DevOps Engineer Professional (Page 31)

A company has deployed an application in a single AWS Region.The application backend uses Amazon DynamoDB tables and Amazon S3 buckets.The company wants to deploy the application in a secondary Region.The company must ensure that the data in the DynamoDB tables and the S3 buckets persists across both Regions.The data must also immediately propagate across Regions.Which solution will meet these requirements with the MOST operational efficiency?Read More →

A company uses an organization in AWS Organizations to manage its AWS accounts.The company’s DevOps team has developed an AWS Lambda function that calls the Organizations API to create new AWS accounts.The Lambda function runs in the organization’s management account.The DevOps team needs to move the Lambda function from the management account to a dedicated AWS account.The DevOps team must ensure that the Lambda function has the ability to create new AWS accounts only in Organizations before the team deploys the Lambda function to the new account.Which solution will meet these requirements?Read More →

A DevOps engineer has automated a web service deployment by using AWS CodePipeline with the following steps:1.An AWS CodeBuild project compiles the deployment artifact and runs unit tests.2.An AWS CodeDeploy deployment group deploys the web service to Amazon EC2 instances in the staging environment.3.A CodeDeploy deployment group deploys the web service to EC2 instances in the production environment.The quality assurance (QA) team requests permission to inspect the build artifact before the deployment to the production environment occurs.The QA team wants to run an internal penetration testing tool to conduct manual tests.The tool will be invoked by a REST API call.Which combination of actions should the DevOps engineer take to fulfill this request? (Choose two.)Read More →

A company sells products through an ecommerce web application.The company wants a dashboard that shows a pie chart of product transaction details.The company wants to integrate the dashboard with the company’s existing Amazon CloudWatch dashboards.Which solution will meet these requirements with the MOST operational efficiency?Read More →

A DevOps engineer wants to find a solution to migrate an application from on premises to AWS.The application is running on Linux and needs to run on specific versions of Apache Tomcat, HAProxy, and Varnish Cache to function properly.The application’s operating system-level parameters require tuning.The solution must include a way to automate the deployment of new application versions.The infrastructure should be scalable and faulty servers should be replaced automatically.Which solution should the DevOps engineer use?Read More →

A company is testing a web application that runs on Amazon EC2 instances behind an Application Load Balancer.The instances run in an Auto Scaling group across multiple Availability Zones.The company uses a blue/green deployment process with immutable instances when deploying new software.During testing, users are being automatically logged out of the application at random times.Testers also report that, when a new version of the application is deployed, all users are logged out.The development team needs a solution to ensure users remain logged in across scaling events and application deployments.What is the MOST operationally efficient way to ensure users remain logged in?Read More →

A company uses AWS CodeCommit for source code control.Developers apply their changes to various feature branches and create pull requests to move those changes to the main branch when the changes are ready for production.The developers should not be able to push changes directly to the main branch.The company applied the AWSCodeCommitPowerUser managed policy to the developers’ IAM role, and now these developers can push changes to the main branch directly on every repository in the AWS account.What should the company do to restrict the developers’ ability to push changes to the main branch directly?Read More →

A company runs applications in AWS accounts that are in an organization in AWS Organizations.The applications use Amazon EC2 instances and Amazon S3.The company wants to detect potentially compromised EC2 instances, suspicious network activity, and unusual API activity in its existing AWS accounts and in any AWS accounts that the company creates in the future.When the company detects one of these events, the company wants to use an existing Amazon Simple Notification Service (Amazon SNS) topic to send a notification to its operational support team for investigation and remediation.Which solution will meet these requirements in accordance with AWS best practices?Read More →

A company deploys an application to two AWS Regions.The application creates and stores objects in an Amazon S3 bucket that is in the same Region as the application.Both deployments of the application need to have access to all the objects and their metadata from both Regions.The company has configured two-way replication between the S3 buckets and has enabled S3 Replication metrics on each S3 bucket.A DevOps engineer needs to implement a solution that retries the replication process if an object fails to replicate.Which solution will meet these requirements?Read More →

A company’s application uses a fleet of Amazon EC2 On-Demand Instances to analyze and process data.The EC2 instances are in an Auto Scaling group.The Auto Scaling group is a target group for an Application Load Balancer (ALB).The application analyzes critical data that cannot tolerate interruption.The application also analyzes noncritical data that can withstand interruption.The critical data analysis requires quick scalability in response to real-time application demand.The noncritical data analysis involves memory consumption.A DevOps engineer must implement a solution that reduces scale-out latency for the critical data.The solution also must process the noncritical data.Which combination of steps will meet these requirements? (Choose two.)Read More →