Free AWS-Certified-Database-Specialty Exam Braindumps

A gaming company is developing a new mobile game and decides to store the data for each user in Amazon DynamoDB. To make the registration process as easy as possible, users can log in with their existing Facebook or Amazon accounts. The company expects more than 10,000 users.
How should a database specialist implement access control with the LEAST operational effort?

1. A. Use web identity federation on the mobile app and AWS STS with an attached IAM role to get temporary credentials to access DynamoDB.
2. B. Use web identity federation on the mobile app and create individual IAM users with credentials to access DynamoDB.
3. C. Use a self-developed user management system on the mobile app that lets users access the data from DynamoDB through an API.
4. D. Use a single IAM user on the mobile app to access DynamoDB.

Correct Answer: A

A company is using Amazon RDS for PostgreSQL. The Security team wants all database connection requests to be logged and retained for 180 days. The RDS for PostgreSQL DB instance is currently using the default parameter group. A Database Specialist has identified that setting the log_connections parameter to 1 will enable connections logging.
Which combination of steps should the Database Specialist take to meet the logging and retention requirements? (Choose two.)

1. A. Update the log_connections parameter in the default parameter group
2. B. Create a custom parameter group, update the log_connections parameter, and associate the parameter with the DB instance
3. C. Enable publishing of database engine logs to Amazon CloudWatch Logs and set the event expiration to 180 days
4. D. Enable publishing of database engine logs to an Amazon S3 bucket and set the lifecycle policy to 180 days
5. E. Connect to the RDS PostgreSQL host and update the log_connections parameter in the postgresql.conf file

Correct Answer: AE

A company is due for renewing its database license. The company wants to migrate its 80 TB transactional database system from on-premises to the AWS Cloud. The migration should incur the least possible downtime on the downstream database applications. The company’s network infrastructure has limited network bandwidth that is shared with other applications.
Which solution should a database specialist use for a timely migration?

1. A. Perform a full backup of the source database to AWS Snowball Edge appliances and ship them to be loaded to Amazon S3. Use AWS DMS to migrate change data capture (CDC) data from the source database to Amazon S3. Use a second AWS DMS task to migrate all the S3 data to the target database.
2. B. Perform a full backup of the source database to AWS Snowball Edge appliances and ship them to be loaded to Amazon S3. Periodically perform incremental backups of the source database to be shipped in another Snowball Edge appliance to handle syncing change data capture (CDC) data from the source tothe target database.
3. C. Use AWS DMS to migrate the full load of the source database over a VPN tunnel using the internet for its primary connectio
4. D. Allow AWS DMS to handle syncing change data capture (CDC) data from the source to the target database.
5. E. Use the AWS Schema Conversion Tool (AWS SCT) to migrate the full load of the source database over a VPN tunnel using the internet for its primary connectio
6. F. Allow AWS SCT to handle syncing change data capture (CDC) data from the source to the target database.

Correct Answer: A
https://docs.aws.amazon.com/dms/latest/userguide/CHAP_Target.S3.html Using Amazon S3 as a target for AWS Database Migration Service

A company maintains several databases using Amazon RDS for MySQL and PostgreSQL. Each RDS database generates log files with retention periods set to their default values. The company has now mandated that database logs be maintained for up to 90 days in a centralized repository to facilitate real-time and afterthe-fact analyses.
What should a Database Specialist do to meet these requirements with minimal effort?

1. A. Create an AWS Lambda function to pull logs from the RDS databases and consolidate the log files in an Amazon S3 bucke
2. B. Set a lifecycle policy to expire the objects after 90 days.
3. C. Modify the RDS databases to publish log to Amazon CloudWatch Log
4. D. Change the log retention policy for each log group to expire the events after 90 days.
5. E. Write a stored procedure in each RDS database to download the logs and consolidate the log files in an Amazon S3 bucke
6. F. Set a lifecycle policy to expire the objects after 90 days.
7. G. Create an AWS Lambda function to download the logs from the RDS databases and publish the logs to Amazon CloudWatch Log
8. H. Change the log retention policy for the log group to expire the events after 90 days.

Correct Answer: B
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_LogAccess.html https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_LogAccess.Procedural.UploadtoCloudWat https://aws.amazon.com/premiumsupport/knowledge-center/rds-aurora-mysql-logs-cloudwatch/ https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutRetentionPolicy.html

A company uses the Amazon DynamoDB table contractDB in us-east-1 for its contract system with the following schema:
orderID (primary key) timestamp (sort key) contract (map) createdBy (string) customerEmail (string)
After a problem in production, the operations team has asked a database specialist to provide an IAM policy to read items from the database to debug the application. In addition, the developer is not allowed to access the value of the customerEmail field to stay compliant.
Which IAM policy should the database specialist use to achieve these requirements?
A)

B)

C)

D)

1. A. Option A
2. B. Option B
3. C. Option C
4. D. Option C

Correct Answer: A