次の認定試験に速く合格する!

簡単に認定試験を準備し、学び、そして合格するためにすべてが必要だ。

会員センター  カート (0)
  • ホーム
  • ブログ
  • 信頼できるAWS Certified Specialty PAS-C01問題集PDF 2023年11月04日最近更新された問題 [Q23-Q47]

信頼できるAWS Certified Specialty PAS-C01問題集PDF 2023年11月04日最近更新された問題 [Q23-Q47]

Share

信頼できるAWS Certified Specialty PAS-C01問題集PDF 2023年11月04日最近更新された問題

必ず合格できるAmazon PAS-C01試験正確な67問題と解答あります

質問 # 23
A company has an SAP environment that runs on AWS. The company wants to enhance security by restricting Amazon EC2 Instance Metadata Service (IMDS) to IMDSv2 only. The company's current configuration option supports both iMDSvi and iM0Sv2. The security enhancement must not create an SAP outage.
What should the company do before it applies the security enhancement on EC2 instances that are running the SAP environment?

  • A. Ensure that the AWS Data Provider for SAP is installed on each EC2 instance
  • B. Ensure that the EC2 instances are Nitro based
  • C. Stop the EC2 instances
  • D. Ensure that the SAP kernel versions are 7.45 or later

正解:D

解説:
Explanation
Ensure that the SAP kernel versions are 7.45 or later. This is important because IMDSv2 is only supported by SAP kernel versions 7.45 and later. If the SAP kernel versions are not at least 7.45, then the enhancement will cause an SAP outage as the instances will not be able to communicate with the metadata service.


質問 # 24
A company wants 10 run SAP HANA on AWS m the eu-centrai-1 Region. The company must make the SAP HANA system highly available by using SAP HANA system replication in addition the company must create a disaster recovery (DR) solution that uses SAP HANA system replication in the eu-west-1 Region As prerequisites the company has confirmed that inter-AZ latency is less than 1 ms and that Inter-Region latency is greater than 1 ms.
Which solutions will meet these requirements? (Select TWO.)

  • A. Install the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system in Availability Zone 1 Configure the tier 2 system in Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using SYNC replication mode Install the OR tier 3 secondary system n eu-west-1 Store daily backups from tier 1 m an Amazon S3 bucket m eu-central-1 Use S3 Cross-Region Replication to copy the daily backups to eu-west-i where they can be restored if needed
  • B. Install the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system in Availability Zone 1 Configure the tier 2 system m Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using SYNC replication mode Install the OR her 3 secondary system n eu-west-1 by using ASYNC replication mode.
  • C. Install the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system m Availability Zone 1 Configure the tier 2 system m Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using SYNCMEM replication mode Install the DR tier 3 secondary system in eu-west-1 by using ASYNC replication mode
  • D. install the tier 1 primary system in eu-central-1 install the tier 2 secondary system and the DR tier 3 secondary system m eu-west-1 Configure the tier 2 system in Availability Zone 1 Configure the tier 3 system in Availability Zone 2 Configure SAP HANA system replication between all tiers by using ASYNC replication mode
  • E. Install the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system m Availability Zone 1 Configure the tier 2 system m Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using ASYNC replication mode install the OR tier 3 secondary system m eu-west-1 by using SYNC replication mode.

正解:A、E

解説:
Explanation
Ensures high availability and disaster recovery by using SAP HANA system replication in two different availability zones in eu-central-1, and then installing a third secondary system in eu-west-1 with SYNC replication mode, which provides a fallback option in case of disaster, also it meets the inter-AZ latency requirement.
Ensures high availability and disaster recovery by using SAP HANA system replication in two different availability zones in eu-central-1, and then storing daily backups from tier 1 in an Amazon S3 bucket in eu-central-1 and then using S3 cross-region replication to copy the backups to eu-west-1 where they can be restored if needed, this meets the inter-region latency requirement.


質問 # 25
A company is implementing SAP HANA on AWS According 10 the company's security policy SAP backups must be encrypted Only authorized team members can have the ability to decrypt the SAP backups What is the MOST operationally efficient solution that meets these requirements?

