Free Amazon SAP-C02 Exam Questions

Question 1

A company has an application that stores user-uploaded videos in an Amazon S3 bucket that uses S3 Standard storage. Users access the videos frequently in the first 180 days after the videos are uploaded. Access after 180 days is rare. Named users and anonymous users access the videos. Most of the videos are more than 100 MB in size. Users often have poor internet connectivity when they upload videos, resulting in failed uploads. The company uses multipart uploads for the videos. A solutions architect needs to optimize the S3 costs of the application. Which combination of actions will meet these requirements? (Select TWO.)

A : Configure the S3 bucket to be a Requester Pays bucket.

B : Use S3 Transfer Acceleration to upload the videos to the S3 bucket.

C : Create an S3 Lifecycle configuration to expire incomplete multipart uploads 7 days after initiation.

D : Create an S3 Lifecycle configuration to transition objects to S3 Glacier Instant Retrieval after 1 day.

E : Create an S3 Lifecycle configuration to transition objects to S3 Standard-Infrequent Access (S3 Standard-IA) after 180 days.

Answer: C,E

Question 2

IoT sensors are manufactured with certificates from a private C A. They must only connect to AWS after physical installation.

A : Use Lambda as apre-provisioning hookto validate serial number before registration.

B : Use Step Functions to validate before provisioning.

C : Use Lambda hook but register CA and enable auto-registration.

D : Use provisioning template and claim certificates without validation.

Answer: A

Question 3

A company is migrating its development and production workloads to a new organization in AWS Organizations. The company has created a separate member account for development and a separate member account for production. Consolidated billing is linked to the management account. In the management account, a solutions architect needs to create an 1AM user that can stop or terminate resources in both member accounts. Which solution will meet this requirement?

A : eate an IAM user and a cross-account role in the management account. Configure the cross-account role with least privilege access to the member accounts.

B : eate an IAM user in each member account. In the management account, create a cross-account role that has least privilege access. Grant the IAM users access to the cross-account role by using a trust policy.

C : eate an IAM user in the management account. In the member accounts, create an IAM group that has least privilege access. Add the IAM user from the management account to each IAM group in the member accounts.

D : eate an IAM user in the management account. In the member accounts, create cross-account roles that have least privilege access. Grant the IAM user access to the roles by using a trust policy.

Answer: D

Question 4

A company uses IAM Identity Center for data scientist access. Each user should be able to accessonly their own datain an S3 bucket. The company also needs to generatemonthly access reportsper user. Options:

A : Use IAM Identity Center permission sets to allow S3 access scoped to userName tag.

B : Use a shared IAM Identity Center role for all users and bucket policy.

C : Use AWS CloudTrail to log S3 data events, query via Athena.

D : Use CloudTrail management events to CloudWatch, then use Athena.

E : Use S3 access logs and S3 Select for reporting.

Answer: A,C

Question 5

A company runs many workloads on AWS and uses AWS Organizations to manage its accounts. The

workloads are hosted on Amazon EC2, AWS Fargate, and AWS Lambda. Some of the workloads have

unpredictable demand. Accounts record high usage in some months and low usage in other months.

The company wants to optimize its compute costs over the next 3 years. A solutions architect obtains a

6-month average for each of the accounts across the organization to calculate usage.

Which solution will provide the MOST cost savings for all the organization's compute usage?

A : Purchase Reserved Instances for the organization to match the size and number of the most commonEC2 instances from the member accounts.

B : Purchase a Compute Savings Plan for the organization from the management account by using therecommendation at the management account level.

C : Purchase Reserved Instances for each member account that had high EC2 usage according to the datafrom the last 6 months.

D : Purchase an EC2 Instance Savings Plan for each member account from the management account basedon EC2 usage data from the last 6 months.

Answer: A