2025 AWS Certified Developer Exam New Latest
Version with 65 Questions, 100% Correct
Answers and Rationale
Question 1A developer is building a serverless application using AWS Lambda. Which service
should be used to manage the API endpoints?
A. Amazon EC2
B. Amazon API Gateway
C. Amazon S3
D. AWS CloudFormation Correct Answer: B
Rationale: Amazon API Gateway is used to create, manage, and secure API endpoints for
serverless applications like Lambda, aligning with the Development domain.
Question 2Which AWS service is BEST for decoupling components in a microservices
architecture?
A. Amazon SNS
B. Amazon SQS
C. Amazon EventBridge
D. AWS Step Functions Correct Answer: B
Rationale: Amazon SQS (Simple Queue Service) decouples microservices by enabling
asynchronous message passing, improving scalability.
Question 3A developer needs to store sensitive database credentials securely with automatic
rotation. Which solution is BEST?
A. Store credentials in an EC2 instance environment variable.
B. Use AWS Secrets Manager with automatic rotation.
C. Store credentials in an S3 bucket with public access.
D. Hardcode credentials in the application code. Correct Answer: B
Rationale: AWS Secrets Manager securely stores and rotates credentials, aligning with the
Security domain’s best practices.
Question 4A developer is deploying an application using AWS CodePipeline. Which service
integrates with CodePipeline for building and testing code?
A. AWS CodeBuild
B. AWS CodeCommit
C. AWS CodeDeploy
D. AWS CloudFormation Correct Answer: A
Rationale: AWS CodeBuild compiles, tests, and builds code in a CI/CD pipeline, integrating
with CodePipeline for deployment workflows.
Question 5Which AWS service is BEST for a NoSQL database with low-latency access for a
high-traffic application?
A. Amazon RDS
, B. Amazon DynamoDB
C. Amazon Redshift
D. Amazon ElastiCache Correct Answer: B
Rationale: DynamoDB is a managed NoSQL database with low-latency performance, ideal for
high-traffic applications.
Question 6A developer needs to debug a Lambda function that is failing. Which AWS service
provides detailed tracing?
A. Amazon CloudWatch
B. AWS X-Ray
C. AWS CloudTrail
D. Amazon Inspector Correct Answer: B
Rationale: AWS X-Ray provides detailed tracing for Lambda functions, helping identify
performance bottlenecks and errors (Troubleshooting domain).
Question 7A company wants to deploy a containerized application using AWS. Which service is
MOST suitable for minimal management overhead?
A. Amazon EC2
B. AWS ECS with Fargate
C. AWS Elastic Beanstalk
D. Amazon EKS Correct Answer: B
Rationale: ECS with Fargate is a serverless container service, reducing management overhead
compared to EC2 or EKS.
Question 8Which AWS CLI command retrieves the configuration of an S3 bucket?
A. aws s3 ls
B. aws s3api get-bucket-policy
C. aws s3 cp
D. aws s3 sync Correct Answer: B
Rationale: The aws s3api get-bucket-policy command retrieves the bucket’s policy, useful for
security and access control checks.
Question 9A developer needs to store static assets for a web application with low-latency access
globally. What is the BEST solution?
A. Amazon S3 with CloudFront
B. Amazon EBS
C. Amazon EFS
D. Amazon EC2 Correct Answer: A
Rationale: S3 with CloudFront caches static assets globally, reducing latency for web
applications.
Question 10Which IAM policy condition ensures that API requests are made over a secure
connection?
A. aws:SecureTransport
B. aws:SourceIp
C. aws:UserAgent
Version with 65 Questions, 100% Correct
Answers and Rationale
Question 1A developer is building a serverless application using AWS Lambda. Which service
should be used to manage the API endpoints?
A. Amazon EC2
B. Amazon API Gateway
C. Amazon S3
D. AWS CloudFormation Correct Answer: B
Rationale: Amazon API Gateway is used to create, manage, and secure API endpoints for
serverless applications like Lambda, aligning with the Development domain.
Question 2Which AWS service is BEST for decoupling components in a microservices
architecture?
A. Amazon SNS
B. Amazon SQS
C. Amazon EventBridge
D. AWS Step Functions Correct Answer: B
Rationale: Amazon SQS (Simple Queue Service) decouples microservices by enabling
asynchronous message passing, improving scalability.
Question 3A developer needs to store sensitive database credentials securely with automatic
rotation. Which solution is BEST?
A. Store credentials in an EC2 instance environment variable.
B. Use AWS Secrets Manager with automatic rotation.
C. Store credentials in an S3 bucket with public access.
D. Hardcode credentials in the application code. Correct Answer: B
Rationale: AWS Secrets Manager securely stores and rotates credentials, aligning with the
Security domain’s best practices.
Question 4A developer is deploying an application using AWS CodePipeline. Which service
integrates with CodePipeline for building and testing code?
A. AWS CodeBuild
B. AWS CodeCommit
C. AWS CodeDeploy
D. AWS CloudFormation Correct Answer: A
Rationale: AWS CodeBuild compiles, tests, and builds code in a CI/CD pipeline, integrating
with CodePipeline for deployment workflows.
Question 5Which AWS service is BEST for a NoSQL database with low-latency access for a
high-traffic application?
A. Amazon RDS
, B. Amazon DynamoDB
C. Amazon Redshift
D. Amazon ElastiCache Correct Answer: B
Rationale: DynamoDB is a managed NoSQL database with low-latency performance, ideal for
high-traffic applications.
Question 6A developer needs to debug a Lambda function that is failing. Which AWS service
provides detailed tracing?
A. Amazon CloudWatch
B. AWS X-Ray
C. AWS CloudTrail
D. Amazon Inspector Correct Answer: B
Rationale: AWS X-Ray provides detailed tracing for Lambda functions, helping identify
performance bottlenecks and errors (Troubleshooting domain).
Question 7A company wants to deploy a containerized application using AWS. Which service is
MOST suitable for minimal management overhead?
A. Amazon EC2
B. AWS ECS with Fargate
C. AWS Elastic Beanstalk
D. Amazon EKS Correct Answer: B
Rationale: ECS with Fargate is a serverless container service, reducing management overhead
compared to EC2 or EKS.
Question 8Which AWS CLI command retrieves the configuration of an S3 bucket?
A. aws s3 ls
B. aws s3api get-bucket-policy
C. aws s3 cp
D. aws s3 sync Correct Answer: B
Rationale: The aws s3api get-bucket-policy command retrieves the bucket’s policy, useful for
security and access control checks.
Question 9A developer needs to store static assets for a web application with low-latency access
globally. What is the BEST solution?
A. Amazon S3 with CloudFront
B. Amazon EBS
C. Amazon EFS
D. Amazon EC2 Correct Answer: A
Rationale: S3 with CloudFront caches static assets globally, reducing latency for web
applications.
Question 10Which IAM policy condition ensures that API requests are made over a secure
connection?
A. aws:SecureTransport
B. aws:SourceIp
C. aws:UserAgent
