DVA-C01.pdf
Q: 1
A developer has an application that is composed of many different AWS Lambda functions. The
Lambda functions all use some of the same dependencies. To avoid security issues, the developer is
constantly updating the dependencies of all of the Lambda functions. The result is duplicated effort
for each function.
Now can the developer keep the dependencies of the Lambda functions up to date with the LEAST
additional complexity?
Options
Q: 2
An application running on Amazon EC2 instances must access objects within an Amaon S3 busket
that are encrypted using server-side encryption using AWS KMS encryption keys (SSE-KMS). The
application must have access to the customer master key (CMK) to decrypt the objects.
Which combination of steps will grant the application access? (Select TWO.)
Options
Q: 3
An application uses Amazon DynamoDB as its backend database The application experiences sudden
spikes in traffic over the weekend and variable but predictable spikes during weekdays The capacity
needs to be set to avoid throttling errors at all times
How can this be accomplished cost-effectively?
Options
Q: 4
When writing a Lambda function, what is the benefit of instantiating AWS clients outside the scope
of the handler?
Options
Q: 5
A company requires that AWS Lambda functions written by developers log errors so system
administrators can more effectively troubleshoot issues What should the developers implement to
meet this need?
Options
Q: 6
An application has hundreds of users. Each user may use multiple devices to access the application.
The Developer wants to assign unique identifiers to these users regardless of the device they use.
Which of the following methods should be used to obtain unique identifiers?
Options
Q: 7
A static website is hosted in an Amazon S3 bucket. Several HTML pages on the site use JavaScript to
download images from another Amazon S3 bucket. These images are not displayed when users
browse the site.
What is the possible cause for the issue?
Options
Q: 8
A Developer created a Lambda function for a web application backend. When testing the Lambda
function from the AWS Lambda console, the Developer can see that the function is being executed,
but there is no log data being generated in Amazon CloudWatch Logs, even after several minutes.
What could cause this situation?
Options
Q: 9
A developer is leveraging a Border Gateway Protocol (BGP)-based AWS VPN connection to connect
from on-premises to Amazon EC2 instances in the developer's account The developer is able to
access an EC2 instance in subnet A, but is unable to access an EC2 instance in subnet B in the same
VPC
Which logs can the developer use to verify whether the traffic is reaching subnet B?
Options
Q: 10
A development team consists of 10 team members. Similar to a home directory for each team
member the manager wants to grant access to user-specific folders in an Amazon S3 bucket. For the
team member with the username “TeamMemberX”, the snippet of the IAM policy looks like this:
Instead of creating distinct policies for each team member, what approach can be used to make this
policy snippet generic for all team members?
Instead of creating distinct policies for each team member, what approach can be used to make this
policy snippet generic for all team members?Options
Q: 11
A company has an application where reading objects from Amazon S3 is based on the type of user
The user types are registered user and guest user The company has 25.000 users and is growing
Information is pulled from an S3 bucket depending on the user type.
Which approaches are recommended to provide access to both user types? (Select TWO.)
Options
Q: 12
A development team wants to run their container workloads on Amazon ECS Each application
container needs to share data with another container to collect logs and metrics.
What should the development team do to meet these requirements?
Options
Q: 13
A developer is writing an application to analyze the traffic to a fleet of Amazon EC2 instances The EC2
instances run behind a public Application Load Balancer (ALB). An HTTP server runs on each of the
EC2 instances, logging all requests to a log file.
The developer wants to capture the client public IP addresses. The developer analyzes the log files
and notices only the IP address of the ALB
What must the developer do to capture the client public IP addresses in the log file?
Options
Q: 14
A development team is building a new application that will run on Amazon EC2 and use Amazon
DynamoDB as a storage layer The developers all have assigned IAM user accounts in the same IAM
group The developers currently can launch EC2 instances and they need to be able to launch EC2
instances with an instance role allowing access to Amazon DynamoDB.
Which AWS I AM changes are needed when creating an instance role to provide this functionality^
Options
Q: 15
A company is using Amazon API Gateway to manage its public-facing API. The CISO requires that the
APIs be used by test account users only. What is the MOST secure way to restrict API access to users
of this particular AWS account?
Options
Q: 16
An application will ingest data at a very high throughput from many sources and must store the data
in an Amazon S3 bucket. Which service would BEST accomplish this task?
