AWS Devops Engineer Professional Certified Practice Exam Set 11

Your company has a number of Cloud formation stacks defined in AWS. As part of the routine housekeeping activity, a number of stacks have been targeted for deletion. But a few of the stacks are not getting deleted and are failing when you are trying to delete them. Which of the following could be valid reasons for this? Choose 2 answers from the options given below


Options are :

  • The stack has a EC2 Security Group which has EC2 Instances attached to it. (Correct)
  • The stack consists of an EC2 resource which was created with a custom AMI.
  • The stack has an S3 bucket defined which has objects present in it.
  • The stacks were created with the wrong template version. Since the standard template version Is now higher it is preventing the deletion of the stacks. You need to contact AWS support.

Answer : The stack has a EC2 Security Group which has EC2 Instances attached to it.

You have a web application composed of an Auto Scaling group of web servers behind a load balancer, and create a new AMI for each application version for deployment. You have a new version to release, and you want to use the Blue-Green deployment technique to migrate users over in a controlled manner while the size of the fleet remains constant over a period of 6 hours, to ensure that the new version is performing well. What option should you choose to enable this technique while being able to roll back easily? Choose 2 answers from the options given below. Each answer presents part of the solution


Options are :

  • Configure Elastic Load Balancing to vary the proportion of requests sent to instances running the two application versions.
  • Use Amazon RouteS3 weighted Round Robin to vary the proportion of requests sent to the load balancers. (Correct)
  • Create an Auto Scaling launch configuration with the new AMI to use the new launch configuration and to register instances with the existing load balancer
  • Create an Auto Scaling launch configuration with the new AMI to use the new launch configuration and to > register instances with the new load balancer (Correct)

Answer : Use Amazon RouteS3 weighted Round Robin to vary the proportion of requests sent to the load balancers. Create an Auto Scaling launch configuration with the new AMI to use the new launch configuration and to > register instances with the new load balancer

A company is running three production web server reserved EC2 instances with EBSbacked root volumes. These instances have a consistent Cpu load of 80%. Traffic is being distributed to these instances by an Elastic Load Balancer. They also have production and development Multi-AZ RDS My SQL databases. What recommendation would you make to reduce cost in this environment without affecting availability of mission-critical systems? Choose the correct answer from the options given below?


Options are :

  • Consider using spot instances instead of reserved EC2 instances
  • Consider using on-demand instances instead of reserved EC2 instances
  • Consider removing the Elastic Load Balancer
  • Consider not using a Multi-AZ RDS deployment for the development database (Correct)

Answer : Consider not using a Multi-AZ RDS deployment for the development database

In AWS Code Deploy which of the following deployment types are available. Choose 2 answers from the options given below Please select:


Options are :

  • In-place deployments (Correct)
  • Rolling deployments
  • Blue/Green deployments (Correct)
  • Immutable deployments

Answer : In-place deployments Blue/Green deployments

You set up a web application development environment by using a third party configuration management tool to create a Docker container that Is run on local developer machines. What should you do to ensure that the web application and supporting network storage and security infrastructure does not impact your application after you deploy into AWS for staging and production environments?


Options are :

  • Define an AWS Cloud Formation template to place your infrastructure Into version control and use the same template to deploy the Docker container into Elastic Beanstalk for staging and production. (Correct)
  • Define an AWS Cloud Formation template for each stage of the application deployment lifecycle - development, staging and production —and have tagging in each template to define the environment.
  • Write a script using the AWS SDK or CLI to deploy the application code from version control to the local development environments staging and production using AWS OpsWorks.
  • Because the application is inside a Docker container, there are no infrastructure differences to be taken into account when moving from the local development environments to AWS for staging and production.

Answer : Define an AWS Cloud Formation template to place your infrastructure Into version control and use the same template to deploy the Docker container into Elastic Beanstalk for staging and production.

You are in charge of designing a Cloud formation template which deploys a LAMP stack. After deploying a stack , you see that the status of the stack is showing as CREATE_COMPLETE, but the apache server is still not up and running and is experiencing issues while starting up. You want to ensure that the stack creation only shows the status of CREATE_COMPLETE after all resources defined in the stack are up and running. How can you achieve this? Choose 2 answers from the options given below.


