Solutions Architect Professional (Page 28)

A solutions architect is creating an application that stores objects in an Amazon S3 bucket.The solutions architect must deploy the application in two AWS Regions that will be used simultaneously.The objects in the two S3 buckets must remain synchronized with each other.Which combination of steps will meet these requirements with the LEAST operational overhead? (Choose three.)Read More →

A company is migrating an application to the AWS Cloud.The application runs in an on-premises data center and writes thousands of images into a mounted NFS file system each night.After the company migrates the application, the company will host the application on an Amazon EC2 instance with a mounted AmazonElastic File System (Amazon EFS) file system.The company has established an AWS Direct Connect connection to AWS.Before the migration cutover, a solutions architect must build a process that will replicate the newly created on-premises images to the EFS file system.What is the MOST operationally efficient way to replicate the images?Read More →

A company’s public API runs as tasks on Amazon Elastic Container Service (Amazon ECS).The tasks run on AWS Fargate behind an Application Load Balancer (ALB) and are configured with Service Auto Scaling for the tasks based on CPU utilization.This service has been running well for several months.Recently, API performance slowed down and made the application unusable.The company discovered that a significant number of SQL injection attacks had occurred against the API and that the API service had scaled to its maximum amount.A solutions architect needs to implement a solution that prevents SQL injection attacks from reaching the ECS API service.The solution must allow legitimate traffic through and must maximize operational efficiency.Which solution meets these requirements?Read More →

During an audit, a security team discovered that a development team was putting IAM user secret access keys in their code and then committing it to an AWSCodeCommit repository.The security team wants to automatically find and remediate instances of this security vulnerability.Which solution will ensure that the credentials are appropriately secured automatically?Read More →

A company is developing a new on-demand video application that is based on microservices.The application will have 5 million users at launch and will have 30 million users after 6 months.The company has deployed the application on Amazon Elastic Container Service (Amazon ECS) on AWS Fargate.The company developed the application by using ECS services that use the HTTPS protocol.A solutions architect needs to implement updates to the application by using blue/green deployments.The solution must distribute traffic to each ECS service through a load balancer.The application must automatically adjust the number of tasks in response to an Amazon CloudWatch alarm.Which solution will meet these requirements?Read More →

A company has a data lake in Amazon S3 that needs to be accessed by hundreds of applications across many AWS accounts.The company’s information security policy states that the S3 bucket must not be accessed over the public internet and that each application should have the minimum permissions necessary to function.To meet these requirements, a solutions architect plans to use an S3 access point that is restricted to specific VPCs for each application.Which combination of steps should the solutions architect take to implement this solution? (Choose two.)Read More →

A company has an application that is deployed on Amazon EC2 instances behind an Application Load Balancer (ALB).The instances are part of an Auto Scaling group.The application has unpredictable workloads and frequently scales out and in.The company’s development team wants to analyze application logs to find ways to improve the application’s performance.However, the logs are no longer available after instances scale in.Which solution will give the development team the ability to view the application logs after a scale-in event?Read More →

A company is using AWS Organizations to manage multiple AWS accounts.For security purposes, the company requires the creation of an Amazon SimpleNotification Service (Amazon SNS) topic that enables integration with a third-party alerting system in all the Organizations member accounts.A solutions architect used an AWS CloudFormation template to create the SNS topic and stack sets to automate the deployment of CloudFormation stacks.Trusted access has been enabled in Organizations.What should the solutions architect do to deploy the CloudFormation StackSets in all AWS accounts?Read More →

A company runs an application in an on-premises data center.The application gives users the ability to upload media files.The files persist in a file server.The web application has many users.The application server is overutilized, which causes data uploads to fail occasionally.The company frequently adds new storage to the file server.The company wants to resolve these challenges by migrating the application to AWS.Users from across the United States and Canada access the application.Only authenticated users should have the ability to access the application to upload files.The company will consider a solution that refactors the application, and the company needs to accelerate application development.Which solution will meet these requirements with the LEAST operational overhead?Read More →

A company is using AWS Organizations to manage 15 AWS accounts.A solutions architect wants to run advanced analytics on the company’s cloud expenditures.The cost data must be gathered and made available from an analytics account.The analytics application runs in a VPC and must receive the raw cost data each night to run the analytics.The solutions architect has decided to use the Cost Explorer API to fetch the raw data and store the data in Amazon S3 in JSON format.Access to the raw cost data must be restricted to the analytics application.The solutions architect has already created an AWS Lambda function to collect data by using the Cost ExplorerAPI.Which additional actions should the solutions architect take to meet these requirements?Read More →