DOP-C02 Free Practice Test

A company is testing a web application that runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Auto Scaling group across multiple Availability Zones. The company uses a blue green deployment process with immutable instances when deploying new software.
During testing users are being automatically logged out of the application at random times. Testers also report that when a new version of the application is deployed all users are logged out. The development team needs a solution to ensure users remain logged m across scaling events and application deployments.
What is the MOST operationally efficient way to ensure users remain logged in?

1. A. Enable smart sessions on the load balancer and modify the application to check tor an existing session.
2. B. Enable session sharing on the toad balancer and modify the application to read from the session store.
3. C. Store user session information in an Amazon S3 bucket and modify the application to read session information from the bucket.
4. D. Modify the application to store user session information in an Amazon ElastiCache cluster.

Correct Answer: D
https://aws.amazon.com/caching/session-management/

A company wants to use a grid system for a proprietary enterprise m-memory data store on top of AWS. This system can run in multiple server nodes in any Linux-based distribution. The system must be able to reconfigure the entire cluster every time a node is added or removed. When adding or removing nodes an /etc./cluster/nodes config file must be updated listing the IP addresses of the current node members of that cluster.
The company wants to automate the task of adding new nodes to a cluster. What can a DevOps engineer do to meet these requirements?

1. A. Use AWS OpsWorks Stacks to layer the server nodes of that cluste
2. B. Create a Chef recipe that populates the content of the 'etc./cluster/nodes config file and restarts the service by using the current members of the laye
3. C. Assign that recipe to the Configure lifecycle event.
4. D. Put the file nodes config in version contro
5. E. Create an AWS CodeDeploy deployment configuration and deployment group based on an Amazon EC2 tag value for thecluster node
6. F. When adding a new node to the cluster update the file with all tagged instances and make a commit in version contro
7. G. Deploy the new file and restart the services.
8. H. Create an Amazon S3 bucket and upload a version of the /etc./cluster/nodes config file Create a crontab script that will poll for that S3 file and download it frequentl
9. I. Use a process manager such as Monit or system, to restart the cluster services when it detects that the new file was modifie
10. J. When adding a node to the cluster edit the file's most recent members Upload the new file to the S3 bucket.
11. K. Create a user data script that lists all members of the current security group of the cluster and automatically updates the /etc/cluster/. nodes confi
12. L. Tile whenever a new instance is added to the cluster.

Correct Answer: A
You can run custom recipes manually, but the best approach is usually to have AWS OpsWorks Stacks run them automatically. Every layer has a set of built-in recipes assigned each of five lifecycle events—Setup, Configure, Deploy, Undeploy, and Shutdown. Each time an event occurs for an instance, AWS OpsWorks Stacks runs the associated recipes for each of the instance's layers, which handle the corresponding tasks. For example, when an instance finishes booting, AWS OpsWorks Stacks triggers a Setup event. This event runs the associated layer's Setup recipes, which typically handle tasks such as installing and configuring packages

A company manages an application that stores logs in Amazon CloudWatch Logs. The company wants to archive the logs to an Amazon S3 bucket Logs are rarely accessed after 90 days and must be retained tor 10 years.
Which combination of steps should a DevOps engineer take to meet these requirements? (Select TWO.)

1. A. Configure a CloudWatch Logs subscription filter to use AWS Glue to transfer all logs to an S3 bucket.
2. B. Configure a CloudWatch Logs subscription filter to use Amazon Kinesis Data Firehose to stream all logs to an S3 bucket.
3. C. Configure a CloudWatch Logs subscription fitter to stream all logs to an S3 bucket.
4. D. Configure the S3 bucket lifecycle policy to transition logs to S3 Glacier after 90 days and to expire logs after 3.650 days.
5. E. Configure the S3 bucket lifecycle policy to transition logs to Reduced Redundancy after 90 days and to expire logs after 3.650 days.

Correct Answer: BD
https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/SubscriptionFilters.html

A development team uses AWS CodeCommit, AWS CodePipeline, and AWS CodeBuild to develop and deploy an application. Changes to the code are submitted by pull requests. The development team reviews and merges the pull requests, and then the pipeline builds
and tests the application.
Over time, the number of pull requests has increased. The pipeline is frequently blocked because of failing tests. To prevent this blockage, the development team wants to run the unit and integration tests on each pull request before it is merged.
Which solution will meet these requirements?

1. A. Create a CodeBuild project to run the unit and integration test
2. B. Create a CodeCommit approval rule templat
3. C. Configure the template to require the successful invocation of the CodeBuild projec
4. D. Attach the approval rule to the project's CodeCommit repository.
5. E. Create an Amazon EventBridge rule to match pullRequestCreated events from CodeCommit Create a CodeBuild project to run the unit and integration test
6. F. Configure the CodeBuild project as a target of the EventBridge rule that includes a custom event payload with the CodeCommit repository and branch information from the event.
7. G. Create an Amazon EventBridge rule to match pullRequestCreated events from CodeCommi
8. H. Modify the existing CodePipeline pipeline to not run the deploy steps if the build is started from a pull reques
9. I. Configure the EventBridge rule to run the pipeline with a custom payload that contains the CodeCommit repository and branch information from the event.
10. J. Create a CodeBuild project to run the unit and integration test
11. K. Create a CodeCommit notification rule that matches when a pull request is created or update
12. L. Configure the notification rule to invoke the CodeBuild project.

Correct Answer: B
CodeCommit generates events in CloudWatch, CloudWatch triggers the CodeBuild https://aws.amazon.com/es/blogs/devops/complete-ci-cd-with-aws-codecommit-aws-codebuild-aws-codedeploy-and-aws-codepipeline/

A company is adopting AWS CodeDeploy to automate its application deployments for a Java-Apache Tomcat application with an Apache Webserver. The development team started with a proof of concept, created a deployment group for a developer environment, and performed functional tests within the application. After completion, the team will create additional deployment groups for staging and production.
The current log level is configured within the Apache settings, but the team wants to change this configuration dynamically when the deployment occurs, so that they can set different log level configurations depending on the deployment group without having a different application revision for each group.
How can these requirements be met with the LEAST management overhead and without requiring different script versions for each deployment group?

1. A. Tag the Amazon EC2 instances depending on the deployment grou
2. B. Then place ascript into the application revision that calls the metadata service and the EC2 API to identify which deployment group the instance is part o
3. C. Use this information to configure the log level setting
4. D. Reference the script as part of the AfterInstall lifecycle hook in the appspec.yml file.
5. E. Create a script that uses the CodeDeploy environment variable DEPLOYMENT_GROUP_ NAME to identify which deployment group the instance is part o
6. F. Use this information to configure the log level setting
7. G. Reference this script as part of the BeforeInstall lifecycle hook in the appspec.yml file.
8. H. Create a CodeDeploy custom environment variable for each environmen
9. I. Then place a script into the application revision that checks this environment variable to identify which deployment group the instance is part o
10. J. Use this information to configure the log level setting
11. K. Reference this script as part of the ValidateService lifecycle hook in the appspec.yml file.
12. L. Create a script that uses the CodeDeploy environment variable DEPLOYMENT_GROUP_ID to identify which deployment group the instance is part of to configure the log level setting
13. M. Reference this script as part of the Install lifecycle hook in the appspec.yml file.

Correct Answer: B
The following are the steps that the company can take to change the log level dynamically when the deployment occurs:
✑ Create a script that uses the CodeDeploy environment variable DEPLOYMENT_GROUP_NAME to identify which deployment group the instance is part of.
✑ Use this information to configure the log level settings.
✑ Reference this script as part of the BeforeInstall lifecycle hook in the appspec.yml file.
The DEPLOYMENT_GROUP_NAME environment variable is automatically set by CodeDeploy when the deployment is triggered. This means that the script does not need to call the metadata service or the EC2 API to identify the deployment group.
This solution is the least complex and requires the least management overhead. It also does not require different script versions for each deployment group.
The following are the reasons why the other options are not correct:
✑ Option A is incorrect because it would require tagging the Amazon EC2 instances, which would be a manual and time-consuming process.
✑ Option C is incorrect because it would require creating a custom environment variable for each environment. This would be a complex and error-prone process.
✑ Option D is incorrect because it would use
the DEPLOYMENT_GROUP_ID environment variable. However, this variable is not automatically set by CodeDeploy, so the script would need to call the metadata service or the EC2 API to get the deployment group ID. This would add complexity and overhead to the solution.