• Home
  • Articles
  • Amazon AWS-Developer Premium Exam Engine pdf - Download Free Updated 430 Questions [Q247-Q270]

Amazon AWS-Developer Premium Exam Engine pdf - Download Free Updated 430 Questions [Q247-Q270]

Share

Amazon AWS-Developer Premium Exam Engine pdf - Download Free Updated 430 Questions

Verified AWS-Developer Bundle Real Exam Dumps PDF


For more info read reference:

Amazon Web Services Website Preparation Material


Topics of Amazon AWS-Developer: AWS Certified Developer-Associate Exam

For the candidates to appear in the exam, they need to know the examination contents. And it’s going to help them reach the core. The following contents will be included in the AWS-Developer dumps and AWS-Developer practice exams:

1. Deployment (22%)

This section constitutes of the following subtopics:

  • Serverless application deployment
  • Using existing CI/CD pipelines, processes, and patterns to deploy code in AWS
  • Application deployment package preparation
  • Using Elastic Beanstalk to deploy applications

2. Security (26%)

This section constitutes of the following subtopics:

  • Authenticated calling to services within AWS
  • Using AWS services, enforce encryption
  • Application authorization and authentication implementation

3. Development with AWS Services (30%)

This section constitutes of the following subtopics:

  • Functional requirements translation into the design of apps
  • Serverless application coding
  • Design to code implementation
  • Interactive coding using APIs, SDKs, and AWS CLI

4. Refactoring (10%)

This section constitutes of the following subtopics:

  • Migrate the current code of your application to run on AWS
  • Optimize apps for the best use of AWS services and features

5. Monitoring and Troubleshooting (12%)

  • Writing code that can be tracked
  • Root cause analysis on faults found in testing or production

 

NEW QUESTION 247
An AWS Lambda function must read data from an Amazon RDS MySQL database in a VPC and also reach a public endpoint over the internet to get additional data.
Which steps must be taken to allow the function to access both the RDS resource and the public endpoint?
(Select TWO.)

  • A. Add a NAT Gateway to the VPC.
  • B. Modify the default network access control list to allow outbound traffic.
  • C. Modify the default configuration of the Lambda function to associate it with a VPC public subnet.
  • D. Add an environmental variable to the Lambda function to allow outbound internet access.
  • E. Modify the default configuration for the Lambda function to associate it with an Amazon VPC private subnet.

Answer: A,E

 

NEW QUESTION 248
Regarding Amazon SQS, what happens if there is no activity against a queue for more than 30 consecutive days?

  • A. The queue will be deleted
  • B. Your account will be suspended
  • C. The queue may be deleted
  • D. Nothing

Answer: C

Explanation:
AWS reserve the right to delete a queue if none of the following requests have been issued against the queue for more than 30 consecutive days:
SendMessage
ReceiveMessage
DeleteMessage
GetQueueAttributes
SetQueueAttributes
You should design your application with this in mind.
Reference: https://aws.amazon.com/sqs/faqs/

 

NEW QUESTION 249
TestAWS (with AWS account ID 111122223333) has created 50 IAM users for its organization's employees. TestAWS wants to make the AWS console login URL for all IAM users like:
https://TestAWS.signin.aws.amazon.com/console/. How can this be configured?

  • A. It is not possible to have a personalized IAM login URL
  • B. Create an IAM AWS account alias with the name TestAWS
  • C. Create an IAM hosted zone Identity for the domain TestAWS
  • D. The user needs to use Route 53 to map the TestAWS domain and IAM URL

Answer: B

Explanation:
If a user wants the URL of the AWS IAM sign-in page to have a company name instead of the AWS account ID, he can create an alias for his AWS account ID.
http://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html

 

NEW QUESTION 250
A development team is creating a new application designed to run on AWS. While the test and production environments will run on Amazon EC2 instances, developers will each run their own environment on their laptops.
Which of the following is the simplest and MOST secure way to access AWS services from the local development machines?

  • A. Set up a federation through an Amazon Cognito user pool.
  • B. Create an IAM user to be shared with the entire development team; provide the development team with the access key.
  • C. Use an IAM role to assume a role and execute API calls using the role.
  • D. Create an IAM user for each developer on the team; provide each developer with a unique access key.

Answer: A

 

NEW QUESTION 251
Company D is running their corporate website on Amazon S3 accessed from http//www.companyd.com. Their marketing team has published new web fonts to a separate S3 bucket accessed by the S3 endpoint
https://s3-us-west-1.amazonaws.com/cdfonts. While testing the new web fonts, Company D recognized the web fonts are being blocked by the browser.
What should Company D do to prevent the web fonts from being blocked by the browser?

  • A. Enable versioning on the cdfonts bucket for each web font
  • B. Configure the cdfonts bucket to allow cross-origin requests by creating a CORS configuration
  • C. Create a policy on the cdfonts bucket to enable access to everyone
  • D. Add the Content-MD5 header to the request for webfonts in the cdfonts bucket from the website

Answer: B

 

NEW QUESTION 252
You are managing the AWS account of a big organization. The organization has more than 1000+ employees and they want to provide access to the various services to most of the employees. Which of the below mentioned options is the best possible solution in this case?

  • A. The user should create an IAM role and attach STS with the role. The user should attach that role to the EC2 instance and setup AWS authentication on that server
  • B. Attach an IAM role with the organization's authentication service to authorize each user for various AWS services
  • C. The user should create IAM groups as per the organization's departments and add each user to the group for better access control
  • D. The user should create a separate IAM user for each employee and provide access to them as per the policy

Answer: B

 

NEW QUESTION 253
n on-premises application makes repeated calls to store files to Amazon S3. As usage of the application has increased, "LimitExceeded" errors are being logged.
What should be changed to fix this error?

  • A. Load balance the application to multiple servers.
  • B. Implement exponential backoffs in the application.
  • C. Add a one second delay to each API call.
  • D. Move the application to Amazon EC2.

Answer: B

 

NEW QUESTION 254
A user has not enabled versioning on an S3 bucket. What will be the version ID of the object inside that bucket?

  • A. Blank
  • B. 0
  • C. There will be no version attached
  • D. Null

Answer: D

Explanation:
S3 objects stored in the bucket before the user has set the versioning state have a version ID of null.
When the user enables versioning, the objects in the bucket do not change and their ID remains null.
Reference:
http://docs.aws.amazon.com/AmazonS3/latest/dev/AddingObjectstoVersionSuspendedBuckets.html

 

NEW QUESTION 255
You are building an application in AWS that requires Amazon Elastic MapReduce (Amazon EMR). The
application needs to resolve hostnames in your internal, on-premises Active Directory domain. You update
your DHCP Options Set in the VPC to point to a pair of Active Directory integrated DNS servers running in
your VPC.
Which action is required to support a successful Amazon EMR cluster launch?

  • A. Add a conditional forwarder to the Amazon-provided DNS server.
  • B. Enable seamless domain join for the Amazon EMR cluster.
  • C. Configure an Amazon Route 53 private zone for the EMR cluster.
  • D. Launch an AD connector for the internal domain.

Answer: B

Explanation:
Explanation/Reference:
References: https://aws.amazon.com/blogs/security/how-to-connect-your-on-premises-active-directory-to-
aws-using-ad-connector/

 

NEW QUESTION 256
A Developer has created a Lambda function and is finding that the function is taking longer to complete than expected. After some debugging, the Developer has discovered that increasing compute capacity would improve performance.
How can the Developer increase the Lambda compute resources?

  • A. Increase the maximum execution time.
  • B. Increase the allocated memory for the Lambda function.
  • C. Run on a larger instance size with more compute capacity.
  • D. Specify a larger compute capacity when calling the Lambda function.

Answer: B

 

NEW QUESTION 257
A Developer is writing a Linux-based application to run on AWS Elastic Beanstalk. Application requirements state that the application must maintain full capacity during updates while minimizing cost.
Which type of Elastic Beanstalk deployment policy should the Developer specify for the environment?

