A company wants to migrate a legacy application to AWS and develop a deployment pipeline that uses AWS services only. A DevOps engineer is migrating all of the application code from a Git repository to AWS CodeCommit while preserving the history of the repository. The DevOps engineer has set all the permissions within CodeCommit, installed the Git client and the AWS CLI on a local computer, and is ready to migrate the repository.
Which actions will follow?

1. A. Create the CodeCommit repository using the AWS CL
2. B. Clone the Git repository directly to CodeCommit using the AWS CL
3. C. Validate that the files were migrated, and publish the CodeCommit repository.
4. D. Create the CodeCommit repository using the AWS Management Consol
5. E. Clone both the Git and CodeCommit repositories to the local compute
6. F. Copy the files from the Git repository to the CodeCommit repository on the local compute
7. G. Commit the CodeCommit repertor
8. H. Validate that the files were migrated, and share the CodeCommit repository.
9. I. Create the CodeCommit repository using the AWS Management Consol
10. J. Use the console to clone the Git repository into the CodeCommit repositor
11. K. Validate that the files were migrated, and publish the CodeCommit repository.
12. L. Create the CodeCommit repository using the AWS Management Console or the AWS CL
13. M. Clone the Git repository with a mirror argument to the local computer and push the repository to CodeCommi
14. N. Validate that the files were migrated, and share the CodeCommit repository.

Correct Answer: D

A Development team uses AWS CodeCommit for source code control. Developers apply their changes to various feature branches and create pull requests to move those changes to the master branch when they are ready for production. A direct push to the master branch should not be allowed. The team applied the AWS managed policy AWSCodeCommitPowerUser to the Developers' IAM Rote, but now members are able to push to the master branch directly on every repository in the AWS account.
What actions should be taken to restrict this?

1. A. Create an additional policy to include a deny rule for the codecommit:GitPush action, and include arestriction for the specific repositories in the resource statement with a condition for the master reference.
2. B. Remove the IAM policy and add an AWSCodeCommitReadOnly polic
3. C. Add an allow rule for the codecommit:GitPush action for the specific repositories in the resource statement with a condition for the master reference.
4. D. Modify the IAM policy and include a deny rule for the codecommit:GitPush action for the specific repositories in the resource statement with a condition for the master reference.
5. E. Create an additional policy to include an allow rule for the codecommit:GitPush action and include a restriction for the specific repositories in the resource statement with a condition for the feature branches reference.

Correct Answer: A
https://aws.amazon.com/pt/blogs/devops/refining-access-to-branches-in-aws-codecommit/

A DevOps Engineer is launching a new application that will be deployed using Amazon Route 53, an Application Load Balancer, Auto Scaling, and Amazon
DynamoDB. One of the key requirements of this launch is that the application must be able to scale to meet a sudden load increase. During periods of low usage, the infrastructure components must scale down to optimize cost.
What steps can the DevOps Engineer take to meet the requirements? (Select TWO.)

1. A. Use AWS Trusted Advisor to submit limit increase requests for the Amazon EC2 instances that will be used by the infrastructure.
2. B. Determine which Amazon EC2 instance limits need to be raised by leveraging AWS Trusted Advisor, and submit a request to AWS Support to increase those limits.
3. C. Enable Auto Scaling for the DynamoDB tables that are used by the application.
4. D. Configure the Application Load Balancer to automatically adjust the target group based on the current load.
5. E. Create an Amazon CloudWatch Events scheduled rule that runs every 5 minutes to track the current use of the Auto Scaling grou
6. F. If usage has changed, trigger a scale-up event to adjust the capacit
7. G. Do the same for DynamoDB read and write capacities.

Correct Answer: BC

An application is being deployed with two Amazon EC2 Auto Scaling groups, each configured with an Application Load Balancer. The application is deployed to one of the Auto Scaling groups and an Amazon Route 53 alias record is pointed to the Application Load Balancer of the last deployed Auto Scaling group.
Deployments alternate between the two Auto Scaling groups.
Home security devices are making requests into the application. The Development team notes that new requests are coming into the old stack days after the deployment. The issue is caused by devices that are not observing the Time to Live (TTL) setting on the Amazon Route 53 alias record.
What steps should the DevOps Engineer take to address the issue with requests coming to the old stacks, while creating minimal additional resources?

1. A. Create a fleet of Amazon EC2 instances running HAProxy behind an Application Load Balance
2. B. The HAProxy instances will proxy the requests to one of the existing Auto Scaling group
3. C. After a deployment the HAProxy instances are updated to send requests to the newly deployed Auto Scaling group.
4. D. Reduce the application to one Application Load Balance
5. E. Create two target groups named Blue and Gree
6. F. Create a rule on the Application Load Balancer pointed to a single target grou
7. G. Add logic to the deployment to update the Application Load Balancer rule to the target group of the newly deployed Auto Scaling group.
8. H. Move the application to an AWS Elastic Beanstalk application with two environment
9. I. Perform new deployments on the non-live environmen
10. J. After a deployment, perform an Elastic Beanstalk CNAME swap to make the newly deployed environment the live environment.
11. K. Create an Amazon CloudFront distributio
12. L. Set the two existing Application Load Balancers as origins on the distributio
13. M. After a deployment, update the CloudFront distribution behavior to send requests to the newly deployed Auto Scaling group.

Correct Answer: B

A company has developed an AWS Lambda function that handles orders received through an API. The company is using AWS CodeDeploy to deploy the Lambda function as the final stage of a CI/CD pipeline. A DevOps Engineer has notices there are intermittent failures of the ordering API for a few seconds after deployment. After some investigation, the DevOps Engineer believes the failures are due to database changes the CloudFormation stack for the application
lambda function begins executing. How should the DevOps Engineer overcome this?

1. A. Add a BeforeAllowTraffic hook to the AppSpec file that tests and waits for any necessary database changes before traffic can flow to the new version of the Lambda function
2. B. Add an AfterAllowTraffic hook to the AppSpec file that forces traffic to wait for any pending database changes before allowing the new version of the Lambda function to respond
3. C. Add a BeforeInstall hook to the AppSpec file that tests and waits for any necessary database changes before deploying the new version of the Lambda function
4. D. Add a ValidateService hook to the AppSpec file that inspects incoming traffic and rejects the payload if dependent services such as the database are not yet ready

Correct Answer: B