• Home
  • Articles
  • [Nov 29, 2021] Pass Your AWS-Certified-Developer-Associate Dumps Free Latest Amazon Practice Tests [Q211-Q234]

[Nov 29, 2021] Pass Your AWS-Certified-Developer-Associate Dumps Free Latest Amazon Practice Tests [Q211-Q234]

Share

[Nov 29, 2021] Pass Your AWS-Certified-Developer-Associate Dumps Free Latest Amazon Practice Tests

Get Top-Rated Amazon AWS-Certified-Developer-Associate Exam Dumps Now

NEW QUESTION 211
A company's data lake uses Amazon S3 and Amazon Athena. The company's security engineer has been asked to design an encryption solution that meets the company's data protection requirements. The encryption solution must work with Amazon S3 and keys managed by the company. The encryption solution must be protected in a hardware security module that is validated to Federal information Processing Standards (FIPS) 140-2 Level 3.
Which solution meets these requirements?

  • A. Use an AWS KMS customer-managed key that is backed by a custom key store using AWS CloudHSM.
  • B. Use an AWS KMS customer-managed key with the bring your own key (BYOK) feature to import a key stored in AWS CloudHSM.
  • C. Use AWS CloudHSM to store the keys and perform cryptographic operations. Save the encrypted text in Amazon S3.
  • D. Use client-side encryption with an AWS KMS customer-managed key implemented with the AWS Encryption SDK.

Answer: D

 

NEW QUESTION 212
A Developer has implemented a Lambda function that needs to add new customers to an RDS database that is expected to run hundreds of times per hour. The Lambda function is configured to use 512MB of RAM and is based on the following pseudo code:

After testing the Lambda function, the Developer notices that the Lambda execution time is much longer than expected. What should the Developer do to improve performance?

  • A. Increase the amount of RAM allocated to the Lambda function, which will increase the number of threads the Lambda can use.
  • B. Replace RDS wit Amazon DynamoDB to implement control over the number of writes per second.
  • C. Increase the size of the RDS database to allow for an increased number of database connections each hour.
  • D. Move the database connection and close statement out of the handler. Place the connection in the global space.

Answer: C

 

NEW QUESTION 213
A user is planning to host a scalable dynamic web application on AWS. Which of the services may not be required by the user to achieve automated scalability?

  • A. S3
  • B. CloudWatch
  • C. AWS EC2 instances
  • D. AutoScaling

Answer: A

Explanation:
The user can achieve automated scaling by launching different EC2 instances and making them a part of an ELB. Cloudwatch will be used to monitor the resources and based on the scaling need it will trigger policies. AutoScaling is then used to scale up or down the instances.
http://docs.aws.amazon.com/AutoScaling/latest/DeveloperGuide/WhatIsAutoScaling.html

 

NEW QUESTION 214
A global company has an application running on Amazon EC2 instances that serves image files from Amazon S3. User requests from the browser are causing high traffic, which results in degraded performance.
Which optimization solution should a Developer implement to increase application performance?

  • A. Create multiple prefix in the S3 bucket to increase the request rate
  • B. Create an Amazon ElastiCache cluster to cache and serve frequently accessed items.
  • C. Use Amazon CloudFront to serve the content of images stored in Amazon S3.
  • D. Submit a ticket to AWS support to request a rate limit increase for the S3 bucket.

Answer: C

 

NEW QUESTION 215
A company has several workloads running on AWS. Employees are required to authenticate using on- premises ADFS and SSO to access the AWS Management Console. Developers migrated an existing legacy web application to an Amazon EC2 instance. Employees need to access this application from anywhere on the internet, but currently, there is no authentication system built into the application.
How should the Security Engineer implement employee-only access to this system without changing the application?

  • A. Place the application behind an Application Load Balancer (ALB). Use Amazon Cognito as authentication for the ALB. Define a SAML-based Amazon Cognito user pool and connect it to ADFS.
  • B. Define an Amazon Cognito identity pool, then install the connector on the Active Directory server. Use the Amazon Cognito SDK on the application instance to authenticate the employees using their Active Directory user names and passwords.
  • C. Create an AWS Lambda custom authorizer as the authenticator for a reverse proxy on Amazon EC2.
    Ensure the security group on Amazon EC2 only allows access from the Lambda function.
  • D. Implement AWS SSO in the master account and link it to ADFS as an identity provider. Define the EC2 instance as a managed resource, then apply an IAM policy on the resource.

Answer: B

 

NEW QUESTION 216
A Developer is publishing critical log data to a log group in Amazon CloudWatch Lops, which was created 2 months ago. The Developer must encrypt the log data using an AWS KMS customer master key (CMK) so future data can be encrypted to comply with me company's security policy
How can the Developer meet this requirement?

  • A. Use the KMs console and associate the CMK with the log group
  • B. Use the AWS CLI associate-Kms-key command and specify the key Amazon Resource Name (ARN)
  • C. Use the AWS CLI create-log-group command and specify the key Amazon Resource Name (ARN)
  • D. Use the Cloud Watch Logs console and enable the encrypt feature on the log group.

Answer: A

 

NEW QUESTION 217
When you register an activity in Amazon SWF, you provide the following information, except:

  • A. version
  • B. timeout values
  • C. a domain
  • D. a name

Answer: C

Explanation:
When designing an Amazon SWF workflow, you precisely define each of the required activities.
You then register each activity with Amazon SWF as an activity type. When you register the activity, you provide information such as a name and version, and some timeout values based on how long you expect the activity to take.
http://docs.aws.amazon.com/amazonswf/latest/developerguide/swf-dg-intro-to-swf.html

 

NEW QUESTION 218
A developer works in an environment with multiple AWS accounts that have AWS Lambda functions processing the same 100 KB payloads. The developer wants to centralize the point of origin of the payloads to one account and have all the Lambda functions be invoked whenever the initiating event occurs in the parent account.
How can the developer design the workflow in the MOST efficient way, so all the multi-account Lambda functions get invoked when the event occurs?

  • A. Subscribe all the multi-account Lambda functions to an Amazon SNS topic and make a SNS Publish API call with the payload to the SNS topic.
  • B. Create a Lambda function in the parent account and use cross-account IAM roles with the AWS Security Token Service (AWS STS) AssumeRole API call to make AWS Lambda invoke the API call to invoke all the cross-account Lambda functions.
  • C. Use a worker on an Amazon EC2 instance to poll for the payload event. Invoke all Lambda functions using the Lambda Invoke API after using cross-account IAM roles with the AWS Security Token Service (AWS STS) AssumeRole API call.
  • D. Set up an Amazon SQS queue with the queue policy permitting the ReceiveMessage action for multi-account Lambda functions. Then send the payload to the SQS queue using the sqs:SendMessage permission and poll the queue using multi-account Lambda functions.

Answer: A

Explanation:
Explanation
https://aws.amazon.com/es/blogs/compute/cross-account-integration-with-amazon-sns/

 

NEW QUESTION 219
A company caches session information for a web application in an Amazon DynamoDB table. The company wants an automated way to delete old items from the table.
What is the simplest way to do this?

  • A. Add an attribute with the expiration time; enable the Time To Live feature based on that attribute.
  • B. Write a script that deletes old records; schedule the scripts as a cron job on an Amazon EC2 instance.
  • C. Add an attribute with the expiration time; name the attribute ItemExpiration.
  • D. Each day, create a new table to hold session data; delete the previous day's table.

Answer: A

Explanation:
Explanation/Reference: https://aws.amazon.com/about-aws/whats-new/2017/02/amazon-dynamodb-now-supports- automatic-item-expiration-with-time-to-live-ttl/

 

NEW QUESTION 220
How should custom libraries be utilized in AWS Lambda?

  • A. Install the library locally and upload a ZIP file of the Lambda function.
  • B. Host the library on Amazon S3 and reference to it from the Lambda function.
  • C. Import the necessary Lambda blueprint when creating the function.
  • D. Modify the function runtime to include the necessary library.

Answer: D

 

NEW QUESTION 221
Your company's policy requires that all VPCs peer with a "common services: VPC. This VPC contains a
fleet of layer 7 proxies and an Internet gateway. No other VPC is allowed to provision an Internet gateway.
You configure a new VPC and peer with the common service VPC as required by policy. You launch an
Amazon EC2. Windows instance configured to forward all traffic to the layer 7 proxies in the common
services VPC. The application on this server should successfully interact with Amazon S3 using its
properly configured AWS Identity and Access Management (IAM) role. However, Amazon S3 is returning
403 errors to the application.
Which step should you take to enable access to Amazon S3?

  • A. Update the CORS configuration for Amazon S3 to allow traffic from the proxy.
  • B. Update the S3 bucket policy with the private IP address of the instance.
  • C. Configure a VPC endpoint for Amazon S3 in the same subnet as the instance.
  • D. Exclude 169.254.169.0/24 from the instance's proxy configuration.

Answer: A

 

NEW QUESTION 222
A user has created a MySQL RDS instance. Which of the below mentioned options is mandatory to configure while creating an instance?