  • A. Rolling with additional batch
  • B. All at Once
  • C. Rolling
  • D. Immutable

Answer: A

Explanation:
Explanation
https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/using-features.rolling-version-deploy.html

 

NEW QUESTION 258
A company maintains a REST service using Amazon API Gateway and the API Gateway native API key validation. The company recently launched a new registration page, which allows users to sign up for the service. The registration page creates a new API key using CreateApiKey and sends the new key to the user.
When the user attempts to call the API using this key, the user receives a 403 Forbidden error. Existing users are unaffected and can still call the API.
What code updates will grant these new users access to the API?

  • A. The createDeployment method must be called so the API can be redeployed to include the newly created API key.
  • B. The updateAuthorizer method must be called to update the API's authorizer to include the newly created API key.
  • C. The importApiKeys method must be called to import all newly created API keys into the current stage of the API.
  • D. The createUsagePlanKey method must be called to associate the newly created API key with the correct usage plan.

Answer: D

Explanation:
Explanation
https://stackoverflow.com/questions/39061041/using-an-api-key-in-amazon-api-gateway

 

NEW QUESTION 259
How should custom libraries be utilized in AWS Lambda?

  • A. Modify the function runtime to include the necessary library.
  • B. Install the library locally and upload a ZIP file of the Lambda function.
  • C. Host the library on Amazon S3 and reference to it from the Lambda function.
  • D. Import the necessary Lambda blueprint when creating the function.

Answer: A

 

NEW QUESTION 260
A bucket owner has allowed another account's IAM users to upload or access objects in his bucket.
The IAM user of Account A is trying to access an object created by the IAM user of account B.
What will happen in this scenario?

  • A. The bucket policy may not be created as S3 will give error due to conflict of Access Rights
  • B. It is not possible that the IAM user of one account accesses objects of the other IAM user
  • C. AWS S3 will verify proper rights given by the owner of Account A, the bucket owner as well as by the
    IAM user B to the object
  • D. It is not possible to give permission to multiple IAM users

Answer: C

Explanation:
If a IAM user is trying to perform some action on an object belonging to another AWS user's bucket, S3
will verify whether the owner of the IAM user has given sufficient permission to him. It also verifies the
policy for the bucket as well as the policy defined by the object owner.
Reference:
http://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-auth-workflow-object-operation.html

 

NEW QUESTION 261
A company provides APIs as a service and commits to a service level agreement (SLA) with all its users.
To comply with each SLA, what should the company do?

  • A. Enable default throttling limits for each stage after deploying the APIs
  • B. Create a usage plan for each user and request API keys to access the APIs
  • C. Enable throttling limits for each method in Amazon API Gateway
  • D. Enable API rate limiting in Amazon Cognito for each user

Answer: A

 

NEW QUESTION 262
A web application is designed to allow new users to create accounts using their email addresses. The application will store attributes for each user, and is expecting millions of user to sign up.
What should the Developer implement to achieve the design goals?

  • A. Amazon Cognito user pools
  • B. AWS Mobile Hub user data storage
  • C. Amazon Cognito Sync
  • D. AWS Mobile Hub cloud logic

Answer: A

Explanation:
Explanation/Reference: https://aws.amazon.com/cognito/

 

NEW QUESTION 263
A user is launching an AWS RDS instance with MySQL. The user wants to enable the Multi AZ feature. Which of the below mentioned parameters will not be allowed to configure by RDS?

  • A. DB subnet group
  • B. Region
  • C. Availability Zone
  • D. Database port

Answer: C

Explanation:
If the user is launching RDS with Multi AZ the user cannot provision the Availability Zone. RDS is launched automatically instead
https://console.aws.amazon.com/rds/

 

NEW QUESTION 264
A user is planning to use the AWS RDS with MySQL. Which of the below mentioned services the user is not going to pay?

  • A. I/O requests per month
  • B. Data transfer
  • C. RDS Cloudwatch metrics
  • D. Data storage

Answer: C

Explanation:
RDS charges the user on a pay as you go basis. It charges the user based on the instance type, number of hours that the instance is running, data transfer, storage cost as well for the I/O requests. The monitoring is free of cost.
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html

 

NEW QUESTION 265
Which EC2 API call would you use to retrieve a list of Amazon Machine Images (AMIs)?

