Login / Register   My Cart (0)

DumpsFree provides high-quality dumps PDF & dumps VCE for candidates who are willing to pass exams and get certifications soon. We provide dumps free download before purchasing dumps VCE. 100% pass exam!

All Products Contact now
  • Home
  • Articles
  • Latest Amazon DVA-C02 Dumps for success in Actual Exam Apr-2024 [Q59-Q76]

Latest Amazon DVA-C02 Dumps for success in Actual Exam Apr-2024 [Q59-Q76]

Share

Latest Amazon DVA-C02 Dumps for success in Actual Exam Apr-2024]

Realistic DVA-C02 100% Pass Guaranteed Download  Exam Q&A


Amazon DVA-C02 (AWS Certified Developer - Associate) certification exam is designed to validate the skills and knowledge of individuals who develop and maintain applications on the AWS platform. AWS Certified Developer - Associate certification is intended for developers who have experience in designing and developing cloud-based applications, and who want to demonstrate their expertise in using AWS services to build scalable, reliable, and highly available applications.


Amazon DVA-C02 certification exam is an essential certification for individuals who want to become AWS Certified Developer - Associate. AWS Certified Developer - Associate certification demonstrates the candidate's ability to develop, deploy, and maintain applications on the AWS platform. AWS Certified Developer - Associate certification is a valuable asset to any organization that uses AWS and provides individuals with a competitive advantage in the cloud computing industry.

 

NEW QUESTION # 59
A developer has been asked to create an AWS Lambda function that is invoked any time updates are made to items in an Amazon DynamoDB table. The function has been created, and appropriate permissions have been added to the Lambda execution role. Amazon DynamoDB streams have been enabled for the table, but the function is still not being invoked.
Which option would enable DynamoDB table updates to invoke the Lambda function?

  • A. Configure event source mapping for the Lambda function.
  • B. Increase the maximum runtime (timeout) setting of the Lambda function.
  • C. Change the StreamViewType parameter value to NEW_AND_OLD_IMAGES for the DynamoDB table.
  • D. Map an Amazon Simple Notification Service (Amazon SNS) topic to the DynamoDB streams.

Answer: A

Explanation:
https://docs.aws.amazon.com/lambda/latest/dg/with-ddb.html


NEW QUESTION # 60
When using the AWS Encryption SDK, how does the developer keep track of the data encryption keys used to encrypt data?

  • A. The SDK encrypts the data encryption key and stores it (encrypted) as part of the returned ciphertext.
  • B. The developer must manually keep track of the data encryption keys used for each data object.
  • C. The data encryption key is stored in the Userdata for the EC2 instance.
  • D. The SDK stores the data encryption keys automatically in Amazon S3.

Answer: A


NEW QUESTION # 61
A developer needs to perform geographic load testing of an API. The developer must deploy resources to multiple AWS Regions to support the load testing of the API.
How can the developer meet these requirements without additional application code?

  • A. Create an AWS Systems Manager document that defines the resources. Use the document to create the resources in the desired Regions.
  • B. Create and deploy an AWS Lambda function in each desired Region. Configure the Lambda function to create a stack from an AWS CloudFormation template in that Region when the function is invoked.
  • C. Create an AWS CloudFormation template that defines the load test resources. Use the AWS CLI deploy command to create a stack from the template in each Region.
  • D. Create an AWS CloudFormation template that defines the load test resources. Use the AWS CLI create-stack-set command to create a stack set in the desired Regions.

Answer: D


NEW QUESTION # 62
A developer is writing unit tests for a new application that will be deployed on AWS. The developer wants to validate all pull requests with unit tests and merge the code with the main branch only when all tests pass.
The developer stores the code in AWS CodeCommit and sets up AWS CodeBuild to run the unit tests. The developer creates an AWS Lambda function to start the CodeBuild task. The developer needs to identify the CodeCommit events in an Amazon EventBridge event that can invoke the Lambda function when a pull request is created or updated.
Which CodeCommit event will meet these requirements?

  • A.
  • B.
  • C.
  • D.

Answer: A

Explanation:
https://docs.aws.amazon.com/codecommit/latest/userguide/monitoring-events.html#pullRequestSourceBranchUpdated


NEW QUESTION # 63
A developer is creating a mobile application that will not require users to log in.
What is the MOST efficient method to grant users access to AWS resources?

  • A. Create an AWS Lambda function to create an IAM user when a user accesses the application.
  • B. Use an identity provider to securely authenticate with the application.
  • C. Create credentials using AWS KMS and apply these credentials to users when using the application.
  • D. Use Amazon Cognito to associate unauthenticated users with an IAM role that has limited access to resources.

