ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 453 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional SAP-C02
Question #: 453
Topic #: 1
[All AWS Certified Solutions Architect - Professional SAP-C02 Questions]

A company stores and manages documents in an Amazon Elastic File System (Amazon EFS) file system. The file system is encrypted with an AWS Key Management Service (AWS KMS) key. The file system is mounted to an Amazon EC2 instance that runs proprietary software.

The company has enabled automatic backups for the file system. The automatic backups use the AWS Backup default backup plan.

A solutions architect must ensure that deleted documents can be recovered within an RPO of 100 minutes.

Which solution will meet these requirements?

  • A. Create a new IAM role. Create a new backup plan. Use the new IAM role to create backups. Update the KMS key policy to allow the new IAM role to use the key. Implement an hourly backup schedule for the file system.
  • B. Create a new backup plan. Update the KMS key policy to allow the AWSServiceRoleForBackup IAM role to use the key. Implement a custom cron expression to run a backup of the file system every 30 minutes.
  • C. Create a new IAM role. Use the existing backup plan. Update the KMS key policy to allow the new IAM role to use the key. Enable continuous backups for point-in-time recovery.
  • D. Use the existing backup plan. Update the KMS key policy to allow the AWSServiceRoleForBackup IAM role to use the key. Enable Cross-Region Replication for the file system.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by CMMC at March 19, 2024, 12:09 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
VerRi
Highly Voted 1 year, 1 month ago
Selected Answer: A
The default backup plan is once a day, which cannot meet the RPO, so C and D are out. We need both EventBridge and Lambda functions to frequently backup the EFS, so B is out.
upvoted 7 times
...
Syre
Most Recent 6 months, 3 weeks ago
Selected Answer: A
https://community.aws/content/2iCkeS4XUmYdFf8Mlz6C7DFg5K3/protecting-amazon-s3-using-aws-backup
upvoted 1 times
...
053081f
9 months, 2 weeks ago
Selected Answer: A
I checked the AWS Backup console and you cannot setup backup plan less than 1 hour, so 30 min backup(B) will be excluded.
upvoted 4 times
...
titi_r
1 year ago
Selected Answer: A
Answer A.
upvoted 1 times
...
Aesthet
1 year ago
Selected Answer: A
C is not supported, see here: https://docs.aws.amazon.com/aws-backup/latest/devguide/backup-feature-availability.html#features-by-resource B is not possible (minimum is 1 hour, according to https://aws.amazon.com/blogs/storage/automating-backups-and-optimizing-backup-costs-for-amazon-efs-using-aws-backup/#:~:text=cron%20expression%20that%20creates%20backups%20as%20frequently%20as%20hourly). So I vote for A
upvoted 4 times
...
pangchn
1 year, 1 month ago
Selected Answer: B
B Using the AWS Backup console, you can choose a frequency of every 12 hours, daily, weekly, or monthly. You can also create a cron expression that creates backups as frequently as hourly ref: https://aws.amazon.com/blogs/storage/automating-backups-and-optimizing-backup-costs-for-amazon-efs-using-aws-backup/ PITR is not supported for EFS mentioned by djangoUnchained, so C is out From AWS console, the most frequently backup is daily.
upvoted 2 times
chris_spencer
6 months, 2 weeks ago
A: I've tried it and it doesn't work, you get an error message " Error in some rules due to : The interval between backup jobs shouldn't be less than 60 minutes."
upvoted 2 times
...
...
AWSPro1234
1 year, 1 month ago
Answer C.
upvoted 1 times
...
Dgix
1 year, 1 month ago
Selected Answer: A
First of all, using the existing default backup plan means backups only once a day, which disqualifies both C and D. We are thus left with A and B, which both fulfil the RPO. B is slightly more wasteful in that 30-minute backups are overkill. Also, B requires a custom cron task to be set up using EventBridge as it is a non-standard one for AWS Backup. A, however, can be accomplished without extra operational overhead. Therefore, A.
upvoted 3 times
...
CMMC
1 year, 1 month ago
Selected Answer: C
Creating a new IAM role and updating the KMS key policy to allow the role to use the key ensures that the backup mechanism has the necessary permissions for encryption. Enabling continuous backups for point-in-time recovery to increases the likelihood of being able to recover deleted documents within the specified RPO of 100 minutes.
upvoted 1 times
djangoUnchained
1 year, 1 month ago
It seems PITR is not supported for EFS https://docs.aws.amazon.com/aws-backup/latest/devguide/point-in-time-recovery.html
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago