Question #652 Topic 1

A company has a large data workload that runs for 6 hours each day. The company cannot lose any data while the process is running. A solutions

architect is designing an Amazon EMR cluster configuration to support this critical data workload.

Which solution will meet these requirements MOST cost-effectively?

A. Configure a long-running cluster that runs the primary node and core nodes on On-Demand Instances and the task nodes on Spot

Instances.

B. Configure a transient cluster that runs the primary node and core nodes on On-Demand Instances and the task nodes on Spot Instances.

C. Configure a transient cluster that runs the primary node on an On-Demand Instance and the core nodes and task nodes on Spot Instances.

D. Configure a long-running cluster that runs the primary node on an On-Demand Instance, the core nodes on Spot Instances, and the task

nodes on Spot Instances.

Correct Answer: B

Community vote distribution

B (100%)

  louisaok Highly Voted  10 months, 4 weeks ago

Relax man. take a break since you have made this far so far.
upvoted 47 times

  AWSSURI 1 month ago

Rest at the end NOT in the middle
-- Kobe Bryant
upvoted 3 times

  potomac Highly Voted  11 months ago

Selected Answer: B

A transient cluster provides cost savings because it runs only during the computation time, and it provides scalability and flexibility in a cloud
environment.

Option C (transient cluster with On-Demand primary node and Spot core and task nodes) exposes the core nodes to Spot Instance interruptions,
which may not be acceptable for a workload that cannot lose any data.
upvoted 13 times

  awsgeek75 Most Recent  8 months, 2 weeks ago

Selected Answer: B

AD are long-running so don't fit in with 6 hours schedule

BC are ideal for scheduled EMR activities
C is wrong as running core node on Spot instance has a risk of data loss https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-master-
core-task-nodes.html
B is correct because primary, core will be stable on on-demand as recommended by AWS and task can go on spot instances as task nodes are shor
lived by nature anyway
upvoted 6 times

  pentium75 9 months ago

Selected Answer: B

"Long-running cluster" = runs until you shut it down

"Transient cluster" = runs until the workload is completed
This runs only 6 hours each day -> transient -> B or C

"Cannot lose any data while the process is running" -> Primary and core nodes cannot be Spot instances -> A or B
https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-plan-longrunning-transient.html
https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-plan-instances-guidelines.html
upvoted 9 times

  TariqKipkemei 10 months ago

Selected Answer: B

Cannot loose data = ondemand primary + core nodes

Save on costs = spot task nodes
Runs for 6 hours = transient cluster
upvoted 6 times

  SHAAHIBHUSHANAWS 10 months ago

 A
https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-plan-instances-guidelines.html
It's long running and no data loss is needed.
upvoted 2 times

  pentium75 9 months ago

The link says you can lose data if you are running a transient cluster WITH ONLY Spot instances. "Long-running" = runs until you shut it down,
"Transient" = Runs until the workload is completed
upvoted 1 times

  whiterick 8 months, 1 week ago

Option A suggests a long-running cluster, which continues to run until manually terminated. This means that even if tasks are rerouted due
to Spot Instance interruptions, the cluster itself remains active, allowing the rerouted tasks to complete on other nodes.

Option B suggests a transient cluster, which is terminated after all steps are completed. If the Spot Instances are interrupted and tasks are
not completed, the cluster might still terminate after the steps are deemed complete, potentially leading to incomplete processing of data.
upvoted 1 times

  MFKang 10 months, 2 weeks ago

Get up Stand up
upvoted 3 times
Question #653 Topic 1

A company maintains an Amazon RDS database that maps users to cost centers. The company has accounts in an organization in AWS

Organizations. The company needs a solution that will tag all resources that are created in a specific AWS account in the organization. The

solution must tag each resource with the cost center ID of the user who created the resource.

Which solution will meet these requirements?

A. Move the specific AWS account to a new organizational unit (OU) in Organizations from the management account. Create a service control

policy (SCP) that requires all existing resources to have the correct cost center tag before the resources are created. Apply the SCP to the new

OU.

