Tip 2 Cloud – Page 496 – Free study guides, practices test, sample questions

Why did GuardDuty fail to alert to this behavior?

A company has Windows Amazon EC2 instances in a VPC that are joined to on-premises Active Directory servers for domain services.The security team has enabled Amazon GuardDuty on the AWS account to alert on issues with the instances.During a weekly audit of network traffic, the Security Engineer notices that one of the EC2 instances is attempting to communicate with a known command-and- control server but failing.This alert does not show up in GuardDuty.Why did GuardDuty fail to alert to this behavior?Read More →

Which solution will meet these requirements MOST cost-effectively?

By: study aws cloud

In: SAA-C03

With: 2 Comments

A company runs an application on Amazon EC2 Linux instances across multiple Availability Zones.The application needs a storage layer that is highly available and Portable Operating System Interface (POSIX)-compliant.The storage layer must provide maximum data durability and must be shareable across the EC2 instances.The data in the storage layer will be accessed frequently for the first 30 days and will be accessed infrequently after that time.Which solution will meet these requirements MOST cost-effectively?Read More →

Which solution will meet these requirements with the LEAST code changes?

By: study aws cloud

In: SAP-C02

With: 2 Comments

A company runs a Java application that has complex dependencies on VMs that are in the company’s data center.The application is stable.but the company wants to modernize the technology stack.The company wants to migrate the application to AWS and minimize the administrative overhead to maintain the servers.Which solution will meet these requirements with the LEAST code changes?Read More →

How should the company deploy the EC2 instances to meet these requirements?

By: study aws cloud

In: CLF-C01

With: 2 Comments

An ecommerce company wants to design a highly available application that will be hosted on multiple Amazon EC2 instances.How should the company deploy the EC2 instances to meet these requirements?Read More →

Which solution is MOST effective?

By: study aws cloud

In: SAA-C02

With: 2 Comments

A solutions architect is performing a security review of a recently migrated workload.The workload is a web application that consists of Amazon EC2 instances in an Auto Scaling group behind an Application Load Balancer.The solutions architect must improve the security posture and minimize the impact of a DDoS attack on resources.Which solution is MOST effective?Read More →

Which option is a benefit of the economies of scale based on the advantages of cloud computing?

By: study aws cloud

In: CLF-C02

With: 2 Comments

Which option is a benefit of the economies of scale based on the advantages of cloud computing?Read More →

Which solutions will meet these requirements?

By: study aws cloud

In: DVA-C02

With: 2 Comments

A developer is writing an application that will retrieve sensitive data from a third-party system.The application will format the data into a PDF file.The PDF file could be more than 1 MB.The application will encrypt the data to disk by using AWS Key Management Service (AWS KMS).The application will decrypt the file when a user requests to download it.The retrieval and formatting portions of the application are complete.The developer needs to use the GenerateDataKey API to encrypt the PDF file so that the PDF file can be decrypted later.The developer needs to use an AWS KMS symmetric customer managed key for encryption.Which solutions will meet these requirements?Read More →

Which solution will meet these requirements?

By: study aws cloud

In: DOP-C02

With: 2 Comments

A company uses AWS Organizations and AWS Control Tower to manage all the company’s AWS accounts.The company uses the Enterprise Support plan.A DevOps engineer is using Account Factory for Terraform (AFT) to provision new accounts.When new accounts are provisioned, the DevOps engineer notices that the support plan for the new accounts is set to the Basic Support plan.The DevOps engineer needs to implement a solution to provision the new accounts with the Enterprise Support plan.Which solution will meet these requirements?Read More →

The template is working in us-east-1, but it is failing in us-west-2 with the error code:AMI [ami-12345678] does not existHow should the Administrator ensure that the AWS CloudFormation template is working in every region?

By: study aws cloud

In: SOA-C02

With: 2 Comments

A SysOps administrator is troubleshooting an AWS CloudFormation template whereby multiple Amazon EC2 instances are being created.The template is working in us-east-1, but it is failing in us-west-2 with the error code:AMI [ami-12345678] does not existHow should the Administrator ensure that the AWS CloudFormation template is working in every region?Read More →

How can the organization fulfil the license requirement as the MAC address changes every time an instance is started/stopped/terminated?

By: study aws cloud

In: SAP-C01

With: 2 Comments

An organization is purchasing licensed software.The software license can be registered only to a specific MAC Address.The organization is going to host the software in the AWS environment.How can the organization fulfil the license requirement as the MAC address changes every time an instance is started/stopped/terminated?Read More →