Answer: D

Explanation:
https://docs.aws.amazon.com/cognito/latest/developerguide/iam-roles.html


NEW QUESTION # 64
A company is building a scalable data management solution by using AWS services to improve the speed and agility of development. The solution will ingest large volumes of data from various sources and will process this data through multiple business rules and transformations. The solution requires business rules to run in sequence and to handle reprocessing of data if errors occur when the business rules run. The company needs the solution to be scalable and to require the least possible maintenance.
Which AWS service should the company use to manage and automate the orchestration of the data flows to meet these requirements?

  • A. AWS Lambda
  • B. AWS Step Functions
  • C. AWS Batch
  • D. AWS Glue

Answer: B

Explanation:
AWS Step Functions allows you to coordinate multiple AWS services into serverless workflows so you can build and update apps quickly. It also provides a way to handle errors and retry failed steps, making it a good fit for the company's requirements.


NEW QUESTION # 65
A developer needs to store configuration variables for an application. The developer needs to set an expiration date and time for the configuration. The developer wants to receive notifications before the configuration expires.
Which solution will meet these requirements with the LEAST operational overhead?

  • A. Create an advanced parameter in AWS Systems Manager Parameter Store. Set Expiration and ExpirationNotification policy types.
  • B. Create a standard parameter in AWS Systems Manager Parameter Store. Create an AWS Lambda function to expire the configuration and to send Amazon Simple Notification Service (Amazon SNS) notifications.
  • C. Create a standard parameter in AWS Systems Manager Parameter Store. Set Expiration and ExpirationNotification policy types.
  • D. Create an advanced parameter in AWS Systems Manager Parameter Store. Create an Amazon EC2 instance with a cron job to expire the configuration and to send notifications.

Answer: A

Explanation:
You have to use "advanced parameter in AWS Systems Manager Parameter Store" to be able to Set Expiration and ExpirationNotification policy types.


NEW QUESTION # 66
A company needs to deploy all its cloud resources by using AWS CloudFormation templates A developer must create an Amazon Simple Notification Service (Amazon SNS) automatic notification to help enforce this rule. The developer creates an SNS topic and subscribes the email address of the company's security team to the SNS topic.
The security team must receive a notification immediately if an 1AM role is created without the use of CloudFormation.
Which solution will meet this requirement?

  • A. Launch an Amazon EC2 instance that includes a script to filter events from CloudTrail if a role was created without CloudFormation. Configure the script to publish to the SNS topic. Create a cron job to run the script on the EC2 instance every 15 minutes.
  • B. Create an Amazon EventBridge rule to filter events from CloudTrail if a role was created without CloudFormation Specify the SNS topic as the target of the EventBridge rule.
  • C. Create an AWS Fargate task in Amazon Elastic Container Service (Amazon ECS) to filter events from CloudTrail if a role was created without CloudFormation Configure the Fargate task to publish to the SNS topic Create an Amazon EventBridge schedule to run the Fargate task every 15 minutes
  • D. Create an AWS Lambda function to filter events from CloudTrail if a role was created without CloudFormation Configure the Lambda function to publish to the SNS topic. Create an Amazon EventBridge schedule to invoke the Lambda function every 15 minutes

Answer: B

Explanation:
Explanation
Creating an Amazon EventBridge rule is the most efficient and scalable way to monitor and react to events from CloudTrail, such as the creation of an IAM role without CloudFormation. EventBridge allows you to specify a filter pattern to match the events you are interested in, and then specify an SNS topic as the target to send notifications. This solution does not require any additional resources or code, and it can trigger notifications in near real-time. The other solutions involve creating and managing additional resources, such as Lambda functions, Fargate tasks, or EC2 instances, and they rely on polling CloudTrail events every 15 minutes, which can introduce delays and increase costs. References
* Using Amazon EventBridge rules to process AWS CloudTrail events
* Using AWS CloudFormation to create and manage AWS Batch resources
* How to use AWS CloudFormation to configure auto scaling for Amazon Cognito and AWS AppSync
* Using AWS CloudFormation to automate the creation of AWS WAF web ACLs, rules, and conditions


NEW QUESTION # 67
A company is building a serverless application on AWS. The application uses an AWS Lambda function to process customer orders 24 hours a day, 7 days a week. The Lambda function calls an external vendor's HTTP API to process payments.
During load tests, a developer discovers that the external vendor payment processing API occasionally times out and returns errors. The company expects that some payment processing API calls will return errors.
The company wants the support team to receive notifications in near real time only when the payment processing external API error rate exceed 5% of the total number of transactions in an hour. Developers need to use an existing Amazon Simple Notification Service (Amazon SNS) topic that is configured to notify the support team.
Which solution will meet these requirements?

  • A. Write the results of the external payment processing API calls to Amazon S3. Schedule an Amazon Athena query to run at regular intervals. Configure Athena to send notifications to the existing SNS topic when the error rate exceeds the specified rate.
  • B. Publish the results of the external payment processing API calls to a new Amazon SNS topic. Subscribe the support team members to the new SNS topic.
  • C. Write the results of payment processing API calls to Amazon CloudWatch. Use Amazon CloudWatch Logs Insights to query the CloudWatch logs. Schedule the Lambda function to check the CloudWatch logs and notify the existing SNS topic.
  • D. Publish custom metrics to CloudWatch that record the failures of the external payment processing API calls. Configure a CloudWatch alarm to notify the existing SNS topic when error rate exceeds the specified rate.

Answer: D

Explanation:
Explanation
Amazon CloudWatch is a service that monitors AWS resources and applications. The developer can publish custom metrics to CloudWatch that record the failures of the external payment processing API calls. The developer can configure a CloudWatch alarm to notify the existing SNS topic when the error rate exceeds 5% of the total number of transactions in an hour. This solution will meet the requirements in a near real-time and scalable way.
References:
[What Is Amazon CloudWatch? - Amazon CloudWatch]
[Publishing Custom Metrics - Amazon CloudWatch]
[Creating Amazon CloudWatch Alarms - Amazon CloudWatch]


NEW QUESTION # 68
A developer has created a large AWS Lambda function. Deployment of the function is failing because of an InvalidParameterValueException error. The error message indicates that the unzipped size of the function exceeds the maximum supported value.
Which actions can the developer take to resolve this error? (Choose two.)

  • A. Use a compression algorithm that is more efficient than ZIP.
  • B. Move common libraries, function dependencies, and custom runtimes into Lambda layers.
  • C. Submit a quota increase request to AWS Support to increase the function to the required size.
  • D. Break up the function into multiple smaller functions.
  • E. Zip the .zip file twice to compress the file more.

Answer: B,C

Explanation:
https://docs.aws.amazon.com/lambda/latest/dg/gettingstarted-limits.html


NEW QUESTION # 69
A company is using Amazon OpenSearch Service to implement an audit monitoring system. A developer needs to create an AWS CloudFormation custom resource that is associated with an AWS Lambda function to configure the OpenSearch Service domain. The Lambda function must access the OpenSearch Service domain by using OpenSearch Service internal master user credentials.
What is the MOST secure way to pass these credentials to the Lambda function?

  • A. Use a CloudFormation parameter to pass the master user credentials at deployment to the OpenSearch Service domain's MasterUserOptions and the Lambda function's environment variable. Set the NoEcho attribute to true.
  • B. Use a CloudFormation parameter to pass the master user credentials at deployment to the OpenSearch Service domain's MasterUserOptions and the Lambda function's environment variable. Encrypt the parameter's value by using the AWS Key Management Service (AWS KMS) encrypt command.
  • C. Use a CloudFormation parameter to pass the master user credentials at deployment to the OpenSearch Service domain's MasterUserOptions and to create a parameter in AWS Systems Manager Parameter Store. Set the NoEcho attribute to true. Create an IAM role that has the ssm:GetParameter permission. Assign the role to the Lambda function. Store the parameter name as the Lambda function's environment variable. Resolve the parameter's value at runtime.
  • D. Use CloudFormation to create an AWS Secrets Manager secret. Use a CloudFormation dynamic reference to retrieve the secret's value for the OpenSearch Service domain's MasterUserOptions.Create an IAM role that has the secretsmanager:GetSecretValue permission. Assign the role to the Lambda function. Store the secret's name as the Lambda function's environment variable.Resolve the secret's value at runtime.

Answer: D

Explanation:
Solution (D) is the most secure way to pass the credentials to the Lambda function because it uses AWS Secrets Manager to store the credentials in encrypted form.


NEW QUESTION # 70
A developer has observed an increase in bugs in the AWS Lambda functions that a development team has deployed in its Node.js application. To minimize these bugs, the developer wants to implement automated testing of Lambda functions in an environment that closely simulates the Lambda environment.
The developer needs to give other developers the ability to run the tests locally. The developer also needs to integrate the tests into the team's continuous integration and continuous delivery (CI/CD) pipeline before the AWS Cloud Development Kit (AWS CDK) deployment.
Which solution will meet these requirements?

