DevOps Engineer Professional (Page 42)

A DevOps engineer is creating an AWS CloudFormation template to deploy a web service.The web service will run on Amazon EC2 instances in a private subnet behind an Application Load Balancer (ALB).The DevOps engineer must ensure that the service can accept requests from clients that have IPv6 addresses.What should the DevOps engineer do with the CloudFormation template so that IPv6 clients can access the web service?Read More →

A company has migrated its container-based applications to Amazon EKS and want to establish automated email notifications.The notifications sent to each email address are for specific activities related to EKS components.The solution will include Amazon SNS topics and an AWS Lambda function to evaluate incoming log events and publish messages to the correct SNS topic.Which logging solution will support these requirements?Read More →

A company needs to scan code changes for security issues before deployment and must prevent noncompliant code from being deployed.The company uses an AWS CodePipeline pipeline that starts when code changes occur.The code changes occur many times each day.The company’s security team supports a third-party application for code scans and has provided command-line integration steps to submit code scans.The code scan step requires a user name and password.Which solution will meet these requirements in the MOST secure way?Read More →

A company uses AWS CloudFormation to manage an application that runs on Amazon EC2 Instances.The instances are in an Amazon EC2 Auto Scaling group.The company wants to treat its infrastructure as immutable.A DevOps engineer must implement a solution to replace two EC2 instances at a time whenever operating system configuration updates are needed or when new Amazon Machine.Images (AMIs) are needed.A minimum of four EC2 instances must be running whenever an update is in progress.Which solution will meet these requirements?Read More →

A development team is using AWS CodeCommit to version control application code and AWS CodePipeline to orchestrate software deployments.The team has decided to use a remote master branch as the trigger for the pipeline to integrate code changes.A developer has pushed code changes to the CodeCommit repository, but noticed that the pipeline had no reaction, even after 10 minutes.Which of the following actions should be taken to troubleshoot this issue?Read More →

A company is using AWS to deploy an application.The development team must automate the deployments.The team has created an AWS CodePipeline pipeline to deploy the application to Amazon EC2 instances using AWS CodeDeploy after it has been built using AWS CodeBuild.The team wants to add automated testing to the pipeline to confirm that the application is healthy before deploying the code to the EC2 instances.The team also requires a manual approval action before the application is deployed, even if the tests are successful.The testing and approval must be accomplished at the lowest costs, using the simplest management solution.Which solution will meet these requirements?Read More →

An application runs on Amazon EC2 instances behind an Application Load Balancer (ALB).A DevOps Engineer is using AWS CodeDeploy to release a new version.The deployment fails during the AllowTraffic lifecycle event, but a cause for the failure is not indicated in the deployment logs.What would cause this?Read More →

A DevOps engineer has implemented a Cl/CD pipeline to deploy an AWS CloudFormation template that provisions a web application.The web application consists of an Application Load Balancer (ALB), a target group, a launch template that uses an Amazon Linux 2 AMI, an Auto Scaling group of Amazon EC2 instances, a security group, and an Amazon RDS for MySOL database.The launch template includes user data that specifies a script to install and start the application.The initial deployment of the application was successful.The DevOps engineer made changes to update the version of the application with the user data.The CI/CD pipeline has deployed a new version of the template.However, the health checks on the ALB are now failing.The health checks have marked all targets as unhealthy.During investigation, the DevOps engineer notices that the CloudFormation stack has a status of UPDATE_COMPLETE.However, when the DevOps engineer connects to one of the EC2 instances and checks /var/log/messages, the DevOps engineer notices that the Apache web server failed to start successfully because of a configuration error.How can the DevOps engineer ensure that the CloudFormation deployment will fail if the user data fails to successfully finish running?Read More →

A company needs to implement a robust CI/CD pipeline to automate the deployment of an application in AWS.The pipeline must support continuous integration, continuous delivery, and automatic rollback upon deployment failure.The entire CI/CD pipeline must be capable of being re-provisioned in alternate AWS accounts or Regions within minutes.A DevOps engineer has already created an AWS CodeCommit repository to store the source code.Which combination of actions should be taken when building this pipeline to meet these requirements? (Choose three.)Read More →

A company is building a solution for storing files containing Personally Identifiable Information (PII) on AWS.Requirements state:✑ All data must be encrypted at rest and in transit.✑ All data must be replicated in at least two locations that are at least 500 miles (805 kilometers) apart.Which solution meets these requirements?Read More →