  • A. Configure AWS Storage Gateway to transfer SAP backups from a file system to an Amazon S3 bucket Use an S3 bucket policy to grant decryption permission to authorized team members only
  • B. Configure AWS Backint Agent for SAP HANA to use AWS Key Management Service (AWS KMS) for SAP backups Create a key policy to grant decryption permission to authorized team members only
  • C. Configure AWS Backint Agent for SAP HANA to create SAP backups in an Amazon S3 bucket After a backup is created encrypt the backup by using client-side encryption Share the encryption key with authorized team members only
  • D. Configure AWS Backint Agent for SAP HANA to use AWS Key Management Service (AWS KMS) for SAP backups Grant object ACL decryption permission to authorized team members only

正解:A


質問 # 26
A company wants to migrate its SAP workloads to AWS from another cloud provider. The company's landscape consists of SAP S 4HANA SAP BWMHANA SAP Solution Manager and SAP Web Dispatcher SAP Solution Manager 15 running on SAP NANA The company wants 10 change the operating system from SUSE Linux Enterprise Server to Red Hat Enterprise Linux as a pan of this migration. The company needs a solution that results in the least possible downtime for the SAP SMHANA and SAP BW 4HANA systems.
Which migration solution will meet these requirements?

  • A. Use SAP Software Provisioning Manager to perform a system export/import for SAP S/4HANA SAP BW.4HANA SAP Solution Manager and SAP Web Dispatcher
  • B. Use SAP HANA system replication to replicate the data between the source system and the target AWS system for SAP S 4HANA and SAP BW 4HANA Use SAP Software Provisioning Manager to perform a system export import for SAP Solution Manager Reinstall SAP Web Dispatcher on AWS with the necessary configuration
  • C. Use backup and restore for SAP S'4 HAN A and SAP BW 4HANA Use SAP Software Provisioning Manager to perform a system export import for SAP Solution Manager Reinstall SAP Web Dispatcher on AWS with the necessary configuration.
  • D. Use backup and restore tor SAP S'4HANA. SAP BW4HANA and SAP Solution Manager Reinstall SAP Web Dispatcher on AWS with the necessary configuration

正解:B

解説:
Explanation
This solution uses SAP HANA system replication to replicate the data between the source system and the target AWS system for SAP S/4HANA and SAP BW/4HANA. This will minimize the downtime as the data is replicated in real-time, and once the replication is completed, the company can switch over to the target system with minimal disruption to the business. Additionally, this solution uses SAP Software Provisioning Manager to perform a system export/import for SAP Solution Manager. This will allow the company to migrate the system settings and configurations from the source system to the target system, reducing the time and effort required to reconfigure the system after the migration. Finally, the company can reinstall SAP Web Dispatcher on AWS with the necessary configuration and change the operating system from SUSE Linux Enterprise Server to Red Hat Enterprise Linux.


質問 # 27
A company is implementing SAP HANA on AWS According 10 the company's security policy SAP backups must be encrypted Only authorized team members can have the ability to decrypt the SAP backups What is the MOST operationally efficient solution that meets these requirements?

  • A. Configure AWS Backint Agent for SAP HANA to create SAP backups in an Amazon S3 bucket After a backup is created encrypt the backup by using client-side encryption Share the encryption key with authorized team members only
  • B. Configure AWS Backint Agent for SAP HANA to use AWS Key Management Service (AWS KMS) for SAP backups Grant object ACL decryption permission to authorized team members only
  • C. Configure AWS Backint Agent for SAP HANA to use AWS Key Management Service (AWS KMS) for SAP backups Create a key policy to grant decryption permission to authorized team members only
  • D. Configure AWS Storage Gateway to transfer SAP backups from a file system to an Amazon S3 bucket Use an S3 bucket policy to grant decryption permission to authorized team members only

正解:C

解説:
Explanation
This is the most operationally efficient solution that meets the company's security policy requirements. AWS KMS is a service that enables you to create and manage encryption keys that are used to encrypt and decrypt data. By configuring AWS Backup Agent for SAP HANA to use AWS KMS for SAP backups, the company can ensure that the backups are encrypted at rest and that only authorized team members have the ability to decrypt them. The key policy allows the company to define which team members are authorized to access the key, so that it can be used to decrypt the backup. This approach is operationally efficient because it does not require the company to manually encrypt and decrypt backups, and it enables the company to manage access to the encryption key through IAM policies, without the need for sharing encryption keys.


質問 # 28
A company is planning to migrate its on-premises SAP ERP Central Component (SAP ECC) system on SAP HANA to AWS Each month the system experiences two peaks in usage. The first peak is on the 21st day of the month when the company runs payroll. The second peak is on the last day of the month when the company processes and exports credit data Both peak workloads are of high importance and cannot be rescheduled The current SAP ECC system has six application servers an of a similar size. During normal operation outside of peak usage four application servers would suffice Which purchasing option will meet the company's requirements MOST cost-effectively on AWS?

