ExamGecko
Search Search Login
Home Home / Amazon / DVA-C01

Amazon DVA-C01 Practice Test - Questions Answers, Page 30

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You are writing to a DynamoDB table and receive the following exception:" ProvisionedThroughputExceededException". though according to your Cloudwatch metrics for the table, you are not exceeding your provisioned throughput. What could be an explanation for this?
A developer runs an application that uses an Amazon API Gateway REST API. The developer needs to implement a solution to proactively monitor the health of both API responses and latencies in case a deployment causes a service disruption despite passing deployment pipeline tests. The solution also must check for endpoint vulnerability and unauthorized changes to APIs. URLs, and website content. Which solution will meet these requirements?
During non-peak hours, a Developer wants to minimize the execution time of a full Amazon DynamoDB table scan without affecting normal workloads. The workloads average half of the strongly consistent read capacity units during non-peak hours. How would the Developer optimize this scan?
An application stores payroll information nightly in DynamoDB for a large number of employees across hundreds of offices. Item attributes consist of individual name, office identifier, and cumulative daily hours. Managers run reports for ranges of names working in their office. One query is. "Return all Items in this office for names starting with A through E". Which table configuration will result in the lowest impact on provisioned throughput for this query?
You are providing AWS consulting services for a company developing a new mobile application that will be leveraging Amazon SNS Mobile Push for push notifications. In order to send direct notification messages to individual devices each device registration identifier or token needs to be registered with SNS; however the developers are not sure of the best way to do this. You advise them to:
A company is migrating a web application from on premises to AWS. The company needs to move session storage from the application code to a shared service as part of the migration. The session storage data must be encrypted at rest. Which AWS services meet these requirements? (Choose two.)
A developer has written the following 1AM policy to provide access to an Amazon S3 bucket: Which access does the policy allow regarding the s3:GetObject and s3:PutObject actions'?
Which of the following are correct statements with policy evaluation logic in AWS Identity and Access Management? Choose 2 answers
An application under development is required to store hundreds of video files. The data must be encrypted within the application prior to storage, with a unique key for each video file. How should the Developer code the application?
Games-R-Us is launching a new game app for mobile devices. Users will log into the game using their existing Facebook account and the game will record player data and scoring information directly to a DynamoDB table. What is the most secure approach for signing requests to the DynamoDB API?

Question 291

Report
Export
Collapse

A company experienced partial downtime during the last deployment of a new application AWS Elastic Beanstalk split the environment's Amazon EC2 instances into batches and deployed a new version one batch at a time after taking them out of service. Therefore, full capacity was not maintained during deployment.

The developer plans to release a new version of the application, and is looking for a policy that will maintain full capacity and minimize the impact of the failed deployment Which deployment policy should the developer use?

A.
Immutable
A.
Immutable
Answers
B.
All at Once
B.
All at Once
Answers
C.
Rolling
C.
Rolling
Answers
D.
Rolling with an Additional Batch
D.
Rolling with an Additional Batch
Answers
Suggested answer: A

Question 292

Report
Export
Collapse

An application ingests a large number of small messages and stores them in a database. The application uses AWS Lambd a. A development team is making changes to the application's processing logic. In testing, it is taking more than 15 minutes to process each message. The team is concerned the current backend may time out.

Which changes should be made to the backend system to ensure each message is processed in the MOST scalable way1?

A.
Add the messages to an Amazon SQS queue Set up an Amazon EC2 instance to poll the queue and process messages as they arrive.
A.
Add the messages to an Amazon SQS queue Set up an Amazon EC2 instance to poll the queue and process messages as they arrive.
Answers
B.
Add the messages to an Amazon SQS queue. Set up Amazon EC2 instances in an Auto Scaling group to poll the queue and process the messages as they arrive.
B.
Add the messages to an Amazon SQS queue. Set up Amazon EC2 instances in an Auto Scaling group to poll the queue and process the messages as they arrive.
Answers
C.
Create a support ticket to increase the Lambda timeout to 60 minutes to allow for increased processing time
C.
Create a support ticket to increase the Lambda timeout to 60 minutes to allow for increased processing time
Answers
D.
Change the application to directly insert the body of the message into an Amazon RDS database.
D.
Change the application to directly insert the body of the message into an Amazon RDS database.
Answers
Suggested answer: A

Question 293

Report
Export
Collapse

A company is developing a web application that allows its employees to upload a profile picture to a private Amazon S3 bucket There is no size limit for the profile pictures, which should be displayed every time an employee logs in. For security reasons, the pictures cannot be publicly accessible.

What is a viable long-term solution for this scenario''

A.
Generate a presigned URL when a picture is uploaded Save the URL in an Amazon DynamoDB table Return the URL to the browser when the employee logs in
A.
Generate a presigned URL when a picture is uploaded Save the URL in an Amazon DynamoDB table Return the URL to the browser when the employee logs in
Answers
B.
Save the picture's S3 key in an Amazon DynamoDB table Create an Amazon S3 VPC endpoint to allow the employees to download pictures once they log in.
B.
Save the picture's S3 key in an Amazon DynamoDB table Create an Amazon S3 VPC endpoint to allow the employees to download pictures once they log in.
Answers
C.
Encode a picture using base64 Save the base64 string in an Amazon DynamoDB table Allow the browser to retrieve the string and convert it to a picture
C.
Encode a picture using base64 Save the base64 string in an Amazon DynamoDB table Allow the browser to retrieve the string and convert it to a picture
Answers
D.
Save the picture's S3 key in an Amazon DynamoDB table. Use a function to generate a presigned URL every time an employee logs in. Return the URL to the browser.
D.
Save the picture's S3 key in an Amazon DynamoDB table. Use a function to generate a presigned URL every time an employee logs in. Return the URL to the browser.
Answers
Suggested answer: B

Explanation:

Reference: https://aws.amazon.com/premiumsupport/knowledge-center/s3-private-connectionnoauthentication/

Question 294

Report
Export
Collapse

A developer is testing a Docker-based application that uses the AWS SDK to interact with Amazon DynamoDB In the local development environment, the application has used IAM access keys The application is now ready for deployment onto an ECS duster.

How should the application authenticate with AWS services in production?

A.
Configure an ECS task IAM role for the application to use
A.
Configure an ECS task IAM role for the application to use
Answers
B.
Refactor the application to call AWS STS AssumeRole based on an instance role
B.
Refactor the application to call AWS STS AssumeRole based on an instance role
Answers
C.
Configure AWS access key/secret access key environment variables with new credentials
C.
Configure AWS access key/secret access key environment variables with new credentials
Answers
D.
Configure the credentials file with a new access key/secret access key
D.
Configure the credentials file with a new access key/secret access key
Answers
Suggested answer: A

Question 295

Report
Export
Collapse

A company wants to migrate an imaging service to Amazon EC2 while following security best practices. The images are sourced and read from a non-public Amazon S3 bucket. What should a developer do to meet these requirements?

A.
Create an IAM user with read-only permissions for the S3 bucket Temporarily store the user credentials in the Amazon EBS volume of the EC2 instance
A.
Create an IAM user with read-only permissions for the S3 bucket Temporarily store the user credentials in the Amazon EBS volume of the EC2 instance
Answers
B.
Create an IAM user with read-only permissions for the S3 bucket. Temporarily store the user credentials in the user data of the EC2 instance.
B.
Create an IAM user with read-only permissions for the S3 bucket. Temporarily store the user credentials in the user data of the EC2 instance.
Answers
C.
Create an EC2 service role with read-only permissions for the S3 bucket Attach the role to the EC2 instance
C.
Create an EC2 service role with read-only permissions for the S3 bucket Attach the role to the EC2 instance
Answers
D.
Create an S3 service role with read-only permissions for the S3 bucket Attach the role to the EC2 instance
D.
Create an S3 service role with read-only permissions for the S3 bucket Attach the role to the EC2 instance
Answers
Suggested answer: A

Question 296

Report
Export
Collapse

A developer wants to send multi-value headers to an AWS Lambda function that is registered as a target with an Application Load Balancer (ALB). What should the developer do to achieve this?

A.
Place the Lambda function and target group in the same account
A.
Place the Lambda function and target group in the same account
Answers
B.
Send the request body to the Lambda function with a size less than 1 MB 0
B.
Send the request body to the Lambda function with a size less than 1 MB 0
Answers
C.
Include the Base64 encoding status status code, status description, and headers in the Lambda function
C.
Include the Base64 encoding status status code, status description, and headers in the Lambda function
Answers
D.
Enable the multi-value headers on the ALB
D.
Enable the multi-value headers on the ALB
Answers
Suggested answer: D

Question 297

Report
Export
Collapse

An ecommerce startup is preparing for an annual sales event As the traffic to the company's application increases, the development team wants to be notified when the Amazon EC2 instance's CPU utilization exceeds 80%. Which solution will meet this requirement?

A.
Create a custom Amazon CloudWatch alarm that sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%.
A.
Create a custom Amazon CloudWatch alarm that sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%.
Answers
B.
Create a custom AWS CloudTrail alarm that sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%
B.
Create a custom AWS CloudTrail alarm that sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%
Answers
C.
Create a cron job on the EC2 instance that executes the --describe-instance-information command on the host instance every 15 minutes and sends the results to an Amazon SNS topic
C.
Create a cron job on the EC2 instance that executes the --describe-instance-information command on the host instance every 15 minutes and sends the results to an Amazon SNS topic
Answers
D.
Create an AWS Lambda function that queries the AWS CloudTrail logs for the CPUUtihzation metric every 15 minutes and sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%
D.
Create an AWS Lambda function that queries the AWS CloudTrail logs for the CPUUtihzation metric every 15 minutes and sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%
Answers
Suggested answer: C

Question 298

Report
Export
Collapse

An application running on Amazon EC2 opens connections to an Amazon RDS SQL Server database The developer does not want to store the user name and password for the database in the code. The developer would also like to automatically rotate the credentials.

What is the MOST secure way to store and access the database credentials?

A.
Create an IAM role that has permissions to access the database Attach the role to the EC2 instance
A.
Create an IAM role that has permissions to access the database Attach the role to the EC2 instance
Answers
B.
Use AWS Secrets Manager to store the credentials. Retrieve the credentials from Secrets Manager as needed
B.
Use AWS Secrets Manager to store the credentials. Retrieve the credentials from Secrets Manager as needed
Answers
C.
Store the credentials in an encrypted text file in an Amazon S3 bucket Configure the EC2 instance's user data to download the credentials from Amazon S3 as the instance boots
C.
Store the credentials in an encrypted text file in an Amazon S3 bucket Configure the EC2 instance's user data to download the credentials from Amazon S3 as the instance boots
Answers
D.
Store the user name and password credentials directly in the source code. No further action is needed because the source code is stored in a private repository.
D.
Store the user name and password credentials directly in the source code. No further action is needed because the source code is stored in a private repository.
Answers
Suggested answer: B

Question 299

Report
Export
Collapse

An application needs to encrypt data that is written to Amazon S3 where the keys are managed in an on-premises data center and the encryption is handled by S3. Which type of encryption should be used?

A.
Use server-side encryption with Amazon S3-managed keys
A.
Use server-side encryption with Amazon S3-managed keys
Answers
B.
Use server-side encryption with AWS KMS-managed keys.
B.
Use server-side encryption with AWS KMS-managed keys.
Answers
C.
Use client-side encryption with customer master keys
C.
Use client-side encryption with customer master keys
Answers
D.
Use server-side encryption with customer-provided keys
D.
Use server-side encryption with customer-provided keys
Answers
Suggested answer: A

Question 300

Report
Export
Collapse


A software engineer developed an AWS Lambda function in Node.js to do some CPU-intensive data processing. With the default settings, the Lambda function takes about 5 minutes to complete. Which approach should a developer take to increase the speed of completion''

A.
Instead of using Node js. rewrite the Lambda function using Python
A.
Instead of using Node js. rewrite the Lambda function using Python
Answers
B.
Instead of packaging the libraries in the ZIP file with the function move them to a Lambda layer and use the layer with the function.
B.
Instead of packaging the libraries in the ZIP file with the function move them to a Lambda layer and use the layer with the function.
Answers
C.
Allocate the maximum available CPU units lo the function
C.
Allocate the maximum available CPU units lo the function
Answers
D.
Increase the available memory to the function.
D.
Increase the available memory to the function.
Answers
Suggested answer: D
Total 608 questions
Go to page: of 61
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms