DBS-C01 Online Practice Questions and Answers

A Database Specialist is designing a new database infrastructure for a ride hailing application. The application data includes a ride tracking system that stores GPS coordinates for all rides. Real-time statistics and metadata lookups must be performed with high throughput and microsecond latency. The database should be fault tolerant with minimal operational overhead and development effort.

Which solution meets these requirements in the MOST efficient way?

A. Use Amazon RDS for MySQL as the database and use Amazon ElastiCache

B. Use Amazon DynamoDB as the database and use DynamoDB Accelerator

C. Use Amazon Aurora MySQL as the database and use Aurora's buffer cache

D. Use Amazon DynamoDB as the database and use Amazon API Gateway

A company is planning to use Amazon RDS for SQL Server for one of its critical applications. The company's security team requires that the users of the RDS for SQL Server DB instance are authenticated with on-premises Microsoft Active Directory credentials.

Which combination of steps should a database specialist take to meet this requirement? (Choose three.)

A. Extend the on-premises Active Directory to AWS by using AD Connector.

B. Create an IAM user that uses the AmazonRDSDirectoryServiceAccess managed IAM policy.

C. Create a directory by using AWS Directory Service for Microsoft Active Directory.

D. Create an Active Directory domain controller on Amazon EC2.

E. Create an IAM role that uses the AmazonRDSDirectoryServiceAccess managed IAM policy.

F. Create a one-way forest trust from the AWS Directory Service for Microsoft Active Directory directory to the on-premises Active Directory.

A company uses an Amazon RDS for PostgreSQL DB instance for its customer relationship management (CRM) system. New compliance requirements specify that the database must be encrypted at rest.

Which action will meet these requirements?

A. Create an encrypted copy of manual snapshot of the DB instance. Restore a new DB instance from the encrypted snapshot.

B. Modify the DB instance and enable encryption.

C. Restore a DB instance from the most recent automated snapshot and enable encryption.

D. Create an encrypted read replica of the DB instance. Promote the read replica to a standalone instance.

A company has an ecommerce web application with an Amazon RDS for MySQL DB instance. The marketing team has noticed some unexpected updates to the product and pricing information on the website, which is impacting sales targets. The marketing team wants a database specialist to audit future database activity to help identify how and when the changes are being made.

What should the database specialist do to meet these requirements? (Choose two.)

A. Create an RDS event subscription to the audit event type.

B. Enable auditing of CONNECT and QUERY_DML events.

C. SSH to the DB instance and review the database logs.

D. Publish the database logs to Amazon CloudWatch Logs.

E. Enable Enhanced Monitoring on the DB instance.

Amazon RDS for Oracle with Transparent Data Encryption is used by a financial services organization (TDE). At all times, the organization is obligated to encrypt its data at rest. The decryption key must be widely distributed, and access to the key must be restricted. The organization must be able to rotate the encryption key on demand to comply with regulatory requirements. If any possible security vulnerabilities are discovered, the organization must be able to disable the key. Additionally, the company's overhead must be kept to a minimal.

What method should the database administrator use to configure the encryption to fulfill these specifications?

A. AWS CloudHSM

B. AWS Key Management Service (AWS KMS) with an AWS managed key

C. AWS Key Management Service (AWS KMS) with server-side encryption

D. AWS Key Management Service (AWS KMS) CMK with customer-provided material

A company plans to use AWS Database Migration Service (AWS DMS) to migrate its database from one Amazon EC2 instance to another EC2 instance as a full load task. The company wants the database to be inactive during the migration. The company will use a dms.t3.medium instance to perform the migration and will use the default settings for the migration.

Which solution will MOST improve the performance of the data migration?

A. Increase the number of tables that are loaded in parallel.

B. Drop all indexes on the source tables.

C. Change the processing mode from the batch optimized apply option to transactional mode.

D. Enable Multi-AZ on the target database while the full load task is in progress.

A company has an ecommerce website that runs on AWS. The website uses an Amazon RDS for MySQL database. A database specialist wants to enforce the use of temporary credentials to access the database.

Which solution will meet this requirement?

A. Use MySQL native database authentication.

B. Use AWS Secrets Manager to rotate the credentials.

C. Use AWS Identity and Access Management (IAM) database authentication.

D. Use AWS Systems Manager Parameter Store for authentication.

A gaming company wants to deploy a game in multiple Regions. The company plans to save local high scores in Amazon DynamoDB tables in each Region. A Database Specialist needs to design a solution to automate the deployment of the database with identical configurations in additional Regions, as needed. The solution should also automate configuration changes across all Regions.

Which solution would meet these requirements and deploy the DynamoDB tables?

A. Create an AWS CLI command to deploy the DynamoDB table to all the Regions and save it for future deployments.

B. Create an AWS CloudFormation template and deploy the template to all the Regions.

C. Create an AWS CloudFormation template and use a stack set to deploy the template to all the Regions.

D. Create DynamoDB tables using the AWS Management Console in all the Regions and create a step-by- step guide for future deployments.

A company performs an audit on various data stores and discovers that an Amazon S3 bucket is storing a credit card number. The S3 bucket is the target of an AWS Database Migration Service (AWS DMS) continuous replication task that uses change data capture (CDC). The company determines that this field is not needed by anyone who uses the target data. The company has manually removed the existing credit card data from the S3 bucket.

What is the MOST operationally efficient way to prevent new credit card data from being written to the S3 bucket?

A. Add a transformation rule to the DMS task to ignore the column from the source data endpoint.

B. Add a transformation rule to the DMS task to mask the column by using a simple SQL query.

C. Configure the target S3 bucket to use server-side encryption with AWS KMS keys (SSE- KMS).

D. Remove the credit card number column from the data source so that the DMS task does not need to be altered.

A corporation wishes to move a 1 TB Oracle database from its current location to an Amazon Aurora PostgreSQL DB cluster. The database specialist at the firm noticed that the Oracle database stores 100 GB of large binary objects (LOBs) across many tables. The Oracle database supports LOBs up to 500 MB in size and an average of 350 MB. AWS DMS was picked by the Database Specialist to transfer the data with the most replication instances.

How should the database specialist improve the transfer of the database to AWS DMS?

A. Create a single task using full LOB mode with a LOB chunk size of 500 MB to migrate the data and LOBs together

B. Create two tasks: task1 with LOB tables using full LOB mode with a LOB chunk size of 500 MB and task2 without LOBs

C. Create two tasks: task1 with LOB tables using limited LOB mode with a maximum LOB size of 500 MB and task 2 without LOBs

D. Create a single task using limited LOB mode with a maximum LOB size of 500 MB to migrate data and LOBs together