- (Exam Topic 2)
A large company runs workloads in VPCs that are deployed across hundreds of AWS accounts Each VPC consists of public subnets and private subnets that span across multiple Availability Zones NAT gateways are deployed in the public subnets and allow outbound connectivity to the internet from the private subnets.
A solutions architect is working on a hub-and-spoke design. All private subnets in the spoke VPCs must route traffic to the internet through an egress VPC The solutions architect already has deployed a NAT gateway in an egress VPC in a central AWS account
Which set of additional steps should the solutions architect take to meet these requirements?

1. A. Create peering connections between the egress VPC and the spoke VPCs Configure the required routing to allow access to the internet
2. B. Create a transit gateway and share it with the existing AWS accounts Attach existing VPCs to the transit gateway Configure the required routing to allow access to the internet
3. C. Create a transit gateway in every account Attach the NAT gateway to the transit gateways Configure the required routing to allow access to the internet
4. D. Create an AWS PrivateLink connection between the egress VPC and the spoke VPCs Configure the required routing to allow access to the internet

Correct Answer: B

- (Exam Topic 2)
A company is using an Amazon EMR cluster to run its big data jobs The cluster's jobs are invoked by AWS
Step Functions Express Workflows that consume various Amazon Simple Queue Service (Amazon SQS) queues The workload of this solution is variable and unpredictable Amazon CloudWatch metrics show that the cluster's peak utilization is only 25% at times and that the cluster sits idle the rest of the time
A solutions architect must optimize the costs of the cluster without negatively impacting the time it takes to run the various jobs
What is the MOST cost-effective solution that meets these requirements?

1. A. Modify the EMR cluster by turning on automatic scaling of the core nodes and task nodes with a custom policy that is based on cluster utilization Purchase Reserved Instance capacity to cover the master node.
2. B. Modify the EMR cluster to use an instance fleet of Dedicated On-Demand Instances for the master node and core nodes, and to use Spot Instances for the task node
3. C. Define target capacity for each node type to cover the load.
4. D. Purchase Reserved Instances for the master node and core nodes Terminate all existing task nodes in the EMR cluster
5. E. Modify the EMR cluster to use capacity-optimized Spot Instances and a diversified task flee
6. F. Define target capacity for each node type with a mix of On-Demand Instances and Spot Instances.

Correct Answer: B

- (Exam Topic 2)
A company is hosting a critical application on a single Amazon EC2 instance. The application uses an Amazon ElastiCache for Redis single-node cluster for an in-memory data store. The application uses an Amazon RDS for MariaDB DB instance for a relational database. For the application to function, each piece of the infrastructure must be healthy and must be in an active state.
A solutions architect needs to improve the application's architecture so that the infrastructure can automatically recover from failure with the least possible downtime.
Which combination of steps will meet these requirements? (Select THREE.)

1. A. Use an Elastic Load Balancer to distribute traffic across multiple EC2 instance
2. B. Ensure that the EC2 instances are part of an Auto Scaling group that has a minimum capacity of two instances.
3. C. Use an Elastic Load Balancer to distribute traffic across multiple EC2 instances Ensure that the EC2 instances are configured in unlimited mode.
4. D. Modify the DB instance to create a read replica in the same Availability Zon
5. E. Promote the read replica to be the primary DB instance in failure scenarios.
6. F. Modify the DB instance to create a Multi-AZ deployment that extends across two Availability Zones.
7. G. Create a replication group for the ElastiCache for Redis cluste
8. H. Configure the cluster to use an Auto Scaling group that has a minimum capacity of two instances.
9. I. Create a replication group for the ElastiCache for Redis cluste
10. J. Enable Multi-AZ on the cluster.

Correct Answer: CDE

- (Exam Topic 2)
A company is planning to migrate its on-premises data analysis application to AWS. The application is hosted across a fleet of servers and requires consistent system time.
The company has established an AWS Direct Connect connection from its on-premises data center to AWS. The company has a high-precision stratum-0 atomic dock network appliance that acts as an NTP source for all on-premises servers.
After the migration to AWS is complete, the clock on all Amazon EC2 instances that host the application must be synchronized with the on-premises atomic clock network appliance.
Which solution will meet these requirements with the LEAST administrative overhead?

1. A. Configure a DHCP options set with the on-premises NTP server address Assign the options set to the VP
2. B. Ensure that NTP traffic is allowed between AWS and the on-premises networks.
3. C. Create a custom AMI to use the Amazon Time Sync Service at 169.254.169.123 Use this AMI for the application Use AWS Config to audit the NTP configuration.
4. D. Deploy a third-party time server from the AWS Marketplac
5. E. Configure the time server to synchronize with the on-premises atomic clock network applianc
6. F. Ensure that NTP traffic is allowed inbound in the network ACLs for the VPC that contains the third-party server.
7. G. Create an IPsec VPN tunnel from the on-premises atomic clock network appliance to the VPC to encrypt the traffic over the Direct Connect connectio
8. H. Configure the VPC route tables to direct NTP traffic over the tunnel.

Correct Answer: B

- (Exam Topic 1)
A solutions architect is designing an application to accept timesheet entries from employees on their mobile devices. Timesheets will be submitted weekly, with most of the submissions occurring on Friday. The data must be stored in a format that allows payroll administrators to run monthly reports. The infrastructure must be highly available and scale to match the rate of incoming data and reporting requests.
Which combination of steps meets these requirements while minimizing operational overhead? (Select TWO.)

1. A. Deploy the application to Amazon EC2 On-Demand Instances With load balancing across multiple Availability Zone
2. B. Use scheduled Amazon EC2 Auto Scaling to add capacity before the high volume of submissions on Fridays.
3. C. Deploy the application in a container using Amazon Elastic Container Service (Amazon ECS) with load balancing across multiple Availability Zone
4. D. Use scheduled Service Auto Scaling to add capacity before the high volume of submissions on Fridays.
5. E. Deploy the application front end to an Amazon S3 bucket served by Amazon CloudFron
6. F. Deploy the application backend using Amazon API Gateway with an AWS Lambda proxy integration.
7. G. Store the timesheet submission data in Amazon Redshif
8. H. Use Amazon OuickSight to generate the reports using Amazon Redshift as the data source.
9. I. Store the timesheet submission data in Amazon S3. Use Amazon Athena and Amazon OuickSight to generate the reports using Amazon S3 as the data source.

Correct Answer: AE