2024 Valid AWS-Developer Real Exam Questions (Updated) 100% Dumps & Practice Exam [Q28-Q53]

2024 Valid AWS-Developer Real Exam Questions (Updated) 100% Dumps & Practice Exam

[UPDATED 2024] Amazon AWS-Developer Questions Prepare with Free Demo of PDF

The Amazon AWS-Developer exam consists of 65 multiple-choice and multiple-answer questions, and candidates have 130 minutes to complete it. AWS-Developer exam is available in English, Japanese, Korean, and Simplified Chinese. The passing score for the AWS Certified Developer - Associate exam is 720 out of 1000. Candidates who pass the exam receive a digital badge and a certificate that they can use to show their AWS expertise to potential employers.

The AWS-Developer exam is a certification exam offered by Amazon Web Services (AWS) for developers seeking to become AWS certified. AWS-Developer exam is designed to test a developer's knowledge and expertise in developing and maintaining AWS-based applications. It covers a range of topics related to AWS development, including core AWS services, AWS security, and best practices for developing and deploying applications on AWS.

 

NEW QUESTION # 28
A company developed a new application that is deployed on Amazon EC2 instances behind an Application Load Balancer. The EC2 instances use the security group named sg-application-servers. The company needs a database to store the data from the application and decides to use an Amazon RDS for MySQL DB instance.
The DB instance is deployed in private DB subnet.
What is the MOST restrictive configuration for the DB instance security group?

• A. Only allow incoming traffic from the subnet of the application servers on port 3306.
• B. Only allow incoming traffic from the sg-application-servers security group on port 3306.
• C. Only allow incoming traffic from the subnet of the application servers on port 443.
• D. Only allow incoming traffic from the sg-application-servers security group on port 443.

Answer: D

NEW QUESTION # 29
A Developer must build an application that uses Amazon DynamoDB. The requirements state that items being stored in the DynamoDB table will be 7KB in size and that reads must be strongly consistent. The maximum read rate is 3 items per second, and the maximum write rate is 10 items per second.
How should the Developer size the DynamoDB table to meet these requirements?

• A. Read: 3 read capacity units
  Write: 10 write capacity units
• B. Read: 3 read capacity units
  Write: 70 write capacity units
• C. Read: 6 read capacity units
  Write: 10 write capacity units
• D. Read: 6 read capacity units
  Write: 70 write capacity units

Answer: D

Explanation:
Explanation
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Limits.html

NEW QUESTION # 30
A Development team would like to migrate their existing application code from a GitHub repository to AWS CodeCommit.
What needs to be created before they can migrate a cloned repository to CodeCommit over HTTPS?

• A. An Amazon EC2 IAM role with CodeCommit permissions
• B. A GitHub secure authentication token
• C. A public and private SSH key file
• D. A set of Git credentials generated from IAM

Answer: D

Explanation:
Explanation
https://docs.aws.amazon.com/codecommit/latest/userguide/how-to-migrate-repository-existing.html

NEW QUESTION # 31
Regarding Amazon SWF, at times you might want to record information in the workflow history of a
workflow execution that is specific to your use case. _________ enable you to record information in the
workflow execution history that you can use for any custom or scenario-specific purpose.

• A. Hash keys
• B. Events
• C. Tags
• D. Markers

Answer: D

Explanation:
In Amazon SWF, at times you might want to record information in the workflow history of a workflow
execution that is specific to your use case. Markers enable you to record information in the workflow
execution history that you can use for any custom or scenario-specific purpose.
Reference: http://docs.aws.amazon.com/amazonswf/latest/developerguide/swf-dg-adv.html

NEW QUESTION # 32
Regarding Amazon SQS, are there restrictions on the names of Amazon SQS queues?

• A. Yes. Queue names must be unique within an AWS account and you cannot use hyphens (-) and
  underscores (_)
• B. No
• C. Yes. Queue names are limited to 80 characters but queue names do not need to be unique within an
  AWS account
• D. Yes. Queue names are limited to 80 characters and queue names must be unique within an AWS
  account

Answer: D

Explanation:
Queue names are limited to 80 characters. Alphanumeric characters plus hyphens (-) and underscores (_)
are allowed. Queue names must be unique within an AWS account. After you delete a queue, you can
reuse the queue name.
Reference: https://aws.amazon.com/sqs/faqs/

NEW QUESTION # 33
A company needs to encrypt data at rest, but it wants to leverage an AWS managed service using its own master key.
Which of the following AWS service can be used to meet these requirements?

• A. AWS IAM roles and policies
• B. SSE with Amazon S3
• C. Client-side encryption
• D. SSE with AWS KMS

Answer: D

NEW QUESTION # 34
In regard to DynamoDB, for which one of the following parameters does Amazon not charge you?

• A. Storage cost
• B. I/O usage within the same Region
• C. Cost per provisioned write units
• D. Cost per provisioned read units

Answer: B

Explanation:
In DynamoDB, you will be charged for the storage and the throughput you use rather than for the I/O
which has been used.
Reference: http://aws.amazon.com/dynamodb/pricing/

NEW QUESTION # 35
A Developer is testing a Docker-based application that uses the AWS SDK to interact with Amazon DynamoDB. In the local development environment, the application has used IAM access keys. The application is now ready for deployment onto an ECS cluster.
How should the application authenticate with AWS services in production?

• A. Configure the credentials file with a new access key/secret access key
• B. Configure AWS access key/secret access key environment variables with new credentials
• C. Refactor the application to call AWS STS AssumeRole based on an instance role
• D. Configure an ECS task IAM role for the application to use

Answer: D

Explanation:
Explanation

NEW QUESTION # 36
A Developer writes an AWS Lambda function and uploads the code in a .ZIP file to Amazon S3. The Developer makes changes to the code and uploads a new .ZIP file to Amazon S3. However, Lambda executes the earlier code.
How can the Developer fix this in the LEAST disruptive way?

• A. Remove the earlier .ZIP file first, then add the new .ZIP file.
• B. Call the create-alias API.
• C. Create another Lambda function and specify the new .ZIP file.
• D. Call the update-function-code API.

Answer: D

NEW QUESTION # 37
Which of the below mentioned options is a must to have an element as a part of the IAM policy?

• A. Version
• B. ID
• C. Statement
• D. Condition

Answer: C

Explanation:
The statement is the main element of the IAM policy and it is a must for a policy. Elements such as condition, version and ID are not required.
Reference:
http://docs.aws.amazon.com/IAM/latest/UserGuide/AccessPolicyLanguage_ElementDescriptions.html

NEW QUESTION # 38
An application deployed on AWS Elastic Beanstalk experiences increased error rates during deployments of new application versions, resulting in service degradation for users. The Development team believes that this is because of the reduction in capacity during the deployment steps. The team would like to change the deployment policy configuration of the environment to an option that maintains full capacity during deployment while using the existing instances.
Which deployment policy will meet these requirements while using the existing instances?

• A. All at once
• B. Rolling
• C. Immutable
• D. Rolling with additional batch

Answer: D

Explanation:
https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/using-features.rolling-version-deploy.html

NEW QUESTION # 39
A Developer needs to design an application running on AWS that will be used to consume Amazon SQS messages that range from 1KB up to 1GB in size.
How should the Amazon SQS messages be managed?

• A. Use Amazon S3 and the Amazon SQS Extended Client Library for Java.
• B. Use Amazon EBS and the Amazon SQS CLI.
• C. Use Amazon EFS and the Amazon SQS CLI.
• D. Use Amazon S3 and the Amazon SQS CLI.

Answer: A

Explanation:
Explanation/Reference: https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs- limits.html

NEW QUESTION # 40
Does DynamoDB support in-place atomic updates?

• A. No
• B. It is not defined
• C. It does support in-place non-atomic updates
• D. Yes

Answer: D

Explanation:
DynamoDB supports in-place atomic updates.

NEW QUESTION # 41
A Developer is creating a template that uses AWS CloudFormation to deploy an application. This application is serverless and uses Amazon API Gateway, Amazon DynamoDB, and AWS Lambda.
Which tool should the Developer use to define simplified syntax for expressing serverless resources?

