AWS Certified Solutions Architect – Professional — Question 273

An organization is setting up RDS for their applications. The organization wants to secure RDS access with VPC.
Which of the following options is not required while designing the RDS with VPC?

Answer options

• A. The organization must create a subnet group with public and private subnets. Both the subnets can be in the same or separate AZ.
• B. The organization should keep minimum of one IP address in each subnet reserved for RDS failover.
• C. If the organization is connecting RDS from the internet it must enable the VPC attributes DNS hostnames and DNS resolution.
• D. The organization must create a subnet group with VPC using more than one subnet which are a part of separate AZs.

Correct answer: A

Explanation

Option A is correct because an Amazon RDS DB subnet group requires subnets to be in at least two different Availability Zones (AZs), meaning they cannot be situated in the same AZ. Conversely, reserving at least one IP address per subnet for failover (Option B), enabling VPC DNS attributes for public internet access (Option C), and spanning multiple AZs (Option D) are all valid requirements for RDS in a VPC.