AWS Certified Solutions Architect - Associate

Get started today

Ultimate access to all questions.

Deep dive into the quiz with AI chat providers.

We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.

A company uses Amazon S3 as its data lake. The company has a new partner that must use SFTP to upload data files. A solutions architect needs to implement a highly available SFTP solution that minimizes operational overhead.

Which solution will meet these requirements?

Other

Community

UAnonymous

Last updated: February 23, 2026 at 11:39

Use AWS Transfer Family to configure an SFTP-enabled server with a publicly accessible endpoint. Choose the S3 data lake as the destination.

Use Amazon S3 File Gateway as an SFTP server. Expose the S3 File Gateway endpoint URL to the new partner. Share the S3 File Gateway endpoint with the new partner.

Launch an Amazon EC2 instance in a private subnet in a VPC. Instruct the new partner to upload files to the EC2 instance by using a VPN. Run a cron job script, on the EC2 instance to upload files to the S3 data lake.

Launch Amazon EC2 instances in a private subnet in a VPC. Place a Network Load Balancer (NLB) in front of the EC2 instances. Create an SFTP listener port for the NLB. Share the NLB hostname with the new partner. Run a cron job script on the EC2 instances to upload files to the S3 data lake.

Explanation:

Explanation

AWS Transfer Family is the correct solution because:

Minimizes operational overhead: AWS Transfer Family is a fully managed service that provides SFTP, FTPS, and FTP protocols. It eliminates the need to manage servers, patches, or scaling.
Highly available: AWS Transfer Family is designed with high availability and redundancy built-in, meeting the requirement for high availability.
Direct S3 integration: It can directly integrate with Amazon S3 as the backend storage, allowing files to be uploaded directly to the S3 data lake without intermediate steps.
Publicly accessible endpoint: It can be configured with a publicly accessible endpoint, making it easy for external partners to connect without complex VPN setups.

Why other options are incorrect:

Option B: Amazon S3 File Gateway is designed for on-premises environments to cache S3 data locally, not as a primary SFTP server solution. It doesn't provide the same level of managed SFTP capabilities as AWS Transfer Family.
Option C: This solution requires manual EC2 management, VPN setup, and cron jobs, which increases operational overhead and doesn't provide high availability (single EC2 instance).
Option D: While this provides some high availability with multiple EC2 instances and a load balancer, it still requires significant operational overhead for managing EC2 instances, security patches, scaling, and cron jobs.

Key AWS Services:

AWS Transfer Family: Managed file transfer service supporting SFTP, FTPS, and FTP protocols
Amazon S3: Object storage service used as the data lake
High availability: Built into AWS Transfer Family service
Operational efficiency: Fully managed service reduces administrative burden

Powered ByGPT-5.2

Comments

Loading comments...