| Exam Name | DVA-C02 Practice Exam – AWS Certified Developer Associate (2026 Updated) |
|---|---|
| Exam Provider | Amazon Web Services (AWS) |
| Certification Type | Associate-Level Certification (Application Development, Serverless & DevOps on AWS) |
| Total Practice Questions | 150 Advanced MCQs (Scenario-Based + Lambda + API Gateway + CI/CD + Debugging + Security) |
| Exam Domains Covered | • Development with AWS Services (Lambda, DynamoDB, S3, API Gateway) • Security (IAM, Cognito, KMS, Secrets Manager, STS) • Deployment (CodePipeline, CodeBuild, CodeDeploy, CloudFormation) • Troubleshooting & Monitoring (CloudWatch, X-Ray, Logs Insights) • Event-Driven Architecture (SQS, SNS, EventBridge, Kinesis) |
| Questions in Real Exam | • Total: ~65 Questions • Highly scenario-based with real-world application cases • Focus on debugging, integration, and service selection |
| Exam Duration | • Total Time: 130 Minutes • Fast-paced with practical problem-solving questions • Requires hands-on AWS development experience |
| Passing Score | • Scaled Score: 720 / 1000 • Requires solid knowledge of AWS services and development practices • Emphasis on real-world debugging and architecture decisions |
| Question Format | • Multiple Choice & Multiple Response • Scenario-Based Application Development Questions • CI/CD & Deployment Pipelines • Debugging & Performance Optimization • Security & Access Control Scenarios |
| Difficulty Level | Intermediate to Advanced (Hands-On Development + Real Exam Scenarios) |
| Key Knowledge Areas | • Serverless development (Lambda, API Gateway, Step Functions) • Event-driven systems (SNS, SQS, EventBridge, Kinesis) • CI/CD pipelines (CodePipeline, CodeBuild, CodeDeploy) • Security (IAM roles, Cognito auth, KMS encryption, STS) • Monitoring & debugging (CloudWatch, X-Ray, Logs Insights) • Data storage (DynamoDB, S3, RDS) |
| Common Exam Traps | • Confusing SNS vs SQS (fan-out vs queue) • Ignoring Lambda retries, DLQs, and idempotency • Misconfiguring IAM roles and permission boundaries • Overusing EC2 instead of serverless solutions • Missing API Gateway throttling, caching, or auth settings • Ignoring concurrency limits and cold start behavior • Choosing incorrect database (DynamoDB vs RDS) |
| Skills Developed | • Building scalable serverless applications • Designing event-driven architectures • Implementing secure and compliant AWS solutions • Automating deployments with CI/CD pipelines • Debugging distributed systems effectively • Optimizing application performance and cost |
| Study Strategy | • Focus on Lambda + API Gateway integration scenarios • Practice messaging patterns (SNS vs SQS vs Kinesis) • Learn CI/CD deeply (CodePipeline, CodeBuild, CodeDeploy) • Understand IAM policies and least privilege design • Use CloudWatch and X-Ray for debugging practice • Take full-length timed mock exams • Analyze explanations to identify hidden exam traps |
| Best For | • Software developers building AWS applications • Backend engineers working on serverless architectures • DevOps engineers managing CI/CD pipelines • Professionals transitioning into AWS development roles |
| Career Benefits | • Validates real-world AWS development expertise • Opens roles in backend, cloud, and serverless engineering • Enhances debugging and architecture design skills • Increases earning potential in cloud-focused roles • Builds foundation for AWS Professional certifications |
| Updated | 2026 Latest Version – Based on AWS DVA-C02 Exam Guide & Real Exam Patterns |
1.
A developer wants to run backend code triggered by HTTP requests without managing servers. What is BEST?
A. EC2
B. Lambda + API Gateway
C. RDS
D. EBS
Answer: B
Rationale: Combining API Gateway with Lambda enables a fully serverless backend. API Gateway handles routing, throttling, and authentication, while Lambda executes code on demand without server management.
2.
A developer needs a highly scalable NoSQL database with single-digit millisecond latency. What is BEST?
A. RDS
B. DynamoDB
C. Redshift
D. Aurora
Answer: B
Rationale: DynamoDB is designed for low-latency, high-throughput workloads with automatic scaling and managed infrastructure, making it ideal for real-time applications.
3.
A Lambda function must securely access an S3 bucket. What is BEST?
A. Hardcoded credentials
B. IAM role attached to Lambda
C. Store keys in code
D. Use EC2
Answer: B
Rationale: IAM roles provide temporary, secure credentials without embedding secrets in code, following AWS security best practices.
4.
A developer wants to trigger a Lambda function when a file is uploaded to S3. What is BEST?
A. CloudWatch
B. S3 event notification
C. EC2
D. RDS
Answer: B
Rationale: S3 event notifications automatically trigger Lambda functions upon object creation, enabling event-driven architectures.
5.
A developer needs to decouple microservices with guaranteed message delivery. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: B
Rationale: SQS provides reliable message delivery with durability and retry mechanisms, ensuring messages are not lost.
6.
A developer wants pub/sub messaging. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: A
Rationale: SNS allows multiple subscribers to receive messages, enabling event-driven communication.
7.
A developer needs to cache frequently accessed data. What is BEST?
A. RDS
B. ElastiCache
C. DynamoDB
D. S3
Answer: B
Rationale: ElastiCache stores data in memory, reducing latency and improving performance for frequently accessed data.
8.
A developer wants to deploy code automatically after Git commits. What is BEST?
A. CodePipeline
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodePipeline automates CI/CD workflows, integrating with repositories and deployment services.
9.
A developer needs to monitor application logs. What is BEST?
A. CloudTrail
B. CloudWatch Logs
C. Config
D. Lambda
Answer: B
Rationale: CloudWatch Logs collects and stores application logs for monitoring and troubleshooting.
10.
A developer wants to track AWS API calls. What is BEST?
A. CloudTrail
B. CloudWatch
C. Config
D. Lambda
Answer: A
Rationale: CloudTrail records API calls for auditing and security.
11.
A developer needs secure storage for secrets. What is BEST?
A. S3
B. Secrets Manager
C. CloudWatch
D. Lambda
Answer: B
Rationale: Secrets Manager securely stores and rotates credentials with encryption.
12.
A developer wants to define infrastructure as code. What is BEST?
A. CloudFormation
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CloudFormation enables repeatable infrastructure deployment using templates.
13.
A developer needs authentication for APIs. What is BEST?
A. IAM
B. API Gateway authorizer
C. S3
D. EC2
Answer: B
Rationale: API Gateway authorizers provide authentication and authorization.
14.
A developer wants serverless workflows. What is BEST?
A. Step Functions
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Step Functions orchestrate workflows across services.
15.
A developer needs relational database. What is BEST?
A. RDS
B. DynamoDB
C. S3
D. EC2
Answer: A
Rationale: RDS provides managed relational database services.
16.
A developer wants to store static files. What is BEST?
A. S3
B. EC2
C. RDS
D. DynamoDB
Answer: A
Rationale: S3 is ideal for static storage.
17.
A developer needs to process events asynchronously. What is BEST?
A. SQS
B. EC2
C. RDS
D. EBS
Answer: A
Rationale: SQS enables asynchronous processing.
18.
A developer wants to automate builds. What is BEST?
A. CodeBuild
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodeBuild compiles and tests code automatically.
19.
A developer needs to encrypt data at rest. What is BEST?
A. IAM
B. KMS
C. CloudWatch
D. Lambda
Answer: B
Rationale: KMS manages encryption keys.
20.
A developer wants to scale applications automatically. What is BEST?
A. Auto Scaling
B. EC2 manual
C. S3
D. RDS
Answer: A
Rationale: Auto Scaling adjusts resources automatically.
21.
A developer needs distributed tracing. What is BEST?
A. CloudTrail
B. X-Ray
C. Config
D. S3
Answer: B
Rationale: X-Ray traces requests across services.
22.
A developer wants API throttling. What is BEST?
A. API Gateway throttling
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Throttling protects backend systems.
23.
A developer wants secure file uploads. What is BEST?
A. Public S3
B. Pre-signed URLs
C. EC2
D. RDS
Answer: B
Rationale: Pre-signed URLs allow secure uploads.
24.
A developer needs event-driven architecture. What is BEST?
A. EventBridge
B. EC2
C. RDS
D. S3
Answer: A
Rationale: EventBridge enables event routing.
25.
A developer wants container orchestration. What is BEST?
A. ECS
B. EC2
C. S3
D. RDS
Answer: A
Rationale: ECS manages containers.
26.
A developer wants serverless containers. What is BEST?
A. ECS
B. Fargate
C. EC2
D. Lambda
Answer: B
Rationale: Fargate removes server management.
27.
A developer needs high-throughput streaming ingestion. What is BEST?
A. SNS
B. Kinesis
C. Lambda
D. EC2
Answer: B
Rationale: Kinesis handles real-time streaming data.
28.
A developer wants centralized metrics. What is BEST?
A. CloudWatch
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: CloudWatch aggregates metrics.
29.
A developer needs CI/CD pipeline. What is BEST?
A. CodePipeline
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodePipeline automates CI/CD.
30.
A developer wants serverless backend architecture. What is BEST?
A. Lambda + API Gateway
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Serverless architecture reduces operational overhead and scales automatically based on demand.
31.
A Lambda function is invoked asynchronously and fails after multiple retries. What happens next?
A. It is deleted
B. Sent to DLQ if configured
C. Stored in S3
D. Ignored
Answer: B
Rationale: When Lambda asynchronous retries are exhausted, the event is sent to a configured DLQ or on-failure destination. This allows investigation and prevents silent data loss in production pipelines.
32.
A developer wants to ensure exactly-once processing with SQS. What is BEST?
A. SNS
B. SQS FIFO queue
C. Lambda
D. EC2
Answer: B
Rationale: FIFO queues provide exactly-once processing and message ordering, making them ideal for workflows where duplicates or out-of-order processing are unacceptable.
33.
A Lambda function experiences cold start delays. What is BEST?
A. Increase timeout
B. Provisioned concurrency
C. Use EC2
D. Use S3
Answer: B
Rationale: Provisioned concurrency keeps Lambda instances initialized and ready, eliminating cold starts for latency-sensitive workloads.
34.
A developer wants to restrict API access based on IP. What is BEST?
A. IAM
B. API Gateway resource policy
C. S3
D. EC2
Answer: B
Rationale: Resource policies allow IP-based restrictions, adding a security layer without modifying backend logic.
35.
A developer needs to retry failed SQS messages. What is BEST?
A. Ignore
B. Visibility timeout + DLQ
C. EC2
D. S3
Answer: B
Rationale: Visibility timeout prevents immediate retries, and DLQ captures messages after retry attempts fail, ensuring reliability.
36.
A developer wants to deploy infrastructure safely. What is BEST?
A. Manual deployment
B. CloudFormation change sets
C. EC2
D. S3
Answer: B
Rationale: Change sets preview updates before execution, reducing deployment risks.
37.
A developer wants to trace distributed applications. What is BEST?
A. CloudTrail
B. X-Ray
C. Config
D. S3
Answer: B
Rationale: X-Ray traces requests across services.
38.
A developer needs temporary credentials. What is BEST?
A. Hardcode
B. STS
C. S3
D. EC2
Answer: B
Rationale: STS provides temporary credentials, improving security.
39.
A developer wants to throttle API requests. What is BEST?
A. IAM
B. API Gateway throttling
C. S3
D. EC2
Answer: B
Rationale: API Gateway throttling protects backend systems.
40.
A developer wants to handle duplicate events. What is BEST?
A. Ignore
B. Idempotent processing
C. EC2
D. S3
Answer: B
Rationale: Idempotency ensures consistent results.
41.
A developer wants to secure S3 uploads. What is BEST?
A. Public access
B. Pre-signed URLs
C. EC2
D. RDS
Answer: B
Rationale: Pre-signed URLs provide temporary secure access.
42.
A developer wants event filtering. What is BEST?
A. EventBridge rules
B. EC2
C. S3
D. RDS
Answer: A
Rationale: EventBridge filters events efficiently.
43.
A developer wants to cache API responses. What is BEST?
A. DynamoDB
B. API Gateway caching
C. EC2
D. RDS
Answer: B
Rationale: API Gateway caching reduces backend calls.
44.
A developer needs ordered event processing. What is BEST?
A. SNS
B. SQS FIFO
C. Lambda
D. EC2
Answer: B
Rationale: FIFO ensures ordering.
45.
A developer wants CI/CD rollback. What is BEST?
A. Manual
B. CodeDeploy rollback
C. EC2
D. S3
Answer: B
Rationale: CodeDeploy supports rollback.
46.
A developer wants environment isolation. What is BEST?
A. Single account
B. Multiple environments with IAM roles
C. EC2
D. S3
Answer: B
Rationale: Separate environments improve security.
47.
A developer wants secure API auth. What is BEST?
A. IAM
B. Cognito
C. S3
D. EC2
Answer: B
Rationale: Cognito handles authentication.
48.
A developer wants to monitor latency. What is BEST?
A. CloudTrail
B. CloudWatch
C. Config
D. Lambda
Answer: B
Rationale: CloudWatch tracks latency.
49.
A developer wants message fan-out. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: A
Rationale: SNS supports fan-out.
50.
A developer needs reliable queue processing. What is BEST?
A. SNS
B. SQS + DLQ
C. Lambda
D. EC2
Answer: B
Rationale: DLQ ensures failed messages are retained.
51.
A developer wants streaming ingestion. What is BEST?
A. SNS
B. Kinesis
C. Lambda
D. EC2
Answer: B
Rationale: Kinesis handles streaming.
52.
A developer wants secure secrets. What is BEST?
A. Hardcode
B. Secrets Manager
C. S3
D. EC2
Answer: B
Rationale: Secrets Manager stores securely.
53.
A developer wants monitoring alerts. What is BEST?
A. CloudWatch alarms
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: Alarms notify issues.
54.
A developer wants automated builds. What is BEST?
A. CodeBuild
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodeBuild automates builds.
55.
A developer wants workflow automation. What is BEST?
A. Step Functions
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Step Functions orchestrate workflows.
56.
A developer wants scalable DB. What is BEST?
A. DynamoDB
B. RDS
C. EC2
D. S3
Answer: A
Rationale: DynamoDB scales automatically.
57.
A developer wants relational DB. What is BEST?
A. RDS
B. DynamoDB
C. Redshift
D. S3
Answer: A
Rationale: RDS provides relational DB.
58.
A developer wants API security. What is BEST?
A. IAM
B. API Gateway authorizer
C. S3
D. EC2
Answer: B
Rationale: Authorizers secure APIs.
59.
A developer wants centralized logs. What is BEST?
A. CloudWatch Logs
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: CloudWatch centralizes logs.
60.
A developer wants serverless backend. What is BEST?
A. Lambda + API Gateway
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Serverless architecture scales automatically and reduces operational overhead.
61.
A Lambda function processing Kinesis data falls behind. What is the BEST action?
A. Reduce shards
B. Increase shards and parallelization factor
C. Use S3
D. Use RDS
Answer: B
Rationale: Increasing shard count improves ingestion throughput, while parallelization factor allows multiple concurrent Lambda executions per shard, reducing backlog and iterator age effectively.
62.
A developer wants to prevent duplicate processing in SQS. What is BEST?
A. Ignore duplicates
B. Use FIFO queue with deduplication ID
C. Use EC2
D. Use S3
Answer: B
Rationale: FIFO queues support deduplication IDs to prevent duplicate messages within a defined window, ensuring exactly-once processing semantics.
63.
A Lambda function must access an RDS instance in a private subnet. What is REQUIRED?
A. Nothing
B. Configure Lambda in VPC
C. Use S3
D. Use EC2
Answer: B
Rationale: Lambda must be configured with VPC subnets and security groups to access private RDS resources, otherwise network connectivity is not possible.
64.
A developer wants to enforce encryption for S3 uploads. What is BEST?
A. IAM
B. Bucket policy with condition
C. EC2
D. RDS
Answer: B
Rationale: Bucket policies can enforce encryption using conditions like s3:x-amz-server-side-encryption, ensuring all uploaded objects are encrypted.
65.
A developer needs to handle partial failures in batch processing. What is BEST?
A. Retry entire batch
B. Partial batch response
C. Ignore failures
D. Use EC2
Answer: B
Rationale: Partial batch response allows successful records to be processed while retrying only failed ones, improving efficiency and reducing duplicate processing.
66.
A developer wants to limit Lambda execution concurrency. What is BEST?
A. Increase memory
B. Reserved concurrency
C. Use S3
D. Use RDS
Answer: B
Rationale: Reserved concurrency sets a limit for a function, preventing it from consuming all available account concurrency.
67.
A developer needs secure API authentication. What is BEST?
A. IAM only
B. Cognito user pools
C. S3
D. EC2
Answer: B
Rationale: Cognito user pools provide authentication, token issuance, and integration with API Gateway.
68.
A developer wants to deploy infrastructure with version control. What is BEST?
A. Manual
B. CloudFormation
C. EC2
D. S3
Answer: B
Rationale: CloudFormation templates can be version-controlled and reused.
69.
A developer needs to retry failed asynchronous Lambda events. What is BEST?
A. Manual retry
B. Lambda retry settings + DLQ
C. EC2
D. S3
Answer: B
Rationale: Lambda automatically retries async events and sends failures to DLQ.
70.
A developer wants API rate limiting per user. What is BEST?
A. IAM
B. API Gateway usage plans
C. S3
D. EC2
Answer: B
Rationale: Usage plans enforce quotas and throttling per API key.
71.
A developer wants distributed tracing. What is BEST?
A. CloudTrail
B. X-Ray
C. Config
D. S3
Answer: B
Rationale: X-Ray provides request tracing.
72.
A developer wants to secure secrets. What is BEST?
A. Hardcode
B. Secrets Manager
C. S3
D. EC2
Answer: B
Rationale: Secrets Manager stores securely.
73.
A developer needs messaging with fan-out. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: A
Rationale: SNS supports pub/sub.
74.
A developer wants guaranteed delivery. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: B
Rationale: SQS ensures delivery.
75.
A developer wants to monitor metrics. What is BEST?
A. CloudWatch
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: CloudWatch tracks metrics.
76.
A developer wants to debug logs. What is BEST?
A. CloudWatch Logs
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: Logs provide debugging.
77.
A developer wants CI/CD automation. What is BEST?
A. CodePipeline
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodePipeline automates CI/CD.
78.
A developer needs build automation. What is BEST?
A. CodeBuild
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodeBuild compiles and tests.
79.
A developer wants event-driven pipelines. What is BEST?
A. EventBridge
B. EC2
C. S3
D. RDS
Answer: A
Rationale: EventBridge routes events.
80.
A developer wants secure uploads. What is BEST?
A. Public S3
B. Pre-signed URLs
C. EC2
D. RDS
Answer: B
Rationale: Pre-signed URLs secure uploads.
81.
A developer needs scalable DB. What is BEST?
A. DynamoDB
B. RDS
C. EC2
D. S3
Answer: A
Rationale: DynamoDB scales.
82.
A developer needs relational DB. What is BEST?
A. RDS
B. DynamoDB
C. Redshift
D. S3
Answer: A
Rationale: RDS is relational.
83.
A developer wants caching. What is BEST?
A. ElastiCache
B. RDS
C. DynamoDB
D. S3
Answer: A
Rationale: Caching improves performance.
84.
A developer wants streaming ingestion. What is BEST?
A. SNS
B. Kinesis
C. Lambda
D. EC2
Answer: B
Rationale: Kinesis handles streaming.
85.
A developer wants encryption. What is BEST?
A. IAM
B. KMS
C. CloudWatch
D. Lambda
Answer: B
Rationale: KMS manages encryption.
86.
A developer wants monitoring alerts. What is BEST?
