Examice

Exam SAA-C03 All QuestionsBrowse all questions from this exam

Question 811

A company wants to set up Amazon Managed Grafana as its visualization tool. The company wants to visualize data from its Amazon RDS database as one data source. The company needs a secure solution that will not expose the data over the internet.

Which solution will meet these requirements?

Create an Amazon Managed Grafana workspace without a VPC. Create a public endpoint for the RDS database. Configure the public endpoint as a data source in Amazon Managed Grafana.

Create an Amazon Managed Grafana workspace in a VPC. Create a private endpoint for the RDS database. Configure the private endpoint as a data source in Amazon Managed Grafana.

Create an Amazon Managed Grafana workspace without a VPCreate an AWS PrivateLink endpoint to establish a connection between Amazon Managed Grafana and Amazon RDS. Set up Amazon RDS as a data source in Amazon Managed Grafana.

Create an Amazon Managed Grafana workspace in a VPC. Create a public endpoint for the RDS database. Configure the public endpoint as a data source in Amazon Managed Grafana.

Correct Answer: B

The company wants to visualize data from its Amazon RDS database using Amazon Managed Grafana without exposing the data over the internet. To ensure security and private connectivity, creating an Amazon Managed Grafana workspace within a VPC and configuring a private endpoint for the RDS database is the best solution. This way, all interactions between the Grafana workspace and the RDS database will remain within the private network, ensuring that no data is exposed externally.

Discussion

Sergiuss95Option: B

I think is b. Private endpoint sounds like private vpc endpoint, that is equals to privatelink

BazzixOption: B

B is correct

osmkOption: C

cccc ccc

EdricHoangOption: B

Its B. C is also a valid choice "Not exposing to the internet" is letting me eliminate C

NSA_Poker

(B) "a private endpoint" & (C) "an AWS PrivateLink endpoint" do NOT expose traffic to the internet. (A & D) eliminated. "a public endpoint for the RDS database" would "expose the data over the internet"

ike001

B as you need to create Managed Grafana workspace with a VPC for private access https://docs.aws.amazon.com/grafana/latest/userguide/AMG-configure-nac.html

Nm55569Option: B

https://aws.amazon.com/about-aws/whats-new/2022/11/amazon-managed-grafana-connection-data-sources-hosted-virtual-private-cloud/

sandordini

I guess they mean C, But again, it's strange... IMO B would also work... There is no requirement for the least effort... Pls, correct me if I'm wrong...

venutadiOption: C

Once you configure direct connectivity between a Grafana workspace and a VPC, Amazon Managed Grafana creates and manages an elastic network interface (ENI) per subnet to connect to the VPC. This enables the Grafana workspace to connect to data sources within the VPC, such as OpenSearch domains or RDS databases. Additionally, all traffic is now routed through the configured VPC, including alert destination and data source connectivity.

VortexMD

AWS PrivateLink provides private connectivity between virtual private clouds (VPCs), supported AWS services, and your on-premises networks without exposing your traffic to the public internet. Interface VPC endpoints, powered by PrivateLink, connect you to services hosted by AWS Partners and supported solutions available in AWS Marketplace.

VortexMD

https://aws.amazon.com/blogs/mt/announcing-private-vpc-data-source-support-for-amazon-managed-grafana/