ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified SAP on AWS - Specialty PAS-C01 All Questions

View all questions & answers for the AWS Certified SAP on AWS - Specialty PAS-C01 exam
Go to Exam

Exam AWS Certified SAP on AWS - Specialty PAS-C01 topic 1 question 65 discussion

Exam question from Amazon's AWS Certified SAP on AWS - Specialty PAS-C01
Question #: 65
Topic #: 1
[All AWS Certified SAP on AWS - Specialty PAS-C01 Questions]

A financial services company is implementing SAP core banking on AWS. The company must not allow any system information to traverse the public internet. The company needs to implement secure monitoring of its SAP ERP Central Component (SAP ECC) system to check for performance issues and faults in its application. The solution must maximize security and must be supported by SAP and AWS.
How should the company integrate AWS metrics with its SAP system to meet these requirements?

  • A. Set up SAP Solution Manager to call Amazon CloudWatch and Amazon EC2 endpoints with REST-based calls to populate SAPOSCOL details. Use SAP transaction ST06N to monitor CPU and memory utilization on each EC2 instance.
  • B. Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP. Allow access to the Amazon CloudWatch and EC2 endpoints through a NAT gateway. Create an IAM policy that allows the ec2:DescribeInstances action, the cloudwatch:GetMetricStatistics action, and the ec2:DescribeVolumes action for all EC2 resources.
  • C. Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP. Create VPC endpoints for Amazon CloudWatch and Amazon EC2. Allow access through these endpoints. Create an IAM policy that allows the ec2:DescribeInstances action, the cloudwatch:GetMetricStatistics action, and the ec2:DescribeVolumes action for all EC2 resources.
  • D. Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP. Create VPC endpoints for Amazon CloudWatch and Amazon EC2. Allow access through these endpoints. Create an IAM policy that allows all actions for all EC2 resources.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by schalke04 at Feb. 8, 2023, 6:58 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kaishin0527
Highly Voted 1 year, 10 months ago
Selected Answer: C
C: The AWS Data Provider for SAP collects OS and Amazon CloudWatch metrics and makes them available to SAP applications. By creating VPC endpoints for Amazon CloudWatch and Amazon EC2, the company ensures that no traffic traverses the public internet. The IAM policy is needed to allow the AWS Data Provider for SAP to call these services.
upvoted 5 times
...
[Removed]
Most Recent 1 year, 11 months ago
Selected Answer: C
Voting C
upvoted 2 times
...
CloudRover
2 years, 2 months ago
Selected Answer: C
Its C and not D because principle of least privilege
upvoted 3 times
...
blanco750
2 years, 3 months ago
Selected Answer: C
C is the right choice
upvoted 2 times
...
Heisinberg
2 years, 3 months ago
Selected Answer: C
https://docs.aws.amazon.com/sap/latest/general/data-provider-req.html#vpc-endpoints
upvoted 1 times
...
ohcn
2 years, 4 months ago
I think C
upvoted 2 times
...
schalke04
2 years, 4 months ago
Selected Answer: C
has to be C
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel