CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS Certified DevOps Engineer - Professional DOP-C02

Free AWS Certified DevOps Engineer - Professional DOP-C02 Exam Braindumps (page: 28)

Page 28 of 72
PDF with 281 Questions

The security team depends on AWS CloudTrail to detect sensitive security issues in the company's AWS account. The DevOps engineer needs a solution to auto-remediate CloudTrail being turned off in an AWS account.

What solution ensures the LEAST amount of downtime for the CloudTrail log deliveries?

  1. Create an Amazon EventBridge (Amazon CloudWatch Events) rule for the CloudTrail StopLogging event. Create an AWS Lambda function that uses the AWS SDK to call StartLogging on the ARN of the resource in which StopLogging was called. Add the Lambda function ARN as a target to the EventBridge (CloudWatch Events) rule.
  2. Deploy the AWS-managed CloudTrail-enabled AWS Config rule, set with a periodic interval of 1 hour. Create an Amazon EventBridge (Amazon CloudWatch Events) rule for AWS Config rules compliance change. Create an AWS Lambda function that uses the AWS SDK to call StartLogging on the ARN of the resource in which StopLogging was called. Add the Lambda function ARN as a target to the EventBridge (CloudWatch Events) rule.
  3. Create an Amazon EventBridge (Amazon CloudWatch Events) rule for a scheduled event every 5 minutes. Create an AWS Lambda function that uses the AWS SDK to call StartLogging on a CloudTrail trail in the AWS account. Add the Lambda function ARN as a target to the EventBridge (CloudWatch Events) rule.
  4. Launch a t2.nano instance with a script running every 5 minutes that uses the AWS SDK to query CloudTrail in the current account. If the CloudTrail trail is disabled, have the script re-enable the trail.

Answer(s): A



A company uses AWS CodeArtifact to centrally store Python packages. The CodeArtifact repository is configured with the following repository policy:



A development team is building a new project in an account that is in an organization in AWS Organizations. The development team wants to use a Python library that has already been stored in the CodeArtifact repository in the organization. The development team uses AWS CodePipeline and AWS CodeBuild to build the new application. The CodeBuild job that the development team uses to build the application is configured to run in a VPC. Because of compliance requirements, the VPC has no internet connectivity.

The development team creates the VPC endpoints for CodeArtifact and updates the CodeBuild buildspec.yaml file. However, the development team cannot download the Python library from the repository.

Which combination of steps should a DevOps engineer take so that the development team can use CodeArtifact? (Choose two.)

  1. Create an Amazon S3 gateway endpoint. Update the route tables for the subnets that are running the CodeBuild job.
  2. Update the repository policy’s Principal statement to include the ARN of the role that the CodeBuild project uses.
  3. Share the CodeArtifact repository with the organization by using AWS Resource Access Manager (AWS RAM).
  4. Update the role that the CodeBuild project uses so that the role has sufficient permissions to use the CodeArtifact repository.
  5. Specify the account that hosts the repository as the delegated administrator for CodeArtifact in the organization.

Answer(s): A,D



A company uses a series of individual Amazon CloudFormation templates to deploy its multi-Region applications. These templates must be deployed in a specific order. The company is making more changes to the templates than previously expected and wants to deploy new templates more efficiently. Additionally, the data engineering team must be notified of all changes to the templates.

What should the company do to accomplish these goals?

  1. Create an AWS Lambda function to deploy the CloudFormation templates in the required order. Use stack policies to alert the data engineering team.
  2. Host the CloudFormation templates in Amazon S3. Use Amazon S3 events to directly trigger CloudFormation updates and Amazon SNS notifications.
  3. Implement CloudFormation StackSets and use drift detection to trigger update alerts to the data engineering team.
  4. Leverage CloudFormation nested stacks and stack sets for deployments. Use Amazon SNS to notify the data engineering team.

Answer(s): D



A DevOps engineer has implemented a Cl/CD pipeline to deploy an AWS CloudFormation template that provisions a web application. The web application consists of an Application Load Balancer (ALB), a target group, a launch template that uses an Amazon Linux 2 AMI, an Auto Scaling group of Amazon EC2 instances, a security group, and an Amazon RDS for MySOL database. The launch template includes user data that specifies a script to install and start the application.

The initial deployment of the application was successful. The DevOps engineer made changes to update the version of the application with the user data. The CI/CD pipeline has deployed a new version of the template. However, the health checks on the ALB are now failing. The health checks have marked all targets as unhealthy.

During investigation, the DevOps engineer notices that the CloudFormation stack has a status of UPDATE_COMPLETE. However, when the DevOps engineer connects to one of the EC2 instances and checks /var/log/messages, the DevOps engineer notices that the Apache web server failed to start successfully because of a configuration error.

How can the DevOps engineer ensure that the CloudFormation deployment will fail if the user data fails to successfully finish running?

