CCNA Db Mgmt Ops Questions

75 of 312 questions · Page 1/5 · Db Mgmt Ops topic · Answers revealed

1
MCQhard

A company is using Amazon DynamoDB with on-demand capacity. The application performs many small writes that are throttled frequently. The company wants to minimize costs while reducing throttling. What should the company do?

A.Increase the write capacity units manually.
B.Use DynamoDB Accelerator (DAX) to cache writes.
C.Switch to provisioned capacity with auto scaling.
D.Use batch writes to combine small writes.
AnswerC

Provisioned with auto scaling can handle predictable patterns and reduce cost vs. on-demand.

Why this answer

Option A is incorrect because on-demand already scales. Option B is correct because DynamoDB Accelerator (DAX) reduces read/write load. Option C is incorrect because provisioned with auto scaling can be cost-effective.

Option D is incorrect because batch writes may not fit small writes.

2
MCQeasy

A company is migrating an on-premises Oracle database to Amazon RDS for Oracle. During the migration, they need to ensure minimal downtime. Which AWS service should be used for the migration?

A.AWS Database Migration Service
B.AWS DataSync
C.Amazon S3 Transfer Acceleration
D.AWS Server Migration Service
AnswerA

DMS supports homogeneous and heterogeneous migrations with minimal downtime.

Why this answer

AWS Database Migration Service (DMS) is designed for minimal-downtime migrations, supporting continuous replication.

3
MCQmedium

A database administrator is troubleshooting a slow-running query on an Amazon RDS for PostgreSQL DB instance. The query plan shows a sequential scan on a large table. The table has a primary key and an index on the column used in the WHERE clause. Why might the query optimizer choose a sequential scan over an index scan?

A.The query is expected to return a large percentage of rows.
B.The query is a SELECT * without a WHERE clause.
C.The table's statistics are outdated.
D.The index on the column is not being used because it is a composite index with a different column order.
AnswerA

When a query returns a significant portion of rows, a sequential scan is often faster than an index scan because it avoids many random I/O operations.

Why this answer

Option B is correct because if the optimizer estimates that a large percentage of rows will be returned, a sequential scan can be more efficient than random I/O from an index. Option A is wrong because outdated statistics can cause suboptimal plans, but the question asks for a reason the planner might choose sequential scan; outdated stats could lead to either choice. Option C is wrong because the presence of an index does not force its use; the optimizer decides.

Option D is wrong because the query has a WHERE clause, so a full table scan is not the only option, but it may be chosen due to the selectivity.

4
Multi-Selecteasy

A company is using Amazon ElastiCache for Redis to cache database query results. The cache cluster is a single node. The application experiences increased latency when the cache misses. Which TWO actions can improve the cache hit ratio?

Select 2 answers
A.Increase the Time-to-Live (TTL) for cached items.
B.Disable persistence to free memory.
C.Decrease the Time-to-Live (TTL) for cached items.
D.Add read replicas to the ElastiCache cluster.
E.Implement lazy loading to populate the cache on read requests.
AnswersA, E

Longer TTL reduces cache misses.

Why this answer

Options A and E are correct. Option A: Increasing the TTL keeps data in cache longer, reducing misses. Option E: Using lazy loading caches data on demand, which can improve hit ratio over time.

Option B is wrong because decreasing TTL would increase misses. Option C is wrong because more read replicas do not improve hit ratio; they improve read throughput. Option D is wrong because disabling persistence does not affect hit ratio.

5
MCQmedium

A social media company runs a large Amazon DynamoDB table (Users) with 10 TB of data. The table uses on-demand capacity. Recently, the application started experiencing occasional ProvisionedThroughputExceeded exceptions during read-heavy periods. The table's read metrics show that consumed read capacity is consistently below 50% of provisioned capacity. The application uses eventually consistent reads. The table has a global secondary index (GSI) on the 'status' attribute. The GSI's read capacity consumption is often at 100% of its provisioned capacity. What is the most likely cause of the throttling?

A.The on-demand capacity mode is not suitable for this workload; switch to provisioned with auto scaling.
B.The base table's read capacity is insufficient despite on-demand mode.
C.The GSI is throttling because its read capacity is not set to on-demand, or the GSI's partition key is causing hot partitions.
D.The application should use strongly consistent reads to reduce throttling.
AnswerC

GSI has its own capacity; if it throttles, base table reads that use the GSI may be throttled.

Why this answer

The GSI has its own read capacity settings. If the GSI is throttled, reads on the base table that require the GSI may also be throttled. Option B is correct.

Option A is unlikely because base table RCU is not maxed. Option C is incorrect because on-demand auto scaling does not apply to GSIs separately in the same way. Option D is incorrect because eventual consistency does not cause throttling.

6
Multi-Selectmedium

A company is running an Amazon RDS for MySQL DB instance with Multi-AZ. The company wants to perform a major version upgrade with minimal downtime. Which TWO actions should be taken? (Choose TWO.)

Select 2 answers
A.Use the AWS CLI to modify the DB instance with the --allow-major-version-upgrade flag.
B.Use the AWS Management Console to modify the DB instance and apply the upgrade immediately.
C.Enable automatic minor version upgrades on the DB instance.
D.Create a read replica, upgrade the replica to the new version, and promote it to become the primary.
E.Take a snapshot and restore to the new version.
AnswersB, D

For Multi-AZ, this performs the upgrade on the standby first, then fails over, minimizing downtime.

Why this answer

Option A is correct because enabling automatic minor version upgrades is good practice but not required for major upgrades. Option B is correct because creating a read replica, upgrading it first, and then promoting it minimizes downtime. Option D is also correct (but wait, the question says 'Which TWO' and there are exactly two correct: B and D? Actually, A is not required for major upgrades.

Let's check: Option B and D are correct: B: create read replica, upgrade, promote; D: perform the upgrade on the standby first. Option A is not directly related. Option C is wrong because it causes downtime.

Option E is wrong because it is not supported for major upgrades. So correct: B and D.

7
MCQeasy

A company is using Amazon DynamoDB and needs to export data to Amazon S3 for analysis. Which AWS service can perform this export without writing custom code?

A.AWS Data Pipeline
B.Amazon EMR
C.AWS Glue
D.DynamoDB Console
AnswerC

Glue can run ETL jobs to export DynamoDB data to S3.

Why this answer

AWS Glue provides a built-in DynamoDB-to-S3 export feature that requires no custom code. You can create a Glue job using the 'Export DynamoDB table to S3' blueprint, which automatically handles schema inference, data conversion, and partitioning. This is the only option that directly supports the export without writing any code.

Exam trap

The trap here is that candidates may choose AWS Data Pipeline because it is a traditional ETL service, but they overlook that AWS Glue now offers a simpler, code-free export blueprint specifically for DynamoDB-to-S3, making it the most direct answer.

How to eliminate wrong answers

Option A is wrong because AWS Data Pipeline requires defining a pipeline with activities and resources, which involves configuration but not custom code; however, it is not the simplest or most direct service for this task and is deprecated in favor of Glue. Option B is wrong because Amazon EMR requires you to write or run custom scripts (e.g., Spark or Hive) to export data from DynamoDB to S3, which does not meet the 'without writing custom code' requirement. Option D is wrong because the DynamoDB Console only allows manual export of table data to S3 via the 'Export to S3' feature, but this is a one-time, manual operation, not an automated service; the question asks for a 'service' that can perform the export, and the console is a UI, not a service.

8
MCQeasy

A company is migrating an on-premises Oracle database to Amazon RDS for Oracle. The database is 2 TB in size and has a 100 Mbps internet connection. The migration must be completed within 3 days with minimal downtime. Which approach is MOST suitable?

A.Export the database as a dump file, upload to S3, and restore to RDS.
B.Use AWS Database Migration Service (DMS) with a full load from an AWS Snowball device, then ongoing replication.
C.Use AWS DMS with full load over the internet, then ongoing replication.
D.Create a VPN connection to AWS and use Oracle Data Pump over the VPN.
AnswerB

Snowball handles the initial large data transfer, and DMS provides minimal downtime replication.

Why this answer

Option A is correct because AWS DMS can perform a live migration with minimal downtime, and using an AWS Snowball for the initial load reduces the time over the slow internet connection. Option B is wrong because uploading over the internet would take too long. Option C is wrong because restoring from an on-premises backup over the internet is also slow.

Option D is wrong because a VPN does not solve the bandwidth limitation.

9
MCQhard

A database team is migrating an on-premises Oracle database to Amazon Aurora PostgreSQL. The team needs to ensure minimal downtime and data consistency. Which approach should be used?

A.Use the PostgreSQL foreign data wrapper (FDW) to link the Oracle database
B.Use AWS Server Migration Service (SMS) to replicate the database
C.Use AWS Database Migration Service (DMS) with ongoing replication using change data capture (CDC)
D.Use pg_dump and pg_restore to migrate the data during a maintenance window
AnswerC

DMS with CDC minimizes downtime by replicating changes continuously.

Why this answer

AWS DMS with ongoing replication using change data capture (CDC) is the correct approach because it enables a live migration with minimal downtime. DMS can perform a full load of the Oracle database and then continuously replicate ongoing changes from Oracle to Aurora PostgreSQL, ensuring data consistency at the point of cutover. This method avoids the need for a long maintenance window and supports heterogeneous migrations with automatic schema conversion.

Exam trap

The trap here is that candidates often confuse AWS DMS with simpler dump-and-restore tools (pg_dump/pg_restore) or assume that a foreign data wrapper can perform a migration, when in fact DMS is the only AWS managed service designed specifically for heterogeneous database migrations with minimal downtime via CDC.

