• ホーム
  • ブログ
  • 最新 [2022年01月29日] 100%合格率を保証します素晴らしいDVA-C01試験問題PDF [Q176-Q198]

最新 [2022年01月29日] 100%合格率を保証します素晴らしいDVA-C01試験問題PDF [Q176-Q198]

Share

最新 [2022年01月29日] 100%合格率を保証します素晴らしいDVA-C01試験問題PDF

DVA-C01認定有効な試験問題集解答で学習ガイド!(最新の502問題)


Amazon DVA-C01 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Database Service (RDS) vs. Installing Your Own Database on Amazon Elastic Compute Cloud (EC2))
トピック 2
  • Shared Security Responsibility Model, AWS Platform Compliance, AWS Security Attributes (Customer Workloads Down to Physical Layer)
トピック 3
  • Deployment and Security
  • Recognize and Implement Secure Procedures for Optimum Cloud Deployment and Maintenance, Cloud Security Best Practices
トピック 4
  • AWS Fundamentals
  • Identify and Recognize Cloud Architecture Considerations, Such as Fundamental Components and Effective Designs
トピック 5
  • Demonstrate Ability to Implement the Right Architecture for Development, Testing, and Staging Environments
トピック 6
  • Security Services, AWS Identity and Access Management (IAM), Amazon Virtual Private Cloud (VPC), CIA and AAA models, Ingress vs. Egress Filtering

 

質問 176
A Developer wants to use AWS X-Ray to trace a user request end-to-end throughput the software stack. The Developer made the necessary changes in the application tested it, and found that the application is able to send the traces to AWS X-Ray. However, when the application is deployed to an EC2 instance, the traces are not available.
Which of the following could create this situation? (Select two.)

  • A. The X-Ray endpoint specified in the application configuration is incorrect.
  • B. The traces are reaching X-Ray, but the Developer does not have access to view the records.
  • C. The instance role does not have "xray:PutTraceSegments" and "xray:PutTelemetryRecords" permissions.
  • D. The X-Ray daemon is not installed on the EC2 instance.
  • E. The instance role does not have "xray:BatchGetTraces" and "xray:GetTraceGraph" permissions.

正解: C,D

 

質問 177
A company is launching a poling application. The application will store the results of each pool an Amazon DynamoDB table. Management wants to remove pool data after a few data and store an archive of those records in Amazon S3.
Which approach would allow the application to archive each poll's data while keeping complexity to a MINIMUM?

  • A. Enable Time to Live (TTL) on the DynamoDB table. Enable DynamoDB Streams on the table and store the records removed from the stream in Amazon S3.
  • B. Schedule an AWS Lambda function to periodically scan the DynamoDB table. Use the BatchWritten operation to delete the results of a scan Enable DynamoDB Stream on the table and store the records removed from the stream in Amazon S3.
  • C. Enable cross-Region replication on the S3 bucket to achieve the poll data.
  • D. Enable DynamoDB Streams on the table. Configure the steam as trigger for AWS Lambda. Save records to Amazon S3 when records on the stream are modified.

正解: D

 

質問 178
A Developer is working on an application that handles 10MB documents that contain highly-sensitive data.
The application will use AWS KMS to perform client-side encryption.
What steps must be followed?

  • A. Invoke the Encrypt API passing the plaintext data that must be encrypted, then reference the customer managed key ARN in the KeyId parameter
  • B. Invoke the GenerateDataKey API to retrieve the encrypted version of the data encryption key to encrypt the data
  • C. Invoke the GenerateDataKey API to retrieve the plaintext version of the data encryption key to encrypt the data
  • D. Invoke the GenerateRandom API to get a data encryption key, then use the data encryption key to encrypt the data

正解: C

解説:
Explanation
https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html GenerateDataKey API: Generates a unique data key. This operation returns a plaintext copy of the data key and a copy that is encrypted under a customer master key (CMK) that you specify. You can use the plaintext key to encrypt your data outside of KMS and store the encrypted data key with the encrypted data.

 

質問 179
A Developer has been asked to create an AWS Lambda function that is triggered any time updates are made to items in an Amazon DynamoDB table. The function has been created, and appropriate permissions have been added to the Lambda execution role. Amazon DynamoDB streams have been enabled for the table, but the function is still not being triggered.
Which option would enable DynamoDB table updates to trigger the Lambda function?

  • A. Configure event source mapping for the Lambda function
  • B. Change the StreamViewType parameter value to NEW_AND_OLD_IMAGES for the DynamoDB table
  • C. increase the maximum execution time (timeout) setting of the Lambda function
  • D. Map an Amazon SNS topic to the DynamoDB streams

正解: A

 

質問 180
A company uses Amazon DynamoDB for managing and tracking orders. The DynamoDB table is partitioned based on the order date. The company receives a huge increase in orders during a sales event, causing DynamoDB writes to throttle, and the consumed throughput is far below the provisioned throughput.
According to AWS best practices, how can this issue be resolved with MINIMAL costs?

  • A. Add a global secondary index to the DynamoDB table.
  • B. Create a new DynamoDB table for every order date.
  • C. Add a random number suffix to the partition key values.
  • D. Increase the read and write capacity units of the DynamoDB table.

正解: C

解説:
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/bp-partition-key-uniform-load.html

 

質問 181
A company requires objects that are stored in Amazon S3 to be encrypted. The company is currently using server-side encryption with AWS KMS managed encryption keys (SSE-KMS) A developer needs to optimize the cost-effectiveness of the encryption mechanism without negatively affecting performance What should the developed to meet these requirements'?

  • A. Use a custom policy to limit the number of AWS KMS calls that are allowed
  • B. Use S3 bucket policies to limit the principals who can create objects.
  • C. Configure the S3 bucket to use an S3 Bucket Key for SSE-KMS
  • D. Change the encryption type to customer-provided keys

正解: C

 

質問 182
Company D is running their corporate website on Amazon S3 accessed from http//www.companyd.com. Their marketing team has published new web fonts to a separate S3 bucket accessed by the S3 endpoint https://s3-us-west-1.amazonaws.com/cdfonts. While testing the new web fonts, Company D recognized the web fonts are being blocked by the browser.
What should Company D do to prevent the web fonts from being blocked by the browser?

  • A. Enable versioning on the cdfonts bucket for each web font
  • B. Configure the cdfonts bucket to allow cross-origin requests by creating a CORS configuration
  • C. Add the Content-MD5 header to the request for webfonts in the cdfonts bucket from the website
  • D. Create a policy on the cdfonts bucket to enable access to everyone

正解: B

解説:
https://docs.aws.amazon.com/AmazonS3/latest/dev/cors.html

 

質問 183
A Developer is building a web application that uses Amazon API Gateway to expose an AWS Lambda function to process requests from clients. During testing, the Developer notices that the API Gateway times out even though the Lambda function finishes under the set time limit.
Which of the following API Gateway metrics in Amazon CloudWatch can help the Developer troubleshoot the issue? (Choose two.)

  • A. CacheMissCount
  • B. Latency
  • C. Count
  • D. CacheHitCount
  • E. IntegrationLatency

正解: A,E

解説:
Explanation
https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-metrics-and-dimensions.html

 

質問 184
A developer supports an application that accesses data in an Amazon DynamoDB table One of the item attributes is expirationDate In the timestamp format The application uses this attribute to find items archive them and remove them from the table based on the timestamp value The application will be decommissioned soon, and the developer must find another way to implement this functionality The developer needs a solution that will require the least amount of code to write.
Which solution will meet these requirements?

  • A. Enable TTL on the expirationDate attribute in the table Specify an Amazon Simple Queue Service (Amazon SQS) dead-letter queue as the target to delete the items Create an AWS Lambda function to process the items.
  • B. Create two AWS Lambda functions one to delete the items and one to process the items Create a DynamoDB stream Use the Deleteltem API operation to delete the items based on the expirationDate attribute Use the GetRecords API operation to get the items from the DynamoDB stream and process them
  • C. Create two AWS Lambda functions one to delete the items and one to process the items Create an Amazon EventBridge (Amazon CloudWatch Events) scheduled rule to invoke the Lambda functions Use the Deleteltem API operation to delete the items based on the expirationDate attribute Use the GetRecords API operation to get the items from the DynamoDB table and process them
  • D. Enable TTL on the expirationDate attribute in the table. Create a DynamoDB stream. Create an AWS Lambda function to process the deleted items. Create a DynamoDB trigger for the Lambda function

正解: C

 

質問 185
A Developer has written a serverless application using multiple AWS services. The business logic is written as a Lambda function which has dependencies on third-party libraries. The Lambda function endpoints will be exposed using Amazon API Gateway. The Lambda function will write the information to Amazon DynamoDB.
The Developer is ready to deploy the application but must have the ability to rollback. How can this deployment be automated, based on these requirements?

  • A. Use an AWS CloudFormation template and use CloudFormation syntax to define the Lambda function resource in the template.
  • B. Use syntax conforming to the Serverless Application Model in the AWS CloudFormation template to define the Lambda function resource.
  • C. Deploy using Amazon Lambda API operations to create the Lambda function by providing a deployment package.
  • D. Create a bash script which uses AWS CLI to package and deploy the application.

正解: B

解説:
Refer AWS documentation - SAM Gradual Code Deployment
If you use AWS SAM to create your serverless application, it comes built-in with AWS CodeDeploy to help ensure safe Lambda deployments. With just a few lines of configuration, AWS SAM does the following for you:
Deploys new versions of your Lambda function, and automatically creates aliases that point to the new version.
Gradually shifts customer traffic to the new version until you're satisfied that it's working as expected, or you roll back the update.
Defines pre-traffic and post-traffic test functions to verify that the newly deployed code is configured correctly and your application operates as expected.
Rolls back the deployment if CloudWatch alarms are triggered.

 

質問 186
The upload of a 15 GB object to Amazon S3 fails. The error message reads: "Your proposed upload exceeds the maximum allowed object size." What technique will allow the Developer to upload this object?

  • A. Contact AWS Support to increase the object size limit.
  • B. Upload the object over an AWS Direct Connect connection.
  • C. Upload the object to another AWS region.
  • D. Upload the object using the multi-part upload API.

正解: D

解説:
https://docs.aws.amazon.com/AmazonS3/latest/dev/UploadingObjects.html

 

質問 187
A nightly batch job loads 1 million new records into a DynamoDB table. The records are only needed for one hour, and the table needs to be empty by the next night's batch job.
Which is the MOST efficient and cost-effective method to provide an empty table?

  • A. With a recursive function that scans and calls out DeleteItem.
  • B. Use BatchWriteItem to empty all of the rows.
  • C. Use DeleteItem using a ConditionExpression.
  • D. Create and then delete the table after the task has completed.

正解: C

 

質問 188
A developer receives the following error message when trying to launch or terminate an Amazon EC2 instance using a boto3 script.

What should the developer do to correct this error message?

  • A. Assign an IAM role to the EC2 instance to allow necessary API calls on behalf of the client.
  • B. Upgrade to the latest AWS CLI version so that boto3 can handle higher request rates
  • C. Increase the overall network bandwidth to handle higher API request rates.
  • D. Implement an exponential backoff algorithm for optimizing the number of API requests made to Amazon EC2.

正解: B

 

質問 189
How can software determine the public and private IP addresses of the Amazon EC2 instance that it is running on?

  • A. Use ipconfig or ifconfig command.
  • B. Query the local instance userdata.
  • C. Query the appropriate Amazon CloudWatch metric.
  • D. Query the local instance metadata.

正解: D

解説:
Explanation
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instancedata-data-categories.html Data: local-hostname Descriptions: The private IPv4 DNS hostname of the instance. In cases where multiple network interfaces are present, this refers to the eth0 device (the device for which the device number is 0).
Data: public-ipv4 Descriptions: The public IPv4 address. If an Elastic IP address is associated with the instance, the value returned is the Elastic IP address.

 

質問 190
An application uploads photos to an Amazon S3 bucket. Each photo that is uploaded to the S3 bucket must be resized to a thumbnail image by the application Each thumbnail image is uploaded with a new name in the same S3 bucket Which AWS service can a developer configure to directly process each single S3 event for each S3 object upload?

  • A. AWS Lambda
  • B. Amazon Elastic Container Service (Amazon ECS)
  • C. AWS Elastic Beanstalk
  • D. Amazon EC2

正解: A

 

質問 191
A developer is provided with an HTTPS clone URL for an AWS CodeCommit repository.
What needs to be configured before cloning this repository?

  • A. Set up the Git credential helper to use an AWS credential profile, and enable the helper to send the path to the repositories.
  • B. Use AWS KMS to set up public and private keys for use with CodeCommit.
  • C. Generate encryption keys using AWS CloudHSM, then export the key for use with AWS CodeCommit.
  • D. Use AWS certificate manager to provision public and private SSL/TLS certificates.

正解: A

解説:
AWS credential profile, and enabling the Git credential helper to send the path to repositories:
Reference:
https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-https-unixes.html

 

質問 192
An application overwrites an object in Amazon S3, and then immediately reads the same object. Why would the application sometimes retrieve the old version of the object?

  • A. The application needs to explicitly specify latest version when retrieving the object.
  • B. All S3 PUTS are eventually consistent, so the application may read the old object.
  • C. S3 overwrite PUTS are eventually consistent, so the application may read the old object.
  • D. The application needs to add extra metadata to label the latest version when uploading to Amazon S3.

正解: C

 

質問 193
A company has a multi-tiered web application on AWS. During a recent spike in traffic, one of the primary relational databases on Amazon RDS could not serve all the traffic. Some read queries for repeatedly accessed items failed, so users received error messages.
What can be done to minimize the impact on database read queries MOST efficiently during future traffic spikes?

  • A. Use Amazon RDS as a custom origin for Amazon CloudFront.
  • B. Use local storage and memory on Amazon EC2 instances to cache data.
  • C. Use Amazon ElastiCache in front of the primary database to cache data.
  • D. Use Amazon S3 to cache database query results.

正解: C

 

質問 194
An ecommerce startup is preparing for an annual sales event As the traffic to the company's application increases, the development team wants to be notified when the Amazon EC2 instance's CPU utilization exceeds 80%.
Which solution will meet this requirement?

  • A. Create a custom AWS CloudTrail alarm that sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%
  • B. Create a custom Amazon CloudWatch alarm that sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%.
  • C. Create an AWS Lambda function that queries the AWS CloudTrail logs for the CPUUtihzation metric every 15 minutes and sends a notification to an Amazon SNS topic when the CPU utilization exceeds 80%
  • D. Create a cron job on the EC2 instance that executes the --describe-instance-information command on the host instance every 15 minutes and sends the results to an Amazon SNS topic

正解: D

 

質問 195
You are providing AWS consulting services for a company developing a new mobile application that will be leveraging Amazon SNS Mobile Push for push notifications. In order to send direct notification messages to individual devices each device registration identifier or token needs to be registered with SNS; however the developers are not sure of the best way to do this.
You advise them to:

  • A. Bulk upload the device tokens contained in a CSV file via the AWS Management Console.
  • B. Call the CreatePlatformEndPoint API function to register multiple device tokens.
  • C. Let the push notification service (e.g. Amazon Device Messaging) handle the registration.
  • D. Implement a token vending service to handle the registration.

正解: B

解説:
Reference:
https://docs.aws.amazon.com/sns/latest/dg/mobile-push-send-devicetoken.html

 

質問 196
How can software determine the public and private IP addresses of the Amazon EC2 instance that it is running on?

  • A. Use ipconfig or ifconfig command.
  • B. Query the local instance userdata.
  • C. Query the appropriate Amazon CloudWatch metric.
  • D. Query the local instance metadata.

正解: D

解説:
Reference:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instancedata-data-categories.html Data: local-hostname Descriptions: The private IPv4 DNS hostname of the instance. In cases where multiple network interfaces are present, this refers to the eth0 device (the device for which the device number is 0). Data: public-ipv4 Descriptions: The public IPv4 address. If an Elastic IP address is associated with the instance, the value returned is the Elastic IP address.

 

質問 197
n on-premises application makes repeated calls to store files to Amazon S3. As usage of the application has increased, "LimitExceeded" errors are being logged.
What should be changed to fix this error?

  • A. Load balance the application to multiple servers.
  • B. Move the application to Amazon EC2.
  • C. Implement exponential backoffs in the application.
  • D. Add a one second delay to each API call.

正解: C

 

質問 198
......

DVA-C01時間限定!無料アクセス:https://www.goshiken.com/Amazon/DVA-C01-mondaishu.html

DVA-C01問題集で2022年最新のAmazon DVA-C01試験問題はここ:https://drive.google.com/open?id=1hs2IhMQDUZxgk2As7RmdBNYGdDulI_sV

関するブログ

もっと
DVA-C01無料問題集