Latest DVA-C01 Pass Guaranteed Exam Dumps with Accurate & Updated Questions [Q77-Q96]

Latest DVA-C01 Pass Guaranteed Exam Dumps with Accurate & Updated Questions

DVA-C01 Exam Brain Dumps - Study Notes and Theory

AWS DVA-C01 Exam Certification Details:

Exam Price	$150 USD
Number of Questions	65
Passing Score	720 / 1000
Exam Code	DVA-C01
Sample Questions	AWS DVA-C01 Sample Questions
Schedule Exam	AWS Certification
Exam Name	AWS Developer Associate (AWS-CDA)
Recommended Training / Books	Developing on AWS
Duration	130 minutes

 

NEW QUESTION 77
A Developer accesses AWS CodeCommit over SSH. The SSH keys configured to access AWS CodeCommit are tied to a user with the following permissions:

The Developer needs to create/delete branches.
Which specific IAM permissions need to be added, based on the principle of least privilege?

• A. "codecommit:*"
• B. "codecommit:CreateBranch""codecommit:DeleteBranch"
• C. "codecommit:Put*"
• D. "codecommit:Update*"

Answer: B

Explanation:
https://docs.aws.amazon.com/codecommit/latest/userguide/auth-and-access-control-permissions-reference.html#aa-branches
https://docs.aws.amazon.com/codecommit/latest/userguide/auth-and-access-control-iam-identity-based-access-control.html

 

NEW QUESTION 78
A developer is building an application integrating an Amazon API Gateway with an AWS Lambda function. When calling the API, the developer receives the following error. Wed Nov 03 01:13:00 UTC 2017 : Method completed with status: 502 What should the developer do to resolve the error?

• A. Change the format of the payload sent to the API Gateway.
• B. Change the HTTP endpoint of the API to an HTTPS endpoint.
• C. Change the authorization header in the API call to access the Lambda function
• D. Change the format of the Lambda function response to the API call

Answer: D

 

NEW QUESTION 79
Where can PortMapping be defined when launching containers in Amazon ECS?

• A. Container agent
• B. Task definition
• C. Amazon Elastic Container Registry (Amzon ECR)
• D. Security groups

Answer: B

 

NEW QUESTION 80
A developer has created a REST API using Amazon API Gateway. The developer wants to log who and how each caller accesses the API. The developer also wants to control how long the logs are kept What should the developer do to meet these requirements?

• A. Enable API Gateway access logs Use Amazon CloudWatch retention settings to delete old logs
• B. Create and use API Gateway usage plans. Delete old logs with a recurring AWS Lambda function.
• C. Enable API Gateway execution logging Delete old logs using API Gateway retention settings
• D. Enable detailed Amazon CloudWatch metrics Delete old logs with a recurring AWS Lambda function

Answer: A

 

NEW QUESTION 81
A Developer needs to deploy an application running on AWS Fargate using Amazon ECS. The application has environment variables that must be passed to a container tor the application to initialize How should the environment variables be passed to the container?

• A. Define an array that includes the environment variables under the entrypoint parameter within the task definition
• B. Define in array that includes the environment variables under the entryPoint parameter within the service definition
• C. Define an array that includes the environment variables under the environment parameter within the service definition
• D. Define an array that includes the environment variables under the environment parameter within the task definition

Answer: D

 

NEW QUESTION 82
A Developer has written a serverless application using multiple AWS services. The business logic is written as a Lambda function which has dependencies on third-party libraries. The Lambda function endpoints will be exposed using Amazon API Gateway. The Lambda function will write the information to Amazon DynamoDB.
The Developer is ready to deploy the application but must have the ability to rollback. How can this deployment be automated, based on these requirements?

• A. Use syntax conforming to the Serverless Application Model in the AWS CloudFormation template to define the Lambda function resource.
• B. Deploy using Amazon Lambda API operations to create the Lambda function by providing a deployment package.
• C. Create a bash script which uses AWS CLI to package and deploy the application.
• D. Use an AWS CloudFormation template and use CloudFormation syntax to define the Lambda function resource in the template.

Answer: A

Explanation:
Explanation
Refer AWS documentation - SAM Gradual Code Deployment
If you use AWS SAM to create your serverless application, it comes built-in with AWS CodeDeploy to help ensure safe Lambda deployments. With just a few lines of configuration, AWS SAM does the following for you:
* Deploys new versions of your Lambda function, and automatically creates aliases that point to the new version.
* Gradually shifts customer traffic to the new version un re satisfied that it's working as expected, or you roll back the update.
* Defines pre-traffic and post-traffic test functions to verify that the newly deployed code is configured correctly and your application operates as expected.
* Rolls back the deployment if CloudWatch alarms are triggered.

 

NEW QUESTION 83
A Developer writes an AWS Lambda function and uploads the code in a .ZIP file to Amazon S3.
The Developer makes changes to the code and uploads a new .ZIP file to Amazon S3. However, Lambda executes the earlier code.
How can the Developer fix this in the LEAST disruptive way?

• A. Call the create-alias API.
• B. Call the update-function-code API.
• C. Remove the earlier .ZIP file first, then add the new .ZIP file.
• D. Create another Lambda function and specify the new .ZIP file.

Answer: B

Explanation:
https://docs.aws.amazon.com/cli/latest/reference/lambda/update-function-code.html

 

NEW QUESTION 84
A developer is trying to monitor an application's status by running a cron job that returns 1 if the service is up and 0 if the service is down. The developer created code that uses an AWS CLI put-metric-alarm command to publish the custom metrics to Amazon CloudWatch and create an alarm However the developer is unable to create an alarm as the custom metrics do not appear m the CloudWatch console What is causing this issue?

• A. The code is not running on an Amazon EC2 instance
• B. Sending custom metrics using the CLI is not supported
• C. The developer must use a unified CloudWatch agent to publish custom metrics
• D. The developer needs to use the put-metric-data command.

Answer: D

 

NEW QUESTION 85
A Developer must trigger an AWS Lambda function based on the item lifecycle activity in an Amazon DynamoDB table.
How can the Developer create the solution?

• A. Enable a DynamoDB stream, and trigger the Lambda function synchronously from the stream.
• B. Enable a DynamoDB stream, and trigger the Lambda function asynchronously from the stream.
• C. Enable a DynamoDB stream that publishes an Amazon SNS message. Trigger the Lambda function synchronously from the SNS message.
• D. Enable a DynamoDB stream that publishes an SNS message. Trigger the Lambda function asynchronously from the SNS message.

Answer: A

Explanation:
Explanation
https://docs.aws.amazon.com/lambda/latest/dg/with-ddb.html

 

NEW QUESTION 86
A Developer wants to debug an application by searching and filtering log data. The application logs are stored in Amazon CloudWatch Logs. The Developer creates a new metric filter to count exceptions in the application logs. However, no results are returned from the logs.
What is the reason that no filtered results are being returned?

• A. The log group for CloudWatch Logs should be first streamed to Amazon Elasticsearch Service before metric filtering returns the results
• B. A setup of the Amazon CloudWatch interface VPC endpoint is required for filtering the CloudWatch Logs in the VPC
• C. CloudWatch Logs only publishes metric data for events that happen after the filter is created
• D. Metric data points for logs groups can be filtered only after they are exported to an Amazon S3 bucket

Answer: C

Explanation:
Explanation
https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/MonitoringLogData.html

 

NEW QUESTION 87
An organization is storing large files in Amazon S3, and is writing a web application to display meta-data about the files to end-users. Based on the metadata a user selects an object to download. The organization needs a mechanism to index the files and provide single-digit millisecond latency retrieval for the metadata.
What AWS service should be used to accomplish this?

• A. Amazon DynamoDB
• B. Amazon RDS
• C. AWS Lambda
• D. Amazon EC2

Answer: A

Explanation:
Amazon DynamoDB is a fast and flexible NoSQL database service for all applications that need consistent, single-digit millisecond latency at any scale. It is a fully managed database and supports both document and key-value data models. Its flexible data model and reliable performance make it a great fit for mobile, web, gaming, ad-tech, Internet of Things (IoT), and many other applications.
References:

 

NEW QUESTION 88
A company is developing a report executed by AWS Step Functions Amazon CloudWatch shows errors in the Step Functions task state machine To troubleshoot each task, the state input needs to be included along with the error message in the state output.
Which coding practice can preserve both the original input and the error for the state?

• A. Use ResultPath in a Catch statement to include the error with the original input
• B. Use ErrorEquals in a Retry statement to include the error with the original input
• C. Use inputPath in a Catch statement and set the value to null.
• D. Use OutputPath in a Retry statement and set the value to $.

Answer: A

Explanation:
Reference:
Use ResultPath in a Catch to include the error with the original input.

