50 AWS Certified Developer Associate (DVA-C02) Past Questions & Answers

Practice the AWS Certified Developer Associate past questions and answers. Our experts have answered the questions and you will get the correct answers to the AWS Certified Developer Associate questions. Prepare yourself for the exam ahead and test your knowledge and readiness.

AWS Certified Developer Association (DVA-C02) Part 4

AWS Certified Developer Association (DVA-C02) Part 4

Questions will be picked at random from the question bank.

You can use the NEXT button to move to the next question, use the PREV button to move to the previous question, the CLEAR button to clear any answer of your choice and you have the FINISH button to end the exam if you choose to.

Any question not answered before the end of the exam time, will be marked as wrong and the exam will end by itself. So try to attempt all questions on time.

Goodluck!

1 / 50

A Developer has written an Amazon Kinesis Data Streams application. As usage
grows and traffic increases over time, the application is regularly receiving
ProvisionedThroughputExceededException error messages. Which steps should
the Developer take to resolve the error? (Choose TWO)

Increase the number of shards in the data stream.

Implement exponential backoff on the GetRecords call and the PutRecords call.

Increase the delay between the GetRecords call and the PutRecords call.

Specify a shard iterator using the ShardIterator parameter.

Use Auto Scaling to scale the stream for better performance.

2 / 50

When developing an AWS Lambda function that processes Amazon Kinesis Data
Streams, Administrators within the company must receive a notice that includes
the processed data. How should the Developer write the function to send
processed data to the Administrators?

Push the processed data to Amazon SQS.

Publish the processed data to an Amazon SNS topic.

Separate the Lambda handler from the core logic.

Use Amazon CloudWatch Events to send the processed data.

3 / 50

A Developer is preparing a deployment package using AWS CloudFormation. The
package consists of two separate templates: one for the infrastructure and one for
the application. The application has to be inside the VPC that is created from the
infrastructure template. How can the application stack refer to the VPC created
from the infrastructure template?

Use the Fn::GetAtt function to include the attribute of the VPC in the application template.

Use the Ref function to import the VPC into the application stack from the infrastructure template.

Use the export flag in the infrastructure template, and then use the Fn::ImportValue function in the application template.

Use the DependsOn attribute to specify that the application instance depends on the VPC in the application template.

4 / 50

A Developer wants to build an application that will allow new users to register and
create new user accounts. The application must also allow users with social media
accounts to log in using their social media credentials. Which AWS service or
feature can be used to meet these requirements?

Amazon Cognito user pools.

AWS IAM

AWS Directory Service.

Amazon Cognito identity pools.

5 / 50

A Developer needs to create an application that supports Security Assertion
Markup Language (SAML) and Facebook authentication. It must also allow access
to AWS services, such as Amazon DynamoDB. Which AWS service or feature will
meet these requirements with the LEAST amount of additional coding?

Amazon Cognito identity pools.

Amazon Lambda@Edge.

AWS AppSync.

Amazon Cognito user pools.

6 / 50

A Developer registered an AWS Lambda function as a target for an Application
Load Balancer (ALB) using a CLI command. However, the Lambda function is not
being invoked when the client sends requests through the ALB. Why is the
Lambda function not being invoked?

A Lambda function can be registered with an ALB using AWS Management Console only.

A Lambda function cannot be registered as a target for an ALB.

Cross-zone is not enabled on the ALB.

The permissions to invoke the Lambda function are missing

7 / 50

A Software Engineer developed an AWS Lambda function in Node.js to do some
CPU-intensive data processing. With the default settings, the Lambda function
takes about 5 minutes to complete. Which approach should a Developer take to
increase the speed of completion?

Increase the available memory to the function.

Instead of using Node.js, rewrite the Lambda function using Python.

Instead of packaging the libraries in the ZIP file with the function, move them to a Lambda layer and use the layer with the function.

Allocate the maximum available CPU units to the function.

8 / 50

A company has implemented AWS CodeDeploy as part of its cloud native CI/CD
stack. The company enables automatic rollbacks while deploying a new version of
a popular web application from in-place to Amazon EC2. What occurs if the
deployment of the new version fails due to code regression?

AWS CodePipeline promotes the most recent deployment with a SUCCEEDED status to production.

CodeDeploy switches the Amazon Route 53 alias records back to the known good green deployment and terminates the failed blue deployment.

The last known good deployment is automatically restored using the snapshot stored in Amazon S3.

A new deployment of the last known version of the application is deployed with a new deployment ID.

9 / 50

A Development team decides to adopt a continuous integration/continuous
delivery (CI/CD) process using AWS CodePipeline and AWS CodeCommit for a new
application. However, management wants a person to review and approve the
code before it is deployed to production. How can the Development team add a
manual approver to the CI/CD pipeline?

Use AWS SES to send an email to approvers when their action is required. Develop a simple application that allows approvers to accept or reject a build. Invoke an AWS Lambda function to advance the pipeline when a build is accepted.

Add an approval action to the pipeline. Configure the approval action to publish to an Amazon SNS topic when approval is required. The pipeline execution will stop and wait for an approval.

If approved, add an approved tag when pushing changes to the CodeCommit repository. CodePipeline will proceed to build and deploy approved commits without interruption.

Add an approval step to CodeCommit. Commits will not be saved until approved.

10 / 50

A Developer is working on a serverless project based in Java. Initial testing shows a
cold start takes about 8 seconds on average for AWS Lambda functions. What
should the Developer do to reduce the cold start time? (Choose TWO)

Change the Lambda invocation mode from synchronous to asynchronous.

Reduce the deployment package by including only needed modules from the AWS SDK for Java.

Increase the timeout setting for the Lambda function.

Increase the memory allocation setting for the Lambda function.

Add the Spring Framework to the project and enable dependency injection.

11 / 50

A company is developing a web application that allows its employees to upload a
profile picture to a private Amazon S3 bucket. There is no size limit for the profile
pictures, which should be displayed every time an employee logs in. For security
reasons, the pictures cannot be publicly accessible. What is a viable long-term
solution for this scenario?

Save the picture's S3 key in an Amazon DynamoDB table. Create an Amazon S3 VPC endpoint to allow the employees to download pictures once they log in.

Save the picture's S3 key in an Amazon DynamoDB table. Use a function to generate a presigned URL every time an employee logs in. Return the URL to the browser.

Generate a presigned URL when a picture is uploaded. Save the URL in an Amazon DynamoDB table. Return the URL to the browser when the employee logs in.

Encode a picture using base64. Save the base64 string in an Amazon DB table. Allow the browser to retrieve the string and convert it to a picture.

12 / 50

A Developer is writing an application that will run on Amazon EC2 instances in an
Auto Scaling group. The Developer wants to externalize session state to support
the application. Which services will meet these needs? (Choose TWO)

Amazon SQS.

Amazon Cognito.

Amazon DynamoDB.

Amazon EBS.

Amazon ElastiCache.

13 / 50

A Developer has created a new AWS IAM user that has s3 putObject permission to
write to a specific Amazon S3 bucket. This S3 bucket uses server-side encryption
with AWS KMS managed keys (SSE-KMS) as the default encryption. Using the
access key and secret key of the IAM user, the application received an access
denied error when calling the PutObject API. How can this issue be resolved?

Update the ACL of the S3 bucket to allow the IAM user to upload objects.

Update the policy of the IAM user to allow the s3 Encrypt action.

Update the policy of the IAM user to allow the kms:GenerateDataKey action

Update the bucket policy of the S3 bucket to allow the IAM user to upload objects.

14 / 50

A Developer must allow guest users without logins to access an Amazon Cognitoenabled site to view files stored within an Amazon S3 bucket. How should the
Developer meet these requirements?

Create a new user pool, disable authentication access, and grant access to AWS resources.

Create a new user pool, enable access to authenticated identifies, and grant access to AWS resources.

Create a new identity pool, enable access to authenticated identities, and grant access to AWS resources.

Create a blank user ID in a user pool, add to the user group, and grant access to AWS resources.

15 / 50

A Developer is going to deploy an AWS Lambda function that requires significant
CPU utilization. Which approach will MINIMIZE the average runtime of the
function?

Deploy the function into multiple Availability Zones.

Deploy the function using Lambda layers.

Deploy the function into multiple AWS Regions.

Deploy the function with its memory allocation set to the maximum amount.

16 / 50

A Developer is leveraging a Border Gateway Protocol (BGP)-based AWS VPN
connection to connect from on-premises to Amazon EC2 instances in the
Developer's account. The Developer is able to access an EC2 instance in subnet A,
but is unable to access an EC2 instance in subnet B in the same VPC. Which logs
can the Developer use to verify whether the traffic is reaching subnet B?

VPC Flow Logs.

VPN logs.

BGP logs

AWS CloudTrail logs.

17 / 50

A company has implemented AWS CodePipeline to automate its release pipelines.
The Development team is writing an AWS Lambda function what will send
notifications for state changes of each of the actions in the stages. Which steps
must be taken to associate the Lambda function with the event source?

Create an Amazon CloudWatch Events rule that uses CodePipeline as an event source.

Create an Amazon CloudWatch alarm that monitors status changes in Code Pipeline and triggers the Lambda function.

Create a trigger that invokes the Lambda function from the Lambda console by selecting CodePipeline as the event source.

Create an event trigger and specify the Lambda function from the CodePipeline console

18 / 50

A Development team wants to immediately build and deploy an application
whenever there is a change to the source code. Which approaches could be used
to trigger the deployment? (Choose TWO)

Store the source code in an Amazon S3 bucket. Configure AWS CodePipeline to start every 15 minutes.

Store the source code in an AWS CodeCommit repository. Configure AWS CodePipeline to start whenever a change is committed to the repository

Store the source code in an encrypted Amazon EBS volume. Configure AWS CodePipeline to start whenever a file in the volume changes.

Store the source code in an Amazon S3 bucket. Configure AWS CodePipeline to start whenever a file in the bucket changes.

Store the source code in an Amazon EC2 instance's ephemeral storage. Configure the instance to start AWS CodePipeline whenever there are changes to the source code

19 / 50

A Developer is trying to make API calls using SDK. The IAM user credentials used
by the application require multi-factor authentication for all API calls. Which
method the Developer use to access the multi-factor authentication protected
API?

GetCallerIdentity.

GetSessionToken.

DecodeAutherizationMessage.

GetFederationToken.

20 / 50

A Developer decides to store highly secure data in Amazon S3 and wants to
implement server-side encryption (SSE) with granular control of who can access
the master key. Company policy requires that the master key be created, rotated,
and disabled easily when needed, all for security reasons. Which solution should
be used to meet these requirements?

SSE with Amazon S3 managed keys (SSE-S3).

SSE with AWS Secrets Manager.

SSE with customer-provided encryption keys.

SSE with AWS KMS managed keys (SSE-KMS).

21 / 50

A Developer is migrating an on-premises application to AWS. The application
currently takes user uploads and saves them to a local directory on the server. All
uploads must be saved and made immediately available to all instances in an Auto
Scaling group. Which approach will meet these requirements?

Use Amazon EBS and file synchronization software to achieve eventual consistency among the Auto Scaling group.

Use Amazon EBS and configure the application AMI to use a snapshot of the same EBS instance on boot

Use instance storage and share it between instances launched from the same Amazon Machine Image (AMI).

Use Amazon S3 and rearchitect the application so all uploads are placed in S3.

22 / 50

A company's website runs on an Amazon EC2 instance and uses Auto Scaling to
scale the environment during peak times. Website users across the world are
experiencing high latency due to static content on the EC2 instance, even during
non-peak hours. Which combination of steps will resolve the latency issue?
(Choose TWO)

Host the application code on AWS Lambda.

Scale vertically by resizing the EC2 instances.

Create an Amazon CloudFront distribution to cache the static content.

