ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 187 discussion

Exam question from Amazon's ANS-C00
Question #: 187
Topic #: 1
[All ANS-C00 Questions]

Your company has decided to use AWS WorkSpaces for its hosted desktop solution. Your company has an existing AD of about 57,000 users, and you want to minimize authentication traffic from AWS to your datacenter. Your company has a lot of personnel changes, and it is crucial that these changes are reflected reliably.
What two steps should you take? (Choose two.)

  • A. Deploy Hosted AD in AWS.
  • B. Deploy an AD Connector in AWS.
  • C. Create a DX connection between the datacenter and AWS.
  • D. Create a VPN between the datacenter AWS.
Show Suggested Answer Hide Answer
Suggested Answer: AC 🗳️
A VPN is not reliable enough, and an AD connector will cause too much authentication traffic.
by eeghai7thioyaiR4 at March 22, 2021, 10:59 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ChauPhan
Highly Voted 3 years, 7 months ago
I choose AC because of 02 reasons 1. AWS Directory Service for Microsoft Active Directory is a feature-rich managed Microsoft Active Directory hosted on the AWS cloud. AWS Managed Microsoft AD is your best choice if you have more than 5,000 users and need a trust relationship set up between an AWS hosted directory and your on-premises directories. 2. You want to minimize the authentication traffic between AWS and Onpremise AD, if you use AD connector, that means all traffic in AWS need to be go to Onpremise AD for authentication.
upvoted 9 times
ChauPhan
3 years, 7 months ago
https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_best_practices.html
upvoted 2 times
...
ChauPhan
3 years, 7 months ago
So using both AWS hosted AD and onpremise AD with trust relation, then you can gradually migrate the users from onpremise AD to AWS hosted AD to reduce the authen. traffic
upvoted 2 times
...
...
wind
Most Recent 3 years, 7 months ago
Q: How many users, groups, computers, and total objects does AWS Managed Microsoft AD support? AWS Managed Microsoft AD (Standard Edition) includes 1 GB of directory object storage. This capacity can support up to 5,000 users or 30,000 directory objects, including users, groups, and computers. AWS Managed Microsoft AD (Enterprise Edition) includes 17 GB of directory object storage, which can support up to 100,000 users or 500,000 objects. I will go AC.
upvoted 3 times
...
NSF2
3 years, 7 months ago
I would go BC Because of the capacity of AWS hosted AD, the requirement in the question which 56000 users can’t be fulfilled. See below : “AWS Managed Microsoft AD (Standard Edition) includes 1 GB of directory object storage. This capacity can support up to 5,000 users or 30,000 directory objects, including users, groups, and computers.” https://aws.amazon.com/directoryservice/faqs/
upvoted 2 times
StelSen
3 years, 7 months ago
But the link says, "AWS Managed Microsoft AD (Enterprise Edition) includes 17 GB of directory object storage, which can support up to 100,000 users or 500,000 objects.". So, A still good choice. Also remember the only way to minimise auth traffic is to use Managed AD. Not AD Connector: https://docs.aws.amazon.com/whitepapers/latest/best-practices-deploying-amazon-workspaces/scenario-2-extending-on-premises-ad-ds-into-aws-replica.html
upvoted 1 times
...
...
eeghai7thioyaiR4
3 years, 7 months ago
I had go with BC, because you do not want any caching on the AWS side (changes are frequent and must be applied)
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel