A developer is creating a Java application that will store sensitive data in an Amazon DynamoDB table.The data must be encrypted at all times.How can the developer meet this requirement?Read More →
A Developer has been asked to make changes to the source code of an AWS Lambda function.The function is managed using an AWS CloudFormation template.The template is configured to load the source code from an Amazon S3 bucket.The Developer manually created a .ZIP file deployment package containing the changes and put the file into the correct location on Amazon S3.When the function is invoked, the code changes have not been applied.What step is required to update the function with the changes?Read More →
A government agency deploys a REST application on AWS.The agency integrates the application with AWS Lambda.The agency accesses the application through Amazon API Gateway.The agency has the following policies:• Number versions to manage the deployment of all Lambda functions to production• Create a PROD alias to point to each function• Reference the PROD aliases in the production stages of API GatewayOne Lambda function contains the environment variables that are used to externalize connection parameters.The PROD alias points to version 10 of the Lambda function.A developer needs to update the connection parameters and ensure that the updated Lambda function is available on production.Which solution will meet these requirements?Read More →
A company’s developer is creating an application that uses Amazon API Gateway.The company wants to ensure that only users in the Sales department can use the application.The users authenticate to the application by using federated credentials from a third-party identity provider (ldP) through Amazon Cognito.The developer has set up an attribute mapping to map an attribute that is named Department and to pass the attribute to a custom AWS Lambda authorizer.To test the access limitation, the developer sets their department to Engineering in the IdP and attempts to log in to the application.The developer is denied access.The developer then updates their department to Sales in the IdP and attempts to log in.Again, the developer is denied access.The developer checks the logs and discovers that access is being denied because the developer’s access token has a department value of Engineering.Which of the following is a possible reason that the developer’s department is still being reported as Engineering instead of Sales?Read More →
A developer is creating an AWS Lambda function to process streaming data from an Amazon Kinesis data stream.When the Lambda function parses the data and encounters a malformed record from the stream, the Lambda function exits with an error.The developer is observing duplicate records downstream from the function.When the developer uses a different client to examine the Kinesis data stream output, no duplicate records are visible in the stream.What is the reason for the duplicate records?Read More →
A business intelligence application runs on Amazon Elastic Container Service (Amazon ECS) on AWS Fargate.Application-level audits require a searchable log of all API calls from users to the application.The application’s developers must store the logs centrally on AWS.Which solution will meet these requirements?Read More →
A company hosts a client-side web application for one of its subsidiaries on Amazon S3.The web application can be accessed through Amazon CloudFront from https://www.example.com.After a successful rollout, the company wants to host three more client-side web applications for its remaining subsidiaries on three separate S3 buckets.To achieve this goal, a developer moves all the common JavaScript files and web fonts to a central S3 bucket that serves the web applications.However, during testing, the developer notices that the browser blocks the JavaScript files and web fonts.What should the developer do to prevent the browser from blocking the JavaScript files and web fonts?Read More →
A company has a new application.The company needs to secure sensitive configuration data such as database connection strings, application license codes, and API keys that the application uses to access external resources.The company must track access to the configuration data for auditing purposes.The resources are managed outside the application.The company is not required to manage rotation of the connection strings, license codes, and API keys in the application.The company must implement a solution to securely store the configuration data and to give the application access to the configuration data.The solution must comply with security best practices.Which solution will meet these requirements MOST cost-effectively?Read More →
A developer deploys a custom application to three Amazon EC2 instances.The application processes messages from an Amazon Simple Queue Service (Amazon SQS) standard queue with default settings.When the developer runs a load test on the Amazon SQS queue, the developer discovers that the application processes many messages multiple times.How can the developer ensure that the application processes each message exactly once?Read More →
A company needs an application that consumes logs from Apache HTTP servers at a large scale with near real-time processing.The logs will vary in size from 300 KB to 500 KB.As part of processing, the company needs to convert the logs to JSON format and then upload the logs to an Amazon OpenSearch Service cluster.Which combination of steps will meet these requirements? (Choose two.)Read More →
© 2025. Tip2Cloud doesn't offer any real exam questions. All questions & answers were supported by AI.