AWS Devops Engineer Professional Certified Practice Exam Set 7

As part of your continuous deployment process, your application undergoes an I/O load performance test before it is deployed to production using new AM Is. The application uses one Amazon EBS PIOPS volume per instance and requires consistent I/O performance. Which of the following must be carried out to ensure that I/O load performance tests yield the correct results in a repeatable manner?


Options are :

  • Ensure that the I/O block sizes for the test are randomly selected.
  • Ensure that the Amazon EBS volumes have been pre-warmed by reading all the blocks before the test. (Correct)
  • Ensure that snapshots of the Amazon EBS volumes are created as a backup.
  • Ensure that the Amazon EBS volume is encrypted.

Answer : Ensure that the Amazon EBS volumes have been pre-warmed by reading all the blocks before the test.

You are creating a cloud formation templates which takes in a database password as a parameter. How can you ensure that the password is not visible when anybody tries to describes the stack Please select:


Options are :

  • Use the No Echo property for the parameter value . (Correct)
  • Use the hidden property for the parameter value
  • Set the hidden attribute for the Cloud formation resource
  • Use the password attribute for the resource

Answer : Use the No Echo property for the parameter value .

You run a multi-tier architecture on AWS with web server instances running Nginx. Your users are getting errors when they use the web application. How can diagnose the errors quickly and efficiently Please select:


Options are :

  • Send all the errors to AWS Config for processing.
  • Send all the errors to AWS Lambda for processing.
  • Install the Cloud Watch Logs agent and send Nginx access log data to Cloud Watch. Then, filter the log streams for searching the relevant errors. (Correct)
  • Install the Cloud Watch Logs agent and send Nginx access log data to Cloud Watch. From there, pipe the log data through to a third party logging and graphing tool.

Answer : Install the Cloud Watch Logs agent and send Nginx access log data to Cloud Watch. Then, filter the log streams for searching the relevant errors.

Which of the following services along with Cloud formation helps in building a Continuous Delivery release practice


Options are :

  • AWS Lambda
  • AWS Config
  • AWS Cloud trail
  • AWS Code Pipeline (Correct)

Answer : AWS Code Pipeline

You have a large multi-tier architecture that serves public facing web traffic through a load balancer and is backed by a web tier that Is contained within an Amazon EC2 Auto Scaling group. During a peak in traffic, you discover that your web tier is adding new Instances disproportionately compared to the amount of Incoming traffic and the Auto Scaling policy that was set up. What should you do in order to stop the Auto Scaling group from scaling incorrectly in response to incoming traffic?


Options are :

  • Using Cloud Watch and the instance Boot Time metric, increase the Pause Time and Cool Down property on I the Auto Scaling group to be over the value of the metric.
  • Using a custom Cloud Watch metric insert the elapsed time since the instance launch to the time the instance responds to an Elastic Load Balancing health check, and periodically adjust the Pause Time of the Update Policy and reduce the Scaling Adjustment property by 50%
  • Using a third-party configuration management tool and the AWS SDK suspend all Scheduled Actions of the Auto Scaling group until after the traffic peak and then resume all scheduled Actions.
  • Using a custom Cloud Watch metric insert the elapsed time since the instance launch to the time the instance responds to an Elastic Load Balancing health check, and periodically adjust the Pause Time and the Cool Down property on the Auto Scaling group to be over the value of the metric. (Correct)

Answer : Using a custom Cloud Watch metric insert the elapsed time since the instance launch to the time the instance responds to an Elastic Load Balancing health check, and periodically adjust the Pause Time and the Cool Down property on the Auto Scaling group to be over the value of the metric.

Which of the following is not a supported platform for the Elastic beanstalk service Please select:


Options are :

  • .Net
  • PHP
  • Angular JS (Correct)
  • Java

Answer : Angular JS

You have configured the following AWS services in your organization - Auto Scaling group, Elastic Load Balancer, and EC2 instances. You have been requested to terminate an instance from the Auto scaling Group when the Cpu utilization Is less than 30%. How can you achieve this. Please select:


Options are :

  • Create a Cloud Watch alarm to send a notification to the admin team. The admin team can then manually terminate an instance from the Auto scaling Group.
  • Create a Cloud Watch alarm to send a notification to the ELB. The ELB can then remove one instance from the Auto scaling Group.
  • Create a Cloud Watch alarm to send a notification to SQS. SQS can then remove one instance from the Auto scaling Group.
  • Create a Cloud Watch alarm to send a notification to the Auto Scaling group when the aggregated CPU utilization is less than 30% and configure the Auto Scaling policy to remove one instance. (Correct)

Answer : Create a Cloud Watch alarm to send a notification to the Auto Scaling group when the aggregated CPU utilization is less than 30% and configure the Auto Scaling policy to remove one instance.

Your EMR cluster uses twelve m4.large instances and runs 24 hours per day, but it is only used for processing and reporting during business hours. Which options can you use reduce the costs? Choose 2 answers from the options given below Please select:


Options are :

  • Migrate the data from HDFS to 53 using S3DispCp and turn off the cluster when not in use (Correct)
  • Use Auto scaling to scale In and scale out the cluster whenever required.
  • Use Spot instances for tasks nodes when needed (Correct)
  • Use Reserved Instances for the task nodes

Answer : Migrate the data from HDFS to 53 using S3DispCp and turn off the cluster when not in use Use Spot instances for tasks nodes when needed

Which of the following tools for EC2 can be used to administer instances without the need to SSH or RDP into the instance?


Options are :

  • EC2Config
  • Run Command (Correct)
  • AWS Config
  • AWS Code Pipeline

Answer : Run Command

You have are managing an application that contains Go as the front end, Mongo DB for document management and is hosted on a relevant Web server. You prebake AM l?s with the latest version of the Web server, then user the User Data section to setup the application. You now have a change to the underlying Operating system version and need to deploy that accordingly. How can this be done in the easiest way possible.


Options are :

  • Create a new EBS Volume with the relevant Os patches and attach it to the EC2 instance.
  • Create a new pre-baked AM1 with the new OS and use the User Data section to deploy the application. (Correct)
  • Create a Cloud formation stack with the new AM1 and then deploy the application accordingly.
  • Create an Ops work stack with the new AMi and then deploy the application accordingly. Your answer is incorrect.

Answer : Create a new pre-baked AM1 with the new OS and use the User Data section to deploy the application.

You are working with a customer who is using Chef Configuration management in their data center. Which service is designed to let the customer leverage existing Chef recipes in AWS?


Options are :

  • AWS Ops Works (Correct)
  • AWS Cloud Formation
  • AWS Elastic Beanstalk
  • Amazon Simple Workflow Service

Answer : AWS Ops Works

You have defined a Linux based instance stack in Ops work. You now want to attach a database to the Ops work stack. Which of the below is an important step to ensure that the application on the Linux instances can communicate with the database?


Options are :

  • Configure SSL so that the instance can communicate with the database
  • Configure database tags for the Ops work application layer
  • Add another stack with the database layer and attach it to the application stack.
  • Add the appropriate driver packages to ensure the application can work with the database (Correct)

Answer : Add the appropriate driver packages to ensure the application can work with the database

You have a web application composed of an Auto Scaling group of web servers behind a load balancer, and create a new AMI for each application version for deployment. You have a new version to release, and you want to use the A/B deployment technique to migrate users over in a controlled manner while the size of the fleet remains constant over a period of 12 hours, to ensure that the new version is performing well. What option should you choose to enable this technique while being able to roll back easily?


Options are :

  • Create an Auto scaling launch configuration with the new AMI. Configure the Auto Scaling group with the / new launch configuration. Use the Auto Scaling rolling updates feature to migrate to the new version.
  • Launch new Instances using the new AMI and attach them to the Auto Scaling group. Configure Elastic Load Balancing to vary the proportion of requests sent to instances running the two application versions.
  • Create an Auto scaling launch configuration with the new AMI. Configure Auto Scaling to vary the proportion of instances launched from the two launch configurations.
  • Create a load balancer. Create an Auto Scaling launch configuration with the new AMI to use the new launch configuration and to register instances with the new load balancer. Use Amazon Route53 weighted Round Robin to vary the proportion of requests sent to the load balancers. (Correct)
  • Create an Auto Scaling launch configuration with the new AMI. Create an Auto Scaling group configured to use the new launch configuration and to register Instances with the same load balancer. Vary the desired capacity of each group to migrate.

Answer : Create a load balancer. Create an Auto Scaling launch configuration with the new AMI to use the new launch configuration and to register instances with the new load balancer. Use Amazon Route53 weighted Round Robin to vary the proportion of requests sent to the load balancers.

Which of the following tools is available to send log data from EC2 Instances. Please select:


Options are :

  • Logs console.
  • Cloud Watch Agent
  • Cloud Watch Logs Agent (Correct)
  • Logs Stream

Answer : Cloud Watch Logs Agent

A company wants to create standard templates for deployment of their Infrastructure. Which AWS service can be used In this regard? Please choose one option. Please select:


Options are :

  • AWS Ops Works
  • AWS Elastic Beanstalk
  • AWS Cloud Formation (Correct)
  • Amazon Simple Workflow Service

Answer : AWS Cloud Formation

A company is building a two-tier web application to serve dynamic transaction-based content. The data tier is leveraging an Online Transactional Processing (OLTP) database. What services should you leverage to enable an elastic and scalable web tier?


Options are :

  • Amazon EC2. Amazon Dynamo DB, and Amazon S3
  • Elastic Load Balancing. Amazon RDS with Multi-AZ. and Amazon 53
  • Elastic Load Balancing. Amazon EC2, and Auto Scaling (Correct)
  • Amazon RDS with Multi-AZ and Auto Scaling

Answer : Elastic Load Balancing. Amazon EC2, and Auto Scaling

What are the benefits when you implement a Blue Green deployment for your infrastructure or application level changes. Choose 3 answers from the options given below Please select:


Options are :

  • Better rollback capabilities (Correct)
  • Good turnaround time for application deployments (Correct)
  • Ability to deploy with higher risk
  • Near zero-downtime release for new changes (Correct)

Answer : Better rollback capabilities Good turnaround time for application deployments Near zero-downtime release for new changes

You have just developed a new mobile application that handles analytics workloads on large scale datasets that are stored on Amazon Red shift. Consequently, the application needs to access Amazon Red shift tables. Which of the below methods would be the best, both practically and security-wise, to access the tables?


Options are :

  • Use roles that allow a web identity federated user to assume a role that allows access to the RedShlft table by providing temporary credentials. (Correct)
  • Create an AM user and generate encryption keys for that user. Create a policy for RedShift read-only access. Embed the keys In the application.
  • Create a RedShift read-only access policy in lAM and embed those credentials in the application.
  • Create a I-iSM client certificate in Red shift and authenticate using this certificate.

Answer : Use roles that allow a web identity federated user to assume a role that allows access to the RedShlft table by providing temporary credentials.

Which of the following can be configured as targets for Cloud watch Events. Choose 3 answers from the options given below


Options are :

  • Amazon ECS Tasks (Correct)
  • AWS Lambda Functions (Correct)
  • Amazon EC2 Instances (Correct)
  • Amazon Code Commit

Answer : Amazon ECS Tasks AWS Lambda Functions Amazon EC2 Instances

Your current log analysis application takes more than four hours to generate a report of the top 10 users of your web application. You have been asked to implement a system that can report this information in real time, ensure that the report Is always up to date, and handle increases in the number of requests to your web application. Choose the option that is cost-effective and can fulfill the requirements. Please select:


Options are :

  • Publish your log data to an Amazon S3 bucket. Use AWS Cloud Formation to create an Auto Scaling group t scale your post-processing application which is configured to pull down your log files stored in Amazon S3.
  • Publish your data to Cloud Watch Logs. and configure your application to auto scale to handle the load on demand.
  • Post your log data to an Amazon Kinesis data stream, and subscribe your log-processing application so that is configured to process your logging data. (Correct)
  • Configure an Auto Scaling group to increase the size of your Amazon EMR cluster

Answer : Post your log data to an Amazon Kinesis data stream, and subscribe your log-processing application so that is configured to process your logging data.

You recently encountered a major bug in your web application during a deployment cycle. During this failed deployment, it took the team four hours to roll back to a previously working state, which left customers with a poor user experience. During the post-mortem, you team discussed the need to provide a quicker, more robust way to roll back failed deployments. You currently run your web application on Amazon EC2 and use Elastic Load Balancing for your load balancing needs. Which technique should you use to solve this problem?


Options are :

  • Use an AWS Ops Works stack to re-deploy your web application and use AWS Ops Works Deployment Command to initiate a rollback during failures (Correct)
  • Using Elastic Bean Stalk redeploy your web application and use the Elastic Bean Stalk API to trigger a Failed Deployment API call to initiate a rollback to the previous version.
  • Create deployable versioned bundles of your application. Store the bundle on Amazon 53. Re-deploy your web application on Elastic Beanstalk and enable the Elastic Beanstalk auto rollback feature tied to Cloud Watch metrics that define failure.
  • Create deployable versioned bundles of your application. Store the bundle on Amazon S3. Use an AWS Ops Works stack to redeploy your web application and use AWS Ops Works application versioning to initiate a rollback during failures.

Answer : Use an AWS Ops Works stack to re-deploy your web application and use AWS Ops Works Deployment Command to initiate a rollback during failures

Your application is having a very high traffic, so you have enabled auto scaling in multi availability zone to suffice the needs of your application but you observe that one of the availability zone is not receiving any traffic. What can be wrong here?


Options are :

  • Auto scaling can be enabled for multi AZ only in north Virginia region
  • Instances need to manually added to availability zone
  • Availability zone is not added to Elastic load balancer (Correct)
  • Auto scaling only works for single availability zone

Answer : Availability zone is not added to Elastic load balancer

You have an I/O and network-intensive application running on multiple Amazon EC2 instances that cannot handle a large ongoing increase in traffic. The Amazon EC2 instances are using two Amazon EBS PIOPS volumes each, and each instance is identical. Which of the following approaches should be taken in order to reduce load on the instances with the least disruption to the application?


Options are :

  • Create an AMI from each instance, and set up Auto Scaling groups with a larger instance type that has enhanced networking enabled and is Amazon EBS.
  • Add an Amazon EBS volume for each running Amazon EC2 instance and implement RAID striping to improve 110 performance. (Correct)
  • Stop each instance and change each instance to a larger Amazon EC2 instance type that has enhanced networking enabled and Is Amazon EBS-optimized. Ensure that RAID striping Is also set up on each instance.
  • Create an AMI from an instance, and set up an Auto Scaling group with an instance type that has enhanced networking enabled and is Amazon EBS.
  • Add an instance-store volume for each running Amazon EC2 instance and implement RAID striping to improve I/O performance.

Answer : Add an Amazon EBS volume for each running Amazon EC2 instance and implement RAID striping to improve 110 performance.

You are planning on configuring logs for your Elastic Load balancer. At what intervals does the logs get produced by the Elastic Load balancer service. Choose 2 answers from the options given below ?


Options are :

  • 1 minute
  • S minutes (Correct)
  • Go minutes (Correct)
  • 30 seconds

Answer : S minutes Go minutes

Which of the following are the basic stages of a Cl/CD Pipeline. Choose 3 answers from the options below?


Options are :

  • Run
  • Production (Correct)
  • Build (Correct)
  • Source Control (Correct)

Answer : Production Build Source Control

You work as a Dev ops Engineer for your company. There are currently a number of environments hosted via Elastic beanstalk. There is a requirement to ensure to use the fastest deployment method for changes to the Elastic Beanstalk environment. Which deployment method is the fastest with Elastic Beanstalk?


Options are :

  • All at Once (Correct)
  • Rolling
  • Rolling with additional batch
  • Blue/Green

Answer : All at Once

The company you work for has a huge amount of infrastructure built on AWS. However there has been some concerns recently about the security of this infrastructure, and an external auditor has been given the task of running a thorough check of all of your company?s AWS assets. The auditor will be in the USA while your company?s infrastructure resides in the Asia Pacific (Sydney) region on AWS. Initially, he needs to check all of your VPC assets, specifically, security groups and NACLs You have been assigned the task of providing the auditor with a login to be able to do this. Which of the following would be the best and most secure solution to provide the auditor with so he can begin his Initial Investigations? Choose the correct answer from the options below Please select:


Options are :

  • Create an PAM user who will have read-only access to your AWS VPC infrastructure and provide the auditor with those credentials. (Correct)
  • Create an lAM user with full VPC access but set a condition that will not allow him to modify anything if the request is from any P other than his own.
  • Create an lAM user tied to an administrator role. Also provide an additional level of security with MFA.
  • Give him root access to your AWS Infrastructure, because he is an auditor he will need access to every service.

Answer : Create an PAM user who will have read-only access to your AWS VPC infrastructure and provide the auditor with those credentials.

Your application requires long-term storage for backups and other data that you need to keep readily available but with lower cost. Which S3 storage option should you use?


Options are :

  • Glacier
  • Reduced Redundancy Storage
  • 53 Standard
  • Amazon 53 Standard - Infrequent Access (Correct)

Answer : Amazon 53 Standard - Infrequent Access

You are trying to debug the creation of Cloud formation stack resources. Which of the following can be used to help in the debugging process? Choose 2 answers from the options below


Options are :

  • Use the VS Cloud Formation console to view the status of your stack. (Correct)
  • See the logs in the /var/log directory for Linux instances (Correct)
  • Use Cloud trail to debug all the API call?s sent by the Cloud formation stack.
  • Use AWS Conflg to debug all the API calrs sent by the Cloud formation stack.

Answer : Use the VS Cloud Formation console to view the status of your stack. See the logs in the /var/log directory for Linux instances

Which of the following CLI commands can be used to describe the stack resources?


Options are :

  • aws cloud formation describe-stack-resources
  • aws cloud formation describe-stack
  • aws cloud formatlon list-stackresources (Correct)
  • aws cloud formation liststack

Answer : aws cloud formatlon list-stackresources

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions