ExamGecko
Login
Home / Amazon / DVA-C01 / List of questions
Ask Question

Amazon DVA-C01 Practice Test - Questions Answers, Page 38

List of questions

Question 371

Report
Export
Collapse

A development team uses AWS Elastic Beanstalk to deploy a Java-based web application. The team wants to ensure that the changes to the source code and the configuration are always deployed on new instances The team configures the Elastic Beanstalk environment to use immutable updates.

However an error occurs the first time a change is deployed with the new update policy What is the MOST likely cause of this issue?

Immutable updates are not supported for Java-based applications
Immutable updates are not supported for Java-based applications
The account has reached its on-demand instance limit
The account has reached its on-demand instance limit
Immutable updates are only supported for m4 large and larger instance types.
Immutable updates are only supported for m4 large and larger instance types.
The developer must also modify the ebextensions/immutable-updates config file to enable immutable updates
The developer must also modify the ebextensions/immutable-updates config file to enable immutable updates
Suggested answer: A
asked 16/09/2024
Brant McGurk
35 questions

Question 372

Report
Export
Collapse

How does Envelope Encryption work in AWS KMS?

The Customer Master Key is used to encrypidecrypt a data key The Plaintext Data Key is used to encrypt customer data.
The Customer Master Key is used to encrypidecrypt a data key The Plaintext Data Key is used to encrypt customer data.
Two encryption keys are used The Customer Master Key encrypts customer data. The Data Key is used to re-encrypt the encrypted data.
Two encryption keys are used The Customer Master Key encrypts customer data. The Data Key is used to re-encrypt the encrypted data.
Two encryption keys are used The Data Key encrypts customer data The Customer Master Key is used to re-encrypt the encrypted data
Two encryption keys are used The Data Key encrypts customer data The Customer Master Key is used to re-encrypt the encrypted data
The Customer Master Key is used to encrypt'decrypt a data key. The Encrypted Data Key is used to encrypt customer data.
The Customer Master Key is used to encrypt'decrypt a data key. The Encrypted Data Key is used to encrypt customer data.
Suggested answer: A
asked 16/09/2024
Mark Anthony Simon
38 questions

Question 373

Report
Export
Collapse

A company is using Amazon API Gateway to manage its public-facing API. The CISO requires that the APIs be used by test account users only. What is the MOST secure way to restrict API access to users of this particular AWS account?

Client-side SSL certificates for authentication
Client-side SSL certificates for authentication
API Gateway resource policies
API Gateway resource policies
Cross-origin resource sharing (CORS)
Cross-origin resource sharing (CORS)
Usage plans
Usage plans
Suggested answer: D
asked 16/09/2024
Niels de Lange
38 questions

Question 374

Report
Export
Collapse

An IAM role is attached to an Amazon EC2 instance that explicitly denies access to all Amazon S3 API actions. The EC2 instance credentials file specifies the IAM access key and secret access key, which allow full administrative access. Given that multiple modes of IAM access are present for this EC2 instance, which of the following is correct?

The EC2 instance will only be able to list the S3 buckets
The EC2 instance will only be able to list the S3 buckets
The EC2 instance will only be able to list the contents of one S3 bucket at a time
The EC2 instance will only be able to list the contents of one S3 bucket at a time
The EC2 instance will be able to perform all actions on any S3 bucket
The EC2 instance will be able to perform all actions on any S3 bucket
The EC2 instance will not be able to perform any S3 action on any S3 bucket.
The EC2 instance will not be able to perform any S3 action on any S3 bucket.
Suggested answer: C
asked 16/09/2024
Dennis Spring
45 questions

Question 375

Report
Export
Collapse

A developer is using Amazon DynamoDB to store application data . The developer wants to further improve application performance by reducing response limes for read and write operations. Which DynamoDB feature should be used to meet these requirement?

Amazon DynamoDB Streams
Amazon DynamoDB Streams
Amazon DynamoDB Accelerator
Amazon DynamoDB Accelerator
Amazon DynamoDB global tables
Amazon DynamoDB global tables
Amazon DynamoDB transactions
Amazon DynamoDB transactions
Suggested answer: B

Explanation:

https://aws.amazon.com/ko/blogs/database/amazon-dynamodb-accelerator-dax-a-readthroughwrite-through-cache-for-dynamodb/

asked 16/09/2024
Alexander Yakovenko
34 questions

Question 376

Report
Export
Collapse

An application contains two components one component to handle HI IP requests, and another component to handle background processing tasks Bach component must scale independently The developer wants to deploy this application using AWS Elastic Beanstalk.

How should this application be deployed, based on these requirements?

Deploy the application in a single Elastic Beanstalk environment
Deploy the application in a single Elastic Beanstalk environment
Deploy each component in a separate Elastic Beanstalk environment
Deploy each component in a separate Elastic Beanstalk environment
Use multiple Elastic Beanstalk environments for the HTTP component but one environment for thebackground task component
Use multiple Elastic Beanstalk environments for the HTTP component but one environment for thebackground task component
Use multiple Elastic Beanstalk environments for the background task component but one environment tor the HTTP component
Use multiple Elastic Beanstalk environments for the background task component but one environment tor the HTTP component
Suggested answer: A
asked 16/09/2024
Yedron Rojas Acosta
49 questions

Question 377

Report
Export
Collapse

Given the following AWS CloudFormation template:

What is the MOST efficient way to reference the new Amazon S3 bucket from another AWS CloudFormation template?

Add an Export declaration to the outputs section of the original template and use ImportValue in other templates.
Add an Export declaration to the outputs section of the original template and use ImportValue in other templates.
Add Exported: True to the ContentBucket in the original template and use ImportResource in other templates.
Add Exported: True to the ContentBucket in the original template and use ImportResource in other templates.
Create a custom AWS CloudFormation resource that gets the bucket name from the ContentBucket resource of the first stack.
Create a custom AWS CloudFormation resource that gets the bucket name from the ContentBucket resource of the first stack.
Use Fn: : Include to include the existing template in other template and use the ContentBucket resource directly
Use Fn: : Include to include the existing template in other template and use the ContentBucket resource directly
Suggested answer: D
asked 16/09/2024
Leandro Zaneratto
46 questions

Question 378

Report
Export
Collapse

A developer implemented a static website hosted in Amazon S3 that makes web service requests hosted in Amazon API Gateway AWS Lambd a. The site is showing an error that reads "No ' Access-Control-Allow Origin' header is present on the requested resource Origin 'null' is therefore not allowed access " What should the developer do to resolve this issue?

Enable cross-origin resource sharing (CORS) on the S3 bucket
Enable cross-origin resource sharing (CORS) on the S3 bucket
Enable cross-origin resource sharing (CORS) for the method in API Gateway
Enable cross-origin resource sharing (CORS) for the method in API Gateway
Add the Access-Control-Request-Method header to the request
Add the Access-Control-Request-Method header to the request
Add the Access-Control-Request-Headers header to the request
Add the Access-Control-Request-Headers header to the request
Suggested answer: B

Explanation:

https://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-cors-console.html

asked 16/09/2024
eswar raj
33 questions

Question 379

Report
Export
Collapse

A developer is creating a role to access Amazon S3 buckets To create the role, the developer uses the AWS CLI create-role command. Which policy should be added to allow the Amazon EC2 service to assume the role?

Managed policy
Managed policy
Trust policy
Trust policy
Inline policy
Inline policy
Service control policy (SCP)
Service control policy (SCP)
Suggested answer: B

Explanation:

A JSON policy document in which you define the principals that you trust to assume the role. A role trust policy is a required resource-based policy that is attached to a role in IAM. The principals that you can specify in the trust policy include users, roles, accounts, and services.

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_terms-and-concepts.html

asked 16/09/2024
Trung Phan
43 questions

Question 380

Report
Export
Collapse

An application is experiencing performance issues based on increased demand. This increased demand is on read-only historical records pulled from an Amazon RDS-hosted database with custom views and queries. A developer improve performance without changing the database structure.

Which approach will improve performance and MINIMIZE management overhead?

Deploy Amazon DynamoDB, move all the data, and point to DynamoDB.
Deploy Amazon DynamoDB, move all the data, and point to DynamoDB.
Deploy Amazon ElasticCache for Redis and cache the data for the application.
Deploy Amazon ElasticCache for Redis and cache the data for the application.
Deploy Memcached on Amazon EC2 and cache the data for the application.
Deploy Memcached on Amazon EC2 and cache the data for the application.
Deploy Amazon DynamoDB Accelerator (DAX) on Amazon RDS to improve cache performance
Deploy Amazon DynamoDB Accelerator (DAX) on Amazon RDS to improve cache performance
Suggested answer: B
asked 16/09/2024
Khaled Mohamed Abdraboh Metwalli
34 questions
Total 608 questions
Go to page: of 61
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A company wants to implement a continuous integration for its workloads on AWS. The company wants to trigger unit test in its pipeline for commits-on its code repository, and wants to be notified of failure events in the pipeline. How can these requirements be met?
An application stores payroll information nightly in DynamoDB for a large number of employees across hundreds of offices. Item attributes consist of individual name, office identifier, and cumulative daily hours. Managers run reports for ranges of names working in their office. One query is. "Return all Items in this office for names starting with A through E". Which table configuration will result in the lowest impact on provisioned throughput for this query?
A company has an application that uses Amazon Cognito user pools as an identity provider. The company must secure access to user records. The company I up multi-factor authentication (MFA). The company also wants to send a login activity notification by email every time a user logs in. What is the MOST operationally efficient solution that meets this requirement?
A development team consists of 10 team members. Similar to a home directory for each team member the manager wants to grant access to user-specific folders in an Amazon S3 bucket. For the team member with the username “TeamMemberX”, the snippet of the IAM policy looks like this: Instead of creating distinct policies for each team member, what approach can be used to make this policy snippet generic for all team members?
During non-peak hours, a Developer wants to minimize the execution time of a full Amazon DynamoDB table scan without affecting normal workloads. The workloads average half of the strongly consistent read capacity units during non-peak hours. How would the Developer optimize this scan?
Which of the following are correct statements with policy evaluation logic in AWS Identity and Access Management? Choose 2 answers
You are writing to a DynamoDB table and receive the following exception:" ProvisionedThroughputExceededException". though according to your Cloudwatch metrics for the table, you are not exceeding your provisioned throughput. What could be an explanation for this?
A Developer is investigating an issue whereby certain requests are passing through an Amazon API Gateway endpoint /MyAPI, but the requests do not reach the AWS Lambda function backing /MyAPI. The Developer found that a second Lambda function sometimes runs at maximum concurrency allowed for the given AWS account. How can the Developer address this issue?
A developer runs an application that uses an Amazon API Gateway REST API. The developer needs to implement a solution to proactively monitor the health of both API responses and latencies in case a deployment causes a service disruption despite passing deployment pipeline tests. The solution also must check for endpoint vulnerability and unauthorized changes to APIs. URLs, and website content. Which solution will meet these requirements?
A developer has written the following 1AM policy to provide access to an Amazon S3 bucket: Which access does the policy allow regarding the s3:GetObject and s3:PutObject actions'?