Amazon-Web-Services DVA-C01 Tutorials 2021

NEW QUESTION 1
An orgAMzation is having an application which can start and stop an EC2 instance as per schedule. The orgAMzation needs the MAC address of the instance to be registered with its software. The instance is launched in EC2-CLASSIC. How can the orgAMzation update the MAC registration every time an instance is booted?

• A. The instance MAC address never change
• B. Thus, it is not required to register the MAC address every time.
• C. The orgAMzation should write a boot strapping script which will get the MAC address from the instance metadata and use that script to register with the application.
• D. AWS never provides a MAC address to an instance; instead the instance ID is used for identifying the instance for any software registration.
• E. The orgAMzation should provide a MAC address as a part of the user dat
• F. Thus, whenever the instance is booted the script assigns the fixed MAC address to that instance.

Answer: B

Explanation:
AWS provides an on demand, scalable infrastructure. AWS EC2 allows the user to launch On-Demand instances. AWS does not provide a fixed MAC address to the instances launched in EC2-CLASSIC. If the instance is launched as a part of EC2-VPC, it can have an ENI which can have a fixed MAC. However, with EC2-CLASSIC, every time the instance is started or stopped it will have a new MAC address.
To get this MAC, the orgAMzation can run a script on boot which can fetch the instance metadata and get the MAC address from that instance metadata. Once the MAC is received, the orgAMzation can register that MAC with the software.
Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AESDG-chapter-instancedata.html

NEW QUESTION 2
A user has attached one RDS security group with 5 RDS instances. The user has changed the ingress rule for the security group. What will be the initial status of the ingress rule?

• A. Approving
• B. Implementing
• C. Authorizing
• D. It is not possible to assign a single group to multiple DB instances

Answer: C

Explanation:
When the user makes any changes to the RDS security group the rule status will be authorizing for some time until the changes are applied to all instances that the group is connected with. Once the changes are propagated the rule status will change to authorized.
Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithSecurityGroups.html

NEW QUESTION 3
What is the maximum number of S3 Buckets available per AWS account?

• A. 100 per region
• B. there is no limit
• C. 100 per account
• D. 500 per account
• E. 100 per IAM user

Answer: C

NEW QUESTION 4
Company A has an S3 bucket containing premier content that they intend to make available to only paid subscribers of their website. The S3 bucket currently has default permissions of all objects being private to prevent inadvertent exposure of the premier content to non-paying website visitors. How can Company A provide only paid subscribers the ability to download a premier content file in the S3 bucket?

• A. Apply a bucket policy that grants anonymous users to download the content from the S3 bucket
• B. Generate a pre-signed object URL for the premier content file when a paid subscriberrequests adownload
• C. Add a bucket policy that requires Multi-Factor Authentication for requests to access the S3 bucket objects
• D. Enable server side encryption on the S3 bucket for data protection against the non-paying website visitors

Answer: B

NEW QUESTION 5
In DynamoDB, what type of HTTP response codes indicate that a problem was found with the client request sent to the service?

• A. 5xx HTTP response code
• B. 200 HTTP response code
• C. 306 HTTP response code
• D. 4xx HTTP response code

Answer: D

NEW QUESTION 6
In regard to DynamoDB, for which one of the following parameters does Amazon not charge you?

• A. Cost per provisioned write units
• B. Cost per provisioned read units
• C. Storage cost
• D. I/O usage within the same Region

Answer: D

Explanation:
In DynamoDB, you will be charged for the storage and the throughput you use rather than for the I/O which has been used.
Reference: http://aws.amazon.com/dynamodb/pricing/

NEW QUESTION 7
In DynamoDB, a secondary index is a data structure that contains a subset of attributes from a table, along with an alternate key to support operations.

• A. None of the above
• B. Both
• C. Query
• D. Scan

Answer: C

Explanation:
In DynamoDB, a secondary index is a data structure that contains a subset of attributes from a table, along with an alternate key to support Query operations.
Reference: http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Secondarylndexes.htmI

NEW QUESTION 8
Is it possible to create an S3 bucket accessible only by a certain IAM user, using policies in a C|oudFormation template?

• A. No, you can only create the S3 bucket but not the IAM user.
• B. S3 is not supported by CIoudFormation.
• C. Yes, all these resources can be created using a CIoudFormation template
• D. No, in the same template you can only create the S3 bucket and the realtive polic

Answer: C

Explanation:
With AWS Identity and Access Management (IAM), you can create IAM users to control who has access to which resources in your AWS account. You can use IAM with AWS CIoudFormation to control what AWS CIoudFormation actions users can perform, such as view stack templates, create stacks, or delete stacks.
In addition to AWS CIoudFormation actions, you can manage what AWS services and resources are available to each user.

