Ends in
00
hrs
00
mins
00
secs
SHOP NOW

48-hour Extension Anniversary Sale - $3 OFF ALL Reviewers!

Forum Replies Created

Viewing 1 - 15 of 299 posts
  • Carlo-TutorialsDojo

    Administrator
    March 4, 2024 at 6:19 pm

    Hello Roamer2025,

    We appreciate your effort in pointing this out.

    We will update our explanation to reflect this update.

    Please let us know if you need further clarification.

    Thank you and regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    February 6, 2024 at 4:32 pm

    Hello Stresco,

    Thank you for pointing this one out.

    The statement, “However, after a few days, the development team complained that they could not upload the files anymore using the online portal,” implies that the team initially succeeded in uploading files through the portal. This suggests that the credentials were properly configured at the get-go. Following updates to the portal’s code, it’s possible that the credentials were misconfigured, leading to their modification or deletion.

    With this said, we acknowledge that the wording could have been clearer to avoid confusion. We’ll make the necessary changes to improve this question.

    Please let us know if you need further clarification.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    February 6, 2024 at 3:02 pm

    Hello luca-c,

    Thanks for your feedback.

    The question focuses more on what would enable them to reserve capacity within a specific timeframe, rather than on the best way to implement it. As you mentioned, they can either automate the process by running a script on schedule or handle it manually.

    You’ve raised a valid point regarding cost savings. Capacity reservation, by itself, does not come with discounts. However, pairing them with Savings Plans and Regional Reserved Instances can help reduce the costs associated with running the instances. On another note, since the company only needs the instances to run for 5 hours a day (every night from 10 PM to 3 AM), committing to a reserved instance or a savings plan for 1 year or 3 years won’t justify the costs. The company could simply terminate the instances and cancel reservation after every processing. We’ll make sure to clarify this in the explanation.

    Please let us know if you need further clarification.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    February 5, 2024 at 1:55 pm

    Hello AWSPro21,

    Thanks for the feedback.

    I understand how the given explanation can be confusing. To clarify, an ELB can work with a Spot Fleet even without an ASG. Both ASG and Spot Fleet use AWS Auto Scaling, where you can specify a minimum capacity to be maintained and a maximum capacity to scale up to. A key difference between the two is that AWS pretty much manages the instance lifecycle in a Spot Fleet. In contrast, with an ASG, you have some control over the lifecycle through lifecycle hooks.

    Just FYI, AWS recommends using EC2 Fleet instead of Spot Fleet. These two are practically similar in core functionalities, with Spot Fleet relying on legacy APIs. Nonetheless, we continue to use the term ‘Spot Fleet’ since it appears more frequently than ‘EC2 Fleet’ in the SA Pro certification exams.

    With all that said, we acknowledge there are some areas needing improvement, which we will address.

    Let me know if you have any further clarifications.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    February 2, 2024 at 6:53 pm

    Hello Aleksey,

    Thanks for the feedback.

    Just to be clear, the correct answer to this question is:

    Utilize Amazon ECS Anywhere to streamline software management on-premises and on AWS with a standardized container orchestrator. This makes it easy to migrate the development workloads running on-premises to ECS in an AWS region on Fargate.

    The solution being sought by the scenario is something that can integrate with both their container workloads in on-premises and AWS. They should also be able to use the same set of AWS APIs for managing the cluster. AWS Outposts is not a suitable option because AWS Fargate is unavailable on AWS Outposts, and moreover, ECS Anywhere is not designed to run on it. In our explanation, we mistakenly referred to EKS Anywhere as ECS. This error has been noted, and we will correct it.

    Please let us know if you have any questions.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 24, 2024 at 6:31 pm

    Hello AWSPro21 and sac,

    There are different architectures recommended by AWS for designing centralized egress traffic to the internet. The first option is to use a NAT Gateway (if you have resources in private subnets) along with a Transit Gateway. The second option is to provision a virtual appliance on an EC2 instance (in place of the NAT Gateway) and Transit Gateway. Typically, this setup is done when you want to have Intrusion Prevention/Detection System (IPS/IDS) capabilities. However, this setup has some drawbacks, such as a lack of support for failure detection (depends on the vendor you’re using), difficulty in horizontal scaling, and bandwidth limit. As a workaround, AWS used to recommend attaching an IPsec VPN to TGW instead of a VPN attachment. IPsec VPN leverages the failure detection capabilities of BGP and makes scaling a bit easier to manage. This is what the question is referring to regarding the VPN attachment.

    However, please note that this type of design is quite outdated, and AWS now actually recommends using Gateway Load Balancer in place of the IPsec VPN attachments. We’ll make sure to update this question to correct the issue.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 23, 2024 at 6:18 pm

    Hello Chris,

    Thanks for your interest in our practice exam.

    Please be informed that the DEA exam is scheduled for release in March, and therefore, we cannot provide a conclusive answer at this time. However, based on the sample questions I’ve seen, I noticed that some topics overlap with those in the DAS exam. Unlike the Data Analytics exam, the questions and options in the DEA exam are actually shorter. To understand the differences between the topics covered in the DEA and DAS exams, you can compare their respective exam guides.

    DEA- https://d1.awsstatic.com/training-and-certification/docs-data-engineer-associate/AWS-Certified-Data-Engineer-Associate_Exam-Guide.pdf
    DAS – https://d1.awsstatic.com/training-and-certification/docs-data-analytics-specialty/AWS-Certified-Data-Analytics-Specialty_Exam-Guide.pdf

    Let me know if this helps.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 23, 2024 at 6:09 pm

    Thanks for your feedback.

    I understand your concern.

    There are various methods for using the x-amz-server-side-encryption-aws-kms-key-id in a condition within a bucket policy. One way is to place it under a Null condition and set the value of x-amz-server-side-encryption-aws-kms-key-id to true. By doing this, if no specific KMS ID is provided in the request, S3 will deny the request. Another method is to use a String match condition which will allow you to enforce the usage of a particular KMS key. In this question, the option “Add a bucket policy which denies any s3:PutObject action unless the request includes the x-amz-server-side-encryption-aws-kms-key-id header.” is meant to refer to the second method, hence why it’s considered wrong since what the scenario is simply asking the enforcement of SSE-KMS, regardless of KMS keys used.

    We acknowledge that the context in which the x-amz-server-side-encryption-aws-kms-key-id header is not clearly defined. To prevent any confusion, we will update and clarify this item accordingly.

    Let me know if you need any further clarifications.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 22, 2024 at 10:50 am

    Hello AWSPro21,

    Thanks for your feedback.

    Firstly, it’s true that most default AMIs do not come with Flashgrid or Oracle pre-installed. However, it’s not accurate to say that an EC2 instance doesn’t natively support Oracle RAC. This is like saying you can’t run a web server on EC2 just because a specific ‘X service’ isn’t pre-installed on it. Flashgrid is simply a software that takes care of the networking and storage requirements of Oracle RAC. You can pretty much run Oracle RAC without it so long as you meet the set of configurations required by Oracle RAC. However, I understand that it’s almost impossible not to use it if you want to run Oracle RAC without headaches, just like any software solutions we depend on.

    Secondly, in actual exams, third-party names may not necessarily be mentioned, as is the case with this question, unless they are highly relevant to the context of what’s being asked. To relate this to the question, FlashGrid still uses native AWS resources, such as EBS volumes and EC2 instances. Maintenance tasks, including backups and patching, remain your responsibility. Therefore, the use of DLM and SSM, as indicated in the correct answers, is still very applicable

    Regards,
    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 19, 2024 at 6:07 pm

    Hello CP9,

    Setting an IP address to whitelist/blacklist in AWS WAF is optional. You can set and combine conditions other than IP matching, such as inspecting for a specific header value, query parameters, body, method, etc, in a request. Matching requests will count towards the rate-limit threshold that you configure. For example, in a typical DDoS attack it’s quite common for requests to exhibit similar access patterns. In such cases, AWS WAF can effectively block them even without knowing the specific IP addresses.

    Let me know if this helps.

    Regards,
    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    February 20, 2024 at 5:34 pm

    Hello sysroute,

    Thanks for your feedback.

    Yes. Amazon S3 does supports both Interface Endpoints and Gateway Endpoints. We’ll update the question to correct this.

    Let me know if you have any other clarifications.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    February 15, 2024 at 1:41 pm

    Hello @NoelMilton,

    Thanks for your interest in our practice questions.

    We strive to keep our content up to date as much as possible. We regularly gather feedback from users. Additionally, our team validates the content by taking the exams themselves and by reviewing the latest exam guides. Also, I’d like to note that the AWS Machine Learning Specialty exam is quite unique compared to other AWS exams, as it contains fundamental concepts in ML that extend beyond AWS-specific topics, which rarely change. This makes the exam more forgiving of AWS updates, and most topics covered in the exam remain relevant over time.

    Let me know if this helps.

    Regards,
    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 23, 2024 at 11:06 am

    Hello AWSPro21,

    The document you shared says nothing about RAC being impossible to run in a non-Oracle Cloud. I think it’s more about the limitations imposed on asking for technical assistance from Oracle support. Thanks for the suggestion, but we’ll retain Oracle RAC since it does appear in the actual SA Pro exams, and we want our materials to be relevant to the actual content and terminology used in the certification.

    Let me know if there’s anything I can help you with.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 18, 2024 at 6:01 pm

    Hello Lifelong1250,
    Thank you for posting this question.
    Just to give our readers full context on what we’re discussing, here are the given options for this question:

    Option 1 – Retrieve the data using Amazon Glacier Select
    Option 2 –Use Expedited Retrieval to access the financial data. (correct)
    Option 3 – Use Bulk Retrieval to access the financial data.
    Option 4 – Specify a range, or portion, of the financial data archive to retrieve.
    Option 5 – Purchase provisioned retrieval capacity. (correct)

    In this scenario, the key words are:

    • retrieve the required data in under 15 minutes
    • handle up to 150 MB/s of retrieval throughput

    When differentiating between retrieval options, the key metric is usually the access time, not archive size. I understand that there are edge cases, like the one you mentioned, where archives over 250MB may not be retrieved within 5 minutes in Expected retrieval. But in actual AWS exams, these minor details and some edge cases typically aren’t the focus when distinguishing between different options. When we write questions, we do our best to stick to the same style, wording, and format that we see in actual exams. This way, our users will get accustomed to what the real test will be like. With this said, I believe that the scenario we provided contains enough details for one to be able to pick the correct answers.

    Let me know if this answers your question.

    Regards,

    Carlo @ Tutorials Dojo

  • Carlo-TutorialsDojo

    Administrator
    January 18, 2024 at 4:31 pm

    Hello Lifeling1250,

    Let me answer your question.

    Just for context, here’s the rationale that’s given for the option: Use EC2 Dedicated Instances with elastic inference accelerator

    “..is incorrect because these are EC2 instances that run in a VPC on hardware that is dedicated to a single customer and are physically isolated at the host hardware level from instances that belong to other AWS accounts. It is not used for reducing latency. In addition, elastic inference accelerators only enable customers to attach low-cost GPU-powered acceleration to Amazon EC2, Amazon SageMaker instances and other resources”

    EC2 Dedicated Instance indeed isolates your instances at the host hardware level. However, it doesn’t guarantee that instances will always launch on the same physical server. What it does ensure is that the underlying hardware your instance runs on is exclusively yours and not shared with other customers. Therefore, there may be situations where your instances are not colocated and are hosted on separate hardware. For that reason, the use of EC2 Dedicated Instances is incorrect.

    Let me know if this helps.

    Regards,

    Carlo @ Tutorials Dojo

Viewing 1 - 15 of 299 posts