 

NEW QUESTION 89
A development team is designing a mobile app that requires multi-factor authentication Which steps should be taken to achieve this? (Select TWO)

• A. Use Amazon Cognito to create a user pool and create users in the user pool
• B. Send multi-tactor authentication text codes to users with the Amazon SNS Publish API call in the app code
• C. Enable multi-factor authentication for the users created in AWS IAM.
• D. Use AWS IAM to create IAM users
• E. Enable multi-factor authentication for the Amazon Cognito user pool

Answer: A,E

 

NEW QUESTION 90
A developer is troubleshooting a three-tier application, which is deployed on Amazon EC2 instances. There is a connectivity problem between the application servers and the database servers.
Which AWS services or tools should be used to identify the faulty component? (Select TWO.)

• A. Network access control lists
• B. Amazon VPC Flow Logs
• C. AWS CloudTrail.
• D. AWS Trusted Advisor
• E. AWS Config rules

Answer: A,B

 

NEW QUESTION 91
A developer needs to create an application that supports Security Assertion Markup Language (SAML) and Facebook authentication It must also allow access to AWS services, such as Amazon DynamoDB.
Which AWS service or feature will meet these requirements with the LEAST amount of additional coding?

• A. Amazon Cognito user pools
• B. Amazon Lambda@Edge
• C. AWSAppSync
• D. Amazon Cognito identity pools

Answer: A

Explanation:
Reference:
https://aws.amazon.com/blogs/mobile/amazon-cognito-user-pools-supports-federation-with-saml/

 

NEW QUESTION 92
A Developer will be using the AWS CLI on a local development server to manage AWS services.
What can be done to ensure that the CLI uses the Developer's IAM permissions when making commands?

• A. Specify the Developer's IAM user name and password as parameters for each CLI command.
• B. Run the aws configure CLI command, and provide the Developer's IAM access key ID and secret access key.
• C. Use the Developer's IAM role when making the CLI command.
• D. Specify the Developer's IAM access key ID and secret access key as parameters for each CLI command.

Answer: B

Explanation:
Reference:
https://medium.com/faun/setting-up-a-production-environment-using-our-local-development-server-and-aws-f5eea3b5be60

 

NEW QUESTION 93
A Developer is working on an application that handles 10MB documents that contain highly-sensitive data.
The application will use AWS KMS to perform client-side encryption.
What steps must be followed?

• A. Invoke the GenerateDataKey API to retrieve the encrypted version of the data encryption key to encrypt the data
• B. Invoke the Encrypt API passing the plaintext data that must be encrypted, then reference the customer managed key ARN in the KeyId parameter
• C. Invoke the GenerateRandom API to get a data encryption key, then use the data encryption key to encrypt the data
• D. Invoke the GenerateDataKey API to retrieve the plaintext version of the data encryption key to encrypt the data

Answer: D

Explanation:
Explanation
https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html GenerateDataKey API: Generates a unique data key. This operation returns a plaintext copy of the data key and a copy that is encrypted under a customer master key (CMK) that you specify. You can use the plaintext key to encrypt your data outside of KMS and store the encrypted data key with the encrypted data.

 

NEW QUESTION 94
Your application is trying to upload a 6 GB file to Simple Storage Service and receive a "Your proposed upload exceeds the maximum allowed object size." error message.
What is a possible solution for this?

• A. None, Simple Storage Service objects are limited to 5 GB
• B. Use the large object upload API for this object
• C. Use the multi-part upload API for this object
• D. Upload to a different region
• E. Contact support to increase your object size limit

Answer: C

 

NEW QUESTION 95
A company needs to ingest terabytes of data each hour from thousands of sources that are delivered almost continually throughout the day. The volume of messages generated varies over the course of the day.
Messages must be delivered in real time for fraud detection and live operational dashboards.
Which approach will meet these requirements?

• A. Use the Amazon S3 API to write messages to an S3 bucket, then process the messages by using Amazon Redshift
• B. Use Amazon Kinesis Data Streams with Kinesis Client Library to ingest and deliver messages
• C. Use AWS Data Pipeline to automate the movement and transformation of data
• D. Send the messages to an Amazon SQS queue, then process the messages by using a fleet of Amazon EC2 instances

Answer: B

 

NEW QUESTION 96
......

AWS-CDA Exam Syllabus Topics:

Section	Objectives
Deployment - 22%
Deploy written code in AWS using existing CI/CD pipelines, processes, and patterns.	- Commit code to a repository and invoke build, test and/or deployment actions - Use labels and branches for version and release management - Use AWS CodePipeline to orchestrate workflows against different environments - Apply AWS CodeCommit, AWS CodeBuild, AWS CodePipeline, AWS CodeStar, and AWS CodeDeploy for CI/CD purposes - Perform a roll back plan based on application deployment policy
Deploy applications using AWS Elastic Beanstalk.	- Utilize existing supported environments to define a new application stack - Package the application - Introduce a new application version into the Elastic Beanstalk environment - Utilize a deployment policy to deploy an application version (i.e., all at once, rolling, rolling with batch, immutable) - Validate application health using Elastic Beanstalk dashboard - Use Amazon CloudWatch Logs to instrument application logging
Prepare the application deployment package to be deployed to AWS.	- Manage the dependencies of the code module (like environment variables, config files and static image files) within the package - Outline the package/container directory structure and organize files appropriately - Translate application resource requirements to AWS infrastructure parameters (e.g., memory, cores)
Deploy serverless applications.	- Given a use case, implement and launch an AWS Serverless Application Model (AWS SAM) template - Manage environments in individual AWS services (e.g., Differentiate between Development, Test, and Production in Amazon API Gateway)
Security - 26%
Make authenticated calls to AWS services.	- Communicate required policy based on least privileges required by application. - Assume an IAM role to access a service - Use the software development kit (SDK) credential provider on-premises or in the cloud to access AWS services (local credentials vs. instance roles)
Implement encryption using AWS services.	- Encrypt data at rest (client side; server side; envelope encryption) using AWS services - Encrypt data in transit
Implement application authentication and authorization.	- Add user sign-up and sign-in functionality for applications with Amazon Cognito identity or user pools - Use Amazon Cognito-provided credentials to write code that access AWS services. - Use Amazon Cognito sync to synchronize user profiles and data- Use developer-authenticated identities to interact between end user devices, backend authentication, and Amazon Cognito
Development with AWS Services - 30%
Write code for serverless applications.	- Compare and contrast server-based vs. serverless model (e.g., micro services, stateless nature of serverless applications, scaling serverless applications, and decoupling layers of serverless applications) - Configure AWS Lambda functions by defining environment variables and parameters (e.g., memory, time out, runtime, handler) - Create an API endpoint using Amazon API Gateway - Create and test appropriate API actions like GET, POST using the API endpoint - Apply Amazon DynamoDB concepts (e.g., tables, items, and attributes) - Compute read/write capacity units for Amazon DynamoDB based on application requirements - Associate an AWS Lambda function with an AWS event source (e.g., Amazon API Gateway, Amazon CloudWatch event, Amazon S3 events, Amazon Kinesis) - Invoke an AWS Lambda function synchronously and asynchronously
Translate functional requirements into application design.	- Determine real-time vs. batch processing for a given use case - Determine use of synchronous vs. asynchronous for a given use case - Determine use of event vs. schedule/poll for a given use case - Account for tradeoffs for consistency models in an application design
Implement application design into application code.	- Write code to utilize messaging services (e.g., SQS, SNS) - Use Amazon ElastiCache to create a database cache - Use Amazon DynamoDB to index objects in Amazon S3 - Write a stateless AWS Lambda function - Write a web application with stateless web servers (Externalize state)
Write code that interacts with AWS services by using APIs, SDKs, and AWS CLI.	- Choose the appropriate APIs, software development kits (SDKs), and CLI commands for the code components - Write resilient code that deals with failures or exceptions (i.e., retries with exponential back off and jitter)
Refactoring - 10%
Optimize applications to best use AWS services and features.	- Implement AWS caching services to optimize performance (e.g., Amazon ElastiCache, Amazon API Gateway cache) - Apply an Amazon S3 naming scheme for optimal read performance
Migrate existing application code to run on AWS.	- Isolate dependencies - Run the application as one or more stateless processes - Develop in order to enable horizontal scalability - Externalize state
Monitoring and Troubleshooting - 12%
Write code that can be monitored.	- Create custom Amazon CloudWatch metrics - Perform logging in a manner available to systems operators - Instrument application source code to enable tracing in AWS X-Ray
Perform root cause analysis on faults found in testing or production.	- Interpret the outputs from the logging mechanism in AWS to identify errors in logs - Check build and testing history in AWS services (e.g., AWS CodeBuild, AWS CodeDeploy, AWS CodePipeline) to identify issues - Utilize AWS services (e.g., Amazon CloudWatch, VPC Flow Logs, and AWS X-Ray) to locate a specific faulty component

 

Pass Amazon DVA-C01 Test Practice Test Questions Exam Dumps: https://www.actualtestsquiz.com/DVA-C01-test-torrent.html

The Best Amazon AWS Certified Associate Study Guide for the DVA-C01 Exam: https://drive.google.com/open?id=1b1r_Iqii4BJIVKbhaesNt3YD7hciaQux