Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Amazon AWS Certified SAP on AWS - Specialty PAS-C01

Amazon AWS Certified SAP on AWS - Specialty PAS-C01 Exam Practice Questions (P. 5)

  • Full Access (130 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
A company’s basis administrator is planning to deploy SAP on AWS in Linux. The basis administrator must set up the proper storage to store SAP HANA data and log volumes.
Which storage options should the basis administrator choose to meet these requirements? (Choose two.)
  1. A
    Amazon Elastic Block Store (Amazon EBS) Throughput Optimized HDD (st1)
  2. B
    Amazon Elastic Block Store (Amazon EBS) Provisioned OPS SSD (io1, io2)
  3. C
    Amazon S3
  4. D
    Amazon Elastic File System (Amazon EFS)
  5. E
    Amazon Elastic Block Store (Amazon EBS) General Purpose SSD (gp2, gp3)

Correct Answer:
CD

Question #22
A company has deployed a highly available SAP NetWeaver system on SAP HANA into a VPC. The system is distributed across multiple Availability Zones within a single AWS Region. SAP NetWeaver is running on SUSE Linux Enterprise Server for SAP. SUSE Linux Enterprise High Availability Extension is configured to protect SAP ASCS and ERS instances and uses the overlay IP address concept. The SAP shared files /sapmnt and /usr/sap/trans are hosted on an Amazon Elastic File System (Amazon EFS) file system.
The company needs a solution that uses already-existing private connectivity to the VPC. The SAP NetWeaver system must be accessible through the SAP GUI client tool.
Which solutions will meet these requirements? (Choose two.)
  1. A
    Deploy an Application Load Balancer. Configure the overlay IP address as a target.
  2. B
    Deploy a Network Load Balancer. Configure the overlay IP address as a target.
  3. C
    Use an Amazon Route 53 private zone. Create an A record that has the overlay IP address as a target.
  4. D
    Use AWS Transit Gateway. Configure the overlay IP address as a static route in the transit gateway route table. Specify the VPC as a target.
  5. E
    Use a NAT gateway. Configure the overlay IP address as a target.

Correct Answer:
CE

Question #23
A company is planning to move all its SAP applications to Amazon EC2 instances in a VPC. Recently, the company signed a multiyear contract with a payroll software-as-a-service (SaaS) provider. Integration with the payroll SaaS solution is available only through public web APIs.
Corporate security guidelines state that all outbound traffic must be validated against an allow list. The payroll SaaS provider provides only fully qualified domain name (FQDN) addresses and no IP addresses or IP address ranges. Currently, an on-premises firewall appliance filters FQDNs. The company needs to connect an SAP Process Orchestration (SAP PO) system to the payroll SaaS provider.
What must the company do on AWS to meet these requirements?
  1. A
    Add an outbound rule to the security group of the SAP PO system to allow the FQDN of the payroll SaaS provider and deny all other outbound traffic.
  2. B
    Add an outbound rule to the network ACL of the subnet that contains the SAP PO system to allow the FQDN of the payroll SaaS provider and deny all other outbound traffic.
  3. C
    Add an AWS WAF web ACL to the VPAdd an outbound rule to allow the SAP PO system to connect to the FQDN of the payroll SaaS provider.
  4. D
    Add an AWS Network Firewall firewall to the VPC. Add an outbound rule to allow the SAP PO system to connect to the FQDN of the payroll SaaS provider.

Correct Answer:
D

Question #24
A company is planning to migrate its on-premises SAP application to AWS. The application runs on VMware vSphere. The SAP ERP Central Component (SAP ECC) server runs on an IBM Db2 database that is 2 TB in size. The company wants to migrate the database to SAP HANA.
Which migration strategy will meet these requirements?
  1. A
    Use AWS Application Migration Service (CloudEndure Migration).
  2. B
    Use SAP Software Update Manager (SUM) Database Migration Option (DMO) with System Move.
  3. C
    Use AWS Server Migration Service (AWS SMS).
  4. D
    Use AWS Database Migration Service (AWS DMS).

Correct Answer:
A

Question #25
A company hosts multiple SAP applications on Amazon EC2 instances in a VPC. While monitoring the environment, the company notices that multiple port scans are attempting to connect to SAP portals inside the VPC. These port scans are originating from the same IP address block. The company must deny access to the VPC from all the offending IP addresses for the next 24 hours.
Which solution will meet this requirement?
  1. A
    Modify network ACLs that are associated with all public subnets in the VPC to deny access from the IP address block.
  2. B
    Add a rule in the security group of the EC2 instances to deny access from the IP address block.
  3. C
    Create a policy in AWS Identity and Access Management (IAM) to deny access from the IP address block.
  4. D
    Configure the firewall in the operating system of the EC2 instances to deny access from the IP address block.

Correct Answer:
C

Previous Questions Next Questions

All Pages