How to eliminate wrong answers

Option A is wrong because the PostgreSQL foreign data wrapper (FDW) is used for querying remote databases in real-time, not for migrating data with minimal downtime and consistency guarantees; it does not provide a managed replication or cutover mechanism. Option B is wrong because AWS Server Migration Service (SMS) is designed for migrating virtual machines (VMs) from on-premises to AWS, not for database-level replication; it cannot handle heterogeneous database migrations or CDC. Option D is wrong because pg_dump and pg_restore require taking the source database offline or using a maintenance window, which contradicts the requirement for minimal downtime; this approach also does not support ongoing replication to keep data consistent during migration.

10
MCQeasy

A database administrator needs to track changes to an Amazon RDS DB instance's configuration, such as modifications to the DB instance class or security group. Which AWS service should be used?

A.Amazon CloudWatch Logs
B.AWS Config
C.AWS CloudTrail
D.AWS Systems Manager Patch Manager
AnswerB

AWS Config tracks configuration changes and provides a history.

Why this answer

Option B is correct because AWS Config records configuration changes to RDS instances. Option A is wrong because CloudTrail records API calls, not configuration state. Option C is wrong because CloudWatch Logs are for log data, not config changes.

Option D is wrong because Systems Manager Patch Manager is for patching.

11
MCQhard

A database specialist is troubleshooting a performance issue on an Amazon RDS for MySQL DB instance. The CPU utilization is consistently above 90%, but the IOPS and memory metrics are well within limits. Which tool should the specialist use to identify the root cause?

A.Enable AWS CloudTrail to log database queries.
B.Use Amazon RDS Enhanced Monitoring to view OS-level metrics.
C.Check RDS events in the AWS Management Console.
D.Use Amazon RDS Performance Insights to identify the top SQL queries by CPU usage.
AnswerD

Performance Insights provides query-level performance data.

Why this answer

Option A is correct. Performance Insights can show the queries that are consuming the most CPU. Option B is wrong because Enhanced Monitoring is for OS-level metrics, not per-query CPU usage.

Option C is wrong because RDS Events are for operational events. Option D is wrong because CloudTrail is for API calls.

12
MCQhard

A company is deploying an Amazon Aurora MySQL database. The company requires that the database withstand the loss of two copies of data without impacting write availability. Which configuration should the company use?

A.Aurora with 3 copies of data in 3 Availability Zones
B.Aurora with 2 copies of data in 2 Availability Zones
C.Aurora with 3 copies of data in 2 Availability Zones
D.Aurora with 6 copies of data across 3 Availability Zones
AnswerD

Aurora automatically stores 6 copies across 3 AZs, allowing it to tolerate loss of two copies without affecting write availability.

Why this answer

Aurora stores 6 copies of data across 3 AZs. The loss of two copies can be tolerated if they are distributed. Option A (3 copies in 3 AZs) is incorrect; Aurora uses 6 copies.

Option B (2 copies in 2 AZs) is not correct. Option D (3 copies in 2 AZs) is not standard. The correct answer is C because Aurora's architecture provides higher durability.

13
MCQmedium

A gaming company uses Amazon Aurora PostgreSQL for its leaderboard data. The database has a writer instance and two reader instances. The application frequently queries the leaderboard to display top players. The queries involve sorting and aggregation on a large table with millions of rows. Recently, the queries started timing out during peak hours. The database administrator analyzed the workload and found that the reader instances are underutilized, while the writer instance has high CPU due to write operations. The administrator wants to offload the read-heavy leaderboard queries to the readers without modifying the application code. What should the administrator do?

A.Configure the application to use the Aurora reader endpoint for read-only queries.
B.Upgrade the writer instance to a larger instance class to handle both read and write operations.
C.Create additional reader instances to distribute the read load.
D.Implement a read-only Aurora cluster and point read queries to it.
AnswerA

The reader endpoint load balances across readers, offloading reads from the writer.

Why this answer

Option C is correct because Aurora auto-scaling reader endpoints distribute connections across readers; the application can use the reader endpoint for read-only queries. Option A is wrong because read replicas are already present. Option B is wrong because upgrading the writer does not offload reads.

Option D is wrong because creating a new cluster is unnecessary.

14
MCQhard

A company uses Amazon DynamoDB with global tables for a multi-region application. The application writes to the table in us-east-1. A developer notices that updates made in us-east-1 are not appearing in the replica in eu-west-1 after several minutes. Which action should be taken to diagnose the issue?

A.Review the CloudWatch metrics for ReplicationLatency and PendingReplicationCount for the global table.
B.Modify the application to use the eu-west-1 endpoint for writes.
C.Check that the table has an active DynamoDB Streams stream with StreamSpecification set to KEYS_ONLY.
D.Verify that the TTL attribute on the table is correctly configured.
AnswerA

These metrics show the replication status and can identify delays or errors in the replication process.

Why this answer

Option D is correct because CloudWatch metrics for ReplicationLatency and PendingReplicationCount can indicate replication delays or failures. Option A is wrong because update operations do not have a TTL. Option B is wrong because StreamSpecification is required for global tables but is automatically enabled; checking it is not a diagnostic step.

Option C is wrong because DynamoDB global tables use the same endpoint for both regions; replication is handled internally.

15
Multi-Selectmedium

A company is running a production Amazon RDS for MySQL Multi-AZ DB instance. The database administrator needs to perform a minor version upgrade with minimal downtime. Which TWO actions should be taken? (Choose TWO.)

Select 2 answers
A.Modify the DB instance to enable automatic minor version upgrade.
B.Apply the upgrade immediately during the next maintenance window.
C.Create a read replica, upgrade the replica, and promote it.
D.Modify the DB instance to be a Single-AZ deployment to simplify the upgrade.
E.Stop the DB instance before applying the upgrade.
AnswersA, B

Automatic upgrades apply during maintenance window with minimal downtime.

Why this answer

Enabling automatic minor version upgrade allows the upgrade to occur during the maintenance window with minimal downtime. Applying the upgrade immediately during the maintenance window also minimizes impact. Stopping the instance causes downtime.

Modifying the DB instance to single-AZ increases downtime risk. Creating a read replica does not help upgrade the primary.

16
Multi-Selectmedium

Which TWO actions can help reduce the recovery time objective (RTO) for an Amazon RDS for PostgreSQL DB instance in the event of a failure? (Choose 2.)

Select 2 answers
A.Increase the DB instance class size.
B.Enable Multi-AZ deployment.
C.Create a read replica in a different Availability Zone.
D.Configure automated backups with point-in-time recovery.
E.Take manual snapshots every hour.
AnswersB, D

Multi-AZ provides automatic failover to a standby.

Why this answer

Options B and C are correct because Multi-AZ provides automatic failover, and automated backups with point-in-time recovery enable fast restore. Option A is wrong because Read replicas are for read scaling, not failover. Option D is wrong because manual snapshots are not automated and slower.

Option E is wrong because increasing instance size does not reduce RTO.

17
MCQeasy

A database administrator notices that the free storage space on an Amazon RDS for PostgreSQL DB instance is decreasing rapidly. The instance has automated backups enabled with a retention period of 7 days. Which action should be taken to monitor storage usage and prevent running out of space?

A.Create a lifecycle policy to automatically move old backup files to Amazon S3 Glacier.
B.Set up a CloudWatch alarm on the FreeStorageSpace metric to notify when space is low.
C.Increase the allocated storage for the DB instance immediately.
D.Enable Performance Insights to track storage usage.
AnswerB

CloudWatch alarms provide proactive monitoring and alerting for storage usage.

Why this answer

Option B is correct because CloudWatch metrics provide real-time tracking of FreeStorageSpace. Option A is wrong because increasing storage is reactive, not proactive. Option C is wrong because RDS manages backups separately and does not use S3 for instance storage.

Option D is wrong because Performance Insights is for performance metrics, not storage monitoring.

18
MCQhard

A company uses Amazon DynamoDB with global tables in a multi-Region active-active configuration. The application writes to the table in us-east-1 and reads from us-west-2. Recently, a network partition occurred between the two regions, and after recovery, some data was lost. What is the most likely reason for the data loss?

A.The application used eventually consistent reads, causing stale data to be overwritten.
B.The last-writer-wins conflict resolution used timestamp-based coordination without clock synchronization.
C.The table had a TTL attribute that expired the data before replication completed.
D.The network partition caused the replication to stop, and data was not replicated.
AnswerB

Without synchronized clocks, an older write from one region may have a higher timestamp and overwrite a newer write.

Why this answer

Global tables use last-writer-wins (LWW) conflict resolution based on timestamps. If clocks are not synchronized, an older write from one region can overwrite a newer write. Option A (network partition caused inconsistent replication) is not the direct cause; Option B (LWW with unsynchronized clocks) is correct.

Option C (Consistent Reads) is unrelated; Option D (TTL) is not relevant.

19
MCQeasy

A company is using Amazon ElastiCache for Redis to cache database query results. The application team reports that cache hit ratio has dropped significantly. What is the first step to investigate?

A.Run the Redis INFO command to see memory usage
B.Review the ElastiCache event logs for node failures
C.Check the CacheHitRate and Evictions metrics in CloudWatch
D.Check the Redis AOF persistence logs
AnswerC

These metrics directly indicate cache effectiveness.