B. Create an AWS Lambda function to tag the resources after the Lambda function looks up the appropriate cost center from the RDS

database. Configure an Amazon EventBridge rule that reacts to AWS CloudTrail events to invoke the Lambda function.

C. Create an AWS CloudFormation stack to deploy an AWS Lambda function. Configure the Lambda function to look up the appropriate cost

center from the RDS database and to tag resources. Create an Amazon EventBridge scheduled rule to invoke the CloudFormation stack.

D. Create an AWS Lambda function to tag the resources with a default value. Configure an Amazon EventBridge rule that reacts to AWS

CloudTrail events to invoke the Lambda function when a resource is missing the cost center tag.

Correct Answer: A

Community vote distribution

A (56%) B (44%)

  1Alpha1 Highly Voted  7 months, 3 weeks ago

Selected Answer: A

I'm not sure, but I think this question is from professional solution architect question pool.
Please have a look at this one as well.
https://www.examtopics.com/discussions/amazon/view/112780-exam-aws-certified-solutions-architect-professional-sap-c02/
upvoted 10 times

  1e22522 Most Recent  1 month, 3 weeks ago

Selected Answer: B

The best solution that meets all the requirements is option B. Here's why:

It can tag all resources created in a specific AWS account within the organization.
It uses a Lambda function to look up the appropriate cost center from the RDS database, ensuring accurate tagging.
The EventBridge rule reacting to CloudTrail events ensures that resources are tagged as they are created.
This approach can dynamically tag each resource with the cost center ID of the user who created it.
upvoted 1 times

  sheilawu 4 months ago

Selected Answer: A

I will vote for A

upvoted 1 times

  sandordini 5 months, 1 week ago

Selected Answer: B

We need a solution, to automatically tag, also the existing resources. A,C, are more or less working solutions for new resources, but neither can do
the tagging of existing resources. D would add a default tag instead of the specific CC.
upvoted 1 times

  gsgdga 6 months, 1 week ago

Selected Answer: A

A is right
https://docs.aws.amazon.com/ko_kr/organizations/latest/userguide/orgs_tagging_abac.html
upvoted 4 times

  pentium75 9 months ago

Selected Answer: B

A policy cannot look up "the cost center ID of the user who created the resource", we need Lambda to do that. Thus A is out.

C would work but runs on a schedule which doesn't make sense (and we would temporarily have untagged resources).

D tags resources "with a default value" which is not what we want.

 upvoted 4 times

  Ernestokoro 9 months ago

Please how do you account for this part of the question with option B "The solution must tag each resource with the cost center ID of the user
who created the resource." ? For me this typically what SCP would handle.
upvoted 1 times

  awsgeek75 8 months, 3 weeks ago

That SCP won't know the cost centre. "RDS database that maps users to cost centers"
Unless the solution can read the RDS, it won't work and SCP cannot be programmed to read from RDS before applying the cost centre.
upvoted 2 times

  fea9bdf 9 months ago

Answer is A, SCP handles the assignment, no need for a Lambda function, that's unnecessary t seems like
Service Control Policies (SCPs)

SCPs are a policy type that you can utilize to manage permissions across accounts in your AWS Organization.
Using SCPs lets you ensure that your accounts stay within your organization’s access control guidelines.
SCPs can be used along-side tag policies to ensure that the tags are applied at the resource creation time and remain attached to the resource.
upvoted 1 times

  pentium75 9 months ago

How would an SCP look up the correct cost center in the database?
upvoted 3 times

  ale_brd_111 9 months, 1 week ago

Selected Answer: B

the company still maintains the RDS, nowhere was asked to drop using it, therefore we shall use a solution that takes advantages of it.
upvoted 3 times

  ftaws 9 months, 2 weeks ago

Selected Answer: A

I also choose A.
upvoted 2 times

  awsgeek75 8 months, 3 weeks ago

SCP cannot connect to RDS where the cost centre information is stored so A won't work.
upvoted 1 times

  Oluwatosin09 5 months, 2 weeks ago

Awsgeek75 and Pentium must be the same person.
They always have the same answers with contributions always on point.
Great Job!
upvoted 1 times

  Cyberkayu 9 months, 2 weeks ago

Selected Answer: A

Company have Organization. A specific AWS account need to ensure all resources were tagged.

Move this specific AWS account under the company OU, use SCP to enforce top down policies that every member account to adhere.

Answer A.
upvoted 1 times

  pentium75 9 months ago

How would an SCP look up the correct cost center in the database?
upvoted 1 times

  evelynsun 9 months, 3 weeks ago

Selected Answer: B

sorry, i would choose B.

because it allows you to tag resources as they are created, without requiring you to move existing resources.
upvoted 1 times

  evelynsun 9 months, 3 weeks ago

Selected Answer: A

This solution is the best way to meet the requirements of the company. It ensures that all resources in the specific AWS account are tagged with
the cost center ID of the user who created the resource. It also allows the company to easily manage and enforce compliance with its tagging
policies.
upvoted 1 times

  pentium75 9 months ago

How would an SCP look up the correct cost center in the database?
upvoted 1 times
  TariqKipkemei 10 months ago

Selected Answer: B

Create an AWS Lambda function to tag the resources after the Lambda function looks up the appropriate cost center from the RDS database.
Configure an Amazon EventBridge rule that reacts to AWS CloudTrail events to invoke the Lambda function.
upvoted 1 times

  t0nx 10 months, 2 weeks ago

Selected Answer: B

This solution utilizes AWS Lambda and Amazon EventBridge to automate the tagging process based on information from the RDS database and
CloudTrail events.

AWS Lambda Function: Create a Lambda function that can look up the cost center information from the RDS database and tag resources
accordingly.

Amazon EventBridge Rule: Set up an EventBridge rule to react to AWS CloudTrail events. The rule triggers the Lambda function whenever a
resource is created, allowing dynamic tagging based on the cost center associated with the user in the RDS database.

This solution provides automation, ensuring that resources are tagged appropriately with the cost center ID of the user who created the resource. I
also allows for flexibility in updating cost center information without modifying the infrastructure.
upvoted 4 times
Question #654 Topic 1

A company recently migrated its web application to the AWS Cloud. The company uses an Amazon EC2 instance to run multiple processes to host

the application. The processes include an Apache web server that serves static content. The Apache web server makes requests to a PHP

application that uses a local Redis server for user sessions.

The company wants to redesign the architecture to be highly available and to use AWS managed solutions.

Which solution will meet these requirements?

A. Use AWS Elastic Beanstalk to host the static content and the PHP application. Configure Elastic Beanstalk to deploy its EC2 instance into a

public subnet. Assign a public IP address.

B. Use AWS Lambda to host the static content and the PHP application. Use an Amazon API Gateway REST API to proxy requests to the

Lambda function. Set the API Gateway CORS configuration to respond to the domain name. Configure Amazon ElastiCache for Redis to handle

session information.

C. Keep the backend code on the EC2 instance. Create an Amazon ElastiCache for Redis cluster that has Multi-AZ enabled. Configure the

ElastiCache for Redis cluster in cluster mode. Copy the frontend resources to Amazon S3. Configure the backend code to reference the EC2

instance.

D. Configure an Amazon CloudFront distribution with an Amazon S3 endpoint to an S3 bucket that is configured to host the static content.

Configure an Application Load Balancer that targets an Amazon Elastic Container Service (Amazon ECS) service that runs AWS Fargate tasks

for the PHP application. Configure the PHP application to use an Amazon ElastiCache for Redis cluster that runs in multiple Availability Zones.