  • A. Six On-Demand Instances
  • B. Four Reserved Instances and two On-Demand Instances
  • C. Four Reserved Instances and two Spot Instances
  • D. Six Reserved Instances

正解:B

解説:
D is correct because using four Reserved Instances and two On-Demand Instances provides the most cost-effective purchasing option for the company. Reserved Instances offer lower prices than On-Demand Instances for the four application servers that are needed for normal operation. On-Demand Instances offer flexibility and scalability for the two additional application servers that are needed only during peak usage. Spot Instances are not suitable for high-importance workloads that cannot be rescheduled as they can be interrupted at any time. Reference: https://docs.aws.amazon.com/whitepapers/latest/sap-on-aws-technical-deployment-guide/cost-optimization.html https://docs.aws.amazon.com/whitepapers/latest/sap-on-aws-technical-deployment-guide/amazon-ec2.html


質問 # 29
A company is planning to move its on-premises SAP HANA database to AWS. The company needs to migrate this environment to AWS as quickly as possible An SAP solutions architect will use AWS Launch Wizard for SAP to deploy this SAP HANA workload.
Which combination of steps should the SAP solutions architect follow to start the deployment of this workload on AWS? (Select THREE.)

  • A. Create the SAP file system by using Amazon Elastic Block Store (Amazon EBS) before the deployment
  • B. Download the SAP HANA software
  • C. Bring the operating system AMI by using the Bring. Your Own Image (BYOI) model or purchase the subscription for the operating system AMI from AWS Marketplace
  • D. Download and extract the SAP HANA software upload the SAP HANA software to an FTP server that Launch Wizard can access
  • E. Download the AWS CloudFormation template for the SAP HANA deployment
  • F. Upload the unextracted SAP HANA software to an Amazon S3 destination bucket Follow the S3 file path syntax for the software in accordance with Launch Wizard recommendations

正解:B、C、E

解説:
Explanation
To start the deployment of the SAP HANA workload on AWS, the SAP solutions architect should first download the SAP HANA software, download the AWS CloudFormation template for the SAP HANA deployment, and bring the operating system AMI by using the Bring Your Own Image (BYOI) model or purchase the subscription for the operating system AMI from the AWS Marketplace.
Downloading and extracting the SAP HANA software and uploading it to an FTP server that Launch Wizard can access is not a recommended option. Uploading the unextracted SAP HANA software to an Amazon S3 destination bucket is not a valid option as S3 is a storage service and it's not designed to run software. Creating the SAP file system by using Amazon Elastic Block Store (Amazon EBS) before the deployment is not a necessary step in this process as it can be done during the deployment with the help of the AWS CloudFormation template.


質問 # 30
A company is running its SAP workloads on premises and needs to migrate the workloads to AWS All the workloads are running on SUSE Linux Enterprise Server and Oracle Database. The company's landscape consists of SAP ERP Central Component {SAP ECC). SAP Business Warehouse (SAP BW), and SAP NetWeaver systems. The company has a dedicated AWS Direct Connect connection between its on-premises environment and AWS The company needs to migrate the systems to AWS with the least possible downtime Which migration solution will meet these requirements?

  • A. Use SAP Software Provisioning Manager to perform an export of the systems Copy the export to Amazon S3 Use SAP Software Provisioning Manager to perform an import of the systems to Oracle Enterprise Linux and Oracle Database on AWS.
  • B. Use SAP Software Provisioning Manager to perform parallel export/import of the systems to migrate the systems to Oracle Enterprise Linux and Oracle Database on AWS
  • C. Use SAP Software Provisioning Manager to perform an export of the systems Copy the export to Amazon S3 Use SAP Software Provisioning Manager to perform an import of the systems to SUSE Linux Enterprise Server and Oracle Database on AWS
  • D. Use SAP Software Provisioning Manager to perform parallel export import of the systems to migrate the systems to SUSE Linux Enterprise Server and Oracle Database on AWS

正解:B


質問 # 31
A company is hosting its SAP workloads on AWS An SAP solutions architect is designing high availability architecture for the company's production SAP S4HANA and SAP BW-4HANA workloads These workloads have the following requirements.
* Redundant SAP application servers that consist of a primary application server (PAS) and an additional application server (AAS)
* ASCS and ERS instances that use a failover cluster
* Database high availability with a primary DB Instance and a secondary OB instance How should the SAP solutions architect design the architecture to meet these requirements?

