• Home
  • Articles
  • [Q28-Q45] Try 100% Updated AWS-Developer Exam Questions [2023]

[Q28-Q45] Try 100% Updated AWS-Developer Exam Questions [2023]

Share

Try 100% Updated AWS-Developer Exam Questions [2023]

Pass AWS-Developer Exam - Real Questions and Answers


Amazon AWS-Certified-Developer-Associate, also known as AWS Certified Developer - Associate, is a certification exam designed by Amazon Web Services to test the developer's expertise in designing, deploying, and maintaining AWS applications. AWS Certified Developer - Associate certification exam is intended for individuals who have a working knowledge of AWS core services, principles, and architectures used for developing and deploying cloud-based applications.

 

NEW QUESTION # 28
A developer is building an application that processes a stream of user-supplied data. The data stream must be consumed by multiple Amazon EC2 based processing applications in parallel and in real time. Each processor must be able to resume without losing data if there is a service interruption. The Application Architect plans to add other processors in the near future, and wants to minimize the amount data duplication involved.
Which solution will satisfy these requirements?

  • A. Publish the data to Amazon Kinesis Data Firehose.
  • B. Publish the data to Amazon Kinesis Data Streams.
  • C. Publish the data to Amazon CloudWatch Events.
  • D. Publish the data to Amazon SQS.

Answer: B

Explanation:
Expalantion:
https://aws.amazon.com/kinesis/data-streams/faqs/


NEW QUESTION # 29
A Development team has pushed out 10 applications running on several Amazon EC2 instances. The Operations team is asking for a graphical representation of one key performance metric for each application.
These metrics should be available on one screen for easy monitoring.
Which steps should the Developer take to accomplish this using Amazon CloudWatch?

  • A. Create a custom alarm with a unique metric name for each application.
  • B. Create a custom dimension with a unique metric name for each application.
  • C. Create a custom event with a unique metric name for each application.
  • D. Create a custom namespace with a unique metric name for each application.

Answer: D

Explanation:
Explanation
https://aws.amazon.com/premiumsupport/knowledge-center/cloudwatch-custom-metrics/


NEW QUESTION # 30
A user has setup Multi AZ with the MS SQL RDS instance.
Which of the below mentioned functionalities can be achieved by the user?

  • A. Disaster recovery
  • B. Scalability
  • C. High availability
  • D. MS SQL does not support Multi AZ

Answer: D

Explanation:
The Multi AZ feature allows the user to achieve High Availability.
MS SQL does not support Multi AZ.
https://aws.amazon.com/rds/faqs/#36


NEW QUESTION # 31
A game stores user game data in an Amazon DynamoDB table. Individual users should not have access to other users' game data. How can this be accomplished?

  • A. Read records from DynamoDB and discard irrelevant data client-side.
  • B. Encrypt the game data with individual user keys.
  • C. Stage data in SQS queues to inject metadata before accessing DynamoDB.
  • D. Restrict access to specific items based on certain primary key values.

Answer: D

Explanation:
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/specifying-conditions.html


NEW QUESTION # 32
A developer is building an application integrating an Amazon API Gateway with an AWS Lambda function. When calling the API, the developer receives the following error:
Wed Nov 08 01:13:00 UTC 2017 : Method completed with status: 502
What should the developer do to resolve the error?

  • A. Change the format of the Lambda function response to the API call
  • B. Change the format of the payload sent to the API Gateway
  • C. Change the authorization header in the API call to access the Lambda function
  • D. Change the HTTP endpoint of the API to an HTTPS endpoint

Answer: A

Explanation:
https://aws.amazon.com/premiumsupport/knowledge-center/malformed-502-api-gateway/


NEW QUESTION # 33
What is the format of structured notification messages sent by Amazon SNS?

  • A. An JSON object containing MessageId, unsubscribeURL, Subject, Message and other values
  • B. An XML object containing MessageId, DuplicateFlag, Message and other values
  • C. An XML object containing MessageId, UnsubscribeURL, Subject, Message and other values
  • D. An JSON object containing MessageId, DuplicateFlag, Message and other values

Answer: A


NEW QUESTION # 34
A developer tested an application locally and then deployed it to AWS Lambda. While testing the application remotely, the Lambda function fails with an access denied message.
How can this issue be addressed?

