Exam AWS Certified Solutions Architect - Professional topic 1 question 559 discussion

A? Grant QA users access to Manager Role is a blatant violation of Security. B makes more sense to me as it restricts users to create services through the catalog.

A? Grant QA users access to Manager Role is a blatant violation of Security. B makes more sense to me as it restricts users to create services through the catalog.

At first I chose C. I guess C is wrong because tester can still modify CloudFormation template to access more resources. So B is right.

I'll go with B!!

Service Catalog is right option. B for sure right answer.

It's B, not sure what other discussion is going on below.

I'll go with B

needs to improve the scalable performance and availability of the database. Which solution meets these requirements? A. Create an Amazon CloudWatch alarm action that triggers a Lambda function to add an Amazon RDS for MySQL read replica when resource utilization hits a threshold B. Migrate the database to Amazon Aurora, and add a read replica Add a database connection pool outside of the Lambda handler function C. Migrate the database to Amazon Aurora, and add a read replica Use Amazon Route 53 weighted records D. Migrate the database to Amazon Aurora, and add an Aurora Replica Configure Amazon RDS Proxy to manage database connection pools

A company runs a software-as-a-service (SaaS) application on AWS. The application consists of AWS Lambda functions and an Amazon RDS for MySQL Multi-AZ database. During market events the application has a much higher workload than normal Users notice slow response times during the peak periods because of many database connections. The company needs

Answer is B.

Correct is B. Service Catalog product

I'll go with B

B makes sense as AWS Service Catalog is created for a use-case like this.

B, using service catalog to show what are the allowed services will be the easiest way to approach the restrictions.

A. Verify the AWS IoT Device Shadow service is subscribed to the appropriate topic and is executing the AWS Lambda function. B. Verify that AWS IoT monitoring shows that the appropriate AWS IoT rules are being executed, and that the AWS IoT rules are enabled with the correct rule actions. C. Check the AWS IoT Fleet indexing service and verify that the thing group has the appropriate IAM role to update DynamoDB. D. Verify that AWS IoT things are using MQTT instead of MQTT over WebScocket, then check that the provisioning has the appropriate policy attached.

NO.80 An IoT company has rolled out a fleet of sensors for monitoring temperatures in remote locations. Each device connect to AWS IoT Core and sends a message 30 seconds, updating an Amazon DynamoDB table. A System Administrator users AWS IoT to verify the devices are still sending messages to AWS IoT Core: the database is not updating. What should a Solution Architect check to determine why the database is not being updated?

A. Store the data in Amazon DocumentDB Create a single global Amazon CloudFront distribution with a custom origin built on edge-optimized Amazon API Gateway and AWS Lambda Assign the company's domain as an alternate domain for the distribution. and configure Amazon Route 53 with an alias to the CloudFront distribution B. Store the data in replicated Amazon S3 buckets in two Regions Create an Amazon CloudFront distribution in each Region, with custom origins built on Amazon API Gateway and AWS Lambda launched in each Region Assign the company's domain as an alternate domain for both distributions and configure Amazon Route 53 with a failover routing policy between them C. Store the data in an Amazon DynamoDB global table in two Regions using on-demand capacity mode In both Regions, run the web service as Amazon ECS Fargate tasks in an Auto Scaling ECS service behind an Application Load Balancer (ALB) In Amazon Route 53, configure an alias record in the company's domain and a Route 53 latency-based routing policy with health checks to distribute traffic between the two ALBs