
For AWS CloudFormation, which stack state refuses UpdateStack calls?
  • A. UPDATE_ROLLBACK_FAILED
  • B. UPDATE_ROLLBACK_COMPLETE
  • C. UPDATE_COMPLETE
  • D. CREATE_COMPLETE
#324 (Accuracy: 100% / 1 votes)
A user has launched an EBS optimized instance with EC2. Which of the below mentioned options is the correct statement?
  • A. It provides additional dedicated capacity for EBS IO
  • B. The attached EBS will have greater storage capacity
  • C. The user will have a PIOPS based EBS volume
  • D. It will be launched on dedicated hardware in VPC
#325 (Accuracy: 100% / 1 votes)
In CloudFormation, if you want to map an Amazon Elastic Block Store to an Amazon EC2 instance, _________.
  • A. you reference the logical IDs to associate the block stores with the instance
  • B. you reference the physical IDs of the instance along with the resource type
  • C. you reference the instance IDs of the block store along with the resource properties
  • D. you reference the physical IDs of both the block stores and the instance
#326 (Accuracy: 100% / 1 votes)
An organization, which has the AWS account ID as 999988887777, has created 50 IAM users. All the users are added to the same group ABC.
If the organization has enabled that each IAM user can login with the AWS console, which AWS login URL will the IAM users use??
  • A. https://999988887777.aws.amazon.com/ABC/
  • B. https://signin.aws.amazon.com/ABC/
  • C. https://ABC.signin.aws.amazon.com/999988887777/console/
  • D. https://999988887777.signin.aws.amazon.com/console/
#327 (Accuracy: 100% / 2 votes)
In Amazon ElastiCache, which of the following statements is correct?
  • A. When you launch an ElastiCache cluster into an Amazon VPC private subnet, every cache node is assigned a public IP address within that subnet.
  • B. You cannot use ElastiCache in a VPC that is configured for dedicated instance tenancy.
  • C. If your AWS account supports only the EC2-VPC platform, ElastiCache will never launch your cluster in a VPC.
  • D. ElastiCache is not fully integrated with Amazon Virtual Private Cloud (VPC).
#328 (Accuracy: 100% / 2 votes)
An organization has setup RDS with VPC. The organization wants RDS to be accessible from the internet. Which of the below mentioned configurations is not required in this scenario?
  • A. The organization must enable the parameter in the console which makes the RDS instance publicly accessible.
  • B. The organization must allow access from the internet in the RDS VPC security group,
  • C. The organization must setup RDS with the subnet group which has an external IP.
  • D. The organization must enable the VPC attributes DNS hostnames and DNS resolution.
#329 (Accuracy: 100% / 1 votes)
An organization is setting up a web application with the JEE stack. The application uses the JBoss app server and MySQL DB. The application has a logging module which logs all the activities whenever a business function of the JEE application is called. The logging activity takes some time due to the large size of the log file.
If the application wants to setup a scalable infrastructure which of the below mentioned options will help achieve this setup?
  • A. Host the log files on EBS with PIOPS which will have higher I/O.
  • B. Host logging and the app server on separate servers such that they are both in the same zone.
  • C. Host logging and the app server on the same instance so that the network latency will be shorter.
  • D. Create a separate module for logging and using SQS compartmentalize the module such that all calls to logging are asynchronous.
#330 (Accuracy: 100% / 2 votes)
A company is running multiple workloads in the AWS Cloud. The company has separate units for software development. The company uses AWS Organizations and federation with SAML to give permissions to developers to manage resources in their AWS accounts. The development units each deploy their production workloads into a common production account.
Recently, an incident occurred in the production account in which members of a development unit terminated an EC2 instance that belonged to a different development unit. A solutions architect must create a solution that prevents a similar incident from happening in the future. The solution also must allow developers the possibility to manage the instances used for their workloads.
Which strategy will meet these requirements?
  • A. Create separate OUs in AWS Organizations for each development unit. Assign the created OUs to the company AWS accounts. Create separate SCPs with a deny action and a StringNotEquals condition for the DevelopmentUnit resource tag that matches the development unit name. Assign the SCP to the corresponding OU.
  • B. Pass an attribute for DevelopmentUnit as an AWS Security Token Service (AWS STS) session tag during SAML federation. Update the IAM policy for the developers' assumed IAM role with a deny action and a StringNotEquals condition for the DevelopmentUnit resource tag and aws:PrincipalTag/ DevelopmentUnit.
  • C. Pass an attribute for DevelopmentUnit as an AWS Security Token Service (AWS STS) session tag during SAML federation. Create an SCP with an allow action and a StringEquals condition for the DevelopmentUnit resource tag and aws:PrincipalTag/DevelopmentUnit. Assign the SCP to the root OU.
  • D. Create separate IAM policies for each development unit. For every IAM policy, add an allow action and a StringEquals condition for the DevelopmentUnit resource tag and the development unit name. During SAML federation, use AWS Security Token Service (AWS STS) to assign the IAM policy and match the development unit name to the assumed IAM role.