Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. Amazon
  3. DOP-C02

Amazon AWS Certified DevOps Engineer - Professional DOP-C02 DOP-C02 Exam Questions in PDF

Free Amazon DOP-C02 Dumps Questions (page: 9)

DOP-C02 PDF — 447 Questions

A company's application is currently deployed to a single AWS Region. Recently, the company opened a new office on a different continent. The users in the new office are experiencing high latency. The company's application runs on Amazon EC2 instances behind an Application Load Balancer (ALB) and uses Amazon DynamoDB as the database layer. The instances run in an EC2 Auto Scaling group across multiple Availability Zones. A DevOps engineer is tasked with minimizing application response times and improving availability for users in both Regions.

Which combination of actions should be taken to address the latency issues? (Choose three.)

  1. Create a new DynamoDB table in the new Region with cross-Region replication enabled.
  2. Create new ALB and Auto Scaling group global resources and configure the new ALB to direct traffic to the new Auto Scaling group.
  3. Create new ALB and Auto Scaling group resources in the new Region and configure the new ALB to direct traffic to the new Auto Scaling group.
  4. Create Amazon Route 53 records, health checks, and latency-based routing policies to route to the ALB.
  5. Create Amazon Route 53 aliases, health checks, and failover routing policies to route to the ALB.
  6. Convert the DynamoDB table to a global table.

Answer(s): C,D,F



A DevOps engineer needs to apply a core set of security controls to an existing set of AWS accounts. The accounts are in an organization in AWS Organizations. Individual teams will administer individual accounts by using the AdministratorAccess AWS managed policy. For all accounts. AWS CloudTrail and AWS Config must be turned on in all available AWS Regions. Individual account administrators must not be able to edit or delete any of the baseline resources. However, individual account administrators must be able to edit or delete their

own CloudTrail trails and AWS Config rules.

Which solution will meet these requirements in the MOST operationally efficient way?

  1. Create an AWS CloudFormation template that defines the standard account resources. Deploy the template to all accounts from the organization's management account by using CloudFormation StackSets. Set the stack policy to deny Update:Delete actions.
  2. Enable AWS Control Tower. Enroll the existing accounts in AWS Control Tower. Grant the individual account administrators access to CloudTrail and AWS Config.
  3. Designate an AWS Config management account. Create AWS Config recorders in all accounts by using AWS CloudFormation StackSets. Deploy AWS Config rules to the organization by using the AWS Config management account. Create a CloudTrail organization trail in the organization's management account.
    Deny modification or deletion of the AWS Config recorders by using an SCP.
  4. Create an AWS CloudFormation template that defines the standard account resources. Deploy the template to all accounts from the organization's management account by using CloudFormation StackSets Create an SCP that prevents updates or deletions to CloudTrail resources or AWS Config resources unless the principal is an administrator of the organization's management account.

Answer(s): D



A company has its AWS accounts in an organization in AWS Organizations. AWS Config is manually configured in each AWS account. The company needs to implement a solution to centrally configure AWS Config for all accounts in the organization The solution also must record resource changes to a central account.

Which combination of actions should a DevOps engineer perform to meet these requirements? (Choose two.)

  1. Configure a delegated administrator account for AWS Config. Enable trusted access for AWS Config in the organization.
  2. Configure a delegated administrator account for AWS Config. Create a service-linked role for AWS Config in the organization's management account.
  3. Create an AWS CloudFormation template to create an AWS Config aggregator. Configure a CloudFormation stack set to deploy the template to all accounts in the organization.
  4. Create an AWS Config organization aggregator in the organization's management account. Configure data collection from all AWS accounts in the organization and from all AWS Regions.
  5. Create an AWS Config organization aggregator in the delegated administrator account. Configure data collection from all AWS accounts in the organization and from all AWS Regions.

Answer(s): A,E



A company wants to migrate its content sharing web application hosted on Amazon EC2 to a serverless architecture. The company currently deploys changes to its application by creating a new Auto Scaling group of EC2 instances and a new Elastic Load Balancer, and then shifting the traffic away using an Amazon Route 53 weighted routing policy.

For its new serverless application, the company is planning to use Amazon API Gateway and AWS Lambda. The company will need to update its deployment processes to work with the new application. It will also need to retain the ability to test new features on a small number of users before rolling the features out to the entire user base.

Which deployment strategy will meet these requirements?

  1. Use AWS CDK to deploy API Gateway and Lambda functions. When code needs to be changed, update the AWS CloudFormation stack and deploy the new version of the APIs and Lambda functions. Use a Route 53 failover routing policy for the canary release strategy.
  2. Use AWS CloudFormation to deploy API Gateway and Lambda functions using Lambda function versions.
    When code needs to be changed, update the CloudFormation stack with the new Lambda code and update the API versions using a canary release strategy. Promote the new version when testing is complete.
  3. Use AWS Elastic Beanstalk to deploy API Gateway and Lambda functions. When code needs to be changed, deploy a new version of the API and Lambda functions. Shift traffic gradually using an Elastic Beanstalk blue/green deployment.
  4. Use AWS OpsWorks to deploy API Gateway in the service layer and Lambda functions in a custom layer.
    When code needs to be changed, use OpsWorks to perform a blue/green deployment and shift traffic gradually.

Answer(s): B



A development team uses AWS CodeCommit, AWS CodePipeline, and AWS CodeBuild to develop and deploy an application. Changes to the code are submitted by pull requests. The development team reviews and merges the pull requests, and then the pipeline builds and tests the application.

Over time, the number of pull requests has increased. The pipeline is frequently blocked because of failing tests. To prevent this blockage, the development team wants to run the unit and integration tests on each pull request before it is merged.

Which solution will meet these requirements?

  1. Create a CodeBuild project to run the unit and integration tests. Create a CodeCommit approval rule template. Configure the template to require the successful invocation of the CodeBuild project. Attach the approval rule to the project's CodeCommit repository.
  2. Create an Amazon EventBridge rule to match pullRequestCreated events from CodeCommit Create a CodeBuild project to run the unit and integration tests. Configure the CodeBuild project as a target of the EventBridge rule that includes a custom event payload with the CodeCommit repository and branch information from the event.
  3. Create an Amazon EventBridge rule to match pullRequestCreated events from CodeCommit. Modify the existing CodePipeline pipeline to not run the deploy steps if the build is started from a pull request.
    Configure the EventBridge rule to run the pipeline with a custom payload that contains the CodeCommit repository and branch information from the event.
  4. Create a CodeBuild project to run the unit and integration tests. Create a CodeCommit notification rule that matches when a pull request is created or updated. Configure the notification rule to invoke the CodeBuild project.

Answer(s): B



A company has an application that runs on a fleet of Amazon EC2 instances. The application requires frequent restarts. The application logs contain error messages when a restart is required. The application logs are published to a log group in Amazon CloudWatch Logs.

An Amazon CloudWatch alarm notifies an application engineer through an Amazon Simple Notification Service (Amazon SNS) topic when the logs contain a large number of restart-related error messages. The application

engineer manually restarts the application on the instances after the application engineer receives a notification from the SNS topic.

A DevOps engineer needs to implement a solution to automate the application restart on the instances without restarting the instances.

Which solution will meet these requirements in the MOST operationally efficient manner?

  1. Configure an AWS Systems Manager Automation runbook that runs a script to restart the application on the instances. Configure the SNS topic to invoke the runbook.
  2. Create an AWS Lambda function that restarts the application on the instances. Configure the Lambda function as an event destination of the SNS topic.
  3. Configure an AWS Systems Manager Automation runbook that runs a script to restart the application on the instances. Create an AWS Lambda function to invoke the runbook. Configure the Lambda function as an event destination of the SNS topic.
  4. Configure an AWS Systems Manager Automation runbook that runs a script to restart the application on the instances. Configure an Amazon EventBridge rule that reacts when the CloudWatch alarm enters ALARM state. Specify the runbook as a target of the rule.

Answer(s): D



A DevOps engineer at a company is supporting an AWS environment in which all users use AWS IAM Identity Center (AWS Single Sign-On). The company wants to immediately disable credentials of any new IAM user and wants the security team to receive a notification.

Which combination of steps should the DevOps engineer take to meet these requirements? (Choose three.)

  1. Create an Amazon EventBridge rule that reacts to an IAM CreateUser API call in AWS CloudTrail.
  2. Create an Amazon EventBridge rule that reacts to an IAM GetLoginProfile API call in AWS CloudTrail.
  3. Create an AWS Lambda function that is a target of the EventBridge rule. Configure the Lambda function to disable any access keys and delete the login profiles that are associated with the IAM user.
  4. Create an AWS Lambda function that is a target of the EventBridge rule. Configure the Lambda function to delete the login profiles that are associated with the IAM user.
  5. Create an Amazon Simple Notification Service (Amazon SNS) topic that is a target of the EventBridge rule.
    Subscribe the security team's group email address to the topic.
  6. Create an Amazon Simple Queue Service (Amazon SQS) queue that is a target of the Lambda function.
    Subscribe the security team's group email address to the queue.

Answer(s): A,C,E



A company wants to set up a continuous delivery pipeline. The company stores application code in a private GitHub repository. The company needs to deploy the application components to Amazon Elastic Container Service (Amazon ECS), Amazon EC2, and AWS Lambda. The pipeline must support manual approval actions.

