CCP_01

A website is deployed in several AWS regions. A Developer needs to direct global users to the website that provides the best performance. How can the Developer achieve this?. Create CNAME records in AWS Route 53 and direct traffic to Amazon CloudFront. Create Alias records in AWS Route 53 and direct the traffic to an Elastic Load. Create A records in AWS Route 53 and use a weighted routing policy. Create A records in AWS Route 53 and use a latency-based routing policy.

A Developer will be launching several Docker containers on a new Amazon ECS cluster using the EC2 Launch Type. The containers will all run a web service on port 80. What is the EASIEST way the Developer can configure the task definition to ensure the web services run correctly and there are no port conflicts on the host instances?. Specify port 80 for the container port and port 0 for the host port. Specify port 80 for the container port and a unique port number for the host port. Specify a unique port number for the container port and port 80 for the host port. Leave both the container port and host port configuration blank.

An application deployed on AWS Elastic Beanstalk experienced increased error rates during deployments of new application versions, resulting in service degradation for users. The Development team believes that this is because of the reduction in capacity during the deployment steps. The team would like to change the deployment policy configuration of the environment to an option that maintains full capacity during deployment while using the existing instances. Which deployment policy will meet these requirements while using the existing instances?. Immutable. Rolling with additional batch. All at once. Rolling.

A Developer is deploying an AWS Lambda update using AWS CodeDeploy. In the appspec.yaml file, which of the following is a valid structure for the order of hooks that should be specified?. BeforeBlockTraffic > AfterBlockTraffic > BeforeAllowTraffic > AfterAllowTraffic. BeforeInstall > AfterInstall > ApplicationStart > ValidateService. BeforeInstall > AfterInstall > AfterAllowTestTraffic > BeforeAllowTraffic > AfterAllowTraffic. BeforeAllowTraffic > AfterAllowTraffic.

A developer is preparing to deploy a Docker container to Amazon ECS using CodeDeploy. The developer has defined the deployment actions in a file. What should the developer name the file?. appspec.json. cron.yml. buildspec.yml. appspec.yml.

A Developer is setting up a code update to Amazon ECS using AWS CodeDeploy. The Developer needs to complete the code update quickly. Which of the following deployment types should the Developer use?. Canary. Blue/green. Linear. In-Place.

CloudFormation stack needs to be deployed in several regions and requires a different Amazon Machine Image (AMI) in each region. Which AWS CloudFormation template key can be used to specify the correct AMI for each region?. Resources. Mapping. Outputs. Parameters.

A Developer has been tasked by a client to create an application. The client has provided the following requirements for the application: · Performance efficiency of seconds with up to a minute of latency · Data storage requirements will be up to thousands of terabytes · Per-message sizes may vary between 100 KB and 100 MB · Data can be stored as key/value stores supporting eventual consistency What is the MOST cost-effective AWS service to meet these requirements?. Amazon ElastiCache. Amazon RDS (with a MySQL engine). Amazon DynamoDB. Amazon S3.

Users of an application using Amazon API Gateway, AWS Lambda and Amazon DynamoDB have reported errors when using the application. Which metrics should a Developer monitor in Amazon CloudWatch to determine the number of client-side and server-side errors?. 4XXError and 5XXError. Errors. CacheHitCount and CacheMissCount. IntegrationLatency and Latency.

A developer has deployed an application on an Amazon EC2 instance in a private subnet within a VPC. The subnet does not have Internet connectivity. The developer would like to write application logs to an Amazon S3 bucket. What MUST be configured to enable connectivity?. A bucket policy needs to be added specifying the principles that are allowed to write data to the bucket. An IAM role must be added to the instance that has permissions to write to the S3 bucket. A VPN should be established to enable private connectivity to S3. A VPC endpoint should be provisioned for S3.

A developer is troubleshooting problems with a Lambda function that is invoked by Amazon SNS and repeatedly fails. How can the developer save discarded events for further processing?. Enable CloudWatch Logs for the Lambda function. Enable SNS notifications for failed events. Configure a Dead Letter Queue (DLQ). Enable Lambda streams.

To reduce the cost of API actions performed on an Amazon SQS queue, a Developer has decided to implement long polling. Which of the following modifications should the Developer make to the API actions?. Set the ReceiveMessage API with a WaitTimeSeconds of 20. Set the SetQueueAttributes with a MessageRetentionPeriod of 60. Set the ReceiveMessage API with a VisibilityTimeout of 30. Set the SetQueueAttributes API with a DelaySeconds of 20.

A developer is planning to use a Lambda function to process incoming requests from an Application Load Balancer (ALB). How can this be achieved?. Configure an event-source mapping between the ALB and the Lambda function. Create a target group and register the Lambda function using the AWS CLI. Create an Auto Scaling Group (ASG) and register the Lambda function in the launch configuration. Setup an API in front of the ALB using API Gateway and use an integration request to map the request to the Lambda function.

An application serves customers in several different geographical regions. Information about the location users connect from is written to logs stored in Amazon CloudWatch Logs. The company needs to publish an Amazon CloudWatch custom metric that tracks connections for each location. Which approach will meet these requirements?. Create a CloudWatch metric filter to extract metrics from the log files with location as a dimension. Stream data to an Amazon Elasticsearch cluster in near-real time and export a custom metric. Configure a CloudWatch Events rule that creates a custom metric from the CloudWatch Logs group. Create a CloudWatch Logs Insights query to extract the location information from the logs and to create a custom metric with location as a dimension.

An organization developed an application that uses a set of APIs that are being served through Amazon API Gateway. The API calls must be authenticated based on OpenID identity providers such as Amazon, Google, or Facebook. The APIs should allow access based on a custom authorization model. Which is the simplest and MOST secure design to use to build an authentication and authorization model for the APIs?. Build an OpenID token broker with Amazon and Facebook. Users will authenticate with these identify providers and pass the JSON Web Token to the API to authenticate each API call. Use Amazon ElastiCache to store user credentials and pass them to the APIs for authentication and authorization. Use Amazon DynamoDB to store user credentials and have the application retrieve temporary credentials from AWS STS. Make API calls by passing user credentials to the APIs for authentication and authorization. Use Amazon Cognito user pools and a custom authorizer to authenticate and authorize users based on JSON Web Tokens.

A Developer needs to scan a full DynamoDB 50GB table within non-peak hours. About half of the strongly consistent RCUs are typically used during non-peak hours and the scan duration must be minimized. How can the Developer optimize the scan execution time without impacting production workloads?. Use parallel scans while limiting the rate. Increase the RCUs during the scan operation. Use sequential scans. Change to eventually consistent RCUs during the scan operation.

A company is deploying a static website hosted from an Amazon S3 bucket. The website must support encryption in-transit for website visitors. Which combination of actions must the Developer take to meet this requirement? (Select TWO.). Configure an Amazon CloudFront distribution with an AWS WAF WebACL. Configure an Amazon CloudFront distribution with an SSL/TLS certificate. Create an AWS WAF WebACL with a secure listener. Create an Amazon CloudFront distribution. Set the S3 bucket as an origin. Configure the S3 bucket with an SSL/TLS certificate.

A Developer requires a multi-threaded in-memory cache to place in front of an Amazon RDS database. Which caching solution should the Developer choose?. Amazon ElastiCache Redis. Amazon RedShift. Amazon DynamoDB DAX. Amazon ElastiCache Memcached.

A Developer has used a third-party tool to build, bundle, and package a software package on-premises. The software package is stored in a local file system and must be deployed to Amazon EC2 instances. How can the application be deployed onto the EC2 instances?. Use AWS CodeDeploy and point it to the local file system to deploy the software package. Upload the bundle to an Amazon S3 bucket and specify the S3 location when doing a deployment using AWS CodeDeploy. Use AWS CodeBuild to commit the package and automatically deploy the software package. Create a repository using AWS CodeCommit to automatically trigger a deployment to the EC2 instances.

A Developer has made an update to an application. The application serves users around the world and uses Amazon CloudFront for caching content closer to users. It has been reported that after deploying the application updates, users are not able to see the latest changes. How can the Developer resolve this issue?. Invalidate all the application objects from the edge caches. Remove the origin from the CloudFront configuration and add it again. Disable forwarding of query strings and request headers from the CloudFront distribution configuration. Disable the CloudFront distribution and enable it again to update all the edge locations.

A company has created a set of APIs using Amazon API Gateway and exposed them to partner companies. The APIs have caching enabled for all stages. The partners require a method of invalidating the cache that they can build into their applications. What can the partners use to invalidate the API cache?. They must wait for the TTL to expire. They can pass the HTTP header Cache-Control: max-age=0. They can invoke an AWS API endpoint which invalidates the cache. They can use the query string parameter INVALIDATE_CACHE.

A Developer is writing code to run in a cron job on an Amazon EC2 instance that sends status information about the application to Amazon CloudWatch. Which method should the Developer use?. Use the CloudWatch console with detailed monitoring. Use the AWS CLI put-metric-alarm command. Use the unified CloudWatch agent to publish custom metrics. Use the AWS CLI put-metric-data command.

Change management procedures at an organization require that a log is kept recording activity within AWS accounts. The activity that must be recorded includes API activity related to creating, modifying or deleting AWS resources. Which AWS service should be used to record this information. Amazon CloudTrail. Amazon CloudWatch. AWS OpsWorks. AWS X-Ray.

A Developer is building a three-tier web application that must be able to handle a minimum of 10,000 requests per minute. The requirements state that the web tier should be completely stateless while the application maintains session state data for users. How can the session state data be maintained externally, whilst keeping latency at the LOWEST possible value?. Create an Amazon DynamoDB table, then implement session handling at the application level to leverage the table for session data storage. Create an Amazon RedShift instance, then implement session handling at the application level to leverage a database inside the RedShift database instance for session data storage. Create an Amazon ElastiCache Redis cluster, then implement session handling at the application level to leverage the cluster for session data storage. Implement a shared Amazon EFS file system solution across the underlying Amazon EC2 instances, then implement session handling at the application level to leverage the EFS file system for session data storage.

A company is setting up a Lambda function that will process events from a DynamoDB stream. The Lambda function has been created and a stream has been enabled. What else needs to be done for this solution to work?. Update the CloudFormation template to map the DynamoDB stream to the Lambda function. An alarm should be created in CloudWatch that sends a notification to Lambda when a new entry is added to the DynamoDB stream. An event-source mapping must be created on the Lambda side to associate the DynamoDB stream with the Lambda function. An event-source mapping must be created on the DynamoDB side to associate the DynamoDB stream with the Lambda function.

A company runs a legacy application that uses an XML-based SOAP interface. The company needs to expose the functionality of the service to external customers and plans to use Amazon API Gateway. How can a Developer configure the integration?. Create a SOAP API using Amazon API Gateway. Transform the incoming JSON into a valid XML message for the SOAP interface using AWS Lambda. Create a SOAP API using Amazon API Gateway. Pass the incoming JSON to the SOAP interface through a Network Load Balancer. Create a RESTful API using Amazon API Gateway. Pass the incoming JSON to the SOAP interface through an Application Load Balancer. Create a RESTful API using Amazon API Gateway. Transform the incoming JSON into a valid XML message for the SOAP interface using mapping templates.

A Developer is deploying an application in a microservices architecture on Amazon ECS. The Developer needs to choose the best task placement strategy to MINIMIZE the number of instances that are used. Which task placement strategy should be used?. Weighted. Binpack. Random. Spread.

An application on-premises uses Linux servers and a relational database using PostgreSQL. The company will be migrating the application to AWS and require a managed service that will take care of capacity provisioning, load balancing, and autoscaling. Which combination of services should the Developer use? (Select TWO.). AWS Elastic Beanstalk. Amazon EC2 with Auto Scaling. AWS Lambda with CloudWatch Events. Amazon RDS with PostrgreSQL. Amazon EC2 with PostgreSQL.

A Developer is building an application that will store data relating to financial transactions in multiple DynamoDB tables. The Developer needs to ensure the transactions provide atomicity, isolation, and durability (ACID) and that changes are committed following an all-or nothing paradigm. What write API should be used for the DynamoDB table?. Transactional. Strongly consistent. Standard. Eventually consistent.

An application component writes thousands of item-level changes to a DynamoDB table per day. The developer requires that a record is maintained of the items before they were modified. What MUST the developer do to retain this information? (Select TWO.). Set the StreamViewType to OLD_IMAGE. Use an AWS Lambda function to extract the item records from the notification and write to an S3 bucket. Enable DynamoDB Streams for the table. Set the StreamViewType to NEW_AND_OLD_IMAGES. Create a CloudWatch alarm that sends a notification when an item is modified.

A Developer attempted to run an AWS CodeBuild project, and received an error. The error stated that the length of all environment variables exceeds the limit for the combined maximum of characters. What is the recommended solution?. Update the settings for the build project to use an Amazon S3 bucket for large numbers of environment variables. Use AWS Systems Manager Parameter Store to store large numbers of environment variables. Use Amazon Cognito to store key-value pairs for large numbers of environment variables. Add the export LC_ALL=”en_US.utf8” command to the pre_build section to ensure POSIX localization.

A critical application runs on an Amazon EC2 instance. A Developer has configured a custom Amazon CloudWatch metric that monitors application availability with a data granularity of 1 second. The Developer must be notified within 30 seconds if the application experiences any issues. What should the Developer do to meet this requirement?. Use a default CloudWatch metric, configure an alarm, and use Amazon SNS to send the alert. Use Amazon CloudWatch Logs Insights and trigger an Amazon Eventbridge rule to send a notification. Specify an Amazon SNS topic for alarms when issuing the put-metric-data AWS CLI command. Configure a high-resolution CloudWatch alarm and use Amazon SNS to send the alert.

An X-Ray daemon is being used on an Amazon ECS cluster to assist with debugging stability issues. A developer requires more detailed timing information and data related to downstream calls to AWS services. What should the developer use to obtain this extra detail?. Metadata. Subsegments. Annotations. Filter expressions.

A serverless application uses an AWS Lambda function to process Amazon S3 events. The Lambda function executes 20 times per second and takes 20 seconds to complete each execution. How many concurrent executions will the Lambda function require?. 400. 40. 20. 5.

A company has three different environments: Development, QA, and Production. The company wants to deploy its code first in the Development environment, then QA, and then Production. Which AWS service can be used to meet this requirement?. Use AWS Data Pipeline to create multiple data pipeline provisions to deploy the application. Use AWS CodeCommit to create multiple repositories to deploy the application. Use AWS CodeBuild to create, configure, and deploy multiple build application projects. Use AWS CodeDeploy to create multiple deployment groups.

A Development team is involved with migrating an on-premises MySQL database to Amazon RDS. The database usage is very read-heavy. The Development team wants refactor the application code to achieve optimum read performance for queries. How can this objective be met?. Add database retries to the code and vertically scale the Amazon RDS database. Add a connection string to use a read replica on an Amazon EC2 instance. Use Amazon RDS with a multi-AZ deployment. Add a connection string to use an Amazon RDS read replica for read queries.

An application uses an Amazon DynamoDB table that is 50 GB in size and provisioned with 10,000 read capacity units (RCUs) per second. The table must be scanned during non-peak hours when normal traffic consumes around 5,000 RCUs. The Developer must scan the whole table in the shortest possible time whilst ensuring the normal workload is not affected. How would the Developer optimize this scan cost-effectively?. Use sequential scans and apply a FilterExpression. Use the Parallel Scan API operation and limit the rate. Use sequential scans and set the ConsistentRead parameter to false. Increase read capacity units during the scan operation.

A Developer is writing a serverless application that will process data uploaded to a file share. The Developer has created an AWS Lambda function and requires the function to be invoked every 15 minutes to process the data. What is an automated and serverless way to trigger the functio. Deploy an Amazon EC2 instance based on Linux, and edit it’s /etc/crontab file by adding a command to periodically invoke the Lambda function. Create an Amazon SNS topic that has a subscription to the Lambda function with a 600-second timer. Create an Amazon CloudWatch Events rule that triggers on a regular schedule to invoke the Lambda function. Configure an environment variable named PERIOD for the Lambda function. Set the value at 600.

A company is deploying an Amazon Kinesis Data Streams application that will collect streaming data from a gaming application. Consumers will run on Amazon EC2 instances. In this architecture, what can be deployed on consumers to act as an intermediary between the record processing logic and Kinesis Data Streams and instantiate a record processor for each shard?. Amazon Kinesis CLI. AWS CLI. Amazon Kinesis Client Library (KCL). Amazon Kinesis API.

A Developer has created a task definition that includes the following JSON code: 1. "placementStrategy": [ 2. { 3. "field": "attribute:ecs.availability-zone", 4. "type": "spread" 5. }, 6. { 7. "field": "instanceId", 8. "type": "spread" 9. } 10. ] What is the effect of this task placement strategy?. It distributes tasks evenly across Availability Zones and then distributes tasks evenly across the instances within each Availability Zone. It distributes tasks evenly across Availability Zones and then distributes tasks randomly across instances within each Availability Zone. It distributes tasks evenly across Availability Zones and then distributes tasks evenly across distinct instances within each Availability Zone. It distributes tasks evenly across Availability Zones and then bin packs tasks based on memory within each Availability Zone.

A Development team would use a GitHub repository and would like to migrate their application code to AWS CodeCommit. What needs to be created before they can migrate a cloned repository to CodeCommit over HTTPS?. An Amazon EC2 IAM role with CodeCommit permissions. A GitHub secure authentication token. A set of Git credentials generated with IAM. A public and private SSH key file.

A company needs to store sensitive documents on Amazon S3. The documents should be encrypted in transit using SSL/TLS and then be encrypted for storage at the destination. The company do not want to manage any of the encryption infrastructure or customer master keys and require the most cost-effective solution. What is the MOST suitable option to encrypt the data?. Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3). Server-Side Encryption with Customer Master Keys (CMKs) Stored in AWS Key Management Service (SSE-KMS) using customer managed CMKs. Server-Side Encryption with Customer-Provided Keys (SSE-C). Client-side encryption with Amazon S3 managed keys.

An e-commerce web application that shares session state on-premises is being migrated to AWS. The application must be fault tolerant, natively highly scalable, and any service interruption should not affect the user experience. What is the best option to store the session state?. Store the session state in Amazon CloudFront. Store the session state in Amazon S3. Store the session state in Amazon ElastiCache. Enable session stickiness using elastic load balancers.

A company has an application that logs all information to Amazon S3. Whenever there is a new log file, an AWS Lambda function is invoked to process the log files. The code works, gathering all of the necessary information. However, when checking the Lambda function logs, duplicate entries with the same request ID are found. What is the BEST explanation for the duplicate entries?. The Lambda function failed, and the Lambda service retried the invocation with a delay. The S3 bucket name was specified incorrectly. There was an S3 outage, which caused duplicate entries of the same log file. The application stopped intermittently and then resumed.

A Developer is designing a fault-tolerant application that will use Amazon EC2 instances and an Elastic Load Balancer. The Developer needs to ensure that if an EC2 instance fails session data is not lost. How can this be achieved?. Enable Sticky Sessions on the Elastic Load Balancer. Use an EC2 Auto Scaling group to automatically launch new instances. Use Amazon DynamoDB to perform scalable session handling. Use Amazon SQS to save session data.

