ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Database - Specialty All Questions

View all questions & answers for the AWS Certified Database - Specialty exam
Go to Exam

Exam AWS Certified Database - Specialty topic 1 question 317 discussion

Exam question from Amazon's AWS Certified Database - Specialty
Question #: 317
Topic #: 1
[All AWS Certified Database - Specialty Questions]

A company uses multiple AWS accounts in AWS Organizations to separate development teams that work on different applications. Each AWS account contains multiple applications that run in the default VPC with interface endpoints. The applications need access to the same underlying data in an Amazon Aurora PostgreSQL DB cluster in one of the AWS accounts.

Which solution will meet these requirements in the MOST operationally efficient way?

  • A. Use AWS Resource Access Manager (AWS RAM) to share the subnet that contains the database. Create an Amazon RDS Proxy endpoint for the other applications to access.
  • B. Use VPC peering to connect the VPCs of the other AWS accounts to the subnet that contains the database.
  • C. Create an Amazon S3 bucket that stores database backups. Configure replication to S3 buckets in the other accounts. Restore the backups in the other AWS accounts.
  • D. Create an interface VPC endpoint for the Amazon RDS API. Attach an endpoint policy that grants the other AWS accounts access to the database.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by TQM__9MD at July 14, 2023, 1:08 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Pranava_GCP
1 year, 11 months ago
Selected Answer: A
A. Use AWS Resource Access Manager (AWS RAM) and RDS Proxy endpoint https://aws.amazon.com/blogs/database/use-amazon-rds-proxy-to-provide-access-to-rds-databases-across-aws-accounts/
upvoted 1 times
...
kerl
1 year, 11 months ago
Answer A: Using RAM u do not need to expose all your resources and below blogs explained in details using RAM to achieve Operation Excellence https://aws.amazon.com/blogs/database/use-amazon-rds-proxy-to-provide-access-to-rds-databases-across-aws-accounts/
upvoted 4 times
Germaneli
1 year, 10 months ago
Exactly - A: "For example, your organization might have multiple applications that access the same database resources and each application might be in its own VPC. RDS Proxy makes it easy to address this pattern by sharing the VPC subnet as a resource using AWS Resource Access Manager (RAM)."
upvoted 1 times
...
...
zanhsieh
2 years ago
Selected Answer: A
A. B: No, VPC peering is for 1-to-1 hub-and-spoke topology. In other words, 2x (n-1) times operations (one side requested and another side accepted) are needed for n teams. Opt A only needs n-1 times.
upvoted 3 times
...
TQM__9MD
2 years, 1 month ago
Selected Answer: B
By using VPC peering, you can establish private network communication between VPCs in different AWS accounts. You can add the subnet containing the database to the peering connection and peer it with the VPCs of the other AWS accounts. This solution allows for secure network connectivity for the applications to access the same underlying data. Each application in the respective AWS accounts can utilize the database through the peering connection. Therefore, the most operationally efficient solution to meet these requirements is option B.
upvoted 1 times
Germaneli
1 year, 10 months ago
B is possible, but not the most operationally efficient option. "You can use VPC peering, AWS Transit Gateway, or an AWS PrivateLink custom solution. Each of these options has potential drawbacks." https://aws.amazon.com/blogs/database/use-amazon-rds-proxy-to-provide-access-to-rds-databases-across-aws-accounts/
upvoted 1 times
Ram_xyz
1 year, 8 months ago
All uses default VPC so Overlapping IP addresses wouldn't allow peering
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel