- Increase the configured CPU value
- Increase the configured timeout value
- Increase the configured memory value
- Increase the configured concurrency value
- blocks
- layers
- aliases
- handlers
- in sequence
- both of these answers
- neither of these answers
- in parallel
- aws lambda invoke --function ReturnBucketName outputfile.txt
- aws lambda execute --function-name ReturnBucketName outputfile.txt
- aws lambda invoke --function-name ReturnBucketName outputfile.txt
- aws lambda execute --function ReturnBucketName outputfile.txt
- AWS Trace
- CloudStack
- CloudTrail
- AWS X-Ray
Q6. You need to build a continuous integration/deployment pipeline for a set of Lambdas. What should you do?
- Create configuration files and deploy them using AWS CodePipeline.
- Create CloudFormation templates and deploy them using AWS CodeBuild
- Create configuration file and deploy using AWS CodeBuild
- Create CloudFormation templates and deploy them using AWS CodePipeline.
- API Gateway
- S3
- SAS
- CloudTrail
- Use S3 metrics and CloudWatch alarms
- Create custom metrics within your Lambda code.
- Create custom metrics within your CloudWatch code.
- Use Lambda metrics and CloudWatch alarms.
- an SSL certificate
- a bitmask
- an AWS KMS key
- an HTTP protocol
- binaries.
- all of these answers
- executables
- Shell scripts
- MVC
- virtual
- stateless
- protocol
- by uploading a .zip file
- all of these answers
- by editing inline
- from an S3 bucket
Q13. You are performance-testing your Lambda to verify that you set the memory size adequately. Where do you verify the execution overhead?
- CLoudWatch logs
- DynamoDB logs
- S3 logs
- Lambda logs.
- CodeStack
- ElasticStack
- Mobile Hub
- CodeDeploy
- proportionally
- equally
- periodically
- daily
Q16. You can restrict the scope of a user's permissions by specifying which two items in an IAM policy?
- resources and users
- resources and conditions
- events and users
- events and conditions
- logging streams
- rotating streams
- logging events
- advancing log groups
- create a Lambda
- be an event source
- assign an IAM role
- delete a Lambda
- Create a Lambda function with a custom runtime and reference the function in your Lambda
- Create a Lambda layer with a custom runtime and reference the layer in your lambda
- You cannot use Lambda in this situation
- Create a Lambda function with a custom runtime
- the execution policy
- the Lambda configuration
- the Lambda nodes
- the IAM user
- department:Sales,department:Sales
- department:Sales,department:sales
- aws:demo;aws:demo
- aws:demo;aws:DEMO
- neither of these answers
- UDP/IP
- TCP/IP
- both of these answers
- automatically
- none of these answers
- manually
- ad hoc
Q24. You are testing your stream-based application and the associated Lambda. AWS best practice advises you to test by varying what?
- stream and record sizes
- stream and shard sizes
- batch and record sizes
- batch and shard sizes
- Place each subnet in a VPC. Associate all subnets to your Lambda.
- Place all subnets in a VPC. Associate all subnets to your Lambda.
- Configure your Lambda to be available to multiple VPCs.
- Configure all application VPCs to be peered.
- number of function calls
- amount of code run
- compute time
- amount of infrastructure used
- Author a Lambda from scratch.
- Use a blueprint.
- Use a .zip deployment package.
- Use the serverless app repository.
- /tmp
- /default
- /temp
- /ds
- Delete the function.
- Set the function concurrent execution limit to 0 while you update the code.
- Reset the function.
- Set the function concurrent execution limit to 100 while you update the code.
- Overprovision memory to run your functions faster and reduce your costs. Do not overprovision your function timeout settings.
- Overprovision memory and your function timeout settings to run your functions faster and reduce your costs.
- Do not overprovision memory. Overprovision your function timeout settings to run your functions faster and reduce costs.
- Do not overprovision memory. Do not overprovision your function timeout settings to run your functions faster and reduce costs.
- removing log groups
- none of these answers
- creating log groups
- updating log groups
- DynamoDB tables
- key-value pairs
- S3 buckets
- none of these answers
Q33. You need to use a Lambda to provide backend logic to your website. Which service do you use to make your Lambda available to your website?
- S3
- API Gateway
- X-Ray
- DynamoDB
Q34. You are creating a Lambda to trigger on change to files in an S3 bucket. Where should you put the bucket name?
- in the Lambda function code
- in a Lambda environment variable
- in the Lambda tags
- in another S3 bucket
- Deploy the Lambda
- Export the function
- none of these answers
- Configure a test event
- Fleece
- NPM
- none of these answers
- Pod
- CloudTrail
- CloudWatch
- CloudFormation
- LogWatch
- a table definition
- queue isolation
- STS Write
- an SNS topic
Q39. You need to set an S3 event trigger on your Lambda to respond when data is added to your bucket from another S3 bucket. Which event type do you configure?
