ExamGecko
Search Search Login
Home Home / Amazon / DVA-C01

Amazon DVA-C01 Practice Test - Questions Answers, Page 53

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You are writing to a DynamoDB table and receive the following exception:" ProvisionedThroughputExceededException". though according to your Cloudwatch metrics for the table, you are not exceeding your provisioned throughput. What could be an explanation for this?
You are providing AWS consulting services for a company developing a new mobile application that will be leveraging Amazon SNS Mobile Push for push notifications. In order to send direct notification messages to individual devices each device registration identifier or token needs to be registered with SNS; however the developers are not sure of the best way to do this. You advise them to:
A developer runs an application that uses an Amazon API Gateway REST API. The developer needs to implement a solution to proactively monitor the health of both API responses and latencies in case a deployment causes a service disruption despite passing deployment pipeline tests. The solution also must check for endpoint vulnerability and unauthorized changes to APIs. URLs, and website content. Which solution will meet these requirements?
During non-peak hours, a Developer wants to minimize the execution time of a full Amazon DynamoDB table scan without affecting normal workloads. The workloads average half of the strongly consistent read capacity units during non-peak hours. How would the Developer optimize this scan?
Which of the following are correct statements with policy evaluation logic in AWS Identity and Access Management? Choose 2 answers
A company is migrating a web application from on premises to AWS. The company needs to move session storage from the application code to a shared service as part of the migration. The session storage data must be encrypted at rest. Which AWS services meet these requirements? (Choose two.)
A developer has written the following 1AM policy to provide access to an Amazon S3 bucket: Which access does the policy allow regarding the s3:GetObject and s3:PutObject actions'?
An application stores payroll information nightly in DynamoDB for a large number of employees across hundreds of offices. Item attributes consist of individual name, office identifier, and cumulative daily hours. Managers run reports for ranges of names working in their office. One query is. "Return all Items in this office for names starting with A through E". Which table configuration will result in the lowest impact on provisioned throughput for this query?
Games-R-Us is launching a new game app for mobile devices. Users will log into the game using their existing Facebook account and the game will record player data and scoring information directly to a DynamoDB table. What is the most secure approach for signing requests to the DynamoDB API?
A developer is integrating Amazon ElastiCache in an application. The cache will store data from a database. The cached data must populate real-time dashboards. Which caching strategy will meet these requirements?

Question 521

Report
Export
Collapse

A developer is debugging an AWS Lambda function behind an Amazon API Gateway. Whenever the API Gateway endpoint is called, HTTP status code 200 is returned even though AWS Lambda is recording a 4xx error. What change needs to be made to return a proper error code through the API Gateway?

A.
Enable CORS in the API Gateway method settings.
A.
Enable CORS in the API Gateway method settings.
Answers
B.
Use a Lambda proxy integration to return HTTP codes and headers.
B.
Use a Lambda proxy integration to return HTTP codes and headers.
Answers
C.
Enable API Gateway error pass-through.
C.
Enable API Gateway error pass-through.
Answers
D.
Return the value in the header X-Amzn-ErrorType.
D.
Return the value in the header X-Amzn-ErrorType.
Answers
Suggested answer: B

Question 522

Report
Export
Collapse

A developer is creating a web application that collects highly regulated and confidential user data through a POST request. The web application is served through Amazon CloudFront. User names and phone numbers must be encrypted at the edge and must remain encrypted throughout the entire application stack.

What is the MOST secure way to meet these requirements?

A.
Enforce Match Viewer with HTTPS Only on CloudFront.
A.
Enforce Match Viewer with HTTPS Only on CloudFront.
Answers
B.
Use only the newest TLS security policy on CloudFront.
B.
Use only the newest TLS security policy on CloudFront.
Answers
C.
Enforce a signed URL on CloudFront on the front end.
C.
Enforce a signed URL on CloudFront on the front end.
Answers
D.
Use field-level encryption on CloudFront.
D.
Use field-level encryption on CloudFront.
Answers
Suggested answer: D

Question 523

Report
Export
Collapse

A developer is storing JSON files in an Amazon S3 bucket. The developer wants to securely share an object with a specific group of people. How can the deveioper securely provide temporary access to the objects that are stored in the S3 bucket?

A.
Set object retention on the files. Use the AWS software development kit (SDK) to restore the object before subsequent requests. Provide the bucket's URL.
A.
Set object retention on the files. Use the AWS software development kit (SDK) to restore the object before subsequent requests. Provide the bucket's URL.
Answers
B.
Use the AWS software development kit (SDK) to generate a presigned URL. Provide the presigned URL.
B.
Use the AWS software development kit (SDK) to generate a presigned URL. Provide the presigned URL.
Answers
C.
Set a bucket policy that restricts access after a period of time. Provide the bucket's S3 URL.
C.
Set a bucket policy that restricts access after a period of time. Provide the bucket's S3 URL.
Answers
D.
Configure static web hosting on the S3 bucket. Provide the bucket's web URL.
D.
Configure static web hosting on the S3 bucket. Provide the bucket's web URL.
Answers
Suggested answer: B

Question 524

Report
Export
Collapse

A company has an application that uses Amazon Cognito user pools as an identity provider. The company must secure access to user records. The company I up multi-factor authentication (MFA). The company also wants to send a login activity notification by email every time a user logs in.

What is the MOST operationally efficient solution that meets this requirement?

A.
Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Add an Amazon API Gateway to invoke the function. Call the API from the client side when login confirmation is received.
A.
Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Add an Amazon API Gateway to invoke the function. Call the API from the client side when login confirmation is received.
Answers
B.
Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Add an Amazon Cognito post authentication Lambda trigger for the function.
B.
Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Add an Amazon Cognito post authentication Lambda trigger for the function.
Answers
C.
Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Create an Amazon CloudWatch Logs log subscription filter to invoke the function based on the login status.
C.
Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Create an Amazon CloudWatch Logs log subscription filter to invoke the function based on the login status.
Answers
D.
Configure Amazon Cognito to stream all logs to Amazon Kinesis Data Firehose. Create an AWS Lambda function to process the streamed logs and it send the email notification based on the login status of each user.
D.
Configure Amazon Cognito to stream all logs to Amazon Kinesis Data Firehose. Create an AWS Lambda function to process the streamed logs and it send the email notification based on the login status of each user.
Answers
Suggested answer: C

Question 525

Report
Export
Collapse

A company is using AWS Elastic Beanstalk to deploy a three-tier application. The application uses an Amazon RDS DB instance as the database tier. The com wants to decouple the DB instance from the Elastic Beanstalk environment. Which combination of steps should a developer take to meet this requirement? (Select TWO.)

A.
Create a new Elastic Beanstalk environment that connects to the DB instance.
A.
Create a new Elastic Beanstalk environment that connects to the DB instance.
Answers
B.
Create a new DB instance from a snapshot of the previous DB instance.
B.
Create a new DB instance from a snapshot of the previous DB instance.
Answers
C.
Use the Elastic Beanstalk CLI to decouple the DB instance.
C.
Use the Elastic Beanstalk CLI to decouple the DB instance.
Answers
D.
Use the AWS CLI to decouple the DB instance.
D.
Use the AWS CLI to decouple the DB instance.
Answers
E.
Modify the current Elastic Beanstalk environment to connect to the DB instance.
E.
Modify the current Elastic Beanstalk environment to connect to the DB instance.
Answers
Suggested answer: B, E

Question 526

Report
Export
Collapse

A developer deployed an application to an Amazon EC2 instance. The application needs to know the public IPv4 address of the instance. How can the application find this information?

A.
Query the instance metadata from http://169.254.169.254/latest/meta-data/.
A.
Query the instance metadata from http://169.254.169.254/latest/meta-data/.
Answers
B.
Query the instance user data from http://169.254.169.254/latest/user-data/.
B.
Query the instance user data from http://169.254.169.254/latest/user-data/.
Answers
C.
Query the Amazon Machine Image (AMI) information from http://169.254.169.254/latest/metadata/ami/.
C.
Query the Amazon Machine Image (AMI) information from http://169.254.169.254/latest/metadata/ami/.
Answers
D.
Check the hosts file of the operating system.
D.
Check the hosts file of the operating system.
Answers
Suggested answer: A

Question 527

Report
Export
Collapse


A company has a serverless application that uses AWS Lambda functions and AWS Systems Manager parameters to store configuration dat a. The company....... the Lambda functions inside the VPC and into private subnets. The Lambda functions are now producing errors in their attempts to access Systems Manager parameters.

Which solution will allow the Lambda functions to access Systems Manager parameters inside the VPC?

A.
Configure security groups to allow access to Systems Manager.
A.
Configure security groups to allow access to Systems Manager.
Answers
B.
Create an interface VPC endpoint for Systems Manager.
B.
Create an interface VPC endpoint for Systems Manager.
Answers
C.
Use an internet gateway from inside the VPC.
C.
Use an internet gateway from inside the VPC.
Answers
D.
Create a gateway VPC endpoint for Systems Manager.
D.
Create a gateway VPC endpoint for Systems Manager.
Answers
Suggested answer: B

Question 528

Report
Export
Collapse

A developer is writing an AWS Lambda function. The Lambda function needs to access items that are stored in an Amazon DynamoDB table. What is the MOST secure way to configure this access for the Lambda function?

A.
Create an IAM user that has permissions to access the DynamoDB table. Create an access key for this user. Store the access key ID and secret...... key in the Lambda function environment variables.
A.
Create an IAM user that has permissions to access the DynamoDB table. Create an access key for this user. Store the access key ID and secret...... key in the Lambda function environment variables.
Answers
B.
Add a resource-based policy to the DynamoDB table to allow access from the Lambda function's IAM role.
B.
Add a resource-based policy to the DynamoDB table to allow access from the Lambda function's IAM role.
Answers
C.
Create an IAM policy that allows access to the DynamoDB table. Attach this policy to the Lambda function's 1AM role.
C.
Create an IAM policy that allows access to the DynamoDB table. Attach this policy to the Lambda function's 1AM role.
Answers
D.
Create a DynamoDB Accelerator (DAX) cluster. Configure the Lambda function to use the DAX cluster to access the DynamoDB table.
D.
Create a DynamoDB Accelerator (DAX) cluster. Configure the Lambda function to use the DAX cluster to access the DynamoDB table.
Answers
Suggested answer: A

Question 529

Report
Export
Collapse

A company that has multiple offices uses an Amazon DynamoDB table to store employee payroll information. Item attributes consist of employee names, office identifiers, and cumulative daily hours worked. The most frequently used query extracts a report of an alphabetical subset of employees for a specific office.

Which design of the DynamoDB table primary key will have the MINIMUM performance impact?

A.
Partition key on the office identifier and sort key on the employee name
A.
Partition key on the office identifier and sort key on the employee name
Answers
B.
Partition key on the employee name and sort key on the office identifier
B.
Partition key on the employee name and sort key on the office identifier
Answers
C.
Partition key on the employee name
C.
Partition key on the employee name
Answers
D.
Partition key on the office identifier
D.
Partition key on the office identifier
Answers
Suggested answer: B

Question 530

Report
Export
Collapse

A data-processing application includes an AWS Lambda function that processes data in several steps. Recently, the function has been reaching the Lambda tii A developer wants to use AWS X-Ray to find out how long each step is taking so that the developer can determine which step is causing the timeout. Which combination of actions should the developer take to accomplish this goal? (Select TWO.)

A.
Modify the application to call the PutMetricData API operation after each processing step. Include the time taken in milliseconds.
A.
Modify the application to call the PutMetricData API operation after each processing step. Include the time taken in milliseconds.
Answers
B.
Use the aws lambda update-function-configuration AWS CLI command to enable active tracing on the Lambda function.
B.
Use the aws lambda update-function-configuration AWS CLI command to enable active tracing on the Lambda function.
Answers
C.
Modify the application to record each processing step in an X-Ray subsegment by using the X-Ray software development kit (SDK).
C.
Modify the application to record each processing step in an X-Ray subsegment by using the X-Ray software development kit (SDK).
Answers
D.
Add the xray:PutTraceSegments permission and the xray:PutTelemetryRecords permission to the Lambda function's execution role.
D.
Add the xray:PutTraceSegments permission and the xray:PutTelemetryRecords permission to the Lambda function's execution role.
Answers
E.
Modify the application to put each processing step in a separate Lambda layer. Include all the layers in the Lambda function.
E.
Modify the application to put each processing step in a separate Lambda layer. Include all the layers in the Lambda function.
Answers
Suggested answer: B
Total 608 questions
Go to page: of 61
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms