AWS Certified DevOps Engineer Professional Exam Dumps 2023

AWS Certified DevOps Engineer Professional Practice Tests 2023. Contains 600+ exam questions to pass the exam in first attempt.

SkillCertPro offers real exam questions for practice for all major IT certifications.

• For a full set of 600+ questions. Go to

https://skillcertpro.com/product/aws-certified-devops-engineer-professional-practice-exam-tests/

• SkillCertPro offers detailed explanations to each question which helps to understand the concepts better.

• It is recommended to score above 85% in SkillCertPro exams before attempting a real exam.

• SkillCertPro updates exam questions every 2 weeks.

• You will get life time access and life time free updates  

• SkillCertPro assures 100% pass guarantee in first attempt.

Below are the free 10 sample questions.

Question 1     

You have an application which consists of EC2 instances in an Auto Scaling group.

Between a particular time frame every day, there is an increase in traffic to your website. Hence users are complaining of a poor response time on the application. You have configured your Auto Scaling group to deploy one new EC2 instance when CPU utilization is greater than 60% for 2 consecutive periods of 5 minutes. What is the least cost-effective way to resolve this problem?          

A. Decrease the consecutive number of collection periods          

B. Increase the minimum number of instances in the Auto Scaling group

C. Decrease the collection period to ten minutes 

D. Decrease the threshold CPU utilization percentage at which to deploy a new instance                          

Answer: B      

Explanation:  

If you increase the minimum number of instances, then they will be running even though the load is not high on the website. Hence you are incurring cost even though there is no need.  All of the remaining options are possible options which can be used to increase the number of instances on a high load. 

For more information on On-demand scaling, please refer to the below link:  http://docs.aws.amazon.com/autoscaling/latest/userguide/as-scale-based-on-demand.html

The correct answer is: Increase the minimum number of instances in the Auto Scaling group

Question 2     

You have decided you need to change the instance type of your instances in production which are running as part of an Autoscaling Group. You currently have 4 instances in production. You cannot have any interruption in service and need to ensure 2 instances are always running during the update. Which of the below options can be chosen for this?

A. AutoScalingRollingUpdate   

B. AutoScalingScheduledAction

C. AutoScalingReplacingUpdate  

D. AutoScalingIntegrationUpdate                                        

Answer: A      

Explanation:  

The AWS:AutoScaling::AutoScalingGroup resource supports an UpdatePolicy attribute. This is used to define how an Auto Scaling group resource is updated when an update to the CloudFormation stack occurs. A common approach to updating an Auto Scaling group is to perform a rolling update, which is done by specifying the AutoScalingRollingUpdate policy. This retains the same Auto Scaling group and replaces old instances with new ones, according to the parameters specified. 

For more information on Autoscaling updates, please refer to the below link:  https://aws.amazon.com/premiumsupport/knowledge-center/auto-scaling-group-rolling-updates/

The correct answer is: AutoScalingRollingUpdate           

Question 3     

You currently have the following setup in AWS

1) An Elastic Load Balancer

2) Autoscaling Group which launches EC Instances

3) AMIs with your code pre-installed

You want to deploy the updates to your app to only a certain number of users. You want to have a cost-effective solution. You should also be able to revert back quickly. Which of the below solutions is the most feasible one?

A. Create a second ELB, Auto Scaling. Create the AMI with the new app. Use a new launch configuration. Use Route 53 Weighted Round Robin records to adjust the proportion of traffic hitting the two ELBs.  

B. Create new AMIs with the new app. Then use the new EC2 instances in half proportion to the older instances.

C. Redeploy with AWS Elastic Beanstalk and Elastic Beanstalk versions. Use Route 53 Weighted Round Robin records to adjust the proportion of traffic hitting the two ELBs        

D. Create a full second stack of instances, cut the DNS over to the new stack of instances, and change the DNS back if a rollback is needed.                                   

Answer: A      

Explanation:  

The Weighted Routing policy of Route53 can be used to direct a proportion of traffic to your application. The best option is to create a second ELB, attach the new Autoscaling Group and then use Route53 to divert the traffic.  Option B is wrong because just having EC2 instances running with the new code will not help.  Option C is wrong because Elastic beanstalk is good for development environments, and also there is no mention of having 2 environments where environment url’s can be swapped.  Option D is wrong because you still need Route53 to split the traffic. 

For more information on Route53 routing policies, please refer to the below link:  http://docs.aws.amazon.com/Route53/latest/DeveloperGuide/routing-policy.html

The correct answer is: Create a second ELB, Auto Scaling. Create the AMI with the new app. Use a new launch configuration. Use Route 53 Weighted Round Robin records to adjust the proportion of traffic hitting the two ELBs.   

Question 4     

Your application is currently running on Amazon EC2 instances behind a load balancer. Your management has decided to use a Blue/Green deployment strategy. How should you implement this for each deployment?        

