DVA-C01 Online Practice Questions and Answers

An advertising company has a dynamic website with heavy traffic. The company wants to migrate the website infrastructure to AWS to handle everything except website development. Which solution BEST meets these requirements?

A. Use AWS VM Import to migrate a web server image to AWS Launch the image on a compute-optimized Amazon EC2 instanceLaunch.

B. Launch multiple Amazon Lighsall instance behind a load balancer. Set up the website on those instances.

C. Deploy the website code in an AWS Elastic Beanstalk environment. Use Auto Scaling to scale the numbers of instance

D. Use Amazon S3 to host the website. Use Amazon CloudFornt to deliver the content at scale.

Which of the following items are required to allow an application deployed on an EC2 instance to write data to a DynamoDB table? Assume that no security Keys are allowed to be stored on the EC2 instance. Choose 2 answers

A. Create an IAM User that allows write access to the DynamoDB table.

B. Add an IAM Role to a running EC2 instance.

C. Add an IAM User to a running EC2 Instance.

D. Launch an EC2 Instance with the IAM Role included in the launch configuration.

E. Create an IAM Role that allows write access to the DynamoDB table.

F. Launch an EC2 Instance with the IAM User included in the launch configuration.

A Developer is publishing critical log data to a log group in Amazon CloudWatch Lops, which was created 2 months ago. The Developer must encrypt the log data using an AWS KMS customer master key (CMK) so future data can be encrypted to comply with me company's security policy

How can the Developer meet this requirement?

A. Use the Cloud Watch Logs console and enable the encrypt feature on the log group.

B. Use the AWS CLI create-log-group command and specify the key Amazon Resource Name (ARN)

C. Use the KMs console and associate the CMK with the log group

D. Use the AWS CLI associate-Kms-key command and specify the key Amazon Resource Name (ARN)

A company has a website that is developed in PHP and WordPress and is launched using AWS Elastic Beanstalk. There is a new version of the website that needs to be deployed in the Elastic Beanstalk environment. The company cannot tolerate having the website offline if an update fails. Deployments must have minimal impact and rollback as soon as possible.

What deployment method should be used?

A. All at once

B. Rolling

C. Snapshots

D. Immutable

A Developer is writing a REST service that will add items to a shopping list. The service is built on Amazon API Gateway with AWS Lambda integrations. The shopping list items are send as query string parameters in the method request. How should the Developer convert the query string parameters to arguments for the Lambda function?

A. Enable request validation

B. Include the Amazon Resource Name (ARN) of the Lambda function

C. Change the integration type

D. Create a mapping template

A company is building a compute-intensive application that will run on a fleet of Amazon EC2 instances. The application uses attached Amazon EBS disks for storing data. The application will process sensitive information and all the data must be encrypted.

What should a Developer do to ensure the data is encrypted on disk without impacting performance?

A. Configure the Amazon EC2 instance fleet to use encrypted EBS volumes for storing data.

B. Add logic to write all data to an encrypted Amazon S3 bucket.

C. Add a custom encryption algorithm to the application that will encrypt and decrypt all data.

D. Create a new Amazon Machine Image (AMI) with an encrypted root volume and store the data to ephemeral disks.

A company wants to containerize an existing three-tier web application and deploy it to Amazon ECS Fargate. The application is using session data to keep track of user activities. Which approach would provide the BEST user experience?

A. Provision a Redis cluster in Amazon ElastiCache and save the session data in the cluster.

B. Create a session table in Amazon Redshift and save the session data in the database table.

C. Enable session stickiness in the existing Network Load Balancer and manage the session data in the container.

D. Use an Amazon S3 bucket as data store and save the session data in the bucket.

A company processes incoming documents from an Amazon S3 bucket. Users upload documents to an S3 bucket using a web user interface. Upon receiving files in S3, an AWS Lambda function is invoked to process the files, but the Lambda function times out intermittently.

If the Lambda function is configured with the default settings, what will happen to the S3 event when there is a timeout exception?

A. Notification of a failed S3 event is send as an email through Amazon SNS.

B. The S3 event is sent to the default Dead Letter Queue.

C. The S3 event is processed until it is successful.

D. The S3 event is discarded after the event is retried twice.

A developer is working on a serverless application. The application uses Amazon API Gateway. AWS Lambda functions that are written in Python, and Amazon DynamoDB. Which combination of steps should the developer take so that the Lambda functions can be debugged in the event of application failures? (Select TWO )

A. Configure an AWS CloudTrail trail to deliver log files to an Amazon S3 bucket

B. Ensure that the Lambda functions write log messages to stdout and stderr

C. Enable an AWS CloudTrail trail for the Lambda function

D. Ensure that the execution role for the Lambda function has access to write to Amazon CloudWatch Logs.

E. Use the Amazon CloudWatch metric for Lambda errors to create a CloudWatch alarm.

A company has a large number of documents that are stored securely in Amazon S3. The company is creating an application that occasionally will read these documents. The application will be deployed on Amazon EC2 instances.

The company's security requirements mandate that no long-term credentials can be stored on the EC2 instances and that only the needed documents can be accessed. Only authorized users and applications can access the documents,

access must be logged by Amazon S3, and each document must follow S3 Lifecycle policies for archival and destruction.

What should a developer do to meet these requirements?

A. Create an event to invoke an AWS Lambda function when a document is uploaded. Configure the function to write the documents to an Amazon Elastic File System (Amazon EFS) file system. Configure the EC2 instances to mount the EFS file system. Configure the application to access the documents that are stored in the file system as needed.

B. Create a user that has programmatic credentials, and attach a policy that allows read access to the S3 bucket. Use the AWS CLI to configure those credentials for the EC2 instances to use. Create an Amazon Machine Image (AMI), and add the access key and secret access key to the user data section to create environment variables. Use the AMI to launch each EC2 instance that runs the application. Add application code to use the keys that are stored in the environment variables to access the S3 bucket objects as needed.

C. Modify the S3 bucket, make the bucket public, and make each object public. Add application code to make REST calls to access the objects in the S3 bucket as needed.

D. Create an IAM role with permissions to read objects from Amazon S3. Attach the role to the EC2 instances as an instance profile. Add application code to access the objects in the S3 bucket as needed.