Options
Q: 17
For a deployment using AWS CodeDeploy, what is the run order of the hooks for in-place
deployments?
Options
Q: 18
What is the format of structured notification messages sent by Amazon SNS?
Options
Q: 19
A developer needs to modify an application architecture to meet new functional requirements.
Application data is stored in Amazon DynamoDB and processed for analysis in a rightly batch. The
system analysts do not want to wait unit the next day to view the processed data and have asked to
have it available in near-real time.
Which application architect pattern would enables the data to be processed as it is received?
Options
Q: 20
A developer is trying to monitor an application's status by running a cron job that returns 1 if the
service is up and 0 if the service is down. The developer created code that uses an AWS CLI put-
metric-alarm command to publish the custom metrics to Amazon CloudWatch and create an alarm
However the developer is unable to create an alarm as the custom metrics do not appear m the
CloudWatch console.
What is causing this issue?
Options
Q: 21
A development team is migrating a monolithic application to Amazon API Gateway with AWS
Lambda integrations using the AWS CD The zip deployment package exceeds the Lambda direct
upload deployment package size limit. How should the Lambda function be deployed?
Options
Q: 22
A team deployed an AWS CloudFormaiion template to update a stack that already included an
Amazon RDS DB instance However, before the deployment of the update the team changed the
name of the DB instance on the template by mistake The DeletionPoIicy attribute for all resources
was not changed from the default values
What will be the result of this mistake?
Options
Q: 23
An application development team decides to use AWS X Ray to monitor application code to analyze
performance and perform r cause analysis
What does the team need to do to begin using X Ray? (Select TWO )
Options
Q: 24
A current architecture uses many Lambda functions invoking one another as a large state machine.
The coordination of this state machine is legacy custom code that breaks easily.
Which AWS Service can help refactor and manage the state machine?
Options
Q: 25
What is one key difference between an Amazon EBS-backed and an instance-store backed instance?
Options
Q: 26
A developer is writing an application in AWS Lambda To simplify testing and deployments, the
developer needs the database connection string to be easily changed without modifying the Lambda
code.
How can this requirement be met?
Options
Q: 27
A developer has discovered that an application responsible for processing messages in an Amazon
SQS queue is routinely falling behind. The application is capable of processing multiple messages in
one
execution,
but
is
only
receiving
one
message
at
a
time
What should the developer do to increase the number of messages the application receives?
Options
Q: 28
A developer is creating a role to access Amazon S3 buckets To create the role, the developer uses the
AWS CLI create-role command. Which policy should be added to allow the Amazon EC2 service to
assume the role?
Options
Q: 29
A Developer needs temporary access to resources in a second account.
What is the MOST secure way to achieve this?
Options
Q: 30
A developer is building an application integrating an Amazon API Gateway with an AWS Lambda
function. When calling the API, the developer receives the following error. Wed Nov 03 01:13:00
UTC 2017
:
Method completed with status:
502 What should the developer do to resolve the
error?
Options
Q: 31
An application contains two components one component to handle HI IP requests, and another
component to handle background processing tasks Bach component must scale independently The
developer wants to deploy this application using AWS Elastic Beanstalk.
How should this application be deployed, based on these requirements?
Options
Q: 32
The Lambda function below is being called through an API using Amazon API Gateway. The average
execution time for the Lambda function is about 1 second. The pseudocode for the Lambda function
is as shown in the exhibit.
What two actions can be taken to improve the performance of this Lambda function without
increasing the cost of the solution? (Select two.)
What two actions can be taken to improve the performance of this Lambda function without
increasing the cost of the solution? (Select two.)Options
Q: 33
Games-R-Us is launching a new game app for mobile devices. Users will log into the game using their
existing Facebook account and the game will record player data and scoring information directly to a
DynamoDB table.
What is the most secure approach for signing requests to the DynamoDB API?
Options
Q: 34
A developer has built an application using Amazon Cognito for authentication and authorization.
After a user is successfully logged in to the application, the application creates a user record in an
Amazon DynamoDB table.
What is the correct flow to authenticate the user and create a record in the DynamoDB table?
Options
Q: 35
A Developer is writing a REST service that will add items to a shopping list. The service is built on
Amazon API Gateway with AWS Lambda integrations. The shopping list items are send as query
string parameters in the method request.
How should the Developer convert the query string parameters to arguments for the Lambda
function?
Options
Question 1 of 35
