ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 399 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional SAP-C02
Question #: 399
Topic #: 1
[All AWS Certified Solutions Architect - Professional SAP-C02 Questions]

A company wants to migrate its website from an on-premises data center onto AWS. At the same time, it wants to migrate the website to a containerized microservice-based architecture to improve the availability and cost efficiency. The company’s security policy states that privileges and network permissions must be configured according to best practice, using least privilege.

A solutions architect must create a containerized architecture that meets the security requirements and has deployed the application to an Amazon ECS cluster.

What steps are required after the deployment to meet the requirements? (Choose two.)

  • A. Create tasks using the bridge network mode.
  • B. Create tasks using the awsvpc network mode.
  • C. Apply security groups to Amazon EC2 instances, and use IAM roles for EC2 instances to access other resources.
  • D. Apply security groups to the tasks, and pass IAM credentials into the container at launch time to access other resources.
  • E. Apply security groups to the tasks, and use IAM roles for tasks to access other resources.
Show Suggested Answer Hide Answer
Suggested Answer: BE 🗳️
by cypkir at Nov. 22, 2023, 8:18 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
SIJUTHOMASP
6 months ago
Selected Answer: BE
Apply security groups to tasks is right with IAM role. Option D says IAM identity which is working. So, BE.
upvoted 1 times
...
ahmadraufsyahputra
9 months, 1 week ago
BE , you can apply security group to the task using vpcmode, because in vpcmode the task will use ENI within the VPC and the ENI can use security groups
upvoted 4 times
...
VerRi
9 months, 1 week ago
Selected Answer: BE
BE for sure
upvoted 1 times
...
career360guru
11 months, 3 weeks ago
Selected Answer: BE
Option B and E
upvoted 1 times
...
GabrielDeBiasi
1 year, 1 month ago
Selected Answer: BE
BE, easy
upvoted 2 times
...
Jonalb
1 year, 1 month ago
Selected Answer: BE
B. Crie tarefas usando o modo de rede awsvpc. E. Aplique grupos de segurança às tarefas e use funções do IAM para tarefas para acessar outros recursos.
upvoted 2 times
...
Jonalb
1 year, 1 month ago
B. Crie tarefas usando o modo de rede awsvpc. E. Aplique grupos de segurança às tarefas e use funções do IAM para tarefas para acessar outros recursos.
upvoted 2 times
...
thala
1 year, 1 month ago
Selected Answer: BE
https://www.examtopics.com/discussions/amazon/view/5362-exam-aws-certified-solutions-architect-professional-topic-1/
upvoted 2 times
...
devalenzuela86
1 year, 1 month ago
Selected Answer: BE
BE for sure
upvoted 1 times
...
cypkir
1 year, 1 month ago
Selected Answer: BE
Answer: B E
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel