- Expert Verified, Online, Free.

MAIL US

info@examtopicspro.com

Amazon SAP-C02 Exam Questions

Certification Exams

Downloadable PDF versions

100% Confidential

Updated Regularly

Advanced Features

Number Of Questions

461

$ 39

Description

Exam Name: AWS Certified Solutions Architect – Professional Exam
Exam Code: SAP-C02

Related Certification(s):

  • Amazon Professional Certifications
  • Amazon AWS Certified Solutions Architect Professional Certifications
Certification Provider: Amazon
Actual Exam Duration: 180 Minutes
Number of SAP-C02 practice questions in our database: 461

Expected SAP-C02 Exam Topics, as suggested by Amazon :

  • Module 1: Design Solutions for Organizational Complexity: In this topic, AWS solutions architects learn to architect network connectivity strategies tailored to complex organizational needs. Moreover, the topic emphasizes prescribing security controls and crafting reliable and resilient architectures. Additionally, the topic covers designing multi-account AWS environments and determining cost optimization and visibility strategies to balance functionality and efficiency within a large-scale organizational framework.
  • Module 2: Design for New Solutions: This topic equips AWS solutions architects to design deployment strategies that align with business goals while ensuring continuity through robust planning. It addresses determining security controls based on varying requirements.
  • Module 3: Continuous Improvement for Existing Solutions: Through this topic, AWS solutions architects gain insights into strategies for enhancing operational excellence across deployed solutions. It emphasizes improving security, performance, and reliability through iterative refinement.
  • Module 4: Accelerate Workload Migration and Modernization: This topic focuses on enabling AWS solutions architects to identify workloads and processes suitable for migration. It includes determining optimal migration approaches, redefining architectures for existing workloads, and discovering opportunities for modernization and enhancements.

Description

Exam Name: AWS Certified Solutions Architect – Professional Exam
Exam Code: SAP-C02

Related Certification(s):

  • Amazon Professional Certifications
  • Amazon AWS Certified Solutions Architect Professional Certifications
Certification Provider: Amazon
Actual Exam Duration: 180 Minutes
Number of SAP-C02 practice questions in our database: 461

Expected SAP-C02 Exam Topics, as suggested by Amazon :

  • Module 1: Design Solutions for Organizational Complexity: In this topic, AWS solutions architects learn to architect network connectivity strategies tailored to complex organizational needs. Moreover, the topic emphasizes prescribing security controls and crafting reliable and resilient architectures. Additionally, the topic covers designing multi-account AWS environments and determining cost optimization and visibility strategies to balance functionality and efficiency within a large-scale organizational framework.
  • Module 2: Design for New Solutions: This topic equips AWS solutions architects to design deployment strategies that align with business goals while ensuring continuity through robust planning. It addresses determining security controls based on varying requirements.
  • Module 3: Continuous Improvement for Existing Solutions: Through this topic, AWS solutions architects gain insights into strategies for enhancing operational excellence across deployed solutions. It emphasizes improving security, performance, and reliability through iterative refinement.
  • Module 4: Accelerate Workload Migration and Modernization: This topic focuses on enabling AWS solutions architects to identify workloads and processes suitable for migration. It includes determining optimal migration approaches, redefining architectures for existing workloads, and discovering opportunities for modernization and enhancements.

Reviews

There are no reviews yet.

Be the first to review “Amazon SAP-C02 Exam Questions”

Your email address will not be published. Required fields are marked *

Q1. A company has an application that uses AWS Key Management Service (AWS KMS) to encrypt and decrypt dat a. The application stores data in an Amazon S3 bucket in an AWS Region. Company security policies require the data to be encrypted before the data is placed into the S3 bucket. The application must decrypt the data when the application reads files from the S3 bucket. The company replicates the S3 bucket to other Regions. A solutions architect must design a solution so that the application can encrypt and decrypt data across Regions. The application must use the same key to decrypt the data in each Region. Which solution will meet these requirements?

A.Create a KMS multi-Region primary key. Use the KMS multi-Region primary key to create a KMS multi-Region replica key in each additional Region where the application is running. Update the application code to use the specific replica key in each Region.

B. Create a new customer managed KMS key in each additional Region where the application is running. Update the application code to use the specific KMS key in each Region.

C. Use AWS Private Certificate Authority to create a new certificate authority (CA) in the primary Region. Issue a new private certificate from the CA for the application's website URL. Share the CA with the additional Regions by using AWS Resource Access Manager (AWS RAM). Update the application code to use the shared CA certificates in each Region.

D. Use AWS Systems Manager Parameter Store to create a parameter in each additional Region where the application is running. Export the key material from the KMS key in the primary Region. Store the key material in the parameter in each Region. Update the application code to use the key data from the parameter in each Region.

Correct Answer: A

Q2. A company hosts an application that uses several Amazon EC2 instances in an Auto Scaling group behind an Application Load Balancer (ALB). During the initial startup of the EC2 instances, the EC2 instances run user data scripts to download critical content for the application from an Amazon S3 bucket. The EC2 instances are launching correctly. However, after a period of time, the EC2 instances are terminated with the following error message: "An instance was taken out of service in response to an ELB system health check failure." EC2 instances continue to launch and be terminated because of Auto Scaling events in an endless loop. The only recent change to the deployment is that the company added a large amount of critical content to the S3 bucket. The company does not want to alter the user data scripts in production. What should a solutions architect do so that the production environment can deploy successfully?

A.Increase the size of the EC2 instances.

B. Increase the health check timeout for the ALB.

C. Change the health check path for the ALB.

D. Increase the health check grace period for the Auto Scaling group.

Correct Answer: D

Q3. A company needs to improve the security of its web-based application on AWS. The application uses Amazon CloudFront with two custom origins. The first custom origin routes requests to an Amazon API Gateway HTTP API. The second custom origin routes traffic to an Application Load Balancer (ALB) The application integrates with an OpenlD Connect (OIDC) identity provider (IdP) for user management. A security audit shows that a JSON Web Token (JWT) authorizer provides access to the API The security audit also shows that the ALB accepts requests from unauthenticated users A solutions architect must design a solution to ensure that all backend services respond to only authenticated users Which solution will meet this requirement?

A.Configure the ALB to enforce authentication and authorization by integrating the ALB with the IdP Allow only authenticated users to access the backend services

B. Modify the CloudFront configuration to use signed URLs Implement a permissive signing policy that allows any request to access the backend services

C. Create an AWS WAF web ACL that filters out unauthenticated requests at the ALB level. Allow only authenticated traffic to reach the backend services.

D. Enable AWS CloudTrail to log all requests that come to the ALB Create an AWS Lambda function to analyze the togs and block any requests that come from unauthenticated users.

Correct Answer: A

Q4. A company is running a large containerized workload in the AWS Cloud. The workload consists of approximately 100 different services. The company uses Amazon Elastic Container Service (Amazon ECS) to orchestrate the workload. Recently, the company's development team started using AWS Fargate instead of Amazon EC2 instances in the ECS cluster. In the past, the workload has come close to running the maximum number of EC2 instances that are available in the account. The company is worried that the workload could reach the maximum number of ECS tasks that are allowed. A solutions architect must implement a solution that will notify the development team when Fargate reaches 80% of the maximum number of tasks. What should the solutions architect do to meet this requirement?

A.Use Amazon CloudWatch to monitor the Sample Count statistic for each service in the ECS cluster. Set an alarm for when the math expression sample count/SERVICE_QUOTA(service)'100 is greater than 80. Notify the development team by using Amazon Simple Notification Service (Amazon SNS).

B. Use Amazon CloudWatch to monitor service quotas that are published under the AWS/Usage metric namespace. Set an alarm for when the math expression metric/SERVICE_QUOTA(metric)*100 is greater than 80. Notify the development team by using Amazon Simple Notification Service (Amazon SNS).

C. Create an AWS Lambda function to poll detailed metrics from the ECS cluster. When the number of running Fargate tasks is greater than 80, invoke Amazon Simple Email Service (Amazon SES) to notify the development team.

D. Create an AWS Config rule to evaluate whether the Fargate SERVICE_OUOTA is greater than 80. Use Amazon Simple Email Service (Amazon SES) to notify the development team when the AWS Config rule is not compliant.

Correct Answer: B

Frequently Asked Questions

ExamTopics Pro is a premium service offering a comprehensive collection of exam questions and answers for over 1000 certification exams. It is regularly updated and designed to help users pass their certification exams confidently.
Please contact team@examtopics.com and we will provide you with alternative payment options.
The subscriptions at Examtopics.com are recurring according to the Billing Cycle of your Subscription Plan, i.e. after a certain period of time your credit card is re-billed automatically until/unless you cancel your subscription.
Free updates are available for the duration of your subscription, after the subscription is expired, your access will no longer be available.