Why this answer

When the cache hit ratio drops significantly, the first step is to investigate whether the cache is evicting keys due to memory pressure or if the working set no longer fits. CloudWatch metrics such as `CacheHitRate` and `Evictions` provide immediate visibility into these conditions without requiring direct Redis access. This aligns with the AWS Well-Architected Framework's principle of observability before making configuration changes.

Exam trap

The trap here is that candidates assume the first step should be a low-level Redis command (INFO) or logs, but AWS best practice emphasizes using CloudWatch metrics for initial investigation because they provide aggregated, historical data without requiring direct access to the cluster.

How to eliminate wrong answers

Option A is wrong because running the Redis INFO command requires direct access to the Redis endpoint and does not provide historical trend data; it only shows a point-in-time snapshot, which is insufficient for diagnosing a drop in cache hit ratio over time. Option B is wrong because ElastiCache event logs record node lifecycle events (e.g., failover, maintenance) but do not capture cache performance metrics like hit ratio or evictions; they are useful for operational incidents, not performance degradation. Option D is wrong because AOF persistence logs are used for durability and data recovery, not for monitoring cache efficiency; checking them would not reveal why the cache hit ratio has dropped.

20
MCQhard

A company is using Amazon Aurora MySQL-Compatible Edition. The database has frequent deadlocks, and the application team suspects that the isolation level is causing the issue. The current isolation level is REPEATABLE READ. The team wants to reduce deadlocks while maintaining data consistency. Which isolation level should be recommended?

A.READ UNCOMMITTED
B.READ COMMITTED
C.SNAPSHOT ISOLATION
D.SERIALIZABLE
AnswerB

READ COMMITTED reduces the number of locks held, thereby decreasing the likelihood of deadlocks while still preventing dirty reads.

Why this answer

Option A is correct because READ COMMITTED reduces locking and is less prone to deadlocks compared to REPEATABLE READ, while still providing consistent reads at the statement level. Option B is wrong because READ UNCOMMITTED can cause dirty reads and is not typically used for transactional databases. Option C is wrong because SERIALIZABLE increases locking and can increase deadlocks.

Option D is wrong because SNAPSHOT ISOLATION is not directly supported by MySQL; it is a SQL Server feature.

21
Multi-Selectmedium

A company is using Amazon RDS for MySQL with Multi-AZ deployment. The DBA receives an alert that the standby replica is lagging behind the primary. Which TWO actions should the DBA take to investigate the issue? (Choose TWO.)

Select 2 answers
A.Check the 'Replica Lag' metric for any read replicas.
B.Verify network latency between the primary and standby.
C.Check the 'ReplicaLag' metric in Amazon CloudWatch.
D.Increase the allocated storage to improve IOPS.
E.Change the replication type from asynchronous to synchronous.
AnswersB, C

High network latency can cause replication lag.

Why this answer

Option A and Option C are correct. Option A checks the replication lag metric. Option C checks network latency, which can affect replication.

Option B is wrong because Multi-AZ does not have read replicas. Option D is wrong because storage type does not directly cause lag. Option E is wrong because Multi-AZ uses synchronous replication, not async.

22
Multi-Selectmedium

A company is migrating an on-premises Oracle database to Amazon RDS for Oracle. Which TWO methods can the database specialist use to minimize downtime during the migration?

Select 2 answers
A.Use Oracle Recovery Manager (RMAN) to back up and restore.
B.Use Oracle GoldenGate to replicate data continuously.
C.Use AWS Database Migration Service (DMS) with ongoing replication.
D.Take a full database backup and restore to RDS.
E.Use Oracle Data Pump to export and import the database.
AnswersB, C

GoldenGate provides real-time replication with minimal downtime.

Why this answer

Options B and D are correct. AWS DMS with ongoing replication (B) and Oracle GoldenGate (D) both support near-zero downtime migration. Option A is wrong because exporting/importing causes downtime.

Option C is wrong because RMAN is not directly supported for RDS. Option E is wrong because a backup/restore causes downtime.

23
MCQhard

Refer to the exhibit. A database administrator runs the AWS CLI command to check the status of an Amazon RDS MySQL DB instance. Based on the output, what action is required to apply the pending modifications?

A.Reboot the DB instance to apply the pending parameter group changes.
B.Take a snapshot of the DB instance before applying changes.
C.Modify the DB parameter group to change the parameter values.
D.Modify the DB instance to set the backup retention period to 7.
AnswerA

The ParameterApplyStatus shows 'pending-reboot', so a reboot is required to apply the parameter changes.

Why this answer

Option C is correct because the ParameterApplyStatus is 'pending-reboot', indicating that a reboot is required to apply the parameter changes. The backup window change and password update are also pending, but the parameter group changes specifically require a reboot. Option A is incorrect because modifying the backup window does not require a reboot.

Option B is incorrect because modifying the DB parameter group is already done; the status shows pending-reboot. Option D is incorrect because a snapshot is not required to apply changes.

24
MCQhard

Refer to the exhibit. An RDS for PostgreSQL instance shows frequent checkpoints every 10 seconds. What is the most likely cause?

A.Autovacuum is not running, causing bloat.
B.The instance is running out of storage space.
C.There are too many concurrent connections.
D.The 'max_wal_size' parameter is set too low, causing frequent WAL switches.
AnswerD

Low max_wal_size leads to frequent checkpoints.

Why this answer

Option A is correct. Frequent checkpoints often indicate the log file size (max_wal_size) is too small, causing frequent WAL switches. Option B is wrong because full_storage? might cause issues but not specifically checkpoints.

Option C is wrong because high connections may cause load but not checkpoints directly. Option D is wrong because autovacuum runs independently.

25
MCQhard

A company is using Amazon DynamoDB with on-demand capacity mode. The application experiences occasional throttling on a table during peak hours. The table's read and write requests are within the throughput limits, but the provisioned read/write capacity is exceeded. What is the most likely cause of this throttling?

A.The table's previous peak throughput was lower than the current traffic, and DynamoDB is still adapting.
B.The table has a hot partition that is receiving more requests than the partition can handle.
C.The table has exceeded the maximum allowed throughput for on-demand capacity mode.
D.The table's provisioned read/write capacity is set too low.
AnswerA

On-demand capacity mode can throttle if traffic exceeds the table's previous peak by a large margin, as DynamoDB needs time to scale up.

Why this answer

Option B is correct because on-demand capacity mode automatically scales to handle up to the table's previous peak throughput, but it can throttle if there is a sudden spike beyond that peak. Option A is incorrect because on-demand capacity mode does not use provisioned capacity; it scales automatically. Option C is incorrect because partition hot spots can cause throttling even if total throughput is within limits, but the question states that read and write requests are within limits.

Option D is incorrect because on-demand capacity mode does not have a table-wide throughput limit; it scales automatically.

26
MCQeasy

A company runs an Amazon RDS for SQL Server DB instance in a VPC. The security group for the DB instance allows inbound traffic on port 1433 from the application servers' security group. The application servers can connect to the database, but a database administrator cannot connect from their workstation using SQL Server Management Studio (SSMS). What is the MOST likely cause?

A.The security group does not allow inbound traffic from the DBA workstation's IP address.
B.The DBA is using an incompatible version of SSMS.
C.The DB instance is configured as Multi-AZ, which restricts direct connections.
D.The DB instance has encryption enabled, which blocks non-encrypted connections.
AnswerA

The security group only allows traffic from the app servers; the DBA's IP is not allowed.

Why this answer

The DBA's workstation is not within the VPC, so it needs a public IP and the security group must allow inbound traffic from the workstation's IP. Option A (DBA's IP not in security group) is correct. Option B (SSMS version) is unlikely; Option C (Multi-AZ) irrelevant; Option D (encryption) does not prevent connection.

27
MCQmedium

A company has an Amazon DynamoDB table with on-demand capacity mode. The table experiences a sudden spike in traffic, and the application starts receiving ProvisionedThroughputExceededException errors. What is the most likely cause?

A.The provisioned read capacity units are insufficient
B.The table has reached the maximum number of read capacity units
C.The traffic spike exceeded the previous peak traffic by more than double in a short period
D.Auto Scaling is not configured to increase capacity
AnswerC

DynamoDB on-demand mode uses a token bucket algorithm; sudden huge spikes can cause throttling.

Why this answer

Option D is correct because on-demand mode can throttle if traffic exceeds the previous peak by a large margin in a short time. Option A is wrong because on-demand mode does not have provisioned throughput. Option B is wrong because there is no auto-scaling in on-demand mode.

Option C is wrong because read/write capacity units are not set.

28
MCQmedium

A company is using Amazon RDS for PostgreSQL with read replicas to offload read traffic. The company wants to ensure that the read replicas are always in sync with the primary instance. Which metric should the company monitor to detect replication lag?

A.DiskQueueDepth
B.ReplicaLag
C.TransactionLogsDiskUsage
D.ReadLatency
AnswerB

This metric shows the time difference between the primary and replica in seconds.

Why this answer

RDS provides the ReplicaLag metric in CloudWatch for PostgreSQL read replicas. Option A (DiskQueueDepth) is for storage. Option B (ReadLatency) is for read operations.

Option D (TransactionLogsDiskUsage) is not a standard metric.

29
MCQhard

A company uses Amazon RDS for PostgreSQL with Multi-AZ deployment. They experience increased write latency during peak hours. The DB instance size is db.r5.large. Which action would MOST effectively reduce write latency?

A.Switch to a db.r5.xlarge instance type.
B.Disable the Multi-AZ feature and use asynchronous replication with a read replica for failover.
C.Enable the synchronous_commit parameter to 'off'.
D.Enable Multi-AZ with two standby replicas.
AnswerB

Asynchronous replication reduces write latency; read replica can be promoted for failover.

Why this answer

Multi-AZ deployments use synchronous standby; enabling Multi-AZ with one standby reduces latency overhead compared to two standbys.

30
MCQmedium

A company is migrating an on-premises Oracle database to Amazon RDS for Oracle. The database size is 500 GB. The migration must have minimal downtime. Which AWS service should be used to perform the migration?

A.AWS Snowball Edge
B.AWS Database Migration Service (DMS)
C.AWS DataSync
D.Amazon RDS for Oracle snapshot copy
AnswerB

DMS supports Oracle to RDS Oracle migrations with minimal downtime using change data capture.

Why this answer

AWS Database Migration Service (DMS) is the correct choice because it supports heterogeneous migrations from Oracle to Amazon RDS for Oracle with minimal downtime. DMS can perform continuous replication using Oracle's change data capture (CDC) via LogMiner or binary reader, allowing the source database to remain operational during the migration. This makes it ideal for a 500 GB database where downtime must be minimized.

Exam trap

The trap here is that candidates often confuse AWS DataSync or Snowball Edge as viable options for live database migrations, but DataSync is for file/object transfers and Snowball Edge is for offline bulk data movement, neither of which support ongoing change replication or minimal-downtime database migration.

How to eliminate wrong answers

Option A is wrong because AWS Snowball Edge is a physical data transfer device designed for large-scale offline data migrations (typically >10 TB) or environments with limited network bandwidth, not for minimal-downtime online database migrations. Option C is wrong because AWS DataSync is a service for transferring files and objects between on-premises storage and AWS (e.g., NFS, SMB, S3), not for live database replication or heterogeneous database migrations. Option D is wrong because Amazon RDS for Oracle snapshot copy only works between existing RDS instances (e.g., cross-region or cross-account copies) and cannot ingest data from an on-premises Oracle database; it requires the source to already be an RDS instance.

31
MCQhard

A company runs a critical application on an Amazon RDS for MySQL DB instance. The company requires that the database be available with minimal downtime during a disaster recovery scenario. The current RDS instance is in us-east-1. The company wants to have a standby database in us-west-2 with automatic failover. What should the company do to meet this requirement?

A.Create a Multi-AZ deployment in us-west-2 and use Amazon Route 53 to failover.
B.Take daily snapshots and copy them to us-west-2. Restore from snapshot in us-west-2 during a disaster.
C.Create a cross-region read replica in us-west-2. Configure automatic failover using Amazon Route 53 health checks.
D.Create a Multi-AZ deployment in us-east-1.
AnswerC

The read replica can be promoted quickly, and Route 53 can redirect traffic automatically.

Why this answer

An RDS cross-region read replica can be promoted to a standalone instance in a disaster. Option A (Multi-AZ in us-east-1) does not provide cross-region failover. Option B (snapshots) has downtime.

Option D (Multi-AZ in us-west-2) does not help if us-east-1 fails.

32
Multi-Selecteasy

A company is planning to migrate its on-premises Oracle database to Amazon RDS for Oracle. The database uses Oracle Data Guard for disaster recovery. Which TWO AWS services can be used to assess the database and plan the migration? (Choose TWO.)

Select 2 answers
A.AWS Migration Hub
B.CloudEndure Disaster Recovery
C.AWS Snowball
D.AWS Database Migration Service (DMS)
E.AWS Schema Conversion Tool (SCT)
AnswersD, E

DMS can migrate data and assess compatibility.

Why this answer

Option C and Option D are correct. AWS DMS can migrate the database, and AWS Schema Conversion Tool (SCT) can assess and convert the schema. Option A is wrong because CloudEndure is for server migration.

Option B is wrong because AWS Migration Hub tracks migrations but does not assess databases. Option E is wrong because AWS Snowball is for large data transfer offline.

33
Multi-Selecthard

A financial services company runs an Amazon Aurora MySQL database cluster with a single writer and two readers. The cluster handles critical transactional workloads. Over the past month, the database experienced intermittent read replica lag spikes that caused stale reads in application queries. The database administrator needs to identify the root cause and reduce replica lag. Which THREE steps should the administrator take to diagnose and mitigate the issue?

Select 3 answers
A.Switch from a single-writer cluster to Multi-AZ DB instance to reduce replication lag.
B.Upgrade the reader instances to a larger instance class to match the writer.
C.Use Performance Insights on the reader instances to identify high-load queries causing resource contention.
D.Check the binlog retention hours parameter and reduce it if set to a high value.
E.Enable slow query logging on the writer instance and analyze long-running transactions.
AnswersC, D, E

Performance Insights can pinpoint resource bottlenecks on readers.

Why this answer

Option A is correct because analyzing slow query logs helps identify long-running queries on the writer that may cause replication delay. Option B is correct because increased binary log retention can lead to lag; reducing it can help. Option C is correct because using Performance Insights on readers reveals resource bottlenecks.

Option D is wrong because disabling Multi-AZ does not affect replica lag. Option E is wrong because upgrading readers to the same instance class as the writer may not address the root cause if the issue is on the writer side.

34
MCQhard

A company has a production Amazon Aurora MySQL DB cluster with one writer and two reader instances. The application uses a custom connection pool that uses the writer endpoint for all database calls. The application is experiencing increased latency during peak hours. A database specialist suggests using the reader endpoint for read-only queries. What change is required on the application side to implement this recommendation?

A.Modify the Aurora cluster to enable load balancing for the reader endpoint.
B.Create a new custom endpoint for read-only queries and use it instead of the reader endpoint.
C.Replace the writer endpoint with the reader endpoint in the connection pool configuration.
D.Update the application's connection logic to use the cluster endpoint for writes and the reader endpoint for reads.
AnswerD

The reader endpoint distributes read traffic across all reader instances, reducing writer load.

Why this answer

The application needs to differentiate between read and write queries and send read queries to the reader endpoint while write queries continue to use the writer endpoint. No changes to the Aurora cluster are needed; Aurora automatically handles connectivity to reader instances via the reader endpoint. The cluster endpoint remains unchanged for writes.

35
Multi-Selectmedium

A company is using an Amazon Aurora MySQL DB cluster. The company wants to implement a backup strategy that supports point-in-time recovery (PITR) with a recovery time objective (RTO) of 15 minutes and a recovery point objective (RPO) of 5 minutes. Which TWO actions should the company take?

Select 2 answers
A.Configure automated backups with a retention period of at least 5 minutes beyond the current time.
B.Create manual snapshots every 5 minutes.
C.Enable cross-Region replication for the cluster.
D.Enable parallel query for the cluster.
E.Enable Aurora Backtrack.
AnswersA, E

Automated backups enable PITR.

Why this answer

Option A is correct because Aurora automated backups are continuous and incremental, and the retention period must be set to at least 1 day (not 5 minutes) to enable point-in-time recovery (PITR). However, the key insight is that automated backups are always enabled by default with a 1-day retention, and PITR can restore to any point within that retention window, supporting an RPO of 5 minutes as Aurora's backup process captures changes every 5 minutes. Option E is correct because Aurora Backtrack allows you to 'rewind' the cluster to a specific point in time without restoring from a backup, achieving an RTO of 15 minutes or less by directly moving the cluster to a previous state, provided Backtrack is enabled with a backtrack window of at least 5 minutes.

Exam trap

The trap here is that candidates assume automated backups require a retention period of exactly 5 minutes to achieve a 5-minute RPO, but Aurora's PITR is based on the frequency of transaction log application (every 5 minutes) and the retention period must be at least 1 day; the 5-minute RPO is inherent to the service, not configurable via retention period.

36
MCQhard

A data warehouse team is migrating from Amazon Redshift to Amazon Redshift RA3 nodes. The current cluster uses 10 DC2.large nodes. The new cluster will use 4 RA3.xlarge nodes. After the migration, the team notices that query performance is significantly slower. Which factor is the MOST likely cause of the performance degradation?

A.The data distribution style is set to EVEN instead of KEY.
B.The cluster does not have enough disk space for the workload.
C.The cluster has fewer nodes, reducing parallelism.
D.RA3 nodes are not optimized for large datasets.
AnswerC

RA3 nodes separate compute and storage; fewer compute nodes reduce parallelism.

Why this answer

Option A is correct because RA3 nodes use managed storage and compute is separate; fewer nodes reduce parallel processing capability. Option B is incorrect because RA3 nodes are designed for large data. Option C is incorrect because RA3 nodes have managed storage; disk space is not the issue.

Option D is incorrect because the number of slices per node is lower in RA3, but the primary factor is fewer nodes.

37
MCQeasy

A database administrator is reviewing the configuration of an RDS MySQL instance. Based on the exhibit, which change would MOST improve the database's performance under heavy write workloads without increasing costs significantly?

A.Change the DB parameter group to a custom one with optimized MySQL parameters.
B.Increase the backup retention period to 35 days to improve performance.
C.Enable Multi-AZ to improve write performance.
D.Change the storage type from gp2 to gp3 to get higher baseline IOPS and throughput.
AnswerD

gp3 offers better performance per dollar than gp2.

Why this answer

Option B is correct because gp2 volumes have performance limits based on size; upgrading to gp3 provides better baseline performance and IOPS scaling. Option A is wrong because Multi-AZ is already enabled. Option C is wrong because default parameter groups are not optimized; custom groups can improve performance.

Option D is wrong because increasing backup retention period does not improve performance.

