Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Amazon AWS Certified Developer Associate

Amazon AWS Certified Developer Associate Exam Practice Questions (P. 2)

  • Full Access (443 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #11
A developer creates a customer managed key for multiple AWS users to encrypt data in Amazon S3. The developer configures Amazon Simple Notification
Service (Amazon SNS) to publish a message if key deletion is scheduled. The developer needs to preserve any SNS messages that cannot be delivered so that those messages can be reprocessed.
Which AWS service or feature should the developer use to meet this requirement?
  1. A
    Amazon Simple Email Service (Amazon SES)
  2. B
    AWS Lambda
  3. C
    Amazon Simple Queue Service (Amazon SQS)
  4. D
    Amazon CloudWatch alarm

Correct Answer:
C
chatbot-img GPT-4o - Answer
To handle undeliverable Amazon SNS messages when a key deletion is scheduled, utilizing Amazon Simple Queue Service (SQS) as a dead letter queue (DLQ) is effective. This setup helps catch and store messages that fail to reach their destination due to various reasons, such as subscriber downtime or network issues, ensuring no critical notification is lost. Setting up SQS as a subscriber to the SNS topic allows for reliable reprocessing of these undeliverable messages, thus preserving the integrity and continuity of the notification system.

Question #12
A developer needs to deploy an application to AWS Elastic Beanstalk for a company. The application consists of a single Docker image. The company's automated continuous integration and continuous delivery (CI/CD) process builds the Docker image and pushes the image to a public Docker registry.
How should the developer deploy the application to Elastic Beanstalk?
  1. A
    Create a Dockerfile. Configure Elastic Beanstalk to build the application as a Docker image.
  2. B
    Create a docker-compose.yml file. Use the Elastic Beanstalk CLI to deploy the application.
  3. C
    Create a .zip file that contains the Docker image. Upload the .zip file to Elastic Beanstalk.
  4. D
    Create a Dockerfile. Run the Elastic Beanstalk CLI eb local run command in the same directory.

Correct Answer:
A
chatbot-img GPT-4o - Answer
Since the application consists of a single Docker image already built and pushed to a public registry, the most efficient deployment approach would involve using a previously configured Docker environment on AWS Elastic Beanstalk. The developer can utilize the Elastic Beanstalk CLI to create an environment and deploy the image. This involves referencing the image from the public registry directly within configuration files like Dockerrun.aws.json or docker-compose.yml, depending on whether Docker Compose is used. The correct deployment method leverages these tools for pulling the existing Docker image into the Elastic Beanstalk environment, not rebuilding the image from a Dockerfile.

Question #13
A company is using AWS CodeDeploy for all production deployments. A developer has an Amazon Elastic Container Service (Amazon ECS) application that uses the CodeDeployDefault.ECSAIIAtOnce configuration. The developer needs to update the production environment in increments of 10% until the entire production environment is updated.
Which CodeDeploy configuration should the developer use to meet these requirements?
  1. A
    CodeDeployDefault.ECSCanary10Percent5Minutes
  2. B
    CodeDeployDefault.ECSLinear10PercentEvery3Minutes
  3. C
    CodeDeployDefault.OneAtATime
  4. D
    CodeDeployDefault.LambdaCanary10Percent5Minutes

Correct Answer:
B
chatbot-img GPT-4o - Answer
To meet the requirement of updating the production environment in increments of 10% until fully updated, the developer should indeed utilize the CodeDeployDefault.ECSLinear10PercentEvery3Minutes configuration. This configuration methodically deploys updates by shifting 10% of the traffic to the new version every three minutes, ensuring a gradual and controlled deployment. This is critical to avoid overwhelming the system with abrupt changes and allows for monitoring and adjustment if issues arise mid-deployment.

Question #14
A company is using AWS Elastic Beanstalk to deploy a three-tier application. The application uses an Amazon RDS DB instance as the database tier. The company wants to decouple the DB instance from the Elastic Beanstalk environment.
Which combination of steps should a developer lake to meet this requirement? (Choose two.)
  1. A
    Create a new Elastic Beanstalk environment that connects to the DB instance.
  2. B
    Create a new DB instance from a snapshot of the previous DB instance.
  3. C
    Use the Elastic Beanstalk CLI to decouple the DB instance.
  4. D
    Use the AWS CLI to decouple the DB instance.
  5. E
    Modify the current Elastic Beanstalk environment to connect to the DB instance.

Correct Answer:
AB
chatbot-img GPT-4o - Answer
In the context of decoupling a DB instance from an AWS Elastic Beanstalk environment, it's essential to understand that creating a new Elastic Beanstalk environment independently of the DB instance ensures that your application layer is separated from your database layer, facilitating better control and scaling. Meanwhile, creating a new DB instance from a snapshot of the existing DB aids in preserving the data state up to the point of the snapshot, allowing continued data consistency and integrity. This method would not result in data loss as the snapshot includes all the data until it was taken, though one should consider the possibility of a short downtime during the cutover if not properly managed.

Question #15
A company has point-of-sale devices across thousands of retail shops that synchronize sales transactions with a centralized system. The system includes an
Amazon API Gateway API that exposes an AWS Lambda function. The Lambda function processes the transactions and stores the transactions in Amazon RDS for MySQL. The number of transactions increases rapidly during the day and is near zero at night.
How can a developer increase the elasticity of the system MOST cost-effectively?
  1. A
    Migrate from Amazon RDS to Amazon Aurora MySQL. Use an Aurora Auto Scaling policy to scale road replicas based on CPU consumption.
  2. B
    Migrate from Amazon RDS to Amazon Aurora MySQL. Use an Aurora Auto Scaling policy to scale read replicas based on the number of database connections.
  3. C
    Create an Amazon Simple Queue Service (Amazon SQS) queue. Publish transactions to the queue. Set the queue to invoke the Lambda function. Turn on enhanced fanout for the Lambda function.
  4. D
    Create an Amazon Simple Queue Service (Amazon SQS) queue. Publish transactions to the queue. Set the queue to invoke the Lambda function. Set the reserved concurrency of the Lambda function to be less than the number of database connections.

Correct Answer:
B
chatbot-img GPT-4o - Answer
When scaling an Amazon RDS for MySQL, using Amazon Aurora MySQL with Auto Scaling on read replicas is generally more cost-effective. The Auto Scaling policy can adjust the count of the read replicas in response to the varying number of database connections, which aligns with load variations, such as a spike in transactions during the day. This solution efficiently manages increased workload and maintains performance during peak traffic times while minimizing costs during low usage periods at night. Notably, this answer presumes the need for effective read scaling despite the focus on transactions, which typically involve writes, as it addresses broader database performance needs under variable loads.

Question #16
A developer is writing an AWS Lambda function. The Lambda function needs to access items that are stored in an Amazon DynamoDB table.
What is the MOST secure way to configure this access for the Lambda function?
  1. A
    Create an IAM user that has permissions to access the DynamoDB table. Create an access key for this user. Store the access key ID and secret access key in the Lambda function environment variables.
  2. B
    Add a resource-based policy to the DynamoDB table to allow access from the Lambda function's IAM role.
  3. C
    Create an IAM policy that allows access to the DynamoDB table. Attach this policy to the Lambda function's IAM role.
  4. D
    Create a DynamoDB Accelerator (DAX) cluster. Configure the Lambda function to use the DAX duster to access the DynamoDB table.

Correct Answer:
C

Question #17
A developer is implementing user authentication and authorization for a web application that is hosted on an Amazon EC2 instance. The developer needs to ensure that the user credentials are encrypted and secure when they are stored and transmitted.
Which solution will meet these requirements?
  1. A
    Activate web server modules for authentication and authorization on the instance. Use HTTP basic authentication for the user login.
  2. B
    Deploy a custom authentication and authorization API over HTTP. Store the user credentials on Amazon ElastiCache for Redis.
  3. C
    Use Amazon Cognito to configure a user pool. Use the Amazon Cognito API to authenticate and authorize the users.
  4. D
    Create IAM users. Assign the users to different IAM groups. Use AWS Single Sign-On to authenticate and authorize each user.

Correct Answer:
C

Question #18
A company that has multiple offices uses an Amazon DynamoDB table to store employee payroll information. Item attributes consist of employee names, office identifiers, and cumulative daily hours worked The most frequently used query extracts a report of an alphabetical subset of employees for a specific office.
Which design of the DynamoDB table primary key will have the MINIMUM performance impact?
  1. A
    Partition key on the office identifier and sort key on the employee name
  2. B
    Partition key on the employee name and sort key on the office identifier
  3. C
    Partition key on the employee name
  4. D
    Partition key on the office identifier

Correct Answer:
A

Question #19
A company hosts a microservices application that uses Amazon API Gateway. AWS Lambda, Amazon Simple Queue Service (Amazon SQS), and Amazon
DynamoDB. One of the Lambda functions adds messages to an SQS FIFO queue.
When a developer checks the application logs, the developer finds a few duplicated items in a DynamoDB table. The items were inserted by another polling function that processes messages from the queue.
What is the MOST likely cause of this issue?
  1. A
    Write operations on the DynamoDB table are being throttled.
  2. B
    The SQS queue delivered the message to the function more than once.
  3. C
    API Gateway duplicated the message in the SQS queue.
  4. D
    The polling function timeout is greater than the queue visibility timeout.

Correct Answer:
D

Question #20
A development team has been using a builder server that is hosted on an Amazon EC2 instance to perform builds and deployments for the last 3 months. The
EC2 instance's instance profile uses an IAM role that contains the Administrator Access managed policy. The development team must replace that policy with a policy that provides only the required permissions.
What is the FASTEST way to create a custom 1AM policy for the EC2 instance to meet this requirement?
  1. A
    Create a new IAM policy based on services that the build server deployed or updated in the last 3 months.
  2. B
    Create a new IAM policy that includes all actions that AWS CloudTrail recorded for the IAM role in the last 3 months.
  3. C
    Create a new permissions boundary policy that denies all access. Associate the permissions boundaries with the IAM role.
  4. D
    Create a new IAM policy by using Amazon Athena to query an Amazon S3 bucket that contains AWS CloudTrail events that the IAM role performed in the last 3 months.

Correct Answer:
A

Previous Questions Next Questions

All Pages