Amazon Web Services braindumps2go saa-c03 Leak Questions by Casey q281 vce pdf

Page: 29 / 81

Exam Name:	AWS Certified Solutions Architect - Associate (SAA-C03)
Exam Code:	SAA-C03 Dumps
Vendor:	Amazon Web Services	Certification:	AWS Certified Associate
Questions:	1093 Q&A's	Shared By:	casey

Question 116

A solutions architect must design a highly available infrastructure for a website. The website is powered by Windows web servers that run on Amazon EC2 instances. The solutions architect mustimplement a solution that can mitigate a large-scale DDoS attack that originates from thousands of IP addresses. Downtime is not acceptable for the website.

Which actions should the solutions architect take to protect the website from such an attack? (Select TWO.)

Options:

Use AWS Shield Advanced to stop the DDoS attack.

Configure Amazon GuardDuty to automatically block the attackers.

Configure the website to use Amazon CloudFront for both static and dynamic content.

Use an AWS Lambda function to automatically add attacker IP addresses to VPC network ACLs.

Use EC2 Spot Instances in an Auto Scaling group with a target tracking scaling policy that is set to 80% CPU utilization

Discussion

Hendrix

Great website with Great Exam Dumps. Just passed my exam today.

Luka Aug 31, 2024

Absolutely. Cramkey Dumps only provides the latest and most updated exam questions and answers.

Honey

I highly recommend it. They made a big difference for me and I'm sure they'll help you too. Just make sure to use them wisely and not solely rely on them. They should be used as a supplement to your regular studies.

Antoni Oct 25, 2024

Good point. Thanks for the advice. I'll definitely keep that in mind.

Wyatt

Passed my exam… Thank you so much for your excellent Exam Dumps.

Arjun Sep 18, 2024

That sounds really useful. I'll definitely check it out.

Aliza

I used these dumps for my recent certification exam and I can say with certainty that they're absolutely valid dumps. The questions were very similar to what came up in the actual exam.

Jakub Sep 22, 2024

That's great to hear. I am going to try them soon.

Question 117

A company is storing sensitive user information in an Amazon S3 bucket The company wants to provide secure access to this bucket from the application tier running on Ama2on EC2 instances inside a VPC.

Which combination of steps should a solutions architect take to accomplish this? (Select TWO.)

Options:

Configure a VPC gateway endpoint for Amazon S3 within the VPC

Create a bucket policy to make the objects to the S3 bucket public

Create a bucket policy that limits access to only the application tier running in the VPC

Create an IAM user with an S3 access policy and copy the IAM credentials to the EC2 instance

Create a NAT instance and have the EC2 instances use the NAT instance to access the S3 bucket

Discussion

Question 118

A company's website uses an Amazon EC2 instance store for its catalog of items. The company wants to make sure that the catalog is highly available and that the catalog is stored in a durable location.

What should a solutions architect do to meet these requirements?

Options:

Move the catalog to Amazon ElastiCache for Redis.

Deploy a larger EC2 instance with a larger instance store.

Move the catalog from the instance store to Amazon S3 Glacier Deep Archive.

Move the catalog to an Amazon Elastic File System (Amazon EFS) file system.

Discussion

Question 119

A company has a production workload that runs on 1,000 Amazon EC2 Linux instances. The workload is powered by third-party software. The company needs to patch the third-party software on all EC2 instances as quickly as possible to remediate a critical security vulnerability.

What should a solutions architect do to meet these requirements?

Options:

Create an AWS Lambda function to apply the patch to all EC2 instances.

Configure AWS Systems Manager Patch Manager to apply the patch to all EC2 instances.

Schedule an AWS Systems Manager maintenance window to apply the patch to all EC2 instances.

Use AWS Systems Manager Run Command to run a custom command that applies the patch to all EC2 instances.