A. Set up Amazon Route 53 health checks to fail over from any Amazon EC2 instance that is currently being deployed to.    

B. Using AWS CloudFormation, create a test stack for validating the code, and then deploy the code to each production Amazon EC2 instance.

C. Create a new load balancer with new Amazon EC2 instances, carry out the deployment, and then switch DNS over to the new load balancer using Amazon Route 53 after testing.      

D. Launch more Amazon EC2 instances to ensure high availability, de-register each Amazon EC2 instance from the load balancer, upgrade it, and test it, and then register it again with the load balancer.                       

Answer: C      

Explanation:  

1) First create a new ELB which will be used to point to the new production changes. 

2) Use the Weighted Route policy for Route53 to distribute the traffic to the 2 ELB’s based on a 80-20% traffic scenario. This is the normal case, the % can be changed based on the requirement. 

3) Finally when all changes have been tested, Route53 can be set to 100% for the new ELB. 

Option A is incorrect because this is a failover scenario and cannot be used for Blue green deployments. In Blue Green deployments, you need to have 2 environments running side by side.  Option B is incorrect, because you need to a have a production stack with the changes which will run side by side.  Option D is incorrect because this is not a blue green deployment scenario. You cannot control which users will go the new EC2 instances.

For more information on blue green deployments, please refer to the below document link: from AWS https://d0.awsstatic.com/whitepapers/AWS_Blue_Green_Deployments.pdf

The correct answer is: Create a new load balancer with new Amazon EC2 instances, carry out the deployment, and then switch DNS over to the new load balancer using Amazon Route 53 after testing.

Question 5     

You have an application running a specific process that is critical to the application's functionality, and have added the health check process to your Auto Scaling group. The instances are showing healthy but the application itself is not working as it should. What could be the issue with the health check, since it is still showing the instances as healthy?  

A. You do not have the time range in the health check properly configured

B. It is not possible for a health check to monitor a process that involves the application 

C. The health check is not configured properly  

D. The health check is not checking the application process                       

Answer: D      

Explanation:  

If you have custom health checks, you can send the information from your health checks to Auto Scaling so that Auto Scaling can use this information. For example, if you determine that an instance is not functioning as expected, you can set the health status of the instance to Unhealthy. The next time that Auto Scaling performs a health check on the instance, it will determine that the instance is unhealthy and then launch a replacement instance.

For more information on Autoscaling health checks, please refer to the below document link: from AWS: http://docs.aws.amazon.com/autoscaling/latest/userguide/healthcheck.html

The correct answer is: The health check is not checking the application process     

• For a full set of 600+ questions. Go to

https://skillcertpro.com/product/aws-certified-devops-engineer-professional-practice-exam-tests/

• SkillCertPro offers detailed explanations to each question which helps to understand the concepts better.

• It is recommended to score above 85% in SkillCertPro exams before attempting a real exam.

• SkillCertPro updates exam questions every 2 weeks.

• You will get life time access and life time free updates  

• SkillCertPro assures 100% pass guarantee in first attempt.

Question 6     

You have just recently deployed an application on EC2 instances behind an ELB. After a couple of weeks, customers are complaining on receiving errors from the application. You want to diagnose the errors and are trying to get errors from the ELB access logs. But the ELB access logs are empty. What is the reason for this?

A. You do not have the appropriate permissions to access the logs          

B. You do not have your CloudWatch metrics correctly configured

C. ELB Access logs are only available for a maximum of one week.          

D. Access logging is an optional feature of Elastic Load Balancing that is disabled by default                         

Answer: D      

Explanation:  

Elastic Load Balancing provides access logs that capture detailed information about requests sent to your load balancer. Each log contains information such as the time the request was received, the client's IP address, latencies, request paths, and server responses. You can use these access logs to analyze traffic patterns and to troubleshoot issues.  Access logging is an optional feature of Elastic Load Balancing that is disabled by default. After you enable access logging for your load balancer, Elastic Load Balancing captures the logs and stores them in the Amazon S3 bucket that you specify. You can disable access logging at any time. 

For more information on ELB access logs, please refer to the below document link: from AWS: http://docs.aws.amazon.com/elasticloadbalancing/latest/classic/access-log-collection.html

The correct answer is: Access logging is an optional feature of Elastic Load Balancing that is disabled by default      

Question 7     

You have deployed an application to AWS which makes use of Autoscaling to launch new instances. You now want to change the instance type for the new instances. Which of the following is one of the action items to achieve this deployment?  

A. Use Elastic Beanstalk to deploy the new application with the new instance type 

B. Use Cloudformation to deploy the new application with the new instance type  

C. Create a new launch configuration with the new instance type 

D. Create new EC2 instances with the new instance type and attach it to the Autoscaling Group                         

Answer: C      

Explanation:  

The ideal way is to create a new launch configuration, attach it to the existing Auto Scaling group, and terminate the running instances.  Option A is invalid because Elastic beanstalk cannot launch new instances on demand. Since the current scenario requires Autoscaling , this is not the ideal option  Option B is invalid because this will be a maintenance overhead , since you just have an Autoscaling Group. There is no need to create a whole Cloudformation template for this.  Option D is invalid because Autoscaling Group will still launch EC2 instances with the older launch configuration 

For more information on Autoscaling Launch configuration, please refer to the below document link: from AWS: http://docs.aws.amazon.com/autoscaling/latest/userguide/LaunchConfiguration.html

The correct answer is: Create a new launch configuration with the new instance type 

Question 8     

Your application stores sensitive information on and EBS volume attached to your EC2 instance. How can you protect your information? Choose two answers from the options given below          

A. Unmount the EBS volume, take a snapshot and encrypt the snapshot. Re-mount the Amazon EBS volume    

B. It is not possible to encrypt an EBS volume, you must use a lifecycle policy to transfer data to S3 for encryption.        

C. Copy an unencrypted snapshot of an unencrypted volume, you can encrypt the copy. Volumes restored from this encrypted copy will also be encrypted.

D. Create and mount a new, encrypted Amazon EBS volume. Move the data to the new volume. Delete the old Amazon EBS volume                                    

Answer: C, D 

Explanation:  

These steps are given in the AWS documentation

To migrate data between encrypted and unencrypted volumes

1) Create your destination volume (encrypted or unencrypted, depending on your need).

2) Attach the destination volume to the instance that hosts the data to migrate.

3) Make the destination volume available by following the procedures in Making an Amazon EBS Volume Available for Use. For Linux instances, you can create a mount point at /mnt/destination and mount the destination volume there.

4) Copy the data from your source directory to the destination volume. It may be most convenient to use a bulk-copy utility for this.

To encrypt a volume's data by means of snapshot copying

1) Create a snapshot of your unencrypted EBS volume. This snapshot is also unencrypted.

2) Copy the snapshot while applying encryption parameters. The resulting target snapshot is encrypted.

3) Restore the encrypted snapshot to a new volume, which is also encrypted.

For more information on EBS Encryption, please refer to the below document link: from AWS

http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html

The correct answers are: Copy an unencrypted snapshot of an unencrypted volume, you can encrypt the copy. Volumes restored from this encrypted copy will also be encrypted. Create and mount a new, encrypted Amazon EBS volume. Move the data to the new volume. Delete the old Amazon EBS volume

Question 9     

Which Auto Scaling process would be helpful when testing new instances before sending traffic to them, while still keeping them in your Auto Scaling group?     

A. Suspend the process AZRebalance    

B. Suspend the process HealthCheck    

C. Suspend the process ReplaceUnhealthy         

D. Suspend the process AddToLoadBalancer                                   

Answer: D      

Explanation:  

If you suspend AddToLoadBalancer, Auto Scaling launches the instances but does not add them to the load balancer or target group. If you resume the AddToLoadBalancer process, Auto Scaling resumes adding instances to the load balancer or target group when they are launched. However, Auto Scaling does not add the instances that were launched while this process was suspended. You must register those instances manually.  Option A is invalid because this just balances the number of EC2 instances in the group across the Availability Zones in the region. Option B is invalid because this just checks the health of the instances. Auto Scaling marks an instance as unhealthy if Amazon EC2 or Elastic Load Balancing tells Auto Scaling that the instance is unhealthy.   Option C is invalid because this process just terminates instances that are marked as unhealthy and later creates new instances to replace them. 

For more information on process suspension, please refer to the below document link: from AWS: http://docs.aws.amazon.com/autoscaling/latest/userguide/as-suspend-resume-processes.html

The correct answer is: Suspend the process AddToLoadBalancer

Question 10   

You have an ELB setup in AWS with EC2 instances running behind them. You have been requested to monitor the incoming connections to the ELB. Which of the below options can suffice this requirement? 

A. Use AWS CloudTrail with your load balancer

B. Enable access logs on the load balancer        

C. Use a CloudWatch Logs Agent

D. Create a custom metric CloudWatch filter on your load balancer                                      

Answer: B      

Explanation:  

Elastic Load Balancing provides access logs that capture detailed information about requests sent to your load balancer. Each log contains information such as the time the request was received, the client's IP address, latencies, request paths, and server responses. You can use these access logs to analyze traffic patterns and to troubleshoot issues.  Option A is invalid because this service will monitor all AWS services. Option C and D are invalid since ELB already provides a logging feature. 

For more information on ELB access logs, please refer to the below document link: from AWS: http://docs.aws.amazon.com/elasticloadbalancing/latest/classic/access-log-collection.html 

The correct answer is: Enable access logs on the load balancer.

• For a full set of 600+ questions. Go to

https://skillcertpro.com/product/aws-certified-devops-engineer-professional-practice-exam-tests/

• SkillCertPro offers detailed explanations to each question which helps to understand the concepts better.

• It is recommended to score above 85% in SkillCertPro exams before attempting a real exam.

• SkillCertPro updates exam questions every 2 weeks.

• You will get life time access and life time free updates  

• SkillCertPro assures 100% pass guarantee in first attempt.