ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Developer - Associate DVA-C02 All Questions

View all questions & answers for the AWS Certified Developer - Associate DVA-C02 exam
Go to Exam

Exam AWS Certified Developer - Associate DVA-C02 topic 1 question 502 discussion

Exam question from Amazon's AWS Certified Developer - Associate DVA-C02
Question #: 502
Topic #: 1
[All AWS Certified Developer - Associate DVA-C02 Questions]

A company generates SSL certificates from a third-party provider. The company imports the certificates into AWS Certificate Manager (ACM) to use with public web applications.

A developer must implement a solution to notify the company’s security team 90 days before an imported certificate expires. The company already has configured an Amazon Simple Queue Service (Amazon SQS) queue. The company also has configured an Amazon Simple Notification Service (Amazon SNS) topic that has the security team’s email address as a subscriber.

Which solution will provide the security team with the required notification about certificates?

  • A. Create an Amazon EventBridge rule that specifies the ACM Certificate Approaching Expiration event type. Set the SNS topic as the EventBridge rule’s target.
  • B. Create an AWS Lambda function to search for all certificates that are expiring within 90 days. Program the Lambda function to send each identified certificate’s Amazon Resource Name (ARN) in a message to the SQS queue.
  • C. Create an AWS Step Functions workflow that is invoked by each certificate’s expiration notification from AWS CloudTrail. Create an AWS Lambda function to send each certificate's Amazon Resource Name (ARN) in a message to the SQS queue.
  • D. Configure AWS Config with the acm-certificate-expiration-check managed rule to run every 24 hours. Create an Amazon EventBridge rule that includes an event pattern that specifies the Config Rules Compliance Change detail type and the configured rule. Set the SNS topic as the EventBridge rule’s target.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Dahlia9524 at Dec. 10, 2024, 4:30 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
e886835
1 day, 14 hours ago
Selected Answer: A
Amazon EventBridge can be used to track specific events, such as the approaching expiration of SSL certificates in AWS Certificate Manager (ACM). AWS publishes events like ACM Certificate Approaching Expiration to EventBridge, which allows you to trigger specific actions when such events occur.
upvoted 1 times
...
Arad
3 weeks, 2 days ago
Selected Answer: D
D is the correct answer. Both options A and D are viable solutions for monitoring certificate expirations. Option A leverages ACM's built-in event for certificates approaching expiration, while Option D uses AWS Config's managed rule acm-certificate-expiration-check to assess certificate compliance and trigger notifications via EventBridge and SNS. By default, ACM's "Certificate Approaching Expiration" event starts 45 days before expiration. If you require notifications earlier than 45 days, AWS Config's managed rule allows you to specify a custom number of days for the check. https://docs.aws.amazon.com/acm/latest/APIReference/API_ExpiryEventsConfiguration.html?utm_source=chatgpt.com Question is asking for 90 days earlier than expiration, so D is the right answer.
upvoted 1 times
...
bp07
3 weeks, 3 days ago
Selected Answer: A
Amazon EventBridge provides a set of predefined events, and one of these events is related to ACM certificates. Specifically, there is an event type called ACM Certificate Approaching Expiration, which is emitted when an ACM certificate is approaching expiration.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago