AWS-DA(211-220)

Create a visually appealing image depicting an abstract cloud with technology icons representing AWS services such as Lambda, CloudFront, S3, and EC2, set in a modern, digital style.

AWS Cloud Solutions Quiz

Test your knowledge on AWS Cloud services with this comprehensive quiz designed for developers and cloud enthusiasts. This quiz comprises 10 questions focusing on various AWS services, best practices, and troubleshooting techniques.

Participate to:

Enhance your understanding of AWS services.
Prepare for certification exams.
Challenge your AWS knowledge.

10 Questions2 MinutesCreated by CodingCloud42

Amazon CloudFront is being used by an organization to guarantee that its users have low-latency access to their online application. The business determined that all communication between users and CloudFront, as well as all traffic between CloudFront and the web application, should be encrypted. How are these stipulations to be met? (Select two.)

A. Use AWS KMS to encrypt traffic between CloudFront and the web application.

B. Set the Origin Protocol Policy to ג€HTTPS Onlyג€.

C. Set the Origin's HTTP Port to 443.

D. Set the Viewer Protocol Policy to ג€HTTPS Onlyג€ or ג€Redirect HTTP to HTTPSג€.

E. Enable the CloudFront option Restrict Viewer Access.

A developer is transferring an application from on-premises to AWS. Currently, the program accepts user uploads and stores them to a server-side local directory. All uploads must be preserved and instantly accessible to all instances within an Auto Scaling group. Which strategy will satisfy these criteria?

A. Use Amazon EBS and configure the application AMI to use a snapshot of the same EBS instance on boot.

B. Use Amazon S3 and rearchitect the application so all uploads are placed in S3.

C. Use instance storage and share it between instances launched from the same Amazon Machine Image (AMI).

D. Use Amazon EBS and file synchronization software to achieve eventual consistency among the Auto Scaling group.

The Amazon API Gateway exposes a collection of APIs to clients. The API Gateway has enabled caching for these APIs. Customers have requested an option to clear this cache for each API. What may be done to enable API clients to invalidate the API Cache?

A. Ask customers to use AWS credentials to call the InvalidateCache API.

B. Ask customers to invoke an AWS API endpoint which invalidates the cache.

C. Ask customers to pass an HTTP header called Cache-Control:max-age=0.

D. Ask customers to add a query string parameter called ג€INVALIDATE_CACHEג€ when making an API call.

A programmer is now working on an ecommerce website. The developer want to inspect server logs without having to log in to each application server separately. The website is built in Python and operates on numerous Amazon EC2 instances. It must be extremely available. How can the developer upgrade the program with the fewest possible modifications to fulfill these requirements?

A. Rewrite the application to be cloud native and to run on AWS Lambda, where the logs can be reviewed in Amazon CloudWatch.

B. Set up centralized logging by using Amazon Elasticsearch Service (Amazon ES), Logstash, and Kibana.

C. Scale down the application to one larger EC2 instance where only one instance is recording logs.

D. Install the unified Amazon CloudWatch agent on the EC2 instances. Configure the agent to push the application logs to CloudWatch.

A developer is updating a bespoke application that is currently running on AWS Elastic Beanstalk. What solutions will update the Elastic Beanstalk environment with the new application version after the Developer completes the changes? (Select two.)

A. Package the application code into a .zip file, and upload, then deploy the packaged application from the AWS Management Console

B. Package the application code into a .tar file, create a new application version from the AWS Management Console, then update the environment by using AWS CLI

C. Package the application code into a .tar file, and upload and deploy the packaged application from the AWS Management Console

D. Package the application code into a .zip file, create a new application version from the packaged application by using AWS CLI, then update the environment by using AWS CLI

E. Package the application code into a .zip file, create a new application version from the AWS Management Console, then rebuild the environment by using AWS CLI

A developer has been requested to write an AWS Lambda function that is called whenever objects in an Amazon DynamoDB database are updated. The function has been built, and the Lambda execution role has been granted the necessary permissions. Although Amazon DynamoDB streams have been enabled for the table, the function continues to fail to execute. Which option would allow the Lambda function to be triggered by DynamoDB database updates?

A. Change the StreamViewType parameter value to NEW_AND_OLD_IMAGES for the DynamoDB table

B. Configure event source mapping for the Lambda function

C. Map an Amazon SNS topic to the DynamoDB streams

D. Increase the maximum execution time (timeout) setting of the Lambda function

A developer is debugging connection difficulties between an Amazon Web Services Lambda function and an Amazon EC2 machine running Amazon Linux 2. Even if the Lambda function is enabled to access resources on the EC2 instance's network, the Lambda function and the EC2 instance are unable to interact. How can the developer see the network traffic between the Lambda function and the Amazon Elastic Compute Cloud instance?

A. Inspect the VPC flow logs for network activity.

B. Use the traceroute command on the EC2 instance to check connectivity.

C. Analyze the Amazon CloudWatch metrics for network traffic.

D. Use the telnet command on the EC2 instance to check connectivity.

Amazon API Gateway is used by a business to manage access to a collection of microservices built as AWS Lambda functions. The corporation makes a small breaking update to one of the APIs in response to a bug report. To minimize the effect of the new API's deployment on current customers, the business intends to provide clients six months to transition from v1 to v2. Which strategy should the developer use to deal with this change?

A. Update the underlying Lambda function and provide clients with the new Lambda invocation URL.

B. Use API Gateway to automatically propagate the change to clients, specifying 180 days in the phased deployment parameter.

C. Use API Gateway to deploy a new stage named v2 to the API and provide users with its URL.

D. Update the underlying Lambda function, create an Amazon CloudFront distribution with the updated Lambda function as its origin.

A program may have hundreds of users. Each user may access the application through various devices. The Developer want to give these users unique IDs regardless of the device they are using. Which mechanism should be utilized to generate unique identifiers?

A. Create a user table in Amazon DynamoDB as key-value pairs of users and their devices. Use these keys as unique identifiers.

B. Use IAM-generated access key IDs for the users as the unique identifier, but do not store secret keys.

C. Implement developer-authenticated identities by using Amazon Cognito, and get credentials for these identities.

D. Assign IAM users and roles to the users. Use the unique IAM resource ID as the unique identifier.

A business wishes to transition an imaging service to Amazon EC2 while adhering to industry best practices for security. The photos are obtained and read from an Amazon S3 bucket that is not publicly accessible. What actions should a developer take to ensure compliance with these requirements?

A. Create an IAM user with read-only permissions for the S3 bucket. Temporarily store the user credentials in the Amazon EBS volume of the EC2 instance.

B. Create an IAM user with read-only permissions for the S3 bucket. Temporarily store the user credentials in the user data of the EC2 instance.

C. Create an EC2 service role with read-only permissions for the S3 bucket. Attach the role to the EC2 instance.

D. Create an S3 service role with read-only permissions for the S3 bucket. Attach the role to the EC2 instance.

Unlock and Upgrade

Remove all limits from your Quizzes

AWS-DA(211-220)

AWS Cloud Solutions Quiz

More Quizzes