Store the application's static content in Amazon S3.

Double the Auto Scaling group's maximum number of servers.

23 / 50

A Developer migrated a web application to AWS. As part of the migration, the
Developer implemented an automated continuous integration/continuous
improvement (CI/CD) process using a blue/green deployment. The deployment
provisions new Amazon EC2 instances in an Auto Scaling group behind a new
Application Load Balancer. After the migration was completed, the Developer
began receiving complaints from users getting booted out of the system. The
system also requires users to log in after every new deployment. How can these
issues be resolved?

Externalize the user sessions to Amazon ElastiCache.

Use rolling updates instead of a blue/green deployment.

Use multicast to replicate session information.

Turn on sticky sessions in the Application Load Balancer

24 / 50

A Developer has code running on Amazon EC2 instances that needs read-only
access to an Amazon DynamoDB table. What is the MOST secure approach the
Developer should take to accomplish this task?

Run all code with only AWS account root user access keys to ensure maximum access to services.

Use an IAM role with an AmazonDynamoDBReadOnlyAccess policy applied to the EC2 instances.

Use an IAM role with Administrator access applied to the EC2 instance.

Create a user access key for each EC2 instance with read-only access to DynamoDB. Place the keys in the code. Redeploy the code as keys rotate.

25 / 50

A Developer is working on an AWS Lambda function that accesses Amazon
DynamoDB. The Lambda function must retrieve an item and update some of its
attributes, or create the item if it does not exist. The Lambda function has access
to the primary key. Which IAM permissions should the Developer request for the
Lambda function to achieve this functionality?

dynamodb:GetRecords dynamodb:PutItem dynamodb:UpdateTable.

dynamodb:DeleteItem dynamodb:GetItem dynamodb:PutItem.

dynamodb:UpdateItem dynamodb:GetItem dynamodb:PutItem.

dynamodb:UpdateItem dynamodb:GetItem dynamodb:DescribeTable.

26 / 50

A Developer is writing an application in AWS Lambda. To simplify testing and
deployments, the Developer needs the database connection string to be easily
changed without modifying the Lambda code. How can this requirement be met?

Store the connection string in an IAM user account.

Store the connection string in AWS KMS.

Store the connection string as a Lambda layer.

Store the connection string as a secret in AWS Secrets Manager.

27 / 50

An application has the following requirements: Performance efficiency of seconds
with up to a minute of latency. The data storage size may grow up to thousands of
terabytes. Per-message sizes may vary between 100 KB and 100 MB. Data can be
stored as key/value stores supporting eventual consistency. What is the MOST
cost-effective AWS service to meet these requirements?

Amazon DynamoDB.

Amazon ElastiCache.

Amazon S3.

Amazon RDS (with a MySQL engine).

28 / 50

A company is developing an application that will be accessed through the Amazon
API Gateway REST API. Registered users should be the only ones who can access
certain resources of this API. The token being used should expire automatically
and needs to be refreshed periodically. How can a Developer meet these
requirements?

Create an Amazon Cognito identity pool, configure the Amazon Cognito Authorizer in API Gateway, and use the temporary credentials generated by the identity pool.

Create an IAM user for each API user, attach an invoke permissions policy to the API, and use an IAM authorizer in API Gateway.

Create an Amazon Cognito user pool, configure the Cognito Authorizer in API Gateway, and use the identity or access token.

Create and maintain a database record for each user with a corresponding token and use an AWS Lambda authorizer in API Gateway.

29 / 50

A Developer is storing sensitive data generated by an application in Amazon S3.
The Developer wants to encrypt the data at rest. A company policy requires an
audit trail of when the master key was used and by whom. Which encryption
option will meet these requirements?

Server-side encryption with customer-provided keys (SSE-C).

Server-side encryption with self-managed keys.

Server-side encryption with Amazon S3 managed keys (SSE-S3).

Server-side encryption with AWS KMS managed keys (SSE-KMS).

30 / 50

A Developer is building an application that needs to store data in Amazon S3.
Management requires that the data be encrypted before it is sent to Amazon S3
for storage. The encryption keys need to be managed by the Security team. Which
approach should the Developer take to meet these requirements?

Implement server-side encryption by using a client-side master key.

Implement client-side encryption using an AWS KMS managed customer master key (CMK).

Implement client-side encryption using Amazon S3 managed keys.

Implement server-side encryption using customer-provided encryption keys (SSEC).

31 / 50

An application ingests a large number of small messages and stores them in a
database. The application uses AWS Lambda. A Development team is making
changes to the application's processing logic. In testing, it is taking more than 15
minutes to process each message. The team is concerned the current backend
may time out. Which changes should be made to the backend system to ensure
each message is processed in the MOST scalable way?

Change the application to directly insert the body of the message into an Amazon RDS database.

Create a support ticket to increase the Lambda timeout to 60 minutes to allow for increased processing time.

Add the messages to an Amazon SQS queue. Set up Amazon EC2 instances in an Auto Scaling group to poll the queue and process the messages as they arrive.

Add the messages to an Amazon SQS queue. Set up and Amazon EC2 instance to poll the queue and process messages as they arrive.

32 / 50

A company wants to migrate an imaging service to Amazon EC2 while following
security best practices. The images are sourced and read from a non-public
Amazon S3 bucket. What should a Developer do to meet these requirements?

Create an IAM user with read-only permissions for the S3 bucket. Temporarily store the user credentials in the Amazon EBS volume of the EC2 instance.

Create an EC2 service role with read-only permissions for the S3 bucket. Attach the role to the EC2 instance.

Create an IAM user with read-only permissions for the S3 bucket. Temporarily store the user credentials in the user data of the EC2 instance.

Create an S3 service role with read-only permissions for the S3 bucket. Attach the role to the EC2 instance.

33 / 50

A company has a web application that uses an Amazon Cognito user pool for
authentication. The company wants to create a login page with the company logo.
What should a Developer do to meet these requirements?

Create a login page with the company logo and upload it to Amazon Cognito.

Upload the logo to the Amazon Cognito app settings and point to the logo on a custom login page.

Create a hosted user interface in Amazon Cognito and customize it with the company logo.

Create a login page in Amazon API Gateway with the logo and save the link in Amazon Cognito.

34 / 50

A Developer wants to insert a record into an Amazon DynamoDB table as soon as
a new file is added to an Amazon S3 bucket. Which set of steps would be
necessary to achieve this?

Create a cron job that will run at a scheduled time and insert the records into DynamoDB.

Configure an S3 event to invoke a Lambda function that inserts records into DynamoDB.

Create a Lambda function that will poll the S3 bucket and then insert the records into DynamoDB.

Create an event with Amazon CloudWatch Events that will monitor the S3 bucket and then insert the records into DynamoDB.

35 / 50

A Developer has discovered that an application responsible for processing
messages in an Amazon SQS queue is routinely falling behind. The application is
capable of processing multiple messages in one execution, but is only receiving
one message at a time. What should the Developer do to increase the number of
messages the application receives?

Call the SetQueueAttributes API for the queue and set MaxNumberOfMessages to a value greater than the default of 1.

Call the ChangeMessageVisibility API for the queue and set MaxNumberOfMessages to a value greater than the default of 1.

Call the ReceiveMessage API to set MaxNumberOfMessages to a value greater than the default of 1

Call the AddPermission API to set MaxNumberOfMessages for the ReceiveMessage action to a value greater than the default of 1

36 / 50

A Developer has a legacy application that is hosted on-premises. Other
applications hosted on AWS depend on the on-premises application for proper
functioning. In case of any application errors, the Developer wants to be able to
use Amazon CloudWatch to monitor and troubleshoot all applications from one
place. How can the Developer accomplish this?

Upload log files from the on-premises server to Amazon S3 and have CloudWatch read the files.

Download the CloudWatch agent to the on-premises server. Configure the agent to use IAM user credentials with permissions for CloudWatch.

Upload log files from the on-premises server to an Amazon EC2 instance and have the instance forward the logs to CloudWatch.

Install an AWS SDK on the on-premises server to automatically send logs to CloudWatch.

37 / 50

A Developer has an e-commerce API hosted on Amazon ECS. Variable and spiking
demand on the application is causing order processing to take too long. The
application processes Amazon SQS queues. The
ApproximateNumberOfMessagesVisible metric spikes at very high values
throughout the day, which cause Amazon CloudWatch alarm breaches. Other ECS
metrics for the API containers are well within limits. What can the Developer
implement to improve performance while keeping costs low?

Step scaling policy.

Service scheduler.

Target tracking scaling policy.

Docker Swarm.

38 / 50

A Developer has built an application running on AWS Lambda using AWS
Serverless Application Model (AWS SAM). What is the correct order of execution to
successfully deploy the application?

1. Build the SAM template locally. 2. Package the SAM template onto Amazon S3. 3. Deploy the SAM template from Amazon S3.

1. Build the SAM template locally. 2. Package the SAM template from AWS CodeCommit. 3. Deploy the SAM template to CodeCommit

1. Build the SAM template in Amazon EC2. 2. Package the SAM template to Amazon EBS storage. 3. Deploy the SAM template from Amazon EBS.

1. Build the SAM template locally. 2. Deploy the SAM template from Amazon S3. 3. Package the SAM template for use.

39 / 50

An online retail company has deployed a serverless application with AWS Lambda,
Amazon API Gateway, Amazon S3, and Amazon DynamoDB using AWS
CloudFormation. The company rolled out a new release with major upgrades to
the Lambda function and deployed the release to production. Subsequently, the
application stopped working. Which solution should bring the application back up
as quickly as possible?

Roll back the Lambda function to the previous version.

Migrate DynamoDB to Amazon RDS and redeploy the Lambda function.

Redeploy the application on Amazon EC2 so the Lambda function can resolve dependencies.

Deploy the latest Lambda function in a different Region.

40 / 50

A Developer is trying to monitor an application's status by running a cron job that
returns 1 if the service is up and 0 if the service is down. The Developer created
code that uses an AWS CLI put-metric-alarm command to publish the custom
metrics to Amazon CloudWatch and create an alarm. However, the Developer is
unable to create an alarm as the custom metrics do not appear in the CloudWatch
console. What is causing this issue?

Sending custom metrics using the CLI is not supported.

The code is not running on an Amazon EC2 instance.

The Developer needs to use the put-metric-data command.

The Developer must use a unified CloudWatch agent to publish custom metrics.

41 / 50

A Developer is building a serverless application using AWS Lambda and must
create a REST API using an HTTP GET method. What needs to be defined to meet
this requirement? (Choose TWO)

A Lambda@Edge function.

An Amazon API Gateway with a Lambda function.

An exposed GET method in the Lambda function

An exposed GET method in Amazon Route 53.

An exposed GET method in an Amazon API Gateway.

42 / 50

A Developer is publishing critical log data to a log group in Amazon CloudWatch
Logs, which was created 2 months ago. The Developer must encrypt the log data
using an AWS KMS customer master key (CMK) so future data can be encrypted to
comply with the company's security policy. How can the Developer meet this
requirement?

Use the CloudWatch Logs console and enable the encrypt feature on the log group.

Use the KMS console and associate the CMK with the log group

Use the AWS CLI create-log-group command and specify the key Amazon Resource Name (ARN).

Use the AWS CLI associate-kms-key command and specify the key Amazon Resource Name (ARN)

43 / 50

A company wants to implement authentication for its new REST service using
Amazon API Gateway. To authenticate the calls, each request must include HTTP
headers with a client ID and user ID. These credentials must be compared to
authentication data in an Amazon DynamoDB table. What MUST the company do
to implement this authentication in API Gateway?

Implement an Amazon Cognito authorizer that references the DynamoDB authentication table.

Modify the integration requests to require the credentials, then grant API Gateway access to the authentication table.

Create a model that requires the credentials, then grant API Gateway access to the authentication table.

