Solutions Architect Professional (Page 86)

A company runs a public-facing application that uses a Java-based web service via a RESTful API.It is hosted on Apache Tomcat on a single server in a data center that runs consistently at 30% CPU utilization.Use of the API is expected to increase by 10 times with a new product launch.The business wants to migrate the application to AWS with no disruption, and needs it to scale to meet demand.The company has already decided to use Amazon Route 53 and CNAME records to redirect traffic.How can these requirements be met with the LEAST amount of effort?Read More →

To abide by industry regulations, a solutions architect must design a solution that will store a company’s critical data in multiple public AWS Regions, including in the United States, where the company’s headquarters is located.The solutions architect is required to provide access to the data stored in AWS to the company’s global WAN network.The security team mandates that no traffic accessing this data should traverse the public internet.How should the solutions architect design a highly available solution that meets the requirements and is cost-effective?Read More →

A company currently runs a secure application on Amazon EC2 that takes files from on-premises locations through AWS Direct Connect, processes them, and uploads them to a single Amazon S3 bucket.The application uses HTTPS for encryption in transit to Amazon S3, and S3 server-side encryption to encrypt at rest.Which of the following changes should the Solutions Architect recommend to make this solution more secure without impeding application’s performance?Read More →

A company wants to migrate an Amazon Aurora MySQL DB cluster from an existing AWS account to a new AWS account in the same AWS Region.Both accounts are members of the same organization in AWS Organizations.The company must minimize database service interruption before the company performs DNS cutover to the new database.Which migration strategy will meet this requirement? (Choose two.)Read More →

A company decided to purchase Amazon EC2 Reserved Instances.A solutions architect is tasked with implementing a solution where only the master account inAWS Organizations is able to purchase the Reserved Instances.Current and future member accounts should be blocked from purchasing Reserved Instances.Which solution will meet these requirements?Read More →

A company needs to gather data from an experiment in a remote location that does not have internet connectivity.During the experiment, sensors that are connected to a local network will generate 6 TB of data in a proprietary format over the course of 1 week.The sensors can be configured to upload their data files to an FTP server periodically, but the sensors do not have their own FTP server.The sensors also do not support other protocols.The company needs to collect the data centrally and move the data to object storage in the AWS Cloud as soon as possible after the experiment.Which solution will meet these requirements?Read More →

A solutions architect has an operational workload deployed on Amazon EC2 instances in an Auto Scaling group.The VPC architecture spans two AvailabilityZones (AZ) with a subnet in each that the Auto Scaling group is targeting.The VPC is connected to an on-premises environment and connectivity cannot be interrupted.The maximum size of the Auto Scaling group is 20 instances in service.The VPC IPv4 addressing is as follows:VPC CIDR: 10.0.0.0/23 -AZ1 subnet CIDR: 10.0.0.0/24 -AZ2 subnet CIDR: 10.0.1.0/24 -Since deployment, a third AZ has become available in the Region.The solutions architect wants to adopt the new AZ without adding additional IPv4 address space and without service downtime.Which solution will meet these requirements?Read More →

A research company is running daily simulations in the AWS Cloud to meet high demand.The simulations run on several hundred Amazon EC2 instances that are based on Amazon Linux 2.Occasionally, a simulation gets stuck and requires a cloud operations engineer to solve the problem by connecting to an EC2 instance through SSH.Company policy states that no EC2 instance can use the same SSH key and that all connections must be logged in AWS CloudTrail.How can a solutions architect meet these requirements?Read More →

A solutions architect works for a government agency that has strict disaster recovery requirements.All Amazon Elastic Block Store (Amazon EBS) snapshots are required to be saved in at least two additional AWS Regions.The agency also is required to maintain the lowest possible operational overhead.Which solution meets these requirements?Read More →

A company has developed APIs that use Amazon API Gateway with Regional endpoints.The APIs call AWS Lambda functions that use API Gateway authentication mechanisms.After a design review, a solutions architect identifies a set of APIs that do not require public access.The solutions architect must design a solution to make the set of APIs accessible only from a VPC.All APIs need to be called with an authenticated userWhich solution will meet these requirements with the LEAST amount of effort?Read More →