Amazon DBS-C01 Online Practice
Questions and Exam Preparation
DBS-C01 Exam Details
Exam Code
:DBS-C01
Exam Name
:AWS Certified Database - Specialty (DBS-C01)
Certification
:Amazon Certifications
Vendor
:Amazon
Total Questions
:321 Q&As
Last Updated
:May 30, 2026
Amazon DBS-C01 Online Questions &
Answers
Question 221:
An online shopping company has a large inflow of shopping requests daily. As a result, there is a consistent load on the company's Amazon RDS database. A database specialist needs to ensure the database is up and running at all times. The database specialist wants an automatic notification system for issues that may cause database downtime or for configuration changes made to the database.
What should the database specialist do to achieve this? (Choose two.)
A. Create an Amazon CloudWatch Events event to send a notification using Amazon SNS on every API call logged in AWS CloudTrail. B. Subscribe to an RDS event subscription and configure it to use an Amazon SNS topic to send notifications. C. Use Amazon SES to send notifications based on configured Amazon CloudWatch Events events. D. Configure Amazon CloudWatch alarms on various metrics, such as FreeStorageSpace for the RDS instance. E. Enable email notifications for AWS Trusted Advisor.
B. Subscribe to an RDS event subscription and configure it to use an Amazon SNS topic to send notifications. D. Configure Amazon CloudWatch alarms on various metrics, such as FreeStorageSpace for the RDS instance.
Question 222:
A company is using an Amazon Aurora MySQL database with Performance Insights enabled. A database specialist is checking Performance Insights and observes an alert message that starts with the following phrase: `Performance Insights is unable to collect SQL Digest statistics on new queries`
Which action will resolve this alert message?
A. Truncate the events_statements_summary_by_digest table. B. Change the AWS Key Management Service (AWS KMS) key that is used to enable Performance Insights. C. Set the value for the performance_schema parameter in the parameter group to 1. D. Disable and reenable Performance Insights to be effective in the next maintenance window.
A. Truncate the events_statements_summary_by_digest table.
A large company has a variety of Amazon DB clusters. Each of these clusters has various configurations that adhere to various requirements. Depending on the team and use case, these configurations can be organized into broader categories.
A database administrator wants to make the process of storing and modifying these parameters more systematic. The database administrator also wants to ensure that changes to individual categories of configurations are automatically applied to all instances when required.
Which AWS service or feature will help automate and achieve this objective?
A. AWS Systems Manager Parameter Store B. DB parameter group C. AWS Config D. AWS Secrets Manager
A financial institution uses AWS to host its online application. Amazon RDS for MySQL is used to host the application's database, which includes automatic backups.
The program has corrupted the database logically, resulting in the application being unresponsive. The exact moment the corruption occurred has been determined, and it occurred within the backup retention period.
How should a database professional restore a database to its previous state prior to corruption?
A. Use the point-in-time restore capability to restore the DB instance to the specified time. No changes to the application connection string are required. B. Use the point-in-time restore capability to restore the DB instance to the specified time. Change the application connection string to the new, restored DB instance. C. Restore using the latest automated backup. Change the application connection string to the new, restored DB instance. D. Restore using the appropriate automated backup. No changes to the application connection string are required.
B. Use the point-in-time restore capability to restore the DB instance to the specified time. Change the application connection string to the new, restored DB instance.
Explanation/Reference:
When you perform a restore operation to a point in time or from a DB Snapshot, a new DB Instance is created with a new endpoint (the old DB Instance can be deleted if so desired). This is done to enable you to create multiple DB Instances from a specific DB Snapshot or point in time."
Question 225:
A company is launching a new Amazon RDS for MySQL Multi-AZ DB instance to be used as a data store for a custom-built application. After a series of tests with point-in-time recovery disabled, the company decides that it must have point-in-time recovery reenabled before using the DB instance to store production data.
What should a database specialist do so that point-in-time recovery can be successful?
A. Enable binary logging in the DB parameter group used by the DB instance. B. Modify the DB instance and enable audit logs to be pushed to Amazon CloudWatch Logs. C. Modify the DB instance and configure a backup retention period D. Set up a scheduled job to create manual DB instance snapshots.
C. Modify the DB instance and configure a backup retention period
Explanation/Reference:
You can restore a DB instance to a specific point in time (PITR), creating a new DB instance. To support PITR, your DB instances must have backup retention set to a nonzero value. https://docs.aws.amazon.com/AmazonRDS/
"After you run the command, it's okay to enable backup retention on the RDS instance by using the AWS CLI or the console. Enabling backup retention also enables binary logging." https://aws.amazon.com/blogs/storage/point-in-timerecovery-and-continuous-backup-for- amazon-rds-with-aws-backup/
Question 226:
A company has a reporting application that runs on an Amazon EC2 instance in an isolated developer account on AWS. The application needs to retrieve data during non-peak company hours from an Amazon Aurora PostgreSQL database that runs in the companys production account The companys security team requires that access to production resources complies with AWS best security practices A database administrator needs to provide the reporting application with access to the production database. The company has already configured VPC peering between the production account and developer account The company has also updated the route tables in both accounts With the necessary entries to correctly set up VPC peering.
What must the database administrator do to finish providing connectivity to the reporting application?
A. Add an inbound security group rule to the database security group that allows access from the developer account VPC CIDR on port 5432. Add an outbound security group rule to the EC2 security group that allows access to the production account VPC CIDR on port 5432. B. Add an outbound security group rule to the database security group that allows access from the developer account VPC CIDR on port 5432. Add an outbound security group rule to the EC2 security group that allows access to the production account VPC CIDR on port 5432. C. Add an inbound security group rule to the database security group that allows access from the developer account VPC CIDR on all TCP ports. Add an inbound security group rule to the EC2 security group that allows access to the production account VPC CIDR on port 5432_ D. Add an inbound security group rule to the database security group that allows access from the developer account VPC CIDR on port 5432_ Add an outbound security group rule to the EC2 security group that allows access to the production account VPC CIDR on all TCP ports
A. Add an inbound security group rule to the database security group that allows access from the developer account VPC CIDR on port 5432. Add an outbound security group rule to the EC2 security group that allows access to the production account VPC CIDR on port 5432.
Explanation/Reference:
The correct answer is A. Add an inbound security group rule to the database security group that allows access from the developer account VPC CIDR on port 5432. Add an outbound security group rule to the EC2 security group that allows access to the production account VPC CIDR on port 5432. The explanation is as follows: To allow the reporting application to access the production database, the database administrator needs to configure the security group rules for both the database and the EC2 instance. The security group rules must allow traffic between the peered VPCs on the port that the database uses, which is 5432 for PostgreSQL1. Option A is correct because it adds an inbound rule to the database security group that allows access from the developer account VPC CIDR on port 5432. This means that the database can accept connections from the EC2 instance in the peered VPC. It also adds an outbound rule to the EC2 security group that allows access to the production account VPC CIDR on port 5432. This means that the EC2 instance can initiate connections to the database in the peered VPC. Option B is incorrect because it adds an outbound rule to the database security group, which is not necessary. The database does not need to initiate connections to the EC2 instance, only accept them. It also does not add an inbound rule to the EC2 security group, which is not required. The EC2 instance does not need to accept connections from the database, only initiate them. Option C is incorrect because it adds an inbound rule to the database security group that allows access from the developer account VPC CIDR on all TCP ports. This is too permissive and violates the principle of least privilege2. It also adds an inbound rule to the EC2 security group that allows access to the production account VPC CIDR on port 5432. This is unnecessary and does not help with connectivity. Option D is incorrect because it adds an outbound rule to the EC2 security group that allows access to the production account VPC CIDR on all TCP ports. This is too permissive and violates the principle of least privilege2. It also does not add an outbound rule to the database security group, which is not needed. References: 1: [Working with PostgreSQL and pgAdmin - Amazon Aurora] 2: [Security best practices in IAM - AWS Identity and Access Management]
Question 227:
An ecommerce company uses Amazon DynamoDB as the backend for its payments system. A new regulation requires the company to log all data access requests for financial audits. For this purpose, the company plans to use AWS logging and save logs to Amazon S3.
How can a database specialist activate logging on the database?
A. Use AWS CloudTrail to monitor DynamoDB control-plane operations. Create a DynamoDB stream to monitor data-plane operations. Pass the stream to Amazon Kinesis Data Streams. Use that stream as a source for Amazon Kinesis Data Firehose to store the data in an Amazon S3 bucket. B. Use AWS CloudTrail to monitor DynamoDB data-plane operations. Create a DynamoDB stream to monitor control-plane operations. Pass the stream to Amazon Kinesis Data Streams. Use that stream as a source for Amazon Kinesis Data Firehose to store the data in an Amazon S3 bucket. C. Create two trails in AWS CloudTrail. Use Trail1 to monitor DynamoDB control-plane operations. Use Trail2 to monitor DynamoDB data-plane operations. D. Use AWS CloudTrail to monitor DynamoDB data-plane and control-plane operations.
D. Use AWS CloudTrail to monitor DynamoDB data-plane and control-plane operations.
A database specialist is planning to migrate a 4 TB Microsoft SQL Server DB instance from on premises to Amazon RDS for SQL Server. The database is primarily used for nightly batch processing.
Which RDS storage option meets these requirements MOST cost-effectively?
A. General Purpose SSD storage B. Provisioned IOPS storage C. Magnetic storage D. Throughput Optimized hard disk drives (HDD)
A. General Purpose SSD storage
Explanation/Reference:
General Purpose SSD storage is a cost-effective storage option that is ideal for a broad range of workloads running on medium-sized DB instances1. General Purpose storage is best suited for development and testing environments1. Since the database is primarily used for nightly batch processing, it does not require high I/O performance or low latency that Provisioned IOPS storage offers12. Magnetic storage and Throughput Optimized HDD are not recommended for new storage needs, and they have lower storage limits than General Purpose SSD and Provisioned IOPS SSD1. Therefore, General Purpose SSD storage meets the requirements most cost-effectively.
Question 229:
A company's application development team wants to share an automated snapshot of its Amazon RDS database with another team. The database is encrypted with a custom AWS Key Management Service (AWS KMS) key under the "WeShare" AWS account. The application development team needs to share the DB snapshot under the "WeReceive" AWS account.
Which combination of actions must the application development team take to meet these requirements? (Choose two.)
A. Add access from the "WeReceive" account to the custom AWS KMS key policy of the sharing team. B. Make a copy of the DB snapshot, and set the encryption option to disable. C. Share the DB snapshot by setting the DB snapshot visibility option to public. D. Make a copy of the DB snapshot, and set the encryption option to enable. E. Share the DB snapshot by using the default AWS KMS encryption key.
A. Add access from the "WeReceive" account to the custom AWS KMS key policy of the sharing team. D. Make a copy of the DB snapshot, and set the encryption option to enable.
A business's production database is hosted on a single-node Amazon RDS for MySQL DB instance. The database instance is hosted in a United States AWS Region.
A week before a significant sales event, a fresh database maintenance update is released. The maintenance update has been designated as necessary. The firm want to minimize the database instance's downtime and requests that a
database expert make the database instance highly accessible until the sales event concludes.
Which solution will satisfy these criteria?
A. Defer the maintenance update until the sales event is over. B. Create a read replica with the latest update. Initiate a failover before the sales event. C. Create a read replica with the latest update. Transfer all read-only traffic to the read replica during the sales event. D. Convert the DB instance into a Multi-AZ deployment. Apply the maintenance update.
D. Convert the DB instance into a Multi-AZ deployment. Apply the maintenance update.
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only Amazon exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your DBS-C01 exam preparations
and Amazon certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.