  • A. Deploy ASCS and ERS cluster nodes in different subnets across two Availability Zones Deploy the PAS instance and AAS instance m different subnets across two Availability Zones Deploy the primary DB instance and secondary DB instance in different subnets across two Availability Zones Deploy all the components in the same VPC
  • B. Deploy ASCS and ERS cluster nodes in different subnets within the same Availability Zone Deploy the PAS instance and AAS instance in different subnets within the same Availability Zone Deploy the primary DB instance and secondary DB instance m different subnets within the same Availability Zone Deploy all the components in the same VPC
  • C. Deploy ASCS and ERS cluster nodes in different subnets across two Availability Zones Deploy the PAS instance and AAS instance m different subnets across two Availability Zones Deploy the primary DB instance and secondary DB instance in different subnets across two Availability Zones Deploy the ASCS instance PAS instance and primary DB instance in one VPC Deploy the ERS instance AAS instance and secondary DB instance in a different VPC
  • D. Deploy ASCS and ERS duster nodes m different subnets within the same Availability Zone Deploy the PAS instance and AAS instance in different subnets within the same Availably Zone Deploy the primary DB instance and secondary DB instance m different subnets within the same Availability Zone Deploy the ASCS instance PAS instance and primary DB instance in one VPC Deploy the ERS instance AAS instance and secondary DB instance in a different VPC

正解:A

解説:
This solution would ensure that the ASCS and ERS instances are deployed in different subnets across different Availability Zones, providing redundancy for the failover cluster. The PAS and AAS instances are also deployed in different subnets across different Availability Zones, providing redundancy for the application servers. The primary and secondary DB instances are also deployed in different subnets across different Availability Zones, providing redundancy for the database. Additionally, all the components are deployed in the same VPC, which will minimize the cost of communication between the application server and the database server.
C is correct because deploying ASCS and ERS cluster nodes, PAS and AAS instances, and primary and secondary DB instances in different subnets across two Availability Zones provides high availability and fault tolerance for the SAP workloads. Deploying all the components in the same VPC allows for low-latency communication between them. Reference: https://docs.aws.amazon.com/whitepapers/latest/sap-on-aws-technical-deployment-guide/high-availability.html https://docs.aws.amazon.com/whitepapers/latest/sap-on-aws-technical-deployment-guide/vpc-design.html


質問 # 32
A company hosts its SAP NetWeaver workload on SAP HANA m the AWS Cloud The SAP NetWeaver application is protected by a cluster solution that uses Red Hat Enterprise Linux High Availability Add-On The duster solution uses an overlay IP address to ensure that the high availability cluster is still accessible during failover scenarios.
An SAP solutions architect needs to facilitate the network connection to this overlay IP address from multiple locations These locations include more than 25 VPCs other AWS Regions and the on-premises environment The company already has set up an AWS Direct Connect connection between the on-premises environment and AWS.
What should the SAP solutions architect do to meet these requirements in the MOST scalable manner?

  • A. Deploy a Direct Connect gateway to connect the Direct Connect connection over a private VIF to one or more VPCs in any accounts
  • B. Use a Network Load Balancer to route connections to various targets within VPCs
  • C. Use VPC peering between the VPCs to route traffic between them
  • D. Use AWS Transit Gateway to connect the VPCs and on-premises networks together

正解:A


質問 # 33
A company has deployed SAP HANA m the AWS Cloud. The company needs its SAP HAN A database to be highly available An SAP solutions architect has deployed the SAP HANA database in separate Availability Zones in a single AWS Region SUSE Linux Enterprise High Availability Extension is configured with an overlay IP address. The overlay IP resource agent has the following IAM policy:

During a test of failover the SAP solutions architect finds that the overlay IP address does not change to the secondary Availability Zone Which change should the SAP solutions architect make in the policy statement for Sid oip1 to dx this error1?

  • A. Change the Action element to ec2 ReplaceRouteTableAssociation
  • B. Change the Action element to ec2 ReplaceRoute
  • C. Change the Action element to ec2 ReplaceTransrtGatewayRoute
  • D. Change the Action element to ec2 CreateRoute

正解:B


質問 # 34
A company is running an SAP HANA database on AWS. The company wants to manage historical infrequently accessed warm data for a native SAP HANA use case An SAP solutions architect needs to recommend a solution that can provide online data storage m extended store available for queries and updates.
The solution must be an integrated component of the SAP HANA database and must allow the storage of up to five limes more data in the warm tier than in the not tier Which solution will meet these requirements?

  • A. Use an SAP HANA extension node
  • B. Use Amazon Data lifecycle Manager (Amazon DLM) with SAP Data Hub to move data in and out of the SAP HANA database to Amazon S3
  • C. Use SAP HANA dynamic tiering as an optional add-on to the SAP HANA database
  • D. Use Amazon Data Lifecycle Manager (Amazon DLM) with SAP HANA spark controller so that SAP HANA can access the data through the Spark SQL SDA adapter

正解:C

解説:
Explanation
This is a feature of the SAP HANA database that allows for the management of historical, infrequently accessed data and provides an integrated solution for data storage in the warm tier. It allows for the storage of up to five times more data in the warm tier than in the hot tier, and it allows for online data storage that is available for queries and updates.


質問 # 35
A company is planning to move all its SAP applications to Amazon EC2 instances in a VPC Recently the company signed a multiyear contract with a payroll software-as-a-service (SaaS) provider integration with the payroll SaaS solution is available only through public web APIs.
Corporate security guidelines state that all outbound traffic must be validated against an allow list. The payroll SaaS provider provides only fully qualified domain name (FQDN) addresses and no IP addresses or IP address ranges Currently, an on-premises firewall appliance filters FQDNs. The company needs to connect an SAP Process Orchestration (SAP PO) system to the payroll SaaS provider.
What must the company do on AWS to meet these requirements?

  • A. Add an outbound rule to the security group of the SAP PO system to allow the FODN of the payroll SaaS provider and deny all other outbound traffic
  • B. Add an AWS WAF web ACL to the VPC Add an outbound rule to allow the SAP PO system to connect to the FQDN of the payroll SaaS provider
  • C. Add an outbound rule to the network ACL of the subnet that contains the SAP PO system to allow the FQDN of the payroll SaaS provider and deny all other outbound traffic
  • D. Add an AWS Network Firewall firewall to the VPC Add an outbound rule to allow the SAP PO system to connect to the FQDN of the payroll SaaS provider

正解:D

解説:
FQDN filtering can be achieved only through Firewall https://aws.amazon.com/blogs/security/use-aws-network-firewall-to-filter-outbound-https-traffic-from-applications-hosted-on-amazon-eks/


質問 # 36
A company wants 10 migrate its SAP ERP landscape to AWS The company will use a highly available distributed deployment for the new architecture Clients will access SAP systems from a local data center through an AWS Site-to-Site VPN connection that is already in place An SAP solutions architect needs to design the network access to the SAP production environment Which configuration approaches will meet these requirements? (Select TWO.)

  • A. For the ASCS instance configure an overlay IP address that is within the production VPC ClDR range Create a target group that points to the overlay IP address Create a Network Load Balancer and register the target group Create a static route on the production VPC to route traffic that is directed to the overlay IP address to the ASCS instance
  • B. For the ASCS instance configure an overlay IP address that is outside the production VPC ClDR range Create a target group that points to the overlay IP address Create a Network Load Balancer, and register the target group Create a static route on the production VPC to route traffic that is directed to the overlay IP address to the ASCS instance
  • C. For the ASCS instance configure an overlay IP address that is outside the production VPC ClDR range Create a target group that points to the overlay IP address Create an Application Load Balancer and register the target group Create a static route on the production VPC to route traffic that is directed to the overlay IP address to the ASCS instance.
  • D. For the ASCS instance configure an overlay IP address that is within the production VPC ClDR range Create an AWS Transit Gateway Attach me VPN to the transit gateway Use the transit gateway to route the communications between the local data center and the production VPC Create a static route on the production VPC to route traffic that is directed to the overlay IP address to the ASCS instance
  • E. For the ASCS instance configure an overlay IP address that is outside the production VPC ClDR range Create an AWS Transit Gateway Attach the VPN to the transit gateway Use the transit gateway to route the communications between the local data center and the production VPC Create a static route on the production VPC to route traffic that is directed to the overlay IP address to the ASCS instance

正解:D、E


質問 # 37
An SAP solutions architect is leading the SAP basis team for a company. The company's SAP landscape includes SAP HANA database instances for the following systems sandbox development quality assurance test
{QAT} system performance test (SPT) and production. The sandbox development and OAT systems are running on Amazon EC2 On-Demand Instances. The SPT and production systems are running on EC2 Reserved Instances All the EC2 instances are using Provisioned IOPS SSO (K)2) Amazon Elastic Block Store (Amazon EBS) volumes.
The entire development learn is in the same time zone and works from 8 AM to 6 PM. The sandbox system is for research and testing that are not critical. The SPT and production systems are business critical The company runs load-testing jobs and stress-testing jobs on the QAT systems overnight to reduce testing duration. The company wants to optimize infrastructure cost for the existing AWS resources.
How can the SAP solutions architect meet these requirements with the LEAST amount of administrative effort?