  • A. Install a unit testing framework that reproduces the Lambda execution environment. Create sample events based on the Lambda documentation. Invoke the handler function by using a unit testing framework. Check the response. Document how to run the unit testing framework for the other developers on the team. Update the CI/CD pipeline to run the unit testing framework.
  • B. Install the AWS Serverless Application Model (AWS SAM) CLI tool. Use the sam local generate- event command to generate sample events for the automated tests. Create automated test scripts that use the sam local invoke command to invoke the Lambda functions. Check the response. Document the test scripts for the other developers on the team. Update the CI/CD pipeline to run the test scripts.
  • C. Create sample events based on the Lambda documentation. Create automated test scripts that use the cdk local invoke command to invoke the Lambda functions. Check the response.
    Document the test scripts for the other developers on the team. Update the CI/CD pipeline to run the test scripts.
  • D. Create sample events based on the Lambda documentation. Create a Docker container from the Node.js base image to invoke the Lambda functions. Check the response. Document how to run the Docker container for the other developers on the team. Update the CI/CD pipeline to run the Docker container.

Answer: B

Explanation:
Solution (C) is the best option to meet the developer's requirements. The AWS SAM CLI tool provides an easy way to generate sample events and invoke Lambda functions locally. The solution is also easy to document and integrate into the CI/CD pipeline.


NEW QUESTION # 71
A company has an application that is hosted on Amazon EC2 instances The application stores objects in an Amazon S3 bucket and allows users to download objects from the S3 bucket A developer turns on S3 Block Public Access for the S3 bucket After this change, users report errors when they attempt to download objects The developer needs to implement a solution so that only users who are signed in to the application can access objects in the S3 bucket.
Which combination of steps will meet these requirements in the MOST secure way? (Select TWO.)

  • A. Modify the application to use the S3 GeneratePresignedUrl API call
  • B. Create an 1AM user with an appropriate policy. Store the access key ID and secret access key on the EC2 instances
  • C. Modify the application to use the S3 GetObject API call and to return the object handle to the user
  • D. Create an EC2 instance profile and role with an appropriate policy Associate the role with the EC2 instances
  • E. Modify the application to delegate requests to the S3 bucket.

Answer: A,D

Explanation:
Explanation
The most secure way to allow the EC2 instances to access the S3 bucket is to use an EC2 instance profile and role with an appropriate policy that grants the necessary permissions. This way, the EC2 instances can use temporary security credentials that are automatically rotated and do not need to store any access keys on the instances. To allow the users who are signed in to the application to download objects from the S3 bucket, the application can use the S3 GeneratePresignedUrl API call to create a pre-signed URL that grants temporary access to a specific object. The pre-signed URL can be returned to the user, who can then use it to download the object within a specified time period. References
* Use Amazon S3 with Amazon EC2
* How to Access AWS S3 Bucket from EC2 Instance In a Secured Way
* Sharing an Object with Others


NEW QUESTION # 72
A developer accesses AWS CodeCommit over SSH. The SSH keys configured to access AWS CodeCommit are tied to a user with the following permissions:

The developer needs to create/delete branches
Which specific IAM permissions need to be added based on the principle of least privilege?

  • A. Option C
  • B. Option A
  • C. Option B
  • D. Option D

Answer: B

Explanation:
Explanation
This solution allows the developer to create and delete branches in AWS CodeCommit by granting the codecommit:CreateBranch and codecommit:DeleteBranch permissions. These are the minimum permissions required for this task, following the principle of least privilege. Option B grants too many permissions, such as codecommit:Put*, which allows the developer to create, update, or delete any resource in CodeCommit.
Option C grants too few permissions, such as codecommit:Update*, which does not allow the developer to create or delete branches. Option D grants all permissions, such as codecommit:*, which is not secure or recommended.


NEW QUESTION # 73
A company has an application that uses Amazon Cognito user pools as an identity provider. The company must secure access to user records. The company has set up multi-factor authentication (MFA). The company also wants to send a login activity notification by email every time a user logs in.
What is the MOST operationally efficient solution that meets this requirement?

  • A. Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Add an Amazon API Gateway API to invoke the function. Call the API from the client side when login confirmation is received.
  • B. Configure Amazon Cognito to stream all logs to Amazon Kinesis Data Firehose. Create an AWS Lambda function to process the streamed logs and to send the email notification based on the login status of each user.
  • C. Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Add an Amazon Cognito post authentication Lambda trigger for the function.
  • D. Create an AWS Lambda function that uses Amazon Simple Email Service (Amazon SES) to send the email notification. Create an Amazon CloudWatch Logs log subscription filter to invoke the function based on the login status.

