Master AWS Certified Developer – Associate (DVA-C02) Exam/

...

Security I

Review assessment questions and explanations against all options to equip yourself with the necessary understanding to confidently tackle the AWS Certified Developer – Associate (DVA-C02) exam questions.

We'll cover the following...

Question 22

A software development team is building a new application interacting with various AWS services (e.g., Amazon S3, DynamoDB). While the production and staging environments are deployed on Amazon EC2 instances, each developer needs to run and test a local instance of the application on their personal laptop to connect directly to their AWS development environment.

Considering security, auditability, and ease of management for individual developers, what is the most appropriate and secure method for providing these developers programmatic access to AWS services from their local machines?

A. Configure a single IAM role that all developers assume for local development access.

B. Create a shared IAM user with a single set of access keys for the entire development team.

C. Issue a unique IAM user with its own access key and secret access key to each individual developer.

D. Implement a web identity federation solution using Amazon Cognito to grant temporary AWS credentials.

Learn AWS CLI—From Zero to Hero

Applying Multilayer API Security Using Cognito and WAF

Managing Users with Amazon Cognito User Pool and Identity Pool

Understanding Cloud Computing Essentials— From Zero to Hero

Creating an Image Pipeline with EC2 Image Builder

Deploying Web Applications Using Elastic Beanstalk

Deploy Elastic Container Registry Image with Elastic Beanstalk

Getting Started with Amazon ECS

Create an EKS Cluster and Deploy an Application

Understanding AWS Storage Options—From Zero to Hero

Managing Instance Volumes Using EBS

EBS Snapshot Lifecycle and Cross-Region Backups

Managing Storage Lifecycle using Amazon S3 Lifecycle Policies

Processing Amazon S3 Events Using AWS Lambda

Managing Data Access with Amazon S3 Access Points

Implement Advanced DynamoDB Features in Social Media Application

Understanding AWS Database Options—From Zero to Hero

Getting Started with DynamoDB Accelerator (DAX)

Improving Database Performance with Amazon ElastiCache for Redis

Building Custom AWS Lambda Runtimes

Build a Fanout Serverless Architecture using SNS, SQS, and Lambda

Debugging Lambda RDS Deployment

Securing APIs and Creating Usage Plans on AWS API Gateway

Decoupling Serverless Applications with Amazon EventBridge

Dynamically Process SQS Messages Using Step Functions

Step Functions Application Patterns for Lambda Orchestration

Mastering Service Integration Patterns with AWS Step Functions

Building a CI/CD Pipeline with AWS CodePipeline

Building a CI/CD Pipeline in AWS Using Terraform

Deploying a CI/CD Pipeline on EKS Using Terraform

Creating an Amazon ECS Service Using a Blue/Green Deployment

Getting Started with Virtual Private Cloud (VPC) in AWS

Controlling VPC Traffic Using Network ACLs

Managing Peer Connections between Amazon Virtual Private Clouds

Connecting Multiple VPCs Using Transit Gateway

Configuring a Static Website with S3 and CloudFront

Managing Application Traffic Using Elastic Load Balancers

Understanding Auto Scaling Group (ASG) in AWS

Attach an Application Load Balancer to EC2 Auto Scaling Group

Getting Started with AWS Key Management Service (KMS)

Encrypting S3 Buckets and EBS Volumes Using KMS

Managing Aurora DB Credentials and API Keys Using Secrets Manager

Getting Started with AWS Systems Manager Parameter Store

Monitoring EC2 Instances Using AWS CloudWatch

Implement Custom Metrics and Logs in Application Using CloudWatch

Debugging Microservice-based Applications using AWS X-Ray

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Create a Data Lake with Lake Formation and Analyze It with Athena

Building a Logs Processing Pipeline with Amazon Kinesis

Using Amazon OpenSearch Service for Data Ingestion

DVA-C02 Practice Exam

Security I

Question 22

Question 23