Amazon AWS Certified Developer - Associate DVA-C02
Prev

There are 313 results

Next
#21 (Accuracy: 100% / 1 votes)
A company uses AWS to run its learning management system (LMS) application. The application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The application's domain name is managed in Amazon Route 53. The application is deployed in a single AWS Region, but the company wants to improve application performance for users all over the world.

Which solution will improve global performance with the LEAST operational overhead?
  • A. Set up an Amazon CloudFront distribution that uses the ALB as the origin server. Configure Route 53 to create a DNS alias record that points the application's domain name to the CloudFront distribution URL.
  • B. Launch more EC2 instances behind the ALConfigure the ALB to use session affinity (sticky sessions). Create a Route 53 alias record for the ALB by using a geolocation routing policy.
  • C. Create an AWS Client VPN endpoint in the VPInstruct users to connect to the VPN to access the application. Create a Route 53 alias record for the VPN endpoint. Configure Route 53 to use a geolocation routing policy.
  • D. Deploy the application to multiple Regions across the world. Create a Route 53 alias record for the ALB by using a latency-based routing policy.
#22 (Accuracy: 100% / 1 votes)
A developer uses Amazon S3 Event Notifications to invoke AWS Lambda functions. The Lambda functions process images after the images are uploaded to S3 buckets. The developer has set up a development S3 bucket, a production S3 bucket, a development Lambda function, and a production Lambda function in the same AWS account.

The developer notices that uploads to the development S3 bucket wrongly invoke the production Lambda function. The developer must prevent development data from affecting the production Lambda function.

What should the developer do to meet these requirements?
  • A. Update the execution role for the production Lambda function. Add a policy that allows the execution role to read from only the production S3 bucket.
  • B. Update the S3 bucket policy for the production S3 bucket to invoke the production Lambda function. Update the S3 bucket policy for the development S3 bucket to invoke the development Lambda function.
  • C. Separate the development environment and the production environment into their own AWS accounts. Update the execution role for each Lambda function. Add a policy that allows the execution role to read from only the S3 bucket that is in the same account.
  • D. Separate the development environment and the production environment into their own AWS accounts. Add a resource policy to the Lambda functions to allow only S3 bucket events in the same account to invoke the functions.
#23 (Accuracy: 100% / 2 votes)
A developer is troubleshooting an application. The application includes several AWS Lambda functions that invoke an Amazon API Gateway API. The API Gateway's method request is set up to use an Amazon Cognito authorizer for authentication.

All the Lambda functions pass the user ID as part of the Authorization header to the API Gateway API. The API Gateway API returns a 403 status code for all GET requests.

How should the developer resolve this issue?
  • A. Modify the client GET request to include a valid API key in the Authorization header.
  • B. Modify the client GET request to include a valid token in the Authorization header.
  • C. Update the resource policy for the API Gateway API to allow the execute-api:Invoke action.
  • D. Modify the client to send an OPTIONS preflight request before the GET request.
#24 (Accuracy: 100% / 1 votes)
A developer is building a microservice that uses AWS Lambda to process messages from an Amazon Simple Queue Service (Amazon SQS) standard queue. The Lambda function calls external APIs to enrich the SQS message data before loading the data into an Amazon Redshift data warehouse. The SQS queue must handle a maximum of 1,000 messages per second.

During initial testing, the Lambda function repeatedly inserted duplicate data into the Amazon Redshift table. The duplicate data led to a problem with data analysis. All duplicate messages were submitted to the queue within 1 minute of each other.

How should the developer resolve this issue?
  • A. Create an SQS FIFO queue. Enable message deduplication on the SQS FIFO queue.
  • B. Reduce the maximum Lambda concurrency that the SQS queue can invoke.
  • C. Use Lambda's temporary storage to keep track of processed message identifiers
  • D. Configure a message group ID for every sent message. Enable message deduplication on the SQS standard queue.
#25 (Accuracy: 100% / 1 votes)
A developer is building an application integrating an Amazon API Gateway with an AWS Lambda function. When calling the API, the developer receives the following error:

Wed Nov 08 01:13:00 UTC 2017 : Method completed with status: 502

What should the developer do to resolve the error?
  • A. Change the HTTP endpoint of the API to an HTTPS endpoint.
  • B. Change the format of the payload sent to the API Gateway.
  • C. Change the format of the Lambda function response to the API call.
  • D. Change the authorization header in the API call to access the Lambda function.
#26 (Accuracy: 100% / 5 votes)
A developer has a legacy application that is hosted on-premises. Other applications hosted on AWS depend on the on-premises application for proper functioning. In case of any application errors, the developer wants to be able to use Amazon CloudWatch to monitor and troubleshoot all applications from one place.
How can the developer accomplish this?
  • A. Install an AWS SDK on the on-premises server to automatically send logs to CloudWatch.
  • B. Download the CloudWatch agent to the on-premises server. Configure the agent to use IAM user credentials with permissions for CloudWatch.
  • C. Upload log files from the on-premises server to Amazon S3 and have CloudWatch read the files.
  • D. Upload log files from the on-premises server to an Amazon EC2 instance and have the instance forward the logs to CloudWatch.
#27 (Accuracy: 91% / 6 votes)
A developer is migrating some features from a legacy monolithic application to use AWS Lambda functions instead. The application currently stores data in an Amazon Aurora DB cluster that runs in private subnets in a VPC. The AWS account has one VPC deployed. The Lambda functions and the DB cluster are deployed in the same AWS Region in the same AWS account.
The developer needs to ensure that the Lambda functions can securely access the DB cluster without crossing the public internet.
Which solution will meet these requirements?
  • A. Configure the DB cluster's public access setting to Yes.
  • B. Configure an Amazon RDS database proxy for he Lambda functions.
  • C. Configure a NAT gateway and a security group for the Lambda functions.
  • D. Configure the VPC, subnets, and a security group for the Lambda functions.
#28 (Accuracy: 100% / 2 votes)
An AWS Lambda function is invoked asynchronously to process events. Occasionally, the Lambda function falls to process events. A developer needs to collect and analyze these failed events to fix the issue.

What should the developer do to meet these requirements with the LEAST development effort?
  • A. Add logging statements for all events in the Lambda function. Filter AWS CloudTrail logs for errors.
  • B. Configure the Lambda function to start an AWS Step Functions workflow with retries for failed events.
  • C. Add a dead-letter queue to send messages to an Amazon Simple Queue Service (Amazon SQS) standard queue.
  • D. Add a dead-letter queue to send messages to an Amazon Simple Notification Service (Amazon SNS) FIFO topic.
#29 (Accuracy: 100% / 9 votes)
A company is running a custom application on a set of on-premises Linux servers that are accessed using Amazon API Gateway. AWS X-Ray tracing has been enabled on the API test stage.
How can a developer enable X-Ray tracing on the on-premises servers with the LEAST amount of configuration?
  • A. Install and run the X-Ray SDK on the on-premises servers to capture and relay the data to the X-Ray service.
  • B. Install and run the X-Ray daemon on the on-premises servers to capture and relay the data to the X-Ray service.
  • C. Capture incoming requests on-premises and configure an AWS Lambda function to pull, process, and relay relevant data to X-Ray using the PutTraceSegments API call.
  • D. Capture incoming requests on-premises and configure an AWS Lambda function to pull, process, and relay relevant data to X-Ray using the PutTelemetryRecords API call.
#30 (Accuracy: 100% / 3 votes)
A developer received the following error message during an AWS CloudFormation deployment:

DELETE_FAILED (The following resource(s) failed to delete: [ASGInstanceRole12345678].)

Which action should the developer take to resolve this error?
  • A. Contact AWS Support to report an issue with the Auto Scaling Groups (ASG) service.
  • B. Add a DependsOn attribute to the ASGInstanceRole12345678 resource in the CloudFormation template. Then delete the stack.
  • C. Modify the CloudFormation template to retain the ASGInstanceRole12345678 resource. Then manually delete the resource after deployment.
  • D. Add a force parameter when calling CloudFormation with the role-arn of ASGInstanceRole12345678.