CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS Certified DevOps Engineer - Professional DOP-C02

Free AWS Certified DevOps Engineer - Professional DOP-C02 Exam Braindumps (page: 8)

Page 8 of 72
PDF with 281 Questions

A company has an organization in AWS Organizations. The organization includes workload accounts that contain enterprise applications. The company centrally manages users from an operations account. No users can be created in the workload accounts. The company recently added an operations team and must provide the operations team members with administrator access to each workload account.

Which combination of actions will provide this access? (Choose three.)

  1. Create a SysAdmin role in the operations account. Attach the AdministratorAccess policy to the role. Modify the trust relationship to allow the sts:AssumeRole action from the workload accounts.
  2. Create a SysAdmin role in each workload account. Attach the AdministratorAccess policy to the role. Modify the trust relationship to allow the sts:AssumeRole action from the operations account.
  3. Create an Amazon Cognito identity pool in the operations account. Attach the SysAdmin role as an authenticated role.
  4. In the operations account, create an IAM user for each operations team member.
  5. In the operations account, create an IAM user group that is named SysAdmins. Add an IAM policy that allows the sts:AssumeRole action for the SysAdmin role in each workload account. Add all operations team members to the group.
  6. Create an Amazon Cognito user pool in the operations account. Create an Amazon Cognito user for each operations team member.

Answer(s): B,D,E



A company has multiple accounts in an organization in AWS Organizations. The company's SecOps team needs to receive an Amazon Simple Notification Service (Amazon SNS) notification if any account in the organization turns off the Block Public Access feature on an Amazon S3 bucket. A DevOps engineer must implement this change without affecting the operation of any AWS accounts. The implementation must ensure that individual member accounts in the organization cannot turn off the notification.

Which solution will meet these requirements?

  1. Designate an account to be the delegated Amazon GuardDuty administrator account. Turn on GuardDuty for all accounts across the organization. In the GuardDuty administrator account, create an SNS topic. Subscribe the SecOps team's email address to the SNS topic. In the same account, create an Amazon EventBridge rule that uses an event pattern for GuardDuty findings and a target of the SNS topic.
  2. Create an AWS CloudFormation template that creates an SNS topic and subscribes the SecOps team’s email address to the SNS topic. In the template, include an Amazon EventBridge rule that uses an event pattern of CloudTrail activity for s3:PutBucketPublicAccessBlock and a target of the SNS topic. Deploy the stack to every account in the organization by using CloudFormation StackSets.
  3. Turn on AWS Config across the organization. In the delegated administrator account, create an SNS topic. Subscribe the SecOps team's email address to the SNS topic. Deploy a conformance pack that uses the s3-bucket-level-public-access-prohibited AWS Config managed rule in each account and uses an AWS Systems Manager document to publish an event to the SNS topic to notify the SecOps team.
  4. Turn on Amazon Inspector across the organization. In the Amazon Inspector delegated administrator account, create an SNS topic. Subscribe the SecOps team’s email address to the SNS topic. In the same account, create an Amazon EventBridge rule that uses an event pattern for public network exposure of the S3 bucket and publishes an event to the SNS topic to notify the SecOps team.

Answer(s): C



A company has migrated its container-based applications to Amazon EKS and want to establish automated email notifications. The notifications sent to each email address are for specific activities related to EKS components. The solution will include Amazon SNS topics and an AWS Lambda function to evaluate incoming log events and publish messages to the correct SNS topic.

Which logging solution will support these requirements?

  1. Enable Amazon CloudWatch Logs to log the EKS components. Create a CloudWatch subscription filter for each component with Lambda as the subscription feed destination.
  2. Enable Amazon CloudWatch Logs to log the EKS components. Create CloudWatch Logs Insights queries linked to Amazon EventBridge events that invoke Lambda.
  3. Enable Amazon S3 logging for the EKS components. Configure an Amazon CloudWatch subscription filter for each component with Lambda as the subscription feed destination.
  4. Enable Amazon S3 logging for the EKS components. Configure S3 PUT Object event notifications with AWS Lambda as the destination.

Answer(s): A



A company is implementing an Amazon Elastic Container Service (Amazon ECS) cluster to run its workload. The company architecture will run multiple ECS services on the cluster. The architecture includes an Application Load Balancer on the front end and uses multiple target groups to route traffic.

A DevOps engineer must collect application and access logs. The DevOps engineer then needs to send the logs to an Amazon S3 bucket for near-real-time analysis.

Which combination of steps must the DevOps engineer take to meet these requirements? (Choose three.)

  1. Download the Amazon CloudWatch Logs container instance from AWS. Configure this instance as a task. Update the application service definitions to include the logging task
  2. Install the Amazon CloudWatch Logs agent on the ECS instances. Change the logging driver in the ECS task definition to awslogs.
  3. Use Amazon EventBridge to schedule an AWS Lambda function that will run every 60 seconds and will run the Amazon CloudWatch Logs create-export-task command. Then point the output to the logging S3 bucket.
  4. Activate access logging on the ALB. Then point the ALB directly to the logging S3 bucket.
  5. Activate access logging on the target groups that the ECS services use. Then send the logs directly to the logging S3 bucket.
  6. Create an Amazon Kinesis Data Firehose delivery stream that has a destination of the logging S3 bucket. Then create an Amazon CloudWatch Logs subscription filter for Kinesis Data Firehose.

Answer(s): B,D,F



Page 8 of 72



Post your Comments and Discuss Amazon AWS Certified DevOps Engineer - Professional DOP-C02 exam with other Community members:

Giordano commented on November 05, 2024
Sono uguali all'esame?
Anonymous
upvote

Luntz commented on November 05, 2024
If you want to just prepare for your exam and then clear it then this is a good source. But not for deep learning.
GERMANY
upvote

Gutsy commented on November 05, 2024
Pretty clear and close to content of real exam.
UNITED STATES
upvote

Nansi commented on November 05, 2024
hope for the best
Anonymous
upvote

Amelio commented on November 04, 2024
Big win for me this week. I passed my exam and now getting ready for my second exam.
UNITED STATES
upvote

Jeeva commented on November 04, 2024
Still preparing to attend
Anonymous
upvote

Nikki Cruz commented on November 04, 2024
This was a life saver for me. I knew the material but these questions really helped me . Passed on my first attempt !
Anonymous
upvote

Emmanuel commented on November 04, 2024
Can a person pass AZ900 just by using this site only ?
SOUTH AFRICA
upvote

Tech Savvy commented on November 04, 2024
Great work team!, would be good if you list 10 questions at each page,
Anonymous
upvote

Jay commented on November 04, 2024
I tried to clear this exam for 3 times but failed. So I finally resorted to using these exam dumps which I really did not want to. But I was left with no choice.
New Zealand
upvote

Fernando commented on November 04, 2024
Very cool and very helpful. Bought 2 exams with 50% discount.
Brazil
upvote

Jai commented on November 03, 2024
I liked the questions
Anonymous
upvote

Sumitra commented on November 03, 2024
I am eager to write CAD exam
Anonymous
upvote

Veitnam commented on November 03, 2024
Thank you the website owner for making these exam questions available for free. It helped me clear my paper.
Anonymous
upvote

Anonymous commented on November 03, 2024
Can I pass the exams only with these dumps ?
Anonymous
upvote

Bin Mahamood commented on November 03, 2024
terraform { required_providers { aws = { version = ">= 2.7.0" source = "hashicorp/aws" } } }
Anonymous
upvote

Yizzy commented on November 02, 2024
@Patak when did you take the exam?
Anonymous
upvote

Tadele commented on November 02, 2024
Help full to next exam
Anonymous
upvote

Jaqulin commented on November 02, 2024
I appreciate the service and the questions being free. Finally something free in this world.
FRANCE
upvote

numan commented on November 02, 2024
really helping
GERMANY
upvote

Patak commented on November 01, 2024
I got about 70 to 74 questions are from here. So its worth it.
INDIA
upvote

xxx commented on November 01, 2024
I've used this material for exam preps. Many questions comes from this dump.
ESTONIA
upvote

Timens commented on November 01, 2024
Well done and nicely put together. All valid questions in PDF version.
Netherlands
upvote

Debendra commented on November 01, 2024
Passed the exam. The best Diwalli present!!! Thank you team for this braindumps.
INDIA
upvote

Tdk commented on November 01, 2024
Great staff
SOUTH AFRICA
upvote

Tdk commented on November 01, 2024
Good material
SOUTH AFRICA
upvote

Sophy commented on November 01, 2024
These communities along with the questions posted here assisted me a lot for passing my exam CISSP
UNITED STATES
upvote

Pear commented on November 01, 2024
I had a deadline to pass this exam. These questions dumps came to save me. Very easy and quite accurate.
UNITED STATES
upvote

Kiran P commented on November 01, 2024
very helpful ..
INDIA
upvote

Sree commented on October 31, 2024
This is a good practice test for preparation
UNITED STATES
upvote

ambr commented on October 31, 2024
just doing some preparation
Anonymous
upvote

Caml commented on October 31, 2024
Ok at thé moment
Anonymous
upvote

Caml commented on October 31, 2024
I will Say After trying more questions
Anonymous
upvote

George commented on October 31, 2024
Fun way to learn
ROMANIA
upvote