Answer: C

Explanation:
Explanation
Amazon Cognito user pools support Lambda triggers, which are custom functions that can be executed at various stages of the user pool workflow. A post authentication Lambda trigger can be used to perform custom actions after a user is authenticated, such as sending an email notification. Amazon SES is a cloud-based email sending service that can be used to send transactional or marketing emails. A Lambda function can use the Amazon SES API to send an email to the user's email address after the user logs in successfully.
Reference: Post authentication Lambda trigger


NEW QUESTION # 74
A company is planning to use AWS CodeDeploy to deploy an application to Amazon Elastic Container Service (Amazon ECS) During the deployment of a new version of the application, the company initially must expose only 10% of live traffic to the new version of the deployed application. Then, after 15 minutes elapse, the company must route all the remaining live traffic to the new version of the deployed application.
Which CodeDeploy predefined configuration will meet these requirements?

  • A. CodeDeployDefault ECSLinear10PercentEvery1 Minutes
  • B. CodeDeployDefault LambdaCanary10Percent15Minutes
  • C. CodeDeployDefault LambdaCanary10Percent5Minutes
  • D. CodeDeployDefault ECSCanary10Percent15Minutes

Answer: D

Explanation:
Explanation
The predefined configuration "CodeDeployDefault.ECSCanary10Percent15Minutes" is designed for Amazon Elastic Container Service (Amazon ECS) deployments and meets the specified requirements. It will perform a canary deployment, which means it will initially route 10% of live traffic to the new version of the application, and then after 15 minutes elapse, it will automatically route all the remaining live traffic to the new version.
This gradual deployment approach allows the company to verify the health and performance of the new version with a small portion of traffic before fully deploying it to all users.


NEW QUESTION # 75
A developer is troubleshooting an Amazon API Gateway API Clients are receiving HTTP 400 response errors when the clients try to access an endpoint of the API.
How can the developer determine the cause of these errors?

  • A. Turn on AWS CloudTrail Insights and create a trail Specify the Amazon Resource Name (ARN) of the trail for the stage of the API.
  • B. Turn on execution logging and access logging in Amazon CloudWatch Logs for the API stage. Create a CloudWatch Logs log group. Specify the Amazon Resource Name (ARN) of the log group for the API stage.
  • C. Turn on AWS X-Ray for the API stage Create an Amazon CtoudWalch Logs log group Specify the Amazon Resource Name (ARN) of the log group for the API stage.
  • D. Create an Amazon Kinesis Data Firehose delivery stream to receive API call logs from API Gateway.
    Configure Amazon CloudWatch Logs as the delivery stream's destination.

Answer: B

Explanation:
Explanation
This solution will meet the requirements by using Amazon CloudWatch Logs to capture and analyze the logs from API Gateway. Amazon CloudWatch Logs is a service that monitors, stores, and accesses log files from AWS resources. The developer can turn on execution logging and access logging in Amazon CloudWatch Logs for the API stage, which enables logging information about API execution and client access to the API.
The developer can create a CloudWatch Logs log group, which is a collection of log streams that share the same retention, monitoring, and access control settings. The developer can specify the Amazon Resource Name (ARN) of the log group for the API stage, which instructs API Gateway to send the logs to the specified log group. The developer can then examine the logs to determine the cause of the HTTP 400 response errors. Option A is not optimal because it will create an Amazon Kinesis Data Firehose delivery stream to receive API call logs from API Gateway, which may introduce additional costs and complexity for delivering and processing streaming data. Option B is not optimal because it will turn on AWS CloudTrail Insights and create a trail, which is a feature that helps identify and troubleshoot unusual API activity or operational issues, not HTTP response errors. Option C is not optimal because it will turn on AWS X-Ray for the API stage, which is a service that helps analyze and debug distributed applications, not HTTP response errors.
References: [Setting Up CloudWatch Logging for a REST API], [CloudWatch Logs Concepts]


NEW QUESTION # 76
......


Amazon DVA-C02 exam, also known as the AWS Certified Developer - Associate exam, is a certification exam offered by Amazon Web Services (AWS) for software developers who want to validate their skills and knowledge in developing applications on the AWS platform. DVA-C02 exam is designed to test a candidate's ability to design, develop, and deploy cloud-based applications using AWS services and APIs. DVA-C02 exam covers a wide range of topics, including AWS core services, security, databases, and serverless architecture.

 

Accurate DVA-C02 Answers 365 Days Free Updates: https://dumpstorrent.dumpsfree.com/DVA-C02-valid-exam.html

Related Articles

more
Amazon DVA-C02 Certification Practice Exam

DumpsFree provides high-quality dumps PDF & dumps VCE for candidates who are willing to pass exams and get certifications soon. We provide dumps free download before purchasing dumps VCE. 100% pass exam!

Latest Dumps Free

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 DumpsFree NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy