A company deploys a local news website on a fleet of Amazon EC2 instances behind an Application Load Balancer (ALB). The company wants to implement authentication for viewers through well-known social identity providers (IdPs). The company's development team must use AWS native services in the solution.
Which combination of actions will meet these requirements? (Choose two.)
A. Configure Amazon Cognito user pools with social IdPs
B. Configure OpenID Connect (OIDC)-compliant IdP endpoints
C. Create an AWS Lambda authorizer as a target in the ALB target group
D. Configure an ALB listener to add a rule for authentication
E. Use Lambda@Edge to authorize viewer requests in the ALB
A developer is deploying an application on Amazon EC2 instances that run in Account A. The application needs to read data from an existing Amazon Kinesis data stream in Account B. Which actions should the developer take to provide the application with access to the stream? (Choose two.)
A. Update the instance profile role in Account A with stream read permissions
B. Create an IAM role with stream read permissions in Account B
C. Add a trust policy to the instance profile role and IAM role in Account В to allow the instance profile role to assume the IAM role
D. Add a trust policy to the instance profile role and IAM role in Account В to allow reads from the stream
E. Add a resource-based policy in Account В to allow read access from the instance profile role
A developer is building a static, client-side rendered website that is powered by ReactJS. The code has no server-side generated components and does not need to run any programming languages on the server. However, the code serves static HTML, CSS, and JavaScript to the client on each request. The developer's solution to host the website must maximize performance and cost-effectiveness.
Which combination of AWS services or resources should the developer use to meet these requirements?
A. Application Load Balancer and Amazon EC2
B. Amazon API Gateway and AWS Lambda
C. Amazon CloudFront and Amazon S3
D. Amazon CloudFront and AWS Elastic Beanstalk
A gaming company has deployed a web portal on AWS Elastic Beanstalk. The company sometimes needs to deploy new versions three or four times in a day. The company needs to deploy new features for all users as quickly as possible. The solution must minimize performance impact and must maximize availability.
What solution will meet these requirements?
A. Use a rolling deployment policy to deploy to Amazon EC2 instances.
B. Use an immutable deployment policy to deploy to Amazon EC2 instances.
C. Use an all-at-once deployment policy to deploy to Amazon EC2 instances.
D. Use a canary deployment strategy to deploy changes to Amazon EC2 instances.
A physician's office management application requires that all data in transit between an EC2 instance and an Amazon EBS volume be encrypted. Which of the following techniques fulfills this requirement? (Choose two.)
A. Create encrypted snapshots into Amazon S3.
B. Use Amazon RDS with encryption.
C. Use IAM roles to limit access to the Amazon EBS volume.
D. Enable EBS encryption.
E. Leverage OS-level encryption.
A developer manages an application that interacts with Amazon RDS. After observing slow performance with read queries, the developer implements Amazon ElastiCache to update the cache immediately following the primary database update.
What will be the result of this approach to caching?
A. Caching will increase the load on the database instance because the cache is updated for every database update.
B. Caching will slow performance of the read queries because the cache is updated when the cache cannot find the requested data.
C. The cache will become large and expensive because the infrequently requested data is also written to the cache.
D. Overhead will be added to the initial response time because the cache is updated only after a cache miss.
A developer is using Amazon API Gateway as an HTTP proxy to a backend endpoint. There are three separate environments development, testing, and production. Each environment has a corresponding stage in the API.
The developer needs to direct traffic to different backend endpoints for each of these stages without creating a separate API for each stage.
Which solution will meet these requirements?
A. Add a model to the API. Add a schema to differentiate the different backend endpoints
B. Create stage variables. Configure the variables in the HTTP integration request of the API.
C. Use API custom authorizers to create an authorizer for each of the different stages.
D. Update the integration response of the API to add different backend endpoint.
A developer is running an application on an Amazon EC2 instance. When the application tries to read an Amazon S3 bucket the application fails. The developer notices that the associated IAM role is missing the S3 read permission. The developer needs to give the application the ability to read the S3 bucket.
Which solution will meet this requirement with the LEAST application disruption?
A. Add the permission to the role. Terminate the existing EC2 instance. Launch a new EC2 instance
B. Add the permission to the role so that the change will take effect automatically
C. Add the permission to the role. Hibernate and restart the existing EC2 instance.
D. Add the permission to the S3 bucket. Restart the EC2 instance.
A developer is debugging an AWS Lambda function behind an Amazon API Gateway. Whenever the API Gateway endpoint is called, HTTP status code 200 is returned even though AWS Lambda is recording a 4xx error. What change needs to be made to return a proper error code through the API Gateway?
A. Enable CORS in the API Gateway method settings
B. Use a Lambda proxy integration to return HTTP codes and headers
C. Enable API Gateway error pass-through.
D. Return the value in the header x-Amzn-ErrorType.
A developer wants to implement Amazon EC2 Auto Scaling for a web application The developer wants to ensure that sessions will not be lost during scale-in events. How can the developer maintain the session state and share it across the EC2 instances?
A. Write the sessions to an Amazon Elastic Block Store (Amazon EBS) volume. Mount the EBS volume to each EC2 instance in the group.
B. Store the sessions in an Amazon ElastiCache for Memcached cluster. Configure the application to use the Memcached API.
C. Publish the sessions to an Amazon Simple Notification Service (Amazon SNS) topic. Subscribe each EC2 instance in the group to the topic.
D. Write the sessions to an Amazon Redshift cluster. Configure the application to use the Amazon Redshift API.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your DVA-C01 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.