NEW QUESTION 9
You are inserting 1000 new items every second in a DynamoDB table. Once an hour these items are analyzed and then are no longer needed. You need to minimize provisioned throughput, storage, and API calls.
Given these requirements, what is the most efficient way to manage these Items after the analysis?

• A. Retain the items in a single table
• B. Delete items indMdually over a 24 hour period
• C. Delete the table and create a new table per hour
• D. Create a new table per hour

Answer: C

NEW QUESTION 10
What is one key difference between an Amazon EBS-backed and an instance-store backed instance?

• A. Virtual Private Cloud requires EBS backed instances
• B. Amazon EBS-backed instances can be stopped and restarted
• C. Auto scaling requires using Amazon EBS-backed instances.
• D. Instance-store backed instances can be stopped and restarte

Answer: B

NEW QUESTION 11
When uploading an object, what request header can be explicitly specified in a request to Amazon S3 to encrypt object data when saved on the server side?

• A. x-amz-storage-class
• B. Content-MD5
• C. x-amz-security-token
• D. x-amz-server-side-encryption

Answer: D

NEW QUESTION 12
An Amazon S3 bucket, "myawsbucket" is configured with website hosting in Tokyo region, what is the region-specific website endpoint?

• A. www.myawsbucket.ap-northeast-1.amazonaws.com
• B. myawsbucket.s3-website-ap-northeast-I.amazonawscom
• C. myawsbucket.amazonaws.com
• D. myawsbucket.tokyo.amazonaws.com

Answer: B

NEW QUESTION 13
Does AWS CIoudFormation support Amazon EC2 tagging?

• A. It depends if the Amazon EC2 tagging has been defined in the template.
• B. No, it doesn’t support Amazon EC2 tagging.
• C. No, CIoudFormation doesn’t support any tagging
• D. Yes, AWS CIoudFormation supports Amazon EC2 tagging

Answer: D

Explanation:
In AWS CIoudFormation, Amazon EC2 resources that support the tagging feature can also be tagged in an AWS template. The tag values can refer to template parameters, other resource names, resource attribute values (e.g. addresses), or values computed by simple functions (e.g., a concatenated list of strings).
Reference: http://aws.amazon.com/c|oudformation/faqs/

NEW QUESTION 14
A user has created an EBS instance in the US-East-1a AZ. The user has a volume of 30 GB in the US-East-1 b zone. How can the user attach the volume to an instance?

• A. Since both the volume and the instance are in the same region, the user can attach the volume
• B. Use the volume migrate function to move the volume from one AZ to another and attach to the instance
• C. Take a snapshot of the volum
• D. Create a new volume in the USEast-1a and attach that to the instance
• E. Use the volume replicate function to create a new volume in the US-East-1a and attach that to the volume

Answer: C

Explanation:
If an EBS volume is not in the same AZ of an EC2 instance, it cannot be attached to the instance. The only option is to take a snapshot of the volume and create a new volume in the instance’s AZ. Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSSnapshots.htmI

NEW QUESTION 15
Your manager has requested you to tag EC2 instances to orgAMze and manage a load balancer. Which of the following statements about tag restrictions is incorrect?

• A. The maximum key length is 127 Unicode characters.
• B. The maximum value length is 255 Unicode characters.
• C. Tag keys and values are case sensitive.
• D. The maximum number of tags per load balancer is 20.

Answer: D

Explanation:
Tags help you to categorize your load balancers in different ways, for example, by purpose, owner, or environment. The following basic restrictions apply to tags: The maximum number of tags per resource is
10. The maximum key length is 127 Unicode characters. The maximum value length that can be used is 255 Unicode characters. The tag keys and values are case sensitive. Allowed characters are letters, spaces, and numbers representable in UTF-8, plus the following special characters: + - =. _ : / @. Do not use leading or trailing spaces. Do not use the aws: prefix in your tag names or values because it is reserved for AWS use. You can't edit or delete tag names or values with this prefix. Tags with this prefix do not count against your tags per resource limit.
Reference:
http://docs.aws.amazon.com/EIasticLoadBaIancing/latest/DeveIoperGuide/add-remove-tags.htmI#tag-res trictions

NEW QUESTION 16
A user has enabled the automated backup, but not specified the backup window. What will RDS do in this case?

• A. Will throw an error on instance launch
• B. RDS will take 3 AM — 3:30 AM as the default window
• C. RDS assigns a random time period based on the region
• D. Will not allow to launch a DB instance

Answer: C

Explanation:
If the user does not specify a preferred backup window while enabling an automated backup, Amazon RDS assigns a default 30-minute backup window which is selected at random from an 8-hour block of
time per region. Reference:
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.BackingUpAndRestoringAmazonR DSInstances.htmI

NEW QUESTION 17
What is the maximum time messages can be stored in SQS?

• A. 14 days
• B. one month
• C. 4 days
• D. 7 days

Answer: A

Explanation:
A message can be stored in the Simple Queue Service (SQS) from 1 minute up to a maximum of 14 days. Reference: http://aws.amazon.com/sqs/faqs/#How_Iong_can_I_keep_my_messages_in_Amazon_SQS_queues

NEW QUESTION 18
A user has launched an EC2 instance and installed a website with the Apache webserver. The webserver is running but the user is not able to access the website from the internet. What can be the possible reason for this failure?

• A. The security group of the instance is not configured properly.
• B. The instance is not configured with the proper key-pairs.
• C. The Apache website cannot be accessed from the internet.
• D. Instance is not configured with an elastic I

Answer: A

Explanation:
In Amazon Web Services, when a user has configured an instance with Apache, the user needs to ensure that the ports in the security group are opened as configured in Apache config. E.g. If Apache is running on port 80, the user should open port 80 in the security group.
Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-network-security.html

NEW QUESTION 19
The AWS console for DynamoDB enables you to do all the following operations, except:

• A. Set up alarms to monitor your tabIe's capacity usage.
• B. Create, update, and delete tables.
• C. Import Data from other databases or from files.
• D. View your tabIe's top monitoring metrics on real-time graphs from CIoudWatc

Answer: C

Explanation:
The AWS console for DynamoDB enables you to do all the above operation but not Importing Data from other databases or from files and it is not possible to do it.
Reference: http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/ConsoIeDynamoDB.html

NEW QUESTION 20
In relation to Amazon SQS, how many queues and messages can you have per queue for each user?

• A. Unlimited
• B. 10
• C. 256
• D. 500

Answer: A

Explanation:
Amazon SQS supports an unlimited number of queues and unlimited number of messages per queue for each user. Please be aware that Amazon SQS automatically deletes messages that have been in the queue for more than 4 days.
Reference: https://aws.amazon.com/items/1343?externaIID=1343

NEW QUESTION 21
A bucket owner has allowed another account’s IAM users to upload or access objects in his bucket. The IAM user of Account A is trying to access an object created by the IAM user of account B. What will happen in this scenario?

• A. The bucket policy may not be created as S3 will give error due to conflict of Access Rights
• B. It is not possible to give permission to multiple IAM users
• C. AWS S3 will verify proper rights given by the owner of Account A, the bucket owner as well as by the IAM user B to the object
• D. It is not possible that the IAM user of one account accesses objects of the other IAM user

Answer: C

Explanation:
If a IAM user is trying to perform some action on an object belonging to another AWS user’s bucket, S3 will verify whether the owner of the IAM user has given sufficient permission to him. It also verifies the policy for the bucket as well as the policy defined by the object owner.
Reference:
http://docs.aws.amazon.com/AmazonS3/Iatest/dev/access-control-auth-workflow-object-operation.htmI

NEW QUESTION 22
You are using Amazon SQS and are getting a "Queue Deleted RecentIy" error. What is wrong?

• A. The message is too big
• B. You have incorrect permissions
• C. Another user has deleted the queue
• D. If you delete a queue, you need to wait for at least 60 seconds before creating a queue with the same name

Answer: D

Explanation:
If you delete a queue, you need to wait for at least 60 seconds before creating a queue with the same name. Please note that when you delete a queue, the deletion process takes up to 60 seconds. Requests you send to a recently deleted queue might succeed during the 60-second period. For example, a SendlVIessage request might succeed, but after 60 seconds the queue and that message you sent no longer exists.
Reference: https://aws.amazon.com/items/1343?externaI|D=1343

NEW QUESTION 23
How can software determine the public and private IP addresses of the Amazon EC2 instance that it is running on?

• A. Query the appropriate Amazon CIoudWatch metric.
• B. Use ipconfig or ifconfig command.
• C. Query the local instance userdata.
• D. Query the local instance metadat

Answer: D

NEW QUESTION 24
Which of the following statements about SQS is true?

• A. Messages will be delivered exactly once and messages will be delivered in First in, First out order
• B. Messages will be delivered exactly once and message delivery order is indeterminate
• C. Messages will be delivered one or more times and messages will be delivered in First in, First out order
• D. Messages will be delivered one or more times and message delivery order is indeterminate

Answer: D

NEW QUESTION 25
A user is trying to understand AWS SNS. To which of the below mentioned end points is SNS unable to send a notification?

• A. AWS SES
• B. Email JSON
• C. AWS SQS
• D. HTTP

Answer: A

Explanation:
Amazon Simple Notification Service (Amazon SNS) is a fast, filexible, and fully managed push messaging service. Amazon SNS can deliver notifications by SMS text message or email to the Amazon Simple Queue Service (SQS) queues or to any HTTP endpoint. The user can select one the following
transports as part of the subscription requests: "HTTP", "HTTPS","Emai|", "EmaiI-JSON", "SQS", "and SMS".
Reference: http://aws.amazon.com/sns/faqs/

NEW QUESTION 26
......