A Development team wants to run their container workloads on Amazon ECS. Each application container needs to share data with another container to collect logs and metrics. What should the Development team do to meet these requirements?. Create two pod specifications. Make one to include the application container and the other to include the other container. Link the two pods together. Create one task definition. Specify both containers in the definition. Mount a shared volume between those two containers. Create two task definitions. Make one to include the application container and the other to include the other container. Mount a shared volume between the two tasks. Create a single pod specification. Include both containers in the specification. Mount a persistent volume to both containers.

A Developer is writing an imaging microservice on AWS Lambda. The service is dependent on several libraries that are not available in the Lambda runtime environment. Create a ZIP file with the source code and all dependent libraries. Create a ZIP file with the source code and an appspec.yml file. Add the libraries to the appspec.yml file and upload to Amazon S3. Deploy using CloudFormation. Create a ZIP file with the source code and a script that installs the dependent libraries at runtime. Create a ZIP file with the source code and a buildspec.yml file that installs the dependent libraries on AWS Lambda.

A Developer is creating a new web application that will be deployed using AWS Elastic Beanstalk from the AWS Management Console. The Developer is about to create a source bundle which will be uploaded using the console. Which of the following are valid requirements for creating the source bundle? (Select TWO.). Must not exceed 512 MB. Must consist of one or more ZIP files. Must include a parent folder or top-level directory. Must include the cron.yaml file. Must not include a parent folder or top-level directory.

A team of Developers require read-only access to an Amazon DynamoDB table. The Developers have been added to a group. What should an administrator do to provide the team with access whilst following the principal of least privilege?. Create a customer managed policy with read only access to DynamoDB and specify the ARN of the table for the “Resource” element. Attach the policy to the group. Assign the AWSLambdaDynamoDBExecutionRole AWS managed policy to the group. Assign the AmazonDynamoDBReadOnlyAccess AWS managed policy to the group. Create a customer managed policy with read/write access to DynamoDB for all resources. Attach the policy to the group.

An application needs to generate SMS text messages and emails for a large number of subscribers. Which AWS service can be used to send these messages to customers. Amazon SQS. Amazon SWF. Amazon SES. Amazon SNS.

A company runs many microservices applications that use Docker containers. The company are planning to migrate the containers to Amazon ECS. The workloads are highly variable and therefore the company prefers to be charged per running task. Which solution is the BEST fit for the company’s requirements?. Amazon ECS with the EC2 launch type. An Amazon ECS Cluster with Auto Scaling. An Amazon ECS Service with Auto Scaling. Amazon ECS with the Fargate launch type.

An application uses AWS Lambda which makes remote calls to several downstream services. A developer wishes to add data to custom subsegments in AWS X-Ray that can be used with filter expressions. Which type of data should be used?. Trace ID. Daemon. Annotations. Metadata.

A Development team need to push an update to an application that is running on AWS Elastic Beanstalk. The business SLA states that the application must maintain full performance capabilities during updates whilst minimizing cost. Which Elastic Beanstalk deployment policy should the development team select?. All at once. Immutable. Rolling with additional batch. Rolling.

A Developer is creating a web application that will be used by employees working from home. The company uses a SAML directory on-premises for storing user information. The Developer must integrate with the SAML directory and authorize each employee to access only their own data when using the application. Which approach should the Developer take?. Create the application within an Amazon VPC and use a VPC endpoint with a trust policy to grant access to the employees. Create a unique IAM role for each employee and have each employee assume the role to access the application so they can access their personal data only. Use Amazon Cognito user pools, federate with the SAML provider, and use user pool groups with an IAM policy. Use an Amazon Cognito identity pool, federate with the SAML provider, and use a trust policy with an IAM condition key to limit employee access.

A Developer has recently created an application that uses an AWS Lambda function, an Amazon DynamoDB table, and also sends notifications using Amazon SNS. The application is not working as expected and the Developer needs to analyze what is happening across all components of the application. What is the BEST way to analyze the issue?. Assess the application with Amazon Inspector. Enable X-Ray tracing for the Lambda function. Monitor the application with AWS Trusted Advisor. Create an Amazon CloudWatch Events rule.

A company is deploying an on-premise application server that will connect to several AWS services. What is the BEST way to provide the application server with permissions to authenticate to AWS services?. Create an IAM role with the necessary permissions and assign it to the application server. Create an IAM user and generate access keys. Create a credentials file on the application server. Create an IAM group with the necessary permissions and add the on-premise application server to the group. Create an IAM user and generate a key pair. Use the key pair in API calls to AWS services.

An AWS Lambda function authenticates to an external web site using a regularly rotated user name and password. The credentials need to be stored securely and must not be stored in the function code. What combination of AWS services can be used to achieve this requirement? (Select TWO.). AWS Certificate Manager (ACM). AWS Key Management Store (KMS). AWS Systems Manager Parameter Store. Amazon GuardDuty. AWS Artifact.

A company will be uploading several terabytes of data to Amazon S3. What is the SIMPLEST solution to ensure that the data is encrypted before it is sent to S3 and whilst in transit?. Use server-side encryption with client provided keys. Use client-side encryption with a KMS managed CMK and SSL. Use client-side encryption and a hardware VPN to a VPC and an S3 endpoint. Use server-side encryption with S3 managed keys and SSL.

A company has a large Amazon DynamoDB table which they scan periodically so they can analyze several attributes. The scans are consuming a lot of provisioned throughput. What technique can a Developer use to minimize the impact of the scan on the table's provisioned throughput?. Set a smaller page size for the scan. Prewarm the table by updating all items. Define a range key on the table. Use parallel scans.

A Developer is creating a serverless application that uses an Amazon DynamoDB table. The application must make idempotent, all-or-nothing operations for multiple groups of write actions. Which solution will meet these requirements?. Update the items in the table using the BatchWriteltem operation and configure idempotency at the table level. Update the items in the table using the TransactWriteltems operation to group the changes. Enable DynamoDB streams and capture new images. Update the items in the table using the BatchWriteltem. Create an Amazon SQS FIFO queue and use the SendMessageBatch operation to group the changes.

An application is being deployed on an Amazon EC2 instance running Linux. The EC2 instance will need to manage other AWS services. How can the EC2 instance be configured to make API calls to AWS service securely?. Create an AWS IAM Role, attach a policy with the necessary privileges and attach the role to the instance’s instance profile. Store the access key ID and secret access key as encrypted AWS Lambda environment variables and invoke Lambda for each API call. Store a users’ console login credentials in the application code so the application can call AWS STS and gain temporary security credentials. Run the “aws configure” AWS CLI command and specify the access key ID and secret access key.

A company has implemented AWS CodePipeline to automate its release pipelines. The Development team is writing an AWS Lambda function that will send notifications for state changes of each of the actions in the stages. Which steps must be taken to associate the Lambda function with the event source?. Create an event trigger and specify the Lambda function from the CodePipeline console. Create an Amazon CloudWatch Events rule that uses CodePipeline as an event source. Create a trigger that invokes the Lambda function from the Lambda console by selecting CodePipeline as the event source. Create an Amazon CloudWatch alarm that monitors status changes in CodePipeline and triggers the Lambda function.

A serverless application uses an Amazon API Gateway and AWS Lambda. The application processes data submitted in a form by users of the application and certain data must be stored and available to subsequent function calls. What is the BEST solution for storing this data?. Store the data in an Amazon SQS queue. Store the data in the /tmp directory. Store the data in an Amazon DynamoDB table. Store the data in an Amazon Kinesis Data Stream.

A decoupled application is using an Amazon SQS queue. The processing layer that is retrieving messages from the queue is not able to keep up with the number of messages being placed in the queue. What is the FIRST step the developer should take to increase the number of messages the application receives?. Add additional Amazon SQS queues and have the application poll those queues. Use the API to update the WaitTimeSeconds parameter to a value other than 0. Use the ReceiveMessage API to retrieve up to 10 messages at a time. Configure the queue to use short polling.