CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS Certified DevOps Engineer - Professional DOP-C02

Free AWS Certified DevOps Engineer - Professional DOP-C02 Exam Braindumps (page: 34)

Page 34 of 72
PDF with 281 Questions

A company is using AWS to run digital workloads. Each application team in the company has its own AWS account for application hosting. The accounts are consolidated in an organization in AWS Organizations.

The company wants to enforce security standards across the entire organization. To avoid noncompliance because of security misconfiguration, the company has enforced the use of AWS CloudFormation. A production support team can modify resources in the production environment by using the AWS Management Console to troubleshoot and resolve application-related issues.

A DevOps engineer must implement a solution to identify in near real time any AWS service misconfiguration that results in noncompliance. The solution must automatically remediate the issue within 15 minutes of identification. The solution also must track noncompliant resources and events in a centralized dashboard with accurate timestamps.

Which solution will meet these requirements with the LEAST development overhead?

  1. Use CloudFormation drift detection to identify noncompliant resources. Use drift detection events from CloudFormation to invoke an AWS Lambda function for remediation. Configure the Lambda function to publish logs to an Amazon CloudWatch Logs log group. Configure an Amazon CloudWatch dashboard to use the log group for tracking.
  2. Turn on AWS CloudTrail in the AWS accounts. Analyze CloudTrail logs by using Amazon Athena to identify noncompliant resources. Use AWS Step Functions to track query results on Athena for drift detection and to invoke an AWS Lambda function for remediation. For tracking, set up an Amazon QuickSight dashboard that uses Athena as the data source.
  3. Turn on the configuration recorder in AWS Config in all the AWS accounts to identify noncompliant resources. Enable AWS Security Hub with the --no-enable-default-standards option in all the AWS accounts. Set up AWS Config managed rules and custom rules. Set up automatic remediation by using AWS Config conformance packs. For tracking, set up a dashboard on Security Hub in a designated Security Hub administrator account.
  4. Turn on AWS CloudTrail in the AWS accounts. Analyze CloudTrail logs by using Amazon CloudWatch Logs to identify noncompliant resources. Use CloudWatch Logs filters for drift detection. Use Amazon EventBridge to invoke the Lambda function for remediation. Stream filtered CloudWatch logs to Amazon OpenSearch Service. Set up a dashboard on OpenSearch Service for tracking.

Answer(s): C



A company uses AWS Organizations to manage its AWS accounts. The organization root has an OU that is named Environments. The Environments OU has two child OUs that are named Development and Production, respectively.

The Environments OU and the child OUs have the default FullAWSAccess policy in place. A DevOps engineer plans to remove the FullAWSAccess policy from the Development OU and replace the policy with a policy that allows all actions on Amazon EC2 resources.

What will be the outcome of this policy replacement?

  1. All users in the Development OU will be allowed all API actions on all resources.
  2. All users in the Development OU will be allowed all API actions on EC2 resources. All other API actions will be denied.
  3. All users in the Development OU will be denied all API actions on all resources.
  4. All users in the Development OU will be denied all API actions on EC2 resources. All other API actions will be allowed.

Answer(s): B



A company is examining its disaster recovery capability and wants the ability to switch over its daily operations to a secondary AWS Region. The company uses AWS CodeCommit as a source control tool in the primary Region.

A DevOps engineer must provide the capability for the company to develop code in the secondary Region. If the company needs to use the secondary Region, developers can add an additional remote URL to their local Git configuration.

Which solution will meet these requirements?

  1. Create a CodeCommit repository in the secondary Region. Create an AWS CodeBuild project to perform a Git mirror operation of the primary Region's CodeCommit repository to the secondary Region's CodeCommit repository. Create an AWS Lambda function that invokes the CodeBuild project. Create an Amazon EventBridge rule that reacts to merge events in the primary Region's CodeCommit repository. Configure the EventBridge rule to invoke the Lambda function.
  2. Create an Amazon S3 bucket in the secondary Region. Create an AWS Fargate task to perform a Git mirror operation of the primary Region's CodeCommit repository and copy the result to the S3 bucket. Create an AWS Lambda function that initiates the Fargate task. Create an Amazon EventBridge rule that reacts to merge events in the CodeCommit repository. Configure the EventBridge rule to invoke the Lambda function.
  3. Create an AWS CodeArtifact repository in the secondary Region. Create an AWS CodePipeline pipeline that uses the primary Region’s CodeCommit repository for the source action. Create a cross-Region stage in the pipeline that packages the CodeCommit repository contents and stores the contents in the CodeArtifact repository when a pull request is merged into the CodeCommit repository.
  4. Create an AWS Cloud9 environment and a CodeCommit repository in the secondary Region. Configure the primary Region's CodeCommit repository as a remote repository in the AWS Cloud9 environment. Connect the secondary Region's CodeCommit repository to the AWS Cloud9 environment.

Answer(s): A



A DevOps team is merging code revisions for an application that uses an Amazon RDS Multi-AZ DB cluster for its production database. The DevOps team uses continuous integration to periodically verify that the application works. The DevOps team needs to test the changes before the changes are deployed to the production database.

