- (Exam Topic 3)
A transaction processing company has weekly scripted batch jobs that run on Amazon EC2 instances. The EC2 instances are in an Auto Scaling group. The number of transactions can vary but the beseline CPU utilization that is noted on each run is at least 60%. The company needs to provision the capacity 30 minutes before the jobs run.
Currently engineering complete this task by manually modifying the Auto Scaling group parameters. The company does not have the resources to analyze the required capacity trends for the Auto Scaling group counts. The company needs an automated way to modify the Auto Scaling group’s capacity.
Which solution will meet these requiements with the LEAST operational overhead?

1. A. Ceate a dynamic scalling policy for the Auto Scaling grou
2. B. Configure the policy to scale based on the CPU utilization metric to 60%.
3. C. Create a scheduled scaling polcy for the Auto Scaling grou
4. D. Set the appropriate desired capacity, minimum capacity, and maximum capacit
5. E. Set the recurrence to weekl
6. F. Set the start time to 30 minute
7. G. Before the batch jobs run.
8. H. Create a predictive scaling policy for the Auto Scaling grou
9. I. Configure the policy to scale based on forecas
10. J. Set the scaling metric to CPU utilizatio
11. K. Set the target value for the metric to 60%. In the Policy, set the instances to pre-launch 30 minutes before the jobs run.
12. L. Create an Amazon EventBridge event to invoke an AWS Lamda function when the CPU utilization metric value for the Auto Scaling group reaches 60%. Configure the Lambda function to increase the Auto Scaling group’s desired capacity and maximum capacity by 20%.

Correct Answer: C

- (Exam Topic 1)
A company's application integrates with multiple software-as-a-service (SaaS) sources for data collection. The company runs Amazon EC2 instances to receive the data and to upload the data to an Amazon S3 bucket for analysis. The same EC2 instance that receives and uploads the data also sends a notification to the user when an upload is complete. The company has noticed slow application performance and wants to improve the performance as much as possible.
Which solution will meet these requirements with the LEAST operational overhead?

1. A. Create an Auto Scaling group so that EC2 instances can scale ou
2. B. Configure an S3 event notification to send events to an Amazon Simple Notification Service (Amazon SNS) topic when the upload to the S3 bucket is complete.
3. C. Create an Amazon AppFlow flow to transfer data between each SaaS source and the S3 bucket.Configure an S3 event notification to send events to an Amazon Simple Notification Service (Amazon SNS) topic when the upload to the S3 bucket is complete.
4. D. Create an Amazon EventBridge (Amazon CloudWatch Events) rule for each SaaS source to send output dat
5. E. Configure the S3 bucket as the rule's targe
6. F. Create a second EventBridge (CloudWatch Events) rule to send events when the upload to the S3 bucket is complet
7. G. Configure an Amazon Simple Notification Service (Amazon SNS) topic as the second rule's target.
8. H. Create a Docker container to use instead of an EC2 instanc
9. I. Host the containerized application on Amazon Elastic Container Service (Amazon ECS). Configure Amazon CloudWatch Container Insights to send events to an Amazon Simple Notification Service (Amazon SNS) topic when the upload to the S3 bucket is complete.

Correct Answer: B
Amazon AppFlow is a fully managed integration service that enables you to securely transfer data between Software-as-a-Service (SaaS) applications like Salesforce, SAP, Zendesk, Slack, and ServiceNow, and AWS services like Amazon S3 and Amazon Redshift, in just a few clicks. https://aws.amazon.com/appflow/

- (Exam Topic 2)
A company has a data ingestion workflow that includes the following components:
• An Amazon Simple Notation Service (Amazon SNS) topic that receives notifications about new data deliveries
• An AWS Lambda function that processes and stores the data
The ingestion workflow occasionally fails because of network connectivity issues. When tenure occurs the corresponding data is not ingested unless the company manually reruns the job. What should a solutions architect do to ensure that all notifications are eventually processed?

1. A. Configure the Lambda function (or deployment across multiple Availability Zones
2. B. Modify me Lambda functions configuration to increase the CPU and memory allocations tor the (unction
3. C. Configure the SNS topic's retry strategy to increase both the number of retries and the wait time between retries
4. D. Configure an Amazon Simple Queue Service (Amazon SQS) queue as the on failure destination Modify the Lambda function to process messages in the queue

Correct Answer: A

- (Exam Topic 2)
A global company is using Amazon API Gateway to design REST APIs for its loyalty club users in the
us-east-1 Region and the ap-southeast-2 Region. A solutions architect must design a solution to protect these API Gateway managed REST APIs across multiple accounts from SQL injection and cross-site scripting attacks.
Which solution will meet these requirements with the LEAST amount of administrative effort?

1. A. Set up AWS WAF in both Region
2. B. Associate Regional web ACLs with an API stage.
3. C. Set up AWS Firewall Manager in both Region
4. D. Centrally configure AWS WAF rules.
5. E. Set up AWS Shield in bath Region
6. F. Associate Regional web ACLs with an API stage.
7. G. Set up AWS Shield in one of the Region
8. H. Associate Regional web ACLs with an API stage.

Correct Answer: A
Using AWS WAF has several benefits. Additional protection against web attacks using criteria that you specify. You can define criteria using characteristics of web requests such as the following: Presence of SQL code that is likely to be malicious (known as SQL injection). Presence of a script that is likely to be malicious (known as cross-site scripting). AWS Firewall Manager simplifies your administration and maintenance tasks across multiple accounts and resources for a variety of protections. https://docs.aws.amazon.com/waf/latest/developerguide/what-is-aws-waf.html

- (Exam Topic 2)
A company runs its two-tier ecommerce website on AWS. The web tier consists of a load balancer that sends traffic to Amazon EC2 instances. The database tier uses an Amazon RDS DB instance. The EC2 instances and the RDS DB instance should not be exposed to the public internet. The EC2 instances require internet access to complete payment processing of orders through a third-party web service. The application must be highly available.
Which combination of configuration options will meet these requirements? (Choose two.)

1. A. Use an Auto Scaling group to launch the EC2 instances in private subnet
2. B. Deploy an RDS Multi-AZ DB instance in private subnets.
3. C. Configure a VPC with two private subnets and two NAT gateways across two Availability Zones.Deploy an Application Load Balancer in the private subnets.
4. D. Use an Auto Scaling group to launch the EC2 instances in public subnets across two Availability Zones.Deploy an RDS Multi-AZ DB instance in private subnets.
5. E. Configure a VPC with one public subnet, one private subnet, and two NAT gateways across two Availability Zone
6. F. Deploy an Application Load Balancer in the public subnet.
7. G. Configure a VPC with two public subnets, two private subnets, and two NAT gateways across two Availability Zone
8. H. Deploy an Application Load Balancer in the public subnets.

Correct Answer: AE
Before you begin: Decide which two Availability Zones you will use for your EC2 instances. Configure your virtual private cloud (VPC) with at least one public subnet in each of these Availability Zones. These public subnets are used to configure the load balancer. You can launch your EC2 instances in other subnets of these Availability Zones instead.