AWS Certified Developer Associate EXAM DUMP -5

NEW QUESTION 1 

A user is running a MySQL RDS instance. The user will not use the DB for the next 3 months. How can the user save costs? 

A. Pause the RDS actMties from CLI until it is required in the future 

B. Stop the RDS instance 

C. Create a snapshot of RDS to launch in the future and terminate the instance now 

D. Change the instance size to micro 

Answer:

Explanation:  

The RDS instances unlike the AWS EBS backed instances cannot be stopped or paused. The user needs to take the final snapshot, terminate the instance and launch a new instance in the future from that snapshot 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.BackingUpAndRestoringAmazonR DSInstances.htmI 

NEW QUESTION 2 

In DynamoDB, if you create a table and request 10 units of write capacity and 200 units of read capacity of provisioned throughput, how much would you be charged in US East (Northern Virginia) Region? 

A. $0.05 per hour 

B. $0.10 per hour 

C. $0.03 per hour 

D. $0.15 per hour 

Answer:

Explanation:  

To understand pricing in DynamoDB, consider the following example. If you create a table and request 10 units of write capacity and 200 units of read capacity of provisioned throughput, you would be charged: 

$0.01 + (4 x $0.01) = $0.05 per hour 

Reference: http://aws.amazon.com/dynamodb/pricing/ 

NEW QUESTION 3 

An orgAMzation has 500 employees. The orgAMzation wants to set up AWS access for each department. Which of the below mentioned options is a possible solution? 

A. Create IAM roles based on the permission and assign users to each role 

B. Create IAM users and provide indMdual permission to each 

C. Create IAM groups based on the permission and assign IAM users to the groups 

D. It is not possible to manage more than 100 IAM users with AWS 

Answer:

Explanation:  

An IAM group is a collection of IAM users. Groups let the user specify permissions for a collection of users, which can make it easier to manage the permissions for those users. 

Reference: http://docs.aws.amazon.com/IAM/|atest/UserGuide/Using_WorkingWithGroupsAndUsers.htmI 

NEW QUESTION 4 

How long can you keep your Amazon SQS messages in Amazon SQS queues? 

A. From 120 secs up to 4 weeks 

B. From 10 secs up to 7 days 

C. From 60 secs up to 2 weeks 

D. From 30 secs up to 1 week 

Answer:

Explanation:  

The SQS message retention period is configurable and can be set anywhere from 1 minute to 2 weeks. The default is 4 days and once the message retention limit is reached your messages will be automatically deleted. The option for longer message retention provides greater filexibility to allow for longer intervals between message production and consumption. 

Reference: https://aws.amazon.com/sqs/faqs/ 

NEW QUESTION 5 

Regarding Amazon SNS, when you want to subscribe to a topic and receive notifications to your email, in the Protocol drop-down box, you should select . 

A. Email 

B. Message 

C. SMTP 

D. IMAP 

Answer:

Explanation:  In Amazon SNS, when you want to subscribe to a topic and receive notifications to your email, select Email in the Protocol drop-down box. Enter an email address 

you can use to receive the notification in the Endpoint field. 

Reference: http://docs.aws.amazon.com/sns/latest/dg/SubscribeTopic.html 

NEW QUESTION 6 

In Amazon EC2, which of the following is the type of monitoring data for Amazon EBS volumes that is available automatically in 5-minute periods at no charge? 

A. Primary 

B. Basic 

C. Initial 

D. Detailed 

Answer:

Explanation:  

Basic is the type of monitoring data (for Amazon EBS volumes) which is available automatically in 5-minute periods at no charge called. Reference: 

http://docs.amazonwebservices.com/AWSEC2/latest/UserGuide/monitoring-volume-status.html 

NEW QUESTION 7 

is a task coordination and state management service for cloud applications. 

A. Amazon SES 

B. Amazon SWF 

C. Amazon FPS 

D. Amazon SNS 

Answer:

Explanation:  

Amazon Simple Workflow (Amazon SWF) is a task coordination and state management service for cloud applications. With Amazon SWF, you can stop writing complex glue-code and state machinery and invest more in the business logic that makes your applications unique. 

Reference: http://aws.amazon.com/swf/ 

NEW QUESTION 8 

A user has created a MySQL RDS instance with PIOPS. Which of the below mentioned statements will help user understand the advantage of PIOPS? 

A. The user can achieve additional dedicated capacity for the EBS I/O with an enhanced RDS option 

B. It uses optimized EBS volumes and optimized configuration stacks 

C. It provides a dedicated network bandwidth between EBS and RDS 

D. It uses a standard EBS volume with optimized configuration the stacks 

Answer:

Explanation:  

RDS DB instance storage comes in two types: standard and provisioned IOPS. Standard storage is allocated on the Amazon EBS volumes and connected to the user’s DB instance. Provisioned IOPS uses optimized EBS volumes and an optimized configuration stack. It provides additional, dedicated capacity for the EBS I/O. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html 

NEW QUESTION 9 

A user is planning to host a scalable dynamic web application on AWS. Which of the services may not be required by the user to achieve automated scalability? 

A. CIoudWatch 

B. S3 

C. AutoScaIing 

D. AWS EC2 instances 

Answer:

Explanation:  

The user can achieve automated scaling by launching different EC2 instances and making them a part of an ELB. Cloudwatch will be used to monitor the resources and based on the scaling need it will trigger policies. AutoScaIing is then used to scale up or down the instances. Reference: http://docs.aws.amazon.com/AutoScaIing/latest/DeveIoperGuide/\NhatIsAutoScaIing.htmI 

NEW QUESTION 10 

What kind of service is provided by AWS DynamoDB? 

A. Relational Database 

B. NoSQL Database 

C. Dynamic Database 

D. Document Database 

Answer:

Explanation:  

DynamoDB is a fast, fully managed NoSQL database service. Reference: http://aws.amazon.com/dynamodb/ 

NEW QUESTION 10 

Regarding Amazon SQS, are there restrictions on the names of Amazon SQS queues? 

A. No 

B. Ye 

C. Queue names must be unique within an AWS account and you cannot use hyphens (-) and underscores (_) 

D. Ye 

E. Queue names are limited to 80 characters and queue names must be unique within an AWS account 

F. Ye 

G. Queue names are limited to 80 characters but queue names do not need to be unique within an AWS account 

Answer:

Explanation:  

Queue names are limited to 80 characters. Alphanumeric characters plus hyphens (-) and underscores (_) are allowed. Queue names must be unique within an AWS account. After you delete a queue, you can reuse the queue name. 

Reference: https://aws.amazon.com/sqs/faqs/ 

NEW QUESTION 11 

Can a user get a notification of each instance start / terminate configured with Auto Scaling? 

A. Yes, always 

B. No 

C. Yes, if configured with the Auto Scaling group 

D. Yes, if configured with the Launch Config 

Answer:

Explanation:  

The user can get notifications using SNS if he has configured the notifications while creating the Auto Scaling group. 

Reference: http://docs.aws.amazon.com/AutoScaIing/latest/DeveIoperGuide/GettingStartedTutoriaI.html 

NEW QUESTION 12 

You need to develop and run some new applications on AWS and you know that Elastic Beanstalk and CIoudFormation can both help as a deployment mechAMsm for a broad range of AWS resources. Which of the following statements best describes the differences between Elastic Beanstalk and C|oudFormation? 

A. Elastic Beanstalk uses Elastic load balancing and CIoudFormation doesn’t. 

B. CIoudFormation is faster in deploying applications than Elastic Beanstalk. 

C. CIoudFormation is much more powerful than Elastic Beanstalk, because you can actually design and script custom resources D. Elastic Beanstalk is faster in deploying applications than C|oudFormatio 

Answer:

Explanation:  

These services are designed to complement each other. AWS Elastic Beanstalk provides an environment to easily develop and run applications in the cloud. It is integrated with developer tools and provides a one-stop experience for you to manage the lifecycle of your applications. AWS CIoudFormation is a convenient deployment mechAMsm for a broad range of AWS resources. It supports the infrastructure needs of many different types of applications such as existing enterprise applications, legacy applications, applications built using a variety of AWS resources and container-based solutions (including those built using AWS Elastic Beanstalk). 

AWS CIoudFormation introduces two new concepts: The template, a JSON-format, text-based file that describes all the AWS resources you need to deploy to run your application and the stack, the set of AWS resources that are created and managed as a single unit when AWS CIoudFormation instantiates a template. Reference: http://aws.amazon.com/c|oudformation/faqs/ 

NEW QUESTION 16 

Can you SSH to your private machines that reside in a VPC from outside without elastic IP? 

A. Yes, but only if you have direct connect or vpn 

B. Only if you are using a non-US region 

C. Only if you are using a US region 

D. No 

Answer:

Explanation:  

The instances that reside in the private subnets of your VPC are not reachable from the Internet, meAMng that is not possible to ssh into them. To interact with them you can use a bastion server, located in a public subnet, that will act as a proxy for them. 

You can also connect if you have direct connect or vpn. 

Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Scenario2.html 

NEW QUESTION 17 

A user has created a MySQL RDS instance. Which of the below mentioned options is mandatory to configure while creating an instance? 

A. MuIti AZ deployment setup 

B. Automated backup window 

C. Availability Zone 

D. Maintenance window 

Answer:  

Explanation:  

When creating an RDS instance, the user needs to specify whether it is Nlulti AZ or not. If the user does not provide the value for the zone, the maintenance window or automated backup window, RDS will automatically select the value. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.lV|u|tiAZ.htmI 

NEW QUESTION 19 

An online gaming site asked you if you can deploy a database that is a fast, highly scalable NoSQL database service in AWS for a new site that he wants to build. Which database should you recommend? 

A. Amazon Redshift 

B. Amazon SimpIeDB 

C. Amazon DynamoDB 

D. Amazon RDS 

Answer:

Explanation:  

Amazon DynamoDB is ideal for database applications that require very low latency and predictable performance at any scale but don’t need complex querying capabilities like joins or transactions. Amazon DynamoDB is a fully-managed NoSQL database service that offers high performance, predictable throughput and low cost. It is easy to set up, operate, and scale. 

With Amazon DynamoDB, you can start small, specify the throughput and storage you need, and easily scale your capacity requirements on the fly. Amazon DynamoDB automatically partitions data over a 

number of servers to meet your request capacity. In addition, DynamoDB automatically replicates your data synchronously across multiple Availability Zones within an AWS Region to ensure high-availability and data durability. 

Reference: https://aws.amazon.com/running_databases/#dynamodb_anchor 

NEW QUESTION 20 

A user has attached one RDS security group with 5 RDS instances. The user has changed the ingress rule for the security group. What will be the initial status of the ingress rule? 

A. Approving 

B. Implementing 

C. Authorizing 

D. It is not possible to assign a single group to multiple DB instances 

Answer:

Explanation:  

When the user makes any changes to the RDS security group the rule status will be authorizing for some time until the changes are applied to all instances that the group is connected with. Once the changes are propagated the rule status will change to authorized. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithSecurityGroups.html 

NEW QUESTION 21 

Is there a limit to how much throughput you can get out of a single table in DynamoDB? 

A. Yes, not more than 1,000 writes/second or 1,000 reads/second 

B. No 

C. Yes, not more than 10,000 writes/second or 10,000 reads/second 

D. No, but If you wish to exceed throughput rates of 10,000 writes/second or 10,000 reads/second, you must first contact AWS. Answer:

Explanation:  

In DynamoDB, you can increase the throughput you have provisioned for your table using UpdateTabIe API or in the AWS Management Console. If you wish to exceed throughput rates of 10,000 writes/second or 10,000 reads/second, you must first contact AWS. 

Reference: http://aws.amazon.com/dynamodb/ 

NEW QUESTION 26 

In AWS Elastic Beanstalk, you can update your deployed application even while it is part of a running environment. For a Java application, you can also use to update your deployed application. 

A. the AWS Toolkit for Eclipse 

B. the AWS Toolkit for Visual Studio 

C. the AWS Toolkit for JVM 

D. the AWS Toolkit for Netbeans 

Answer:

Explanation:  

In AWS Elastic Beanstalk, you can update your deployed application, even while it is part of a running environment. For a Java application, you can also use the AWS Toolkit for Eclipse to update your deployed application. 

Reference: http://docs.aws.amazon.com/elasticbeanstaIk/latest/dg/GettingStarted.WaIkthrough.htmI 

NEW QUESTION 30 

Can you configure an RDS Read Replica using CIoudFormation templates? 

A. Yes, provided that you have root access. 

B. Yes, when you create a new CIoudFormation template 

C. Yes, but not for all Regions. 

D. No, you can add the ReadRepIica only when the resource is made available by CIoudFormation 

Answer:

Explanation:  

AWS CIoudFormation gives developers and systems administrators an easy way to create and manage collections of AWS resources. You can now set Read Replicas for your databases with RDS when you create a new C|oudFormation tempIate.You can start using it with the sample template of C|oudFormation. Reference: 

https://s3.amazonaws.com/cloudformation-templates-us-east-1/RDS_MySQL_With_Read_RepIica.tempI

NEW QUESTION 35 

In regard to DynamoDB, what is the Global secondary index? 

A. An index with a hash and range key that can be different from those on the table. 

B. An index that has the same range key as the table, but a different hash key 

C. An index that has the same hash key and range key as the table 

D. An index that has the same hash key as the table, but a different range key 

Answer:

Explanation:  

Global secondary index – an index with a hash and range key that can be different from those on the table. 

Reference: http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/DataModel.html 

NEW QUESTION 40 

You are building an online store on AWS that uses SQS to process your customer orders. Your backend system needs those messages in the same sequence the customer orders have been put in. How can you achieve that? 

A. You can do this with SQS but you also need to use SWF 

B. Messages will arrive in the same order by default 

C. You can use sequencing information on each message 

D. It is not possible to do this with SQS 

Answer:

Explanation:  

Amazon SQS is engineered to always be available and deliver messages. One of the resulting tradeoffs is that SQS does not guarantee first in, first out delivery of messages. For many distributed applications, each message can stand on its own, and as long as all messages are delivered, the order is not important. If your system requires that order be preserved, you can place sequencing information in each message, 

so that you can reorder the messages when the queue returns them. Reference: 

http://docs.aws.amazon.com/AWSSimpIeQueueService/latest/SQSDeveIoperGuide/\NeIcome.html 

NEW QUESTION 42 

A user has launched an EC2 instance and installed a website with the Apache webserver. The webserver is running but the user is not able to access the website from the internet. What can be the possible reason for this failure? 

A. The security group of the instance is not configured properly. 

B. The instance is not configured with the proper key-pairs. 

C. The Apache website cannot be accessed from the internet. 

D. Instance is not configured with an elastic I 

Answer:

Explanation:  

In Amazon Web Services, when a user has configured an instance with Apache, the user needs to ensure that the ports in the security group are opened as configured in Apache config. E.g. If Apache is running on port 80, the user should open port 80 in the security group. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-network-security.html 

NEW QUESTION 44 

How does Amazon SQS allow multiple readers to access the same message queue without losing messages or processing them many times? 

A. By identifying a user by his unique id 

B. By using unique cryptography 

C. Amazon SQS queue has a configurable visibility timeout. 

D. MuItipIe readers can’t access the same message queue 

Answer:

Explanation:  

Every Amazon SQS queue has a configurable visibility timeout. For the designated amount of time after a message is read from a queue, it will not be visible to any other reader. As long as the amount of time that it takes to process the message is less than the visibility timeout, every message will be processed and deleted. In the event that the component processing the message fails or becomes unavailable, the message will again become visible to any component reading the queue once the visibility timeout ends. This allows you to have many components all reading messages from the same queue, with each working to process different messages. 

Reference: https://aws.amazon.com/sqs/faqs/ 

NEW QUESTION 46 

A user is trying to understand AWS SNS. To which of the below mentioned end points is SNS unable to send a notification? 

A. AWS SES 

B. Email JSON 

C. AWS SQS 

D. HTTP 

Answer:

Explanation:  

Amazon Simple Notification Service (Amazon SNS) is a fast, filexible, and fully managed push messaging service. Amazon SNS can deliver notifications by SMS text message or email to the Amazon Simple Queue Service (SQS) queues or to any HTTP endpoint. The user can select one the following transports as part of the subscription requests: “HTTP”, “HTTPS”,”Emai|”, “EmaiI-JSON”, “SQS”, “and SMS”. 

Reference: http://aws.amazon.com/sns/faqs/ 

NEW QUESTION 50 

Can one instance be registered with two ELBs in the same region? 

A. No 

B. Yes, provided both ELBs have the same health check configuration 

C. Yes, always 

D. Yes, provided both ELBs are in the same AZ 

Answer:

Explanation:  

Yes, it is possible to have one instance part of two separate ELBs, though both ELBs have different configurations. ELBs are never launched in specific zones. Reference: 

http://docs.aws.amazon.com/EIasticLoadBaIancing/latest/DeveIoperGuide/enable-disable-az.html 

NEW QUESTION 55 

Bob is an IAM user who has access to the EC2 services. Admin is an IAM user who has access to all the AWS services including IAM. Can Bob change his password? 

A. No, the IAM user can never change the password 

B. Yes, provided Admin has given Bob access to change his password 

C. Yes, only from AWS CLI 

D. Yes, only from the AWS console 

Answer:

Explanation:  

The IAM users by default cannot change their password. The root owner or IAM administrator needs to set the policy in the password policy page, which should allow the user to change their password. Once it is enabled, the IAM user can always change their passwords from the AWS console or CLI. Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingUserPwdSeIf.htm| 

NEW QUESTION 59 

A user has created photo editing software and hosted it on EC2. The software accepts requests from the user about the photo format and resolution and sends a message to S3 to enhance the picture accordingly. Which of the below mentioned AWS services will help make a scalable software with the AWS infrastructure in this scenario? 

A. AWS Elastic Transcoder 

B. AWS Simple Notification Service 

C. AWS Simple Queue Service 

D. AWS Glacier 

Answer:

Explanation:  

Amazon Simple Queue Service (SQS) is a fast, reliable, scalable, and fully managed message queuing service. SQS provides a simple and cost-effective way to decouple the components of an application. The user can configure SQS, which will decouple the call between the EC2 application and S3. Thus, the application does not keep waiting for S3 to provide the data. 

Reference: http://aws.amazon.com/sqs/faqs/ 

NEW QUESTION 61 

Which of the below mentioned commands allows the user to share the AMI with his peers using the AWS EC2 CLI? 

A. ec2-share-image-public 

B. ec2-share-image-account 

C. ec2-share-image 

D. ec2-modify-image-attribute 

Answer:

Explanation:  

A user can share an AMI with another user / peer using the command: ec2-modify-image-attribute 

<AMI-ID> -| -a <AWS Account |D> 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sharingamis-expIicit.htmI 

NEW QUESTION 64 

A user has created a new EBS volume from an existing snapshot. The user mounts the volume on the instance to which it is attached. Which of the below mentioned options is a required step before the user can mount the volume? 

A. Run a cyclic check on the device for data consistency 

B. Create the file system of the volume 

C. Resize the volume as per the original snapshot size 

D. No step is require  The user can directly mount the device 

Answer:

Explanation:  

When a user is trying to mount a blank EBS volume, it is required that the user first creates a file system within the volume. If the volume is created from an existing snapshot then the user needs not to create a file system on the volume as it will wipe out the existing data. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-using-volumes.htmI 

NEW QUESTION 67 

In regards to Amazon SQS how many times will you receive each message? 

A. At least twice 

B. Exactly once 

C. As many times as you want 

D. At least once 

Answer:

Explanation:  

Amazon SQS is engineered to provide “at least once” delivery of all messages in its queues. Although most of the time, each message will be delivered to your application exactly once, you should design your system so that processing a message more than once does not create any errors or inconsistencies. Reference: https://aws.amazon.com/sqs/faqs/ 

NEW QUESTION 72 

A user has set an IAM policy where it allows all requests if a request from IP 10.10.10.1/32. Another policy allows all the requests between 5 PM to 7 PM. What will happen when a user is requesting access from IP 10.10.10.1/32 at 6 PM? 

A. IAM will throw an error for policy conflict 

B. It is not possible to set a policy based on the time or IP 

C. It will deny access 

D. It will allow access 

Answer:

Explanation:  

With regard to IAM, when a request is made, the AWS service decides whether a given request should be allowed or denied. The evaluation logic follows these rules: 

By default, all requests are denied. (In general, requests made using the account credentials for resources in the account are always allowed.) An explicit allow policy overrides this default. An explicit deny policy overrides any allows. Reference: 

http://docs.aws.amazon.com/IAM/latest/UserGuide/AccessPoIicyLanguage_EvaIuationLogic.htmI 

NEW QUESTION 73 

A user has launched an RDS instance. The user has created 3 databases on the same server. What can the maximum size be for each database? 

A. The size of each DB cannot be more than 3 TB 

B. It is not possible to have more than one DB on a single instance 

C. The total instance storage size cannot be more than 3 TB 

D. The size of each DB cannot be more than 1 TB 

Answer:

Explanation:  

The AWS RDS DB instance is an isolated DB environment provided by AWS in which the user can create more than 1 database. The maximum size ofthe instance should be between 5 GB and 3 TB. The size of each DB can be anything in this range. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html 

NEW QUESTION 75 

A user has created an RDS instance with MySQL. The user is using the HeidiSQL client to connect with the RDS DB. The client is unable to connect to DB from his home machine. What is a possible reason for the failure? 

A. The user has to open port 80 in the RDS security group to connect with RDS DNS 

B. The security group is not configured to allow a request from the user’s IP on port 3306 

C. You can never connect to RDS from your desktop 

D. The user has to open port 22 in the RDS security group to connect with RDS DNS 

Answer:  

Explanation:  

If the user needs to connect to RDS then he has to open port 3306 in the RDS security group for his IP address. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html 

NEW QUESTION 76 

An orgAMzation has 10000 employees. The orgAMzation wants to give restricted AWS access to each employee. How can the orgAMzation achieve this? 

A. Create an IAM user for each employee and make them a part of the group 

B. It is not recommended to support 10000 users with IAM 

C. Use STS and create the users’ run time 

D. Use Identity federation with SSO 

Answer:

Explanation:  

Identity federation enables users from an existing directory to access resources within your AWS account, 

making it easier to manage your users by maintaining their identities in a single place. In this case, the federated user is the only solution since AWS does not allow creating more than 5000 IAM users. Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html 

NEW QUESTION 77 

can be used to bootstrap both the Chef Server and Chef Client software on your EC2 instances. 

A. AWS CIoudFormation 

B. AWS Elastic Beanstalk 

C. AWS OpsWorks 

D. Amazon Glacier 

Answer:

Explanation:  

AWS CIoudFormation can be used to bootstrap both the Chef Server and Chef Client software on your EC2 instances. 

Reference: http://aws.amazon.com/c|oudformation/faqs/ 

NEW QUESTION 82 

In regards to Amazon SQS how can you secure the messages in your queues? 

A. You can’t 

B. Amazon SQS uses either your Access Key ID or an X.509 certificate to authenticate your identity 

C. Through your IAM access keys 

D. Don’t use root access 

Answer:

Explanation:  

Authentication mechAMsms are provided to ensure that messages stored in Amazon SQS queues are secured against unauthorized access. Only the AWS account owners can access the queues they create. Amazon SQS uses proven cryptographic methods to authenticate your identity, either through the use of your Access Key ID and request signature, or through the use of an X.509 certificate. 

Reference: https://aws.amazon.com/sqs/faqs/ 

NEW QUESTION 87 

Which Amazon service is not used by Elastic Beanstalk? 

A. Amazon S3 

B. Amazon ELB 

C. Auto scaling 

D. Amazon EMR 

Answer:

Explanation:  

Elastic Beanstalk leverages AWS services such as Amazon Elastic Cloud Compute (Amazon EC2), Amazon Simple Storage Service (Amazon S3), Amazon Simple Notification Service (Amazon SNS), Elastic Load Balancing and Auto Scaling to deliver the same highly reliable, scalable, and cost-effective infrastructure that hundreds of thousands of businesses depend on today. 

Reference: http://docs.aws.amazon.com/elasticbeanstalk/latest/dg/\NeIcome.html 

NEW QUESTION 89 

In AWS Elastic Beanstalk, if the application returns any response other than 200 ,OK or there is no response within the configured InactMtyTimeout period, . 

A. SQS once again makes the message visible in the queue and available for another attempt at processing 

B. SQS waits for another timeout 

C. SQS run DeIeteMessagecaII and deletes the message from the queue 

D. SQS sends a message to the application with the lVIessageID and pending status 

Answer:

Explanation:  

In AWS Elastic Beanstalk, if the application returns any response other than 200, OK or there is no response within the configured InactMtyTimeout period, SQS once again makes the message visible in the queue and available for another attempt at processing. 

Reference: 

http://docs.aws.amazon.com/elasticbeanstaIk/latest/dg/using-features-managing-env-tiers.htmI#worker-e nviron 

NEW QUESTION 93 

Which header received at the EC2 instance identifies the port used by the client while requesting ELB? 

A. X-Forvvarded-Proto 

B. X-Requested-Proto 

C. X-Forvvarded-Port 

D. X-Requested-Port 

Answer:

Explanation:  

The X-Forvvarded-Port request header helps the user identify the port used by the client while sending a request to ELB. 

Reference: http://docs.aws.amazon.com/EIasticLoadBalancing/latest/DeveIoperGuide/TerminologyandKeyConcepts. html 

NEW QUESTION 98 

When you register an actMty in Amazon SWF, you provide the following information, except: 

A. a name 

B. timeout values 

C. a domain 

D. version 

Answer:

Explanation:  

When designing an Amazon SWF workflow, you precisely define each of the required actMties. You then register each actMty with Amazon SWF as an actMty type. When you register the actMty, you provide information such as a name and version, and some timeout values based on how long you expect the actMty to take. 

Reference: http://docs.aws.amazon.com/amazonswf/latest/developerguide/swf-dg-intro-to-swf.html 

NEW QUESTION 100 

A user is using an EBS backed instance. Which of the below mentioned statements is true? 

A. The user will be charged for volume and instance only when the instance is running 

B. The user will be charged for the volume even if the instance is stopped 

C. The user will be charged only for the instance running cost 

D. The user will not be charged for the volume if the instance is stopped 

Answer:

Explanation:  

If a user has launched an EBS backed instance, the user will be charged for the EBS volume even though the instance is in a stopped state. The instance will be charged for the EC2 hourly cost only when it is running. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-detaching-volume.html 

NEW QUESTION 102 

A user is trying to create a policy for an IAM user from the AWS console. Which of the below mentioned options is not available to the user while configuring policy? 

A. Use policy generator to create policy 

B. Use custom policy to create policy 

C. Use policy simulator to create policy 

D. Assign No permission 

Answer:

Explanation:  

When a user is trying to create a policy from the AWS console, it will have options such as create policy from templates or use a policy generator. The user can also define a custom policy or chose the option to have no permission. The policy simulator is not available in the console. 

Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/IAMBestPractices.html 

NEW QUESTION 106 

A user wants to access RDS from an EC2 instance using IP addresses. Both RDS and EC2 are in the same region, but different AZs. Which of the below mentioned options help configure that the instance is accessed faster? 

A. Configure the Private IP of the Instance in RDS security group 

B. Security group of EC2 allowed in the RDS security group 

C. Configuring the elastic IP of the instance in RDS security group 

D. Configure the Public IP of the instance in RDS security group 

Answer:

Explanation:  

If the user is going to specify an IP range in RDS security group, AWS recommends using the private IP address of the Amazon EC2 instance. This provides a more direct network route from the Amazon EC2 instance to the Amazon RDS DB instance, and does not incur network charges for the data sent outside of the Amazon network. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithSecurityGroups.html 

NEW QUESTION 110 

A user is creating a snapshot of an EBS volume. Which of the below statements is incorrect in relation to the creation of an EBS snapshot? 

A. Its incremental 

B. It can be used to launch a new instance 

C. It is stored in the same AZ as the volume 

D. It is a point in time backup of the EBS volume 

Answer:

Explanation:  

The EBS snapshots are a point in time backup of the EBS volume. It is an incremental snapshot, but is always specific to the region and never specific to a single AZ. 

Hence the statement “|t is stored in the same AZ as the volume” is incorrect. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSSnapshots.htmI 

NEW QUESTION 113 

A user is planning to use EBS for his DB requirement. The user already has an EC2 instance running in the VPC private subnet. How can the user attach the EBS volume to a running instance? 

A. The user must create EBS within the same VPC and then attach it to a running instance. 

B. The user can create EBS in the same zone as the subnet of instance and attach that EBS to instance. 

C. It is not possible to attach an EBS to an instance running in VPC until the instance is stopped. 

D. The user can specify the same subnet while creating EBS and then attach it to a running instanc 

Answer:

Explanation:  

A Virtual Private Cloud (VPC) is a virtual network dedicated to the user’s AWS account. The user can create subnets as per the requirement within a VPC. The VPC is always specific to a region. The user can create a VPC which can span multiple Availability Zones by adding one or more subnets in each Availability Zone. The instance launched will always be in the same availability zone of the respective subnet. When creating an EBS the user cannot specify the subnet or VPC. However, the user must create the EBS in the same zone as the instance so that it can attach the EBS volume to the running instance. Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.htm|#VPCSubnet 

NEW QUESTION 114 

Your manager has requested you to tag EC2 instances to orgAMze and manage a load balancer. Which of the following statements about tag restrictions is incorrect? 

A. The maximum key length is 127 Unicode characters. 

B. The maximum value length is 255 Unicode characters. 

C. Tag keys and values are case sensitive. 

D. The maximum number of tags per load balancer is 20. 

Answer:

Explanation:  

Tags help you to categorize your load balancers in different ways, for example, by purpose, owner, or environment. The following basic restrictions apply to tags: The maximum number of tags per resource is 

10. The maximum key length is 127 Unicode characters. The maximum value length that can be used is 255 Unicode characters. The tag keys and values are case sensitive. Allowed characters are letters, spaces, and numbers representable in UTF-8, plus the following special characters: + – =. _ : / @. Do not use leading or trailing spaces. Do not use the aws: prefix in your tag names or values because it is reserved for AWS use. You can’t edit or delete tag names or values with this prefix. Tags with this prefix do not count against your tags per resource limit. 

Reference: 

http://docs.aws.amazon.com/EIasticLoadBaIancing/latest/DeveIoperGuide/add-remove-tags.htmI#tag-res trictions 

NEW QUESTION 117 

What is the maximum number of tags that a user can assign to an EC2 instance? 

A. 50 

B. 10 

C. 5 

D. 25 

Answer:

Explanation:  

To help manage EC2 instances as well as their usage in a better way, the user can tag the instances. The tags are metadata assigned by the user which consists of a key and a value. One resource can have a maximum of 10 tags. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html 

NEW QUESTION 121 

A user has configured ELB with two instances running in separate AZs of the same region? Which of the below mentioned statements is true? 

A. Nlulti AZ instances will provide HA with ELB 

B. lVIuIti AZ instances are not possible with a single ELB 

C. Nlulti AZ instances will provide scalability with ELB 

D. The user can achieve both HA and scalability with ELB 

Answer:

Explanation:  

If a user is running two instances in separate AZs, it will provide HA with ELB since ELB will automatically stop routing the traffic to unhealthy instances and send it to healthy instances only. 

NEW QUESTION 125 

An orgAMzation has enabled a strict password policy for its IAM users. The orgAMzation is taking help from the IAM console to set the password policy. Which of the below mentioned rules cannot be specified by the user as a part of the policy? 

A. Allow at least one lower case letter 

B. Allow at least one number 

C. Allow at least one non-alphanumeric character 

D. Do not allow the user to use the password from the last three passwords 

Answer:

Explanation:  

AWS IAM allows an orgAMzation to create multiple users and provide them access to various AWS services. By default when the user is created, he does not have password enabled and can not login to AWS console. If the orgAMzation wants to allow the users to login to AWS console, they can enable password for each user. It is required that IAM users follow certain guidelines to set their IAM login password. For this IAM provides root account owner to setup passwrod policy. The password policy also lets the specify whether all IAM users can change their own passwords. As part of policy, orgAMzation can specify that passwords for IAM users must be of a certain minimum length, must include certain characters, and a few more criteria such as below. One upper/ lower or both letters One alpha numeric 

One number 

Reference: http://docs.aws.amazon.com/|AM/Iatest/UserGuide/Using_ManagingPasswordPoIicies.htm| 

NEW QUESTION 128 

A user has developed an application which is required to send the data to a NoSQL database. The user wants to decouple the data sending such that the application keeps processing and sending data but 

does not wait for an acknowledgement of DB. Which of the below mentioned applications helps in this scenario? 

A. AWS Simple Notification Service 

B. AWS Simple Workflow 

C. AWS Simple Query Service 

D. AWS Simple Queue Service 

Answer:

Explanation:  

Amazon Simple Queue Service (SQS) is a fast, reliable, scalable, and fully managed message queuing service. SQS provides a simple and cost-effective way to decouple the components of an application. In this case, the user can use AWS SQS to send messages which are received from an application and sent to DB. The application can continue processing data without waiting for any acknowledgement from DB. The user can use SQS to transmit any volume of data without losing messages or requiring other services to always be available. 

Reference: http://aws.amazon.com/sqs/ 

NEW QUESTION 133 

In regard to DynamoDB, can I modify the index once it is created? 

A. Yes, if it is a primary hash key index 

B. Yes, if it is a Global secondary index 

C. No 

D. Yes, if it is a local secondary index 

Answer:

Explanation:  

Currently, in DynamoDB, an index cannot be modified once it is created. Reference: http://aws.amazon.com/dynamodb/faqs/#security_anchor 

NEW QUESTION 136 

A user is launching an AWS RDS with MySQL. Which of the below mentioned options allows the user to configure the INNODB engine parameters? 

A. Options group 

B. Engine parameters 

C. Parameter groups 

D. DB parameters 

Answer:

Explanation:  

With regard to RDS, the user can manage the configuration of a DB engine by using a DB parameter group. A DB parameter group contains engine configuration 

values that can be applied to one or more DB instances of the same instance type. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html 

NEW QUESTION 138 

A user is planning to use the AWS RDS with MySQL. Which of the below mentioned services the user is not going to pay? 

A. Data transfer 

B. RDS Cloudwatch metrics 

C. Data storage 

D. I/O requests per month 

Answer:

Explanation:  

RDS charges the user on a pay as you go basis. It charges the user based on the instance type, number of hours that the instance is running, data transfer, storage cost as well for the I/O requests. The monitoring is free of cost. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html 

NEW QUESTION 139 

A user has created a snapshot of an EBS volume. Which of the below mentioned usage cases is not possible with respect to a snapshot? 

A. Nlirroring the volume from one AZ to another AZ 

B. Launch an instance 

C. Decrease the volume size 

D. Increase the size of the volume 

Answer:

Explanation:  

The EBS snapshots are a point in time backup ofthe volume. It is helpful to move the volume from one AZ to another or launch a new instance. The user can increase the size of the volume but cannot decrease it less than the original snapshot size. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSSnapshots.htmI 

NEW QUESTION 143 

True or False: AWS CIoudFormation allows you to create Microsoft Windows stacks. 

A. False, AWS CIoudFormation does not support Microsoft Windows. 

B. False, Amazon doesn’t support Microsoft Windows. 

C. False, you cannot create Windows stacks. 

D. True 

Answer:

Explanation:  

AWS CIoudFormation allows you to create Microsoft Windows stacks based on Amazon EC2 Windows Amazon Machine Images (AMIs) and provides you with the ability to install software, to use remote desktop to access your stack, and to update and configure your stack. 

Reference: http://docs.aws.amazon.com/AWSCIoudFormation/latest/UserGuide/cfn-windows-stacks.html 

NEW QUESTION 146 

An ELB is diverting traffic across 5 instances. One of the instances was unhealthy only for 20 minutes. What will happen after 20 minutes when the instance becomes healthy? 

A. ELB will never divert traffic back to the same instance 

B. ELB will not automatically send traffic to the same instanc 

C. However, the user can configure to start sending traffic to the same instance 

D. ELB starts sending traffic to the instance once it is healthy 

E. ELB terminates the instance once it is unhealth 

F. Thus, the instance cannot be healthy after 10 minutes 

Answer:

Explanation:  

AWS Elastic Load Balancing continuously checks the health of an instance. If one of the instances is unhealthy it stops sending traffic to it and automatically reroutes the traffic to the remaining running EC2 instances. If the failed EC2 instance is restored, Elastic Load Balancing will again start sending traffic to that instance. 

Reference: http://docs.aws.amazon.com/E|asticLoadBaIancing/latest/DeveIoperGuide/Svclntro.htm| 

NEW QUESTION 149 

An orgAMzation has created an application which is hosted on the AWS EC2 instance. The application stores images to S3 when the end user uploads to it. The orgAMzation does not want to store the AWS secure credentials required to access the S3 inside the instance. Which of the below mentioned options is a possible solution to avoid any security threat? 

A. Use the IAM role and assign it to the instance. 

B. Since the application is hosted on EC2, it does not need credentials to access S3. 

C. Use the X.509 certificates instead of the access and the secret access keys. 

D. Use the IAM based single sign between the AWS resources and the orgAMzation applicatio 

Answer:  

Explanation:  

The AWS IAM role uses temporary security credentials to access AWS services. Once the role is assigned to an instance, it will not need any security credentials to be stored on the instance. Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html 

NEW QUESTION 152 

When a user is launching an instance with EC2, which of the below mentioned options is not available during the instance launch console for a key pair? 

A. Proceed without the key pair 

B. Upload a new key pair 

C. Select an existing key pair 

D. Create a new key pair 

Answer:

Explanation:  

While launching an EC2 instance, the user can create a new key pair, select an existing key pair or proceed without a key pair. The user cannot upload a new key pair in the EC2 instance launch console. Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/launching-instance.html 

NEW QUESTION 156 

AWS Elastic Beanstalk stores your application files and optionally server log files in . 

A. Amazon Storage Gateway 

B. Amazon Glacier 

C. Amazon EC2 

D. Amazon S3 

Answer:

Explanation:  

AWS Elastic Beanstalk stores your application files and optionally server log files in Amazon S3. If you are using the AWS Management Console, Git, the AWS Toolkit for Visual Studio, or AWS Toolkit for Eclipse, an Amazon S3 bucket will be created in your account for you and the files you upload will be automatically copied from your local client to Amazon S3. Optionally, you may configure Elastic Beanstalk to copy your server log files every hour to Amazon S3. You do this by editing the environment configuration settings. 

Reference: http://docs.aws.amazon.com/elasticbeanstaIk/latest/dg/AWSHowTo.htmI 

NEW QUESTION 159 

An orgAMzation has created multiple components of a single application for compartmentalization. Currently all the components are hosted on a single EC2 instance. Due to security reasons the orgAMzation wants to implement two separate SSLs for the separate modules although it is already using VPC. How can the orgAMzation achieve this with a single instance? 

A. Create a VPC instance which will have both the ACL and the security group attached to it and haveseparate rules for each IP address. B. Create a VPC instance which will have multiple network interfaces with multiple elastic IP addresses. 

C. You have to launch two instances each in a separate subnet and allow VPC peering for a single IP. 

D. Create a VPC instance which will have multiple subnets attached to it and each will have a separate IP address. 

Answer:

Explanation:  

A Virtual Private Cloud (VPC) is a virtual network dedicated to the user’s AWS account. It enables the user to launch AWS resources into a virtual network that the user has defined. With VPC the user can specify multiple private IP addresses for his instances. 

The number of network interfaces and private IP addresses that a user can specify for an instance depends on the instance type. With each network interface the orgAMzation can assign an EIP. This scenario helps when the user wants to host multiple websites on a single EC2 instance by using multiple SSL certificates on a single server and associating each certificate with a specific EIP address. It also helps in scenarios for operating network appliances, such as firewalls or load balancers that have multiple private IP addresses for each network interface. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/MuItipIeIP.html 

NEW QUESTION 160 

In regards to VPC, select the correct statement: 

A. You can associate multiple subnets with the same Route Table. 

B. You can associate multiple subnets with the same Route Table, but you can’t associate a subnet with only one Route Table. C. You can’t associate multiple subnets with the same Route Table. 

D. None of thes 

Answer:

Explanation:  

Every subnet in your VPC must be associated with exactly one Route Table. However, multiple subnets can be associated with the same Route Table. Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Route_TabIes.html 

NEW QUESTION 162 

A user is enabling a static website hosting on an S3 bucket. Which of the below mentioned parameters cannot be configured by the user? 

A. Error document 

B. Conditional error on object name 

C. Index document 

D. Conditional redirection on object name 

Answer:

Explanation:  

To host a static website, the user needs to configure an Amazon S3 bucket for website hosting and then upload the website contents to the bucket. The user can configure the index, error document as well as configure the conditional routing of on object name. 

Reference: http://docs.aws.amazon.com/AmazonS3/Iatest/dev/HowDoIWebsiteConfiguration.htm| 

NEW QUESTION 164 

An orgAMzation has created 10 IAM users. The orgAMzation wants those users to work independently and access AWS. Which of the below mentioned options is not a possible solution? 

A. Create the access key and secret access key for each user and provide access to AWS using the console 

B. Create the X.509 certificate for each user and provide them access to AWS CLI 

C. Enable MFA for each IAM user and assign them the virtual MFA device to access the console 

D. Provide each user with the IAM login and password for the AWS console 

Answer:

Explanation:  

If an orgAMzation has created the IAM users, the users can access AWS services either with an IAM specific login/password or console. The orgAMzation can generate the IAM X.509 certificates to access AWS with CLI. The orgAMzation can also enable MFA for each IAM user, which allows an added security for each IAM user. If the orgAMzation has created the access key and secret key than the user cannot access the console using those keys. Access key and secret access key are useful for CLI or 

Webservices. 

Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_Introduction.htm| 

NEW QUESTION 167 

A user is planning to host data with RDS. Which of the below mentioned databases is not supported by RDS? 

A. PostgreSQL 

B. SQLDB 

C. Oracle 

D. MS SQL 

Answer:

Explanation:  

Amazon Relational Database Service (Amazon RDS) is a web service that makes it easier to set up, operate, and scale a relational database in the cloud. AWS RDS supports popular DBs, such as lV|ySQL, PostgreSQL, MS SQL and Oracle. This means that the code, applications, and tools user is already using with existing databases can be used with Amazon RDS too. In short, it is a managed Relation Database offering from AWS which manages backups, software patching, automatic failure detection, and recovery of Database. 

Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html 

NEW QUESTION 169 

An EC2 instance has one additional EBS volume attached to it. How can a user attach the same volume to another running instance in the same AZ? 

A. Terminate the first instance and only then attach to the new instance 

B. Attach the volume as read only to the second instance 

C. Detach the volume first and attach to new instance 

D. No need to detac 

E. Just select the volume and attach it to the new instance, it will take care of mapping internally 

Answer:

Explanation:  

If an EBS volume is attached to a running EC2 instance, the user needs to detach the volume from the original instance and then attach it to a new running instance. The user doesn’t need to stop / terminate the original instance. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-detaching-volume.html 

NEW QUESTION 173 

To scale up the AWS resources using manual AutoScaIing, which of the below mentioned parameters should the user change? 

A. Maximum capacity 

B. Desired capacity 

C. Preferred capacity 

D. Current capacity 

Answer:

Explanation:  

The Manual Scaling as part of Auto Scaling allows the user to change the capacity of Auto Scaling group. The user can add / remove EC2 instances on the fly. To execute manual scaling, the user should modify the desired capacity. AutoScaIing will adjust instances as per the requirements. If the user is trying to CLI, he can use command as-set-desired-capacity <Auto Scaling Group Name> –desired-capacity <New Capacity> 

Reference: http://docs.aws.amazon.com/AutoScaIing/latest/DeveIoperGuide/as-manual-scaling.htmI 

NEW QUESTION 175 

A user has configured a website and launched it using the Apache web server on port 80. The user is using ELB with the EC2 instances for Load Balancing. What should the user do to ensure that the EC2 instances accept requests only from ELB? 

A. Open the port for an ELB static IP in the EC2 security group 

B. Configure the security group of EC2, which allows access to the ELB source security group 

C. Configure the EC2 instance so that it only listens on the ELB port 

D. Configure the security group of EC2, which allows access only to the ELB listener 

Answer:

Explanation:  

When a user is configuring ELB and registering the EC2 instances with it, ELB will create a source security group. If the user wants to allow traffic only from ELB, he should remove all the rules set for the other requests and open the port only for the ELB source security group. 

Reference: 

http://docs.aws.amazon.com/EIasticLoadBaIancing/latest/DeveIoperGuide/using-elb-security-groups.htmI 

NEW QUESTION 178 

A user is having access to objects of an S3 bucket which is not owned by him. If he is trying to set the objects of that bucket public, which of the below mentioned options may be a right fit for this action? 

A. Make the bucket public with full access 

B. Define the policy for the bucket 

C. Provide ACL on the object 

D. Create an IAM user with permission 

Answer:

Explanation:  

An S3 object ACL is the only way to manage access to objects which are not owned by the bucket owner. An AWS account that owns the bucket can grant another AWS account permission to upload objects. The bucket owner does not own these objects. The AWS account that created the object must grant permissions using object ACLs. 

Reference: http://docs.aws.amazon.com/AmazonS3/latest/dev/access-policy-alternatives-guidelines.html 

NEW QUESTION 179 

A user wants to achieve High Availability with PostgreSQL DB. Which of the below mentioned functionalities helps achieve HA? 

A. Read Replica 

B. Multi AZ 

C. Multi region 

D. PostgreSQL does not support HA 

Answer:

Explanation:  

The Multi AZ feature allows the user to achieve High Availability. For Mu|ti AZ, Amazon RDS 

automatically provisions and maintains a synchronous “standby” replica in a different Availability Zone. Reference: 

http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html 

NEW QUESTION 183 

A user is launching an instance with EC2. Which of the below mentioned options does the user need to consider before launching an instance? 

A. Select the region where the instance is being launched. 

B. Select the instance type. 

C. All the options listed should be considered.. 

D. Select the OS of the AM 

Answer:

Explanation:  

Regarding Amazon EC2, when launching an instance, the user needs to select the region the instance would be launched from. While launching, the user needs to plan for the instance type and the OS of the instance. 

Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-Iaunch-instance_|inux.htmI 

NEW QUESTION 184 

Which of the following programming languages have an officially supported AWS SDK? Choose 2 answers 

A. Perl 

B. PHP 

C. Pascal 

D. Java 

E. SQL 

Answer: BD 

NEW QUESTION 188 

Which statements about DynamoDB are true? Choose 2 answers 

A. DynamoDB uses a pessimistic locking model 

B. DynamoDB uses optimistic concurrency control 

C. DynamoDB uses conditional writes for consistency 

D. DynamoDB restricts item access during reads 

E. DynamoDB restricts item access during writes 

Answer: BC 

NEW QUESTION 193 

Which of the following is an example of a good DynamoDB hash key schema for provisioned throughput efficiency? 

A. User ID, where the application has many different users. 

B. Status Code where most status codes are the same 

C. Device ID, where one is by far more popular than all the others. 

D. Game Type, where there are three possible game types 

Answer:

NEW QUESTION 196 

Company C has recently launched an online commerce site for bicycles on AWS. They have a “Product” DynamoDB table that stores details for each bicycle, such as, manufacturer, color, price, quantity and size to display in the online store. Due to customer demand, they want to include an image for each bicycle along with the existing details. 

Which approach below provides the least impact to provisioned throughput on the “Product” table? 

A. Serialize the image and store it in multiple DynamoDB tables 

B. Create an “Images” DynamoDB table to store the Image with a foreign key constraint to the “Product” table 

C. Add an image data type to the “Product” table to store the images in binary format 

D. Store the images in Amazon S3 and add an S3 URL pointer to the “Product” table item for each image 

Answer:

NEW QUESTION 197 

What is one key difference between an Amazon EBS-backed and an instance-store backed instance? 

A. Virtual Private Cloud requires EBS backed instances 

B. Amazon EBS-backed instances can be stopped and restarted 

C. Auto scaling requires using Amazon EBS-backed instances. 

D. Instance-store backed instances can be stopped and restarte 

Answer:

NEW QUESTION 202 

A startup s photo-sharing site is deployed in a VPC. An ELB distributes web traffic across two subnets. ELB session stickiness is configured to use the AWS generated session cookie, with a session TTL of 5 minutes. The webserver Auto Scaling Group is configured as: min-size=4, max-size=4. The startups preparing for a public launch, by running load-testing software installed on a single EC2 instance running in us-west-2a. After 60 minutes of load testing, the webserver logs show: 

Which recommendations can help ensure load-testing HTTP requests are evenly distributed across the 

four webservers? Choose 2 answers 

A. Launch and run the load-tester EC2 instance from us-east-1 instead. 

B. Re-configure the load-testing software to re-resolve DNS for each web request. 

C. Use a 3rd-party load-testing service which offers globally-distributed test clients. 

D. Configure ELB and Auto Scaling to distribute across us-west-2a and us-west-2c. 

E. Configure ELB session stickiness to use the app-specific session cooki 

Answer: BE 

NEW QUESTION 203 

When uploading an object, what request header can be explicitly specified in a request to Amazon S3 to encrypt object data when saved on the server side? 

A. x-amz-storage-class 

B. Content-MD5 

C. x-amz-security-token 

D. x-amz-server-side-encryption 

Answer:

NEW QUESTION 208 

In DynamoDB, what type of HTTP response codes indicate that a problem was found with the client request sent to the service? 

A. 5xx HTTP response code 

B. 200 HTTP response code 

C. 306 HTTP response code 

D. 4xx HTTP response code 

Answer:

NEW QUESTION 210 

Which of the following are valid arguments for an SNS Publish request? Choose 3 answers 

A. TopicAm 

B. Subject 

C. Destination 

D. Format 

E. Message F.Language 

Answer: ABE 

NEW QUESTION 212 

EC2 instances are launched from Amazon Machine images (AMIS). A given public AMI can: 

A. be used to launch EC2 Instances in any AWS region. 

B. only be used to launch EC2 instances in the same country as the AMI is stored. 

C. only be used to launch EC2 instances in the same AWS region as the AMI is stored. 

D. only be used to launch EC2 instances in the same AWS availability zone as the AMI is stored 

Answer:

NEW QUESTION 217 

Which features can be used to restrict access to data in S3? Choose 2 answers 

A. Use S3 Virtual Hosting 

B. Set an S3 Bucket policy. 

C. Enable IAM Identity Federation. 

D. Set an S3 ACL on the bucket or the object. 

E. Create a C|oudFront distribution for the bucket 

Answer: CD 

NEW QUESTION 221 

Company B provides an online image recognition service and utilizes SOS to decouple system components for scalability The SQS consumers poll the imaging queue as often as possible to keep 

end-to-end throughput as high as possible. However, Company B is realizing that polling in tight loops is burning CPU cycles and increasing costs with empty responses. 

How can Company B reduce the number of empty responses? 

A. Set the imaging queue visibility Timeout attribute to 20 seconds 

B. Set the Imaging queue ReceiveMessageWaitTimeSeconds attribute to 20 seconds 

C. Set the imaging queue MessageRetentionPeriod attribute to 20 seconds 

D. Set the DeIaySeconds parameter of a message to 20 seconds 

Answer:

NEW QUESTION 223 

What AWS products and features can be deployed by Elastic Beanstalk? Choose 3 answers 

A. Auto scaling groups 

B. Route 53 hosted zones 

C. Elastic Load Balancers 

D. RDS Instances 

E. Elastic IP addresses 

F. SQS Queues 

Answer: ACD 

NEW QUESTION 225 

How is provisioned throughput affected by the chosen consistency model when reading data from a DynamoDB table? 

A. Strongly consistent reads use the same amount of throughput as eventually consistent reads 

B. Strongly consistent reads use more throughput than eventually consistent reads. 

C. Strongly consistent reads use less throughput than eventually consistent reads 

D. Strongly consistent reads use variable throughput depending on read actMty 

Answer:

NEW QUESTION 230 

What type of block cipher does Amazon S3 offer for server side encryption? 

A. Triple DES 

B. Advanced Encryption Standard 

C. Blowfish 

D. RC5 

Answer:

NEW QUESTION 233 

You attempt to store an object in the US-STANDARD region in Amazon S3, and receive a confirmation that it has been successfully stored. You then immediately make another API call and attempt to read this object. S3 tells you that the object does not exist 

What could explain this behavior? 

A. US-STANDARD uses eventual consistency and it can take time for an object to be readable in a bucket 

B. Objects in Amazon S3 do not become visible until they are replicated to a second region. 

C. US-STANDARD imposes a 1 second delay before new objects are readable. 

D. You exceeded the bucket object limit, and once this limit is raised the object will be visible. 

Answer:

NEW QUESTION 238 

You are writing to a DynamoDB table and receive the following exception:” ProvisionedThroughputExceededException”. though according to your Cloudwatch metrics for the table, you are not exceeding your provisioned throughput. 

What could be an explanation for this? 

A. You haven’t provisioned enough DynamoDB storage instances 

B. You’re exceeding your capacity on a particular Range Key 

C. You’re exceeding your capacity on a particular Hash Key 

D. You’re exceeding your capacity on a particular Sort Key 

E. You haven’t configured DynamoDB Auto Scaling triggers 

Answer:

NEW QUESTION 239 

If an application is storing hourly log files from thousands of instances from a high traffic web site, which naming scheme would give optimal performance on S3? 

A. Sequential 

B. instancelD_Iog-HH-DD-NIM-YYYY 

C. instancelD_Iog-YYYY-NIM-DD-HH 

D. HH-DD-NINI-YYYY-Iog_instanceID 

E. YYYY-MM-DD-HH-|og_instance|D 

Answer:

NEW QUESTION 244 

You run an ad-supported photo sharing website using S3 to serve photos to visitors of your site. At some point you find out that other sites have been linking to the photos on your site, causing loss to your business. 

What is an effective method to mitigate this? 

A. Store photos on an EBS volume ofthe web server 

B. Remove public read access and use signed URLs with expiry dates. 

C. Use C|oudFront distributions for static content. 

D. Block the IPs of the offending websites in Security Group 

Answer:

NEW QUESTION 249 

Company A has an S3 bucket containing premier content that they intend to make available to only paid subscribers of their website. The S3 bucket currently has default permissions of all objects being private to prevent inadvertent exposure of the premier content to non-paying website visitors. How can Company A provide only paid subscribers the ability to download a premier content file in the S3 bucket? 

A. Apply a bucket policy that grants anonymous users to download the content from the S3 bucket 

B. Generate a pre-signed object URL for the premier content file when a paid subscriberrequests adownload 

C. Add a bucket policy that requires Multi-Factor Authentication for requests to access the S3 bucket objects 

D. Enable server side encryption on the S3 bucket for data protection against the non-paying website visitors 

Answer:

amazon.2passeasy.aws-certified-developer-associate.vce.download.2021-sep-07.by.horace.151q.vce

Source: https://www.dumpscollection.net/dumps/AWS-Certified-Developer-Associate/

Leave a Reply

Your email address will not be published. Required fields are marked *