38
MCQeasy

A database administrator is monitoring Amazon RDS for PostgreSQL using CloudWatch. The DB instance shows high CPU utilization, but the number of connections is normal. What is the most likely cause of the high CPU utilization?

A.The DB instance has a low burst balance for gp2 storage.
B.The instance is low on memory and is swapping.
C.There are long-running queries or missing indexes causing high CPU usage.
D.The DB instance has a large number of Read Replicas.
AnswerC

Inefficient queries can consume CPU cycles even with normal connection counts.

Why this answer

Option B is correct because high CPU utilization with normal connections often indicates inefficient queries or missing indexes causing full table scans. Option A is incorrect because burst balance is for gp2 storage, not CPU. Option C is incorrect because insufficient memory usually causes swapping, not high CPU.

Option D is incorrect because ReadReplicas do not affect CPU on the primary instance.

39
MCQmedium

Refer to the exhibit. A database engineer runs the query above to troubleshoot an application error. The query returns no results even though the database is generating errors. What is the most likely reason?

A.The log stream format uses a different field name for the error message
B.The regex pattern does not match because it is case-sensitive
C.The query does not specify a time range, so no results are returned
D.The log group has not been configured to export to CloudWatch Logs
AnswerA

The error message may be in a field like 'log' or 'msg' instead of 'message'.

Why this answer

Option D is correct because the query filters on the 'message' field, but the log stream format may have the error message in a different field. Option A is wrong because the query already uses case-insensitive matching. Option B is wrong because the log group configuration does not affect the query field names.

Option C is wrong because the query does not specify a time range, but that would return results from the last 15 minutes by default.

40
MCQhard

A company is migrating an on-premises Oracle database to Amazon RDS for Oracle using AWS DMS. The source database is 2 TB and has high transaction volume. The migration needs minimal downtime. Currently, full load completes but CDC task fails with 'ORA-1555: snapshot too old' errors. What should the DBA do to resolve this?

A.Restart the migration with a new full load and use a smaller task.
B.Increase the undo retention period and undo tablespace size on the source Oracle database.
C.Enable supplemental logging on the source and use a larger DMS instance.
D.Reduce the transaction volume by pausing non-essential transactions during CDC.
AnswerB

Larger undo retention prevents snapshot too old errors.

Why this answer

Snapshot too old error occurs when undo data is overwritten. Increasing undo retention and tablespace size allows DMS to read consistent data. Option A is correct.

Option B reduces performance. Option C increases log volume. Option D may cause data loss.

41
MCQhard

A company runs a critical application on Amazon RDS for MySQL with Multi-AZ deployment. The application performs frequent writes. The DB instance's CPU utilization is consistently above 80%, and the write latency is high. The company wants to improve write performance without changing the application code. Which solution is MOST effective?

A.Enable Multi-AZ with synchronous replication to a standby instance.
B.Add a read replica to offload read traffic.
C.Increase the DB instance class to a larger size with more vCPUs.
D.Migrate the database to Amazon Aurora MySQL.
AnswerD

Aurora provides higher write throughput and lower latency.

Why this answer

Migrating to Amazon Aurora MySQL provides better write performance due to its distributed storage and optimized write path. Option A (increasing instance size) can help but may not be as effective as Aurora; Option C (adding read replicas) does not help write performance; Option D (using Multi-AZ with synchronous replication) already has Multi-AZ, and the latency is due to CPU, not replication.

42
Multi-Selectmedium

A company is migrating an on-premises Oracle database to Amazon Aurora PostgreSQL. The database has several large tables with frequent INSERT and UPDATE operations. Which TWO actions should be taken to optimize performance after migration?

Select 2 answers
A.Enable autovacuum and configure it to run more frequently on the large tables.
B.Use the Aurora PostgreSQL integration with Amazon S3 for bulk data loading.
C.Set synchronous_commit to ON to ensure data durability.
D.Deploy an RDS Proxy in front of the Aurora cluster to reduce connection overhead.
E.Partition the large tables by date to improve query performance.
AnswersA, B

Autovacuum prevents bloat from frequent updates, maintaining query performance.

Why this answer

Options A and D are correct: Autovacuum is essential for managing dead tuples and maintaining performance in PostgreSQL. S3 integration provides fast bulk load/unload. Option B is wrong because synchronous commit reduces performance for transactional workloads.

Option C is wrong because Aurora PostgreSQL manages storage automatically; manual partitioning may not be needed. Option E is wrong because RDS Proxy adds overhead for connection pooling but does not directly optimize DML performance.

43
Multi-Selecteasy

A company is migrating its on-premises PostgreSQL database to Amazon Aurora PostgreSQL. The migration must have minimal downtime. Which THREE steps should be taken as part of the migration plan? (Select THREE.)

Select 3 answers
A.Perform a test migration to validate the process.
B.Enable Multi-AZ on the Aurora cluster before migration.
C.Update the application connection string to point to the Aurora cluster after cutover.
D.Use AWS DMS to perform a full load and then ongoing replication.
E.Disable automated backups on the Aurora cluster to improve performance.
AnswersA, C, D

Testing ensures the migration works correctly before the actual cutover.

Why this answer

Options A, B, and C are correct. Setting up replication from the on-premises database to Aurora using AWS DMS with ongoing replication allows the target to stay up-to-date with minimal downtime. Performing a test migration ensures the process works.

After the cutover, the application connection string must be updated. Option D is incorrect because disabling automated backups is not recommended; backups are essential. Option E is incorrect because enabling Multi-AZ is for high availability, not a migration step.

44
Multi-Selectmedium

A company is designing a disaster recovery strategy for Amazon DynamoDB. The strategy must have an RPO of 5 minutes and RTO of 1 hour. Which TWO options meet these requirements? (Choose 2.)

Select 2 answers
A.On-demand backups
B.Point-in-time recovery (PITR)
C.Cross-Region Replication (CRR) to S3
D.Global tables
E.Scheduled backups using AWS Backup
AnswersB, D

PITR allows restore to any point within seconds, meeting RPO.

Why this answer

Option A is correct because point-in-time recovery can restore to any point in last 35 days with 1-second granularity. Option C is correct because global tables provide multi-region replication with sub-second latency. Option B is incorrect because on-demand backup does not meet RPO.

Option D is incorrect because scheduled backups have fixed intervals. Option E is incorrect because it is not a DynamoDB feature.

45
MCQmedium

A company runs an Amazon Aurora MySQL database with read replicas to handle read traffic. During a recent load test, the primary instance CPU utilization reached 90%, but read replicas remained below 50%. The application uses a custom ORM that connects to a single endpoint. Which change will best distribute read traffic?

A.Configure the application to use the Aurora reader endpoint for read queries.
B.Use Amazon RDS Proxy with read/write splitting.
C.Place the read replicas behind an Application Load Balancer.
D.Enable Aurora Auto Scaling for replicas and use the cluster endpoint for both read and write.
AnswerA

Reader endpoint load balances across read replicas.

Why this answer

Aurora read replicas are accessed through the reader endpoint, not the cluster endpoint. Option A is correct. Option B is wrong because read replicas use reader endpoint.

Option C is not a feature of Aurora. Option D is incorrect because ProxySQL is not needed.

46
MCQeasy

A developer needs to restore an Amazon RDS for PostgreSQL DB instance to a specific point in time within the retention period. What must be enabled for this operation to be possible?

A.Deletion protection enabled.
B.A read replica in the same region.
C.Automated backups with a retention period greater than 0.
D.Multi-AZ deployment.
AnswerC

PITR relies on automated backups and transaction logs.

Why this answer

Option A is correct because automated backups (enabled by default with a retention period) are required for point-in-time recovery (PITR). Option B is incorrect because Multi-AZ is not required for PITR. Option C is incorrect because read replicas are not needed.

Option D is incorrect because deletion protection prevents accidental deletion but does not affect PITR.

47
MCQeasy

An Amazon RDS for SQL Server instance is running out of storage space. The instance uses 500 GB of Magnetic storage. The database specialist needs to increase storage to 1 TB with minimal downtime. Which solution meets these requirements?

A.Create a snapshot of the DB instance and restore it with larger storage.
B.Convert the storage type to General Purpose (gp2) and then increase size.
C.Modify the DB instance and increase the allocated storage to 1 TB.
D.Use AWS DMS to migrate the database to a new instance with 1 TB storage.
AnswerC

Modifying storage online is supported with minimal downtime.

Why this answer

Option A is correct because RDS allows modifying storage with minimal downtime, though a brief outage may occur. Option B is incorrect because restoring from snapshot requires downtime. Option C is incorrect because converting storage type is a modification, not a separate process.

Option D is incorrect because DMS is not needed.

48
MCQhard

A company has a production Amazon RDS for PostgreSQL Multi-AZ DB instance. The company's security team requires that all database connections use IAM database authentication. The company also needs to ensure that connections from a specific application server are allowed only if the server has a valid IAM role. Which combination of steps should the database administrator take to meet these requirements?

A.Create a database user with a strong password. Enable IAM database authentication. Assign the application server an IAM policy that allows rds-db:connect. Configure the application to use the password.
B.Enable IAM database authentication. Create a database user matching the IAM user ARN. Grant the application server's IAM user the rds_iam role. Configure the application to use an authentication token.
C.Enable IAM database authentication. Create a database user that matches the IAM role ARN. Configure the application to use the database master username and password.
D.Enable IAM database authentication on the RDS instance. Create a database user that matches the IAM role ARN. Grant the application server's IAM role the rds_iam role. Configure the application to generate an authentication token using the IAM role's credentials.
AnswerD

This ensures connections use IAM authentication and the application server's role is required.

Why this answer

IAM database authentication requires mapping IAM users/roles to database users and enforcing SSL. Steps: 1) Enable IAM DB authentication on the RDS instance. 2) Create a database user that matches the IAM role ARN. 3) Grant the application server's IAM role permission to connect. 4) Configure the application to use an authentication token. The correct answer is A because it includes enabling IAM auth, creating the database user, and configuring the application.

Option B is wrong because it uses the IAM user ARN instead of the role ARN. Option C is wrong because it does not enable IAM auth. Option D is wrong because it uses a password.

49
Multi-Selecthard

A company is using Amazon ElastiCache for Redis to cache frequently accessed data from an RDS MySQL database. The cache hit ratio is currently 85%. The operations team notices that during traffic spikes, the cache eviction rate increases significantly, and the database CPU utilization spikes. The cache cluster uses a single r6g.large node. Which THREE actions should the team take to improve performance? (Choose three.)

Select 3 answers
A.Add more shards to the cluster to increase total memory.
B.Reduce the time-to-live (TTL) for cached items to free up memory faster.
C.Enable cluster mode to distribute data across multiple shards.
D.Increase the node type to a larger instance class, such as r6g.2xlarge.
E.Configure the cache to use lazy loading only for write-through operations.
AnswersA, C, D

More shards increase aggregate memory and distribute load.

Why this answer

Option A is correct because adding more shards to the cluster increases the total available memory, which reduces the frequency of evictions during traffic spikes. With more memory, the cache can store more data without forcing out existing entries, thereby maintaining a higher cache hit ratio and reducing the load on the RDS MySQL database.

Exam trap

The trap here is that candidates may think reducing TTL (option B) helps free memory faster, but in reality it increases cache misses and database load, making the problem worse during spikes.

50
MCQmedium

Refer to the exhibit. An IAM policy is attached to a user who needs to manage Amazon RDS DB instances. When the user attempts to modify a DB instance, they receive an 'AccessDenied' error. What is the most likely cause?

A.The policy does not include the 'rds:ModifyDBInstance' action for the specific DB instance ARN.
B.The policy is missing the 'rds:ListTagsForResource' permission needed for the console.
C.The user is trying to modify a Multi-AZ DB instance which requires additional permissions.
D.The policy requires a condition to allow modifications during the maintenance window.
AnswerB

The console requires ListTagsForResource to display instance details; without it, modify operations fail.

Why this answer

The policy uses 'ModifyDBInstance' but the correct action is 'ModifyDBInstance' (note: actual action is 'rds:ModifyDBInstance' — but the error could be due to missing 'rds:ModifyDBInstance' for a specific resource if the policy has conditions, but here resource is '*'. However, a common mistake is using 'ModifyDBInstance' instead of 'ModifyDBInstance'? Actually both are correct. The issue might be that the policy does not allow 'rds:ListTagsForResource' which is required for console access.

But the question says they receive AccessDenied when modifying. The most plausible answer is that the user is trying to modify a DB instance that has 'DeletionProtection' enabled and the policy does not explicitly allow that action? No. Actually, the error is likely due to the policy missing the 'rds:ModifyDBInstance' action? But it's there.

Wait, the exhibit shows 'ModifyDBInstance' which is correct. Hmm. Let me think: The policy allows 'ModifyDBInstance' on all resources, but the user might be using the AWS Management Console which requires additional permissions like 'rds:DescribeDBInstances' (which is present) and 'rds:ListTagsForResource' (not present).

So the most likely cause is missing permissions for console-specific actions. Option D mentions 'ListTagsForResource' which is needed for console. So D is correct.

51
Multi-Selecthard

A company is migrating an on-premises Oracle database to Amazon RDS for Oracle. The database is 2 TB in size and has a 24/7 uptime requirement. The migration must have minimal downtime and support ongoing replication. Which THREE services or features should the specialist use to accomplish this?

Select 3 answers
A.Oracle Data Guard to replicate to RDS.
B.Amazon RDS cross-Region automated backups.
C.An AWS DMS replication instance.
D.AWS Schema Conversion Tool (AWS SCT).
E.AWS Database Migration Service (AWS DMS) with change data capture (CDC).
AnswersC, D, E

A replication instance is required to run DMS tasks.

Why this answer

Options A, B, and D are correct. Option A: AWS DMS can perform ongoing replication with change data capture. Option B: AWS SCT helps convert the schema.

Option D: A replication instance is required for DMS. Option C is wrong because RDS Oracle does not support cross-region automated backups as a migration tool. Option E is wrong because RDS Oracle does not support native Oracle Data Guard for cross-region replication.

52
MCQeasy

A database administrator runs the above AWS CLI command. What is the purpose of the command?

A.Retrieve average free storage space for mydb.
B.Retrieve average number of database connections for mydb.
C.Retrieve average CPU utilization for mydb.
D.Retrieve average write latency for mydb.
AnswerB

The metric is DatabaseConnections.

Why this answer

Option A is correct because the command retrieves average DatabaseConnections over 5-minute intervals. Option B is incorrect because it is for CPU, not connections. Option C is incorrect because it is for storage.

Option D is incorrect because it is for write latency.

53
MCQeasy

Refer to the exhibit. A database administrator runs the AWS CLI command shown. The output is: ["available", false]. What does this output indicate about the DB instance?

A.The DB instance is in the process of being modified to enable Multi-AZ.
B.The DB instance is in a Multi-AZ deployment and is available.
C.The DB instance is stopped and is not in a Multi-AZ configuration.
D.The DB instance is available and is not configured for Multi-AZ.
AnswerD

The status is 'available' and MultiAZ is false.

Why this answer

Option B is correct because the output shows the DBInstanceStatus is 'available' and MultiAZ is false. Option A is wrong because MultiAZ is false. Option C is wrong because MultiAZ false means it is not configured for Multi-AZ.

Option D is wrong because the status is 'available', not 'stopped'.

54
MCQeasy

A company is using Amazon DynamoDB with global tables. The application writes to a table in the us-east-1 region. The database administrator notices that updates made in us-east-1 are not appearing in the replica table in eu-west-1. What is the most likely cause?

A.DynamoDB Streams are not enabled on the table.
B.The replication delay is set too high.
C.Point-in-time recovery is not enabled on the replica table.
D.The IAM role for replication does not have sufficient permissions.
AnswerA

Global tables require DynamoDB Streams to be enabled for replication to work.

Why this answer

Option C is correct because global tables rely on DynamoDB Streams to replicate changes. If streams are disabled, replication stops. Option A is incorrect because DynamoDB does not have a replication delay setting.

Option B is incorrect because IAM permissions would cause errors, not silent failure. Option D is incorrect because point-in-time recovery does not affect replication.

55
Multi-Selectmedium

Which TWO actions can be taken to monitor the health of an Amazon DynamoDB table? (Choose 2.)

Select 2 answers
A.Use AWS Trusted Advisor to check table limits
B.Enable Amazon CloudWatch metrics for the table
C.Enable DynamoDB Streams and process events with AWS Lambda
D.Use DynamoDB Accelerator (DAX) to improve response times
E.Set up CloudWatch alarms for ThrottledRequests
AnswersB, E

CloudWatch metrics like ConsumedWriteCapacityUnits, ThrottledRequests indicate health.

Why this answer

Options A and C are correct. CloudWatch metrics provide health indicators (throttling, latency). DynamoDB Streams can be used to track changes but not health directly.

Options B and D are incorrect: B is for data plane, D is for monitoring, but not health.

56
MCQeasy

A SysOps administrator is tasked with monitoring the free storage space on all Amazon RDS DB instances. Which AWS service should be used to set up an alarm that sends an email notification when free storage space falls below a threshold?

A.AWS CloudTrail to monitor storage events.
B.AWS Config to track storage configuration changes.
C.Amazon CloudWatch with an alarm on the FreeStorageSpace metric and an SNS topic.
D.Amazon Inspector to check for storage vulnerabilities.
AnswerC

CloudWatch monitors metrics and can trigger actions via SNS.

Why this answer

Option A is correct because Amazon CloudWatch can monitor RDS metrics such as 'FreeStorageSpace' and trigger an alarm that sends a notification via Amazon SNS. Option B is incorrect because AWS CloudTrail is for auditing API calls. Option C is incorrect because AWS Config tracks resource configuration changes.

Option D is incorrect because Amazon Inspector is for security assessments.

57
MCQmedium

A company has an Amazon RDS for MySQL DB instance that is running low on storage. The current allocated storage is 500 GB, and the free space is down to 10 GB. The database administrator wants to increase storage with minimal downtime. Which action should be taken?

A.Use the AWS Management Console to modify the DB instance and increase the allocated storage.
B.Stop the DB instance, modify the allocated storage, and start the instance.
C.Create a snapshot of the current DB instance, restore it to a new larger instance, and point the application to the new endpoint.
D.Enable storage autoscaling and wait for the automatic increase.
AnswerA

Modifying storage is an online operation with minimal impact.

Why this answer

RDS supports modifying storage online with minimal downtime. Increasing allocated storage from 500 GB to, for example, 600 GB can be done via a modification to the DB instance. The instance remains available during the modification, though a brief performance impact may occur.

Stopping the instance is unnecessary. Creating a snapshot and restoring would cause longer downtime. Waiting for autoscaling might not be quick enough if space is critically low.

58
MCQmedium

A company uses Amazon DynamoDB for a gaming application. During a new game launch, the table experiences throttling on write requests. The table has a provisioned capacity of 10,000 WCU and 5,000 RCU. The write traffic pattern shows spikes up to 15,000 WCU for 5 minutes. Which action would resolve the throttling with minimal cost impact?

A.Use Amazon SQS to buffer the write requests
B.Increase the provisioned WCU to 20,000 permanently
C.Enable Auto Scaling for DynamoDB with a target utilization of 70%
D.Enable DynamoDB Accelerator (DAX) for the table
AnswerC

Auto Scaling adjusts capacity automatically based on traffic.

Why this answer

Option D is correct because DynamoDB Auto Scaling can handle the spikes by scaling up and down, reducing costs. Option A is wrong because doubling WCU would be costly and unnecessary. Option B is wrong because DynamoDB Accelerator (DAX) is for read performance, not writes.

Option C is wrong because SQS would add latency and complexity.

59
MCQeasy

A database administrator is troubleshooting a sudden increase in read latency on an Amazon RDS for PostgreSQL instance. The instance has 200 GB of General Purpose SSD (gp2) storage with 600 provisioned IOPS. The administrator notices that the average queue depth is consistently above 4. Which action is the MOST effective way to reduce read latency?

A.Enable Multi-AZ deployment to offload reads to the standby.
B.Change the instance type to a larger size with more vCPUs.
C.Migrate to an io1 volume with 3000 provisioned IOPS.
D.Increase the allocated storage to 500 GB without changing IOPS.
AnswerC

Increasing IOPS addresses the queue depth and reduces latency.

Why this answer

Option A increases IOPS by scaling up to an io1 volume, which directly addresses the queue depth issue and improves latency. Option B is incorrect because increasing instance size may not resolve IOPS bottleneck. Option C is incorrect because Multi-AZ does not improve read performance for a single instance.

Option D is incorrect because increasing storage alone does not guarantee more IOPS for gp2.

60
MCQeasy

A company wants to encrypt an existing unencrypted Amazon RDS for SQL Server instance. What is the MOST efficient way to achieve this?

A.Create a read replica with encryption enabled.
B.Modify the DB instance to enable encryption.
C.Create a snapshot of the DB instance and copy it with encryption enabled. Restore the snapshot to a new encrypted instance.
D.Use AWS DMS to migrate data to a new encrypted instance.
AnswerC

This is the recommended approach.

Why this answer

Option A is correct because creating a snapshot and copying with encryption is the standard method. Option B is incorrect because you cannot enable encryption on existing instance. Option C is incorrect because it is not supported.

Option D is incorrect because restoring snapshot to encrypted instance works but the process is snapshot copy.

61
MCQeasy

A company's RDS for MySQL instance is experiencing high CPU utilization. Which AWS service should be used to set up automated actions to scale the instance vertically?

A.AWS Systems Manager Automation with a custom runbook
B.AWS Auto Scaling with a target tracking scaling policy
C.AWS Lambda function to modify the DB instance class
D.Amazon CloudWatch Alarms to send an SNS notification to the DBA
AnswerB

AWS Auto Scaling can adjust RDS instance class based on CloudWatch metrics.

Why this answer

AWS Auto Scaling with a target tracking scaling policy is the correct choice because it can automatically adjust the DB instance class (vertical scaling) for RDS instances based on a defined metric like CPU utilization. This service integrates directly with RDS to modify the instance size without manual intervention, making it ideal for handling high CPU utilization through automated vertical scaling.

Exam trap

The trap here is that candidates often confuse AWS Auto Scaling (which handles both horizontal and vertical scaling for RDS) with EC2 Auto Scaling, or they mistakenly think that a Lambda function or Systems Manager Automation is the only way to automate RDS modifications, overlooking the native scaling capabilities of AWS Auto Scaling.

How to eliminate wrong answers

Option A is wrong because AWS Systems Manager Automation runbooks are designed for operational tasks like patching or configuration changes, not for automatically scaling RDS instances based on real-time metrics. Option C is wrong because while a Lambda function could modify the DB instance class via API calls, it is not a managed service purpose-built for automated scaling; it requires custom code, monitoring, and error handling, making it less reliable and more complex than AWS Auto Scaling. Option D is wrong because CloudWatch Alarms sending SNS notifications only alert the DBA to the issue; they do not perform any automated scaling action, which is explicitly required by the question.

62
MCQhard

A company is using Amazon ElastiCache for Redis as a caching layer in front of an Amazon Aurora MySQL database. The application is experiencing higher latency than expected. Which database design pattern should the specialist recommend to improve read performance?

A.Increase the ElastiCache cluster size to accommodate more data.
B.Enable Multi-AZ on the ElastiCache cluster and use read replicas.
C.Use Aurora Replicas to offload read traffic from the primary instance.
D.Implement Amazon DynamoDB Accelerator (DAX) in front of Aurora.
AnswerC

Aurora Replicas can handle read queries and reduce latency.

Why this answer

Option B is correct. Adding Aurora Replicas to distribute read traffic improves read performance and reduces load on the primary. Option A is wrong because DAX is for DynamoDB, not Aurora.

Option C is wrong because increasing cache size may not help if cache misses are not the issue. Option D is wrong because read replicas in ElastiCache are already used; the issue is the database.

63
MCQmedium

A company is running an Amazon RDS for MySQL DB instance with Multi-AZ deployment. The database experiences a failover due to a hardware failure. After the failover, the application team reports that a critical stored procedure is missing. What should the database administrator do to prevent this issue in the future?

A.Create the stored procedure as a function instead.
B.Modify the DB parameter group to enable binary logging.
C.Ensure that the stored procedure is created on both the primary and standby instances by using a script or manually recreating it after failover.
D.Increase the binlog retention period to ensure the stored procedure is captured.
AnswerC

Stored procedures are not automatically replicated across Multi-AZ instances; they must be created on each instance separately or recreated after failover.

Why this answer

Option D is correct because the default_db_character_set and default_collation_for_utf8 are not the cause; the stored procedure is missing because it was created on the primary and not replicated. Using a custom DB parameter group does not replicate stored procedures; they are stored in the database and should be replicated via binlog. Stored procedures are not automatically replicated in RDS MySQL; the best practice is to ensure they are created on both instances or use a script to recreate them after failover.

Option A is incorrect because modifying the DB parameter group does not replicate stored procedures. Option B is incorrect because binlog retention does not affect stored procedure replication. Option C is incorrect because creating the stored procedure as a function does not change replication behavior.

64
MCQmedium

A company runs an Amazon RDS for PostgreSQL DB instance with Multi-AZ enabled. The primary instance is in us-east-1a and the standby is in us-east-1b. During a routine audit, the security team discovers that database connections are being terminated unexpectedly. The database administrator reviews the RDS events and sees an event: 'A Multi-AZ failover has been completed.' What step should be taken to determine the cause of this failover?

A.Examine Amazon CloudWatch metrics for increased CPU or memory usage
B.Check the RDS console for maintenance windows
C.Review RDS events and AWS CloudTrail logs for API calls related to the failover
D.Run the describe-db-instances CLI command to check the status of the standby
AnswerC

CloudTrail logs record actions like ModifyDBInstance that could trigger failover.

Why this answer

Option B is correct because RDS events and CloudTrail logs provide detailed information about failover causes. Option A is wrong because the RDS console shows events but not detailed causes. Option C is wrong because CloudWatch metrics show performance but not failover reasons.

Option D is wrong because the RDS API describes instances, not failover causes.

65
MCQmedium

A company runs a production Amazon RDS for MySQL Multi-AZ DB instance. The database experiences a failover event. After the failover, the application team reports increased latency for write operations. Which action should be taken to investigate the issue?

A.Increase the allocated storage for the DB instance to reduce I/O contention.
B.Enable automated backups and configure a backup window.
C.Verify that the application is using the correct DB endpoint and that DNS has propagated.
D.Modify the DB instance to a larger instance class to improve write performance.
AnswerC

After failover, the DNS record updates to point to the new primary; ensuring the application resolves the correct endpoint is critical.

Why this answer

Option C is correct because after a failover, the DNS record changes to point to the new primary. Checking the DNS resolution confirms the application is connecting to the correct endpoint. Option A is wrong because failover does not change the DB instance class size.

Option B is wrong because automatic backups are not affected by failover latency. Option D is wrong because Multi-AZ already provides synchronous standby replication; resizing storage does not address latency from DNS propagation.

66
MCQmedium

A team is migrating an on-premises Oracle database to Amazon Aurora PostgreSQL. The database is 2 TB and has a 6-hour maintenance window. Which AWS service should the team use to minimize downtime?

A.AWS Database Migration Service (AWS DMS)
B.Amazon S3 Transfer Acceleration
C.AWS Snowball Edge
D.Amazon EC2 with Oracle installed
AnswerA

DMS supports heterogeneous migrations with minimal downtime.

Why this answer

AWS DMS is the correct choice because it can perform a live migration from Oracle to Aurora PostgreSQL with minimal downtime using ongoing replication (change data capture). It supports heterogeneous migrations, automatically converting the source schema and data types, and can handle a 2 TB database within the 6-hour maintenance window by using multiple parallel tasks and large instance types.

Exam trap

AWS often tests the misconception that offline transfer services like Snowball are suitable for minimal-downtime migrations, but the trap here is that Snowball requires a full data export and import, which cannot achieve the sub-hour cutover needed within a 6-hour maintenance window.

