Free AWS Certified Developer Associate Exam Braindumps

A Developer created a dashboard for an application using Amazon API Gateway, Amazon S3, AWS Lambda, and Amazon RDS. The Developer needs an authentication mechanism allowing a user to sign in and view the dashboard. It must be accessible from mobile applications, desktops, and tablets, and must remember user preferences across platforms.
Which AWS service should the Developer use to support this authentication scenario?

  1. AWS KMS
  2. Amazon Cognito
  3. AWS Directory Service
  4. Amazon IAM

Answer(s): B



A company is building a compute-intensive application that will run on a fleet of Amazon EC2 instances. The application uses attached Amazon EBS disks for storing data. The application will process sensitive information and all the data must be encrypted.What should a Developer do to ensure the data is encrypted on disk without impacting performance?

  1. Configure the Amazon EC2 instance fleet to use encrypted EBS volumes for storing data.
  2. Add logic to write all data to an encrypted Amazon S3 bucket.
  3. Add a custom encryption algorithm to the application that will encrypt and decrypt all data.
  4. Create a new Amazon Machine Image (AMI) with an encrypted root volume and store the data to ephemeral disks.

Answer(s): A


Reference:

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html



A company is launching an ecommerce website and will host the static data in Amazon S3. The company expects approximately 1,000 transactions per second (TPS) for GET and PUT requests in total. Logging must be enabled to track all requests and must be retained for auditing purposes.
What is the MOST cost-effective solution?

  1. Enable AWS CloudTrail logging for the S3 bucket-level action and create a lifecycle policy to move the data from the log bucket to Amazon S3 Glacier in 90 days.
  2. Enable S3 server access logging and create a lifecycle policy to expire the data in 90 days.
  3. Enable AWS CloudTrail logging for the S3 bucket-level action and create a lifecycle policy to expire the data in 90 days.
  4. Enable S3 server access logging and create a lifecycle policy to move the data to Amazon S3 Glacier in 90 days.

Answer(s): C


Reference:

https://docs.aws.amazon.com/AmazonS3/latest/dev/cloudtrail-request-identification.html



A Developer is writing an application in AWS Lambda. To simplify testing and deployments, the Developer needs the database connections string to be easily changed without modifying the Lambda code. How can this requirement be met?

  1. Store the connection string as a secret in AWS Secrets Manager.
  2. Store the connection string in an IAM user account.
  3. Store the connection string in AWS KMS.
  4. Store the connection string as a Lambda layer.

Answer(s): C


Reference:

https://aws.amazon.com/blogs/developer/net-core-configuration-provider-for-aws-systems- manager/



A Developer implemented a static website hosted in Amazon S3 that makes web service requests hosted in Amazon API Gateway and AWS Lambda. The site is showing an error that reads:

“No ‘Access-Control-Allow-Origin’ header is present on the requested resource. Origin ‘null’ is therefore not allowed access.”

What should the Developer do to resolve this issue?

  1. Enable cross-origin resource sharing (CORS) on the S3 bucket.
  2. Enable cross-origin resource sharing (CORS) for the method in API Gateway
  3. Add the Access-Control-Request-Method header to the request
  4. Add the Access-Control-Request-Headers header to the request

Answer(s): B


Reference:

https://forums.aws.amazon.com/thread.jspa?threadID=252972