DOP-C02 Free Practice Test

A company has a guideline that every Amazon EC2 instance must be launched from an AMI that the company's security team produces Every month the security team sends an email message with the latest approved AMIs to all the development teams.
The development teams use AWS CloudFormation to deploy their applications. When developers launch a new service they have to search their email for the latest AMIs that the security department sent. A DevOps engineer wants to automate the process that the security team uses to provide the AMI IDs to the development teams.
What is the MOST scalable solution that meets these requirements?

1. A. Direct the security team to use CloudFormation to create new versions of the AMIs and to list! the AMI ARNs in an encrypted Amazon S3 object as part of the stack's Outputs Section Instruct the developers to use a cross-stack reference to load the encrypted S3 object and obtain the most recent AMI ARNs.
2. B. Direct the security team to use a CloudFormation stack to create an AWS CodePipeline pipeline that builds new AMIs and places the latest AMI ARNs in an encrypted Amazon S3 object as part of the pipeline output Instruct the developers to use a cross-stack reference within their own CloudFormation template to obtain the S3 object location and the most recent AMI ARNs.
3. C. Direct the security team to use Amazon EC2 Image Builder to create new AMIs and to place the AMI ARNs as parameters in AWS Systems Manager Parameter Store Instruct the developers to specify a parameter of type SSM in their CloudFormation stack to obtain the most recent AMI ARNs from Parameter Store.
4. D. Direct the security team to use Amazon EC2 Image Builder to create new AMIs and to create an Amazon Simple Notification Service (Amazon SNS) topic so that every development team can receive notification
5. E. When the development teams receive a notification instruct them to write an AWS Lambda function that will update their CloudFormation stack with the most recent AMI ARNs.

Correct Answer: C
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/dynamic-references.html

A company uses AWS CodePipeline pipelines to automate releases of its application A typical pipeline consists of three stages build, test, and deployment. The company has been using a separate AWS CodeBuild project to run scripts for each stage. However, the company now wants to use AWS CodeDeploy to handle the deployment stage of the pipelines.
The company has packaged the application as an RPM package and must deploy the application to a fleet of Amazon EC2 instances. The EC2 instances are in an EC2 Auto Scaling group and are launched from a common AMI.
Which combination of steps should a DevOps engineer perform to meet these requirements? (Choose two.)

1. A. Create a new version of the common AMI with the CodeDeploy agent installe
2. B. Update the IAM role of the EC2 instances to allow access to CodeDeploy.
3. C. Create a new version of the common AMI with the CodeDeploy agent installe
4. D. Create an AppSpec file that contains application deployment scripts and grants access to CodeDeploy.
5. E. Create an application in CodeDeplo
6. F. Configure an in-place deployment typ
7. G. Specify the Auto Scaling group as the deployment targe
8. H. Add a step to the CodePipeline pipeline to use EC2 Image Builder to create a new AM
9. I. Configure CodeDeploy to deploy the newly created AMI.
10. J. Create an application in CodeDeplo
11. K. Configure an in-place deployment typ
12. L. Specify the Auto Scaling group as the deployment targe
13. M. Update the CodePipeline pipeline to use the CodeDeploy action to deploy the application.
14. N. Create an application in CodeDeplo
15. O. Configure an in-place deployment typ
16. P. Specify the EC2 instances that are launched from the common AMI as the deployment targe
17. Q. Update the CodePipeline pipeline to use the CodeDeploy action to deploy the application.

Correct Answer: AD
https://docs.aws.amazon.com/codedeploy/latest/userguide/integrations-aws-auto-scaling.html

A video-sharing company stores its videos in Amazon S3. The company has observed a sudden increase in video access requests, but the company does not know which videos are most popular. The company needs to identify the general access pattern for the video files. This pattern includes the number of users who access a certain file on a given day, as well as the numb A DevOps engineer manages a large commercial website that runs on Amazon EC2 The website uses Amazon Kinesis Data Streams to collect and process web togs The DevOps engineer manages the Kinesis consumer application, which also runs on Amazon EC2 Sudden increases of data cause the Kinesis consumer application to (all behind and the Kinesis data streams drop records before the records can be processed The DevOps engineer must implement a solution to improve stream handling
Which solution meets these requirements with the MOST operational efficiency'' er of pull requests for certain files.
How can the company meet these requirements with the LEAST amount of effort?

1. A. Activate S3 server access loggin
2. B. Import the access logs into an Amazon Aurora databas
3. C. Use an Aurora SQL query to analyze the access patterns.
4. D. Activate S3 server access loggin
5. E. Use Amazon Athena to create an external table with the log file
6. F. Use Athena to create a SQL query to analyze the access patterns.
7. G. Invoke an AWS Lambda function for every S3 object access even
8. H. Configure the Lambda function to write the file access information, such as use
9. I. S3 bucket, and file key, to an Amazon Aurora databas
10. J. Use an Aurora SQL query to analyze the access patterns.
11. K. Record an Amazon CloudWatch Logs log message for every S3 object access even
12. L. Configure a CloudWatch Logs log stream to write the file access information, such as user, S3 bucket, and file key, to an Amazon Kinesis Data Analytics for SQL applicatio
13. M. Perform a sliding window analysis.

Correct Answer: B
Activating S3 server access logging and using Amazon Athena to create an external table with the log files is the easiest and most cost-effective way to analyze access patterns. This option requires minimal setup and allows for quick analysis of the access
patterns with SQL queries. Additionally, Amazon Athena scales automatically to match the query load, so there is no need for additional infrastructure provisioning or management.

A DevOps engineer is architecting a continuous development strategy for a company's software as a service (SaaS) web application running on AWS. For application and security reasons users subscribing to this application are distributed across multiple. Application Load Balancers (ALBs) each of which has a dedicated Auto Scaling group and fleet of Amazon EC2 instances The application does not require a build stage and when it is committed to AWS CodeCommit, the application must trigger a simultaneous deployment to all ALBs Auto Scaling groups and EC2 fleets.
Which architecture will meet these requirements with the LEAST amount of configuration?

1. A. Create a single AWS CodePipeline pipeline that deploys the application in parallel using unique AWS CodeDeploy applications and deployment groups created for each ALB-Auto Scaling group pair.
2. B. Create a single AWS CodePipeline pipeline that deploys the application using a single AWS CodeDeploy application and single deployment group.
3. C. Create a single AWS CodePipeline pipeline that deploys the application in parallel using a single AWS CodeDeploy application and unique deployment group for each ALB-Auto Scaling group pair.
4. D. Create an AWS CodePipeline pipeline for each ALB-Auto Scaling group pair that deploys the application using an AWS CodeDeploy application and deployment group created for the same ALB-Auto Scaling group pair.

Correct Answer: C
https://docs.aws.amazon.com/codedeploy/latest/userguide/deployment- groups.html

A company is implementing an Amazon Elastic Container Service (Amazon ECS) cluster to run its workload. The company architecture will run multiple ECS services on the cluster. The architecture includes an Application Load Balancer on the front end and uses multiple target groups to route traffic.
A DevOps engineer must collect application and access logs. The DevOps engineer then needs to send the logs to an Amazon S3 bucket for near-real-time analysis.
Which combination of steps must the DevOps engineer take to meet these requirements? (Choose three.)

1. A. Download the Amazon CloudWatch Logs container instance from AW
2. B. Configure this instance as a tas
3. C. Update the application service definitions to include the logging task.
4. D. Install the Amazon CloudWatch Logs agent on the ECS instance
5. E. Change the logging driver in the ECS task definition to awslogs.
6. F. Use Amazon EventBridge to schedule an AWS Lambda function that will run every 60 seconds and will run the Amazon CloudWatch Logs create-export-task comman
7. G. Then point the output to the logging S3 bucket.
8. H. Activate access logging on the AL
9. I. Then point the ALB directly to the logging S3 bucket.
10. J. Activate access logging on the target groups that the ECS services us
11. K. Then send the logs directly to the logging S3 bucket.
12. L. Create an Amazon Kinesis Data Firehose delivery stream that has a destination of the logging S3 bucke
13. M. Then create an Amazon CloudWatch Logs subscription filter for Kinesis Data Firehose.

Correct Answer: BDF
https://docs.aws.amazon.com/AmazonECS/latest/developerguide/ecs-logging-monitoring.html