Which solution will meet these requirements?

  1. Use a buildspec file in AWS CodeBuild to restore the DB cluster from a snapshot of the production database, run integration tests, and drop the restored database after verification.
  2. Deploy the application to production. Configure an audit log of data control language (DCL) operations to capture database activities to perform if verification fails.
  3. Create a snapshot of the DB cluster before deploying the application. Use the Update requires:Replacement property on the DB instance in AWS CloudFormation to deploy the application and apply the changes.
  4. Ensure that the DB cluster is a Multi-AZ deployment. Deploy the application with the updates. Fail over to the standby instance if verification fails.

Answer(s): A



Page 34 of 72



Post your Comments and Discuss Amazon AWS Certified DevOps Engineer - Professional DOP-C02 exam with other Community members:

Karlik commented on September 27, 2024
I passed the exam with help from this questions :)
Anonymous
upvote

Nate commented on September 27, 2024
Has anyone recently taken the exam? Can anyone confirm these questions are similar or word for word?
Anonymous
upvote

Birkha commented on September 27, 2024
NO comments
BHUTAN
upvote

raba commented on September 26, 2024
@khorshal can i use this alone to pass the exams
Anonymous
upvote

raba commented on September 26, 2024
some of the questions are straight forward
Anonymous
upvote

Judwa commented on September 26, 2024
This exam is super hard. I was overwhelmed. After using this exam dump, I went into the exam feeling a bit better. I passed my test. :-)
INDIA
upvote

Jubran commented on September 26, 2024
Clear explanations and well-structured content made it so much easier to prepare and pass.
UNITED STATES
upvote

KXK commented on September 26, 2024
The study guide was concise yet comprehensive. It helped me focus on the key topics and feel more prepared than ever!
INDIA
upvote

Chandra commented on September 26, 2024
I passed my exam with ease, thanks to the targeted material in this guide. It made a huge difference in how I prepared.
CANADA
upvote

raba commented on September 26, 2024
I was thinking question 16 should be a legacy systems
Anonymous
upvote

Bubba commented on September 26, 2024
Good work guys. The layout is user-friendly, and the content is spot on.
Hong Kong
upvote

rabihu commented on September 26, 2024
These are really challenging questions.i love it
Anonymous
upvote

Murad commented on September 26, 2024
This guide gave me the exact focus I needed to pass my exam on the first try. Highly effective and reliable.
Turkey
upvote

raba commented on September 26, 2024
these are really good questions
Anonymous
upvote

Kg commented on September 26, 2024
hi @phil , thank you for the response , basically i must just check wether the answers are correct
Anonymous
upvote

Alhassan commented on September 26, 2024
these are really good questions
Anonymous
upvote

Jose commented on September 26, 2024
these are really good questions
Anonymous
upvote

David commented on September 26, 2024
good Questions
Anonymous
upvote

Mohammed commented on September 26, 2024
Absolutely grateful for this exam dumps. Passed on the first set down.
France
upvote

Phil commented on September 26, 2024
Hi @kg I feel you. Based on my experience, the questions are valid but some of the answers were not accurate. So I managed to study and kinda figure these answers. For me the accuracy of the questions were more important and I saw most of them in the exam.
Anonymous
upvote

Madhan commented on September 26, 2024
Useful questions
INDIA
upvote

Owol Sentmi commented on September 26, 2024
great Questions
Anonymous
upvote

Noha commented on September 26, 2024
Feeling very confident now. Went over the free questions here then decided to buy the full PDF and test engine with the sale price and now ready to write my test. Will share my experience next week after I go for my exam. Wish me luck guys.
UNITED STATES
upvote

Baylis commented on September 26, 2024
I am certified now. Thank you team.
UNITED STATES
upvote

Harper commented on September 26, 2024
If you have access to full version of this exam dumps then you are good to go and pass your exam.
EUROPEAN UNION
upvote

Suil commented on September 26, 2024
Very good Practice questions
CHINA
upvote

lala commented on September 26, 2024
really helping
Anonymous
upvote

Champ commented on September 26, 2024
Good to see that something is still free. I truly appreciate this service.
Mexico
upvote

kg commented on September 26, 2024
anyone who sees this comment please respond to my question, can the answers on freedumps be trusted , because im using different materials also from exam topics and the answers dont look the same
Anonymous
upvote

Shams commented on September 25, 2024
This exam is valid in UAE. I passed.
UNITED ARAB EMIRATES
upvote

rb commented on September 25, 2024
these are really good questions
Anonymous
upvote

Muhammad Saleem commented on September 25, 2024
In which Service Studio layer can Entities be found? I think Answer should be Data but It's Interface
UNITED ARAB EMIRATES
upvote

Khoshal commented on September 25, 2024
@Emily I have taken this exam and yes it is hard. But I managed to pass this exam with some study and using the questions from this exam dumps. I would say about 80% more or less of these questions are in the exam.
INDIA
upvote

Emily commented on September 25, 2024
I understand that most users reported that this exam is very hard. But how much of these questions were present in the exam if anyone has taken the exam? Please share.
Hong Kong
upvote