ExamGecko
Home / Amazon / DVA-C01 / List of questions
Ask Question

Amazon DVA-C01 Practice Test - Questions Answers, Page 38

List of questions

Question 371

Report
Export
Collapse

A development team uses AWS Elastic Beanstalk to deploy a Java-based web application. The team wants to ensure that the changes to the source code and the configuration are always deployed on new instances The team configures the Elastic Beanstalk environment to use immutable updates.

However an error occurs the first time a change is deployed with the new update policy What is the MOST likely cause of this issue?

Immutable updates are not supported for Java-based applications
Immutable updates are not supported for Java-based applications
The account has reached its on-demand instance limit
The account has reached its on-demand instance limit
Immutable updates are only supported for m4 large and larger instance types.
Immutable updates are only supported for m4 large and larger instance types.
The developer must also modify the ebextensions/immutable-updates config file to enable immutable updates
The developer must also modify the ebextensions/immutable-updates config file to enable immutable updates
Suggested answer: A
asked 16/09/2024
Brant McGurk
35 questions

Question 372

Report
Export
Collapse

How does Envelope Encryption work in AWS KMS?

The Customer Master Key is used to encrypidecrypt a data key The Plaintext Data Key is used to encrypt customer data.
The Customer Master Key is used to encrypidecrypt a data key The Plaintext Data Key is used to encrypt customer data.
Two encryption keys are used The Customer Master Key encrypts customer data. The Data Key is used to re-encrypt the encrypted data.
Two encryption keys are used The Customer Master Key encrypts customer data. The Data Key is used to re-encrypt the encrypted data.
Two encryption keys are used The Data Key encrypts customer data The Customer Master Key is used to re-encrypt the encrypted data
Two encryption keys are used The Data Key encrypts customer data The Customer Master Key is used to re-encrypt the encrypted data
The Customer Master Key is used to encrypt'decrypt a data key. The Encrypted Data Key is used to encrypt customer data.
The Customer Master Key is used to encrypt'decrypt a data key. The Encrypted Data Key is used to encrypt customer data.
Suggested answer: A
asked 16/09/2024
Mark Anthony Simon
38 questions

Question 373

Report
Export
Collapse

A company is using Amazon API Gateway to manage its public-facing API. The CISO requires that the APIs be used by test account users only. What is the MOST secure way to restrict API access to users of this particular AWS account?

Client-side SSL certificates for authentication
Client-side SSL certificates for authentication
API Gateway resource policies
API Gateway resource policies
Cross-origin resource sharing (CORS)
Cross-origin resource sharing (CORS)
Usage plans
Usage plans
Suggested answer: D
asked 16/09/2024
Niels de Lange
38 questions

Question 374

Report
Export
Collapse

An IAM role is attached to an Amazon EC2 instance that explicitly denies access to all Amazon S3 API actions. The EC2 instance credentials file specifies the IAM access key and secret access key, which allow full administrative access. Given that multiple modes of IAM access are present for this EC2 instance, which of the following is correct?

The EC2 instance will only be able to list the S3 buckets
The EC2 instance will only be able to list the S3 buckets
The EC2 instance will only be able to list the contents of one S3 bucket at a time
The EC2 instance will only be able to list the contents of one S3 bucket at a time
The EC2 instance will be able to perform all actions on any S3 bucket
The EC2 instance will be able to perform all actions on any S3 bucket
The EC2 instance will not be able to perform any S3 action on any S3 bucket.
The EC2 instance will not be able to perform any S3 action on any S3 bucket.
Suggested answer: C
asked 16/09/2024
Dennis Spring
45 questions

Question 375

Report
Export
Collapse

A developer is using Amazon DynamoDB to store application data . The developer wants to further improve application performance by reducing response limes for read and write operations. Which DynamoDB feature should be used to meet these requirement?

Amazon DynamoDB Streams
Amazon DynamoDB Streams
Amazon DynamoDB Accelerator
Amazon DynamoDB Accelerator
Amazon DynamoDB global tables
Amazon DynamoDB global tables
Amazon DynamoDB transactions
Amazon DynamoDB transactions
Suggested answer: B

Explanation:

https://aws.amazon.com/ko/blogs/database/amazon-dynamodb-accelerator-dax-a-readthroughwrite-through-cache-for-dynamodb/

asked 16/09/2024
Alexander Yakovenko
34 questions

Question 376

Report
Export
Collapse

An application contains two components one component to handle HI IP requests, and another component to handle background processing tasks Bach component must scale independently The developer wants to deploy this application using AWS Elastic Beanstalk.

How should this application be deployed, based on these requirements?

Deploy the application in a single Elastic Beanstalk environment
Deploy the application in a single Elastic Beanstalk environment
Deploy each component in a separate Elastic Beanstalk environment
Deploy each component in a separate Elastic Beanstalk environment
Use multiple Elastic Beanstalk environments for the HTTP component but one environment for thebackground task component
Use multiple Elastic Beanstalk environments for the HTTP component but one environment for thebackground task component
Use multiple Elastic Beanstalk environments for the background task component but one environment tor the HTTP component
Use multiple Elastic Beanstalk environments for the background task component but one environment tor the HTTP component
Suggested answer: A
asked 16/09/2024
Yedron Rojas Acosta
49 questions

Question 377

Report
Export
Collapse

Given the following AWS CloudFormation template:

What is the MOST efficient way to reference the new Amazon S3 bucket from another AWS CloudFormation template?

Add an Export declaration to the outputs section of the original template and use ImportValue in other templates.
Add an Export declaration to the outputs section of the original template and use ImportValue in other templates.
Add Exported: True to the ContentBucket in the original template and use ImportResource in other templates.
Add Exported: True to the ContentBucket in the original template and use ImportResource in other templates.
Create a custom AWS CloudFormation resource that gets the bucket name from the ContentBucket resource of the first stack.
Create a custom AWS CloudFormation resource that gets the bucket name from the ContentBucket resource of the first stack.
Use Fn: : Include to include the existing template in other template and use the ContentBucket resource directly
Use Fn: : Include to include the existing template in other template and use the ContentBucket resource directly
Suggested answer: D
asked 16/09/2024
Leandro Zaneratto
46 questions

Question 378

Report
Export
Collapse

A developer implemented a static website hosted in Amazon S3 that makes web service requests hosted in Amazon API Gateway AWS Lambd a. The site is showing an error that reads "No ' Access-Control-Allow Origin' header is present on the requested resource Origin 'null' is therefore not allowed access " What should the developer do to resolve this issue?

Enable cross-origin resource sharing (CORS) on the S3 bucket
Enable cross-origin resource sharing (CORS) on the S3 bucket
Enable cross-origin resource sharing (CORS) for the method in API Gateway
Enable cross-origin resource sharing (CORS) for the method in API Gateway
Add the Access-Control-Request-Method header to the request
Add the Access-Control-Request-Method header to the request
Add the Access-Control-Request-Headers header to the request
Add the Access-Control-Request-Headers header to the request
Suggested answer: B

Explanation:

https://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-cors-console.html

asked 16/09/2024
eswar raj
33 questions

Question 379

Report
Export
Collapse

A developer is creating a role to access Amazon S3 buckets To create the role, the developer uses the AWS CLI create-role command. Which policy should be added to allow the Amazon EC2 service to assume the role?

Managed policy
Managed policy
Trust policy
Trust policy
Inline policy
Inline policy
Service control policy (SCP)
Service control policy (SCP)
Suggested answer: B

Explanation:

A JSON policy document in which you define the principals that you trust to assume the role. A role trust policy is a required resource-based policy that is attached to a role in IAM. The principals that you can specify in the trust policy include users, roles, accounts, and services.

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_terms-and-concepts.html

asked 16/09/2024
Trung Phan
43 questions

Question 380

Report
Export
Collapse

An application is experiencing performance issues based on increased demand. This increased demand is on read-only historical records pulled from an Amazon RDS-hosted database with custom views and queries. A developer improve performance without changing the database structure.

Which approach will improve performance and MINIMIZE management overhead?

Deploy Amazon DynamoDB, move all the data, and point to DynamoDB.
Deploy Amazon DynamoDB, move all the data, and point to DynamoDB.
Deploy Amazon ElasticCache for Redis and cache the data for the application.
Deploy Amazon ElasticCache for Redis and cache the data for the application.
Deploy Memcached on Amazon EC2 and cache the data for the application.
Deploy Memcached on Amazon EC2 and cache the data for the application.
Deploy Amazon DynamoDB Accelerator (DAX) on Amazon RDS to improve cache performance
Deploy Amazon DynamoDB Accelerator (DAX) on Amazon RDS to improve cache performance
Suggested answer: B
asked 16/09/2024
Khaled Mohamed Abdraboh Metwalli
34 questions
Total 608 questions
Go to page: of 61
Search

Related questions