Most Recent Amazon PAS-C01 Exam Dumps

Prepare for the Amazon AWS Certified: SAP on AWS - Specialty exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Amazon PAS-C01 exam and achieve success.

The questions for PAS-C01 were last updated on Mar 15, 2026.

Viewing page 1 out of 13 pages.
Viewing questions 1-5 out of 65 questions

Get All 65 Questions & Answers

Question No. 1

A company hosts multiple SAP applications on Amazon EC2 instances in a VPC While monitoring the environment the company notices that multiple port scans are attempting to connect to SAP portals inside the VPC. These port scans are originating from the same IP address block. The company must deny access to the VPC from all the offending IP addresses for the next 24 hours.

Which solution win meet this requirement?

AModify network ACLs that are associated with all public subnets in the VPC to deny access from the IP address block

BAdd a rule in the security group of the EC2 instances to deny access from the IP address block

CCreate a policy in AWS identity and Access Management (1AM) to deny access from the IP address block

DConfigure the firewall m the operating system of the EC2 instances to deny access from the IP address block

Show Answer

Correct Answer: A

The company can meet its requirement by modifying the network access control lists (ACLs) that are associated with all public subnets in the VPC to deny access from the offending IP address block. This would deny access to the VPC from all the IP addresses that are attempting port scans, and would be effective for the next 24 hours.

Security groups are associated with individual instances, it would be more time-consuming to update all instances security groups and it's not scalable. AWS Identity and Access Management (IAM) is mainly used to manage user access to AWS resources and it's not appropriate for this use case. Configuring the firewall on the operating system of the EC2 instances would be less effective as it does not provide a centralized and scalable solution for managing access control across all subnets in the VPC.

Top of Form

Question No. 2

A company is planning to move its on-premises SAP HANA database to AWS. The company needs to migrate this environment to AWS as quickly as possible An SAP solutions architect will use AWS Launch Wizard for SAP to deploy this SAP HANA workload.

Which combination of steps should the SAP solutions architect follow to start the deployment of this workload on AWS? (Select THREE.)

ADownload the SAP HANA software

BDownload the AWS CloudFormation template for the SAP HANA deployment

CDownload and extract the SAP HANA software upload the SAP HANA software to an FTP server that Launch Wizard can access

DUpload the unextracted SAP HANA software to an Amazon S3 destination bucket Follow the S3 file path syntax for the software in accordance with Launch Wizard recommendations

EBring the operating system AMI by using the Bring. Your Own Image (BYOI) model or purchase the subscription for the operating system AMI from AWS Marketplace

FCreate the SAP file system by using Amazon Elastic Block Store (Amazon EBS) before the deployment

Show Answer

Correct Answer: A, D, E

https://docs.aws.amazon.com/launchwizard/latest/userguide/launch-wizard-sap-setting-up.html https://docs.aws.amazon.com/launchwizard/latest/userguide/launch-wizard-sap-structure.html

Question No. 3

A company is running its SAP workload on AWS The company's security team has implemented the following requirements

* All Amazon EC2 instances for SAP must be SAP certified instance types

- Encryption must be enabled for all Amazon S3 buckets and Amazon Elastic Block Store (Amazon EBS) volumes

* AWS CloudTrail must be activated

* SAP system parameters must be compliant with business rules

* Detailed monitoring must be enabled for all instances

The company wants to develop an automated process to review the systems for compliance with the security team's requirements. The process also must provide notification about any deviation from these standards

Which solution will meet these requirements?

AUse AWS AppConfig to model configuration data in an AWS Systems Manager Automation runbook Schedule this Systems Manager Automation runbook to monitor for compliance with all the requirements integrate AWS AppConfig with Amazon CloudWatch for notification purposes

BUse AWS Config managed rules to monitor for compliance with all the requirements Use Amazon EventBridge (Amazon CloudWatch Events) and Amazon Simple Notification Service (Amazon SNS) for email notification when a resource is flagged as noncompliant

CUse AWS Trusted Advisor to monitor for compliance with all the requirements Use Trusted Advisor preferences for email notification when a resource is flagged as noncompliant

DUse AWS Config managed rules to monitor for compliance with the requirements except for the SAP system parameters Create AWS Config custom rules to validate the SAP system parameters Use Amazon EventBridge (Amazon CloudWatch Events) and Amazon Simple Notification Sen/ice (Amazon SNS) for email notification when a resource is flagged as noncompliant

Show Answer

Correct Answer: D

https://aws.amazon.com/blogs/awsforsap/audit-your-sap-systems-with-aws-config-part-i/ https://aws.amazon.com/blogs/awsforsap/audit-your-sap-systems-with-aws-config-part-ii/

Question No. 4

A company is running an SAP HANA database on AWS. The company wants to manage historical infrequently accessed warm data for a native SAP HANA use case An SAP solutions architect needs to recommend a solution that can provide online data storage m extended store available for queries and updates. The solution must be an integrated component of the SAP HANA database and must allow the storage of up to five limes more data in the warm tier than in the not tier

Which solution will meet these requirements?

AUse Amazon Data lifecycle Manager (Amazon DLM) with SAP Data Hub to move data in and out of the SAP HANA database to Amazon S3

BUse an SAP HANA extension node

CUse SAP HANA dynamic tiering as an optional add-on to the SAP HANA database

DUse Amazon Data Lifecycle Manager (Amazon DLM) with SAP HANA spark controller so that SAP HANA can access the data through the Spark SQL SDA adapter

Show Answer

Correct Answer: C

This is a feature of the SAP HANA database that allows for the management of historical, infrequently accessed data and provides an integrated solution for data storage in the warm tier. It allows for the storage of up to five times more data in the warm tier than in the hot tier, and it allows for online data storage that is available for queries and updates.

https://docs.aws.amazon.com/sap/latest/sap-hana/warm-data-tiering-options.html

Question No. 5

A company wants 10 run SAP HANA on AWS m the eu-centrai-1 Region. The company must make the SAP HANA system highly available by using SAP HANA system replication in addition the company must create a disaster recovery (DR) solution that uses SAP HANA system replication in the eu-west-1 Region As prerequisites the company has confirmed that inter-AZ latency is less than 1 ms and that Inter-Region latency is greater than 1 ms.

Which solutions will meet these requirements? (Select TWO.)

AInstall the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system m Availability Zone 1 Configure the tier 2 system m Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using ASYNC replication mode install the OR tier 3 secondary system m eu-west-1 by using SYNC replication mode.

BInstall the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system in Availability Zone 1 Configure the tier 2 system m Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using SYNC replication mode Install the OR her 3 secondary system n eu-west-1 by using ASYNC replication mode.

CInstall the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system in Availability Zone 1 Configure the tier 2 system in Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using SYNC replication mode Install the OR tier 3 secondary system n eu-west-1 Store daily backups from tier 1 m an Amazon S3 bucket m eu-central-1 Use S3 Cross-Region Replication to copy the daily backups to eu-west-i where they can be restored if needed

Dinstall the tier 1 primary system in eu-central-1 install the tier 2 secondary system and the DR tier 3 secondary system m eu-west-1 Configure the tier 2 system in Availability Zone 1 Configure the tier 3 system in Availability Zone 2 Configure SAP HANA system replication between all tiers by using ASYNC replication mode

EInstall the tier 1 primary system and the tier 2 secondary system in eu-central-1 Configure the tier 1 system m Availability Zone 1 Configure the tier 2 system m Availability Zone 2 Configure SAP HANA system replication between tier 1 and tier 2 by using SYNCMEM replication mode Install the DR tier 3 secondary system in eu-west-1 by using ASYNC replication mode

Show Answer

Correct Answer: B, E

https://docs.aws.amazon.com/sap/latest/sap-hana/hana-ops-patterns-multi.html https://docs.aws.amazon.com/sap/latest/sap-hana/sap-hana-on-aws-aws-infrastructure-operating-system-setup-and-hana-installation.html

Unlock All Questions for Amazon PAS-C01 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 65 Questions & Answers