Which solution will meet these requirements?

  1. Use AWS CodePipeline with Amazon ECS, Amazon EC2, and Lambda as deploy providers.
  2. Use AWS CodePipeline with AWS CodeDeploy as the deploy provider.
  3. Use AWS CodePipeline with AWS Elastic Beanstalk as the deploy provider.
  4. Use AWS CodeDeploy with GitHub integration to deploy the application.

Answer(s): B



Viewing page 9 of 57

Share your comments for Amazon DOP-C02 exam with other users:

K
keylly
11/28/2023 10:10:00 AM

im study azure

Anonymous
D
dorcas
9/22/2023 8:08:00 AM

i need this now

Anonymous
T
treyf
11/9/2023 5:13:00 AM

i took the aws saa-c03 test and scored 935/1000. it has all the exam dumps and important info.

UNITED STATES
A
anonymous
1/11/2024 4:50:00 AM

good questions

Anonymous
A
Anjum
9/23/2023 6:22:00 PM

well explained

Anonymous
T
Thakor
6/7/2023 11:52:00 PM

i got the full version and it helped me pass the exam. pdf version is very good.

INDIA
S
sartaj
7/18/2023 11:36:00 AM

provide the download link, please

INDIA
L
loso
7/25/2023 5:18:00 AM

please upload thank.

THAILAND
P
Paul
6/23/2023 7:12:00 AM

please can you share 1z0-1055-22 dump pls

UNITED STATES
E
exampei
10/7/2023 8:14:00 AM

i will wait impatiently. thank youu

Anonymous
P
Prince
10/31/2023 9:09:00 PM

is it possible to clear the exam if we focus on only these 156 questions instead of 623 questions? kindly help!

Anonymous
A
Ali Azam
12/7/2023 1:51:00 AM

really helped with preparation of my scrum exam

Anonymous
J
Jerman
9/29/2023 8:46:00 AM

very informative and through explanations

Anonymous
J
Jimmy
11/4/2023 12:11:00 PM

prep for exam

INDONESIA
A
Abhi
9/19/2023 1:22:00 PM

thanks for helping us

Anonymous
M
mrtom33
11/20/2023 4:51:00 AM

i prepared for the eccouncil 350-401 exam. i scored 92% on the test.

Anonymous
J
JUAN
6/28/2023 2:12:00 AM

aba questions to practice

UNITED STATES
L
LK
1/2/2024 11:56:00 AM

great content

Anonymous
S
Srijeeta
10/8/2023 6:24:00 AM

how do i get the remaining questions?

INDIA
J
Jovanne
7/26/2022 11:42:00 PM

well formatted pdf and the test engine software is free. well worth the money i sept.

ITALY
C
CHINIMILLI SATISH
8/29/2023 6:22:00 AM

looking for 1z0-116

Anonymous
P
Pedro Afonso
1/15/2024 8:01:00 AM

in question 22, shouldnt be in the data (option a) layer?

Anonymous
P
Pushkar
11/7/2022 12:12:00 AM

the questions are incredibly close to real exam. you people are amazing.

INDIA
A
Ankit S
11/13/2023 3:58:00 AM

q15. answer is b. simple

UNITED STATES
S
S. R
12/8/2023 9:41:00 AM

great practice

FRANCE
M
Mungara
3/14/2023 12:10:00 AM

thanks to this exam dumps, i felt confident and passed my exam with ease.

UNITED STATES
A
Anonymous
7/25/2023 2:55:00 AM

need 1z0-1105-22 exam

Anonymous
N
Nigora
5/31/2022 10:05:00 PM

this is a beautiful tool. passed after a week of studying.

UNITED STATES
A
Av dey
8/16/2023 2:35:00 PM

can you please upload the dumps for 1z0-1096-23 for oracle

INDIA
M
Mayur Shermale
11/23/2023 12:22:00 AM

its intresting, i would like to learn more abouth this

JAPAN
J
JM
12/19/2023 2:23:00 PM

q252: dns poisoning is the correct answer, not locator redirection. beaconing is detected from a host. this indicates that the system has been infected with malware, which could be the source of local dns poisoning. location redirection works by either embedding the redirection in the original websites code or having a user click on a url that has an embedded redirect. since users at a different office are not getting redirected, it isnt an embedded redirection on the original website and since the user is manually typing in the url and not clicking a link, it isnt a modified link.

UNITED STATES
F
Freddie
12/12/2023 12:37:00 PM

helpful dump questions

SOUTH AFRICA
D
Da Costa
8/25/2023 7:30:00 AM

question 423 eigrp uses metric

Anonymous
B
Bsmaind
8/20/2023 9:22:00 AM

hello nice dumps

Anonymous
AI Tutor 👋 I’m here to help!