exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 748 discussion

A company has a policy that all Amazon EC2 instances that are running a database must exist within the same subnets in a shared VPC. Administrators must follow security compliance requirements and are not allowed to directly log in to the shared account. All company accounts are members of the same organization in AWS Organizations. The number of accounts will rapidly increase as the company grows.
A solutions architect uses AWS Resource Access Manager to create a resource share in the shared account.
What is the MOST operationally efficient configuration to meet these requirements?

  • A. Add the VPC to the resource share. Add the account IDs as principals
  • B. Add all subnets within the VPC to the resource share. Add the account IDs as principals
  • C. Add all subnets within the VPC to the resource share. Add the organization as a principal
  • D. Add the VPC to the resource share. Add the organization as a principal
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Jaypdv
Highly Voted 3 years, 1 month ago
C. Adding the organization as a principal ensure that current and future accounts will have access to the share. The question mentions that there will be many new accounts, that's the clue
upvoted 22 times
...
janvandermerwer
Most Recent 2 years ago
Selected Answer: C
C appears to be the most operationally efficient.
upvoted 2 times
...
bobsmith2000
2 years, 6 months ago
Selected Answer: C
We have to add organization as principle due to "swift increase in account num".: So it's C or D. There's no reason to share a VPC, so it's C.
upvoted 3 times
[Removed]
2 years, 1 month ago
You can't share VPC anyways in RAM..only subnets
upvoted 1 times
...
...
cldy
2 years, 12 months ago
C. Add all subnets within the VPC to the resource share. Add the organization as a principal
upvoted 1 times
...
AzureDP900
2 years, 12 months ago
I will go with C as mentioned @https://docs.aws.amazon.com/ram/latest/userguide/getting-started-sharing.html#getting-started-sharing-create To restrict resource sharing to only principals in your organization, choose Allow sharing with principals in your organization only.
upvoted 1 times
...
pcops
3 years ago
How to get access to questions from 390 onwards. I can only see questions upto 389. Please suggest
upvoted 2 times
acloudguru
3 years ago
use incognito mode directly with the url
upvoted 4 times
wassb
2 years, 1 month ago
and a Cloudfront distribution with OAI configured
upvoted 2 times
...
...
...
andylogan
3 years, 1 month ago
It's C
upvoted 1 times
...
tgv
3 years, 1 month ago
CCC ---
upvoted 1 times
...
WhyIronMan
3 years, 1 month ago
I'll go with C
upvoted 1 times
...
Akbarali
3 years, 1 month ago
New Solutions Architect Pro question. A company runs an application in the cloud that consists of a database and a website. Users can post data to the website, have the data processed, and have the data sent back to them in an email, Data is stored in a MySQL database running on an Amazon EC2 instance. The database is running with two private subnets. The website is running on Apache Tomcat in a single EC2 instance in a different VPC with one public subnet. There is a single VPC peering connection between the database and website VPC. The website has suffered several outages during the last month due to high traffic. Which actions should a solutions architect take to increase the reliability of the application? (select three) A – Place the Tomcat server in an Autoscaling group with multiple EC2 instances behind an Application Load Balancer B – Provision an additional VPC peering connection C – Migrate the MySQL database to Amazon Aurora with one Aurora Replica D – Provision two NAT gateways in the database VPC E – Move the tomcat server to the database VPC F – Create an additional public subnet in a different Availability Zone in the website VPC
upvoted 3 times
sergioandreslq
3 years, 1 month ago
This questing is the 760, Answer is ACF.
upvoted 1 times
...
Chibuzo1
3 years, 1 month ago
Answer is A C F
upvoted 3 times
...
pradhyumna
3 years, 1 month ago
looks like ACE
upvoted 2 times
...
...
Waiweng
3 years, 1 month ago
it's C https://docs.aws.amazon.com/ram/latest/userguide/getting-started-sharing.html#getting-started-sharing-create
upvoted 2 times
...
Chibuzo1
3 years, 1 month ago
To specify a principal from the list, for each principal, select the principal type, enter the ID or ARN, AWS account: To add an AWS account, enter the 12-digit account ID. For example: 123456789012 Organization: To add your entire organization, enter the ID of the organization. For example: o-abcd1234efgh5678 The right answer is B. To add organization, you add the ID, and to add an Account you add the ID.
upvoted 2 times
...
beebatov
3 years, 1 month ago
Answer: C You share the resources of the VPC which are Subnets in this case + add Organization as the principal as the number of accounts will grow in future. https://docs.aws.amazon.com/ram/latest/userguide/ram-ug.pdf
upvoted 4 times
...
gsw
3 years, 2 months ago
i think B is correct see the link
upvoted 1 times
Jaypdv
3 years, 1 month ago
C. Is better, you can add the entire organization as principal. This covers all existing and future accounts as per the question. See https://docs.aws.amazon.com/ram/latest/userguide/getting-started-sharing.html#getting-started-sharing-create
upvoted 7 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...