Pre-Summer Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: get65

Amazon Web Services Updated DVA-C02 Exam Questions and Answers by keyaan

Page: 13 / 44

Amazon Web Services DVA-C02 Exam Overview :

Exam Name: AWS Certified Developer - Associate
Exam Code: DVA-C02 Dumps
Vendor: Amazon Web Services Certification: AWS Certified Associate
Questions: 600 Q&A's Shared By: keyaan
Question 52

A company ' s application runs on a fleet of Amazon EC2 instances in a VPC within private subnets that do not have public internet access. The company uses Amazon CloudWatch to monitor the application.

A developer is troubleshooting an issue with the application. Some performance metrics are not being published to CloudWatch. The developer uses EC2 Instance Connect to access an EC2 instance. The developer verifies that a CloudWatch agent is pre-installed and running.

The developer needs to ensure that the performance metrics are published to CloudWatch.

Which solution will meet this requirement in the MOST secure way?

Options:

A.

Attach the CloudWatchAgentAdminPolicy managed IAM policy to the IAM role that is associated with the EC2 instance profile. Provision a NAT gateway in a public subnet.

B.

Add a user data script to install and start up the CloudWatch agent automatically when the EC2 instances are first booted up.

C.

Attach the CloudWatchAgentServerPolicy managed IAM policy to the IAM role that is associated with the EC2 instance profile. Provision a VPC interface endpoint for CloudWatch.

D.

Attach the CloudWatchReadOnlyAccess managed IAM policy to the IAM role that is associated with the EC2 instance profile. Provision a VPC interface endpoint for CloudWatch.

Discussion
Question 53

A developer is building a microservice that uses AWS Lambda to process messages from an Amazon Simple Queue Service (Amazon SQS) standard queue. The Lambda function calls external APIs to enrich the SOS message data before loading the data into an Amazon Redshift data warehouse. The SOS queue must handle a maximum of 1.000 messages per second.

During initial testing, the Lambda function repeatedly inserted duplicate data into the Amazon Redshift table. The duplicate data led to a problem with data analysis. All duplicate messages were submitted to the queue within 1 minute of each other.

How should the developer resolve this issue?

Options:

A.

Create an SOS FIFO queue. Enable message deduplication on the SOS FIFO queue.

B.

Reduce the maximum Lambda concurrency that the SOS queue can invoke.

C.

Use Lambda ' s temporary storage to keep track of processed message identifiers.

D.

Configure a message group ID for every sent message. Enable message deduplication on the SQS standard queue.

Discussion
Question 54

A developer created a Node.js-based AWS Lambda function by using a container image of an AWS OS-only base image. There is a new security patch for Node.js that must be patched to the new Lambda function.

Which solution will meet this requirement?

Options:

A.

Set the runtime update mode of the Lambda function to Auto.

B.

Patch the runtime version by redeploying the same version of the Lambda function.

C.

Rebuild the Lambda container code with the latest version of the AWS OS base image. Publish a new version of the Lambda function.

D.

Rebuild the Lambda container code with the latest Node.js patch version. Publish a new version of the Lambda function.

Discussion
Question 55

A company has an Amazon S3 bucket that contains sensitive data. The data must be encrypted in transit and at rest. The company encrypts the data in the S3 bucket by using an AWS KMS key. A developer needs to grant several other AWS accounts the permission to use the S3 GetObject operation to retrieve the data from the S3 bucket.

How can the developer enforce that all requests to retrieve the data provide encryption in transit?

Options:

A.

Define a resource-based policy on the S3 bucket to deny access when a request meets the condition " aws:SecureTransport " : " false " .

B.

Define a resource-based policy on the S3 bucket to allow access when a request meets the condition " aws:SecureTransport " : " false " .

C.

Define a role-based policy on the other accounts ' roles to deny access when a request meets the condition " aws:SecureTransport " : " false " .

D.

Define a resource-based policy on the KMS key to deny access when a request meets the condition " aws:SecureTransport " : " false " .

Discussion
Inaaya
Are these Dumps worth buying?
Fraser Apr 4, 2026
Yes, of course, they are necessary to pass the exam. They give you an insight into the types of questions that could come up and help you prepare effectively.
Billy
It was like deja vu! I was confident going into the exam because I had already seen those questions before.
Vincent Apr 10, 2026
Definitely. And the best part is, I passed! I feel like all that hard work and preparation paid off. Cramkey is the best resource for all students!!!
Wyatt
Passed my exam… Thank you so much for your excellent Exam Dumps.
Arjun Apr 10, 2026
That sounds really useful. I'll definitely check it out.
Lois
I passed my exam with wonderful score. Their dumps are 100% valid and I felt confident during the exam.
Ernie Apr 23, 2026
Absolutely. The best part is, the answers in the dumps were correct. So, I felt confident and well-prepared for the exam.
Alaya
Best Dumps among other dumps providers. I like it so much because of their authenticity.
Kaiden Apr 4, 2026
That's great. I've used other dump providers in the past and they were often outdated or had incorrect information. This time I will try it.
Page: 13 / 44
Title
Questions
Posted

DVA-C02
PDF

$36.75  $104.99

DVA-C02 Testing Engine

$43.75  $124.99

DVA-C02 PDF + Testing Engine

$57.75  $164.99