DVA-C01

A company’s developer is creating an application that uses Amazon API Gateway.The company wants to ensure that only users in the Sales department can use the application.The users authenticate to the application by using federated credentials from a third-party identity provider (ldP) through Amazon Cognito.The developer has set up an attribute mapping to map an attribute that is named Department and to pass the attribute to a custom AWS Lambda authorizer.To test the access limitation, the developer sets their department to Engineering in the IdP and attempts to log in to the application.The developer is denied access.The developer then updates their department to Sales in the IdP and attempts to log in.Again, the developer is denied access.The developer checks the logs and discovers that access is being denied because the developer’s access token has a department value of Engineering.Which of the following is a possible reason that the developer’s department is still being reported as Engineering instead of Sales?Read More →

A government agency deploys a REST application on AWS.The agency integrates the application with AWS Lambda.The agency accesses the application through Amazon API Gateway.The agency has the following policies:• Number versions to manage the deployment of all Lambda functions to production• Create a PROD alias to point to each function• Reference the PROD aliases in the production stages of API GatewayOne Lambda function contains the environment variables that are used to externalize connection parameters.The PROD alias points to version 10 of the Lambda function.A developer needs to update the connection parameters and ensure that the updated Lambda function is available on production.Which solution will meet these requirements?Read More →

A Developer has been asked to make changes to the source code of an AWS Lambda function.The function is managed using an AWS CloudFormation template.The template is configured to load the source code from an Amazon S3 bucket.The Developer manually created a .ZIP file deployment package containing the changes and put the file into the correct location on Amazon S3.When the function is invoked, the code changes have not been applied.What step is required to update the function with the changes?Read More →

A developer is creating a Java application that will store sensitive data in an Amazon DynamoDB table.The data must be encrypted at all times.How can the developer meet this requirement?Read More →

A social media application stores millions of video clips in Amazon S3 and serves them to users across the world.The traffic to the application varies, but access often increases suddenly to more than 10,000 PUT requests and GET requests each second.As the application has grown in popularity, users report poor quality of video streaming.Which solution will provide the LARGEST improvement in performance?Read More →

A developer is building a three-tier web application that should be able to handle a minimum of 5000 requests per minute.Requirements state that the web tier should be completely stateless while the application maintains session state for the users.How can session data be externalized, keeping latency at the LOWEST possible value?Read More →

A company has an AWS Lambda function that reads messages from an Amazon Simple Queue Service (Amazon SQS) queue by using the Amazon SQS API.The Lambda function is not processing all the messages successfully because of random failures of a third-party dependency.A developer needs to improve the reliability of the Lambda function so that the Lambda function will process each message successfully despite the failures of the third-party dependency.Which solution will meet this requirement with the LEAST effort?Read More →

A developer has built an application running on AWS Lambda using AWS Serverless Application Model (AWS SAM).What is the correct sequence of steps to successfully deploy the application?Read More →

A company needs an event-management platform to accept registrations for an upcoming event.The platform must perform a single invocation of an existing AWS Lambda function 10 minutes after a user completes a new account registration.Which solution will meet these requirements?Read More →

A developer is working on an ecommerce website.The developer wants to review server logs without logging in to each of the application servers individually.The website runs on multiple Amazon EC2 instances, is written in Python, and needs to be highly available.How can the developer update the application to meet these requirements with MINIMUM changes?Read More →