Which change should the DevOps engineer make to launch the EC2 instance in the vendor-data account?

2026-03-22
By:
In: DOP-C02
With: 2 Comments

A company uses AWS Organizations to manage its AWS accounts.The company has a root OU that has a child OU.The root OU has an SCP that allows all actions on all resources.The child OU has an SCP that allows all actions for Amazon DynamoDB and AWS Lambda, and denies all other actions.The company has an AWS account that is named vendor-data in the child OU.A DevOps engineer has an IAM user that is attached to the Administrator Access IAM policy in the vendor-data account.The DevOps engineer attempts to launch an Amazon EC2 instance in the vendor-data account but receives an access denied error.Which change should the DevOps engineer make to launch the EC2 instance in the vendor-data account?Read More →

Which combination of actions should a solutions architect take to meet these requirements?

2026-03-22
By:
In: SAA-C03
With: 2 Comments

A company recently announced the deployment of its retail website to a global audience.The website runs on multiple Amazon EC2 instances behind an Elastic Load Balancer.The instances run in an Auto Scaling group across multiple Availability Zones.The company wants to provide its customers with different versions of content based on the devices that the customers use to access the website.Which combination of actions should a solutions architect take to meet these requirements? (Choose two.)Read More →

Which combination of steps should the solutions architect take to meet these requirements?

2026-03-22
By:
In: SAP-C02
With: 2 Comments

A digital marketing company has multiple AWS accounts that belong to various teams.The creative team uses an Amazon S3 bucket in its AWS account to securely store images and media files that are used as content for the company’s marketing campaigns.The creative team wants to share the S3 bucket with the strategy team so that the strategy team can view the objects.A solutions architect has created an IAM role that is named strategy_reviewer in the Strategy account.The solutions architect also has set up a custom AWS Key Management Service (AWS KMS) key in the Creative account and has associated the key with the S3 bucket.However, when users from the Strategy account assume the IAM role and try to access objects in the S3 bucket, they receive an Access Denied error.The solutions architect must ensure that users in the Strategy account can access the S3 bucket.The solution must provide these users with only the minimum permissions that they need.Which combination of steps should the solutions architect take to meet these requirements? (Choose three.)Read More →

What should a solutions architect implement to meet these requirements with the LEAST amount of operational overhead?

2026-03-22
By:
In: SAA-C02
With: 2 Comments

A company hosts its core network services, including directory services and DNS, in its on-premises data center.The data center is connected to the AWS Cloud using AWS Direct Connect (DX).Additional AWS accounts are planned that will require quick, cost-effective, and consistent access to these network services.What should a solutions architect implement to meet these requirements with the LEAST amount of operational overhead?Read More →

What should the developer do to meet these requirements?

2026-03-22
By:
In: DVA-C02
With: 2 Comments

A developer is building a serverless application that runs on AWS.The developer wants to create an accelerated development workflow that deploys incremental changes to AWS for testing.The developer wants to deploy the incremental changes but does not want to fully deploy the entire application to AWS for every code commit.What should the developer do to meet these requirements?Read More →