DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

Prepare for SAP-C02 Exams Questions & Study Materials, AWS Certified Solutions Architect - Professional | SPOTO

Elevate your preparation for the AWS Certified Solutions Architect - Professional (SAP-C02) exam with SPOTO's comprehensive study materials. Designed for individuals in solutions architect roles, this certification validates advanced technical skills in designing optimized AWS solutions aligned with the AWS Well-Architected Framework. Access a wealth of resources including exam questions and answers, practice tests, exam dumps, and sample questions to enhance your exam readiness. SPOTO offers free quizzes, exam materials, and exam answers to supplement your exam practice and preparation. Utilize SPOTO's exam simulator to experience a real exam environment with online exam questions and mock exams. Prepare confidently and effectively with SPOTO's curated study materials for the SAP-C02 exam.

Take other online exams

Question #1
149. A company wants to launch an online shopping website in multiple countries and must ensure that customers are protected against potential “man-in-the-middle” attacks. Which architecture will provide the MOST secure site access?
A. Use Amazon Route 53 for domain registration and DNS services
B. Register 2048-bit encryption keys from a third-party certificate service
C. Use Route 53 for domain registration
D. Use Route 53 for domain registration, and host the company DNS root servers on Amazon EC2 instances running Bind
View answer
Correct Answer: B

View The Updated SAP-C02 Exam Questions

SPOTO Provides 100% Real SAP-C02 Exam Questions for You to Pass Your SAP-C02 Exam!

