An internal product team is deploying a new application to a private VPC in a...

Amazon Web Services SAA-C03 Question Answer

An internal product team is deploying a new application to a private VPC in a company's AWS account. The application runs on Amazon EC2 instances that are in a security group named App1. The EC2 instances store application data in an Amazon S3 bucket and use AWS Secrets Manager to store application service credentials. The company's security policy prohibits applications in a private VPC from using public IP addresses to communicate.

Which combination of solutions will meet these requirements? (Select TWO.)

Configure gateway endpoints for Amazon S3 and AWS Secrets Manager.

Configure interface VPC endpoints for Amazon S3 and AWS Secrets Manager.

Add routes to the endpoints in the VPC route table.

Associate the App1 security group with the interface VPC endpoints. Configure a self-referencing security group rule to allow inbound traffic.

Associate the App1 security group with the gateway endpoints. Configure a self-referencing security group rule to allow inbound traffic.

Amazon Web Services SAA-C03 View All Questions

Amazon Web Services SAA-C03 Summary

Vendor: Amazon Web Services
Product: SAA-C03
Update on: Feb 4, 2026
Questions: 649

Price: $52.5 ~~$149.99~~

Buy Now SAA-C03 PDF + Testing Engine Pack

A company runs a Microsoft Windows SMB file share on-premises to support an application.

Question:A healthcare company uses an Amazon EMR cluster to process patient data.

Winter Special Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: vce65

An internal product team is deploying a new application to a private VPC in a...

The Answer Is:

Explanation:

Amazon Web Services SAA-C03 Summary

Payments We Accept

Contact Us