• A. CloudFormation serverless intrinsic functions
• B. An AWS serverless application model
• C. A CloudFormation serverless plugin
• D. AWS serverless express

Answer: A

NEW QUESTION # 42
Which of the following services are key/value stores? Choose 3 answers

• A. Simple Workflow Service
• B. DynamoDB
• C. Simple Notification Service
• D. Simple Storage Service
• E. Amazon ElastiCache

Answer: B,C,E

NEW QUESTION # 43
You have written an application that uses the Elastic Load Balancing service to spread traffic to several web servers Your users complain that they are sometimes forced to login again in the middle of using your application, after they have already togged in. This is not behavior you have designed. What is a possible solution to prevent this happening?

• A. Use instance storage to save session state.
• B. Use Glacier to save session slate.
• C. Use EBS to save session state
• D. Use instance memory to save session state.
• E. Use ElastiCache to save session state.

Answer: E

NEW QUESTION # 44
A developer is migrating code to an AWS Lambda function that will an Amazon Aurora MySQL database.
What is the MOST secure way to authenticate the function to the database?

• A. Store the database credentials in an Amazon S3 bucket that has a restrictive bucket policy for the Lambda role when accessing the credentials. Use AWS KMS to encrypt the data.
• B. Store the database credentials as encrypted parameters in AWS Systems Manager Parameters Store.
  Obtain the credentials from Systems Manager when the Lambda function needs to connect to the database.
• C. Create a policy with rds-db:connect access to the database and attach it to the role assigned to the Lambda function.
• D. Store the database credentials in AWS Secrets Manager. Let Secrets Manager handle the rotation of the credentials, as required.

Answer: D

Explanation:
https://aws.amazon.com/blogs/security/rotate-amazon-rds-database-credentials-automatically- with-aws-secrets-manager/

NEW QUESTION # 45
A company is building an application to track athlete performance using an Amazon DynamoDB table. Each item in the table is identified by a partition key (user_id) and a sort key (sport_name). The table design is shown below:

(Note: Not all table attributes are shown)
A Developer is asked to write a leaderboard application to display the top performers (user_id) based on the score for each sport_name.
What process will allow the Developer to extract results MOST efficiently from the DynamoDB table?

• A. Use a DynamoDB scan operation to retrieve scores and user_id based on sport_name, and order the results based on the score attribute.
• B. Use a DynamoDB query operation with the key attributes of user_id and sport_name and order the results based on the score attribute.
• C. Create a local secondary index with a primary key of sport_name and a sort key of score and get the results based on the score attribute.
• D. Create a global secondary index with a partition key of sport_name and a sort key of score, and get the results

Answer: D

Explanation:
Explanation
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/SecondaryIndexes.html
https://docs.aws.amazon.com/zh_cn/amazondynamodb/latest/developerguide/GSI.html

NEW QUESTION # 46
A Developer has written code for an application and wants to share it with other Developers on the team to receive feedback. The shared application code needs to be stored long-term with multiple versions and batch change tracking.
Which AWS service should the Developer use?

• A. Amazon S3
• B. AWS CodeBuild
• C. AWS Cloud9
• D. AWS CodeCommit

Answer: D

Explanation:
Explanation/Reference: https://docs.aws.amazon.com/codecommit/latest/userguide/codecommit-user.pdf

NEW QUESTION # 47
A Developer created a Lambda function for a web application backend. When testing the Lambda function from the AWS Lambda console, the Developer can see that the function is being executed, but there is no log data being generated in Amazon CloudWatch Logs, even after several minutes.
What could cause this situation?

• A. The Lambda function is missing CloudWatch Logs as a source trigger to send log data.
• B. The execution role for the Lambda function is missing permissions to write log data to the CloudWatch Logs.
• C. The Lambda function is missing a target CloudWatch Log group.
• D. The Lambda function does not have any explicit log statements for the log data to send it to CloudWatch Logs.