A. CloudWatch alarms
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: Alarms notify issues.
87.
A developer wants container orchestration. What is BEST?
A. ECS
B. EC2
C. S3
D. RDS
Answer: A
Rationale: ECS manages containers.
88.
A developer wants serverless containers. What is BEST?
A. ECS
B. Fargate
C. EC2
D. Lambda
Answer: B
Rationale: Fargate removes server management.
89.
A developer wants API security. What is BEST?
A. IAM
B. API Gateway authorizer
C. S3
D. EC2
Answer: B
Rationale: Authorizers secure APIs.
90.
A developer wants serverless backend. What is BEST?
A. Lambda + API Gateway
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Serverless backend scales automatically and reduces operational overhead.
91.
A Lambda function triggered by SQS is processing messages twice. What is the BEST solution?
A. Disable retries
B. Implement idempotent logic
C. Use EC2
D. Use S3
Answer: B
Rationale: SQS provides at-least-once delivery, meaning duplicate messages can occur. Implementing idempotent logic ensures repeated processing does not create inconsistent results.
92.
A developer wants to enforce HTTPS-only access to S3. What is BEST?
A. IAM
B. Bucket policy with aws:SecureTransport
C. EC2
D. RDS
Answer: B
Rationale: Using aws:SecureTransport condition ensures all requests use HTTPS, preventing insecure access.
93.
A developer wants to prevent Lambda from over-consuming account concurrency. What is BEST?
A. Increase timeout
B. Reserved concurrency
C. Use S3
D. Use RDS
Answer: B
Rationale: Reserved concurrency limits function execution, protecting other functions.
94.
A developer needs temporary access to AWS resources. What is BEST?
A. Hardcode credentials
B. STS temporary credentials
C. S3
D. EC2
Answer: B
Rationale: STS provides secure temporary credentials.
95.
A developer wants to process ordered messages. What is BEST?
A. SNS
B. SQS FIFO
C. Lambda
D. EC2
Answer: B
Rationale: FIFO ensures ordering and exactly-once processing.
96.
A developer wants API authentication using tokens. What is BEST?
A. IAM
B. Cognito
C. S3
D. EC2
Answer: B
Rationale: Cognito provides token-based authentication.
97.
A developer wants to reduce DynamoDB read latency. What is BEST?
A. Increase capacity
B. Use DAX
C. Use EC2
D. Use S3
Answer: B
Rationale: DAX provides in-memory caching.
98.
A developer needs to debug distributed applications. What is BEST?
A. CloudTrail
B. X-Ray
C. Config
D. S3
Answer: B
Rationale: X-Ray traces requests across services.
99.
A developer wants to automate deployments. What is BEST?
A. CodeDeploy
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodeDeploy automates deployments.
100.
A developer wants blue/green deployment. What is BEST?
A. Manual
B. CodeDeploy
C. EC2
D. S3
Answer: B
Rationale: CodeDeploy supports blue/green deployment.
101.
A developer wants API throttling. What is BEST?
A. IAM
B. API Gateway throttling
C. S3
D. EC2
Answer: B
Rationale: Throttling protects backend systems.
102.
A developer needs message fan-out. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: A
Rationale: SNS supports pub/sub.
103.
A developer wants reliable messaging. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: B
Rationale: SQS ensures delivery.
104.
A developer wants event-driven architecture. What is BEST?
A. EventBridge
B. EC2
C. RDS
D. S3
Answer: A
Rationale: EventBridge routes events.
105.
A developer needs secure secrets. What is BEST?
A. Hardcode
B. Secrets Manager
C. S3
D. EC2
Answer: B
Rationale: Secrets Manager stores securely.
106.
A developer wants centralized logging. What is BEST?
A. CloudWatch Logs
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: CloudWatch Logs centralizes logs.
107.
A developer needs monitoring alerts. What is BEST?
A. CloudWatch alarms
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: Alarms notify issues.
108.
A developer wants CI/CD automation. What is BEST?
A. CodePipeline
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodePipeline automates pipelines.
109.
A developer needs build automation. What is BEST?
