Free Amazon DVA-C02 Exam Questions

Become Amazon Certified with updated DVA-C02 exam questions and correct answers

Page: 1 / 194

Total 968 Questions | Updated On: Dec 16, 2025

Add To Cart

Question 1

A Developer needs to manage AWS services from a local development server using the AWS CLI. How can the Developer ensure that the CLI uses their IAM permissions?

A : Put the Developer’s IAM user account in an IAM group that has the necessary permissions

B : eate an IAM Role with the required permissions and attach it to the local server’s instance profile

C : ve the Developer’s IAM login credentials as environment variables and reference them when executing AWS CLI commands

D : n the aws configure command and provide the Developer’s IAM access key ID and secret access key

Answer: D

Question 2

A developer is using an AWS account to build an application that stores files in an Amazon S3 bucket. Files must be encrypted at rest by AWS KMS keys. A second AWS account must have access to read files from the bucket. The developer wants to minimize operational overhead for the application. Which combination of solutions will meet these requirements? (Select TWO.)

A : Use a customer managed key to encrypt the files. Create a key policy that grants kms: Decrypt permissions to the second AWS account.

B : Use an AWS managed key to encrypt the files. Create a key policy that grants kms:Decrypt permissions to the second AWS account.

C : Create a service control policy (SCP) that grants s3:GetObject permissions to the second AWS account.

D : Create a bucket policy for the S3 bucket that grants s3:GetObject permissions to the second AWS account.

E : Create a gateway endpoint for the S3 bucket. Modify the endpoint policy to grant s3:GetObject permissions to the second AWS account.

Answer: A,D

Question 3

A healthcare company is developing a multi-tier web application to manage patient records that are in an Amazon Aurora PostgreSQL database cluster. The company stores the application code in a Git repository and deploys the code to Amazon EC2 instances. The application must comply with security policies and follow the principle of least privilege. The company must securely manage database credentials and API keys within the application code. The company must have the ability to rotate encryption keys on demand. Which solution will meet these requirements?

A : Store database credentials and API keys in AWS Secrets Manager. Use AWS managed AWS KMS keys. Set up automatic key rotation. Use the AWS SDK to retrieve secrets.

B : Store the database credentials and API keys in AWS Secrets Manager. Use customer managed AWS KMS keys. Set up automatic key rotation. Create a key policy in the application to retrieve secrets by using the AWS SDK.

C : Store the database credentials in the application code. Separate credentials by using environmentspecific branches that have restricted access to the code repositories.

D : Store the database credentials and API keys as parameters in AWS Systems Manager Parameter Store. Encrypt the credentials and API keys with AWS managed AWS KMS keys. Use the AWS SDK to retrieve secrets.

Answer: A

Question 4

An application under development is required to store hundreds of video files. The data must be encrypted within the application prior to storage, with a unique key for each video file.

How should the developer code the application?

A : the KMS Encrypt API to encrypt the data. Store the encrypted data key and data.

B : a cryptography library to generate an encryption key for the application. Use the encryption key to encrypt the data. Store the encrypted data.

C : the KMS GenerateDataKey API to get a data key. Encrypt the data with the data key. Store the encrypted data key and data.

D : load the data to an S3 bucket using server side-encryption with an AWS KMS key.

Answer: C

Question 5

A developer is testing Amazon Simple Queue Service (SQS) queues in a development environment. The queue along with all its contents has to be deleted after testing.

Which SQS API should be used for this requirement?

A : RemoveQueue

B : PurgeQueue

C : RemovePermission

D : DeleteQueue

Answer: D

Page: 1 / 194

Total 968 Questions | Updated On: Dec 16, 2025

Add To Cart