Answer: B

Explanation:
Explanation/Reference: https://docs.aws.amazon.com/lambda/latest/dg/monitoring-functions.html (see note)

NEW QUESTION # 48
A user has launched one EC2 instance in the US West region. The user wants to access the RDS instance launched in the US East region from that EC2 instance. How can the user configure the access for that EC2 instance?

• A. Configure the IP range of the US West region instance as the ingress security rule of RDS
• B. Create an IAM role which has access to RDS and launch an instance in the US West region with it
• C. It is not possible to access RDS of the US East region from the US West region
• D. Open the security group of the US West region in the RDS security group's ingress rule

Answer: A

Explanation:
The user cannot authorize an Amazon EC2 security group if it is in a different AWS Region than the RDS DB instance. The user can authorize an IP range or specify an Amazon EC2 security group in the same region that refers to an IP address in another region.

NEW QUESTION # 49
Regarding Amazon SWF, at times you might want to record information in the workflow history of a workflow execution that is specific to your use case. _________ enable you to record information in the workflow execution history that you can use for any custom or scenario-specific purpose.

• A. Hash keys
• B. Events
• C. Tags
• D. Markers

Answer: D

Explanation:
In Amazon SWF, at times you might want to record information in the workflow history of a workflow execution that is specific to your use case. Markers enable you to record information in the workflow execution history that you can use for any custom or scenario-specific purpose.
http://docs.aws.amazon.com/amazonswf/latest/developerguide/swf-dg-adv.html

NEW QUESTION # 50
A Developer is building a mobile application and needs any update to user profile data to be pushed to all devices accessing the specific identity. The Developer does not want to manage a back end to maintain the user profile data.
What is the MOST efficient way for the Developer to achieve these requirements using Amazon Cognito?

• A. Use a Cognito user pool.
• B. Use Cognito events.
• C. Use Cognito Sync.
• D. Use Cognito federated identities.

Answer: C

Explanation:
Amazon Cognito Sync is an AWS service and client library that enables cross-device syncing of application-related user data. You can use it to synchronize user profile data across mobile devices and the web without requiring your own backend. https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-sync.html

NEW QUESTION # 51
What is web identity federation?

• A. Use of an identity provider like Google or Facebook to become an AWS IAM User.
• B. Use of an identity provider like Google or Facebook to exchange for temporary AWS security credentials.
• C. Use of AWS IAM User tokens to log in as a Google or Facebook user.
• D. Use of AWS STS Tokens to log in as a Google or Facebook user.

Answer: B

NEW QUESTION # 52
A user is running a webserver on EC2. The user wants to receive the SMS when the EC2 instance utilization is above the threshold limit. Which AWS services should the user configure in this case?

• A. AWS CloudWatch + AWS SES.
• B. AWS CloudWatch + AWS SQS.
• C. AWS EC2 + AWS Cloudwatch.
• D. AWS CloudWatch + AWS SNS.

Answer: D

Explanation:
Amazon SNS makes it simple and cost-effective to push to mobile devices, such as iPhone, iPad, Android, Kindle Fire, and internet connected smart devices, as well as pushing to other distributed services. In this case, the user can configure that Cloudwatch sends an alarm on when the threshold is crossed to SNS which will trigger an SMS.
Reference: http://aws.amazon.com/sns/

NEW QUESTION # 53
......

Amazon AWS-Developer: AWS Certified Developer-Associate Exam Certified Professional salary

The estimated average salary AWS Certified Developer-Associate Professional is listed below:

Country wise:

• England: 87294 POUND
• United State: 114148USD
• India: 8581971 INR
• Europe: 97081 EURO

Position wise:

• SysOps Administrator - Associate: $130,000
• Developer - Associate: $120,000
• Solutions Architect - Associate: $125,000
• Solutions Architect - Professional: $140,000
• DevOps Engineer - Professional: $135,000

 

AWS-Developer Deluxe Study Guide with Online Test Engine: https://www.passsureexam.com/AWS-Developer-pass4sure-exam-dumps.html

NEW 2024 Certification Sample Questions AWS-Developer Dumps & Practice Exam: https://drive.google.com/open?id=1cA6eR9q9jVLXypgQC3oM6nchPNuUTXQD