- POST
- "All object create events"
- PUT
- COPY
- Lambda configuration from logging code
- Lambda handler from logging code
- Lambda handler from core logic
- Lambda configuration from core logic
- YAML definition
- CloudFormation stack configuration
- SAML deployment stack
- Zip file of all related files
- only at creation
- only before deployment
- never
- anytime via configuration
- SAM templates have some overlap with CloudFormation templates. Both SAM and CloudFormation templates include resource types that are not in the other type of template.
- SAM templates are a superset of CloudFormation templates. SAM templates include additional resource types.
- CloudFormation templates are a superset of SAM templates. CloudFormation templates include additional resource types.
- SAM templates are a different name for CloudFormation templates. Both template types include the same resource types.
- EdgeCloud
- CloudEdge
- CloudFront
- CloudStack
- custom
- all of these answers
- Java
- Ruby
Q46. You need to setup a mechanism to put controls in place to notify you when you have a spike in Lambda concurrency. What should you do?
- Deploy a CloudTrail alarm that notifies you when function metrics exceed your threshold. Create an AWS budget to monitor costs.
- Deploy a CloudWatch alarm that notifies you when function metrics exceed your threshold. Create an AWS budget to monitor costs.
- Deploy a CloudWatch alarm that notifies you when function metrics exceed your threshold. Create an AWS CostMonitor to monitor costs.
- Deploy a CloudTrail alarm that notifies you when function metrics exceed your threshold. Create an AWS CostMonitor to monitor costs.
- Add extra code to check if the transient cache, or the /tmp directory, has the data that you stored.
- Add extra code to check if the permanent cache, or the /cache directory, has the data that you stored.
- Do nothing. AWS minimizes cols start time by default.
- Create a warm-up Lambda that calls your Lambda every minute
- at rest
- at runtime
- at deployment
- non of these answers
Q49. When you use a resource-based policy to give a service, resource, or account access to your function, how can you apply the scope of that permission??
- at the function level
- at the alias or function level
- at the version, alias, or function level
- at the version or function level
Q50. Lambda can read events from which other AWS services? (ref-https://docs.aws.amazon.com/lambda/latest/dg/lambda-services.html)
- Kinesis, S3, and SQS
- Kinesis, S3, and SNS
- Kinesis, DynamoDB, and SNS
- Kinesis, DynamoDB, and SQS
Explanation
Lambda can used for all services mentioned on the question: Kinesis, S3, SNS, SQS, DynamoDB. But as you can see in the reference, Lambda's responsibility and method invocation can be categorized by Lambda polling and Event Driven (synchronous invocation). When you implement an event-driven architecture, you grant the event-generating service permission to invoke your function in the function's resource-based policy. Then you configure that service to generate events that invoke your function. When you implement a Lambda polling architecture, you grant Lambda permission to access the other service in the function's execution role. Lambda reads data from the other service, creates an event, and invokes your function. According to this analytics, Kinesis-DynamoDB-SQS use same method invocation, Lambda polling.
- all of these answers
- a DynamoDB trigger
- an API Gateway
- an S3 bucket event
Explanation (source google)
With DynamoDB Streams, you can trigger a Lambda function to perform additional work each time a DynamoDB table is updated. Lambda reads records from the stream and invokes your function synchronously with an event that contains stream records.
These events are considered synchronous events. Simply put, it means that when somebody is calling an API Gateway, it will trigger your Lambda function. It's a synchronous event because your Lambda function has to respond to the client directly at the end of its invocation.
You can use Lambda to process event notifications from Amazon Simple Storage Service. Amazon S3 can send an event to a Lambda function when an object is created or deleted.
- Image processing
- web application
- both
- Neither 1st and 2nd
Q53. Events are AWS resources that trigger the Lambda function. What data type is the SAM file Events property?
- Integer
- Float
- Array
- String
Q54. A company is using an API built using Amazon Lambda, Amazon API Gateway, and Amazon DynamoDB in production. The developer has observed high latency during peak periods. Which approach would best resolve the issue?
- Increase the Lambda function timeout
- Route traffic to API Gateway using a Route 53 alias
- Disable payload compression for the API
- Enable API Gateway stage-level caching
- defines serverless applications
- associates permissions policies
- creates Lambda functions
- packages deployment artifacts
- the event source
- the downstream resource
- the log stream
- the Lambda function
Q57. A developer has created a Lambda function to scrub real-time data of extraneous information and then send the scrubbed data to Kinesis for further processing and storage. Some of the data showing up in Kinesis seems to be inaccurate. What's the best way for the developer to debug this?
