Free Test
Question: / 10
Quiz
Question 1/101/10
A developer is creating an AWS CloudFormation template to deploy Amazon EC2 instances across multiple AWS accounts. The developer must choose the EC2 instances from a list of approved instance types.
How can the developer incorporate the list of approved instance types in the CloudFormation template?
Select the answer:Select the answer
1 correct answerA.
Create a separate CloudFormation template for each EC2 instance type in the list.
B.
In the Resources section of the CloudFormation template, create resources for each EC2 instance type in the list.
C.
In the CloudFormation template, create a separate parameter for each EC2 instance type in the list.
D.
In the CloudFormation template, create a parameter with the list of EC2 instance types as AllowedValues.
Quiz
Question 2/102/10
A company is implementing an application on Amazon EC2 instances. The application needs to
process incoming transactions. When the application detects a transaction that is not valid, the
application must send a chat message to the company's support team. To send the message, the
application needs to retrieve the access token to authenticate by using the chat API.
A developer needs to implement a solution to store the access token. The access token must be
encrypted at rest and in transit. The access token must also be accessible from other AWS accounts.
Which solution will meet these requirements with the LEAST management overhead?
Select the answer:Select the answer
1 correct answerA.
Use an AWS Systems Manager Parameter Store SecureString parameter that uses an AWS Key
Management Service (AWS KMS) AWS managed key to store the access token. Add a resource-based
policy to the parameter to allow access from other accounts. Update the IAM role of the EC2
instances with permissions to access Parameter Store. Retrieve the token from Parameter Store with
the decrypt flag enabled. Use the decrypted access token to send the message to the chat.
B.
Encrypt the access token by using an AWS Key Management Service (AWS KMS) customer
managed key. Store the access token in an Amazon DynamoDB table. Update the IAM role of the EC2
instances with permissions to access DynamoDB and AWS KMS. Retrieve the token from DynamoDB.
Decrypt the token by using AWS KMS on the EC2 instances. Use the decrypted access token to send
the message to the chat.
C.
Use AWS Secrets Manager with an AWS Key Management Service (AWS KMS) customer managed
key to store the access token. Add a resource-based policy to the secret to allow access from other
accounts. Update the IAM role of the EC2 instances with permissions to access Secrets Manager.
Retrieve the token from Secrets Manager. Use the decrypted access token to send the message to
the chat.
D.
Encrypt the access token by using an AWS Key Management Service (AWS KMS) AWS managed
key. Store the access token in an Amazon S3 bucket. Add a bucket policy to the S3 bucket to allow
access from other accounts. Update the IAM role of the EC2 instances with permissions to access
Amazon S3 and AWS KMS. Retrieve the token from the S3 bucket. Decrypt the token by using AWS
KMS on the EC2 instances. Use the decrypted access token to send the massage to the chat.
Quiz
Question 3/103/10
A company is running Amazon EC2 instances in multiple AWS accounts. A developer needs to
implement an application that collects all the lifecycle events of the EC2 instances. The application
needs to store the lifecycle events in a single Amazon Simple Queue Service (Amazon SQS) queue in
the company's main AWS account for further processing.
Which solution will meet these requirements?
Select the answer:Select the answer
1 correct answerA.
Configure Amazon EC2 to deliver the EC2 instance lifecycle events from all accounts to the Amazon
EventBridge event bus of the main account. Add an EventBridge rule to the event bus of the main
account that matches all EC2 instance lifecycle events. Add the SQS queue as a target of the rule.
B.
Use the resource policies of the SQS queue in the main account to give each account permissions
to write to that SQS queue. Add to the Amazon EventBridge event bus of each account an
EventBridge rule that matches all EC2 instance lifecycle events. Add the SQS queue in the main
account as a target of the rule.
C.
Write an AWS Lambda function that scans through all EC2 instances in the company accounts to
detect EC2 instance lifecycle changes. Configure the Lambda function to write a notification message
to the SQS queue in the main account if the function detects an EC2 instance lifecycle change. Add an
Amazon EventBridge scheduled rule that invokes the Lambda function every minute.
D.
Configure the permissions on the main account event bus to receive events from all accounts.
Create an Amazon EventBridge rule in each account to send all the EC2 instance lifecycle events to
the main account event bus. Add an EventBridge rule to the main account event bus that matches all
EC2 instance lifecycle events. Set the SQS queue as a target for the rule.
Quiz
Question 4/104/10
An application is using Amazon Cognito user pools and identity pools for secure access. A developer
wants to integrate the user-specific file upload and download features in the application with
Amazon S3. The developer must ensure that the files are saved and retrieved in a secure manner and
that users can access only their own files. The file sizes range from 3 KB to 300 MB.
Which option will meet these requirements with the HIGHEST level of security?
Select the answer:Select the answer
1 correct answerA.
Use S3 Event Notifications to validate the file upload and download requests and update the user
interface (UI).
B.
Save the details of the uploaded files in a separate Amazon DynamoDB table. Filter the list of files
in the user interface (UI) by comparing the current user ID with the user ID associated with the file in
the table.
C.
Use Amazon API Gateway and an AWS Lambda function to upload and download files. Validate
each request in the Lambda function before performing the requested operation.
D.
Use an IAM policy within the Amazon Cognito identity prefix to restrict users to use their own
folders in Amazon S3.
Quiz
Question 5/105/10
A company is building a scalable data management solution by using AWS services to improve the
speed and agility of development. The solution will ingest large volumes of data from various sources
and will process this data through multiple business rules and transformations.
The solution requires business rules to run in sequence and to handle reprocessing of data if errors
occur when the business rules run. The company needs the solution to be scalable and to require the
least possible maintenance.
Which AWS service should the company use to manage and automate the orchestration of the data
flows to meet these requirements?
Select the answer:Select the answer
1 correct answerA.
AWS Batch
B.
AWS Step Functions
C.
AWS Glue
D.
AWS Lambda
Quiz
Question 6/106/10
A developer has created an AWS Lambda function that is written in Python. The Lambda function
reads data from objects in Amazon S3 and writes data to an Amazon DynamoDB table. The function is
successfully invoked from an S3 event notification when an object is created. However, the function
fails when it attempts to write to the DynamoDB table.
What is the MOST likely cause of this issue?
Select the answer:Select the answer
1 correct answerA.
The Lambda function's concurrency limit has been exceeded.
B.
DynamoDB table requires a global secondary index (GSI) to support writes.
C.
The Lambda function does not have IAM permissions to write to DynamoDB.
D.
The DynamoDB table is not running in the same Availability Zone as the Lambda function.
Quiz
Question 7/107/10
A developer has an application that makes batch requests directly to Amazon DynamoDB by using
the BatchGetItem low-level API operation. The responses frequently return values in the
UnprocessedKeys element.
Which actions should the developer take to increase the resiliency of the application when the batch
response includes values in UnprocessedKeys? (Choose two.)
Select multiple answer: (Choose 2)Select the answer
2 correct answersA.
Retry the batch operation immediately.
B.
Retry the batch operation with exponential backoff and randomized delay.
C.
Update the application to use an AWS software development kit (AWS SDK) to make the requests.
D.
Increase the provisioned read capacity of the DynamoDB tables that the operation accesses.
E.
Increase the provisioned write capacity of the DynamoDB tables that the operation accesses.
Quiz
Question 8/108/10
A company is running a custom application on a set of on-premises Linux servers that are accessed using Amazon API Gateway. AWS X-Ray tracing has been enabled on the API test stage.
How can a developer enable X-Ray tracing on the on-premises servers with the LEAST amount of configuration?
Select the answer:Select the answer
1 correct answerA.
Install and run the X-Ray SDK on the on-premises servers to capture and relay the data to the X-Ray service.
B.
Install and run the X-Ray daemon on the on-premises servers to capture and relay the data to the X-Ray service.
C.
Capture incoming requests on-premises and configure an AWS Lambda function to pull, process, and relay relevant data to X-Ray using the PutTraceSegments API call.
D.
Capture incoming requests on-premises and configure an AWS Lambda function to pull, process, and relay relevant data to X-Ray using the PutTelemetryRecords API call.
Quiz
Question 9/109/10
A company wants to share information with a third party. The third party has an HTTP API endpoint
that the company can use to share the information. The company has the required API key to access
the HTTP API.
The company needs a way to manage the API key by using code. The integration of the API key with
the application code cannot affect application performance.
Which solution will meet these requirements MOST securely?
Select the answer:Select the answer
1 correct answerA.
Store the API credentials in AWS Secrets Manager. Retrieve the API credentials at runtime by using
the AWS SDK. Use the credentials to make the API call.
B.
Store the API credentials in a local code variable. Push the code to a secure Git repository. Use the
local code variable at runtime to make the API call.
C.
Store the API credentials as an object in a private Amazon S3 bucket. Restrict access to the S3
object by using IAM policies. Retrieve the API credentials at runtime by using the AWS SDK. Use the
credentials to make the API call.
D.
Store the API credentials in an Amazon DynamoDB table. Restrict access to the table by using
resource-based policies. Retrieve the API credentials at runtime by using the AWS SDK. Use the
credentials to make the API call.
Quiz
Question 10/1010/10
A developer is deploying a new application to Amazon Elastic Container Service (Amazon ECS). The
developer needs to securely store and retrieve different types of variables. These variables include
authentication information for a remote API, the URL for the API, and credentials. The authentication
information and API URL must be available to all current and future deployed versions of the
application across development, testing, and production environments.
How should the developer retrieve the variables with the FEWEST application changes?
Select the answer:Select the answer
1 correct answerA.
Update the application to retrieve the variables from AWS Systems Manager Parameter Store. Use
unique paths in Parameter Store for each variable in each environment. Store the credentials in AWS
Secrets Manager in each environment.
B.
Update the application to retrieve the variables from AWS Key Management Service (AWS KMS).
Store the API URL and credentials as unique keys for each environment.
C.
Update the application to retrieve the variables from an encrypted file that is stored with the
application. Store the API URL and credentials in unique files for each environment.
D.
Update the application to retrieve the variables from each of the deployed environments. Define
the authentication information and API URL in the ECS task definition as unique names during the
deployment process.
Looking for more questions?Buy now
Amazon-DVA-C02 Practice test unlocks all online simulator questions
Thank you for choosing the free version of the Amazon-DVA-C02 practice test! Further deepen your knowledge on Amazon Simulator; by unlocking the full version of our Amazon-DVA-C02 Simulator you will be able to take tests with over 65 constantly updated questions and easily pass your exam. 98% of people pass the exam in the first attempt after preparing with our 65 questions.
BUY NOWWhat to expect from our Amazon-DVA-C02 practice tests and how to prepare for any exam?
The Amazon-DVA-C02 Simulator Practice Tests are part of the Amazon Database and are the best way to prepare for any Amazon-DVA-C02 exam. The Amazon-DVA-C02 practice tests consist of 65 questions and are written by experts to help you and prepare you to pass the exam on the first attempt. The Amazon-DVA-C02 database includes questions from previous and other exams, which means you will be able to practice simulating past and future questions. Preparation with Amazon-DVA-C02 Simulator will also give you an idea of the time it will take to complete each section of the Amazon-DVA-C02 practice test . It is important to note that the Amazon-DVA-C02 Simulator does not replace the classic Amazon-DVA-C02 study guides; however, the Simulator provides valuable insights into what to expect and how much work needs to be done to prepare for the Amazon-DVA-C02 exam.
BUY NOWAmazon-DVA-C02 Practice test therefore represents an excellent tool to prepare for the actual exam together with our Amazon practice test . Our Amazon-DVA-C02 Simulator will help you assess your level of preparation and understand your strengths and weaknesses. Below you can read all the quizzes you will find in our Amazon-DVA-C02 Simulator and how our unique Amazon-DVA-C02 Database made up of real questions:
Info quiz:
- Quiz name:Amazon-DVA-C02
- Total number of questions:65
- Number of questions for the test:50
- Pass score:80%
You can prepare for the Amazon-DVA-C02 exams with our mobile app. It is very easy to use and even works offline in case of network failure, with all the functions you need to study and practice with our Amazon-DVA-C02 Simulator.
Use our Mobile App, available for both Android and iOS devices, with our Amazon-DVA-C02 Simulator . You can use it anywhere and always remember that our mobile app is free and available on all stores.
Our Mobile App contains all Amazon-DVA-C02 practice tests which consist of 65 questions and also provide study material to pass the final Amazon-DVA-C02 exam with guaranteed success. Our Amazon-DVA-C02 database contain hundreds of questions and Amazon Tests related to Amazon-DVA-C02 Exam. This way you can practice anywhere you want, even offline without the internet.
BUY NOW