A company uses Amazon API Gateway to manage its REST APIs that third-party service providers access. The company must protect the REST APIs from SQL injection and cross site scripting attacks
What is the MOST operationally efficient solution that meets these requirements?

• A.Set up API Gateway with an Amazon CloudFront distribution Configure AWS WAF in CloudFront.
• B.Set up API Gateway with an Amazon CloudFront distribution Configure AWS Shield in CloudFront
• C.Configure AWS Shield
• D.Configure AWS WAF

Comment: *

Name: *

Email: *

Verification: *

A company is deploying an application that processes streaming data in near-teal time. The company plans to use Amazon EC2 instances for the workload The network architecture must be configurable to provide the lowest possible latency between nodes.
Which networking solution meets these requirements?

• A.Attach an Elastic Fabric Adapter (EFA) to each EC2 instance
• B.Run the EC2 instances m a spread placement group
• C.Use Amazon Elastic Block Store (Amazon EBS) optimized instance types
• D.Place the EC2 instances in multiple VPCs and configure VPC peering

Comment: *

Name: *

Email: *

Verification: *

A company's web application is using multiple Linux Amazon EC2 instances and storing data on Amazon EBS volumes. The company is looking for a solution to increase the resiliency of the application in case of a failure and to provide storage that complies with atomicity, consistency, isolation, and durability (ACID).
What should a solutions architect do to meet these requirements?

• A.Launch the application on EC2 instances in each Availability Zone. Attach EBS volumes to each EC2 instance.
• B.Create an Application Load Balancer with Auto Scaling groups across multiple Availability Zones Mount an instance store on each EC2 instance
• C.Create an Application Load Balancer with Auto Scaling groups across multiple Availability Zones.
  Store data on Amazon EFS and mount a target on each instance.
• D.Create an Application Load Balancer with Auto Scaling groups across multiple Availability Zones Store data using Amazon S3 One Zone-Infrequent Access (S3 One Zone-IA)

Correct Answer: C

Explanation
How Amazon EFS Works with Amazon EC2
The following illustration shows an example VPC accessing an Amazon EFS file system. Here, EC2 instances in the VPC have file systems mounted.
In this illustration, the VPC has three Availability Zones, and each has one mount target created in it. We recommend that you access the file system from a mount target within the same Availability Zone. One of the Availability Zones has two subnets. However, a mount target is created in only one of the subnets.

Benefits of Auto Scaling
Better fault tolerance. Amazon EC2 Auto Scaling can detect when an instance is unhealthy, terminate it, and launch an instance to replace it. You can also configure Amazon EC2 Auto Scaling to use multiple Availability Zones. If one Availability Zone becomes unavailable, Amazon EC2 Auto Scaling can launch instances in another one to compensate.
Better availability. Amazon EC2 Auto Scaling helps ensure that your application always has the right amount of capacity to handle the current traffic demand.
Better cost management. Amazon EC2 Auto Scaling can dynamically increase and decrease capacity as needed. Because you pay for the EC2 instances you use, you save money by launching instances when they are needed and terminating them when they aren't.
https://docs.aws.amazon.com/efs/latest/ug/how-it-works.html#how-it-works-ec2
https://docs.aws.amazon.com/autoscaling/ec2/userguide/auto-scaling-benefits.html

Comment: *

Name: *

Email: *

Verification: *

A group requires permissions to list an Amazon S3 bucket and delete objects from that bucket An administrator has created the following IAK1 policy to provide access to the bucket and applied that policy to the group. The group is not able to delete objects in the bucket. The company follows least-privilege access rules.

Which statement should a solutions architect add to the policy to correct bucket access?
A)

B)

C)

D)

• A.Option C
• B.Option A
• C.Option D
• D.Option B

Comment: *

Name: *

Email: *

Verification: *

A company hosts an application on multiple Amazon EC2 instances.
The application processes messages from an Amazon SQS queue writes to an Amazon RDS table and deletes the message from the queue Occasional duplicate records are found in the RDS table.
The SQS queue does not contain any duplicate messages.
What should a solutions archived do to ensure messages are being processed once only?

• A.Use the AddPermission API call to add appropriate permissions
• B.Use the ReceiveMessage API call to set an appropriate wait time.
• C.Use the CreateQueue API call to create a new queue
• D.Use the ChangeMessageVisibility API call to increase the visibility timeout

Comment: *

Name: *

Email: *

Verification: *