Q15 — AWS SAP-C02 Ch.1
Question 15 of 75 | ← Chapter 1
Q90. A company is planning to store a large number of archived documents and make the documents available to employees through the corporate intranet Employees will access the system by connecting through a client VPN service that is attached to a VPC. The data must not be accessible to the public. The documents that the company is storing are copies of data that is held on physical media elsewhere. The number of requests will be low Availability and speed of retrieval are not concerns of the company. Which solution will meet these requirements at the LOWEST cost?
- A. Create an Amazon S3 bucket Configure the S3 bucket to use the S3 One Zone-Infrequent Access (S3 One Zone-IA) storage class as default. Configure the S3 bucket for website hosting. Create an S3 interface endpoint. Configure the S3 bucket to allow access only through that endpoint ✓
- B. Launch an Amazon EC2 instance that runs a web server. Attach an Amazon Elastic File System (Amazon EFS) file system to store the archived data in the EFS One Zone-Infrequent Access (EFS One Zone-IA) storage class. Configure the instance security groups to allow access only from private networks
- C. Launch an Amazon EC2 instance that runs a web server. Attach an Amazon Elastic Block Store (Amazon EBS) volume to store the archived data Use the Cold HDD (sc1) volume type. Configure the instance security groups to allow access only from private networks
- D. Create an Amazon S3 bucket. Configure the S3 bucket to use the S3 Glacier Deep Archive storage class as default Configure the S3 bucket for website hosting. Create an S3interface endpoint. Configure the S3 bucket to allow access only through that endpoint
Correct Answer: A. Create an Amazon S3 bucket Configure the S3 bucket to use the S3 One Zone-Infrequent Access (S3 One Zone-IA) storage class as default. Configure the S3 bucket for website hosting. Create an S3 interface endpoint. Configure the S3 bucket to allow access only through that endpoint
Explanation
The correct answer is: A. Create an Amazon S3 bucket. Configure the S3 bucket to use the S3 One Zone-Infrequent Access (S3 One Zone-IA) storage class as default. Configure the S3 bucket for website hosting. Create an S3 interface endpoint. Configure the S3 bucket to allow access only through that endpoint. Option A provides the lowest cost solution that meets the given requirements of storing and making archived documents available to employees through a corporate intranet with restricted access. By creating an Amazon S3 bucket and configuring it to use the S3 One Zone-Infrequent Access (S3 One Zone-IA) storage class, you can store the archived documents at a low cost. The S3 One Zone-IA storage class is designed for infrequently accessed data, providing cost savings compared to other storage classes. Configuring the S3 bucket for website hosting allows employees to access the documents through the corporate intranet. By creating an S3 interface endpoint, you ensure that the access to the S3 bucket is limited to your VPC, maintaining the data's privacy and preventing public access. With this solution, you avoid the need for managing and maintaining EC2 instances or EFS/EBS volumes, which can be more expensive and require additional management overhead. Overall, this solution provides a cost-effective way to store and make archived documents available to employees while ensuring restricted access and maintaining data privacy.