Amazon Web Services braindumps aws Certified Associate Saa-c03 Exam Dumps by Mitchell q201 vce pdf

Page: 35 / 87

Exam Name:	AWS Certified Solutions Architect - Associate (SAA-C03)
Exam Code:	SAA-C03 Dumps
Vendor:	Amazon Web Services	Certification:	AWS Certified Associate
Questions:	1168 Q&A's	Shared By:	mitchell

Question 140

A company has an ordering application that stores customer information in Amazon RDS for MySQL. During regular business hours, employees run one-time queries for reporting purposes. Timeouts are occurring during order processing because the reporting queries are taking a long time to run. The company needs to eliminate the timeouts without preventing employees from performing queries.

Options:

Create a read replica. Move reporting queries to the read replica.

Create a read replica. Distribute the ordering application to the primary DB instance and the read replica.

Migrate the ordering application to Amazon DynamoDB with on-demand capacity.

Schedule the reporting queries for non-peak hours.

Discussion

Question 141

A company wants to provide a third-party system that runs in a private data center with access to its AWS account. The company wants to call AWS APIs directly from the third-party system. The company has an existing process for managing digital certificates. The company does not want to use SAML or OpenID Connect (OIDC) capabilities and does not want to store long-term AWS credentials.

Which solution will meet these requirements?

Options:

Configure mutual TLS to allow authentication of the client and server sides of the communication channel.

Configure AWS Signature Version 4 to authenticate incoming HTTPS requests to AWS APIs.

Configure Kerberos to exchange tickets for assertions that can be validated by AWS APIs.

Configure AWS Identity and Access Management (IAM) Roles Anywhere to exchange X.509 certificates for AWS credentials to interact with AWS APIs.

Discussion

Question 142

A company wants to migrate its on-premises Oracle database to Amazon Aurora. The company wants to use a secure and encrypted network to transfer the data. Which combination of steps will meet these requirements? (Select TWO.)

Options:

Use AWS Application Migration Service to migrate the data.

Use AWS Schema Conversion Tool (AWS SCT) and AWS Database Migration Service (AWS DMS) to migrate the data.

Use AWS Direct Connect SiteLink to transfer data from the on-premises environment to AWS.

Use AWS Site-to-Site VPN to establish a connection to transfer the data from the on-premises environment to AWS.

Use AWS App2Container to migrate the data.

Discussion

Question 143

A company is developing a new application that will run on Amazon EC2 instances. The application needs to access multiple AWS services.

The company needs to ensure that the application will not use long-term access keys to access AWS services.

Options:

Create an IAM user. Assign the IAM user to the application. Create programmatic access keys for the IAM user. Embed the access keys in the application code.

Create an IAM user that has programmatic access keys. Store the access keys in AWS Secrets Manager. Configure the application to retrieve the keys from Secrets Manager when the application runs.

Create an IAM role that can access AWS Systems Manager Parameter Store. Associate the role with each EC2 instance profile. Create IAM access keys for the AWS services, and store the keys in Parameter Store. Configure the application to retrieve the keys from Parameter Store when the application runs.

Create an IAM role that has permissions to access the required AWS services. Associate the IAM role with each EC2 instance profile.