Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Amazon Exam PAS-C01 Topic 1 Question 25 Discussion

Actual exam question for Amazon's PAS-C01 exam
Question #: 25
Topic #: 1
[All PAS-C01 Questions]

A financial services company is implementing SAP core banking on AWS. The company must not allow any system information to traverse the public internet. The company needs to implement secure monitoring of its SAP ERP Central Component (SAP ECO system to check for performance issues and faults in its application. The solution must maximize security and must be supported by SAP and AWS.

How should be company integrate AWS metrics with its SAP system to meet these requirements?

Show Suggested Answer Hide Answer
Suggested Answer: C

VPC endpoints to ensure that traffic to and from the CloudWatch and EC2 services stays within the VPC. Additionally, an IAM policy is created to grant access to only the necessary actions, such as DescribeInstances and GetMetricStatistics, for all EC2 resources. This approach will provide secure monitoring of the SAP system while maximizing security and ensuring support from both SAP and AWS.

https://docs.aws.amazon.com/sap/latest/general/data-provider-req.html#vpc-endpoints


by Dalene at Dec 25, 2023, 04:45 PM

Limited Time Offer

25%

Off

Get Premium PAS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Denny
23 days ago
Hold up, are we sure we can't just call the endpoints directly? I mean, that would be the simplest solution, right? *laughs* Oh wait, no public internet access. Duh, my bad.
upvoted 0 times
...
Kati
25 days ago
Hmm, I'm leaning towards option C. Creating VPC endpoints for CloudWatch and EC2 seems like the most secure way to go, and the IAM policy looks reasonable too.
upvoted 0 times
...
Juliann
26 days ago
Agreed, C looks like the winner here. I like how it keeps everything isolated within the VPC and limits the IAM permissions to just what's needed. Gotta love that security-first approach!
upvoted 0 times
...
Norah
26 days ago
Haha, Michael, you almost had me there for a second! But yeah, no public internet is a pretty big deal-breaker. I think Emily's got the right idea with option C.
upvoted 0 times
Natalie
5 days ago
By following option C, the company can effectively monitor its SAP system while keeping data secure.
upvoted 0 times
...
Val
6 days ago
The company needs to ensure that all actions are restricted to maintain the integrity of the SAP system.
upvoted 0 times
...
Giovanna
7 days ago
Absolutely, security should always be a top priority when it comes to handling sensitive data.
upvoted 0 times
...
Gene
8 days ago
It's important to monitor CPU and memory utilization to ensure performance is optimized.
upvoted 0 times
...
Maxima
9 days ago
Definitely, creating IAM policies to control access is crucial for security.
upvoted 0 times
...
Kristeen
10 days ago
Yeah, I agree. Installing the AWS Data Provider for SAP and creating VPC endpoints seems like a secure way to go.
upvoted 0 times
...
Kris
11 days ago
Option C sounds like the best approach to integrate AWS metrics with SAP system securely.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77