Categories
AWS-SAA

SAA-4

A company has an application that runs on a large general purpose Amazon EC2 instance type that is part of an EC2 Auto Scaling group. The company wants to reduce future costs associated with this application. After the company reviews metrics and logs in Amazon CloudWatch, the company notices that this application runs randomly a couple of times a day to retrieve and manage data. According to CloudWatch, the maximum runtime for each request is 10 minutes, the memory use is 4 GB, and the instances are always in the running state.

Which solution will reduce costs the MOST?

A.Deploy the application on a large burstable EC2 instance

B.Refactor the application code to run as an AWS Lambda function

C.Containerize the application by using Amazon Elastic Kubernets Service (Amazon EKS).Host the container on EC2 instances.

D.Use AWS Instance Scheduler to start and stop the instances based on the runtimes in the logs

A

Incorrect. This solution would keep the EC2 instance in the running state 24 hours a day. This solution would not reduce costs.

For more information about EC2 costs, see Amazon EC2 On-Demand Pricing.

B

Correct. Lambda is a fully managed service that would automatically scale when necessary and would be highly available. A solution that deploys the application as a Lambda function reduces costs the most.

For more information about Lambda, see What Is AWS Lambda?

C

Incorrect. This solution would not reduce costs because this solution would still require EC2 instances to be in the running state beyond the run duration of each request.

For more information about Amazon EKS, see Amazon Elastic Kubernetes Service.

D

Incorrect. This solution would not be appropriate because the request times are unpredictable. This solution would create scenarios where the application would not be available because instance launches are not correctly scheduled. This solution would also incur unnecessary costs because the company would be charged on an hourly basis for the EC2 instances instead of on the basis of exact runtimes.

For more information about AWS Instance Scheduler, see Instance Scheduler on AWS.

 

 

Categories
AWS-SAA

SAA-3

A company is designing a disaster recovery (DR) architecture for an important application on AWS. The company has determined that the RTO is 5 minutes with a minimal instance capacity to support the application in the AWS DR site. The company needs to minimize costs for the DR architecture.

Which DR strategy will meet these requirements?

A.warm standby

B.pilot light

C.multi-site, active-active

D.backup and restore

 

A

Correct. This solution meets the requirement for an RTO of 5 minutes. The instances run at a low capacity and can scale within minutes.

For more information about warm standby, see Plan for Disaster Recovery (DR).

B

Incorrect. This solution would not meet the requirement for an RTO of 5 minutes. The instances are idle and unable to run and scale to full capacity within 5 minutes.

C

Incorrect. Because this is an active-active environment, this solution would address the requirement for an RTO within moments. The services are already running at full capacity within that time. However, this solution costs more than is necessary to meet the company’s requirements.

D

Incorrect. This solution would not achieve the RTO of 5 minutes that the company requires.

Categories
AWS-SAA

SAA-2

A company is investigating services to manage vulnerability scans in Amazon EC2 instances and container images that the company stores in Amazon Elastic Container Registry (Amazon ECR). The service should identify potential software vulnerabilities and categorize the severity of the vulnerabilities.

Which AWS service will meet these requirements?

 

A .Amazon GuardDuty

B.Patch Manager,  a capability of aws Systems Manager

C.Amazon Inspector

D.AWS Config

 

A

Incorrect. Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and anomalous behavior. It does not scan for vulnerabilities.

For more information about threat detection services, see Amazon GuardDuty Features.

B.

Incorrect. You can use Patch Manager to apply patches for operating systems and applications. This does not satisfy the requirement to scan EC2 instances and containers for vulnerabilities.

For more information about automated patch management, see AWS Systems Manager Patch Manager.

C

Correct. Amazon Inspector removes the operational overhead that is necessary to configure a vulnerability management solution. Amazon Inspector works with both EC2 instances and container images in Amazon ECR to identify potential software vulnerabilities and to categorize the severity of the vulnerabilities.

For more information about automated vulnerability management, see Amazon Inspector Features.

D

Incorrect. AWS Config is a service that gives you the ability to assess, audit, and evaluate the configurations of your AWS resources. It does not scan for vulnerabilities or network exposures.

For more information about how to evaluate the configurations of your AWS resources, see AWS Config.

Categories
AWS-SAA

SAA-1

A company is transitioning its Amazon EC2 based MariaDB database to Amazon RDS. The company has already identified a database instance type that will meet the company’s CPU and memory requirements. The database must provide at least 40 GiB of storage capacity and 1,000 IOPS.

Which storage configuration for the Amazon RDS for MariaDB instance is MOST cost-effective?

A

Incorrect. Magnetic storage does not support IOPS as a configurable parameter.

For more information about magnetic storage, see Amazon RDS Storage Types.

B

Incorrect. Baseline I/O performance for General Purpose SSD storage is 3 IOPS for each GiB, with a minimum of 100 IOPS. For 50 GiB of storage, the baseline performance would be 150 IOPS.

C

Correct. Baseline I/O performance for General Purpose SSD storage is 3 IOPS for each GiB. For 334 GiB of storage, the baseline performance would be 1,002 IOPS. Additionally, General Purpose SSD storage is more cost-effective than Provisioned IOPS storage.

For more information about General Purpose SSD storage, see General Purpose SSD Storage.

For more information about Amazon RDS costs, see Amazon RDS for MariaDB Pricing.

D

Incorrect. 50 GiB of Provisioned IOPS storage with 1,000 IOPS would be more expensive than 334 GiB of General Purpose SSD storage.