CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
AWS Certified DevOps Engineer - Professional Certification - Part 2
1. You have deployed an application to AWS(Amazon Web Service) which makes use of Auto scaling to launch new instances. You now want to change the instance type for the new instances. Which of the following is one of the action items to achieve this deployment?
A) Create a new launch configuration with the new instance type
B) Use Elastic Beanstalk to deploy the new application with the new instance type
C) Use Cloud formation to deploy the new application with the new instance type
D) Create new EC2 instances with the new instance type and attach it to the Auto scaling Group
2. You have a code repository that uses Amazon 53 as a data store. During a recent audit of your security controls, some concerns were raised about maintaining the integrity of the data in the Amazon S3 bucket. Another concern was raised around securely deploying code from Amazon S3 to applications running on Amazon EC2 in a virtual private cloud. What are some measures that you can implement to mitigate these concerns? Choose two answers from the options given below.
A) Add an Amazon S3 bucket policy with a condition statement that requires multi-factor authentication in order to delete objects and enable bucket versioning.
B) Use AWS(Amazon Web Service) Data Pipeline with multi-factor authentication to securely deploy code from the Amazon 53 bucket to your Amazon EC2 instances.
C) Add an Amazon S3 bucket policy with a condition statement to allow access only from Amazon EC2 instances with RFC 1918 P addresses and enable bucket versioning.
D) Create an Amazon Identity and Access Management role with authorization to access the Amazon S3 bucket, and launch all of your application?s Amazon EC2 instances with this role.
E) Use a configuration management service to deploy AWS(Amazon Web Service) Identity and Access Management user credentials to the Amazon EC2 instances. Use these credentials to securely access the Amazon 53 bucket when deploying code.
F) Use AWS(Amazon Web Service) Data Pipeline to lifecycle the data in your Amazon 53 bucket to Amazon Glacier on a weekly basis.
3. Your application stores sensitive information on and EBS volume attached to your EC2 instance. How can you protect your information? Choose two answers from the options given below Please select:
A) Create and mount a new, encrypted Amazon EBS volume. Move the data to the new volume. Delete the old Amazon EBS volume
B) Copy an unencrypted snapshot of an unencrypted volume, you can encrypt the copy. Volumes restored from this encrypted copy will also be encrypted.
C) It Is not possible to encrypt an EBS volume, you must use a lifecycle policy to transfer data to S3 for encryption
D) Un mount the EBS volume, take a snapshot and encrypt the snapshot. Re-mount the Amazon EBS volume
4. You have been tasked with deploying a scalable distributed system using AWS(Amazon Web Service) Ops Works. Your distributed system is required to scale on demand. As it is distributed, each node must hold a configuration file that Includes the hostnames of the other Instances within the layer. How should you configure AWS(Amazon Web Service) Ops Works to manage scaling this application dynamically?
A) Configure your AWS(Amazon Web Service) Ops Works layer to use the AWS-provided recipe for distributed host configuration, and configure the instance hostname and file path parameters in your recipes settings.
B) Create a Chef Recipe to update this configuration file, configure your AWS(Amazon Web Service) Ops Works stack to use custom cookbooks, and assign this recipe to the Configure Lifecycle Event of the specific layer.
C) Create a Chef Recipe to update this configuration file, configure your AWS(Amazon Web Service) Ops Works stack to use custom cookbooks, and assign this recipe to execute when instances are launched.
D) Update this configuration file by writing a script to poll the AWS(Amazon Web Service) Ops Works service API for new instances. Configure your base AMI to execute this script on Operating System startup.
5. You have a set of EC2 instances hosted in AWS. You have created a role named Demo Role and assigned that role to a policy, but you are unable to use that role with an instance. Why is this the case.
A) You are not able to associate an lAM role with an instance
B) You won't be able to use that role with an instance unless you also create a user and associate it with that specific role
C) You won't be able to use that role with an instance unless you also create a user group and associate it wit?h, that specific role.
D) You need to create an instance profile and associate it with that specific role.
A) Create a new launch configuration with the new instance type
B) Use Elastic Beanstalk to deploy the new application with the new instance type
C) Use Cloud formation to deploy the new application with the new instance type
D) Create new EC2 instances with the new instance type and attach it to the Auto scaling Group
2. You have a code repository that uses Amazon 53 as a data store. During a recent audit of your security controls, some concerns were raised about maintaining the integrity of the data in the Amazon S3 bucket. Another concern was raised around securely deploying code from Amazon S3 to applications running on Amazon EC2 in a virtual private cloud. What are some measures that you can implement to mitigate these concerns? Choose two answers from the options given below.
A) Add an Amazon S3 bucket policy with a condition statement that requires multi-factor authentication in order to delete objects and enable bucket versioning.
B) Use AWS(Amazon Web Service) Data Pipeline with multi-factor authentication to securely deploy code from the Amazon 53 bucket to your Amazon EC2 instances.
C) Add an Amazon S3 bucket policy with a condition statement to allow access only from Amazon EC2 instances with RFC 1918 P addresses and enable bucket versioning.
D) Create an Amazon Identity and Access Management role with authorization to access the Amazon S3 bucket, and launch all of your application?s Amazon EC2 instances with this role.
E) Use a configuration management service to deploy AWS(Amazon Web Service) Identity and Access Management user credentials to the Amazon EC2 instances. Use these credentials to securely access the Amazon 53 bucket when deploying code.
F) Use AWS(Amazon Web Service) Data Pipeline to lifecycle the data in your Amazon 53 bucket to Amazon Glacier on a weekly basis.
3. Your application stores sensitive information on and EBS volume attached to your EC2 instance. How can you protect your information? Choose two answers from the options given below Please select:
A) Create and mount a new, encrypted Amazon EBS volume. Move the data to the new volume. Delete the old Amazon EBS volume
B) Copy an unencrypted snapshot of an unencrypted volume, you can encrypt the copy. Volumes restored from this encrypted copy will also be encrypted.
C) It Is not possible to encrypt an EBS volume, you must use a lifecycle policy to transfer data to S3 for encryption
D) Un mount the EBS volume, take a snapshot and encrypt the snapshot. Re-mount the Amazon EBS volume
4. You have been tasked with deploying a scalable distributed system using AWS(Amazon Web Service) Ops Works. Your distributed system is required to scale on demand. As it is distributed, each node must hold a configuration file that Includes the hostnames of the other Instances within the layer. How should you configure AWS(Amazon Web Service) Ops Works to manage scaling this application dynamically?
A) Configure your AWS(Amazon Web Service) Ops Works layer to use the AWS-provided recipe for distributed host configuration, and configure the instance hostname and file path parameters in your recipes settings.
B) Create a Chef Recipe to update this configuration file, configure your AWS(Amazon Web Service) Ops Works stack to use custom cookbooks, and assign this recipe to the Configure Lifecycle Event of the specific layer.
C) Create a Chef Recipe to update this configuration file, configure your AWS(Amazon Web Service) Ops Works stack to use custom cookbooks, and assign this recipe to execute when instances are launched.
D) Update this configuration file by writing a script to poll the AWS(Amazon Web Service) Ops Works service API for new instances. Configure your base AMI to execute this script on Operating System startup.
5. You have a set of EC2 instances hosted in AWS. You have created a role named Demo Role and assigned that role to a policy, but you are unable to use that role with an instance. Why is this the case.
A) You are not able to associate an lAM role with an instance
B) You won't be able to use that role with an instance unless you also create a user and associate it with that specific role
C) You won't be able to use that role with an instance unless you also create a user group and associate it wit?h, that specific role.
D) You need to create an instance profile and associate it with that specific role.
1. Right Answer: A
Explanation:
2. Right Answer: E
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: D
Explanation:
Explanation:
2. Right Answer: E
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: D
Explanation:
Tags:
aws cloud awc cloud cerification certified aws aws certifications aws cloud practitioner aws solution architect aws training aws certified cloud practitioner aws exam aws certification exam aws practice exams aws 2023 aws updated questions aws questions aws cert aws certified solutions architect aws solution architect associate aws training and certification aws certified developer associate certification for devops0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment