AWS DVA-C01 :: Practice Exam34

A developer is building a new Docker application using ECS. She needs to allow containers to access ports on the host container instance to send or receive traffic using port mapping. Which component of ECS should the developer configure to properly implement this task?. Task definition. Service scheduler. Container instance. Container Agent.

A developer configured an Amazon API Gateway proxy integration named MyAPI to work with a Lambda function. However, when the API is being called, the developer receives a 502 Bad Gateway error. She tried invoking the underlying function but it properly returns the result in XML format. What is the MOST likely root cause of this issue?. There is an incompatible output returned from a Lambda proxy integration backend. The API name of the Amazon API Gateway proxy is invalid. There has been an occasional out-of-order invocation due to heavy loads. The endpoint request timed-out.

A recently deployed Lambda function has an intermittent issue in processing customer data. You enabled the active tracing option in order to detect, analyze, and optimize performance issues of your function using the X-Ray service. Which of the following environment variables are used by AWS Lambda to facilitate communication with X-Ray? (Select TWO.). AWS_XRAY_CONTEXT_MISSING. _X_AMZN_TRACE_ID. AUTO_INSTRUMENT. AWS_XRAY_TRACING_NAME. AWS_XRAY_DEBUG_MODE.

A Lambda function is sending data to an Aurora MySQL DB Instance in your VPC. However, you are getting a MySQL: ERROR 1040: Too many connections error whenever there is a surge in incoming traffic. Upon investigation, you found that your function is always creating a new database connection whenever it is invoked. Which of the following is the MOST suitable and scalable solution to overcome this problem?. Use the execution context in your function and add logic in your code to check if a connection exists before creating one. Increase the allocated memory of your function. Use unreserved account concurrency. Increase the value of the max_connections parameter of the Aurora MySQL DB Instance.

Your company uses Elastic Beanstalk to manage a web application. You were instructed to configure the Elastic Beanstalk environment’s deployment policy to launch new EC2 instances, and then deploy the new version of your application only to these new resources. Which of the following deployment methods can you use to meet this required configuration? (Select TWO.). Blue/Green deployment. Immutable. Rolling. Rolling with additional batch. Immutable.

A developer needs to encrypt all objects being uploaded by their application to the S3 bucket to comply with the company’s security policy. The bucket will use server-side encryption with Amazon S3-Managed encryption keys (SSE-S3) to encrypt the data using 256-bit Advanced Encryption Standard (AES-256) block cipher. Which of the following request headers should the developer use?. x-amz-server-side-encryption. x-amz-server-side-encryption-customer-key-MD5. x-amz-server-side-encryption-customer-algorithm. x-amz-server-side-encryption-customer-key.

You developed a shell script which uses AWS CLI to create a new Lambda function. However, you received an InvalidParameterValueException after running the script. What is the MOST likely cause of this issue?. You provided an IAM role in the CreateFunction API which AWS Lambda is unable to assume. The AWS Lambda service encountered an internal error. The resource already exists. You have exceeded your maximum total code size per account.

A company that sells smart security cameras uses an S3 bucket behind a CloudFront web distribution to store its static content, which they share to their customers around the world. They recently released a new firmware update that is intended to be used only by its premium customers. Any unauthorized access should be denied and the user authentication process must have a minimal latency. How can a developer refactor the current set up to achieve this requirement with the MOST efficient solution?. Use Lambda@Edge and Amazon Cognito to authenticate and authorize premium customers to download the firmware update. Use Signed URLs and Signed Cookies in CloudFront to distribute the firmware update file. Restrict access to the S3 bucket only to premium customers by using an Origin Access Identity (OAI). Use the AWS Serverless Application Model (AWS SAM) and Amazon Cognito to authenticate the premium customers.

A mission-critical application is required to have a monitoring system which can provide immediate insight into its sub-minute activity. You are required to collect the data of all of the users who are currently logged in to the system every 10 seconds. Which of the following options is the MOST suitable solution that you should do to meet the above requirements?. Publish a high-resolution custom metric to CloudWatch. Enable detailed monitoring. Enable enhanced monitoring. Publish a custom metric to CloudWatch using the PutMetricData API with the --storage-resolution parameter set to its default value.

A website is hosted in an Auto Scaling group of EC2 instances behind an Application Load Balancer. It also uses CloudFront with a default domain name to distribute its static assets and dynamic contents. However, the website has a poor search ranking as it doesn’t use a secure HTTPS/SSL on its site. Which are the possible solutions that the developer can implement in order to set up HTTPS communication between the viewers and CloudFront? (Select TWO.). Set the Viewer Protocol Policy to use HTTPS Only. Set the Viewer Protocol Policy to use Redirect HTTP to HTTPS. Configure the ALB to use its default SSL/TLS certificate. Use a self-signed SSL/TLS certificate in the ALB which is stored in a private S3 bucket. Use a self-signed certificate in the ALB.

A web application is uploading large files, which are over 4 GB in size, in an S3 bucket called data.tutorialsdojo.com every 30 minutes. You want to minimize the time required to upload each file. Which of the following should you do to minimize upload time?. Use the Multipart upload API. Enable Transfer Acceleration in the bucket. Use the BatchWriteItem API. Use the Putltem API.

There have been reports that your application, which has a MySQL RDS database, becomes unresponsive from time to time. You were instructed to collect all SQL statements that took longer to execute for troubleshooting. What should you do to properly troubleshoot this issue with the LEAST amount of effort?. Enable slow query log in RDS. Use Amazon Inspector to get all the slow queries. Enable active tracing using AWS X-Ray. Instrument your application using the X-Ray SDK.

You have a private S3 bucket that stores application logs and the bucket contents are accessible to all members of the Developer IAM group. However, you want to make an object inside the bucket which should only be accessible to the members of Admin IAM group. How can you apply an S3 bucket policy to this object using AWS CLI?. None of the options. Use the put-bucket-policy --permission command. Use the put-bucket-policy --policy command. Use the put-bucket-policy--grants command.

A developer has deployed a Lambda function which will run in various environments such as DEV, TEST, UAT, and PROD. As part of its processing, the function also calls a set of external API services which varies based on the environment. The function must use different endpoints for these external services to properly complete the processing. Which of the following features in Lambda should the developer use to reference the appropriate external endpoint for each environment?. Environment Variables. Stage Variables. Layers. Aliases.

A developer is instructed to configure a worker daemon to queue messages based on a specific schedule using a worker environment hosted in Elastic Beanstalk. Periodic tasks should be defined to automatically add jobs to your worker environment’s queue at a regular interval. Which configuration file should the developer add in the source bundle to meet the above requirement?. cron.yaml. appspec.yml. env.yaml. Dockerrun.aws.json.