Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Amazon Exam PAS-C01 Topic 5 Question 39 Discussion

Actual exam question for Amazon's PAS-C01 exam
Question #: 39
Topic #: 5
[All PAS-C01 Questions]

A financial services company is implementing SAP core banking on AWS. The company must not allow any system information to traverse the public internet. The company needs to implement secure monitoring of its SAP ERP Central Component (SAP ECO system to check for performance issues and faults in its application. The solution must maximize security and must be supported by SAP and AWS.

How should be company integrate AWS metrics with its SAP system to meet these requirements?

Show Suggested Answer Hide Answer
Suggested Answer: C

VPC endpoints to ensure that traffic to and from the CloudWatch and EC2 services stays within the VPC. Additionally, an IAM policy is created to grant access to only the necessary actions, such as DescribeInstances and GetMetricStatistics, for all EC2 resources. This approach will provide secure monitoring of the SAP system while maximizing security and ensuring support from both SAP and AWS.

https://docs.aws.amazon.com/sap/latest/general/data-provider-req.html#vpc-endpoints


by Dudley at Jul 15, 2024, 02:55 PM

Limited Time Offer

25%

Off

Get Premium PAS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Long
4 months ago
Option C is the way to go, no doubt. And hey, at least we're not being asked to monitor the SAP system using carrier pigeons or something!
upvoted 0 times
Karina
4 months ago
Haha, yeah, thank goodness for modern technology!
upvoted 0 times
...
Gladis
4 months ago
Option C is definitely the best choice for integrating AWS metrics with SAP.
upvoted 0 times
...
...
Edison
4 months ago
This question is making my head spin. I hope the real exam isn't this complex! At least the options are well-written and easy to understand.
upvoted 0 times
Herminia
3 months ago
C) Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Create VPC endpoints for Amazon CloudWatch and Amazon EC2 Allow access through these endpoints Create an IAM policy that allows the ec2 Describe instances action the cloudwatch GetMemcStatistics action and the ec2 DescribeVolumes action for all EC2 resources.
upvoted 0 times
...
Latanya
3 months ago
B) Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Allow access to the Amazon CloudWatch and EC2 endpoints through a NAT gateway Create an IAM policy that allows the ec2 Describeinstances action the cloudwatch.GetMetricStatistics action and the ec2 DescribeVolumes action for all EC2 resources.
upvoted 0 times
...
Estrella
4 months ago
A) Set up SAP Solution Manager to call Amazon CoudWatch and Amazon EC2 endpoints with REST-based calls to populate SAPOSCOL details Use SAP transaction ST06N to monitor CPU and memory utilization on each EC2 instance
upvoted 0 times
...
...
Carline
4 months ago
I think option D is too risky as it allows all actions for all EC2 resources. We should prioritize security and limit access to specific actions.
upvoted 0 times
...
Josphine
4 months ago
But option C also seems valid, with creating VPC endpoints for Amazon CloudWatch and EC2 and allowing access through those endpoints.
upvoted 0 times
...
Margot
4 months ago
I wonder if the exam writers are trying to trick us with all these options. They all seem fairly similar, but option C looks like the most complete and secure solution.
upvoted 0 times
Tatum
3 months ago
Let's make sure to follow the steps in option C carefully to implement the solution correctly.
upvoted 0 times
...
Rodolfo
3 months ago
I think we should go with option C to ensure maximum security for our SAP system on AWS.
upvoted 0 times
...
Josefa
4 months ago
I agree, it covers all the necessary steps to integrate AWS metrics with SAP system securely.
upvoted 0 times
...
Stephanie
4 months ago
Option C looks like the most complete and secure solution.
upvoted 0 times
...
...
Lorean
5 months ago
Option B also looks promising, but I'm not sure if a NAT gateway is the most secure approach. The VPC endpoints in option C seem like a better fit for the requirements.
upvoted 0 times
Camellia
3 months ago
C) Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Create VPC endpoints for Amazon CloudWatch and Amazon EC2 Allow access through these endpoints Create an IAM policy that allows the ec2 Describe instances action the cloudwatch GetMemcStatistics action and the ec2 DescribeVolumes action for all EC2 resources.
upvoted 0 times
...
Abel
4 months ago
B) Install the AWS Data Provider for SAP on the Amazon EC2 instances that host SAP Allow access to the Amazon CloudWatch and EC2 endpoints through a NAT gateway Create an IAM policy that allows the ec2 Describeinstances action the cloudwatch.GetMetricStatistics action and the ec2 DescribeVolumes action for all EC2 resources.
upvoted 0 times
...
Louisa
4 months ago
A) Set up SAP Solution Manager to call Amazon CloudWatch and Amazon EC2 endpoints with REST-based calls to populate SAPOSCOL details Use SAP transaction ST06N to monitor CPU and memory utilization on each EC2 instance
upvoted 0 times
...
Eden
4 months ago
Let's go with option C then for integrating AWS metrics with SAP.
upvoted 0 times
...
Eden
4 months ago
I agree, setting up VPC endpoints seems like a more secure solution.
upvoted 0 times
...
Rashida
4 months ago
I think option C is the best choice for secure monitoring.
upvoted 0 times
...
...
Shannon
5 months ago
This question seems to be testing our understanding of secure monitoring options for SAP on AWS. I think option C is the way to go - it leverages VPC endpoints to ensure no data traverses the public internet, and the IAM policy is more restricted than option D.
upvoted 0 times
Wilburn
5 months ago
Yes, option C with VPC endpoints and restricted IAM policy is definitely the best approach for secure monitoring.
upvoted 0 times
...
Johnetta
5 months ago
I agree, option C seems to be the most secure choice for integrating AWS metrics with SAP.
upvoted 0 times
...
...
Pamella
5 months ago
I disagree, I believe option B is more secure as it involves installing the AWS Data Provider for SAP on the Amazon EC2 instances and creating an IAM policy for specific actions.
upvoted 0 times
...
Josphine
5 months ago
I think option A is the best choice because it involves setting up SAP Solution Manager to call Amazon CloudWatch and EC2 endpoints with REST-based calls.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77