CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS Certified DevOps Engineer - Professional DOP-C02

Free AWS Certified DevOps Engineer - Professional DOP-C02 Exam Braindumps (page: 37)

Page 37 of 72
PDF with 281 Questions

A company manages multiple AWS accounts in AWS Organizations. The company’s security policy states that AWS account root user credentials for member accounts must not be used. The company monitors access to the root user credentials.

A recent alert shows that the root user in a member account launched an Amazon EC2 instance. A DevOps engineer must create an SCP at the organization's root level that will prevent the root user in member accounts from making any AWS service API calls.

Which SCP will meet these requirements?





Answer(s): C



A company uses AWS and has a VPC that contains critical compute infrastructure with predictable traffic patterns. The company has configured VPC flow logs that are published to a log group in Amazon CloudWatch Logs.

The company's DevOps team needs to configure a monitoring solution for the VPC flow logs to identify anomalies in network traffic to the VPC over time. If the monitoring solution detects an anomaly, the company needs the ability to initiate a response to the anomaly.

How should the DevOps team configure the monitoring solution to meet these requirements?

  1. Create an Amazon Kinesis data stream. Subscribe the log group to the data stream. Configure Amazon Kinesis Data Analytics to detect log anomalies in the data stream. Create an AWS Lambda function to use as the output of the data stream. Configure the Lambda function to write to the default Amazon EventBridge event bus in the event of an anomaly finding.
  2. Create an Amazon Kinesis Data Firehose delivery stream that delivers events to an Amazon S3 bucket. Subscribe the log group to the delivery stream. Configure Amazon Lookout for Metrics to monitor the data in the S3 bucket for anomalies. Create an AWS Lambda function to run in response to Lookout for Metrics anomaly findings. Configure the Lambda function to publish to the default Amazon EventBridge event bus.
  3. Create an AWS Lambda function to detect anomalies. Configure the Lambda function to publish an event to the default Amazon EventBridge event bus if the Lambda function detects an anomaly. Subscribe the Lambda function to the log group.
  4. Create an Amazon Kinesis data stream. Subscribe the log group to the data stream. Create an AWS Lambda function to detect log anomalies. Configure the Lambda function to write to the default Amazon EventBridge event bus if the Lambda function detects an anomaly. Set the Lambda function as the processor for the data stream.

Answer(s): B



AnyCompany is using AWS Organizations to create and manage multiple AWS accounts. AnyCompany recently acquired a smaller company, Example Corp. During the acquisition process, Example Corp's single AWS account joined AnyCompany's management account through an Organizations invitation. AnyCompany moved the new member account under an OU that is dedicated to Example Corp.

AnyCompany's DevOps engineer has an IAM user that assumes a role that is named OrganizationAccountAccessRole to access member accounts. This role is configured with a full access policy. When the DevOps engineer tries to use the AWS Management Console to assume the role in Example Corp's new member account, the DevOps engineer receives the following error message: "Invalid information in one or more fields. Check your information or contact your administrator."

Which solution will give the DevOps engineer access to the new member account?

  1. In the management account, grant the DevOps engineer's IAM user permission to assume the OrganizationAccountAccessRole IAM role in the new member account.
  2. In the management account, create a new SCP. In the SCP, grant the DevOps engineer's IAM user full access to all resources in the new member account. Attach the SCP to the OU that contains the new member account.
  3. In the new member account, create a new IAM role that is named OrganizationAccountAccessRole. Attach the AdministratorAccess AWS managed policy to the role. In the role's trust policy, grant the management account permission to assume the role.
  4. In the new member account, edit the trust policy for the OrganizationAccountAccessRole IAM role. Grant the management account permission to assume the role.

Answer(s): C



A DevOps engineer is designing an application that integrates with a legacy REST API. The application has an AWS Lambda function that reads records from an Amazon Kinesis data stream. The Lambda function sends the records to the legacy REST API.

Approximately 10% of the records that the Lambda function sends from the Kinesis data stream have data errors and must be processed manually. The Lambda function event source configuration has an Amazon Simple Queue Service (Amazon SQS) dead-letter queue as an on-failure destination. The DevOps engineer has configured the Lambda function to process records in batches and has implemented retries in case of failure.

During testing, the DevOps engineer notices that the dead-letter queue contains many records that have no data errors and that already have been processed by the legacy REST API. The DevOps engineer needs to configure the Lambda function's event source options to reduce the number of errorless records that are sent to the dead-letter queue.

Which solution will meet these requirements?

  1. Increase the retry attempts.
  2. Configure the setting to split the batch when an error occurs.
  3. Increase the concurrent batches per shard.
  4. Decrease the maximum age of record.

Answer(s): B



Page 37 of 72



Post your Comments and Discuss Amazon AWS Certified DevOps Engineer - Professional DOP-C02 exam with other Community members:

Priya commented on December 01, 2024
Help before exam good practice questions
INDIA
upvote

Priya commented on December 01, 2024
Very useful
INDIA
upvote

Sheffie commented on December 01, 2024
Helping me get used to the exam style
UNITED STATES
upvote

Sheffie commented on December 01, 2024
Helps me get used to the type of questions
UNITED STATES
upvote

African-Amazigh commented on December 01, 2024
is this Exam the real NCM-MCI 6.5 Exam ? is it valide ?
Anonymous
upvote

SPH commented on December 01, 2024
super helpful questions
UNITED STATES
upvote

Shean commented on November 30, 2024
Great deal of Friday deal of 50% off. Got my 3 exams and download the PDF files.
NETHERLANDS
upvote

Babu commented on November 30, 2024
I did this exam this past Friday. All went great. Passed with 94%.
India
upvote

Elimu commented on November 30, 2024
A good way to practice
Anonymous
upvote

Sobhash commented on November 30, 2024
To those who are going for this exam and wondering if any passed. I wrote this exam. The exam is extremely hard and tricky. Luckily I prepared well and bought the full version of this exam dump which included most of the exam questions. However some answers were incomplete. But overall a fantastic resource well worth the money.
UNITED STATES
upvote

Juan Alvarez commented on November 29, 2024
Good content
Anonymous
upvote

Chela commented on November 29, 2024
Great for Exam preparation! Did it in Nov and Passed the first attempt.
Anonymous
upvote

nahdus commented on November 29, 2024
all comments are original?
Anonymous
upvote

Sanjay Dinda commented on November 29, 2024
So far all good
UNITED KINGDOM
upvote

Naveen Ahlam commented on November 29, 2024
Great stuff
Anonymous
upvote

nancy commented on November 29, 2024
Very helpful
Anonymous
upvote

M commented on November 29, 2024
Is this still valid ?
SLOVAKIA (Slovak Republic)
upvote

Mira commented on November 29, 2024
Great tool and questions!
Anonymous
upvote

Joaquin commented on November 29, 2024
These are good questions.
Anonymous
upvote

Joaquin commented on November 29, 2024
Good questions.
Anonymous
upvote

naveen naveen commented on November 29, 2024
Very useful
Anonymous
upvote

Kadeer commented on November 29, 2024
Very professional support. I sent an email about the full version of this exam I purchased and they replied within 5 minutes and setup everything for me. I ended up passing my exam with this dump. I highly recommend.
Singapore
upvote

hello commented on November 28, 2024
Great collection of the questions covering all aspects
INDONESIA
upvote

Chaminda commented on November 28, 2024
great papers
Anonymous
upvote

mihir commented on November 28, 2024
Valid dumps
INDIA
upvote

AK commented on November 28, 2024
Are these enough?
UNITED STATES
upvote

Nacho commented on November 28, 2024
What a great week. Passed this freaking exam...at last. Now I can enjoy the Thanks Giving. Happy Thanks Giving to all.
UNITED STATES
upvote

Aman commented on November 28, 2024
Passed this exam and got 93%. Valid exam dump.
France
upvote

Traveller69 commented on November 28, 2024
I sat for this exam today. The questions are - I would say around 85% to 90% the same. I got 87% with just 2 weeks of studying from the PDF full version of this exam.
Canada
upvote

AD AD commented on November 28, 2024
thanks for the exact solution
Anonymous
upvote

Lee commented on November 27, 2024
So far so good
UNITED STATES
upvote

Hernandoz commented on November 27, 2024
I am happy to say that I managed to clear this exam. Thanks to this website and great exam content and questions in this dump.
Mexico
upvote

Sakshay commented on November 27, 2024
Not sure if I am the only one who finds this exam super tricky and hard. Looking at these questions I can recall that most of these questions were in the exam. But last time I did not know about these questions so I failed. I think I am going to be okay this time to pass. These questions looks very promising.
INDIA
upvote

Ramparsat commented on November 27, 2024
The full PDF version has way more questions than this free version. I believe if you a good knowledge and understanding of the certification exam then you should be able to pass it using the free version. Otherwise, go with full version and don't take any chance.
Australia
upvote