A company is running a multi-tier web application on premises. The web application is containerized and runs on a number of Linux hosts connected to a PostgreSQL database that contains user records. The operational overhead of maintaining the infrastructure and capacity planning is limiting the company's growth. A solutions architect must improve the application's infrastructure.Which combination of actions should the solutions architect take to accomplish this? (Choose two.)
Answer(s): A,E
The correct combination A and E modernizes storage and compute with managed services, reducing operational overhead. A) Migrating PostgreSQL to Amazon Aurora provides a fully managed, scalable relational database with automated backups, patching, and replication, lowering maintenance. E) Hosting the containerized web app on AWS Fargate with ECS eliminates server provisioning and cluster management, scaling transparently, and fits containerized workloads. B is incorrect because EC2 hosting increases operational burden. C is not essential to reduce ops and doesn’t address DB or containerization. D is unnecessary unless caching is required for latency, and Aurora already handles most OLTP workloads efficiently.
An application runs on Amazon EC2 instances across multiple Availability Zonas. The instances run in an Amazon EC2 Auto Scaling group behind an Application Load Balancer. The application performs best when the CPU utilization of the EC2 instances is at or near 40%.What should a solutions architect do to maintain the desired performance across all instances in the group?
Answer(s): B
A target tracking policy to dynamically scale the Auto Scaling group.A) Uses simple scaling, which reacts to individual thresholds and can lead to oscillation and non-optimal target utilization.B) Correct: target tracking maintains a specified metric at a target value (e.g., 40% CPU), automatically adjusting capacity to keep instances near the desired utilization.C) Lambda is unnecessary for capacity management and introduces latency and complexity.D) Scheduled scaling ignores real-time workload and can’t maintain a fixed target utilization across variable traffic.
A company is developing a file-sharing application that will use an Amazon S3 bucket for storage. The company wants to serve all the files through an Amazon CloudFront distribution. The company does not want the files to be accessible through direct navigation to the S3 URL.What should a solutions architect do to meet these requirements?
Answer(s): D
A concise explanation: D is correct because using an Origin Access Identity (OAI) for CloudFront ensures the S3 bucket is not publicly accessible, and only CloudFront with the OAI can read the objects, satisfying “no direct S3 URL access.” It keeps S3 private while serving via CloudFront.A) Incorrect: per-object policies granting CloudFront access are not a standard controlled method; they risk misconfiguration and expose direct access if not carefully scoped.B) Incorrect: IAM users are not used to restrict S3 access via CloudFront; CloudFront does not authenticate via IAM users to S3.C) Incorrect: Bucket policies with CloudFront distribution ID as Principal are not valid; OAIs are the supported pattern for restricted access.
A company’s website provides users with downloadable historical performance reports. The website needs a solution that will scale to meet the company’s website demands globally. The solution should be cost-effective, limit the provisioning of infrastructure resources, and provide the fastest possible response time.Which combination should a solutions architect recommend to meet these requirements?
Answer(s): A
CloudFront with S3 (A) provides globally scalable, cost-effective delivery of static content (reports), with edge caching reducing latency and no server provisioning. S3 stores reports durably and cost-efficiently, while CloudFront speeds access worldwide and scales automatically.B is incorrect because Lambda and DynamoDB introduce compute and database services, but delivering downloadable files at scale with low latency globally is better served by S3+CloudFront; this option adds unnecessary complexity for simple static content delivery.C is incorrect because EC2 Auto Scaling with ALB involves provisioning and managing compute resources, failing the criteria of limiting provisioning and fastest response for static downloads.D is incorrect since internal Route 53 and internal ALBs target private resources, not globally scalable public delivery of downloadable reports.
A company runs an Oracle database on premises. As part of the company’s migration to AWS, the company wants to upgrade the database to the most recent available version. The company also wants to set up disaster recovery (DR) for the database. The company needs to minimize the operational overhead for normal operations and DR setup. The company also needs to maintain access to the database's underlying operating system.Which solution will meet these requirements?
Answer(s): C
Rationale: RDS Custom for Oracle provides managed DB provisioning with access to the underlying OS for maintenance or admin tasks, while handling database patching/upgrades and DR options with minimized operational overhead. A read replica in another region (option C) achieves DR with controlled lag and regional failover if needed, aligning with DR requirements and OS access.A) EC2 with replication requires full self-management including OS and DR failover; higher operational overhead. B) RDS for Oracle automates backups but does not provide OS access; cross-region backups don’t provide OS-level control. D) Standby in another AZ does not provide cross-region DR and still limits OS access.
A company wants to move its application to a serverless solution. The serverless solution needs to analyze existing and new data by using SL. The company stores the data in an Amazon S3 bucket. The data requires encryption and must be replicated to a different AWS Region.Which solution will meet these requirements with the LEAST operational overhead?
S) Correct: CC) Loading into existing S3 bucket, enable CRR with SSE-S3, and use Athena for serverless analytics over S3 data. This minimizes operations by using a single data store (S3), no ETL or management of compute engines, serverless analytics, and region replication.A) Uses SSE-KMS (multiregion keys) adds key management overhead and potential cross-region latency; Athena is fine, but requiring KMS multi-Region keys is unnecessary for least overhead.B) Recommends RDS, a managed database with stateful compute, increasing operational overhead and not serverless analytics.D) Uses RDS instead of serverless analytics; SSE-S3 with RDS adds unnecessary database management.
A company runs workloads on AWS. The company needs to connect to a service from an external provider. The service is hosted in the provider's VPC. According to the company’s security team, the connectivity must be private and must be restricted to the target service. The connection must be initiated only from the company’s VPC.Which solution will mast these requirements?
PrivateLink with a VPC endpoint ensures the connection is private, restricted to the target service, and originates from the company’s VPC, satisfying the security team’s requirements. D uses a VPC endpoint (PrivateLink) hosted by the provider for the specific service, keeping traffic within the AWS network and preventing exposure to the public internet.A is incorrect because VPC peering allows routing to entire VPCs and does not limit access to a single service; Plus, it does not inherently use PrivateLink.B is incorrect because PrivateLink is for a VPC endpoint; a provider-facing gateway alone does not restrict to the target service.C is incorrect because NAT gateway exposes outbound internet access and does not create a private connection to a specific service.
A company is migrating its on-premises PostgreSQL database to Amazon Aurora PostgreSQL. The on-premises database must remain online and accessible during the migration. The Aurora database must remain synchronized with the on-premises database.Which combination of actions must a solutions architect take to meet these requirements? (Choose two.)
Answer(s): A,C
AWS DMS with ongoing replication provides continuous data replication while the source remains online, keeping Aurora PostgreSQL synchronized with the on-premises PostgreSQL during migration. A) Ongoing replication task ensures ongoing data capture and apply to target. C) AWS DMS replication server orchestrates the continuous replication between on-premises and Aurora.B) Backups alone do not keep the target synchronized in real time. D) SCT is for heterogeneous/schema conversions and is not required for ongoing synchronization during migration. E) EventBridge/CloudWatch Events are for monitoring/eventing, not for maintaining data synchronization.
Share your comments for Amazon SAA-C02 exam with other users:
hello are these questions valid for ms-102
some questions are wrongly answered but its good nonetheless
how to get system serial number using intune
is it really helpful to pass the exam
#229 in incorrect - all the customers require an annual review
kindy upload
fantastic assessment on psm 1
56 question correct answer a,b
thank you for providing the q bank
true quesstions
i can´t believe ms asks things like this, seems to be only marketing material.
hi, could you please add the last update of ns0-527
question #3 refers to vnet4 and vnet5. however, there is no vnet5 listed in the case study (testlet 2).
sometimes it may be good some times it may be
qs 4 answer seems wrong- please check
very detailed explanation !
the interactive nature of the test engine application makes the preparation process less boring.
very useful.
complete question dump should be made available for practice.
i just passed my first exam. i got 2 exam dumps as part of the 50% sale. my second exam is under work. once i write that exam i report my result. but so far i am confident.
nice create dewey stefen
i just wrote this exam and it is still valid. the questions are exactly the same but there are about 4 or 5 questions that are answered incorrectly. so watch out for those. best of luck with your exam.
passed my exam today. this is a good start to 2023.
great sharing
very helpful
thanks.. very helpful
i registered for 1z0-1047-23 but dumps qre available for 1z0-1047-22. help me with this...
please upload oracle 1z0-1110-22 exam pdf
becoming interesting on the logical part of the cdbs and pdbs
some of the answers are incorrect, i would be wary of using this until an admin goes back and reviews all the answers
question # 267: federated operating model is also correct.
its helpful alot.
the questiosn from this braindumps are same as in the real exam. my passing mark was 84%.