A company uses AWS Organizations to manage multiple accounts. Account A has an application that runs on an Amazon EC2 instance. The application uses the AWS CLI to run automated deployments in Account . An administrator set up
cross-account access by using an EC2 IAM service role in Account A and an IAM role in Account .
The application uses the following command to assume the IAM role in Account but is unable to deploy anything in Account .
aws sts assume-role --role-arn "am:aws:iam::
Which step is needed next so that the application can successfully use the credentials that it obtains by using the role in Account B?
A. Configure the access key and secret access key of a valid IAM user from Account in the environment variables.
B. Configure the access key, secret access key, and token from the assume-role command in the environment variables.
C. Create a CLI profile for the EC2 IAM service role in the AWS configuration file.
D. Delete any access keys and secret access keys in the environment variables.
A developer assumes a role with the AWS CLI to get a set of temporary security credentials.
Which of the following must be set in the environment variables or AWS configuration file to authenticate to AWS?
A. AccessKeyId SecretAccessKey, and AssumedRoleId
B. UserId, SessionToken, and AssumedRoleId
C. AccessKeyId, SecretAccessKey, and SessionToken
D. UserId, SessionToken and Credentials
A company has designed a serverless application that uses Amazon Simple Queue Service (Amazon SQS) and an AWS Lambda function. The application receives data in an SQS queue on the last day of every month. The function
successfully processes all the data in the queue within 1 day.
A detailed AWS bill shows a large number of SQS API requests throughout the month, even though the queue receives data only on the last day of the month.
What is the root cause of the extra API requests?
A. Lambda is using long polling to check for messages in the SQS queue.
B. The SQS queue is sending ping messages to Lambda.
C. The function is not automatically deleting the messages from the SQS queue.
D. Visibility timeout is not set to 0 to remove the extra API requests.
A company set up a continuous build process that uses AWS CodeBuild and AWS CodeCommit. During the development phase, developers are frequently pushing code and causing significant build failures. The company wants a solution that will build code before the developers push the code to the main branch.
Which solution meets these requirements MOST cost-effectively?
A. Configure am Amazon EC2 instance with the CodeBuild agent to build the code.
B. Configure CodeBuild jobs on AWS for each branch build process.
C. Configure the CodeBuild agent to build the code in the local system.
D. Configure a Jenkins plugin for CodeBuild to run the code build process
A Lambda function processes data before sending it to a downstream service. Each piece of data is approximately 1MB in size. After a security audit, the function is now required to encrypt the data before sending it downstream. Which API call is required to perform the encryption?
A. Pass the data to the KMS ReEncrvpt API for encryption.
B. Use the KMS GenerateDataKev API to get an encryption key.
C. Use the KMS GenerateDataKeyWithoutPlainText API to get an encryption key.
D. Pass the data to KMS as part of the Encrypt API for encryption.
A developer needs to modify an application architecture to meet new functional requirements. Application data is stored in Amazon DynamoDB and processed for analysis in a nightly batch. The system analysts do not want to wait until the next day to view the processed data and have asked to have it available in near-real time.
Which application architecture pattern would enable the data to be processed as it is received?
A. Event driven
B. Client-server driven
C. Fan-out driven
D. Schedule driven
A media company is using Amazon API Gateway to manage microservices that are implemented as AWS Lambda functions. The company's development team is planning to roll out another version of its API. To avoid affecting existing users when the new API is deployed, the company wants to give all users a 3-month period to migrate from the old API version to the new API version.
Which implementation strategy should the company use to achieve this goal?
A. Update the Lambda functions. Configure the API to use Lambda proxy integration.
B. Update the Lambda functions. Provide the API client with the new Lambda endpoints.
C. Use API Gateway to deploy a new stage that uses updated Lambda functions and provides users with a new URL.
D. Use API Gateway to redirect requests based on a request header to updated Lambda functions. Configure a 90-day expiration on the old API.
A company is building a Java application that deploys to AWS services. The company uses AWS CodePipeline to build a pipeline for the project. Whenever a team member commits changes to the source code, CodePipeline must build and deploy the application in the AWS Cloud.
Which combination of AWS services does the company need to use to meet these requirements?
A. Amazon S3, AWS CodeBuild, and AWS CodeCommit
B. Amazon S3, AWS CodeBuild, and Amazon Elastic Container Service (Amazon ECS)
C. AWS CodeCommit, AWS CodeBuild, and AWS CodeDeploy
D. Amazon CodeGuru, AWS CodeCommit, and AWS CodeBuild
A company is using an Amazon SQS standard queue to store messages sent from the front-end tier to the backend tier of an application. The backend tier parses the message and saves an entry to an Amazon DynamoDB table. A developer discovers that duplicate entries are being stored in the DynamoDB table, even though AWS CloudTrail records only a single Amazon SQS message per entry.
What change needs to be made to resolve this issue?
A. Enable queue de-duplication to prevent duplicate messages.
B. Modify the front-end tier to use the MessageGroupID argument.
C. Modify the application logic to use Amazon SNS between Amazon SQS and the front-end tier.
D. Change the Amazon SQS queue type to first-in, first-out (FIFO).
A developer is writing a web application that will run on AWS Lambda. The application will give users the ability to log in to view private documents. All pages in the application must be designed to match the company's branding. How can the developer host the sign-in pages with the LEAST amount of custom code?
A. Upload files for the sign-in pages with the required branding to an Amazon S3 bucket. Configure static website hosting for the S3 bucket.
B. Create a Lambda function to serve the sign-in pages with the required branding. Configure Amazon API Gateway to route traffic to the function.
C. Create a Lambda@Edge function to serve the sign-in pages with the required branding. Configure Amazon CloudFront to invoke the function in response to user requests.
D. Configure an Amazon Cognito user pool with an Amazon Cognito hosted UI for the sign-in pages. Customize the pages with the required branding.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your DVA-C01 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.