ExamGecko
Login
Home / Amazon / DVA-C01 / List of questions
Ask Question

Amazon DVA-C01 Practice Test - Questions Answers, Page 15

List of questions

Question 141

Report
Export
Collapse

An AWS Lambda function must read data from an Amazon RDS MySQL database in a VPC and also reach a public endpoint over the internet to get additional data. Which steps must be taken to allow the function to access both the RDS resource and the public endpoint? (Select TWO.)

Modify the default configuration for the Lambda function to associate it with an Amazon VPC private subnet.
Modify the default configuration for the Lambda function to associate it with an Amazon VPC private subnet.
Modify the default network access control list to allow outbound traffic.
Modify the default network access control list to allow outbound traffic.
Add a NAT Gateway to the VPC.
Add a NAT Gateway to the VPC.
Modify the default configuration of the Lambda function to associate it with a VPC public subnet.
Modify the default configuration of the Lambda function to associate it with a VPC public subnet.
Add an environmental variable to the Lambda function to allow outbound internet access.
Add an environmental variable to the Lambda function to allow outbound internet access.
Suggested answer: A, C

Explanation:

Explanation:

Reference: https://docs.aws.amazon.com/lambda/latest/dg/vpc.html

asked 16/09/2024
Lazar Marinovic
33 questions

Question 142

Report
Export
Collapse

A Developer writes an AWS Lambda function and uploads the code in a .ZIP file to Amazon S3. The Developer makes changes to the code and uploads a new .ZIP file to Amazon S3. However, Lambda executes the earlier code. How can the Developer fix this in the LEAST disruptive way?

Create another Lambda function and specify the new .ZIP file.
Create another Lambda function and specify the new .ZIP file.
Call the update-function-code API.
Call the update-function-code API.
Remove the earlier .ZIP file first, then add the new .ZIP file.
Remove the earlier .ZIP file first, then add the new .ZIP file.
Call the create-alias API.
Call the create-alias API.
Suggested answer: B

Explanation:

https://docs.aws.amazon.com/cli/latest/reference/lambda/update-function-code.html

asked 16/09/2024
cristian vargas
42 questions

Question 143

Report
Export
Collapse

A company is developing an application that will run on several Amazon EC2 instances in an Auto Scaling group and can access a database running on Amazon EC2. The application needs to store secrets required to connect to the database. The application must allow for periodic secret rotation, and there should be no changes to the application when a secret changes. What is the SAFEST way to meet these requirements?

Associate an IAM role to the EC2 instance where the application is running with permission to access the database.
Associate an IAM role to the EC2 instance where the application is running with permission to access the database.
Use AWS Systems Manager Parameter Store with the SecureString data type to store secrets.
Use AWS Systems Manager Parameter Store with the SecureString data type to store secrets.
Configure the application to store secrets in Amazon S3 object metadata.
Configure the application to store secrets in Amazon S3 object metadata.
Hard code the database secrets in the application code itself.
Hard code the database secrets in the application code itself.
Suggested answer: B
asked 16/09/2024
Franklin Adama
45 questions

Question 144

Report
Export
Collapse


A Developer needs to design an application running on AWS that will be used to consume Amazon SQS messages that range from 1 KB up to 1GB in size. How should the Amazon SQS messages be managed?

Use Amazon S3 and the Amazon SQS CLI.
Use Amazon S3 and the Amazon SQS CLI.
Use Amazon S3 and the Amazon SQS Extended Client Library for Java.
Use Amazon S3 and the Amazon SQS Extended Client Library for Java.
Use Amazon EBS and the Amazon SQS CLI.
Use Amazon EBS and the Amazon SQS CLI.
Use Amazon EFS and the Amazon SQS CLI.
Use Amazon EFS and the Amazon SQS CLI.
Suggested answer: B

Explanation:

Explanation:

Reference:

https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqslimits.html

asked 16/09/2024
ahmed bin shehab
45 questions

Question 145

Report
Export
Collapse

A Developer has been asked to make changes to the source code of an AWS Lambda function. The function is managed using an AWS CloudFormation template. The template is configured to load the source code from an Amazon S3 bucket. The Developer manually created a .ZIP file deployment package containing the changes and put the file into the correct location on Amazon S3. When the function is invoked, the code changes have not been applied. What step is required to update the function with the changes?

