Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 73 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional SAP-C02

Question #: 73
Topic #: 1

[All AWS Certified Solutions Architect - Professional SAP-C02 Questions]

A company is building a solution in the AWS Cloud. Thousands or devices will connect to the solution and send data. Each device needs to be able to send and receive data in real time over the MQTT protocol. Each device must authenticate by using a unique X.509 certificate.

Which solution will meet these requirements with the LEAST operational overhead?

A. Set up AWS IoT Core. For each device, create a corresponding Amazon MQ queue and provision a certificate. Connect each device to Amazon MQ.
B. Create a Network Load Balancer (NLB) and configure it with an AWS Lambda authorizer. Run an MQTT broker on Amazon EC2 instances in an Auto Scaling group. Set the Auto Scaling group as the target for the NLConnect each device to the NLB.
C. Set up AWS IoT Core. For each device, create a corresponding AWS IoT thing and provision a certificate. Connect each device to AWS IoT Core.
D. Set up an Amazon API Gateway HTTP API and a Network Load Balancer (NLB). Create integration between API Gateway and the NLB. Configure a mutual TLS certificate authorizer on the HTTP API. Run an MQTT broker on an Amazon EC2 instance that the NLB targets. Connect each device to the NLB.

Show Suggested Answer

Suggested Answer: C 🗳️

by masetromain at Jan. 14, 2023, 5:19 p.m.

Disclaimers:

- ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
- Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Submit Cancel

masetromain

Highly Voted 2 years, 7 months ago

Selected Answer: C

The correct solution is C. Set up AWS IoT Core. For each device, create a corresponding AWS IoT thing and provision a certificate. Connect each device to AWS IoT Core. AWS IoT Core is a fully managed service that enables secure, bi-directional communication between internet-connected devices and the AWS Cloud. It supports the MQTT protocol and includes built-in device authentication and access control. By using AWS IoT Core, the company can easily provision and manage the X.509 certificates for each device, and connect the devices to the service with minimal operational overhead.

upvoted 23 times

masetromain

2 years, 7 months ago

Option A, setting up Amazon MQ queues and connecting each device to a queue, would require significant operational overhead to manage the queues and ensure that each device is properly authenticated and connected. Option B and D, using a Network Load Balancer (NLB) with a Lambda authorizer or an Amazon API Gateway HTTP API with a mutual TLS certificate authorizer and running an MQTT broker on EC2 instances, would also introduce more operational complexity and overhead compared to using AWS IoT Core.

upvoted 7 times

...

princajen

Most Recent 1 month ago

Selected Answer: C

To support thousands of devices with real-time MQTT communication and X.509 certificate authentication with the least operational overhead, use AWS IoT Core. It is purpose-built for scalable device communication, handles certificate-based auth natively, and is fully managed—no need to manage infrastructure or scale brokers manually.

upvoted 1 times

...

MAZIADI

1 year ago

Selected Answer: C

AWS IoT Core: This service is specifically designed for managing IoT devices and supports the MQTT protocol natively. It provides built-in support for device authentication using X.509 certificates.

upvoted 1 times

...

gofavad926

1 year, 5 months ago

Selected Answer: C

C, use IoT Core

upvoted 1 times

...

8608f25

1 year, 6 months ago

Selected Answer: C

Option C is the most suitable solution as AWS IoT Core is specifically designed for IoT scenarios, including device management and secure communication. AWS IoT Core natively supports MQTT, a lightweight communication protocol ideal for IoT devices. It allows devices to connect securely with an individual X.509 certificate for authentication, significantly reducing operational overhead compared to managing a custom MQTT broker or other intermediate services. AWS IoT Core also simplifies device management and scaling, making it the best choice for the described use case.

upvoted 1 times

...

bjexamprep

1 year, 7 months ago

Selected Answer: C

I don’t like C, but C might be the preferred answer. There are thousands of devices. If C is the real answer, there should be a way to automatically create IOT thing and provision certificate. The answer seems implying to create IOT thing and provision certificates manually. If IoT core doesn’t have this automation feature, this definitely is not the right answer in real life. If there is this automation way and the question designer is expecting the exam taker to know this detail, that might be too specific for the exam takers. D is ugly, and usually is not a correct answer in most question designs. But it provides a feasible way in the real life comparing with C.

upvoted 3 times

...

NikkyDicky

2 years, 1 month ago

Selected Answer: C

it's C

upvoted 1 times

...

mfsec

2 years, 4 months ago

Selected Answer: C

I choose C

upvoted 1 times

...

zejou1

2 years, 5 months ago

Selected Answer: C

https://docs.aws.amazon.com/iot/latest/developerguide/attach-to-cert.html It is C, - you have to do this through IOT core, for the devices you need an AWS IOT "thing" and then provision a certificate for the thing. from there connect the device.

upvoted 2 times

...

forceli

2 years, 5 months ago

Selected Answer: A

-The AWS IoT Device SDKs support device communications using the MQTT -Device connections to AWS IoT use X.509 client certificates https://docs.aws.amazon.com/iot/latest/developerguide/iot-connect-devices.html

upvoted 1 times