A. CodeBuild
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodeBuild compiles code.
110.
A developer wants workflow orchestration. What is BEST?
A. Step Functions
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Step Functions orchestrate workflows.
111.
A developer wants scalable DB. What is BEST?
A. DynamoDB
B. RDS
C. EC2
D. S3
Answer: A
Rationale: DynamoDB scales automatically.
112.
A developer needs relational DB. What is BEST?
A. RDS
B. DynamoDB
C. Redshift
D. S3
Answer: A
Rationale: RDS is relational.
113.
A developer wants caching. What is BEST?
A. ElastiCache
B. RDS
C. DynamoDB
D. S3
Answer: A
Rationale: Caching improves performance.
114.
A developer wants streaming ingestion. What is BEST?
A. SNS
B. Kinesis
C. Lambda
D. EC2
Answer: B
Rationale: Kinesis handles streaming.
115.
A developer wants encryption. What is BEST?
A. IAM
B. KMS
C. CloudWatch
D. Lambda
Answer: B
Rationale: KMS manages encryption.
116.
A developer wants container orchestration. What is BEST?
A. ECS
B. EC2
C. S3
D. RDS
Answer: A
Rationale: ECS manages containers.
117.
A developer wants serverless containers. What is BEST?
A. ECS
B. Fargate
C. EC2
D. Lambda
Answer: B
Rationale: Fargate removes server management.
118.
A developer wants API security. What is BEST?
A. IAM
B. API Gateway authorizer
C. S3
D. EC2
Answer: B
Rationale: Authorizers secure APIs.
119.
A developer wants secure uploads. What is BEST?
A. Public S3
B. Pre-signed URLs
C. EC2
D. RDS
Answer: B
Rationale: Pre-signed URLs allow secure uploads.
120.
A developer wants serverless backend. What is BEST?
A. Lambda + API Gateway
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Serverless backend reduces operational overhead and scales automatically.
121.
A Lambda function processing SQS messages fails for some items in a batch. What is BEST?
A. Retry entire batch
B. Enable partial batch response
C. Ignore failed items
D. Use EC2
Answer: B
Rationale: Partial batch response allows successful messages to be acknowledged while only failed ones are retried, reducing duplicate processing and improving efficiency in batch processing systems.
122.
A developer wants to ensure SQS messages are retried after a delay. What is BEST?
A. Increase timeout
B. Configure visibility timeout
C. Use EC2
D. Use S3
Answer: B
Rationale: Visibility timeout prevents messages from being immediately retried while still allowing them to reappear in the queue if not processed successfully.
123.
A developer wants to restrict S3 access to a specific VPC endpoint. What is BEST?
A. IAM
B. Bucket policy with aws:SourceVpce
C. EC2
D. RDS
Answer: B
Rationale: Using aws:SourceVpce condition ensures only traffic from specific VPC endpoints can access the bucket, enhancing security.
124.
A developer needs to reduce Lambda execution cost. What is BEST?
A. Increase timeout
B. Optimize memory allocation
C. Use EC2
D. Use S3
Answer: B
Rationale: Lambda pricing depends on memory and execution time. Optimizing memory can reduce execution duration, lowering total cost.
125.
A developer wants to limit API requests per second. What is BEST?
A. IAM
B. API Gateway throttling
C. S3
D. EC2
Answer: B
Rationale: API Gateway throttling protects backend services by limiting request rates and preventing overload.
126.
A developer needs to filter events before invoking Lambda. What is BEST?
A. EC2
B. EventBridge rules
C. S3
D. RDS
Answer: B
Rationale: EventBridge rules allow filtering events based on patterns before invoking Lambda, reducing unnecessary executions.
127.
A developer wants to prevent duplicate Kinesis records. What is BEST?
A. Ignore duplicates
B. Idempotent processing
C. EC2
D. S3
Answer: B
Rationale: Kinesis provides at-least-once delivery, so idempotent processing ensures duplicates do not cause incorrect results.
128.
A developer needs to secure API endpoints with OAuth. What is BEST?
A. IAM
B. Cognito user pools
C. S3
D. EC2
Answer: B
Rationale: Cognito user pools provide OAuth-based authentication for APIs.
129.
A developer wants canary deployments. What is BEST?
A. Manual
B. Lambda aliases with weighted traffic
C. EC2
D. S3
Answer: B
Rationale: Lambda aliases support weighted traffic shifting, enabling gradual rollouts and minimizing risk.
130.
A developer wants to handle high-throughput streaming data. What is BEST?
A. SNS
B. Kinesis
C. Lambda
D. EC2
Answer: B
Rationale: Kinesis handles high-throughput streaming data ingestion and processing.
131.
A developer wants to ensure least privilege access. What is BEST?
A. Full access
B. IAM policies with minimal permissions
C. S3
D. EC2
Answer: B
Rationale: Least privilege reduces security risks by granting only necessary permissions.
132.
A developer needs to debug API errors. What is BEST?
A. CloudTrail
B. CloudWatch logs
C. Config
D. S3
Answer: B
Rationale: CloudWatch logs capture API execution details, enabling troubleshooting.
133.
A developer wants secure temporary credentials. What is BEST?
A. Hardcode
B. STS
C. S3
D. EC2
Answer: B
Rationale: STS provides temporary credentials for secure access.
134.
A developer wants event-driven architecture. What is BEST?
A. EventBridge
B. EC2
C. RDS
D. S3
Answer: A
Rationale: EventBridge enables event-driven workflows.
135.
A developer wants message fan-out. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: A
Rationale: SNS distributes messages to multiple subscribers.
136.
A developer wants reliable messaging. What is BEST?
A. SNS
B. SQS
C. Lambda
D. EC2
Answer: B
Rationale: SQS ensures message durability and delivery.
137.
A developer wants centralized logging. What is BEST?
A. CloudWatch Logs
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: CloudWatch Logs centralizes logs.
138.
A developer wants monitoring alerts. What is BEST?
A. CloudWatch alarms
B. CloudTrail
C. Config
D. Lambda
Answer: A
Rationale: Alarms notify issues.
139.
A developer wants CI/CD pipeline. What is BEST?
A. CodePipeline
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodePipeline automates CI/CD.
140.
A developer wants build automation. What is BEST?
A. CodeBuild
B. EC2
C. S3
D. RDS
Answer: A
Rationale: CodeBuild compiles code.
141.
A developer wants workflow orchestration. What is BEST?
A. Step Functions
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Step Functions orchestrate workflows.
142.
A developer needs scalable DB. What is BEST?
A. DynamoDB
B. RDS
C. EC2
D. S3
Answer: A
Rationale: DynamoDB scales automatically.
143.
A developer needs relational DB. What is BEST?
A. RDS
B. DynamoDB
C. Redshift
D. S3
Answer: A
Rationale: RDS provides relational database.
144.
A developer wants caching. What is BEST?
A. ElastiCache
B. RDS
C. DynamoDB
D. S3
Answer: A
Rationale: ElastiCache improves performance.
145.
A developer wants encryption. What is BEST?
A. IAM
B. KMS
C. CloudWatch
D. Lambda
Answer: B
Rationale: KMS manages encryption keys.
146.
A developer wants container orchestration. What is BEST?
A. ECS
B. EC2
C. S3
D. RDS
Answer: A
Rationale: ECS manages containers.
147.
A developer wants serverless containers. What is BEST?
A. ECS
B. Fargate
C. EC2
D. Lambda
Answer: B
Rationale: Fargate removes server management.
148.
A developer wants API security. What is BEST?
A. IAM
B. API Gateway authorizer
C. S3
D. EC2
Answer: B
Rationale: Authorizers secure APIs.
149.
A developer wants secure uploads. What is BEST?
A. Public S3
B. Pre-signed URLs
C. EC2
D. RDS
Answer: B
Rationale: Pre-signed URLs allow secure uploads.
150.
A developer wants serverless backend. What is BEST?
A. Lambda + API Gateway
B. EC2
C. S3
D. RDS
Answer: A
Rationale: Serverless backend reduces operational overhead and scales automatically.