A developer designed an application on an Amazon EC2 instance.The application makes API requests to objects in an Amazon S3 bucket.Which combination of steps will ensure that the application makes the API requests in the MOST secure manner? (Choose two.)Read More →
To run an application, a DevOps engineer launches an Amazon EC2 instance with public IP addresses in a public subnet.A user data script obtains the application artifacts and installs them on the instances upon launch.A change to the security classification of the application now requires the instances to run with no access to the internet.While the instances launch successfully and show as healthy, the application does not seem to be installed.Which of the following should successfully install the application while complying with the new rule?Read More →
While setting up an AWS managed VPN connection, a SysOps administrator creates a customer gateway resource in AWS.The customer gateway device resides in a data center with a NAT gateway in front of it.What address should be used to create the customer gateway resource?Read More →
The Statement element, of an AWS IAM policy, contains an array of individual statements.Each individual statement is a(n) _________ block enclosed in braces{ }.Read More →
A solutions architect is optimizing a website for an upcoming musical event.Videos of the performances will be streamed in real time and then will be available on demand.The event is expected to attract a global online audience.Which service will improve the performance of both the real-time and on-demand streaming?Read More →
A solutions architect must update an application environment within AWS Elastic Beanstalk using a blue/green deployment methodology.The solutions architect creates an environment that is identical to the existing application environment and deploys the application to the new environment.What should be done next to complete the update?Read More →
Which option is the default pricing model for Amazon EC2 instances?Read More →
A company recently migrated its entire IT environment to the AWS Cloud.The company discovers that users are provisioning oversized Amazon EC2 instances and modifying security group rules without using the appropriate change control process.A solutions architect must devise a strategy to track and audit these inventory and configuration changes.Which actions should the solutions architect take to meet these requirements? (Choose two.)Read More →
A developer creates a static website for their department.The developer deploys the static assets for the website to an Amazon S3 bucket and serves the assets with Amazon CloudFront.The developer uses origin access control (OAC) on the CloudFront distribution to access the S3 bucket.The developer notices users can access the root URL and specific pages but cannot access directories without specifying a file name.For example, /products/index.html works, but /products/ returns an error.The developer needs to enable accessing directories without specifying a file name without exposing the S3 bucket publicly.Which solution will meet these requirements?Read More →
An ecommerce company has chosen AWS to host its new platform.The company’s DevOps team has started building an AWS Control Tower landing zone.The DevOps team has set the identity store within AWS IAM Identity Center (AWS Single Sign-On) to external identity provider (IdP) and has configured SAML 2.0.The DevOps team wants a robust permission model that applies the principle of least privilege.The model must allow the team to build and manage only the team’s own resources.Which combination of steps will meet these requirements? (Choose three.)Read More →
© 2026. Tip2Cloud doesn't offer any real exam questions. All questions & answers were supported by AI.