• Home
  • Articles
  • [Jul 09, 2022] 100% Latest Most updated AWS-Certified-Developer-Associate Questions and Answers [Q170-Q186]

[Jul 09, 2022] 100% Latest Most updated AWS-Certified-Developer-Associate Questions and Answers [Q170-Q186]

Share

[Jul 09, 2022] 100% Latest Most updated AWS-Certified-Developer-Associate Questions and Answers

Try with 100% Real Exam Questions and Answers

NEW QUESTION 170
An application on AWS is using third-party APIs. The Developer needs to monitor API errors in the code, and wants to receive notifications if failures go above a set threshold value.
How can the Developer achieve these requirements?

  • A. Publish a custom metric on Amazon CloudWatch and use Amazon SES for notification.
  • B. Use an Amazon CloudWatch API-error metric and use Amazon SNS for notification.
  • C. Use an Amazon CloudWatch API-error metric and use Amazon SES for notification.
  • D. Publish a custom metric on Amazon CloudWatch and use Amazon SNS for notification.

Answer: D

 

NEW QUESTION 171
A company is developing an application that will run on several Amazon EC2 instances in an Auto Scaling group and can access a database running on Amazon EC2. The application needs to store secrets required to connect to the database. The application must allow for periodic secret rotation, and there should be no changes to the application when a secret changes.
What is the SAFEST way to meet these requirements?

  • A. Use AWS Systems Manager Parameter Store with the SecureString data type to store secrets.
  • B. Associate an IAM role to the EC2 instance where the application is running with permission to access the database.
  • C. Hard code the database secrets in the application code itself.
  • D. Configure the application to store secrets in Amazon S3 object metadata.

Answer: B

 

NEW QUESTION 172
A company recently migrated its web, application and NoSQL database tiers to AWS. The company is using Auto Scaling to scale the web and application tiers. More than 95 percent of the Amazon DynamoDB requests are repeated read-requests.
How can the DynamoDB NoSQL tier be scaled up to cache these repeated requests?

  • A. Amazon EMR
  • B. Amazon DynamoDB Accelerator
  • C. Amazon CloudFront
  • D. Amazon SQS

Answer: B

Explanation:
Reference:
https://aws.amazon.com/dynamodb/dax/

 

NEW QUESTION 173
Can I encrypt connections between my application and my DB Instance using SSL?

  • A. Only in VPC
  • B. Yes
  • C. No
  • D. Only in certain regions

Answer: B

 

NEW QUESTION 174
A developer is writing an application in AWS Lambda To simplify testing and deployments, the developer needs the database connection string to be easily changed without modifying the Lambda code.
How can this requirement be met?

  • A. Store the connection stnng in AWS KMS
  • B. Store the connection string in an IAM user account.
  • C. Store the connection stnng as a Lambda layer.
  • D. Store the connection string as a secret in AWS Secrets Manager

Answer: D

 

NEW QUESTION 175
An organization has 500 employees. The organization wants to set up AWS access for each department.
Which of the below mentioned options is a possible solution?

  • A. It is not possible to manage more than 100 IAM users with AWS
  • B. Create IAM groups based on the permission and assign IAM users to the groups
  • C. Create IAM users and provide individual permission to each
  • D. Create IAM roles based on the permission and assign users to each role

Answer: B

Explanation:
An IAM group is a collection of IAM users. Groups let the user specify permissions for a collection of users,
which can make it easier to manage the permissions for those users.
Reference:
http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_WorkingWithGroupsAndUsers.html

 

NEW QUESTION 176
A Developer is creating a Lambda function and will be using external libraries that are not included in the standard Lambda libraries.
What action would minimize the Lambda compute time consumed?

  • A. Install the external libraries in Lambda to be available to all Lambda functions.
  • B. Copy the external libraries to Amazon S3, and reference the external libraries to the S3 location.
  • C. Create a Lambda deployment package that includes the external libraries.
  • D. Install the dependencies and external libraries at the beginning of the Lambda function.

Answer: C

Explanation:
Explanation
AWS documentation - Lambda Best Practices
Control the dependencies in your function The AWS Lambda execution environment contains a number of libraries such as the AWS SDK for the Node.js and Python runtimes (a full list can be found here: Lambda Execution Environment and Available Libraries). To enable the latest set of features and security updates, Lambda will periodically update these libraries. These updates may introduce subtle changes to the behavior of your Lambda function. To have full control of the dependencies your function uses, we recommend packaging all your dependencies with your deployment package.

 

NEW QUESTION 177
A developer has a legacy application that is hosted on-premises Other applications hosted on AWS depend on the on-premises application for proper functioning In case of any application errors, the developer wants to be able to use Amazon CloudWatch to monitor and troubleshoot all applications from one place.
How can the developer accomplish this?

  • A. Upload log files from the on-premises server to Amazon S3 and have CloudWatch read the files
  • B. Upload log files from the on-premises server to an Amazon EC2 instance and have the instance forward the logs to CloudWatch.
  • C. Download the CloudWatch agent to the on-premises server Configure the agent to use IAM user credentials with permissions for CloudWatch
  • D. Install an AWS SDK on the on-premises server to automatically send logs to CloudWatch .

Answer: C

Explanation:
Reference:
https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/install-CloudWatch-Agent-onpremise.Html

 

NEW QUESTION 178
How long can you keep your Amazon SQS messages in Amazon SQS queues?

  • A. From 10 secs up to 7 days
  • B. From 60 secs up to 2 weeks
  • C. From 30 secs up to 1 week
  • D. From 120 secs up to 4 weeks

Answer: B

Explanation:
The SQS message retention period is configurable and can be set anywhere from 1 minute to 2 weeks. The default is 4 days and once the message retention limit is reached your messages will be automatically deleted. The option for longer message retention provides greater flexibility to allow for longer intervals between message production and consumption.
https://aws.amazon.com/sqs/faqs/

 

NEW QUESTION 179
A user has setup Multi AZ with the MS SQL RDS instance.
Which of the below mentioned functionalities can be achieved by the user?

  • A. MS SQL does not support Multi AZ
  • B. Disaster recovery
  • C. High availability
  • D. Scalability

Answer: A

Explanation:
The Multi AZ feature allows the user to achieve High Availability.
MS SQL does not support Multi AZ.
https://aws.amazon.com/rds/faqs/#36

 

NEW QUESTION 180
A Developer must analyze performance issues with production-distributed applications written as AWS Lambda functions. These distributed Lambda applications invoke other components that make up the applications.
How should the Developer identify and troubleshoot the root cause of the performance issues in production?

  • A. Use AWS X-Ray, then examine the segments and errors
  • B. Add logging statements to the Lambda functions, then use Amazon CloudWatch to view the logs.
  • C. Run Amazon Inspector agents and then analyze performance
  • D. Use AWS Cloud Trail and then examine the logs

Answer: A

 

NEW QUESTION 181
A user is launching an AWS RDS with MySQL. Which of the below mentioned options allows the user to configure the InnoDB engine parameters?

  • A. DB parameters
  • B. Engine parameters
  • C. Options group
  • D. Parameter groups

Answer: D

 

NEW QUESTION 182
An online gaming company is planning to launch a new game with Amazon DynamoDB as its data store. The database should be designated to support the following use cases:
* Update scores in real time whenever a player is playing the game.
* Retrieve a player's score details for a specific game session.
A Database Specialist decides to implement a DynamoDB table. Each player has a unique user_id and each game has a unique game_id.
Which choice of keys is recommended for the DynamoDB table?

  • A. Create a global secondary index with game_id as the partition key
  • B. Create a composite primary key with game_id as the partition key and user_id as the sort key
  • C. Create a global secondary index with user_id as the partition key
  • D. Create a composite primary key with user_id as the partition key and game_id as the sort key

Answer: C

Explanation:
Explanation/Reference: https://aws.amazon.com/blogs/database/amazon-dynamodb-gaming-use-cases-and-design- patterns/

 

NEW QUESTION 183
An application is processing clickslream data using Amazon Kinesis. The clickstream data feed into Kinesis experiences periodic spikes. The PutRecords API call occasionally fails and the logs show that the failed call returns the response shown below.

Which techniques will help mitigate this exception? (Select TWO.)

  • A. Implement retries with exponential backoff
  • B. Use Amazon SNS instead of Kinesis.
  • C. Reduce the number of KCL consumers.
  • D. Reduce the frequency and/or size of the requests
  • E. Use a PutRecord API instead of PutRecords

Answer: A,D

 

NEW QUESTION 184
A user has set an IAM policy where it allows all requests if a request from IP 10.10.10.1/32.
Another policy allows all the requests between 5 PM to 7 PM. What will happen when a user is requesting access from IP 10.10.10.1/32 at 6 PM?

  • A. It is not possible to set a policy based on the time or IP
  • B. It will allow access
  • C. IAM will throw an error for policy conflict
  • D. It will deny access

Answer: B

Explanation:
With regard to IAM, when a request is made, the AWS service decides whether a given request should be allowed or denied. The evaluation logic follows these rules:
By default, all requests are denied. (In general, requests made using the account credentials for resources in the account are always allowed.) An explicit allow policy overrides this default.
An explicit deny policy overrides any allows.
http://docs.aws.amazon.com/IAM/latest/UserGuide/AccessPolicyLanguage_EvaluationLogic.html

 

NEW QUESTION 185
A company has an application where reading objects from Amazon S3 is based on the type of user The user types are registered user and guest user The company has 25.000 users and is growing Information is pulled from an S3 bucket depending on the user type.
Which approaches are recommended to provide access to both user types? (Select TWO.)

  • A. Provide a different access key and secret access key in the application code for registered users and guest users to provide read access to the objects
  • B. Create a new IAM user for each user and grant read access.
  • C. Use Amazon Cognito to provide access using authenticated and unauthenticated roles
  • D. Use S3 bucket policies to restrict read access to specific IAM users
  • E. Use the AWS IAM service and let the application assume the different roles using the AWS Security Token Service (AWS STS) AssumeRole action depending on the type of user and provide read access to Amazon S3 using the assumed role

Answer: A,C

 

NEW QUESTION 186
......


Certification prerequisites

Those individuals who want to pursue the Amazon AWS Certified Developer – Associate certificate are required to have experience of not less than one year of developing and running applications designed on AWS. Moreover, the candidates for this certification need to have prior expertise and technical knowledge in specific areas. They include the following:

  • Proficiency in writing code;
  • In-depth awareness of the shared responsibility representation of AWS.
  • Detailed awareness of a programming language;
  • Development, administration, and debugging of Cloud-based apps on AWS;
  • Usage of AWS, its core services, and best practices for its architectures;

It is also important to note that before attempting the certification exam, the students must develop the relevant skills and competence in the domains of the test. They need to have a good understanding of the AWS shared responsibility model and understand the application lifecycle management. They should also be able to effectively use the CI/CD pipeline for the deployment of applications on AWS. The candidates should also have skills in interacting with and using AWS services.

To improve your performance in the Amazon DVA-C01 test, it is essential to have the capability to apply the basic knowledge of Cloud-native applications in writing code. The examinees should also be able to use AWS security best practices to write code in real time. This means that they must know how to write it without using access or secret keys in the code but IAM roles. Additionally, they should have competence in authoring, debugging, and maintaining code modules on AWS. The individuals also need proficiency in writing code for serverless applications. Finally, their understanding of the usage of containers in the AWS development process will also be an added advantage.

 

New Amazon AWS-Certified-Developer-Associate Dumps & Questions: https://www.examboosts.com/Amazon/AWS-Certified-Developer-Associate-practice-exam-dumps.html

Dumps to Pass your AWS-Certified-Developer-Associate Exam with 100% Real Questions and Answers: https://drive.google.com/open?id=1Eagps8yeMqTsJ4KMJ0CNGl3tR3emHxce

Related Articles

more
Amazon AWS-Certified-Developer-Associate Certification Practice Exam