AWS-Certified-DevOps-Engineer-Professional Free Practice Test

A company has thousands of Amazon EC2 instances as well as hundreds of virtual machines on-premises. Developers routinely sign in to the console for on-premises systems to perform troubleshooting. The developers want to sign in to AWS instances to run performance tools, but are unable to due to the lack of a central console logging system. A DevOps engineer wants to ensure that console access is logged on all systems.
Which combination of steps will meet these requirements? (Select TWO.)

1. A. Attach a role to all AWS instances that contains the appropriate permission
2. B. Create an AWS Systems Manager managed-instance activatio
3. C. Install and configure Systems Manager Agent on on-premises machines.
4. D. Enable AWS Systems Manager Session Manager logging to an Amazon S3 bucke
5. E. Direct developers to connect to the systems with Session Manager only.
6. F. Enable AWS Systems Manager Session Manager logging to AWS CloudTrai
7. G. Direct developers to continue normal sign-in procedures for on-premise
8. H. Use Session Manager for AWS instances.
9. I. Install and configure an Amazon CloudWatch Logs agent on all system
10. J. Create an AWS Systems Manager managed-instance activation.
11. K. Set up a Site-to-Site VPN connection between the on-premises and AWS network
12. L. Set up a bastion instance to allow developers to sign in to the AWS instances.

Correct Answer: AB

During metric analysis, your team has determined that the company's website during peak hours is experiencing response times higher than anticipated. You currently rely on Auto Scaling to make sure that you are scaling your environment during peak windows. How can you improve your Auto Scaling policy to reduce this high response time? Choose 2 answers.

1. A. Push custom metrics to CloudWatch to monitor your CPU and network bandwidth from your servers, which will allow your Auto Scaling policy to have betterfine-grain insight.
2. B. IncreaseyourAutoScalinggroup'snumberofmaxservers.
3. C. Create a script that runs and monitors your servers; when it detects an anomaly in load, it posts to an Amazon SNS topic that triggers Elastic Load Balancing to add more servers to the load balancer.
4. D. Push custom metrics to CloudWatch for your application that include more detailed information about your web application, such as how many requests it is handling and how many are waiting to be processed.

Correct Answer: BD
Option B makes sense because maybe the max servers is low hence the application cannot handle the peak load.
Option D helps in ensuring Autoscaling can scale the group on the right metrics.
For more information on Autoscaling health checks, please refer to the below document link: from AWS
http://docs.aws.amazon.com/autoscaling/latest/userguide/healthcheck.html

A DevOps Engineer has several legacy applications that all generate different log formats. The Engineer must standardize the formats before writing them to Amazon S3 for querying and analysis. How can this requirement be met at the LOWEST cost?

1. A. Have the application send its logs to an Amazon EMR cluster and normalize the logs before sending them to Amazon S3.
2. B. Have the application send its logs to Amazon QuickSight, then use the Amazon QuickSight SPICE engine to normalize the log
3. C. Do the analysis directly from Amazon QuickSight.
4. D. Keep the logs in Amazon S3 and use Amazon Redshift Spectrum to normalize the logs in place.
5. E. Use Amazon Kinesis Agent on each server to upload the logs and have Amazon Kinesis Data Firehose use an AWS Lambda function to normalize the logs before writing them to Amazon.

Correct Answer: D

Your company has multiple applications running on AWS. Your company wants to develop a tool that notifies on-call teams immediately via email when an alarm is triggered in your environment. You have multiple on-call teams that work different shifts, and the tool should handle notifying the correct teams at the correct times. How should you implement this solution?

1. A. Create an Amazon SNS topic and an Amazon SQS queu
2. B. Configure the Amazon SQS queue as a subscriber to the Amazon SNS topic.Configure CloudWatch alarms to notify this topic when an alarm is triggere
3. C. Create an Amazon EC2 Auto Scaling group with both minimum and desired Instances configured to 0. Worker nodes in thisgroup spawn when messages are added to the queu
4. D. Workers then use Amazon Simple Email Service to send messages to your on call teams.
5. E. Create an Amazon SNS topic and configure your on-call team email addresses as subscriber
6. F. Use the AWS SDK tools to integrate your application with Amazon SNS and send messages to this new topi
7. G. Notifications will be sent to on-call users when a CloudWatch alarm is triggered.
8. H. Create an Amazon SNS topic and configure your on-call team email addresses as subscriber
9. I. Create a secondary Amazon SNS topic for alarms and configure your CloudWatch alarms to notify this topic when triggere
10. J. Create an HTTP subscriber to this topic that notifies your application via HTTP POST when an alarm is triggere
11. K. Use the AWS SDK tools to integrate your application with Amazon SNS and send messages to the first topic so that on-call engineers receive alerts.
12. L. Create an Amazon SNS topic for each on-call group, and configure each of these with the team member emails as subscriber
13. M. Create another Amazon SNS topic and configure your CloudWatch alarms to notify this topic when triggere
14. N. Create an HTTP subscriber to this topic that notifies your application via HTTP POST when an alarm is triggere
15. O. Use the AWS SDK tools to integrate your application with Amazon SNS and send messages to the correct team topic when on shift.

Correct Answer: D
Option D fulfils all the requirements
1) First is to create a SNS topic for each group so that the required members get the email addresses.
2) Ensure the application uses the HTTPS endpoint and the SDK to publish messages Option A is invalid because the SQS service is not required.
Option B and C are incorrect. As per the requirement we need to provide notification to only those on-call teams who are working in that particular shift when an alarm is triggered. It need not have to be send to all the on-call teams of the company. With Option B & C, since we are not configuring the SNS topic for each on call team the notifications will be send to all the on-call teams. Hence these 2 options are invalid. For more information on setting up notifications, please refer to the below document link: from AWS
http://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/US_SetupSNS.html

A company is testing a web application that runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Auto Scaling group across multiple Availability Zones. The company uses a blue/green deployment process with immutable instances when deploying new software.
During testing, users are being automatically logged out of the application at random times. Testers also report that, when a new version of the application is deployed, all users are logged out. The Development team needs a solution to ensure users remain logged in across scaling events and application deployments.
What is the MOST efficient way to ensure users remain logged in?

1. A. Enable smart sessions on the load balancer and modify the application to check for an existing session.
2. B. Enable session sharing on the load balancer and modify the application to read from the session store.
3. C. Store user session information in an Amazon S3 bucket and modify the application to read session information from the bucket.
4. D. Modify the application to store user session information in an Amazon ElastiCache cluser.

Correct Answer: D