CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS Certified DevOps Engineer - Professional DOP-C02

Free AWS Certified DevOps Engineer - Professional DOP-C02 Exam Braindumps (page: 2)

Page 2 of 72
PDF with 281 Questions

A company is using an Amazon Aurora cluster as the data store for its application. The Aurora cluster is configured with a single DB instance. The application performs read and write operations on the database by using the cluster's instance endpoint.

The company has scheduled an update to be applied to the cluster during an upcoming maintenance window. The cluster must remain available with the least possible interruption during the maintenance window.

What should a DevOps engineer do to meet these requirements?

  1. Add a reader instance to the Aurora cluster. Update the application to use the Aurora cluster endpoint for write operations. Update the Aurora cluster's reader endpoint for reads.
  2. Add a reader instance to the Aurora cluster. Create a custom ANY endpoint for the cluster. Update the application to use the Aurora cluster's custom ANY endpoint for read and write operations.
  3. Turn on the Multi-AZ option on the Aurora cluster. Update the application to use the Aurora cluster endpoint for write operations. Update the Aurora cluster’s reader endpoint for reads.
  4. Turn on the Multi-AZ option on the Aurora cluster. Create a custom ANY endpoint for the cluster. Update the application to use the Aurora cluster's custom ANY endpoint for read and write operations

Answer(s): A



A company must encrypt all AMIs that the company shares across accounts. A DevOps engineer has access to a source account where an unencrypted custom AMI has been built. The DevOps engineer also has access to a target account where an Amazon EC2 Auto Scaling group will launch EC2 instances from the AMI. The DevOps engineer must share the AMI with the target account.

The company has created an AWS Key Management Service (AWS KMS) key in the source account.

Which additional steps should the DevOps engineer perform to meet the requirements? (Choose three.)

  1. In the source account, copy the unencrypted AMI to an encrypted AMI. Specify the KMS key in the copy action.
  2. In the source account, copy the unencrypted AMI to an encrypted AMI. Specify the default Amazon Elastic Block Store (Amazon EBS) encryption key in the copy action.
  3. In the source account, create a KMS grant that delegates permissions to the Auto Scaling group service-linked role in the target account.
  4. In the source account, modify the key policy to give the target account permissions to create a grant. In the target account, create a KMS grant that delegates permissions to the Auto Scaling group service-linked role.
  5. In the source account, share the unencrypted AMI with the target account.
  6. In the source account, share the encrypted AMI with the target account.

Answer(s): A,D,F



A company uses AWS CodePipeline pipelines to automate releases of its application A typical pipeline consists of three stages build, test, and deployment. The company has been using a separate AWS CodeBuild project to run scripts for each stage. However, the company now wants to use AWS CodeDeploy to handle the deployment stage of the pipelines.

The company has packaged the application as an RPM package and must deploy the application to a fleet of Amazon EC2 instances. The EC2 instances are in an EC2 Auto Scaling group and are launched from a common AMI.

Which combination of steps should a DevOps engineer perform to meet these requirements? (Choose two.)

  1. Create a new version of the common AMI with the CodeDeploy agent installed. Update the IAM role of the EC2 instances to allow access to CodeDeploy.
  2. Create a new version of the common AMI with the CodeDeploy agent installed. Create an AppSpec file that contains application deployment scripts and grants access to CodeDeploy.
  3. Create an application in CodeDeploy. Configure an in-place deployment type. Specify the Auto Scaling group as the deployment target. Add a step to the CodePipeline pipeline to use EC2 Image Builder to create a new AMI. Configure CodeDeploy to deploy the newly created AMI.
  4. Create an application in CodeDeploy. Configure an in-place deployment type. Specify the Auto Scaling group as the deployment target. Update the CodePipeline pipeline to use the CodeDeploy action to deploy the application.
  5. Create an application in CodeDeploy. Configure an in-place deployment type. Specify the EC2 instances that are launched from the common AMI as the deployment target. Update the CodePipeline pipeline to use the CodeDeploy action to deploy the application.

Answer(s): A,D



A company’s security team requires that all external Application Load Balancers (ALBs) and Amazon API Gateway APIs are associated with AWS WAF web ACLs. The company has hundreds of AWS accounts, all of which are included in a single organization in AWS Organizations. The company has configured AWS Config for the organization. During an audit, the company finds some externally facing ALBs that are not associated with AWS WAF web ACLs.

Which combination of steps should a DevOps engineer take to prevent future violations? (Choose two.)

  1. Delegate AWS Firewall Manager to a security account.
  2. Delegate Amazon GuardDuty to a security account.
  3. Create an AWS Firewall Manager policy to attach AWS WAF web ACLs to any newly created ALBs and API Gateway APIs.
  4. Create an Amazon GuardDuty policy to attach AWS WAF web ACLs to any newly created ALBs and API Gateway APIs.
  5. Configure an AWS Config managed rule to attach AWS WAF web ACLs to any newly created ALBs and API Gateway APIs.

Answer(s): A,C



Page 2 of 72



Post your Comments and Discuss Amazon AWS Certified DevOps Engineer - Professional DOP-C02 exam with other Community members:

sith commented on December 30, 2024
Are these question still valid ? can someone please confirm?
CANADA
upvote

Frank Smith commented on December 30, 2024
Excellent material for exam preparation
COSTA RICA
upvote

Anonymous commented on December 30, 2024
thank you for sharing
Anonymous
upvote

NB commented on December 30, 2024
good support
Anonymous
upvote

Karanpeet Sachdeva commented on December 30, 2024
Preparing for exam
INDIA
upvote

Harshini commented on December 30, 2024
Good Practice
Anonymous
upvote

Uzman commented on December 30, 2024
great collection
Anonymous
upvote

Md Habibur Rahman commented on December 30, 2024
Very helpful
BANGLADESH
upvote

Kollur commented on December 29, 2024
Best questions for preparation
JAPAN
upvote

Kollur commented on December 29, 2024
Usefull data
JAPAN
upvote

dinesh commented on December 29, 2024
Useful data
AUSTRALIA
upvote

Max commented on December 29, 2024
You’re the best
Anonymous
upvote

Deepika Deshmukh commented on December 29, 2024
very helpful content it helps a lot
Anonymous
upvote

Criss commented on December 29, 2024
Very nice and very good questions
Anonymous
upvote

Real truth commented on December 29, 2024
this is crap
Anonymous
upvote

Md commented on December 29, 2024
Totally worth it!
Anonymous
upvote

Datahighway commented on December 29, 2024
nice very good Stuff
UNITED STATES
upvote

Mon88 commented on December 29, 2024
is this dumps still valid to take the exam
UNITED STATES
upvote

Ashu commented on December 29, 2024
The best IT guide I have ever used. The content is well designed and nicely formatted. The software is very user-friendly and doesn't need an additional purchase like other websites. I highly recommend this.
UNITED STATES
upvote

Unknown Man commented on December 29, 2024
good stuff, but can you clarify the source
Anonymous
upvote

Unknown Man commented on December 29, 2024
Are these questions valid?
Anonymous
upvote

hnt commented on December 29, 2024
very good content
UNITED STATES
upvote

Subham commented on December 29, 2024
Good practice set
Anonymous
upvote

Vinod commented on December 28, 2024
very good questions
INDIA
upvote

Anon commented on December 28, 2024
Very helpful
UNITED STATES
upvote

Sachin Kamble commented on December 28, 2024
useful information
Anonymous
upvote

Sachin Kamble commented on December 28, 2024
very interesting and useful onformation
Anonymous
upvote

Bosco Oico commented on December 28, 2024
Yes. i have used this dump for CFE Investigations test yesterday- i found it useful because questions about 60% were closely related and some were exact. The only thing that needs to be improved is the accuracy of the answers. If some one read the CFE manual well, you will notice that some answers as they are answered according to the ACFE standard. So, i encourage anyone using Brain to verify answers, otherwise, its a good source to create confidence and sure pass
UGANDA
upvote

velu commented on December 28, 2024
nice,very useful
Anonymous
upvote

Sai commented on December 28, 2024
I need okta dumps
Anonymous
upvote

Edison Vásquez commented on December 28, 2024
Muy bueno todo muy bien explicado
Anonymous
upvote

TMUNI commented on December 28, 2024
Questions are addressed, but need clarification
UNITED STATES
upvote

TRYY commented on December 28, 2024
Does it work
UNITED STATES
upvote

Ama commented on December 27, 2024
are the comments real
UNITED STATES
upvote