  • A. Use a Spot Fleet instead of the Reserved Instances and On-Demand Instances
  • B. Use Amazon EventBridge (Amazon CloudWatch Events) and Amazon CloudWatch alarms to stop the development and sandbox EC2 instances from 7 PM every night to 7 AM the next day
  • C. Change the EBS volume type to Throughput Optimized HDD (sti) for the /hana/data and nana, log file systems for the production and non-production SAP HANA databases
  • D. Make the SAP basis team available 24 hours a day 7 days a week to use the AWS CLi to stop and start the development and sandbox EC2 instances manually

正解:C


質問 # 38
A company wants 10 implement SAP HANAonAWS with the Multi-AZ deployment option by using AWS Launch Wizard for SAP The solution will use SUSE Linux Enterprise High Availability Extension for the high availability deployment An SAP solutions architect must ensure that all the prerequisites are met The SAP solutions architect also must ensure that the user inputs to start the guided deployment of Launch Wizard are valid.
Which combination of steps should the SAP solutions architect take to meet these requirements? (Select TWO)

  • A. Use a value for the PaceMakerTag parameter that is not used by any other Amazon EC2 instances in the AWS Region where the system is being deployed
  • B. Before starting the Launch Wizard deployment set up the SUSE Linux Enterprise High Availability Extension network configuration and security group
  • C. Before starting the Launch Wizard deployment create the underlying Amazon Elastic Block Store (Amazon EBS) volume types to use for SAP HANA data and log volumes based on the performance requirements
  • D. Ensure that the virtual hostname for the SAP HANA database that is used for the SUSE Linux Enterprise High Availability Extension configuration is not used in any other deployed accounts
  • E. Ensure that the Virtual Address parameter is outside the VPC CIDR and is not being used in the route table that is associated with the subnets where primary and secondary SAP HANA instances will be deployed

正解:A、B


質問 # 39
An SAP specialist is budding an SAP environment The SAP environment contains Amazon EC2 instances that fun in a private subnet in a VPC. The VPC includes a NAT gateway.
The SAP specialist is selling up IBM Db2 high availability disaster recovery for the SAP duster. After configuration of overlay IP address routing traffic is not routing to the database EC2 instances.
What should the SAP specialist do to resolve this issue?

  • A. Open a security group tor SAP ports to allow traffic on port 443
  • B. Create route table entries to allow traffic from the database EC2 instances to the NAT gateway
  • C. Turn off the source destination check for the database EC2 instances
  • D. Create an IAM role that has permission to access network traffic Associate the role with the database EC2 instances

正解:B


質問 # 40
A financial services company is implementing SAP core banking on AWS. The company must not allow any system information to traverse the public internet. The company needs to implement secure monitoring of its SAP ERP Central Component (SAP ECO system to check for performance issues and faults in its application.
The solution must maximize security and must be supported by SAP and AWS.
How should be company integrate AWS metrics with its SAP system to meet these requirements?

  • A. install the AWS data Provider for SAP on the Amazon EC2 instances that host SAP Create VPC endpoints for Amazon CloudWatch and Amazon EC2 Allow access through these endpoints Create an IAM policy that allows al actions for all EC2 resources.
  • B. Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Allow access to the Amazon CloudWatch and EC2 endpoints through a NAT gateway Create an IAM policy that allows the ec2 Describeinstances action the cloudwatch.GetMetricStatistics action and the ec2 DescribeVolumes action for all EC2 resources.
  • C. Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Create VPC endpoints for Amazon CloudWatch and Amazon EC2 Allow access through these endpoints Create an IAM policy that allows the ec2 Describe instances action the cloudwatch GetMemcStatistics action and the ec2 DescribeVolumes action tor all EC2 resources.
  • D. Set up SAP Solution Manager to call Amazon CoudWatch and Amazon EC2 endpoints with REST-based calls to populate SAPOSCOL details Use SAP transaction ST06N to monitor CPU and memory utilization on each EC2 instance

正解:D


質問 # 41
A company is planning to migrate its on-premises SAP application to AWS. The application runs on VMware vSphere The SAP ERP Central Component (SAP ECC) server runs on an IBM Db2 database that is 2 TB m size The company wants to migrate the database to SAP HANA Which migration strategy will meet these requirements'?

  • A. Use AWS Server Migration Service (AWS SMS)
  • B. Use AWS Database Migration Service (AWS DMS)
  • C. Use AWS Application Migration Service (CloudEndure Migration)
  • D. Use SAP Software Update Manager (SUM) Database Migration Option (DMO) with System Move

正解:C


質問 # 42
A company runs its SAP ERP 6 0 EHP 8 system on SAP HANAon AWS The system is deployed on an r4 I6xlarge Amazon EC2 instance with default tenancy. The company needs to migrate the SAP HANA database to an x2gd/.6xiarge High Memory instance After an operations engineer changes the instance type and starts the instance the AWS Management Console shows a failed instance status check What is the cause of this problem?

  • A. The operations engineer did not install Elastic Network Adapter (ENA) drivers before changing the instance type
  • B. The operations engineer did not create a new AMI from the original instance and did not launch a new instance with dedicated tenancy from the AMI
  • C. The operations engineer missed the Amazon CloudWatch configuration step during the post-migration activities.
  • D. The operations engineer missed the network configuration step during the post-migration activities

正解:A

解説:
Explanation
The Elastic Network Adapter (ENA) is a software-based network interface that provides high-performance network connectivity and is required for instances with higher network performance requirements. If the ENA drivers are not installed before changing the instance type, the instance will not be able to communicate with the network, resulting in a failed instance status check.


質問 # 43
A financial services company is implementing SAP core banking on AWS. The company must not allow any system information to traverse the public internet. The company needs to implement secure monitoring of its SAP ERP Central Component (SAP ECO system to check for performance issues and faults in its application. The solution must maximize security and must be supported by SAP and AWS.
How should be company integrate AWS metrics with its SAP system to meet these requirements?

  • A. Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Create VPC endpoints for Amazon CloudWatch and Amazon EC2 Allow access through these endpoints Create an IAM policy that allows the ec2 Describe instances action the cloudwatch GetMemcStatistics action and the ec2 DescribeVolumes action for all EC2 resources.
  • B. install the AWS data Provider for SAP on the Amazon EC2 instances that host SAP Create VPC endpoints for Amazon CloudWatch and Amazon EC2 Allow access through these endpoints Create an IAM policy that allows all actions for all EC2 resources.
  • C. Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Allow access to the Amazon CloudWatch and EC2 endpoints through a NAT gateway Create an IAM policy that allows the ec2 Describeinstances action the cloudwatch.GetMetricStatistics action and the ec2 DescribeVolumes action for all EC2 resources.
  • D. Set up SAP Solution Manager to call Amazon CoudWatch and Amazon EC2 endpoints with REST-based calls to populate SAPOSCOL details Use SAP transaction ST06N to monitor CPU and memory utilization on each EC2 instance

正解:A

解説:
VPC endpoints to ensure that traffic to and from the CloudWatch and EC2 services stays within the VPC. Additionally, an IAM policy is created to grant access to only the necessary actions, such as DescribeInstances and GetMetricStatistics, for all EC2 resources. This approach will provide secure monitoring of the SAP system while maximizing security and ensuring support from both SAP and AWS.
https://docs.aws.amazon.com/sap/latest/general/data-provider-req.html#vpc-endpoints


質問 # 44
A company is running its SAP workloads on premises and needs to migrate the workloads to AWS All the workloads are running on SUSE Linux Enterprise Server and Oracle Database. The company's landscape consists of SAP ERP Central Component {SAP ECC). SAP Business Warehouse (SAP BW), and SAP NetWeaver systems. The company has a dedicated AWS Direct Connect connection between its on-premises environment and AWS The company needs to migrate the systems to AWS with the least possible downtime Which migration solution will meet these requirements?

  • A. Use SAP Software Provisioning Manager to perform an export of the systems Copy the export to Amazon S3 Use SAP Software Provisioning Manager to perform an import of the systems to Oracle Enterprise Linux and Oracle Database on AWS.
  • B. Use SAP Software Provisioning Manager to perform parallel export/import of the systems to migrate the systems to Oracle Enterprise Linux and Oracle Database on AWS
  • C. Use SAP Software Provisioning Manager to perform an export of the systems Copy the export to Amazon S3 Use SAP Software Provisioning Manager to perform an import of the systems to SUSE Linux Enterprise Server and Oracle Database on AWS
  • D. Use SAP Software Provisioning Manager to perform parallel export import of the systems to migrate the systems to SUSE Linux Enterprise Server and Oracle Database on AWS

正解:B

解説:
It is mandatory to have Oracle Enterprise Linux(OEL) as the operating system for running Oracle database for SAP. https://launchpad.support.sap.com/#/notes/1656250


質問 # 45
A company hosts an SAP HANA database on an Amazon EC2 instance in the us-easi-1 Region. The company needs to implement a disaster recovery (DR) site in the us-west-1 Region. The company needs a cost-optimized solution that offers a guaranteed capacity reservation an RPO of less than 30 minutes and an RTO of less than 30 minutes.
When solution will meet these requirements?

  • A. Deploy a single EC2 instance to support the secondary database in us-west with additional storage Use this secondary database instance to support QA and production Configure the primary SAP HANA database in us-east-1 to constantly replicate the data to the secondary SAP HANA database in us-west-t by using SAP HANA system replication with preload off During DR shut down the QA SAP HANA instance and restart the production services at the secondary site
  • B. Set up the primary SAP HANA database in us-east-1 to constantly replicate the data to a secondary SAP HANA database in us-west-1 by using SAP HANA system replication with preload on Keep the secondary SAP HANA instance as a hot standby that rs ready to take over in case of failure
  • C. Create an SAP HANA database AMI by using Amazon Elastic Block Store (Amazon EBS) snapshots Replicate the database and log backup files from a primary Amazon S3 bucket in us-east-1 to a secondary S3 bucket m us-west-1 During DR launch the EC2 instance in us-west-1 based on AMIs that are replicated Update host information Download database and log backups from the secondary S3 bucket Perform a point-in-time recovery
  • D. Deploy a secondary staging server on an EC2 instance in us-west-1 Use CloudEndure Disaster Recovery to replicate changes at the database level from us-east-1 to the secondary staging server on an ongoing basis During DR, initiate cutover increase the size of the secondary EC2 instance to match the primary EC2 instance and start the secondary EC2 instance

正解:A


質問 # 46
An SAP solutions architect is leading the SAP basis team for a company. The company's SAP landscape includes SAP HANA database instances for the following systems sandbox development quality assurance test {QAT} system performance test (SPT) and production. The sandbox development and OAT systems are running on Amazon EC2 On-Demand Instances. The SPT and production systems are running on EC2 Reserved Instances All the EC2 instances are using Provisioned IOPS SSO (K)2) Amazon Elastic Block Store (Amazon EBS) volumes.
The entire development learn is in the same time zone and works from 8 AM to 6 PM. The sandbox system is for research and testing that are not critical. The SPT and production systems are business critical The company runs load-testing jobs and stress-testing jobs on the QAT systems overnight to reduce testing duration. The company wants to optimize infrastructure cost for the existing AWS resources.
How can the SAP solutions architect meet these requirements with the LEAST amount of administrative effort?

  • A. Use a Spot Fleet instead of the Reserved Instances and On-Demand Instances
  • B. Use Amazon EventBridge (Amazon CloudWatch Events) and Amazon CloudWatch alarms to stop the development and sandbox EC2 instances from 7 PM every night to 7 AM the next day
  • C. Change the EBS volume type to Throughput Optimized HDD (sti) for the /hana/data and nana, log file systems for the production and non-production SAP HANA databases
  • D. Make the SAP basis team available 24 hours a day 7 days a week to use the AWS CLi to stop and start the development and sandbox EC2 instances manually

正解:C


質問 # 47
......


Amazon PAS-C01(AWS Certified:SAP on AWS - Specialty)試験は、AWSプラットフォーム上でSAPアプリケーションを展開、実行、管理することに関心がある専門家のための認定です。SAPは、世界中のビジネスで使用されている人気のある企業リソースプランニングソフトウェアであり、AWSは主要なクラウドサービスプロバイダーです。この認定は、候補者がAWS上でSAPアプリケーションを設計、展開し、パフォーマンスを最適化し、高可用性と災害復旧を確保する能力を検証します。

 

2023年最新の実際にある検証済みのPAS-C01問題集:https://www.jpntest.com/shiken/PAS-C01-mondaishu

合格させるPAS-C01試験で更新された67問題あります:https://drive.google.com/open?id=1ju7c26gucXt6u4RU2I7HbLjXQnLYC61B

関するブログ

もっと
PAS-C01無料問題集

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡 

関連リンク

トップ試験