  • A. GetAMls
  • B. You cannot retrieve a list of AMIs as there are over 10,000 AMIs
  • C. DescnbeInstances
  • D. DescribeImages
  • E. DescribeAMls

Answer: D

Explanation:
Explanation
https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeImages.html Describes the specified images (AMIs, AKIs, and ARIs) available to you or all of the images available to you.

 

NEW QUESTION 266
A corporate web application is deployed within an Amazon VPC, and is connected to the corporate data center via IPSec VPN. The application must authenticate against the on-premise LDAP server. Once authenticated, logged-in users can only access an S3 keyspace specific to the user.
Which two approaches can satisfy the objectives? Choose 2 answers

  • A. Develop an identity broker which authenticates against IAM Security Token Service to assume an IAM Role to get temporary AWS security credentials. The application calls the identity broker to get AWS temporary security credentials with access to the appropriate S3 bucket.
  • B. The application authenticates against IAM Security Token Service using the LDAP credentials. The application uses those temporary AWS security credentials to access the appropriate S3 bucket.
  • C. Develop an identity broker which authenticates against LDAP, and then calls IAM Security Token Service to get IAM federated user credentials. The application calls the identity broker to get IAM federated user credentials with access to the appropriate S3 bucket.
  • D. The application authenticates against LDAP. The application then calls the IAM Security Service to login to IAM using the LDAP credentials. The application can use the IAM temporary credentials to access the appropriate S3 bucket.
  • E. The application authenticates against LDAP, and retrieves the name of an IAM role associated with the user. The application then calls the IAM Security Token Service to assume that IAM Role. The application can use the temporary credentials to access the appropriate S3 bucket.

Answer: C,E

Explanation:
Explanation
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_request.html

 

NEW QUESTION 267
A company maintains a REST service using Amazon API Gateway and the API Gateway native API key validation. The company recently launched a new registration page, which allows users to sign up for the service. The registration page creates a new API key using CreateApiKey and sends the new key to the user.
When the user attempts to call the API using this key, the user receives a 403 Forbidden error. Existing users are unaffected and can still call the API.
What code updates will grant these new users access to the API?

  • A. The createDeployment method must be called so the API can be redeployed to include the newly created API key.
  • B. The updateAuthorizer method must be called to update the API's authorizer to include the newly created API key.
  • C. The createUsagePlanKey method must be called to associate the newly created API key with the correct usage plan.
  • D. The importApiKeys method must be called to import all newly created API keys into the current stage of the API.

Answer: D

 

NEW QUESTION 268
A company has developed a new serverless application using AWS Lambda functions that will be deployed using the AWS Serverless Application Model (AWS SAM) CLI Which step should the developer complete prior to deploying the application?

  • A. Test the new AWS Lambda function by first tracing it in AWS X-Ray.
  • B. Compress the application to a zip file and upload it into AWS Lambda
  • C. Create the application environment using the eb create my-env command.
  • D. Bundle the serverless application using a SAM package

Answer: A

 

NEW QUESTION 269
In regard to DynamoDB, for which one of the following parameters does Amazon not charge you?

  • A. Cost per provisioned read units
  • B. Storage cost
  • C. Cost per provisioned write units
  • D. I/O usage within the same Region

Answer: D

Explanation:
In DynamoDB, you will be charged for the storage and the throughput you use rather than for the I/O which has been used.
Reference: http://aws.amazon.com/dynamodb/pricing/

 

NEW QUESTION 270
......

Pass Your Amazon Exam with AWS-Developer Exam Dumps: https://www.2pass4sure.com/AWS-Certified-Developer/AWS-Developer-actual-exam-braindumps.html

AWS-Developer Dumps PDF New [2021] Ultimate Study Guide: https://drive.google.com/open?id=1SsusgFxYb41D31eO6V3Jca19H_lYInIU 

Related Articles

more
Amazon AWS-Developer Certification Practice Exam