  • A. Update the Lambda function's resource policy to include the missing permissions.
  • B. Redeploy the Lambda function using an account with access to the AdministratorAccess policy.
  • C. Include an IAM policy document at the root of the deployment package and redeploy the Lambda function.
  • D. Update the Lambda function's execution role to include the missing permissions.

Answer: D

Explanation:
https://aws.amazon.com/premiumsupport/knowledge-center/access-denied-lambda-s3-bucket/


NEW QUESTION # 35
An organization is setting up their website on AWS. The organization is working on various security measures to be performed on the AWS EC2 instances. Which of the below mentioned security mechanisms will not help the organization to avoid future data leaks and identify security weaknesses?

  • A. Perform a hardening test on the AWS instance.
  • B. Perform a Code Check for any memory leaks.
  • C. Perform SQL injection for application testing.
  • D. Run penetration testing on AWS with prior approval from Amazon.

Answer: B

Explanation:
AWS security follows the shared security model where the user is as much responsible as Amazon. Since Amazon is a public cloud it is bound to be targeted by hackers. If an organization is planning to host their application on AWS EC2, they should perform the below mentioned security checks as a measure to find any security weakness/data leaks:
Perform penetration testing as performed by attackers to find any vulnerability. The organization must take an approval from AWS before performing penetration testing Perform hardening testing to find if there are any unnecessary ports open Perform SQL injection to find any DB security issues The code memory checks are generally useful when the organization wants to improve the application performance.
Reference: http://aws.amazon.com/security/penetration-testing/


NEW QUESTION # 36
An IT consulting company wants to reduce costs when operating its development environment databases. The company's workflow creates multiple Amazon Aurora MySQL DB clusters for each development group. The Aurora DB clusters are only used for 8 hours a day. The DB clusters can then be deleted at the end of the development cycle, which lasts 2 weeks.
Which of the following provides the MOST cost-effective solution?

  • A. Use Aurora Serverless. Restore current Aurora snapshot and deploy to a serverless cluster for each development group. Enable the option to pause the compute capacity on the cluster and set an appropriate timeout.
  • B. Use the Aurora DB cloning feature. Deploy a single development and test Aurora DB instance, and create clone instances for the development groups. Delete the clones at the end of the development cycle.
  • C. Use AWS CloudFormation templates. Deploy a stack with the DB cluster for each development group.
    Delete the stack at the end of the development cycle.
  • D. Use Aurora Replicas. From the master automatic pause compute capacity option, create replicas for each development group, and promote each replica to master. Delete the replicas at the end of the development cycle.

Answer: A


NEW QUESTION # 37
An application running on Amazon EC2 instances must access objects within an Amaon S3 busket that are encrypted using server-side encryption using AWS KMS encryption keys (SSE-KMS). The application must have access to the customer master key (CMK) to decrypt the objects.
Which combination of steps will grant the application access? (Select TWO.)

  • A. Create a Systems Manager parameter that exposes the KMS key to the EC2 instances.
  • B. Grant access to the key in the S3 bucket's ACL
  • C. Grant access to the key in the IAM EC2 role attached to the application's EC2 instances.
  • D. Write an S3 bucket policy that grants the bucket access to the key.
  • E. Write a key policy that enables IAM policies to grant access to the key.

Answer: C,E

Explanation:
Explanation
https://aws.amazon.com/premiumsupport/knowledge-center/decrypt-kms-encrypted-objects-s3/ IAM role needs access to the keys to decrypt the object and key policies must allow role access to the key. Key policies are the primary way to control access to customer master keys (CMKs) in AWS KMS. You need the permission to decrypt the AWS KMS key. When a user sends a GET request, Amazon S3 checks if the AWS Identity and Access Management (IAM) user or role that sent the request is authorized to decrypt the key associated with the object. If the IAM user or role belongs to the same AWS account as the key, then the permission to decrypt must be granted on the AWS KMS key's policy.


NEW QUESTION # 38
A company runs an e-commerce website that uses Amazon DynamoDB where pricing for items is dynamically updated in real time. At any given time, multiple updates may occur simultaneously for pricing information on a particular product. This is causing the original editor's changes to be overwritten without a proper review process.
Which DynamoDB write option should be selected to prevent this overwriting?

  • A. Concurrent writes
  • B. Batch writes
  • C. Conditional writes
  • D. Atomic writes

Answer: C


NEW QUESTION # 39
A company is building a compute-intensive application that will run on a fleet of Amazon EC2 instances. The application uses attached Amazon EBS disks for storing dat
a. The application will process sensitive information and all the data must be encrypted.
What should a developer do to ensure the data is encrypted on disk without impacting performance?

  • A. Configure the Amazon EC2 instance fleet to use encrypted EBS volumes for storing data
  • B. Add logic to write all data to an encrypted Amazon S3 bucket
  • C. Add a custom encryption algorithm to the application that will encrypt and decrypt all data
  • D. Create a new Amazon Machine Image (AMI) with an encrypted root volume and store the data to ephemeral disks.

Answer: A


NEW QUESTION # 40
A developer wants to build an application that will allow new users to register and create new user accounts.
The application must also allow users with social media accounts to log in using their social media credentials.
Which AWS service or feature can be used to meet these requirements?

  • A. AWS Directory Service
  • B. Amazon Cognito identity pools
  • C. Amazon Cognito user pools
  • D. AWS IAM

Answer: C

Explanation:
Reference:
https://aws.amazon.com/blogs/apn/how-to-authenticate-users-into-your-apps-using-applicationload-balancer-and


NEW QUESTION # 41
Which of the following services are key/value stores? Choose 3 answers

  • A. Simple Workflow Service
  • B. Simple Storage Service
  • C. DynamoDB
  • D. Amazon ElastiCache
  • E. Simple Notification Service

Answer: B,C,E


NEW QUESTION # 42
A developer supports an application that accesses data in an Amazon DynamoDB table One of the item attributes is expirationDate In the timestamp format The application uses this attribute to find items archive them and remove them from the table based on the timestamp value The application will be decommissioned soon, and the developer must find another way to implement this functionality The developer needs a solution that will require the least amount of code to write.
Which solution will meet these requirements?

  • A. Create two AWS Lambda functions one to delete the items and one to process the items Create an Amazon EventBridge (Amazon CloudWatch Events) scheduled rule to invoke the Lambda functions Use the Deleteltem API operation to delete the items based on the expirationDate attribute Use the GetRecords API operation to get the items from the DynamoDB table and process them
  • B. Enable TTL on the expirationDate attribute in the table. Create a DynamoDB stream. Create an AWS Lambda function to process the deleted items. Create a DynamoDB trigger for the Lambda function
  • C. Enable TTL on the expirationDate attribute in the table Specify an Amazon Simple Queue Service (Amazon SQS) dead-letter queue as the target to delete the items Create an AWS Lambda function to process the items.
  • D. Create two AWS Lambda functions one to delete the items and one to process the items Create a DynamoDB stream Use the Deleteltem API operation to delete the items based on the expirationDate attribute Use the GetRecords API operation to get the items from the DynamoDB stream and process them

Answer: A


NEW QUESTION # 43
Which of the following are valid SNS delivery transports? Choose 2 answers

  • A. HTTP
  • B. UDP
  • C. SMS
  • D. DynamoDB
  • E. Named Pipes

Answer: A,C


NEW QUESTION # 44
A company is building an application to track athlete performance using an Amazon DynamoDB table. Each item in the table is identified by a partition key (user_id) and a sort key (sport_name). The table design is shown below:

(Note: Not all table attributes are shown)
A Developer is asked to write a leaderboard application to display the top performers (user_id) based on the score for each sport_name.
What process will allow the Developer to extract results MOST efficiently from the DynamoDB table?

  • A. Use a DynamoDB query operation with the key attributes of user_id and sport_name and order the results based on the score attribute.
  • B. Use a DynamoDB scan operation to retrieve scores and user_id based on sport_name, and order the results based on the score attribute.
  • C. Create a local secondary index with a primary key of sport_name and a sort key of score and get the results based on the score attribute.
  • D. Create a global secondary index with a partition key of sport_name and a sort key of score, and get the results

Answer: D

Explanation:
Explanation
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/SecondaryIndexes.html
https://docs.aws.amazon.com/zh_cn/amazondynamodb/latest/developerguide/GSI.html


NEW QUESTION # 45
......

AWS-Developer Exam Questions Get Updated [2023] with Correct Answers: https://www.passtestking.com/Amazon/AWS-Developer-practice-exam-dumps.html

Free Amazon AWS-Developer Test Practice Test Questions Exam Dumps: https://drive.google.com/open?id=1j-CbSU5BV65FfDvSoW8lh9k2deMvdWN3

Related Articles

more
Go To AWS-Developer Questions