Free Amazon DVA-C02 Exam Questions

Question 1

A developer needs to perform geographic load testing of an API. The developer must deploy resources tomultiple AWS Regions to support the load testing of the API.How can the developer meet these requirements without additional application code?

A : Create and deploy an AWS Lambda function in each desired Region. Configure the Lambda function tocreate a stack from an AWS CloudFormation template in that Region when the function is invoked.

B : Create an AWS CloudFormation template that defines the load test resources. Use the AWS CLI createstack-set command to create a stack set in the desired Regions.

C : Create an AWS Systems Manager document that defines the resources. Use the document to create theresources in the desired Regions.

D : Create an AWS CloudFormation template that defines the load test resources. Use the AWS CLI deploycommand to create a stack from the template in each Region.

Answer: B

Question 2

A company is concerned that a malicious user could deploy unauthorized changes to the code for an AWSLambda function. What can a developer do to ensure that only trusted code is deployed to Lambda?

A : Turn on the trusted code option in AWS CodeDeploy. Add the CodeDeploy digital certificate to theLambda package before deploying the package to Lambda.

B : Define the code signing configuration in the Lambda console. Use AWS Signer to digitally sign theLambda package before deploying the package to Lambda.

C : Link Lambda to AWS KMS in the Lambda console. Use AWS KMS to digitally sign the Lambdapackage before deploying the package to Lambda.

D : Set the KmsKeyArn property of the Lambda function to the Amazon Resource Name (ARN) of atrusted key before deploying the package to Lambda.

Answer: B

Question 3

A company has an application that uses an AWS Lambda function to process customer orders. The companynotices that the application processes some orders more than once.A developer needs to update the application to prevent duplicate processing.Which solution will meet this requirement with the LEAST implementation effort?

A : Implement a de-duplication mechanism that uses Amazon DynamoDB as the control database.Configure the Lambda function to check for the existence of a unique identifier before processing eachevent.

B : Create a custom Amazon ECS task to perform idempotency checks. Use AWS Step Functions tointegrate the ECS task with the Lambda function.

C : Configure the Lambda function to retry failed invocations. Implement a retry mechanism that has afixed delay between attempts to handle duplicate events.

D : Use Amazon Athena to query processed events to identify duplicate records. Add processing logic tothe Lambda function to handle the duplication scenarios that the query identifies.

Answer: A

Question 4

A company notices that credentials that the company uses to connect to an external software as a service(SaaS) vendor are stored in a configuration file as plaintext.The developer needs to secure the API credentials and enforce automatic credentials rotation on a quarterlybasis.Which solution will meet these requirements MOST securely?

A : Use AWS Key Management Service (AWS KMS) to encrypt the configuration file. Decrypt theconfiguration file when users make API calls to the SaaS vendor. Enable rotation.

B : Retrieve temporary credentials from AWS Security Token Service (AWS STS) every 15 minutes. Usethe temporary credentials when users make API calls to the SaaS vendor.

C : Store the credentials in AWS Secrets Manager and enable rotation. Configure the API to have SecretsManager access.

D : Store the credentials in AWS Systems Manager Parameter Store and enable rotation. Retrieve thecredentials when users make API calls to the SaaS vendor.

Answer: C

Question 5

A developer is working on an AWS Lambda function that accesses Amazon DynamoDB. The Lambdafunction must retrieve an item and update some of its attributes, or create the item if it does not exist. TheLambda function has access to the primary key.Which IAM permissions should the developer request for the Lambda function to achieve this functionality?

A : Option A

B : Option B

C : Option C

D : Option D

Answer: B