CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS Certified DevOps Engineer - Professional DOP-C02

Free AWS Certified DevOps Engineer - Professional DOP-C02 Exam Braindumps (page: 32)

Page 32 of 72
PDF with 281 Questions

A global company manages multiple AWS accounts by using AWS Control Tower. The company hosts internal applications and public applications.

Each application team in the company has its own AWS account for application hosting. The accounts are consolidated in an organization in AWS Organizations. One of the AWS Control Tower member accounts serves as a centralized DevOps account with CI/CD pipelines that application teams use to deploy applications to their respective target AWS accounts. An IAM role for deployment exists in the centralized DevOps account.

An application team is attempting to deploy its application to an Amazon Elastic Kubernetes Service (Amazon EKS) cluster in an application AWS account. An IAM role for deployment exists in the application AWS account. The deployment is through an AWS CodeBuild project that is set up in the centralized DevOps account. The CodeBuild project uses an IAM service role for CodeBuild. The deployment is failing with an Unauthorized error during attempts to connect to the cross-account EKS cluster from CodeBuild.

Which solution will resolve this error?

  1. Configure the application account’s deployment IAM role to have a trust relationship with the centralized DevOps account. Configure the trust relationship to allow the sts:AssumeRole action. Configure the application account’s deployment IAM role to have the required access to the EKS cluster. Configure the EKS cluster aws-auth ConfigMap to map the role to the appropriate system permissions.
  2. Configure the centralized DevOps account’s deployment IAM role to have a trust relationship with the application account. Configure the trust relationship to allow the sts:AssumeRole action. Configure the centralized DevOps account’s deployment IAM role to allow the required access to CodeBuild.
  3. Configure the centralized DevOps account’s deployment IAM role to have a trust relationship with the application account. Configure the trust relationship to allow the sts:AssumeRoleWithSAML action. Configure the centralized DevOps account’s deployment IAM role to allow the required access to CodeBuild.
  4. Configure the application account’s deployment IAM role to have a trust relationship with the AWS Control Tower management account. Configure the trust relationship to allow the sts:AssumeRole action. Configure the application account’s deployment IAM role to have the required access to the EKS cluster. Configure the EKS cluster aws-auth ConfigMap to map the role to the appropriate system permissions.

Answer(s): A



A highly regulated company has a policy that DevOps Engineers should not log in to their Amazon EC2 instances except in emergencies. If a DevOps Engineer does log in, the Security team must be notified within 15 minutes of the occurrence.

Which solution will meet these requirements?

  1. Install the Amazon Inspector agent on each EC2 instance. Subscribe to Amazon CloudWatch Events notifications. Trigger an AWS Lambda function to check if a message is about user logins. If it is, send a notification to the Security team using Amazon SNS.
  2. Install the Amazon CloudWatch agent on each EC2 instance. Configure the agent to push all logs to Amazon CloudWatch Logs and set up a CloudWatch metric filter that searches for user logins. If a login is found, send a notification to the Security team using Amazon SNS.
  3. Set up AWS CloudTrail with Amazon CloudWatch Logs. Subscribe CloudWatch Logs to Amazon Kinesis. Attach AWS Lambda to Kinesis to parse and determine if a log contains a user login. If it does, send a notification to the Security team using Amazon SNS.
  4. Set up a script on each Amazon EC2 instance to push all logs to Amazon S3. Set up an S3 event to trigger an AWS Lambda function, which triggers an Amazon Athena query to run. The Athena query checks for logins and sends the output to the Security team using Amazon SNS.

Answer(s): B



A company updated the AWS CloudFormation template for a critical business application. The stack update process failed due to an error in the updated template, and AWS CloudFormation automatically began the stack rollback process. Later, a DevOps engineer discovered that the application was still unavailable and that the stack was in the UPDATE_ROLLBACK_FAILED state.

Which combination of actions should the DevOps engineer perform so that the stack rollback can complete successfully? (Choose two.)

  1. Attach the AWSCIoudFormationFullAccess IAM policy to the AWS CloudFormation role.
  2. Automatically recover the stack resources by using AWS CloudFormation drift detection.
  3. Issue a ContinueUpdateRollback command from the AWS CloudFormation console or the AWS CLI.
  4. Manually adjust the resources to match the expectations of the stack.
  5. Update the existing AWS CloudFormation stack by using the original template.

Answer(s): C,D



A development team manually builds an artifact locally and then places it in an Amazon S3 bucket. The application has a local cache that must be cleared when a deployment occurs. The team executes a command to do this, downloads the artifact from Amazon S3, and unzips the artifact to complete the deployment.

A DevOps team wants to migrate to a CI/CD process and build in checks to stop and roll back the deployment when a failure occurs. This requires the team to track the progression of the deployment.

Which combination of actions will accomplish this? (Choose three.)

  1. Allow developers to check the code into a code repository. Using Amazon CloudWatch Events, on every pull into master, trigger an AWS Lambda function to build the artifact and store it in Amazon S3.
  2. Create a custom script to clear the cache. Specify the script in the BeforeInstall lifecycle hook in the AppSpec file.
  3. Create user data for each Amazon EC2 instance that contains the clear cache script. Once deployed, test the application. If it is not successful, deploy it again.
  4. Set up AWS CodePipeline to deploy the application. Allow developers to check the code into a code repository as a source for the pipeline.
  5. Use AWS CodeBuild to build the artifact and place it in Amazon S3. Use AWS CodeDeploy to deploy the artifact to Amazon EC2 instances.
  6. Use AWS Systems Manager to fetch the artifact from Amazon S3 and deploy it to all the instances.

Answer(s): B,D,E



Page 32 of 72



Post your Comments and Discuss Amazon AWS Certified DevOps Engineer - Professional DOP-C02 exam with other Community members:

Sobhash commented on November 30, 2024
To those who are going for this exam and wondering if any passed. I wrote this exam. The exam is extremely hard and tricky. Luckily I prepared well and bought the full version of this exam dump which included most of the exam questions. However some answers were incomplete. But overall a fantastic resource well worth the money.
UNITED STATES
upvote

Juan Alvarez commented on November 29, 2024
Good content
Anonymous
upvote

Chela commented on November 29, 2024
Great for Exam preparation! Did it in Nov and Passed the first attempt.
Anonymous
upvote

nahdus commented on November 29, 2024
all comments are original?
Anonymous
upvote

Sanjay Dinda commented on November 29, 2024
So far all good
UNITED KINGDOM
upvote

Naveen Ahlam commented on November 29, 2024
Great stuff
Anonymous
upvote

nancy commented on November 29, 2024
Very helpful
Anonymous
upvote

M commented on November 29, 2024
Is this still valid ?
SLOVAKIA (Slovak Republic)
upvote

Mira commented on November 29, 2024
Great tool and questions!
Anonymous
upvote

Joaquin commented on November 29, 2024
These are good questions.
Anonymous
upvote

Joaquin commented on November 29, 2024
Good questions.
Anonymous
upvote

naveen naveen commented on November 29, 2024
Very useful
Anonymous
upvote

Kadeer commented on November 29, 2024
Very professional support. I sent an email about the full version of this exam I purchased and they replied within 5 minutes and setup everything for me. I ended up passing my exam with this dump. I highly recommend.
Singapore
upvote

hello commented on November 28, 2024
Great collection of the questions covering all aspects
INDONESIA
upvote

Chaminda commented on November 28, 2024
great papers
Anonymous
upvote

mihir commented on November 28, 2024
Valid dumps
INDIA
upvote

AK commented on November 28, 2024
Are these enough?
UNITED STATES
upvote

Nacho commented on November 28, 2024
What a great week. Passed this freaking exam...at last. Now I can enjoy the Thanks Giving. Happy Thanks Giving to all.
UNITED STATES
upvote

Aman commented on November 28, 2024
Passed this exam and got 93%. Valid exam dump.
France
upvote

Traveller69 commented on November 28, 2024
I sat for this exam today. The questions are - I would say around 85% to 90% the same. I got 87% with just 2 weeks of studying from the PDF full version of this exam.
Canada
upvote

AD AD commented on November 28, 2024
thanks for the exact solution
Anonymous
upvote

Lee commented on November 27, 2024
So far so good
UNITED STATES
upvote

Hernandoz commented on November 27, 2024
I am happy to say that I managed to clear this exam. Thanks to this website and great exam content and questions in this dump.
Mexico
upvote

Sakshay commented on November 27, 2024
Not sure if I am the only one who finds this exam super tricky and hard. Looking at these questions I can recall that most of these questions were in the exam. But last time I did not know about these questions so I failed. I think I am going to be okay this time to pass. These questions looks very promising.
INDIA
upvote

Ramparsat commented on November 27, 2024
The full PDF version has way more questions than this free version. I believe if you a good knowledge and understanding of the certification exam then you should be able to pass it using the free version. Otherwise, go with full version and don't take any chance.
Australia
upvote

Fei commented on November 26, 2024
Very good resources
UNITED STATES
upvote

Maruthi commented on November 26, 2024
Good collection of the questions covering all aspects
AUSTRALIA
upvote

Ganapathy commented on November 26, 2024
Cam wr study and pass this Microsoft AZ-900 exam in India
Anonymous
upvote

Maruthi commented on November 26, 2024
Going all good
AUSTRALIA
upvote

Geroge commented on November 26, 2024
Providing this service is much appreciated. This free exam dumps is helping me a lot.
Romania
upvote

Anne commented on November 26, 2024
Took the exam today and I passed. I think I only had one new question, all were from here including the PBQ's
SOUTH AFRICA
upvote

elhassan commented on November 26, 2024
many thanks
Anonymous
upvote

willy commented on November 26, 2024
this web site help me to prepare for my exams
UNITED STATES
upvote

willy commented on November 26, 2024
Much better than the other website. its very helpful
UNITED STATES
upvote