AWS DevOps Engineer Professional
Questions And Answers 2022
What is the names of the CodeDeploy deployment methods that are supported with
Lambda
... [Show More] functions? - Answer- LambdaAllAtOnce,
LambdaCanary10PercentXMinutes, LambdaLinear10PercentXMinutes
What are the supported sources for CodePipeline? - Answer- S3, AWS
CodeCommit, GitHub, AWS ECR, AWS CodeStar Connections
Where are AWS user credentials stored by default? - Answer- .aws/credentials
How many Elastic IP addresses can an account have by default per AWS region? -
Answer- 5
What AWS service is best suited for batch analysis of clickstream data? - AnswerEMR
What is required to allow for passing queue messages that are 1GB in size? -
Answer- Use the SQS Extended Client Library, and use S3 as a storage mechanism
for message bodies.
What are the data sources for AWS Macie? - Answer- S3 and CloudTrail
What are valid data types for files in S3 to be read by AWS QuickSight? - AnswerCSV, TSV, ELF, CLF, JSON, XLSX
How could one create an alarm that would notify people of health events in AWS? -
Answer- CloudWatch Event for AWS Health Events, and use SNS for notifications.
How do you configure CloudWatch to avoid INSUFFICIENT_DATA alarms with data
sources that send data at longer intervals? - Answer- Configure CloudWatch to treat
missing data points as "ignore".
How do you get notified when Auto Scaling Groups fail to terminate instances? -
Answer- Configure the ASG to send a notification to an SNS topic.
What are the recommended services to use for receive notfications of events related
to ASG scaling? - Answer- CloudWatch and SNS
When changing the instance type of an Auto Scaling Group, what are the required
steps? - Answer- Copy the existing launch configuration, modify the instance type,
and attach the new launch configuration to the existing ASG.
Can you modify instance types associated with existing launch configurations? -
Answer- No, you must copy the launch configuration.
To use a mixture of spot and on-demand instance types in an Auto Scaling Group,
which configuration tool should you use: Launch Configurations, or Launch
Templates? - Answer- Launch Templates. Launch Configurations do not support
mixed types.
What operating system setting is a best practice to set to enable the best network
throughput on EC2 instances? - Answer- Increasing the MTU.
What are some differences between Global and Local Secondary Indexes for
DynamoDB? - Answer- Local can only be created at time of table creation. Local
only queries a single partition. Reads against a local index consume capacity from
the base table, whereas global indexes have independent throughput allocations.
What consistency types are supported by Global Secondary Indexes on
DynamoDB? - Answer- Only Eventual Consistency is supported.
What is the maximum size of a Local Secondary Index in DynamoDB? - Answer10GB
What must be done to share an automated snapshot of an RDS database with
another account? - Answer- Copy the snapshot, which turns it into a manual one,
which can be shared with other accounts.
What AWS service is ideal for notifying downstream systems of CloudFormation
events? - Answer- SNS
What feature should be used when creating groups of AWS instances that require
close physical proximity for best performance? - Answer- Placement Groups
You have an application that will allow users to upload photos to S3. What service
should be used for authentication from various social network providers (Facebook,
Google, etc) that will also allow for token based access to underlying AWS
resources, such as S3? - Answer- Cognito using web identity federation.
How can you specify a snapshot to be used when creating a new RDS database via
CloudFormation? - Answer- Specify the DBSnapshotIdentifier property.
What service is used to synchronize an existing Microsoft Active Directory
installation with AWS IAM identities? - Answer- AWS Directory Service AD
Connector
What services are supported for CloudFormation Custom Resource Types? -
Answer- SNS and Lambda
What extension must configuration files for Elastic Beanstalk extensions use? -
Answer- .config
What folder must configuration files for Elastic Beanstalk be placed in? - Answer-
.ebextensions
What is required to allow IAM users in another AWS account to access an S3 bucket
in your account? - Answer- Create a cross account IAM Role and grant permission to
the third party AWS account to use the role.
(https://aws.amazon.com/premiumsupport/knowledge-center/cross-account-accesss3/)
What two items are required to allow AWS Inspector to run on EC2 instances? -
Answer- The AWS Systems Manager agent must be installed, and the EC2
instances must have a role that allows the SSM Run Command privilege.
.............. [Show Less]