  1. Use the cfn-signal helper script to signal success or failure to CloudFormation. Use the WaitOnResourceSignals update policy within the CloudFormation template. Set an appropriate timeout for the update policy.
  2. Create an Amazon CloudWatch alarm for the UnhealthyHostCount metric. Include an appropriate alarm threshold for the target group. Create an Amazon Simple Notification Service (Amazon SNS) topic as the target to signal success or failure to CloudFormation.
  3. Create a lifecycle hook on the Auto Scaling group by using the AWS::AutoScaling::LifecycleHook resource. Create an Amazon Simple Notification Service (Amazon SNS) topic as the target to signal success or failure to CloudFormation. Set an appropriate timeout on the lifecycle hook.
  4. Use the Amazon CloudWatch agent to stream the cloud-init logs. Create a subscription filter that includes an AWS Lambda function with an appropriate invocation timeout. Configure the Lambda function to use the SignalResource API operation to signal success or failure to CloudFormation.

Answer(s): A



Page 28 of 72



Post your Comments and Discuss Amazon AWS Certified DevOps Engineer - Professional DOP-C02 exam with other Community members:

Marcellus Werifah commented on October 20, 2024
Verified answers
UNITED STATES
upvote

samir commented on October 20, 2024
good practice
AUSTRIA
upvote

Patric commented on October 20, 2024
The main thing about this exam dump is that the PDF is not free. And that is what I needed. So I had to pay for that but they offer 50% discount if you buy 2 or more exams.
Spain
upvote

Nathan commented on October 20, 2024
Using dumps are my last resort. And that is what I ended up using with this exam to pass. The exam is extremely difficult.
France
upvote

Marcellus Werifah commented on October 20, 2024
Who decides what is the correct in case of conflicts
UNITED STATES
upvote

Marcellus Werifah commented on October 20, 2024
Novice. Would need detailed explanation of any questions
UNITED STATES
upvote

Maya commented on October 20, 2024
It would be great if all answers are supported by reference link.
UNITED KINGDOM
upvote

Maya commented on October 20, 2024
good material
UNITED KINGDOM
upvote

Jay commented on October 20, 2024
Interesting selection of questions
GREECE
upvote

Vinod Kumar Ramaswamy commented on October 20, 2024
ITS VERY USEFUL
UNITED KINGDOM
upvote

Srikanth commented on October 20, 2024
Useful to prepare for the exam
Anonymous
upvote

Alex commented on October 20, 2024
This exam is super duper hard. So prepare for it guys. I only passed it because of these questions. God bless the owner of this site.
UNITED STATES
upvote

Petrious commented on October 20, 2024
The site provides good content and very reliable support team. Very quick to reply to questions.
GERMANY
upvote

Rashmi commented on October 20, 2024
Good Content
Anonymous
upvote

Manish commented on October 19, 2024
Hi it's a good initiative
Anonymous
upvote

Veronica commented on October 19, 2024
Brain dump questions are new to me...I'm not sure how to respond to this since I only answered a handful of questions
UNITED STATES
upvote

Kamran commented on October 19, 2024
Useful resource
UNITED STATES
upvote

AC commented on October 19, 2024
For a moment no, comment, still moving well
Anonymous
upvote

johnny commented on October 19, 2024
great insight
Anonymous
upvote

Marc commented on October 18, 2024
What the best way to learn terraform?
UNITED STATES
upvote

murad commented on October 18, 2024
Very helpful for certs
JORDAN
upvote

Jack commented on October 18, 2024
are these legit ?
Anonymous
upvote

Juan commented on October 18, 2024
From until what page number is enough to pass the certification?
Anonymous
upvote

Sandeep commented on October 18, 2024
This is very helpful for exam crack
UNITED STATES
upvote

Cheron commented on October 18, 2024
Before all i thank to you for your support. I passed my 2 exams I purchased with full version. I got 90% in one exam and in 2 exam I got 86%.
Anonymous
upvote

LA commented on October 18, 2024
Hi there, I have scheduled my EXAM and will share my experience if these questions are valid or not.
Anonymous
upvote

Mazin commented on October 18, 2024
Good questions
Anonymous
upvote

Test commented on October 18, 2024
Test are these teak answeres?
Anonymous
upvote

anonymous commented on October 17, 2024
can someone tell me if this is real questions
UNITED STATES
upvote

Steven commented on October 17, 2024
Questions are spot on and I passed the exam.
UNITED STATES
upvote

Ntombi commented on October 17, 2024
i find the questions helpful for my exam preparation
Anonymous
upvote

Ntombi commented on October 17, 2024
The questions help me to see if I understood what I have learned
Anonymous
upvote

ntombi commented on October 17, 2024
writing exam at the end of the month
Anonymous
upvote

Apvj commented on October 17, 2024
Need to update section 5 questions,it was all new question today in exam , unitl section 4 it was fine even though pattern of question changed
Anonymous
upvote