Correct Answer: D

Community vote distribution

D (100%)

  awsgeek75 Highly Voted  8 months, 3 weeks ago

Selected Answer: D

Key requirements: HA and Managed Services

Key components: PHP, Static content, Redis Elasticache
AB are instantly useless for static content scaling
C could work but is less managed and "configure the backend code to reference EC2 instance" makes no sense
D ECS+Linux+PHP is good managed combination when used with Fargate. S3 for static is well-architected. Multi-AZ ECache for Redis is HA also.
Good managed solution for all purposes.
upvoted 5 times

  ferdzcruz Most Recent  8 months, 2 weeks ago

D. ECS + Fargate
Company wants to redesign the architecture = from Server to serverless, and managed by AWS .
upvoted 4 times

  evelynsun 9 months, 3 weeks ago

Selected Answer: D

This solution meets the requirements because it uses AWS managed solutions for hosting the static content and the PHP application. It also uses
Amazon ECS to run the PHP application in a highly available and scalable manner. The solution also uses Amazon ElastiCache for Redis to handle
session information, which is highly available and scalable. The solution also uses Amazon CloudFront to provide a secure and reliable way to
deliver the static content to users.
upvoted 4 times

  TariqKipkemei 10 months ago

Selected Answer: D

Configure an Amazon CloudFront distribution with an Amazon S3 endpoint to an S3 bucket that is configured to host the static content. Configure
an Application Load Balancer that targets an Amazon Elastic Container Service (Amazon ECS) service that runs AWS Fargate tasks for the PHP
application. Configure the PHP application to use an Amazon ElastiCache for Redis cluster that runs in multiple Availability Zones.
upvoted 3 times
Question #655 Topic 1

A company runs a web application on Amazon EC2 instances in an Auto Scaling group that has a target group. The company designed the

application to work with session affinity (sticky sessions) for a better user experience.

The application must be available publicly over the internet as an endpoint. A WAF must be applied to the endpoint for additional security. Session

affinity (sticky sessions) must be configured on the endpoint.

Which combination of steps will meet these requirements? (Choose two.)

A. Create a public Network Load Balancer. Specify the application target group.

B. Create a Gateway Load Balancer. Specify the application target group.

C. Create a public Application Load Balancer. Specify the application target group.

D. Create a second target group. Add Elastic IP addresses to the EC2 instances.

E. Create a web ACL in AWS WAF. Associate the web ACL with the endpoint

Correct Answer: CE

Community vote distribution

CE (100%)

  ferdzcruz 8 months, 2 weeks ago

CE.
C. application = ALB
E. WAF to endpoint
upvoted 4 times

  awsgeek75 8 months, 3 weeks ago

Selected Answer: CE

NLB and GLB cannot handle sticky sessions. It's an application level concept (Cookies) so ALB works.
Elastic IP will negate sticky sessions and this combination won't work.
E give proper permissions to WAF
upvoted 4 times

  Mikado211 9 months, 2 weeks ago

Selected Answer: CE

- Make it accessible from the web + sticky session == Public ALB

- Additional security == web ACL in WAF (and integrate the web ACL to the ALB)
upvoted 2 times

  ZZZ_Sleep 9 months, 2 weeks ago

Selected Answer: CE

session affinity (sticky sessions) = Application Load Balancer

WAF must be applied to the endpoint for additional security = web ACL in WAF
upvoted 2 times

  TariqKipkemei 10 months ago

Selected Answer: CE

Session Affinity = Application Load Balancer

Create a public Application Load Balancer. Specify the application target group then create a web ACL in AWS WAF. Associate the web ACL with the
ALB endpoint.
upvoted 3 times
Question #656 Topic 1

A company runs a website that stores images of historical events. Website users need the ability to search and view images based on the year

that the event in the image occurred. On average, users request each image only once or twice a year. The company wants a highly available

solution to store and deliver the images to users.

Which solution will meet these requirements MOST cost-effectively?

A. Store images in Amazon Elastic Block Store (Amazon EBS). Use a web server that runs on Amazon EC2.

B. Store images in Amazon Elastic File System (Amazon EFS). Use a web server that runs on Amazon EC2.

C. Store images in Amazon S3 Standard. Use S3 Standard to directly deliver images by using a static website.

D. Store images in Amazon S3 Standard-Infrequent Access (S3 Standard-IA). Use S3 Standard-IA to directly deliver images by using a static

website.

Correct Answer: D

Community vote distribution

D (91%) 9%

  chikuwan Highly Voted  10 months, 1 week ago

Selected Answer: D

users request each image only once or twice a year

So the answer is D
upvoted 9 times

  Abbas_Abi_AWS Most Recent  1 month, 4 weeks ago

Selected Answer: D

D is correct
upvoted 1 times

  KennethNg923 3 months, 2 weeks ago

Selected Answer: D

users request each image only once or twice a year, so infrequent is enough and cheaper
upvoted 1 times

  awsgeek75 8 months, 3 weeks ago

Selected Answer: D

"On average, users request each image only once or twice a year."
S3 Infrequent Access is more than enough for this.
upvoted 2 times

  pentium75 9 months ago

Selected Answer: D

Say, you have 1 TB of files that you access twice a year. Yearly cost:
C, S3 Standard: 276 USD for storage, free retrieval = 276 USD
D, S3 Standard-IA: 138 USD for storage, 20 € for retrieval = 158 USD
upvoted 1 times

  Kumar05162 9 months, 1 week ago

Option D: Store images in Amazon S3 Standard-Infrequent Access (S3 Standard-IA). Use S3 Standard-IA to directly deliver images by using a static
website.

S3 Standard-IA is designed specifically for infrequently accessed data, offering lower storage costs compared to S3 Standard while still providing
the necessary durability and availability.
upvoted 1 times

  ZZZ_Sleep 9 months, 2 weeks ago

Selected Answer: D

High Availability = excluded A (EBS)

cost-effective = excluded B (EFS)
only once or twice a year = S3 Standard-IA, excluded C (S3 Standard, frequent access)

Left D, answer
upvoted 3 times

  LuADS 10 months ago

 Selected Answer: C

Suppose there are thousands or millions of users, each image should be recovered once or twice a year X total users... makes it more expensive
than the standard class since the recovery price of Standard-IA is $0.01 per GB + price of the requests which is also more expensive too.
upvoted 2 times

  pentium75 9 months ago

Not sure if you understood what IA class does. "Recovery price is 0.001 per GB", what's the issue with that if images are requested "only once or
twice a year"?

Say, you have 1 TB of files that you access twice a year.

S3 Standard: 276 USD for storage, free retrieval = 276 USD
S3 Standard-IA: 138 USD for storage, 20 € for retrieval = 158 USD
upvoted 1 times

  TariqKipkemei 10 months ago

Selected Answer: D

MOST cost-effectively, request each image only once or twice a year= S3 Standard-Infrequent Access
upvoted 1 times

  SHAAHIBHUSHANAWS 10 months ago

D
https://docs.aws.amazon.com/AmazonS3/latest/userguide/storage-class-intro.html
Look at table
upvoted 1 times

  achechen 10 months, 1 week ago

Selected Answer: D

if the images are accessed once or twice a year, then it is cheaper to use infrequent access tier
upvoted 3 times

  aragornfsm 10 months, 1 week ago

I believe the correct answer is option D, but ChatGPT mentioned option C. I didn't understand. I'm curious about the actual correct answer.
upvoted 1 times

  AndreiWebNet 10 months ago

Might be the fact the a user is requesting to view a image once or twice a year but how many users are there ? :) that's why it points to C i think
I still think that the correct answer is D due to lack of information in the description
upvoted 1 times

  pentium75 9 months ago

"Users request each image only once or twice per year", this refers to all users together, it does not say "EACH user". In other words, every
image is accessed once or twice a year.
upvoted 1 times