Amazon DOP-C01 Practice Test - Questions Answers, Page 11
List of questions
Question 101
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
A company that uses electronic health records is running a fleet of Amazon EC2 instances with an Amazon Linux operating system. As part of patient privacy requirements, the company must ensure continuous compliance for patches for operating system and applications running on the EC2 instances.
How can the deployments of the operating system and application patches be automated using a default and custom repository?
Question 102
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
A healthcare services company is concerned about the growing costs of software licensing for an application for monitoring patient wellness. The company wants to create an audit process to ensure that the application is running exclusively on Amazon EC2 Dedicated Hosts. A DevOps Engineer must create a workflow to audit the application to ensure compliance. What steps should the Engineer take to meet this requirement with the LEAST administrative overhead?
Question 103
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
You are hosting multiple environments in multiple regions and would like to use Amazon Inspector for regular security assessments on your AWS resources across all regions. Which statement about Amazon Inspector's operation across regions is true?
Explanation:
At this time, Amazon Inspector supports assessment services for EC2 instances in only the following AWS regions: US West (Oregon) US East (N. Virginia) EU (Ireland) Asia Pacific (Seoul) Asia Pacific (Mumbai) Asia Pacific (Tokyo) Asia Pacific (Sydney) Amazon Inspector is hosted within AWS regions behind a public endpoint. All regions are isolated from each other, and the telemetry and findings for all assessments performed within a region remain in that region and are not distributed by the service to other Amazon Inspector locations.
Reference:
https://docs.aws.amazon.com/inspector/latest/userguide/inspector_supported_os_regions.html#in%20spector_supportedregions
Question 104
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
A company requires that all logs are captured for everything that runs in the company’s AWS account. The account has multiple VPCs with Amazon EC2 instances, Application Load Balancers, Amazon RDS MySQL databases, and AWS WAF rules that are configured. The logs must be protected from deletion. The company also needs a daily visual analysis of log anomalies from the previous day. Which combination of actions should a DevOps engineer take to meet these requirements? (Choose three.)
Question 105
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
You need to know when you spend $1000 or more on AWS. What's the easy way for you to see that notification?
Explanation:
Even if you're careful to stay within the free tier, it's a good idea to create a billing alarm to notify you if you exceed the limits of the free tier. Billing alarms can help to protect you against unknowingly accruing charges if you inadvertently use a service outside of the free tier or if traffic exceeds your expectations.
Reference: http://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/freetier-alarms.html
Question 106
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
A company gives its employees limited rights to AWS. DevOps engineers have the ability to assume an administrator role. For tracking purposes, the security team wants to receive a near-real-time notification when the administrator role is assumed. How should this be accomplished?
Explanation:
Reference: https://docs.aws.amazon.com/eventbridge/latest/userguide/user-guide.pdf
Question 107
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
A company has migrated its container-based applications to Amazon EKS and wants to establish automated email notifications. The notifications sent to each email address are for specific activities related to EKS components. The solution will include Amazon SNS topics and an AWS Lambda function to evaluate incoming log events and publish messages to the correct SNS topic. Which logging solution will support these requirements?
Question 108
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
You are building out a layer in a software stack on AWS that needs to be able to scale out to react to increased demand as fast as possible. You are running the code on EC2 instances in an Auto Scaling Group behind an ELB. Which application code deployment method should you use?
Explanation:
The bootstrapping process can be slower if you have a complex application or multiple applications to install. Managing a fleet of applications with several build tools and dependencies can be a challenging task during rollouts. Furthermore, your deployment service should be designed to do faster rollouts to take advantage of Auto Scaling.
Reference:
https://d0.awsstatic.com/whitepapers/overview-of-deployment-options-on-aws.pdf
Question 109
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
A DevOps Engineer has several legacy applications that all generate different log formats. The Engineer must standardize the formats before writing them to Amazon S3 for querying and analysis. How can this requirement be met at the LOWEST cost?
Question 110
![Export Export](https://examgecko.com/assets/images/icon-download-24.png)
Which deployment method, when using AWS Auto Scaling Groups and Auto Scaling Launch Configurations, enables the shortest time to live for individual servers?
Explanation:
Note that the bootstrapping process can be slower if you have a complex application or multiple applications to install. Managing a fleet of applications with several build tools and dependencies can be a challenging task during rollouts. Furthermore, your deployment service should be designed to do faster rollouts to take advantage of Auto Scaling. Prebaking is a process of embedding a significant portion of your application artifacts within your base AMI. During the deployment process you can customize application installations by using EC2 instance artifacts such as instance tags, instance metadata, and Auto Scaling groups.
Reference:
https://d0.awsstatic.com/whitepapers/overview-of-deployment-options-on-aws.pdf
Question