Delete the .ZIP file on S3, and re-upload by using a different object key name.
Delete the .ZIP file on S3, and re-upload by using a different object key name.
Update the CloudFormation stack with the correct values for the function code properties S3Bucket, S3Key, or S3ObjectVersion.
Update the CloudFormation stack with the correct values for the function code properties S3Bucket, S3Key, or S3ObjectVersion.
Ensure that the function source code is base64-encoded before uploading the deployment package to S3.
Ensure that the function source code is base64-encoded before uploading the deployment package to S3.
Modify the execution role of the Lambda function to allow S3 access permission to the deployment package .ZIP file.
Modify the execution role of the Lambda function to allow S3 access permission to the deployment package .ZIP file.
Suggested answer: B

Explanation:

Changes to a deployment package in Amazon S3 are not detected automatically during stack updates. To update the function code, change the object key or version in the template. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambdafunction-code.html

asked 16/09/2024
Takenobu Tanida
36 questions

Question 146

Report
Export
Collapse

An AWS Elastic Beanstalk application needs to be deployed in multiple regions and requires a different Amazon Machine Image (AMI) in each region. Which AWS CloudFormation template key can be used to specify the correct AMI for each region?

Parameters
Parameters
Outputs
Outputs
Mappings
Mappings
Resources
Resources
Suggested answer: C

Explanation:

Explanation:

Reference: https://docs.aws.amazon.com/marketplace/latest/userguide/cloudformation.html

asked 16/09/2024
Hairul Isman Abdul Gaffar
38 questions

Question 147

Report
Export
Collapse

A Developer is designing a new application that uses Amazon S3. To satisfy compliance requirements, the Developer must encrypt the data at rest. How can the Developer accomplish this?

Use s3:x-amz-acl as a condition in the S3 bucket policy.
Use s3:x-amz-acl as a condition in the S3 bucket policy.
Use Amazon RDS with default encryption.
Use Amazon RDS with default encryption.
Use aws:SecureTransport as a condition in the S3 bucket policy.
Use aws:SecureTransport as a condition in the S3 bucket policy.
Turn on S3 default encryption for the S3 bucket.
Turn on S3 default encryption for the S3 bucket.
Suggested answer: D
asked 16/09/2024
DAVIDE MCGARR
37 questions

Question 148

Report
Export
Collapse

A Developer wants to enable AWS X-Ray for a secure application that runs in an Amazon ECS environment. What combination of steps will enable X-Ray? (Select THREE.)

Create a Docker image that runs the X-Ray daemon.
Create a Docker image that runs the X-Ray daemon.
Add instrumentation to the application code for X-Ray.
Add instrumentation to the application code for X-Ray.
Install the X-Ray daemon on the underlying EC2 instance.
Install the X-Ray daemon on the underlying EC2 instance.
Configure and use an IAM EC2 instance role.
Configure and use an IAM EC2 instance role.
Register the application with X-Ray.
Register the application with X-Ray.
Configure and use an IAM role for tasks.
Configure and use an IAM role for tasks.
Suggested answer: A, B, F

Explanation:

https://docs.aws.amazon.com/xray/latest/devguide/xray-daemon-ecs.html

https://docs.aws.amazon.com/xray/latest/devguide/scorekeep-ecs.html

asked 16/09/2024
Henock Asmerom
34 questions

Question 149

Report
Export
Collapse

A Developer must deploy a new AWS Lambda function using an AWS CloudFormation template.

Which procedures will deploy a Lambda function? (Select TWO.)

Upload the code to an AWS CodeCommit repository, then add a reference to it in an AWS::Lambda::Function resource in the template.
Upload the code to an AWS CodeCommit repository, then add a reference to it in an AWS::Lambda::Function resource in the template.
Create an AWS::Lambda::Function resource in the template, then write the code directly inside the CloudFormation template.
Create an AWS::Lambda::Function resource in the template, then write the code directly inside the CloudFormation template.
Upload a .ZIP file containing the function code to Amazon S3, then add a reference to it in an AWS::Lambda::Function resource in the template.
Upload a .ZIP file containing the function code to Amazon S3, then add a reference to it in an AWS::Lambda::Function resource in the template.
Upload a .ZIP file to AWS CloudFormation containing the function code, then add a reference to it in an AWS::Lambda::Function resource in the template.
Upload a .ZIP file to AWS CloudFormation containing the function code, then add a reference to it in an AWS::Lambda::Function resource in the template.
Upload the function code to a private Git repository, then add a reference to it in an AWS::Lambda::Function resource in the template.
Upload the function code to a private Git repository, then add a reference to it in an AWS::Lambda::Function resource in the template.
Suggested answer: B, C

Explanation:

https://aws.amazon.com/blogs/infrastructure-and-automation/deploying-aws-lambda-functionsusing-aws-cloudformation-the-portable-way/

asked 16/09/2024
Andy Hodges
39 questions

Question 150

Report
Export
Collapse

A Developer has published an update to an application that is served to a global user base using Amazon CloudFront. After deploying the application, users are not able to see the updated changes. How can the Developer resolve this issue?

Remove the origin from the CloudFront configuration and add it again.
Remove the origin from the CloudFront configuration and add it again.
Disable forwarding of query strings and request headers from the CloudFront distribution configuration.
Disable forwarding of query strings and request headers from the CloudFront distribution configuration.
Invalidate all the application objects from the edge caches.
Invalidate all the application objects from the edge caches.
Disable the CloudFront distribution and enable it again to update all the edge locations.
Disable the CloudFront distribution and enable it again to update all the edge locations.
Suggested answer: C

Explanation:

https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Invalidation.html

asked 16/09/2024
Christopher Adams
40 questions
Total 608 questions
Go to page: of 61
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company wants to implement a continuous integration for its workloads on AWS. The company wants to trigger unit test in its pipeline for commits-on its code repository, and wants to be notified of failure events in the pipeline. How can these requirements be met?
An application stores payroll information nightly in DynamoDB for a large number of employees across hundreds of offices. Item attributes consist of individual name, office identifier, and cumulative daily hours. Managers run reports for ranges of names working in their office. One query is. "Return all Items in this office for names starting with A through E". Which table configuration will result in the lowest impact on provisioned throughput for this query?
A company has an application that uses Amazon Cognito user pools as an identity provider. The company must secure access to user records. The company I up multi-factor authentication (MFA). The company also wants to send a login activity notification by email every time a user logs in. What is the MOST operationally efficient solution that meets this requirement?
A development team consists of 10 team members. Similar to a home directory for each team member the manager wants to grant access to user-specific folders in an Amazon S3 bucket. For the team member with the username “TeamMemberX”, the snippet of the IAM policy looks like this: Instead of creating distinct policies for each team member, what approach can be used to make this policy snippet generic for all team members?
During non-peak hours, a Developer wants to minimize the execution time of a full Amazon DynamoDB table scan without affecting normal workloads. The workloads average half of the strongly consistent read capacity units during non-peak hours. How would the Developer optimize this scan?
Which of the following are correct statements with policy evaluation logic in AWS Identity and Access Management? Choose 2 answers
You are writing to a DynamoDB table and receive the following exception:" ProvisionedThroughputExceededException". though according to your Cloudwatch metrics for the table, you are not exceeding your provisioned throughput. What could be an explanation for this?
A Developer is investigating an issue whereby certain requests are passing through an Amazon API Gateway endpoint /MyAPI, but the requests do not reach the AWS Lambda function backing /MyAPI. The Developer found that a second Lambda function sometimes runs at maximum concurrency allowed for the given AWS account. How can the Developer address this issue?
A developer runs an application that uses an Amazon API Gateway REST API. The developer needs to implement a solution to proactively monitor the health of both API responses and latencies in case a deployment causes a service disruption despite passing deployment pipeline tests. The solution also must check for endpoint vulnerability and unauthorized changes to APIs. URLs, and website content. Which solution will meet these requirements?
A developer has written the following 1AM policy to provide access to an Amazon S3 bucket: Which access does the policy allow regarding the s3:GetObject and s3:PutObject actions'?