A developer is writing an IAM policy document that grants administrator access to AWS Key Management Service (AWS KMS) for a federated user. The federated IAM role name is FederatedIAMRole. The user name is KeyAdmin.
How should the developer set the principal in the KMS key policy to meet these requirements?

A. "Principal": { "AWS": "arn:aws:sts::123456789012:role/FederatedIAMRole/KeyAdmin" }
B. "Principal": { "AWS": "arn:aws:sts::123456789012:user/FederatedIAMRole/KeyAdmin" }
C. "Principal": { "AWS": "arn:aws:sts::123456789012:user/KeyAdmin" }
D. "Principal": { "AWS": "arn:aws:sts::123456789012:assumed-role/FederatedIAMRole/KeyAdmin" }

A developer is using an AWS CodeCommit repository to store source code for an application. The developer is using an AWS CodePipeline pipeline to deploy the application. The pipeline does not start automatically and must be started manually when a deployment is needed.
The developer needs to configure the pipeline to start automatically.
Which solution meets this requirement with the LEAST delay?

A. Create a webhook in the CodeCommit repository to directly call the CodePipeline API to start the pipeline.
B. Create an Amazon EventBridge (Amazon CloudWatch Events) rule to start the pipeline upon the detection of changes in the CodeCommit repository.
C. Configure the pipeline to poll the CodeCommit repository for changes and to start automatically when changes are detected.
D. Create a CodeCommit trigger for an Amazon Simple Notification Service (Amazon SNS) topic. Configure the SNS topic to post to the CodePipeline API to start the pipeline.

A developer has setup an Amazon Kinesis Stream with 4 shards to ingest a maximum of 2500 records per second. A Lambda function has been configured to process these records.
In which order will these records be processed?

A. Lambda will receive each record in the reverse order it was placed into the stream following a LIFO (last-in, first-out) method.
B. Lambda will receive each record in the exact order it was placed into the stream following a FIFO (first-in, first-out) method.
C. Lambda will receive each record in the exact order it was placed into the shard following a FIFO (first-in, first-out) method. There is no guarantee of order across shards.
D. The developer can select FIFO (first-in, first-out), LIFO (last-in, first-out), random, or request specific record using the getRecords API.

A company is planning to deploy an application on AWS behind an Elastic Load Balancer. The application uses an HTTP/HTTPS listener and must access the client IP addresses.
Which load-balancing solution meets these requirements?

A. Use an Application Load Balancer and the X-Forwarded-For headers.
B. Use a Network Load Balancer (NLB). Enable proxy protocol support on the NLB and the target application.
C. Use an Application Load Balancer. Register the targets by the instance ID.
D. Use a Network Load Balancer and the X-Forwarded-For headers.

An application is experiencing performance issues based on increased demand. This increased demand is on read-only historical records pulled from an Amazon RDS-hosted database with custom views and queries. A developer must improve performance without changing the database structure.
Which approach will improve performance and MINIMIZE management overhead?

A. Deploy Amazon DynamoDB, move all the data, and point to DynamoDB.
B. Deploy Amazon ElastiCache for Red is and cache the data for the application.
C. Deploy Memcached on Amazon EC2 and cache the data for the application.
D. Deploy Amazon DynamoDB Accelerator (DAX) on Amazon RDS to improve cache performance.

A company's website runs on an Amazon EC2 instance and uses Auto Scaling to scale the environment during peak times. Website users across the world are experiencing high latency due to static content on the EC2 instance, even during non-peak hours.
Which combination of steps will resolve the latency issue? (Choose two.)

A. Double the Auto Scaling group's maximum number of servers.
B. Host the application code on AWS Lambda.
C. Scale vertically by resizing the EC2 instances.
D. Create an Amazon CloudFront distribution to cache the static content.
E. Store the application's static content in Amazon S3.

An AWS Lambda function that Is running in a test environment is not working property. However, there is no error associated with the Lambda function in the Amazon CloudWatch logs for the account. The Lambda function's permissions do not include a resource-based policy. The Lambda function's execution role has properly configured trust relationships and has no permissions policies attached.
Which action should a developer take to allow logs for the Lambda function to appear in CloudWatch?

A. Attach the AWSLambda8asicExecutionRole managed policy to the Lambda function's execution role.
B. Set the AWSLambdaBasicExecutionRole managed policy as the Lambda function's resource-based policy.
C. Attach the CloudWatchLambdaInsightsExecutionRolePolicy managed policy to the Lambda function's execution role.
D. Set the CloudWatchLambdaInsightsExecutionRolePolicy managed policy as the Lambda function's resource-based policy.

A developer is storing sensitive data generated by an application in Amazon S3. The developer wants to encrypt the data at rest A company policy requires an audit trail of when the AWS Key Management Service (AWS KMS) key was used and by whom.
Which encryption option will meet these requirements?

A. Server-side encryption with Amazon S3 managed keys (SSE-S3)
B. Server-side encryption with AWS KMS managed keys (SSE-KMS)
C. Server-side encryption with customer-provided keys (SSE-C)
D. Server-side encryption with self-managed keys

A company is managing a NoSQL database on-premises to host a critical component of an application, which is starting to have scaling issues. The company wants to migrate the application to Amazon DynamoDB with the following considerations:
– Optimize frequent queries
– Reduce read latencies
– Plan for frequent queries on certain key attributes of the table
Which solution would help achieve these objectives?

A. Create global secondary indexes on keys that are frequently queried. Add the necessary attributes into the indexes.
B. Create local secondary indexes on keys that are frequently queried. DynamoDB will fetch needed attributes from the table.
C. Create DynamoDB global tables to speed up query responses. Use a scan to fetch data from the table
D. Create an AWS Auto Scaling policy for the DynamoDB table.

A company wants to migrate its web application to AWS and leverage auto scaling to handle peak workloads.
The solutions architect determined that the best metric for an auto scaling event is the number of concurrent users.
Based on this information, what should the developer use to auto scale based on concurrent users?

A. An Amazon SNS topic to be invoked when a concurrent user threshold is met
B. An Amazon Cloudwatch NetworkIn metric
C. Amazon CloudFront to leverage AWS edge locations
D. A custom Amazon CloudWatch metric for concurrent users