Free DBS-C01 Exam Braindumps

A database specialist needs to review and optimize an Amazon DynamoDB table that is experiencing performance issues. A thorough investigation by the database specialist reveals that the partition key is causing hot partitions, so a new partition key is created. The database specialist must effectively apply this new partition key to all existing and new data.
How can this solution be implemented?

1. A. Use Amazon EMR to export the data from the current DynamoDB table to Amazon S3. Then use Amazon EMR again to import the data from Amazon S3 into a new DynamoDB table with the new partition key.
2. B. Use AWS DMS to copy the data from the current DynamoDB table to Amazon S3. Then import the DynamoDB table to create a new DynamoDB table with the new partition key.
3. C. Use the AWS CLI to update the DynamoDB table and modify the partition key.
4. D. Use the AWS CLI to back up the DynamoDB tabl
5. E. Then use the restore-table-from-backup command and modify the partition key.

Correct Answer: A
https://aws.amazon.com/premiumsupport/knowledge-center/back-up-dynamodb-s3/

Recently, an ecommerce business transferred one of its SQL Server databases to an Amazon RDS for SQL Server Enterprise Edition database instance. The corporation anticipates an increase in read traffic as a result of an approaching sale. To accommodate the projected read load, a database professional must establish a read replica of the database instance.
Which procedures should the database professional do prior to establishing the read replica? (Select two.)

1. A. Identify a potential downtime window and stop the application calls to the source DB instance.
2. B. Ensure that automatic backups are enabled for the source DB instance.
3. C. Ensure that the source DB instance is a Multi-AZ deployment with Always ON Availability Groups.
4. D. Ensure that the source DB instance is a Multi-AZ deployment with SQL Server Database Mirroring (DBM).
5. E. Modify the read replica parameter group setting and set the value to 1.

Correct Answer: BC
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/SQLServer.ReadReplicas.html

A company wants to improve its ecommerce website on AWS. A database specialist decides to add Amazon ElastiCache for Redis in the implementation stack to ease the workload off the database and shorten the website response times. The database specialist must also ensure the ecommerce website is highly available within the company's AWS Region.
How should the database specialist deploy ElastiCache to meet this requirement?

1. A. Launch an ElastiCache for Redis cluster using the AWS CLI with the -cluster-enabled switch.
2. B. Launch an ElastiCache for Redis cluster and select read replicas in different Availability Zones.
3. C. Launch two ElastiCache for Redis clusters in two different Availability Zone
4. D. Configure Redis streams to replicate the cache from the primary cluster to another.
5. E. Launch an ElastiCache cluster in the primary Availability Zone and restore the cluster's snapshot to a different Availability Zone during disaster recovery.

Correct Answer: B
https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/AutoFailover.html
You can enable Multi-AZ only on Redis (cluster mode disabled) clusters that have at least one available read replica. Clusters without read replicas do not provide high availability or fault tolerance.

A company is developing a multi-tier web application hosted on AWS using Amazon Aurora as the database. The application needs to be deployed to production and other non-production environments. A Database Specialist needs to specify different MasterUsername and MasterUserPassword properties in the AWS CloudFormation templates used for automated deployment. The CloudFormation templates are version controlled in the company’s code repository. The company also needs to meet compliance requirement by routinely rotating its database master password for production.
What is most secure solution to store the master password?

1. A. Store the master password in a parameter file in each environmen
2. B. Reference the environment-specific parameter file in the CloudFormation template.
3. C. Encrypt the master password using an AWS KMS ke
4. D. Store the encrypted master password in the CloudFormation template.
5. E. Use the secretsmanager dynamic reference to retrieve the master password stored in AWS Secrets Manager and enable automatic rotation.
6. F. Use the ssm dynamic reference to retrieve the master password stored in the AWS Systems Manager Parameter Store and enable automatic rotation.

Correct Answer: C
"By using the secure string support in CloudFormation with dynamic references you can better maintain your infrastructure as code. You’ll be able to avoid hard coding passwords into your templates and you can keep these runtime configuration parameters separated from your code. Moreover, when properly used, secure strings will help keep your development and production code as similar as possible, while continuing to make your infrastructure code suitable for continuous deployment pipelines."
https://aws.amazon.com/blogs/mt/using-aws-systems-manager-parameter-store-secure-string-parameters-in-aws https://aws.amazon.com/blogs/security/how-to-use-aws-secrets-manager-rotate-credentials-amazon-rds-database

A company developed a new application that is deployed on Amazon EC2 instances behind an Application Load Balancer. The EC2 instances use the security group named sg-application-servers. The company needs a database to store the data from the application and decides to use an Amazon RDS for MySQL DB instance. The DB instance is deployed in private DB subnet.
What is the MOST restrictive configuration for the DB instance security group?

1. A. Only allow incoming traffic from the sg-application-servers security group on port 3306.
2. B. Only allow incoming traffic from the sg-application-servers security group on port 443.
3. C. Only allow incoming traffic from the subnet of the application servers on port 3306.
4. D. Only allow incoming traffic from the subnet of the application servers on port 443.

Correct Answer: A
most restrictive approach is to allow only incoming connections from SG of EC2 instance on port 3306