Question #2
A solutions architect needs to advise a company on how to migrate its on-premises data processing application to the AWS Cloud. Currently, users upload input files through a web portal. The web server then stores the uploaded files on NAS and messages the processing server over a message queue. Each media file can take up to 1 hour to process. The company has determined that the number of media files awaiting processing is significantly higher during business hours, with the number of files rapidly declinin
A. Create a queue using Amazon SQS
B. Create a queue using Amazon MO
View answer
Correct Answer: D
Question #3
A company is running a two-tier web-based application in an on-premises data center. The application layer consists of a single server running a stateful application. The application connects to a PostgreSQL database running on a separate server. The application’s user base is expected to grow significantly, so the company is migrating the application and database to AWS. The solution will use Amazon Aurora PostgreSQL, Amazon EC2 Auto Scaling, and Elastic Load Balancing. Which solution will provide a consis
A. Enable Aurora Auto Scaling for Aurora Replicas
B. Enable Aurora Auto Scaling for Aurora writers
View answer
Correct Answer: C
Question #4
148. A retail company is running an application that stores invoice files in Amazon S3 bucket and metadata about the files in an Amazon. The S3 bucket and DynamoDB table are in us-east-1. The company wants to protect itself from data corruption and loss of connectivity to either Region. Which option meets these requirements?
A. Create a DynamoDB global table to replicate data between us-east-1 and eu-west-1
B. Create an AWS Lambda function triggered by Amazon CloudWatch Events to make regular backups of the DynamoDB table
C. Create a DynamoDB global table to replicate data between us-east-1 and eu-west-1
D. Create a DynamoDB global table to replicate data between us-east-1 and eu-west-1
View answer
Correct Answer: C
Question #5
A financial company needs to create a separate AWS account for a new digital wallet application. The company uses AWS Organizations to manage its accounts. A solutions architect uses the 1AM user Supportl from the management account to create a new member account with finance1@example.com as the email address. What should the solutions architect do to create IAM users in the new member account? The best solution is to turn on the Concurrency Scaling feature for the Amazon Redshift cluster. This feature allo
A. ign in to the AWS Management Console with AWS account root user credentials by using the 64-character password from the initial AWS Organizations email senttofinance1@example
B. rom the management account, switch roles to assume the OrganizationAccountAccessRole role with the account ID of the new member account
C. o to the AWS Management Console sign-in page
D. o to the AWS Management Console sign-in page
View answer
Correct Answer: D
Question #6
A company is storing data in several Amazon DynamoDB tables. A solutions architect must use a serverless architecture to make the data accessible publicly through a simple API over HTTPS. The solution must scale automatically in response to demand. Which solutions meet these requirements? (Choose two.) A. Create an Amazon API Gateway REST API. Configure this API with direct integrations to DynamoDB by using API Gateway’s AWS integration type.
B. Create an Amazon API Gateway HTTP API
E. Create a Network Load Balancer
View answer
Correct Answer: CD
Question #7
A retail company is operating its ecommerce application on AWS. The application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The company uses an Amazon RDS DB instance as the database backend. Amazon CloudFront is configured with one origin that points to the ALB. Static content is cached. Amazon Route 53 is used to host all public zones. After an update of the application, the ALB occasionally returns a 502 status code (Bad Gateway) error. The root cause is malformed HTTP headers
A. Create an Amazon S3 bucket
B. Create an Amazon CloudWatch alarm to invoke an AWS Lambda function if the ALB health check response Target
E. Add a custom error response by configuring a CloudFront custom error page
View answer
Correct Answer: AE
Question #8
A company wants to migrate its corporate data center from on premises to the AWS Cloud. The data center includes physical servers and VMs that use VMware and Hyper-V. An administrator needs to select the correct services to collect data (or the initial migration discovery process. The data format should be supported by AWS Migration Hub. The company also needs the ability to generate reports from the data. Which solution meets these requirements?
A. Use the AWS Agentless Discovery Connector for data collection on physical servers and all VMs
B. Use the AWS Application Discovery Service agent for data collection on physical servers and all VMs
View answer
Correct Answer: C
Question #9
A company has built a high performance computing (HPC) cluster in AWS for a tightly coupled workload that generates a large number of shared files stored in Amazon EFS. The cluster was performing well when the number of Amazon EC2 instances in the cluster was 100. However, when the company increased the cluster size to 1.000 EC2 instances, overall performance was well below expectations.Which collection of design choices should a solutions architect make to achieve the maximum performance from the HPC clust
A. Ensure the HPC cluster is launched within a single Availability Zone
B. Launch the EC2 instances and attach elastic network interfaces in multiples of four
C. Select EC2 instance types with an Elastic Fabric Adapter (EFA) enabled
D. Ensure the cluster is launched across multiple Availability Zones
E. Replace Amazon EFS with multiple Amazon EBS volumes in a RAID array
F. Replace Amazon EFS with Amazon FSx for Lustre
View answer
Correct Answer: ACF
Question #10
A company has an application that sells tickets online and experiences bursts of demand every 7 days. The application has a stateless presentation layer running on Amazon EC2. an Oracle database to store unstructured data catalog information, and a backend API layer. The front-end layer uses an Elastic Load Balancer to distribute the load across nine On-Demand Instances over three Availability Zones (AZs). The Oracle database is running on a single EC2 instance. The company is experiencing performance issu
A. Create an Auto Scaling group for the front end with a combination of On-Demand and Spot Instances to reduce costs
B. Create an Auto Scaling group for the front end with a combination of On-Demand and Spot Instances to reduce costs
View answer
Correct Answer: C
Question #11
A company's AWS architecture currently uses access keys and secret access keys stored on each instance to access AWS services. Database credentials are hard-coded on each instance. SSH keys for command-tine remote access are stored in a secured Amazon S3 bucket. The company has asked its solutions architect to improve the security posture of the architecture without adding operational complexity. Which combination of steps should the solutions architect take to accomplish this? (Select THREE.)
A. Use Amazon EC2 instance profiles with an IAM role
B. Use AWS Secrets Manager to store access keys and secret access keys
E. Use AWS KMS to store database credentials
F. Use AWS Systems Manager Session Manager tor remote access
View answer
Correct Answer: ACF
Question #12
A large company with hundreds of AWS accounts has a newly established centralized internal process for purchasing new or modifying existing Reserved Instances. This process requires all business units that want to purchase or modify Reserved Instances to submit requests to a dedicated team for procurement or execution. Previously, business units would directly purchase or modify Reserved Instances in their own respective AWS accounts autonomously. Which combination of steps should be taken to proactively en
A. Ensure all AWS accounts are part of an AWS Organizations structure operating in all features mode
B. Use AWS Contig lo report on the attachment of an IAM policy that denies access to the ec2:PurchaseReservedlnstancesOffering and ec2:ModifyReservedlnstances actions
E. Ensure that all AWS accounts are part of an AWS Organizations structure operating in consolidated billing features mode
View answer
Correct Answer: AD
Question #13
A company is running a containerized application in the AWS Cloud. The application is running by using Amazon Elastic Container Service (Amazon ECS) on a set of Amazon EC2 instances. The EC2 instances run in an Auto Scaling group.The company uses Amazon Elastic Container Registry (Amazon ECR) to store its container images. When a new image version is uploaded, the new image version receives a unique tag.The company needs a solution that inspects new image versions for common vulnerabilities and exposures. T
A. Configure scan on push on the repository
B. Configure scan on push on the repository
C. Schedule an AWS Lambda function to start a manual image scan every hour
D. Configure periodic image scan on the repository
View answer
Correct Answer: C
Question #14
A financial services company logs personally identifiable information 10 its application logs stored in Amazon S3. Due to regulatory compliance requirements, the log files must be encrypted at rest. The security team has mandated that the company's on-premises hardware security modules (HSMs) be used to generate the CMK material. Which steps should the solutions architect take to meet these requirements?
A. Create an AWS CloudHSM cluster
B. Provision an AWS Direct Connect connection, ensuring there is no overlap of the RFC 1918 address space between on-premises hardware and the VPCs
View answer
Correct Answer: C
Question #15
A company wants to migrate its workloads from on premises to AWS. The workloads run on Linux and Windows. The company has a large on-premises infrastructure that consists of physical machines and VMs that host numerous applications.The company must capture details about the system configuration, system performance, running processes, and network connections of its on-premises workloads. The company also must divide the on-premises applications into groups for AWS migrations. The company needs recommendation
A. Assess the existing applications by installing AWS Application Discovery Agent on the physical machines and VMs
B. Assess the existing applications by installing AWS Systems Manager Agent on the physical machines and VMs
C. Group servers into applications for migration by using AWS Systems Manager Application Manager
D. Group servers into applications for migration by using AWS Migration Hub
E. Generate recommended instance types and associated costs by using AWS Migration Hub
F. Import data about server sizes into AWS Trusted Advisor
View answer
Correct Answer: BDE
Question #16
A company is providing weather data over a REST-based API to several customers. The API is hosted by Amazon API Gateway and is integrated with different AWS Lambda functions for each API operation. The company uses Amazon Route 53 for DNS and has created a resource record of weather.example.com. The company stores data for the API in Amazon DynamoDB tables. The company needs a solution that will give the API the ability to fail over to a different AWS Region. Which solution will meet these requirements?
A. Deploy a new set of Lambda functions in a new Region
B. Deploy a new API Gateway API and Lambda functions in another Region
View answer
Correct Answer: C
Question #17
A company wants to retire its Oracle Solaris NFS storage arrays. The company requires rapid data migration over its internet network connection to a combination of destinations for Amazon S3. Amazon Elastic File System (Amazon EFS), and Amazon FSx lor Windows File Server. The company also requires a full initial copy, as well as incremental transfers of changes until the retirement of the storage arrays. All data must be encrypted and checked for integrity. What should a solutions architect recommend to mee
A. Configure CloudEndure
B. Configure AWS DataSync
View answer
Correct Answer: B

View The Updated AWS Exam Questions

SPOTO Provides 100% Real AWS Exam Questions for You to Pass Your AWS Exam!

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number: