DVA-C02 Exam Details

  • Exam Code
    :DVA-C02
  • Exam Name
    :AWS Certified Developer - Associate (DVA-C02)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :574 Q&As
  • Last Updated
    :Jul 08, 2026

Amazon DVA-C02 Online Questions & Answers

  • Question 1:

    A company is deploying serverless infrastructure as an AWS CloudFormation template. When deploying the template, a developer is required to specify whether the deployment is for a production environment or a nonproduction environment.

    The company wants to reduce costs by not deploying the same resources for a nonproduction environment that it deploys for a production environment. The developer needs to configure the AWS CloudFormation template to use the

    environment selection to control which resources are created.

    Which sections of the template should the developer configure to meet this requirement? (Choose two.)

    A. Parameters
    B. Conditions
    C. Mappings
    D. Metadata
    E. Outputs

  • Question 2:

    A developer is testing a new file storage application that uses an Amazon CloudFront distribution to serve content from an Amazon S3 bucket. The distribution accesses the S3 bucket by using an origin access identity (OAI). The S3 bucket's permissions explicitly deny access to all other users.

    The application prompts users to authenticate on a login page and then uses signed cookies to allow users to access their personal storage directories. The developer has configured the distribution to use its default cache behavior with restricted viewer access and has set the origin to point to the S3 bucket. However, when the developer tries to navigate to the login page, the developer receives a 403 Forbidden error.

    The developer needs to implement a solution to allow unauthenticated access to the login page. The solution also must keep all private content secure.

    Which solution will meet these requirements?

    A. Add a second cache behavior to the distribution with the same origin as the default cache behavior. Set the path pattern for the second cache behavior to the path of the login page, and make viewer access unrestricted. Keep the default cache behavior's settings unchanged.
    B. Add a second cache behavior to the distribution with the same origin as the default cache behavior. Set the path pattern for the second cache behavior to *, and make viewer access restricted. Change the default cache behavior's path pattern to the path of the login page, and make viewer access unrestricted.
    C. Add a second origin as a failover origin to the default cache behavior. Point the failover origin to the S3 bucket. Set the path pattern for the primary origin to *, and make viewer access restricted. Set the path pattern for the failover origin to the path of the login page, and make viewer access unrestricted.
    D. Add a bucket policy to the S3 bucket to allow read access. Set the resource on the policy to the Amazon Resource Name (ARN) of the login page object in the S3 bucket. Add a CloudFront function to the default cache behavior to redirect unauthorized requests to the login page's S3 URL.

  • Question 3:

    A company is using AWS Elastic Beanstalk to deploy a three-tier application. The application uses an Amazon RDS DB instance as the database tier. The com wants to decouple the DB instance from the Elastic Beanstalk environment. Which combination of steps should a developer take to meet this requirement? (Select TWO.)

    A. Create a new Elastic Beanstalk environment that connects to the DB instance.
    B. Create a new DB instance from a snapshot of the previous DB instance.
    C. Use the Elastic Beanstalk CLI to decouple the DB instance.
    D. Use the AWS CLI to decouple the DB instance.
    E. Modify the current Elastic Beanstalk environment to connect to the DB instance.

  • Question 4:

    An application interacts with Amazon Aurora to store and track customer information. The primary database is set up with multiple read replicas to improve the performance of read queries. However, one of the Aurora replicas is receiving most or all of the traffic, while the other Aurora replicas remain idle.

    How can this issue be resolved?

    A. Disable application-level DNS caching.
    B. Enable application-level DNS caching.
    C. Enable application pooling.
    D. Disable application pooling.

  • Question 5:

    For a deployment using AWS Code Deploy, what is the run order of the hooks for in-place deployments?

    A. BeforeInstall -> ApplicationStop -> ApplicationStart -> AfterInstall
    B. ApplicationStop -> BeforeInstall -> AfterInstall -> ApplicationStart
    C. BeforeInstall -> ApplicationStop -> ValidateService -> ApplicationStart
    D. ApplicationStop -> BeforeInstall -> ValidateService -> ApplicationStart

  • Question 6:

    A developer is building various microservices for an application that will run on Amazon EC2 instances. The developer needs to monitor the end-to-end view of the requests between the microservices and debug any issues in the various microservices.

    What should the developer do to accomplish these tasks?

    A. Use Amazon CloudWatch to aggregate the microservices' logs and metrics, and build the monitoring dashboard.
    B. Use AWS CloudTrail to aggregate the microservices' logs and metrics, and build the monitoring dashboard.
    C. Use the AWS X-Ray SDK to add instrumentation in all the microservices, and monitor using the X-Ray service map.
    D. Use AWS Health to monitor the health of all the microservices.

  • Question 7:

    A developer is building a highly secure healthcare application using serverless components. This application requires writing temporary data to /tmp storage on an AWS Lambda function. How should the developer encrypt this data?

    A. Enable Amazon EBS volume encryption with an AWS KMS key in the Lambda function configuration so that all storage attached to the Lambda function is encrypted.
    B. Set up the Lambda function with a role and key policy to access an AWS KMS key. Use the key to generate a data key used to encrypt all data prior to writing to /tmp storage.
    C. Use OpenSSL to generate a symmetric encryption key on Lambda startup. Use this key to encrypt the data prior to writing to /tmp.
    D. Use an on-premises hardware security module (HSM) to generate keys, where the Lambda function requests a data key from the HSM and uses that to encrypt data on all requests to the function.

  • Question 8:

    A company caches session information for a web application in an Amazon DynamoDB table. The company wants an automated way to delete old items from the table. What is the simplest way to do this?

    A. Write a script that deletes old records; schedule the script as a cron job on an Amazon EC2 instance.
    B. Add an attribute with the expiration time; enable the Time To Live feature based on that attribute.
    C. Each day, create a new table to hold session data; delete the previous day's table.
    D. Add an attribute with the expiration time; name the attribute ItemExpiration.

  • Question 9:

    A developer is working on a serverless application that needs to process any changes to an Amazon DynamoDB table with an AWS Lambda function. How should the developer configure the Lambda function to detect changes to the DynamoDB table?

    A. Create an Amazon Kinesis data stream, and attach it to the DynamoDB table. Create a trigger to connect the data stream to the Lambda function.
    B. Create an Amazon EventBridge rule to invoke the Lambda function on a regular schedule. Conned to the DynamoDB table from the Lambda function to detect changes.
    C. Enable DynamoDB Streams on the table. Create a trigger to connect the DynamoDB stream to the Lambda function.
    D. Create an Amazon Kinesis Data Firehose delivery stream, and attach it to the DynamoDB table. Configure the delivery stream destination as the Lambda function.

  • Question 10:

    A company is creating a REST service using an Amazon API Gateway with AWS Lambda integration. The service must run different versions for testing purposes.

    What would be the BEST way to accomplish this?

    A. Use an X-Version header to denote which version is being called and pass that header to the Lambda function(s).
    B. Create an API Gateway Lambda authorizer to route API clients to the correct API version.
    C. Create an API Gateway resource policy to isolate versions and provide context to the Lambda function (s).
    D. Deploy the API versions as unique stages with unique endpoints and use stage variables to provide further context.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your DVA-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.