• Home
  • Articles
  • Pass Amazon DVA-C01 Actual Free Exam Q&As Updated Dump Jul 10, 2023 [Q360-Q383]

Pass Amazon DVA-C01 Actual Free Exam Q&As Updated Dump Jul 10, 2023 [Q360-Q383]

Share

Pass Amazon DVA-C01 Actual Free Exam Q&As Updated Dump Jul 10, 2023

Latest DVA-C01 Actual Free Exam Updated 610 Questions


AWS-CDA Exam Syllabus Topics:

SectionObjectives

Deployment - 22%

Deploy written code in AWS using existing CI/CD pipelines, processes, and patterns.- Commit code to a repository and invoke build, test and/or deployment actions
- Use labels and branches for version and release management
- Use AWS CodePipeline to orchestrate workflows against different environments
- Apply AWS CodeCommit, AWS CodeBuild, AWS CodePipeline, AWS CodeStar, and AWS CodeDeploy for CI/CD purposes
- Perform a roll back plan based on application deployment policy
Deploy applications using AWS Elastic Beanstalk.- Utilize existing supported environments to define a new application stack
- Package the application
- Introduce a new application version into the Elastic Beanstalk environment
- Utilize a deployment policy to deploy an application version (i.e., all at once, rolling, rolling with batch, immutable)
- Validate application health using Elastic Beanstalk dashboard
- Use Amazon CloudWatch Logs to instrument application logging
Prepare the application deployment package to be deployed to AWS.- Manage the dependencies of the code module (like environment variables, config files and static image files) within the package
- Outline the package/container directory structure and organize files appropriately
- Translate application resource requirements to AWS infrastructure parameters (e.g., memory, cores)
Deploy serverless applications.- Given a use case, implement and launch an AWS Serverless Application Model (AWS SAM) template
- Manage environments in individual AWS services (e.g., Differentiate between Development, Test, and Production in Amazon API Gateway)

Security - 26%

Make authenticated calls to AWS services.- Communicate required policy based on least privileges required by application.
- Assume an IAM role to access a service
- Use the software development kit (SDK) credential provider on-premises or in the cloud to access AWS services (local credentials vs. instance roles)
Implement encryption using AWS services.- Encrypt data at rest (client side; server side; envelope encryption) using AWS services
- Encrypt data in transit
Implement application authentication and authorization.- Add user sign-up and sign-in functionality for applications with Amazon Cognito identity or user pools
- Use Amazon Cognito-provided credentials to write code that access AWS services.
- Use Amazon Cognito sync to synchronize user profiles and data- Use developer-authenticated identities to interact between end user devices, backend
authentication, and Amazon Cognito

Development with AWS Services - 30%

Write code for serverless applications.- Compare and contrast server-based vs. serverless model (e.g., micro services, stateless nature of serverless applications, scaling serverless applications, and decoupling layers of serverless applications)
- Configure AWS Lambda functions by defining environment variables and parameters (e.g., memory, time out, runtime, handler)
- Create an API endpoint using Amazon API Gateway
- Create and test appropriate API actions like GET, POST using the API endpoint
- Apply Amazon DynamoDB concepts (e.g., tables, items, and attributes)
- Compute read/write capacity units for Amazon DynamoDB based on application requirements
- Associate an AWS Lambda function with an AWS event source (e.g., Amazon API Gateway, Amazon CloudWatch event, Amazon S3 events, Amazon Kinesis)
- Invoke an AWS Lambda function synchronously and asynchronously
Translate functional requirements into application design.- Determine real-time vs. batch processing for a given use case
- Determine use of synchronous vs. asynchronous for a given use case
- Determine use of event vs. schedule/poll for a given use case
- Account for tradeoffs for consistency models in an application design

 

NEW QUESTION # 360
Games-R-Us is launching a new game app for mobile devices. Users will log into the game using their existing Facebook account and the game will record player data and scoring information directly to a DynamoDB table.
What is the most secure approach for signing requests to the DynamoDB API?

  • A. Create an IAM user with access credentials that are distributed with the mobile app to sign the requests
  • B. Request temporary security credentials using web identity federation to sign the requests
  • C. Distribute the AWS root account access credentials with the mobile app to sign the requests
  • D. Establish cross account access between the mobile app and the DynamoDB table to sign the requests

Answer: B


NEW QUESTION # 361
A company is using AWS CodePipeline to deliver one of its applications. The delivery pipeline is triggered by changes to the master branch of an AWS CodeCommit repository and uses AWS CodeBuild to implement the test and build stages of the process and AWS CodeDeploy to deploy the application.
The pipeline has been operating successfully for several months and there have been no modifications.
Following a recent change to the application's source code, AWS CodeDeploy has not deployed the updates application as expected.
What are the possible causes? (Choose two.)

  • A. The AWS CodePipeline is incorrectly configured and is not executing AWS CodeDeploy.
  • B. The change was not made in the master branch of the AWS CodeCommit repository.
  • C. One of the earlier stages in the pipeline failed and the pipeline has terminated.
  • D. One of the Amazon EC2 instances in the company's AWS CodePipeline cluster is inactive.
  • E. AWS CodePipeline does not have permissions to access AWS CodeCommit.

Answer: C,D


NEW QUESTION # 362
Which of the following items are required to allow an application deployed on an EC2 instance to write data to a DynamoDB table?
Assume that no security Keys are allowed to be stored on the EC2 instance. Choose 2 answers

  • A. Create an IAM User that allows write access to the DynamoDB table.
  • B. Add an IAM Role to a running EC2 instance.
  • C. Add an IAM User to a running EC2 Instance.
  • D. Launch an EC2 Instance with the IAM Role included in the launch configuration.
  • E. Create an IAM Role that allows write access to the DynamoDB table.
  • F. Launch an EC2 Instance with the IAM User included in the launch configuration.

Answer: B,E


NEW QUESTION # 363
A Developer must trigger an AWS Lambda function based on the item lifecycle activity in an Amazon DynamoDB table.
How can the Developer create the solution?

  • A. Enable a DynamoDB stream that publishes an SNS message. Trigger the Lambda function asynchronously from the SNS message.
  • B. Enable a DynamoDB stream that publishes an Amazon SNS message. Trigger the Lambda function synchronously from the SNS message.
  • C. Enable a DynamoDB stream, and trigger the Lambda function synchronously from the stream.
  • D. Enable a DynamoDB stream, and trigger the Lambda function asynchronously from the stream.

Answer: C

Explanation:
https://docs.aws.amazon.com/lambda/latest/dg/with-ddb.html


NEW QUESTION # 364
An Amazon DynamoDB table uses a Global Secondary Index (GSI) to support read queries. The primary table is write-heavy, whereas the GSI is used for read operations. Looking at Amazon CloudWatch metrics, the Developer notices that write operations to the primary table are throttled frequently under heavy write activity. However, write capacity units to the primary table are available and not fully consumed.
Why is the table being throttled?

  • A. There are not enough read capacity units on the primary table
  • B. A large write operation is being performed against another table
  • C. The GSI write capacity units are underprovisioned
  • D. Amazon DynamoDB Streams is not enabled on the table

Answer: C

Explanation:
https://stackoverflow.com/questions/39582752/do-global-secondary-index-gsi-in-dynamodb-impact-tables-provision-capacity
https://medium.com/@synchrophoto/amazon-dynamodb-provisioning-write-capacity-for-global-secondary-indexes-gsis-eaa4d4dce1df


NEW QUESTION # 365
Given the source code for an AWS Lambda function in the local store.py containing a handler function called get_store and the following AWS CloudFormation template:

What should be done to prepare the template so that it can be deployed using the AWS CLI command aws cloudformation deploy?

  • A. Use aws serverless create-package to embed the source file directly into the existing CloudFormation template.
  • B. Use aws lambda zip to package the source file together with the CloudFormation template and deploy the resulting zip archive.
  • C. Use aws cloudformation package to upload the source code to an Amazon S3 bucket and produce a modified CloudFormation template.
  • D. Use aws cloudformation compile to base64 encode and embed the source file into a modified CloudFormation template.

Answer: C

Explanation:
Explanation
https://docs.aws.amazon.com/cli/latest/reference/cloudformation/package.html


NEW QUESTION # 366
A software engineer developed an AWS Lambda function in Node.js to do some CPU-intensive data processing. With the default settings, the Lambda function takes about 5 minutes to complete.
Which approach should a developer take to increase the speed of completion''

  • A. Instead of using Node js. rewrite the Lambda function using Python
  • B. Increase the available memory to the function.
  • C. Allocate the maximum available CPU units lo the function
  • D. Instead of packaging the libraries in the ZIP file with the function move them to a Lambda layer and use the layer with the function.

Answer: B


NEW QUESTION # 367
If an application is storing hourly log files from thousands of instances from a high traffic web site, which naming scheme would give optimal performance on S3?

  • A. YYYY-MM-DD-HH-log_instanceID
  • B. instanceID_log-HH-DD-MM-YYYY
  • C. HH-DD-MM-YYYY-log_instanceID
  • D. Sequential
  • E. instanceID_log-YYYY-MM-DD-HH

Answer: B

Explanation:
Reference:
https://acloud.guru/forums/aws-certified-developer-associate/discussion/-KU2dEtJb-LI5lSbH_S4/if-an-application-is-storing-hourly-log-files-from-thousands-of-instances-from-a


NEW QUESTION # 368
A developer has a legacy application that is hosted on-premises Other applications hosted on AWS depend on the on-premises application for proper functioning In case of any application errors, the developer wants to be able to use Amazon CloudWatch to monitor and troubleshoot all applications from one place.
How can the developer accomplish this?

  • A. Upload log files from the on-premises server to an Amazon EC2 instance and have the instance forward the logs to CloudWatch.
  • B. Upload log files from the on-premises server to Amazon S3 and have CloudWatch read the files
  • C. Install an AWS SDK on the on-premises server to automatically send logs to CloudWatch .
  • D. Download the CloudWatch agent to the on-premises server Configure the agent to use IAM user credentials with permissions for CloudWatch

Answer: D

Explanation:
Reference:
https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/install-CloudWatch-Agent-onpremise.Html


NEW QUESTION # 369
An organization is using Amazon CloudFront to ensure that its users experience low-latency access to its web application. The organization has identified a need to encrypt all traffic between users and CloudFront, and all traffic between CloudFront and the web application.
How can these requirements be met? (Choose two.)

  • A. Use AWS KMS to encrypt traffic between CloudFront and the web application.
  • B. Enable the CloudFront option Restrict Viewer Access.
  • C. Set the Viewer Protocol Policy to "HTTPS Only" or "Redirect HTTP to HTTPS".
  • D. Set the Origin's HTTP Port to 443.
  • E. Set the Origin Protocol Policy to "HTTPS Only".

Answer: C,E

Explanation:
Explanation
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https-viewers-to-cloudfront.html
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https-cloudfront-to-custom-origi


NEW QUESTION # 370
A developer is designing a web application in which new users will use their email addresses to create accounts Millions of users are expected to sign up. The application will store attributes for each user Which AWS service or feature should the developer implement to meet these requirements?

  • A. AWS Mobile Hub User File Storage
  • B. AWS Mobile Hub Cloud Logic
  • C. Amazon Cognito user pools
  • D. AWS AppSync

Answer: C


NEW QUESTION # 371
A developer is writing a new AWS Serverless Application Model (AWS SAM) template with a new AWS Lambda function The Lambda function runs complex code. The developer wants to test the Lambda function with more CPU power.
What should the developer do to meet this requirement?

  • A. Increase the timeout
  • B. Increase the runtime engine version
  • C. Increase the memory
  • D. Increase the number of Lambda layers.

Answer: C


NEW QUESTION # 372
An application stops working with the following error: The specified bucket does not exist. Where is the BEST place to start the root cause analysis?

  • A. Check AWS X-Ray for Amazon S3 DeleteBucket alarms.
  • B. Check the application logs in Amazon CloudWatch Logs for Amazon S3 DeleteBucket errors.
  • C. Check AWS CloudTrail for a DeleteBucket event.
  • D. Check the Elastic Load Balancer logs for DeleteBucket requests.

Answer: C


NEW QUESTION # 373
A developer is writing a web application that must share secure documents with end users The documents are stored in a private Amazon S3 bucket The application must allow only authenticated users to download specific documents when requested, and only for a duration of 15 minutes How can the developer meet these requirements?

  • A. Copy the documents to a separate S3 bucket that has a lifecycle policy for deletion after 15 minutes
  • B. Create a presigned S3 URL using the AWS SDK with an expiration time of 15 minutes
  • C. Use server-side encryption with AWS KMS managed keys (SSE-KMS) and download the documents using HTTPS
  • D. Modify the S3 bucket policy to only allow specific users to download the documents Revert the change after 15 minutes.

Answer: B


NEW QUESTION # 374
A Developer wants to upload data to Amazon S3 and must encrypt the data in transit.
Which of the following solutions will accomplish this task? (Choose two.)

  • A. Set up Server-Side Encryption with S3-Managed Keys
  • B. Set up Server-Side Encryption with AWS KMS-Managed Keys
  • C. Transfer the data over an SSL connection
  • D. Set up Client-Side Encryption with an AWS KMS-Managed Customer Master Key
  • E. Set up hardware VPN tunnels to a VPC and access S3 through a VPC endpoint

Answer: C,D

Explanation:
https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingEncryption.html


NEW QUESTION # 375
A developer is migrating to Amazon Cognito from a custom user management solution that stores user information in a database. The developer has created a...... Amazon Cognito user pool. The developer needs to migrate the existing user information to the user pool without forcing users to change their passwords.
Which solution will meet these requirements?

  • A. Add an OpenID Connect (OIDC) identity provider to the user pool.
  • B. Import users from a .json file.
  • C. Import users from a .csv file.
  • D. Import users with a user migration AWS Lambda trigger.

Answer: A


NEW QUESTION # 376
A gaming company is developing a mobile game application for iOS and Android platforms. This mobile game securely stores user data locally on the device. The company wants to allow users to use multiple device for the game, which requires user data synchronization across device.
Which service should be used to synchronize user data across devices without the need to create a backend application?

  • A. Amazon DynamoDB
  • B. AWS Lambda
  • C. Amazon S3
  • D. Amazon Cognito

Answer: D


NEW QUESTION # 377
You attempt to store an object in the US-STANDARD region in Amazon S3, and receive a confirmation that it has been successfully stored. You then immediately make another API call and attempt to read this object. S3 tells you that the object does not exist
What could explain this behavior?

  • A. US-STANDARD imposes a 1 second delay before new objects are readable.
  • B. You exceeded the bucket object limit, and once this limit is raised the object will be visible.
  • C. US-STANDARD uses eventual consistency and it can take time for an object to be readable in a bucket
  • D. Objects in Amazon S3 do not become visible until they are replicated to a second region.

Answer: C

Explanation:
https://acloud.guru/forums/aws-certified-developer-associate/discussion/-KGngHzVQ03OpeAA9jSP/i-cant-answer-a-sample-question-pretty-worried-about-the-real-thing
https://acloud.guru/forums/aws-certified-developer-associate/discussion/-K5WKXRAlJdOu58GREF_/s3-question


NEW QUESTION # 378
A web application is using Amazon Kinesis Streams for clickstream data that may not be consumed for up to
12 hours.
How can the Developer implement encryption at rest for data within the Kinesis Streams?

  • A. Enable SSL connections to Kinesis
  • B. Enable server-side encryption in Kinesis Streams
  • C. Encrypt the data once it is at rest with a Lambda function
  • D. Use Amazon Kinesis Consumer Library

Answer: B


NEW QUESTION # 379
When a Simple Queue Service message triggers a task that takes 5 minutes to complete, which process below will result in successful processing of the message and remove it from the queue while minimizing the chances of duplicate processing?

  • A. Retrieve the message with an increased visibility timeout, process the message, delete the message from the queue
  • B. Retrieve the message with increased DelaySeconds, process the message, delete the message from the queue
  • C. Retrieve the message with increased DelaySeconds, delete the message from the queue, process the message
  • D. Retrieve the message with an increased visibility timeout, delete the message from the queue, process the message

Answer: A

Explanation:
Reference:
https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-visibility-timeout.html


NEW QUESTION # 380
A developer is running an application on an Amazon EC2 instance. When the application tries to read an Amazon S3 bucket, the application fails. The developer notices that the associated IAM role is missing the S3 read permission. The developer needs to give the application the ability to read the S3 bucket.
Which solution will meet this requirement with the LEAST application disruption?

  • A. Add the permission to the role. Terminate the existing EC2 instance. Launch a new EC2 instance.
  • B. Add the permission to the role. Hibernate and restart the existing EC2 instance.
  • C. Add the permission to the S3 bucket. Restart the EC2 instance.
  • D. Add the permission to the role so that the change will take effect automatically.

Answer: D


NEW QUESTION # 381
A company is using Amazon API Gateway to manage its public-facing API. The CISO requires that the APIs be used by test account users only. What is the MOST secure way to restrict API access to users of this particular AWS account?

  • A. Client-side SSL certificates for authentication
  • B. API Gateway resource policies
  • C. Cross-origin resource sharing (CORS)
  • D. Usage plans

Answer: D


NEW QUESTION # 382
Given the source code for an AWS Lambda function in the local store.py containing a handler function called get_store and the following AWS CloudFormation template:

What should be done to prepare the template so that it can be deployed using the AWS CLI command aws
cloudformation deploy?

  • A. Use aws cloudformation compile to base64 encode and embed the source file into a modified
    CloudFormation template.
  • B. Use aws lambda zip to package the source file together with the CloudFormation template and deploy
    the resulting zip archive.
  • C. Use aws cloudformation package to upload the source code to an Amazon S3 bucket and produce a
    modified CloudFormation template.
  • D. Use aws serverless create-package to embed the source file directly into the existing
    CloudFormation template.

Answer: C

Explanation:
https://docs.aws.amazon.com/cli/latest/reference/cloudformation/package.html


NEW QUESTION # 383
......

Online Questions - Valid Practice DVA-C01 Exam Dumps Test Questions: https://www.vce4plus.com/Amazon/DVA-C01-valid-vce-dumps.html

100% Real DVA-C01 dumps  - Brilliant DVA-C01 Exam Questions PDF: https://drive.google.com/open?id=1TcNGyJMlPFB3RxyBhsyf3tnuVirZSMM-

Related Articles

more
Amazon DVA-C01 Certification Practice Exam