AWS Certified Solutions Architect – Associate (SAA-C03) — Question 788

A company uses Salesforce. The company needs to load existing data and ongoing data changes from Salesforce to Amazon Redshift for analysis. The company does not want the data to travel over the public internet.

Which solution will meet these requirements with the LEAST development effort?

Answer options

• A. Establish a VPN connection from the VPC to Salesforce. Use AWS Glue DataBrew to transfer data.
• B. Establish an AWS Direct Connect connection from the VPC to Salesforce. Use AWS Glue DataBrew to transfer data.
• C. Create an AWS PrivateLink connection in the VPC to Salesforce. Use Amazon AppFlow to transfer data.
• D. Create a VPC peering connection to Salesforce. Use Amazon AppFlow to transfer data.

Correct answer: C

Explanation

Amazon AppFlow is a fully managed integration service that natively supports transferring data between Salesforce and Amazon Redshift with minimal development effort. By combining Amazon AppFlow with AWS PrivateLink, the data transfer is established securely over private AWS infrastructure, avoiding the public internet completely. Other options like AWS Glue DataBrew do not offer the same seamless, low-effort integration for Salesforce, and VPC peering cannot be established directly with external SaaS providers like Salesforce.