How to eliminate wrong answers

Option B (Amazon S3 Transfer Acceleration) is wrong because it only speeds up uploads to S3 over the internet but does not provide any database migration or replication capabilities, nor does it support ongoing synchronization to minimize downtime. Option C (AWS Snowball Edge) is wrong because it is designed for offline, bulk data transfer of large datasets (e.g., 2 TB) and cannot perform live, ongoing replication; using it would require a full data dump and reload, causing significant downtime beyond the 6-hour window. Option D (Amazon EC2 with Oracle installed) is wrong because it simply rehosts the Oracle database on AWS without addressing the migration to Aurora PostgreSQL, and it does not provide any native mechanism for minimal-downtime heterogeneous migration or schema conversion.

67
MCQmedium

A healthcare company runs a critical application on Amazon RDS for PostgreSQL with a Multi-AZ deployment. The database stores patient records and must comply with HIPAA regulations. Recently, a security audit revealed that the database is using the default port 5432 and that SSL connections are not enforced. The security team requires that all connections to the database use SSL and that the default port be changed to 5439 to reduce the risk of automated attacks. The database administrator needs to implement these changes with minimal downtime. What should the administrator do?

A.Create a new RDS instance with the desired settings, migrate the data using pg_dump, and update the application connection string.
B.Update the security group inbound rules to only allow traffic on port 5439 and enforce SSL at the network level.
C.Modify the default DB parameter group to change the port and enable SSL, then apply it to the instance without a reboot.
D.Modify the DB parameter group associated with the instance to set 'ssl' to '1' and 'port' to 5439. Reboot the instance to apply the changes.
AnswerD

Parameter changes require a reboot; this method has minimal downtime.

Why this answer

Option A is correct because modifying the DB parameter group to require SSL and changing the port, then rebooting the instance, applies the changes with minimal downtime (a few minutes). Option B is wrong because creating a new instance and migrating is more complex and longer downtime. Option C is wrong because changing the security group alone does not enforce SSL.

Option D is wrong because using a custom DB parameter group is necessary; you cannot modify the default group.

68
MCQmedium

A company is migrating an on-premises Oracle database to Amazon RDS for Oracle. The database is 2 TB in size. The company wants to minimize downtime during the migration. Which AWS service should be used to perform an online migration with minimal downtime?

A.AWS Direct Connect
B.AWS Database Migration Service (DMS)
C.AWS Snowball
D.Amazon S3
AnswerB

DMS supports continuous replication for minimal downtime migration.

Why this answer

AWS Database Migration Service (DMS) supports ongoing replication to minimize downtime. Snowball is for offline data transfer. S3 is not a migration service.

Direct Connect provides a dedicated network connection but is not a migration service itself.

69
MCQeasy

A company has an Amazon Aurora MySQL DB cluster with a single writer and two readers. The writer instance fails, and the failover mechanism promotes one of the readers to writer. The application, which uses a custom connection pool, continues to experience errors for several minutes. What should the database administrator do to minimize downtime during future failovers?

A.Increase the connection pool size to handle more connections.
B.Modify the application to use the cluster endpoint instead of the instance endpoint.
C.Configure the application to use the reader endpoint for all traffic.
D.Enable Multi-AZ on the Aurora cluster.
AnswerB

Cluster endpoint points to current writer automatically.

Why this answer

Option B is correct because using the cluster endpoint ensures automatic routing to the current writer. Option A is wrong because DNS caching is fixed by using cluster endpoint. Option C is wrong because increasing pool reduces latency but not failover detection.

Option D is wrong because Multi-AZ is already used.

70
MCQhard

Refer to the exhibit. An IAM policy statement allows creating manual snapshots for an RDS instance. A database administrator is unable to create a snapshot from the AWS Management Console. The error message indicates insufficient permissions. What is the likely cause?

A.The condition key 'aws:RequestedRegion' is misspelled.
B.The policy does not include necessary read actions (e.g., 'DescribeDBInstances', 'DescribeDBSnapshots') that the console uses.
C.The resource ARN is incorrect; it should include the snapshot ARN.
D.The condition uses 'StringEquals' but should use 'StringLike' for region matching.
AnswerB

The console requires read permissions to list instances and snapshots before creating a snapshot.

Why this answer

Option D is correct because the console may try to list snapshots or describe instances, which require additional actions like 'DescribeDBSnapshots' and 'DescribeDBInstances'. The condition restricts the region, but the missing actions cause the failure. Option A is wrong because the region condition is correctly written.

Option B is wrong because the resource ARN is correct. Option C is wrong because the condition uses 'StringEquals' correctly.

71
MCQmedium

A company is running a production Amazon RDS for MySQL DB instance. The database size is 500 GB and the workload is write-heavy. The team notices that the automated backups are taking longer than expected and are impacting the performance during the backup window. Which action should be taken to minimize the performance impact?

A.Disable automated backups and rely on manual snapshots taken during off-peak hours.
B.Create a read replica and configure automated backups on the replica.
C.Increase the DB instance size to improve backup performance.
D.Move the backup window to a time when the workload is lowest.
AnswerB

Offloading backups to a read replica ensures that backup operations do not affect the primary instance's performance.

Why this answer

Option D is correct because creating a read replica and taking backups from it offloads the backup load from the primary instance. Option A is wrong because disabling backups is risky for production. Option B is wrong because it affects the start time but not the performance impact.

Option C is wrong because increasing instance size may reduce backup duration but does not directly minimize the performance impact; it also adds cost.

72
Multi-Selectmedium

A company is migrating a PostgreSQL database to Amazon Aurora PostgreSQL. The database has a large table that is frequently accessed. The team wants to minimize downtime during the migration. Which TWO strategies should be used together?

Select 2 answers
A.Use AWS DMS to create a target Aurora DB cluster and replicate data.
B.Take a manual snapshot of the source database and restore it to Aurora.
C.Use AWS Schema Conversion Tool (AWS SCT) to convert the schema.
D.Use AWS DMS to perform a full load followed by ongoing replication.
E.Configure Aurora as a read replica of the PostgreSQL instance.
AnswersA, D

DMS can migrate data to Aurora with ongoing replication to minimize downtime.

Why this answer

Options B and D are correct because using AWS DMS with ongoing replication allows for near-zero downtime migration, and creating an Aurora read replica from a PostgreSQL instance is not possible; instead, DMS is the correct tool. Option A is wrong because taking a snapshot and restoring requires downtime. Option C is wrong because AWS SCT is for schema conversion, not data migration.

Option E is wrong because there is no direct replication from PostgreSQL to Aurora without DMS.

73
MCQmedium

A database administrator is troubleshooting a performance issue on an Amazon RDS for SQL Server instance. The CPU utilization is consistently above 90%, and the number of database connections is high. Which Amazon CloudWatch metric should be analyzed first to determine if the issue is due to a specific query?

A.DatabaseConnections
B.ReadIOPS
C.Enhanced Monitoring (cpuUtilization per process)
D.CPUUtilization
AnswerC

Enhanced Monitoring provides per-process CPU metrics, which can help identify which process (and thus which query) is consuming the most CPU.

Why this answer

While CloudWatch provides metrics like CPUUtilization, the question asks for a metric that helps identify a specific query causing high CPU. CloudWatch does not directly expose query-level metrics; however, enhanced monitoring provides OS-level metrics but not query details. To identify specific queries, you need to use RDS Performance Insights or SQL Server's own DMVs.

Among the options, 'DatabaseConnections' is not query-specific. The correct answer is to use Performance Insights, but since it's not listed, the best CloudWatch metric is 'CPUUtilization' to confirm high CPU, but the actual tool for query analysis is not CloudWatch. The question expects 'Enhanced Monitoring' as it gives per-process metrics that can lead to identifying queries if combined with other tools.

However, none directly identify a specific query. The closest is Enhanced Monitoring which can show top processes. 'DatabaseConnections' does not help. The correct answer is D because Enhanced Monitoring provides OS-level metrics that can help pinpoint resource-intensive processes that may be running specific queries.

74
MCQeasy

A database administrator needs to monitor the number of database connections to an Amazon RDS for PostgreSQL instance. Which Amazon CloudWatch metric should the administrator use?

A.DatabaseConnections
B.ActiveConnections
C.ConnectionsCount
D.DBInstanceIdentifier
AnswerA

This is the standard CloudWatch metric for active connections.

Why this answer

Option A is correct because DatabaseConnections is the standard metric. Option B is incorrect because it is not a CloudWatch metric. Option C is incorrect because it is a custom metric, not standard.

Option D is incorrect because it is a dimension, not a metric.

75
Multi-Selecthard

A company is running Amazon RDS for Oracle with a Multi-AZ deployment. The database is experiencing performance degradation due to high I/O waits. The team suspects that the issue is related to the transaction log (redo log) writes. Which THREE metrics should be monitored in Amazon CloudWatch to diagnose the issue?

Select 3 answers
A.DiskQueueDepth
B.CPUUtilization
C.RedoLogFileSyncWaits
D.ReadLatency
E.RedoLogSyncTime
AnswersA, C, E

High disk queue depth indicates that I/O requests are waiting, affecting redo log writes.

Why this answer

Options A, C, and E are correct because high redo log sync time, high redo log file sync waits, and high disk queue depth are indicators of I/O bottlenecks affecting redo log writes. Option B is wrong because read latency is not directly related to redo log writes. Option D is wrong because CPU utilization may be high but does not directly indicate redo log issues.

Page 1 of 5 · 312 questions totalNext →

Ready to test yourself?

Try a timed practice session using only Db Mgmt Ops questions.