AWS Certified Solutions Architect - Professional
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A team of data scientists is utilizing Amazon SageMaker instances and SageMaker APIs within a VPC that is completely isolated from the internet to train their machine learning models. The datasets required for training these models are stored in an Amazon S3 bucket, which is accessible through interface VPC endpoints. Occasionally, the data scientists need to update their Python packages using the Python Package Index (PyPI) repository. A solutions architect is tasked with ensuring access to PyPI while maintaining the isolation of the SageMaker instances from the internet. What solution should the architect implement to fulfill these requirements?
Explanation:
The correct answer is D. Setting up an AWS CodeArtifact domain and repository, and adding an external connection for public:pypi meets the requirement of accessing the PyPI repository while keeping SageMaker instances isolated from the internet. This approach allows you to manage and update Python packages securely within your VPC by using AWS CodeArtifact as an intermediary. By configuring the Python client to use the CodeArtifact repository and creating a VPC endpoint for CodeArtifact, you ensure that the instances remain isolated from the internet, satisfying both the security and functionality requirements.