Options are :

  • Use lifecycle hooks to mark the completion of the creation and configuration of the underlying resource.
  • Use the CFN helper scripts to signal once the resource configuration is complete. (Correct)
  • Define a stack policy which defines that all underlying resources should be up and running before showin status of CREATE_COMPLETE
  • Use the Creation Policy to ensure it is associated with the EC2 instance resource. ., (Correct)

Answer : Use the CFN helper scripts to signal once the resource configuration is complete. Use the Creation Policy to ensure it is associated with the EC2 instance resource. .,

You are a Dev ops Engineer and are designing an Ops work stack in AWS. The company has some custom recipes that are part of their on-premise Chef configuration. These same recipes need to be run whenever an instance Is launched in Ops works. Which of the following steps need to be carried out to to ensure this requirement gets fulfilled. Choose 2 answers from the options given below


Options are :

  • Ensure the recipe is placed as part of the Setup Lifecycle event as part of the Stack setting.
  • Ensure the recipe is placed as part of the Setup Lifecycle event as part of the Layer setting. (Correct)
  • Ensure the custom cookbooks option is set in Ops work layer.
  • Ensure the custom cookbooks option is set in Ops work stack. (Correct)

Answer : Ensure the recipe is placed as part of the Setup Lifecycle event as part of the Layer setting. Ensure the custom cookbooks option is set in Ops work stack.

You have a set of applications hosted in AWS. There is a requirement to store the logs from this application onto durable storage. After a period of 3 months, the logs can be placed In archival storage. Which of the following steps would you carry out to achieve this requirement. Choose 2 answers from the options given below


Options are :

  • Use Lifecycle policies to move the data onto Amazon Glacier after a period of 3 months (Correct)
  • Use Lifecycle policies to move the data onto Amazon Simple Storage service after a period of 3 months
  • Store the log files as they emitted from the application on to Amazon Simple Storage service j..? (Correct)
  • Store the log files as they emitted from the application on to Amazon Glacier

Answer : Use Lifecycle policies to move the data onto Amazon Glacier after a period of 3 months Store the log files as they emitted from the application on to Amazon Simple Storage service j..?

Which of the following tools from AWS allows the automatic collection of software inventory from EC2 instances and helps apply OS patches. Please select:


Options are :

  • AWS Code Deploy
  • EC2 AM l?s
  • EC2 Systems Manager „ (Correct)
  • AWS code pipeline

Answer : EC2 Systems Manager „

As part of your deployment process, you are configuring your continuous integration (Cl) system to build AM Is. You want to build them in an automated manner that is also costefficient. Which method should you use?


Options are :

  • Attach an Amazon EBS volume to your Cl instance, build the root file system of your image on the volume, and use the Create image API call to create an AMI out of this volume.
  • Have the CI system launch a new instance, bootstrap the code and apps onto the instance and create an AMI out of it.
  • Upload all contents of the image to Amazon 53 launch the base instance, download all of the contents from „ Amazon 53 and create the AMI.
  • Have the CI system launch a new spot instance bootstrap the code and apps onto the instance and create anAMloutofit. (Correct)

Answer : Have the CI system launch a new spot instance bootstrap the code and apps onto the instance and create anAMloutofit.

Which of the following services can be used to detect the application health in a Blue Green deployment in AWS?


Options are :

  • AWS Cloud Trail
  • AWS Code Pipeline
  • AWS Code Commit
  • AWS Cloud watch (Correct)

Answer : AWS Cloud watch

When storing sensitive data on the cloud which of the below options should be carried out on AWS. Choose 3 answers from the options given below?


Options are :

  • Encrypt the file system on an EBS volume using Linux tools (Correct)
  • Enable 53 Encryption (Correct)
  • Enable EBS Encryption (Correct)
  • With AWS you do not need to worry about encryption

Answer : Encrypt the file system on an EBS volume using Linux tools Enable 53 Encryption Enable EBS Encryption

Your team is responsible for an AWS Elastic Beanstalk application. The business requires that you move to a continuous deployment model, releasing updates to the application multiple times per day with zero downtime, What should you do to enable this and still be able to roll back almost Immediately In an emergency to the previous version?


Options are :

  • Enable rolling updates in the Elastic Beanstalk environment, setting an appropriate pause time for application startup.
  • Create a second Elastic Beanstalk environment running the new application version, and swap the environment CNAMEs. (Correct)
  • Create a second Elastic Beanstalk environment with the new application version, and configure the old environment to redirect clients. using the HTTP 301 response code, to the new environment.
  • Develop the application to poll for a new application version In your code reposItory; download and install to each running Elastic Beanstalk instance.

Answer : Create a second Elastic Beanstalk environment running the new application version, and swap the environment CNAMEs.

When using EC2 instances with the Code Deploy service, which of the following are some of the prer exquisites to ensure that the EC2 Instances can work with Code Deploy. Choose 2 answers from the options given below ?


Options are :

  • Ensure an IAM role is attached to the instance so that it can work with the Code Deploy Service. (Correct)
  • Ensure that the Code Deploy agent is installed on the EC2 Instance (Correct)
  • Ensure the EC2 Instance is placed in the default VPC
  • Ensure the EC2 Instance Is configured with Enhanced Networking

Answer : Ensure an IAM role is attached to the instance so that it can work with the Code Deploy Service. Ensure that the Code Deploy agent is installed on the EC2 Instance

Which of the following is a reliable and durable logging solution to track changes made to your AWS resources?


Options are :

  • Create a new Cloud Trail trail with an existing 53 bucket to store the logs and with the global services optio selected. Use 53 ACL5 and Multi Factor Authentication (MFA) Delete on the S3 bucket that stores your logs.
  • Create a new Cloud Trail with one new 53 bucket to store the logs and with the global services option selected. Use lAM roles 53 bucket policies and Multi Factor Authentication (MFA) Delete on the S3 bucket that stores your logs. (Correct)
  • Create a new Cloud Trail with one new S3 bucket to store the logs. Configure SNS to send log file delivery notifications to your management system. Use lAM roles and 53 bucket policies on the S3 bucket that stores your logs.
  • Create three new Cloud Trail trails with three new 53 buckets to store the logs one for the AWS Management console, one for AWS SDK5 and one for command line tools. Use lAM roles and S3 bucket policies on the 53 buckets that store your logs.

Answer : Create a new Cloud Trail with one new 53 bucket to store the logs and with the global services option selected. Use lAM roles 53 bucket policies and Multi Factor Authentication (MFA) Delete on the S3 bucket that stores your logs.

Your current log analysis application takes more than four hours to generate a report of the top 10 users of your web application. You have been asked to implement a system that can report this information in real time, ensure that the report Is always up to date, and handle increases in the number of requests to your web application. Choose the option that is cost-effective and can fulfill the requirements. Please select:


Options are :

  • Post your log data to an Amazon Kinesis data stream, and subscribe your log-processing application so that is configured to process your logging data. (Correct)
  • Create a multi-AZ Amazon RDS My SQL cluster, post the logging data to My SQL and run a map reduce job to retrieve the required information on user counts.
  • Configure an Auto Scaling group to increase the size of your Amazon EMR cluster.
  • Publish your data to Cloud Watch Logs. and configure your application to auto scale to handle the load on demand.
  • Publish your log data to an Amazon 53 bucket. Use AWS Cloud Formation to create an Auto Scaling group t scale your post-processing application which is configured to pull down your log files stored in Amazon S3.

Answer : Post your log data to an Amazon Kinesis data stream, and subscribe your log-processing application so that is configured to process your logging data.

You are a Dev ops Engineer for your company. There is a requirement to log each time an Instance is scaled in or scaled out from an existing Auto scaling Group. Which of the following steps can be implemented to fulfil this requirement. Each step forms part of the solution?


Options are :

  • Create a Lambda function which will write the event to Cloud watch logs (Correct)
  • Create a Cloud watch event which will trigger the SQS queue.
  • Create a Cloud watch event which will trigger the Lambda function. (Correct)
  • Create an SQS queue which will write the event to Cloud watch logs

Answer : Create a Lambda function which will write the event to Cloud watch logs Create a Cloud watch event which will trigger the Lambda function.

You have a requirement to automate the creation of EBS Snapshots. Which of the following can be used to achieve this in the best way possible?


Options are :

  • Use the AWS Code Deploy service to create a snapshot of the AWS Volumes
  • Create a power shell script which uses the AWS CLI to get the volumes and then run the script as a cron job.
  • Use Cloud watch Events to trigger the snapshots of EBS Volumes (Correct)
  • Use the AWS Config service to create a snapshot of the AWS Volumes

Answer : Use Cloud watch Events to trigger the snapshots of EBS Volumes

You?ve created a Cloud formation template as per your team?s request which is required for testing an application. By there Is a request that when the stack is deleted, that the database is preserved for future reference. How can you achieve this using Cloud formation?


Options are :

  • In the AWS Cloud Formation template. set the AWS::RDS::DB instances DB instance Class property to be read- only.
  • Ensure that the RDS is created with Read Replica?s so that the Read Replica remains after the stack is torn down.
  • In the AWS Cloud Formation template. set the Wait Policy of the AWS::RDS::DB instances Wait Policy property to Retain.
  • In the AWS Cloud Formation template, set the Deletion Policy of the AWS::RDS::DB instance?s Deletion Policy property to Retain (Correct)

Answer : In the AWS Cloud Formation template, set the Deletion Policy of the AWS::RDS::DB instance?s Deletion Policy property to Retain

You are building out a layer in a software stack on AWS that needs to be able to scale out to react to increased demand as fast as possible. You are running the code on EC2 Instances in an Auto Scaling Group behind an ELB. Which application code deployment method should you use? Please select:


Options are :

  • SSH into new instances that come online, and deploy new code onto the system by pulling it from an S3 bucket, which Is populated by code that you refresh from source control on new pushes.
  • Bake an AMI when deploying new versions of code, and use that AMI for the Auto Scaling Launch Configuration. (Correct)
  • Create a Docker file when preparing to deploy a new version to production and publish It to S3. Use User Data in the Auto Scaling Launch configuration to pull down the Docker file from S3 and run it when new instances launch.
  • Create a new Auto Scaling Launch Configuration with User Data scripts configured to pull the latest code at all times.

Answer : Bake an AMI when deploying new versions of code, and use that AMI for the Auto Scaling Launch Configuration.

Your company currently has a set of EC2 Instances running a web application which sits behind an Elastic Load Balancer. You also have an Amazon RDS instance which is used by the web application. You have been asked to ensure that this architecture is self healing in nature and cost effective. Which of the following would fulfill this requirement. Choose 2 answers from the option given below?


Options are :

  • Use Cloud watch metrics to check the utilization of the databases servers. Use Auto scaling Group to scale database instances accordingly based on the cloud watch metrics.
  • Utilize the Read Replica feature for the Amazon RDS layer
  • Utilize the Multi-AZ feature for the Amazon RDS layer (Correct)
  • Use Cloud watch metrics to check the utilization of the web layer. Use Auto scaling Group to scale the web instances accordingly based on the cloud watch metrics. (Correct)

Answer : Utilize the Multi-AZ feature for the Amazon RDS layer Use Cloud watch metrics to check the utilization of the web layer. Use Auto scaling Group to scale the web instances accordingly based on the cloud watch metrics.

Your company has an application sitting on EC2 Instances behind an Elastic Load balancer. The EC2 Instances are being launched as part of an Auto scaling Group. Which of the following is an example of Blue Green Deployments In AWS?


Options are :

  • Re-deploy your application behind a load balancer that uses Auto Scaling groups, create a new identical Auto Scaling group. and associate it to the load balancer. During deployment, set the desired number of instances on the old Auto Scaling group to zero. and when all Instances have terminated, delete the old Auto Scaling group. (Correct)
  • Use the Ops works service to deploy your resources. Use 2 Opswork layers to deploy 2 versions of your application. When the time comes for the switch, change to the alternate layer in the Opswork stack
  • Use the Elastic beanstalk service to deploy your resources. Use 2 Elastic beanstalk environments. Use Roller deployments to switch between the environments.
  • Use a Cloud formation stack to deploy your resources. Use 2 Cloud formation stacks. Whenever you want to switch over, deploy and use the resources In the second Cloud formation stack.

Answer : Re-deploy your application behind a load balancer that uses Auto Scaling groups, create a new identical Auto Scaling group. and associate it to the load balancer. During deployment, set the desired number of instances on the old Auto Scaling group to zero. and when all Instances have terminated, delete the old Auto Scaling group.

Your company has a set of resources hosted in AWS. Your IT Supervisor is concerned with the costs being incurred with the current set of AWS resources and wants to monitor the cost usage. Which of the following mechanisms can be used to monitor the costs of the AWS resources and also look at the possibility of cost optimization. Choose 3 answers from the options given below Please select:


Options are :

  • Use the Cost Explorer to see the costs of AWS resources ..„ (Correct)
  • Send all logs to Cloud watch logs and inspect the logs for billing details
  • Create budgets in billing section so that budgets are set beforehand (Correct)
  • Consider using the Trusted Advisor (Correct)

Answer : Use the Cost Explorer to see the costs of AWS resources ..„ Create budgets in billing section so that budgets are set beforehand Consider using the Trusted Advisor

You have decided you need to change the instance type of your instances in production which are running as part of an Auto scaling Group. You currently have 4 instances In production. You cannot have any interruption in service and need to ensure 2 instances are always running during the update. Which of the below options can be chosen for this?


Options are :

  • Auto Scaling integration update
  • Auto Scaling Replacing update
  • Auto Scaling Scheduled Action
  • Auto Scaling Rolling update (Correct)

Answer : Auto Scaling Rolling update

You have an application running in us-west-2 that requires 6 EC2 instances running at all times. With 3 AZ available in that region, which of the following deployments provides 100% fault tolerance if any single AZ in us-west-2 becomes unavailable. Choose 2 answers from the options below Please select:


Options are :

  • us-west-2a with 6 instances. us-west-2b with 6 instances. us-west-2c with 0 instances (Correct)
  • us-west.2a with 3 Instances. us-west-2b with 3 instances, us-west-2c with 3 Instances .„ (Correct)
  • us-west-2a with 2 instances. us-west-2b with 2 instances, us-west-2c with 2 instances
  • us-west-2a with 4 instances, us-west-2b with 2 instances, us-west-2c with 2 instances
  • us-west-2a with 3 Instances. us-west-2b with 3 instances. us-west-2c with 0 instances

Answer : us-west-2a with 6 instances. us-west-2b with 6 instances. us-west-2c with 0 instances us-west.2a with 3 Instances. us-west-2b with 3 instances, us-west-2c with 3 Instances .„

Your application uses Amazon SQS and Auto Scaling to process background jobs. The Auto Scaling policy is based on the number of messages In the queue, with a maximum instance count of 100. Since the application was launched, the group has never scaled above 50. The Auto scaling group has now scaled to 100, the queue size is increasing and very few jobs are being completed. The number of messages being sent to the queue is at normal levels. What should you do to identity why the queue size is unusually high and to reduce it?


Options are :

  • Create additional Auto Scaling groups enabling the processing of the queue to be performed in parallel.
  • Analyze the application logs to identify possible reasons for message processing failure and resolve the cause for failures. (Correct)
  • Analyze Cloud Trail logs for Amazon SQS to ensure that the instances Amazon EC2 role has permission to receive messages from the queue.
  • Temporarily increase the Auto Scaling group?s desired value to 200. When the queue size has been reduc reduce it to 50.

Answer : Analyze the application logs to identify possible reasons for message processing failure and resolve the cause for failures.

Which of the following services allows you to easily run and manage Ducker-enabled applications across a cluster of Amazon EC2 Instances ?


Options are :

  • Ops work
  • Cloud watch
  • Elastic beanstalk
  • Elastic Container service (Correct)

Answer : Elastic Container service

Which of the following services from AWS can be integrated with the Jenkins continuous integration tool?


Options are :

  • Amazon Elastic beanstalk
  • Amazon ECS
  • All of the above (Correct)
  • Amazon EC2

Answer : All of the above

You need to deploy a Node.js application and do not have any experience with AWS. Which deployment method will be the simplest for you to deploy?


Options are :

  • AWS Elastic Beanstalk (Correct)
  • AWS Ops Works
  • AWSEC2
  • AWS Cloud Formation

Answer : AWS Elastic Beanstalk

Which of these is not an intrinsic function in AWS Cloud Formation?


Options are :

  • Fn::Parse (Correct)
  • Fn::Equals
  • Fn::Not
  • . Fn::lf

Answer : Fn::Parse

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions