Your request to increase your account's concurrent execution limit to 2000 has been recently approved by AWS.
There are 10 Lambda functions running in your account and you already specified a concurrency execution limit on one function at 400 and on another function at 200.
Which of the following statements are TRUE in this scenario? (Select TWO.) You can still set a concurrency execution limit of 1300 to a third Lambda function. The remaining 1400 concurrent executions will be shared among the other 8 functions. The combined allocated 600 concurrent execution will be shared among the 2 functions. You can still set a concurrency execution limit of 1400 to a third Lambda function. The unreserved concurrency pool is 600.
A batch application is hosted in an Auto Scaling group of On-Demand EC2 instances which consumes and processes the messages from an SQS queue.
The system works well but there are times that the consumers process the same message twice.
Upon investigation, you found out that if the consumer takes a long time to process the message, that exact same message becomes available again to other consumers, which causes duplicate processing.
Which of the following is the BEST solution that the developer should implement to meet this requirement? Set the visibility timeout to the maximum time that it takes your application to process and delete a message from the queue. Postpone the delivery of new messages by using a delay queue. Configure the queue to use long polling by setting the Receive Message Wait Time parameter to a value greater than 0. Configure the queue to use short polling by setting the WaitTimeSeconds parameter of the ReceiveMessage request to 0.
A Docker application hosted on an ECS cluster has been encountering intermittent unavailability issues and time outs.
The lead DevOps engineer instructed you to instrument the application to detect where high latencies are occurring and to determine the specific services and paths impacting application performance.
Which of the following steps should you do to properly accomplish this task? (Select TWO.) Create a Docker image that runs the X-Ray daemon, upload it to a Docker image repository, and then deploy it to your Amazon ECS cluster. Configure the port mappings and network mode settings in your task definition file to allow traffic on UDP port 2000. Configure the port mappings and network mode settings in the container agent to allow traffic on TCP port 2000. Add the xray-daemon.config configuration file in your Docker image Manually install the X-Ray daemon to the instances via a user data script.
You are a newly hired developer in a leading investment bank which uses AWS as its cloud infrastructure. One of your tasks is to develop an application that will store financial data to an already existing S3 bucket, which has the following bucket policy:
{
"Version": "2012-10-17",
"Id": "PutObjPolicy",
"Statement": [
{
"Sid": "AllowUploadCheck",
"Effect": "Deny",
"Principal": "*",
"Action": "s3:PutObject",
"Resource": "arn:aws:s3:::tutorialsdojo\/*",
"Condition": {
"StringNotEquals": {
"s3:x-amz-server-side-encryption": "AES256"
}
}
},
{
"Sid": "AllowNullCheck",
"Effect": "Deny",
"Principal": "*",
"Action": "s3:PutObject",
"Resource": "arn:aws:s3:::tutorialsdojo\/*",
"Condition": {
"Null": {
"s3:x-amz-server-side-encryption": "true"
}
}
}
]
} The bucket will deny object uploads unless the request includes the x-amz-server-side-encryption header with a value of AES256. The bucket will deny object uploads unless the request includes the x-amz-server-side-encryption header with a value of Null. The bucket will deny object uploads unless the request includes the x-amz-server-side-encryption header with a value of true. The bucket will deny object uploads unless the request includes the x-amz-server-side-encryption header with a value of aws:kms.
A developer needs to configure the environment name, solution stack, and environment links of his application environment which will be hosted in Elastic Beanstalk.
Which configuration file should the developer add in the source bundle to meet the above requirement? env.yaml env.config Dockerrun.aws.json cron.yaml.
Your development team is currently developing a financial application in AWS.
One of the requirements is to create and control the encryption keys used to encrypt your data using the envelope encryption strategy to comply with the strict IT security policy of the company.
Which of the following correctly describes the process of envelope encryption? Encrypt plaintext data with a data key and then encrypt the data key with a top-level plaintext master key. Encrypt plaintext data with a master key and then encrypt the master key with a top-level encrypted data key. Encrypt plaintext data with a data key and then encrypt the data key with a top-level encrypted master key. Encrypt plaintext data with a master key and then encrypt the master key with a top-level plaintext data key.
Your application is processing one Kinesis data stream which has four shards, and each instance has one KCL worker.
To scale up processing in your application, you reshard your stream to increase the number of open shards to six.
What is the MAXIMUM number of EC2 instances that you should launch to achieve optimum performance? 6 12 5 3.
An online magazine is deployed in AWS and uses an Elastic Load Balancer, an Auto Scaling group of EC2 instances, and an RDS MySQL Database.
Some of the readers are complaining about the website's sluggish performance when loading the articles.
Upon checking, there is a high number of read operations in the database which affects the website's performance.
Which of the following actions should you do to quickly resolve the issue with minimal cost and code change? Create an RDS Read Replica instance and configure the application to use this for read queries. Launch a large ElastiCache Cluster as a database cache for RDS and apply the required code change. Upgrade the EC2 instances to a higher instance type. Set up a multi-AZ deployments configuration in RDS.
Your development team is heavily relying on AWS managed solutions like CodeCommit, CodeBuild, CodePipeline, and CodeDeploy.
As your project grows, you would like to further automate your CI/CD process.
The management also requested to have a project dashboard to centrally monitor application activity and manage day-to-day development tasks.
Which of the following AWS services will help you achieve this? AWS CodeStar AWS Fault Injection Simulator AWS Elastic Beanstalk Amazon CodeGuru.
You are a software developer for a multinational investment bank which has a hybrid cloud architecture with AWS.
To improve the security of their applications, they decided to use AWS Key Management Service (KMS) to create and manage their encryption keys across a wide range of AWS services.
You were given the responsibility to integrate AWS KMS with the financial applications of the company.
Which of the following are the recommended steps to locally encrypt data using AWS KMS that you should follow? (Select TWO.) Erase the plaintext data key from memory and store the encrypted data key alongside the locally encrypted data. Use the GenerateDataKey operation to get a data encryption key then use the plaintext data key in the response to encrypt data locally. Encrypt data locally using the Encrypt operation. Use the GenerateDataKeyWithoutPlaintext operation to get a data encryption key then use the plaintext data key in the response to encrypt data locally. Erase the encrypted data key from memory and store the plaintext data key alongside the locally encrypted data.
A web application running in Amazon Elastic Beanstalk reads and writes a large number of related items in DynamoDB and processes each item one at a time.
The network overhead of these transactions causes degradation in the application's performance.
You were instructed by your manager to quickly refactor the application but without introducing major code changes such as implementing concurrency management or multithreading.
Which of the following solutions is the EASIEST method to implement that will improve the application performance in a cost-effective manner? Use DynamoDB Batch Operations API for GET, PUT, and DELETE operations. Upgrade the EC2 instances to a higher instance type. Enable DynamoDB Streams. Refactor the application to use DynamoDB transactional read and write APIs .
A company is using a combination of CodeCommit, CodeBuild, CodePipeline and CodeDeploy services for its continuous integration and continuous delivery (CI/CD) pipeline on AWS.
They want someone to perform a code review before a revision is allowed into the next stage of a pipeline.
If the action is approved, the pipeline execution resumes but if it is not then the pipeline execution will not proceed.
Which of the following is the MOST suitable solution to implement in this scenario? Implement a manual approval actions configuration in CodePipeline. Send the approval request to an SNS Topic. Implement a manual approval actions configuration in CodePipeline. Send the approval request to an SQS Queue. Use Step Functions. Use SWF.
You are designing an online medical appointment system that allows patients to book an appointment with their preferred doctor at medical centers all over the country.
The DynamoDB Streams feature is enabled in your DynamoDB database, which allows you to capture information about every modification to data items in your table.
A Lambda function integrated with CloudWatch Events is used to process the data stream every 36 hours then store the results in an S3 bucket.
However, you noticed that there are a lot of updated data in DynamoDB which are not sent to your S3 bucket even though there are no errors in the logs.
Which of the following is the MOST appropriate solution for this issue? Decrease the interval of running your function to 24 hours. Increase the interval of running your function to 48 hours. Set the value of StreamViewType parameter in DynamoDB Streams to NEW_AND_OLD_IMAGES. Set the value of StreamViewType parameter in DynamoDB Streams to NEW_IMAGE.
Your Lambda function initializes a lot of external dependencies such as database connections and HTTP endpoints, which are required for data processing.
It also fetches static data with a size of 20 MB from a third-party provider over the Internet every time the function is invoked.
This adds significant time in the total processing, which greatly affects the performance of their serverless application.
Which of the following should you do to improve the performance of your function? Place the database and HTTP initialization logic outside the Lambda function handler and store the external files in the /tmp directory. Increase the CPU allocation of the function by submitting a service limit increase ticket to AWS. Allocate more memory to your function. Use unreserved concurrency for your function.
A Lambda function is sending data to an Aurora MySQL DB Instance in your VPC.
However, you are getting a MySQL: ERROR 1040: Too many connections error whenever there is a surge in incoming traffic.
Upon investigation, you found that your function is always creating a new database connection whenever it is invoked.
Which of the following is the MOST suitable and scalable solution to overcome this problem? Use the execution context in your function and add logic in your code to check if a connection exists before creating one. Increase the value of the max_connections parameter of the Aurora MySQL DB Instance. Use unreserved account concurrency. Increase the allocated memory of your function.
|
