SKILL BENCHMARK
AWS Certified Solutions Architect - Professional 2022: Design Solutions for Organizational Complexity Competency (Intermediate Level)
- 22m
- 22 questions
The Design Solutions for Organizational Complexity Competency (Intermediate Level) benchmark calibrates your ability to create and manage virtual private clouds (VPCs), subnets, Elastic IPs, network configurations related to VPC peering, VPNs, Direct Connect, and network gateways, as well as use various AWS network and security solutions. You will be evaluated on your skills in deploying and managing various AWS Network Firewall solutions, configuring one or more AWS accounts using Organizations, and automating resource deployment using templates. Learners who score high on this benchmark demonstrate that they have the skills to architect network connectivity strategies and design reliable and resilient architectures.
Topics covered
- allow outbound IPv6 traffic using an egress-only Internet gateway
- configure a centralized VPC transit gateway
- configure a client VPN endpoint
- configure a firewall for a virtual private cloud (VPC)
- configure an elastic IP address using the console
- configure a network ACL using the AWS console
- configure a security group using PowerShell
- configure AWS Organization service control policies (SCPs) and recognize how they differ from identity and access management policies
- configure virtual private cloud (VPC) dynamic host configuration protocol (DHCP) options
- deploy a site-to-site virtual private network (VPN) connection to AWS
- disable automatic public IP address assignment
- enable Amazon GuardDuty threat detection and examine sample findings
- enable S3 CRR for increased data availability
- enable VPC peering
- examine a packet capture to identify network traffic types and potential security vulnerabilities
- manage AWS Organizations
- provision AWS Direct Connect
- recall how a web application firewall can help mitigate common web application attacks
- recognize disaster recovery factors such as Recovery Time Objective (RTO), Recovery Point Objective (RPO), pilot light, backups, warm standby, hot standby, and failover
- recognize how endpoints are used for AWS service connectivity
- recognize how virtual private clouds (VPCs) address cloud networking needs
- use the graphical user interface (GUI) to create a virtual private cloud (VPC)