Implement an AWS Lambda authorizer that references the DynamoDB authentication table

44 / 50

A company provides APIs as a service and commits to a service level agreement
(SLA) with all its users. To comply with each SLA, what should the company do?

Enable throttling limits for each method in Amazon API Gateway.

Create a usage plan for each user and request API keys to access the APIs.

Enable API rate limiting in Amazon Cognito for each user.

Enable default throttling limits for each stage after deploying the APIs.

45 / 50

A Developer has written an application that runs on Amazon EC2 instances and
generates a value every minute. The Developer wants to monitor and graph the
values generated over time without logging in to the instance each time. Which
approach should the Developer use to achieve this goal?

Develop the application to store each value in a file on Amazon S3 every minute with the timestamp as the name.

Use the Amazon CloudWatch metrics reported by default for all EC2 instances. View each value from the CloudWatch console.

Publish each generated value as a custom metric to Amazon CloudWatch using available AWS SDKs.

Store each value as a variable and add the variable to the list of EC2 metrics that should be reported to the Amazon CloudWatch console.

46 / 50

A Developer uses Amazon S3 buckets for static website hosting. The Developer
creates one S3 bucket for the code and another S3 bucket for the assets, such as
image and video files. Access is denied when a user attempts to access the assets
bucket from the code bucket, with the website application showing a 403 error.
How should the Developer solve this issue?

Create an IAM role and apply it to the assets bucket for the code bucket to be granted access.

Change the code bucket to use AWS Lambda functions instead of static website hosting.

Edit the bucket policy of the assets bucket to open access to all principals.

47 / 50

A company is launching an ecommerce website and will host the static data in
Amazon S3. The company expects approximately 1,000 transactions per second
(TPS) for GET and PUT requests in total. Logging must be enabled to track all
requests and must be retained for auditing purposes. What is the MOST costeffective solution?

Enable S3 server access logging and create a lifecycle policy to expire the data in 90 days.

Enable AWS CloudTrail logging for the S3 bucket-level action and create a lifecycle policy to move the data from the log bucket to Amazon S3 Glacier in 90 days.

Enable S3 server access logging and create a lifecycle policy to move the data to Amazon S3 Glacier in 90 days.

Enable AWS CloudTrail logging for the S3 bucket-level action and create a lifecycle policy to expire the data in 90 days.

48 / 50

A Developer implemented a static website hosted in Amazon S3 that makes web
service requests hosted in Amazon API Gateway and AWS Lambda. The site is
showing an error that reads: 'No 'Access-Control-Allow-Origin' header is present
on the requested resource. Origin 'null' is therefore not allowed access.' What
should the Developer do to resolve this issue?

Add the Access-Control-Request-Method header to the request.

Enable cross-origin resource sharing (CORS) for the method in API Gateway

Add the Access-Control-Request-Headers header to the request.

Enable cross-origin resource sharing (CORS) on the S3 bucket.

49 / 50

A Developer has written code for an application and wants to share it with other
Developers on the team to receive feedback. The shared application code needs
to be stored long-term with multiple versions and batch change tracking. Which
AWS service should the Developer use?

AWS CodeBuild.

AWS Cloud9.

Amazon S3.

AWS CodeCommit.

50 / 50

A company has a legacy application that was migrated to a fleet of Amazon EC2
instances. The application stores data in a MySQL database that is currently
installed on a single EC2 instance. The company has decided to migrate the
database from the EC2 instance to MySQL on Amazon RDS. What should the
Developer do to update the application to support data storage in Amazon RDS?

Create an AWS Lambda function that will route traffic, from the EC2 instance to the RDS database.

Add a script to the EC2 instance that implements an AWS SDK for requesting database credentials

Update the database connection parameters in the application to point to the new RDS instance.

Create a new EC2 instance with an IAM role that allows access to the new RDS database.

Your score is

AWS Certified Developer Associate (50 Questions & Answers)

50 AWS Certified Developer Associate (DVA-C02) Past Questions & Answers

Leave a Comment Cancel Reply