  • A. Automated backup window
  • B. Availability Zone
  • C. Maintenance window
  • D. Multi AZ deployment setup

Answer: D

Explanation:
When creating an RDS instance, the user needs to specify whether it is Multi AZ or not. If the user does not provide the value for the zone, the maintenance window or automated backup window, RDS will automatically select the value.
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.MultiAZ.html

 

NEW QUESTION 223
A company is running an application built on AWS Lambda functions. One Lambda function has performance issues when it has to download a 50MB file from the Internet in every execution. This function is called multiple times a second.
What solution would give the BEST performance increase?

  • A. Cache the file in Amazon S3
  • B. Increase the Lambda maximum execution time
  • C. Put an Elastic Load Balancer in front of the Lambda function
  • D. Cache the file in the /tmp directory

Answer: A

 

NEW QUESTION 224
What AWS products and features can be deployed by Elastic Beanstalk? (Choose three.)

  • A. Auto scaling groups
  • B. Route 53 hosted zones
  • C. SQS Queues
  • D. Elastic IP addresses
  • E. RDS Instances
  • F. Elastic Load Balancers

Answer: A,E,F

 

NEW QUESTION 225
The Developer for a retail company must integrate a fraud detection solution into the order processing solution. The fraud detection solution takes between ten and thirty minutes to verify an order. At peak, the web site can receive one hundred orders per minute.
What is the most scalable method to add the fraud detection solution to the order processing pipeline?

  • A. Add all new orders to an Amazon Kinesis Stream. Subscribe a Lambda function to automatically read batches of records from the Kinesis Stream. The Lambda function includes the fraud detection software and will update the order with a pass or fail status.
  • B. Add all new orders to an SQS queue. Configure an Auto Scaling group that uses the queue depth metric as its unit of scale to launch a dynamically-sized fleet of EC2 instances spanning multiple AZs with the fraud detection solution installed on them to pull orders from this queue. Update the order with a pass or fails status.
  • C. Write all new orders to Amazon DynamoDB. Configure DynamoDB Streams to include all new orders.
    Subscribe a Lambda function to automatically read batches of records from the Kinesis Stream. The Lambda function includes the fraud detection software and will update the order with a pass or fail status.
  • D. Add all new orders to an Amazon SQS queue. Configure a fleet of 10 EC2 instances spanning multiple AZs with the fraud detection solution installed on them to pull orders from this queue. Update the order with a pass or fails status.

Answer: B

 

NEW QUESTION 226
Company B is launching a new game app for mobile devices. Users will log into the game using their existing social media account to streamline data capture. Company B would like to directly save player data and scoring information from the mobile app to a DynamoDB table named Score Data When a user saves their game the progress data will be stored to the Game state S3 bucket. what is the best approach for storing data to DynamoDB and S3?

  • A. Use an EC2 Instance that is launched with an EC2 role providing access to the Score Data DynamoDB table and the GameState S3 bucket that communicates with the mobile app via web services.
  • B. Use an IAM user with access credentials assigned a role providing access to the Score Data DynamoDB table and the Game State S3 bucket for distribution with the mobile app.
  • C. Use Login with Amazon allowing users to sign in with an Amazon account providing the mobile app with access to the Score Data DynamoDB table and the Game State S3 bucket.
  • D. Use temporary security credentials that assume a role providing access to the Score Data DynamoDB table and the Game State S3 bucket using web identity federation

Answer: D

 

NEW QUESTION 227
A user is planning to host a web server as well as an app server on a single EC2 instance which is a part of the public subnet of a VPC. How can the user setup to have two separate public IPs and separate security groups for both the application as well as the web server?

  • A. Launch a VPC instance with two network interfaces. Assign a separate security group and elastic IP to them.
  • B. Launch VPC with two separate subnets and make the instance a part of both the subnets.
  • C. Launch a VPC with ELB such that it redirects requests to separate VPC instances of the public subnet.
  • D. Launch a VPC instance with two network interfaces. Assign a separate security group to each and AWS will assign a separate public IP to them.

Answer: A

Explanation:
If you need to host multiple websites(with different IPs) on a single EC2 instance, the following is the suggested method from AWS.
Launch a VPC instance with two network interfaces
Assign elastic IPs from VPC EIP pool to those interfaces (Because, when the user has attached more than one network interface with an instance, AWS cannot assign public IPs to them.) Assign separate Security Groups if separate Security Groups are needed This scenario also helps for operating network appliances, such as firewalls or load balancers that have multiple private IP addresses for each network interface.
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/MultipleIP.html

 

NEW QUESTION 228
A developer is refactoring a monolithic application. The application takes a POST request and performs several operations. Some of the operations are in parallel while others run sequentially. These operations have been refactored into individual AWS Lambda functions. The POST request will be processed by Amazon API Gateway.
How should the developer invoke the Lambda functions in the same sequence using API Gateway*?

  • A. Use Amazon SQS to invoke the Lambda functions
  • B. Use an AWS Step Functions state machine to orchestrate the Lambda functions.
  • C. Use an AWS Step Functions activity to run the Lambda functions
  • D. Use Amazon SNS to trigger the Lambda functions

Answer: A

 

NEW QUESTION 229
An application reads data from an Amazon DynamoDB table. Several times a day, for a period of 15 seconds, the application receives multiple ProvisionedThroughputExceeded errors.
How should this exception be handled?

  • A. Use the DynamoDB "UpdateItem" API to increase the provisioned throughput capacity of the table.
  • B. Create a new global secondary index for the table to help with the additional requests.
  • C. Retry the failed read requests with exponential backoff.
  • D. Immediately retry the failed read requests.

Answer: C

Explanation:
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Programming.Errors.html

 

NEW QUESTION 230
Will I be charged if the DB instance is idle?

  • A. Only if running in VPC
  • B. No
  • C. Yes
  • D. Only is running in GovCloud

Answer: C

 

NEW QUESTION 231
In regard to DynamoDB, can I modify the index once it is created?

  • A. No
  • B. Yes, if it is a Global secondary index
  • C. Yes, if it is a local secondary index
  • D. Yes, if it is a primary hash key index

Answer: B

 

NEW QUESTION 232
The release process workflow of an application requires a manual approval before the code is deployed into the production environment.
What is the BEST way to achieve this using AWS CodePipeline?

  • A. Use an approval action in a stage
  • B. Disable the stage transition to allow manual approval
  • C. Disable a stage just prior the deployment stage
  • D. Use multiple pipelines to allow approval

Answer: A

 

NEW QUESTION 233
In DynamoDB, could you use IAM to grant access to Amazon DynamoDB resources and API actions?

  • A. In DynamoDB there is no need to grant access
  • B. No
  • C. Yes
  • D. Depended to the type of access

Answer: C

Explanation:
Amazon DynamoDB integrates with AWS Identity and Access Management (IAM). You can use AWS IAM to grant access to Amazon DynamoDB resources and API actions. To do this, you first write an AWS IAM policy, which is a document that explicitly lists the permissions you want to grant. You then attach that policy to an AWS IAM user or role.
Reference:
http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/UsingIAMWithDDB.html

 

NEW QUESTION 234
......


Difficulty in Writing the AWS Certified Developer Associate Exam Certification

As everyone thinks about this reality, the AWS Certified Developer Associate assessment isn’t not difficult to pass since it takes a ton of work to breeze through the test effectively and believable and late investigation material. Prior to composing the AWS Certified Developer Associate accreditation test, numerous up-and-comers have worries in their brain that are an example of the assessment, the sorts of inquiries tended to in it, and the trouble level of the inquiries, and the time taken to finish the inquiries. Testing and creating mindfulness is the best way to pass the AWS Certified Developer Associate Test.

Competitors evaluate their learning and characterize zones of upgrade with the real arrangement of the test. The best methodology is to rehearse with the AMAZON AWS-CERTIFIED-DEVELOPER-ASSOCIATE practice exam since the training test is quite possibly the most basic parts of the examination plan of the AWS Certified Developer Associate Exam in which applicants can find their qualities and shortcomings to reinforce their capacities in time the board and to get a sign of the score they can anticipate.

A few online stages offer the most recent test inquiries for the AWS Certified Developer Associate Exam which can be perceived by the up-and-comers denied of any trouble. The online investigation material is most appropriate to occupied experts who don’t have a lot to spend on readiness and need to pass it in seven days. Practice tests are set up by the group of specialists after an inside and out investigation of AWS Certified Developer Associate prescribed prospectus and are proposed to keep competitors refreshed and guarantee a decent passing rate.

 

Passing Key To Getting AWS-Certified-Developer-Associate Certified Exam Engine PDF: https://www.braindumpspass.com/Amazon/AWS-Certified-Developer-Associate-practice-exam-dumps.html

AWS-Certified-Developer-Associate Exam Dumps Pass with Updated Tests Dumps: https://drive.google.com/open?id=1ZmSJUc-obzvoVfauSutB3tXbX1KKTvML 

Related Articles

more
Amazon AWS-Certified-Developer-Associate Certification Practice Exam