- Look directly at the Lambda Logs in CloudWatch
- Send the Lambda failures to a Dead Letter Queue
- Use AWS X-Ray to step through the function
- Use Kinesis to write their own custom logging tool
- All of these answers
- From scratch
- From the app repository
- Using a blueprint
Q59. You need to quickly understand execution times for two different Lambda functions with different invocation types: asynchronous and synchronous. What do you do?
- Enable tracing, rerun the lambdas, and view in the lambda console
- View the logs in CloudTrail
- View the logs in CloudWatch
- Enable tracing, rerun the Lambdas, and view in the X-Ray console
- AWS SAM
- AWS CLI
- AWS CloudFormation
- AWS SAM CLI
- Caller
- Runtime
- Request
- Account
Q62. A company will be modernizing their application which is currently running on Amazon Elastic Cloud Compute (EC2) instances. They have experience with scaling this infrastructure using Amazon EC2 Autoscaling. They want to move to serverless infrastructure consisting of an Amazon API Gateway that triggers Lambda functions. They are consulting you about scaling this new infrastructure. What should the company consider in order to make sure the serverless infrastructure scales to their needs?
- Enable Auto Scaling Groups for AWS Lambda to ensure that enough Lambda functions are ready to handle the incoming requests
- Throttle Lambda functions by configuring reserved concurrency, sending the excess traffic to Dead Letter Queues (DLQ) that will be handled when the request volume reduces.
- Look at service limits for Amazon API Gateway and Lambda functions used in order to identify potential bottlenecks and balance performance requirements, costs, and business impact
- Do nothing. API Gateway and AWS Lambda are managed services that have built-in horizontal scaling, security, and high availability to handle unlimited amount of requests
Explanation
In serverless it is important to understand the service limits of all the services used end to end to understand the level of requests that can be handled.
- No, AWS Lambda does not support the use of external packages.
- Yes, AWS Lambda supports the use of custom and NPM packages
- AWS Lambda only supports built-in packages.
- Packages can be used but require additional fees.
- AWS Lambda functions are available 24/7 without any limitations.
- AWS Lambda functions are available but may experience scheduled downtimes.
- AWS Lambda functions are highly available with redundancy and replications.
- AWS Lambda functions are available only during business hours.
- Yes, there is a default limit to be applied at a functional level.
- No, there is no default limit to be applied at a functional level.
- The default limit depends on the AWS Lambda service plan.
- Functional limits are set by users during configuration.
- 60 seconds
- 300 seconds
- 600 seconds
- 30 seconds
- AWS Lambda stores code in plaintext without encryption
- AWS Lambda encrypts and stores it in Amazon S3.
- AWS Lambda does not provide any security measures for code.
- AWS Lambda relies on third-party security tools for code protection.
- Python, C#, JavaScript and Java
- Ruby, PHP, Swift
- C++ and Rust
- # HTML and CSS In serverless it is important to understand the service limits of all the services used end to end to understand the level of requests that can be handled.
- a) AWS Lambda is a database service offered by AWS.
- b) AWS Lambda is a serverless computing service provided by AWS.
- c) AWS Lambda is a machine learning framework developed by AWS.
- d) AWS Lambda is an IoT platform developed by AWS.
- a) Lambda imposes restrictions on the use of outbound network connections.
- b) Lambda imposes restrictions on trace calls for debugging.
- c) Lambda allows unlimited TCP port 25 traffic.
- d) Lambda imposes restrictions on the execution time of functions.
- a) 60 seconds
- b) 300 seconds
- c) 600 seconds
- d) 30 seconds
- a) AWS Lambda stores code in plaintext without encryption.
- b) AWS Lambda encrypts code and stores it in Amazon S3.
- c) AWS Lambda does not provide any security measures for code.
- d) AWS Lambda relies on third-party security tools for code protection.
- a) Python, C#, JavaScript, and Java
- b) Ruby, PHP, and Swift
- c) C++ and Rust
- d) HTML and CSS
- a) Auto-Scaling is a feature that automatically scales AWS Lambda functions.
- b) Auto-Scaling is a feature that automatically scales AWS EC2 instances.
- c) Auto-Scaling is a feature that automatically scales AWS S3 storage.
- d) Auto-Scaling is a feature that automatically scales AWS RDS databases.
- a) Yes, users have full access to the underlying infrastructure.
- b) No, AWS Lambda abstracts the underlying infrastructure and does not provide access.
- c) Users have access to infrastructure but with limited permissions.
- d) Users can request access to infrastructure from AWS support.
- a) No, AWS Lambda does not support the use of external packages.
- b) Yes, AWS Lambda supports the use of custom and NPM packages.
- c) AWS Lambda only supports built-in AWS packages.
- d) Packages can be used but require additional fees.
- a) AWS Lambda functions are available 24/7 without any limitations.
- b) AWS Lambda functions are available but may experience scheduled downtimes.
- c) AWS Lambda functions are highly available with redundancy and replication.
- d) AWS Lambda functions are available only during business hours.
- a) Yes, there is a default limit applied at a functional level.
- b) No, there is no default limit applied at a functional level.
- c) The default limit depends on the AWS Lambda service plan.
- d) Functional limits are set by users during configuration.
Q73. You are using lambda (with large ram allocations) to process videos uploaded to S3 and to convert from their video format to H264. However the operation fails when dealing with particularly large video files. What is the cause of this?
- The default 5 mintutes timeout.
- Lambda does not allow vedio encoding.
- s3 transfer bottlenecks
- s3 cannot talk to Lambda
- an input trigger
- an input event
- an event source
- an event trigger
Explanation
An event source is an AWS service or developer-created application that produces events that trigger an AWS Lambda function to run. Some services publish these events to Lambda by invoking the cloud function directly (for example, Amazon S3).
https://aws.amazon.com/lambda/faqs/#:~:text=An%20event%20source%20is%20an,for%20example%2C%20Amazon%20S3
- HTTPS certificate
- IAM role permissions
- DynamoDB SDK
- admin role
- [ ]
- You are charged based on the number of Lambda functions you create.
- You are charged for each Lambda invocation and the duration of execution time.
- You are charged based on the memory allocated to the function, irrespective of invocation.
- You are charged a flat monthly fee for using Lambda.
Explanation
- AWS Lambda charges are based on the number of requests (invocations) and the duration of time the code runs. Lambda pricing is based on the total number of requests and the time your code runs (in increments of 1 millisecond) from the start of the function until it returns or otherwise terminates. The duration is rounded up to the nearest 1ms.
- 5 minutes
- 15 minutes
- 60 minutes
- 10 minutes
Explanation
- AWS Lambda allows a maximum execution timeout of 15 minutes for a single invocation. After 15 minutes, the function will be automatically terminated, even if the function's process is still running. This is useful for long-running tasks but imposes a limit to ensure scalability and efficiency.
- Amazon S3
- Amazon RDS
- Amazon DynamoDB Streams
- Amazon API Gateway
Explanation
- Amazon RDS (Relational Database Service) cannot directly trigger a Lambda function. RDS is a managed database service and does not have built-in functionality to trigger Lambda directly. However, other services like S3, DynamoDB Streams, and API Gateway can trigger Lambda functions when specific events occur (e.g., file uploads, data changes, API calls).
Q79. You work for a company that has an AWS cloud deployment utilizing Lambda functions for various tasks. You need to select the appropriate resource types and sizes for these tasks. How should you optimize the amount of memory configured for Lambda functions on your AWS cloud?
- Use CloudTrail to track all API calls made on the system.
- Use CloudWatch to monitor memory-bound functions.
- Utilize CloudFront for caching data for end users.
- Create a new VPC with an AWS Batch computing environment in it.
Explanation
You would use CloudWatch to monitor memory-bound functions and create an alarm when memory consumption nears a preset limit. This will help you find out when memory consumption reaches close to the preset maximum value so that you can avoid processing bottlenecks by increasing the configured memory for the functions. AWS CloudWatch allows you to monitor the AWS system in real time by monitoring and tracking resource metrics.
Q80. You are running a photo-sharing website using various AWS services. You have an AWS Lambda function that performs image resizing and cropping whenever a user uploads a picture to an S3 bucket. You need to find a way to allow other AWS accounts and services to invoke this function when necessary. What would you do to implement this functionality?
- Use an identity-based policy to grant the needed permissions.
- Use a resource-based policy to grant the needed permissions.
- Create an IAM user group to allow access to resources.
- Set the permissions for the S3 bucket to public.
Explanation
You would use a resource-based policy to grant the needed permissions. A resource-based policy is attached to an AWS resource such as an Amazon Simple Storage Service (S3) bucket, a virtual private cloud (VPC) endpoint, AWS Key Management Service (KMS) encryption keys, and Amazon Simple Queueing Service (SQS) queues. Using a resource-based policy, you specify the principal who can access the resource and their permissible actions on the resource. A principal can be an account, user, role, or session principal. Session principals can be IAM federated users or role sessions. Policies are AWS objects that specify the permissions of an identity or a resource. You can choose an identity-based or resource-based policy when you create a permissions policy for restricted access to resources.