What should a DevOps Engineer do to meet all of these requirements while following Cl/CD best practices?

2026-03-30
By:
In: DOP-C01
With: 2 Comments

A company using AWS CodeCommit for source control wants to automate its continuous integration and continuous delivery pipeline on AWS in its development environment.The company has three requirements:1.There must be a legal and a security review of any code change to make sure sensitive information is not leaked through the source code.2.Every change must go through unit testing.3.Every change must go through a suite of functional testing to ensure functionality.In addition, the company has the following requirements for automation:1.Code changes should automatically trigger the CI/CD pipeline.2.Any failure in the pipeline should notify [email protected] must be an approval to stage the assets to Amazon S3 after tests have been performed.What should a DevOps Engineer do to meet all of these requirements while following Cl/CD best practices?Read More →

Which solution will meet these requirements?

2026-03-30
By:
In: DOP-C02
With: 2 Comments

A company is migrating its product development teams from an on-premises data center to a hybrid environment.The new environment will add four AWS Regions and will give the developers the ability to use the Region that is geographically closest to them.All the development teams use a shared set of Linux applications.The on-premises data center stores the applications on a NetApp ONTAP storage device.The storage volume is mounted read-only on the development on-premises VMs.The company updates the applications on the shared volume once a week.A DevOps engineer needs to replicate the data to all the new Regions.The DevOps engineer must ensure that the data is always up to date with deduplication.The data also must not be dependent on the availability of the on-premises storage device.Which solution will meet these requirements?Read More →

What should a SysOps administrator do to meet this requirement?

2026-03-30
By:
In: SOA-C02
With: 2 Comments

A company has several member accounts that are in an organization in AWS Organizations.The company recently discovered that administrators have been using account root user credentials.The company must prevent the administrators from using root user credentials to perform any actions on Amazon EC2 instances.What should a SysOps administrator do to meet this requirement?Read More →

Identify which option will allow you to achieve this goal?

2026-03-30
By:
In: SAP-C01
With: 2 Comments

You are looking to migrate your Development (Dev) and Test environments to AWS.You have decided to use separate AWS accounts to host each environment.You plan to link each accounts bill to a Master AWS account using Consolidated Billing.To make sure you keep within budget you would like to implement a way for administrators in the Master account to have access to stop, delete and/or terminate resources in both the Dev and Test accounts.Identify which option will allow you to achieve this goal.Read More →

Which actions will meet the program requirements that address security?

2026-03-30
By:
In: SCS-C01
With: 2 Comments

A security engineer is responsible for providing secure access to AWS resources for thousands of developers in a company’s corporate identity provider (IdP).The developers access a set of AWS services from their corporate premises using IAM credentials.Due to the volume of requests for provisioning new IAM users, it is taking a long time to grant access permissions.The security engineer receives reports that developers are sharing their IAM credentials with others to avoid provisioning delays.This causes concern about overall security for the security engineer.Which actions will meet the program requirements that address security?Read More →

Which additional action is the MOST secure way to grant permissions to the new users?

2026-03-30
By:
In: SAA-C03
With: 2 Comments

A company is expecting rapid growth in the near future.A solutions architect needs to configure existing users and grant permissions to new users on AWS.The solutions architect has decided to create IAM groups.The solutions architect will add the new users to IAM groups based on department.Which additional action is the MOST secure way to grant permissions to the new users?Read More →

Which solution will meet this requirement?

2026-03-30
By:
In: SAP-C02
With: 2 Comments

A company needs to improve the security of its web-based application on AWS.The application uses Amazon CloudFront with two custom origins.The first custom origin routes requests to an Amazon API Gateway HTTP API.The second custom origin routes traffic to an Application Load Balancer (ALB).The application integrates with an OpenID Connect (OIDC) identity provider (IdP) for user management.A security audit shows that a JSON Web Token (JWT) authorizer provides access to the API.The security audit also shows that the ALB accepts requests from unauthenticated users.A solutions architect must design a solution to ensure that all backend services respond to only authenticated users.Which solution will meet this requirement?Read More →

Which solution will meet these requirements?

2026-03-30
By:
In: DVA-C01
With: 2 Comments

Deploy the image to the production Amazon Elastic Container Service (Amazon ECS) cluster by using AWS CodeDeploy.Recently, the CodeDeploy deployments began failing in Stage 4.The deployments are unable to perform rollbacks.The developer must minimize the number of failures that reach production without slowing down the pipeline.Which solution will meet these requirements?Read More →