Free AWS-Certified-DevOps-Engineer-Professional Exam Braindumps

A company is developing a web application's infrastructure using AWS CloudFormation. The database engineering team maintains the database resources in a CloudFormation template, and the software development team maintains the web application resources in a separate CloudFormation template As the scope of the application grows, the software development team needs to use resources maintained by the database engineering team However, both teams have their own review and lifecycle management processes that they want to keep Both teams also require resource-level change-set reviews The software development team would like to deploy changes to this template using their CI/CD pipeline.
Which solution will meet these requirements?

1. A. Create a stack export from the database CloudFormation template and import those references into the web application CloudFormation template
2. B. Create a CloudFormation nested stack to make cross-stack resource references and parameters available in both stacks.
3. C. Create a CloudFormation stack set to make cross-stack resource references and parameters available in both stacks
4. D. Create input parameters in the web application CloudFormation template and pass resource names and IDs from the database stack.

Correct Answer: A

A DevOps team needs to query information in application logs that are generated by an application running multiple Amazon EC2 instances deployed with AWS Elastic Beanstalk.
Instance log streaming to Amazon CloudWatch Logs was enabled on Elastic Beanstalk. Which approach would be the MOST cost-efficient?

1. A. Use a CloudWatch Logs subscription to trigger an AWS Lambda function to send the log data to an Amazon Kinesis Data Firehouse stream that has an Amazon S3 bucket destinatio
2. B. Use Amazon Athena to query the log data from the bucket.
3. C. Use a CloudWatch Logs subscription to trigger an AWS Lambda function to send the log data to an Amazon Kinesis Data Firehouse stream that has an Amazon S3 bucket destinatio
4. D. Use a new Amazon Redshift cluster and Amazon Redshift Spectrum to query the log data from the bucket.
5. E. Use a CloudWatch Logs subscription to send the log data to an Amazon Kinesis Data Firehouse stream that has an Amazon S3 bucket destinatio
6. F. Use Amazon Athena to query the log data from the bucket.
7. G. Use a CloudWatch Logs subscription to send the log data to an Amazon Kinesis Data Firehouse stream that has an Amazon S3 bucket destinatio
8. H. Use a new Amazon Redshift cluster and Amazon Redshift Spectrum to query the log data from the bucket.

Correct Answer: C
https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/Subscriptions.html

A company has developed an AWS Lambda function that handles orders received through an API. The company is using AWS CodeDeploy to deploy the Lambda function as the final stage of a CI/CD pipeline. A DevOps Engineer has notices there are intermittent failures of the ordering API for a few seconds after deployment. After some investigation, the DevOps Engineer believes the failures are due to database changes the CloudFormation stack for the application
lambda function begins executing. How should the DevOps Engineer overcome this?

1. A. Add a BeforeAllowTraffic hook to the AppSpec file that tests and waits for any necessary database changes before traffic can flow to the new version of the Lambda function
2. B. Add an AfterAllowTraffic hook to the AppSpec file that forces traffic to wait for any pending database changes before allowing the new version of the Lambda function to respond
3. C. Add a BeforeInstall hook to the AppSpec file that tests and waits for any necessary database changes before deploying the new version of the Lambda function
4. D. Add a ValidateService hook to the AppSpec file that inspects incoming traffic and rejects the payload if dependent services such as the database are not yet ready

Correct Answer: B

A DevOps Engineer at a startup cloud-based gaming company has the task formalizing deployment strategies. The strategies must meet the following requirements:
Use standard Git commands, such as git clone and git push for the code repository. Management tools should maximize the use of platform solutions where possible. Deployment packages must be immutable and in the form of Docker images.
How can the Engineer meet these requirements?

1. A. Use AWS CodePipeline to trigger a build process when software is pushed to a self-hosted GitHub repositor
2. B. CodePipeline will use a Jenkins build server to build new Docker image
3. C. CodePipeline will deploy into a second target group in Amazon ECS behind an Application Load Balance
4. D. Cutover will be managed by swapping the listener rules on the Application Load Balancer.
5. E. Use AWS CodePipeline to trigger a build process when software is pushed to a private GitHub repositor
6. F. CodePipeline will use AWS CodeBuild to build new Docker image
7. G. CodePipeline will deploy into a second target group in Amazon ECS behind an Application Load Balance
8. H. Cutover will be managed by swapping the listener rules on the Application Load Balancer.
9. I. Use a Jenkins pipeline to trigger a build process when software is pushed to a private GitHub repository.AWS CodePipeline will use AWS CodeBuild new Docker image
10. J. CodePipeline will deploy into a second target group in Amazon ECS behind an Application Load Balance
11. K. Cutover will be managed by swapping the listener rules on the Application Load Balancer.
12. L. Use AWS CodePipeline to trigger a build process when software is pushed to an AWS CodeCommit repository CodePipeline will use an AWS CodeBuild build server to build new Docker image
13. M. CodePipeline will deploy into a second target group in a Kubernetes Cluster hosted on Amazon EC2 behind an Application Load Balance
14. N. Cutover will be managed by swapping the listener rules on the Application Load Balancer.

Correct Answer: B

A company uses Amazon S3 to store proprietary information. The development team creates buckets for new projects on a daily basis. The security team wants to ensure that all existing and future buckets have encryption, logging, and versioning enabled. Additionally, no buckets should ever be publicly read or write accessible.
What should a DevOps engineer do to meet these requirements?

1. A. Enable AWS CloudTrail and configure automatic remediation using AWS Lambda.
2. B. Enable AWS Config rules and configure automatic remediation using AWS Systems Manager documents.
3. C. Enable AWS Trusted Advisor and configure automatic remediation using Amazon CloudWatch Events.
4. D. Enable AWS Systems Manager and configure automatic remediation using Systems Manager documents.

Correct Answer: B