ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified DevOps Engineer - Professional DOP-C02 All Questions

View all questions & answers for the AWS Certified DevOps Engineer - Professional DOP-C02 exam
Go to Exam

Exam AWS Certified DevOps Engineer - Professional DOP-C02 topic 1 question 142 discussion

Exam question from Amazon's AWS Certified DevOps Engineer - Professional DOP-C02
Question #: 142
Topic #: 1
[All AWS Certified DevOps Engineer - Professional DOP-C02 Questions]

A company manages 500 AWS accounts that are in an organization in AWS Organizations. The company discovers many unattached Amazon Elastic Block Store (Amazon EBS) volumes in all the accounts. The company wants to automatically tag the unattached EBS volumes for investigation.

A DevOps engineer needs to deploy an AWS Lambda function to all the AWS accounts. The Lambda function must run every 30 minutes to tag all the EBS volumes that have been unattached for a period of 7 days or more.

Which solution will meet these requirements in the MOST operationally efficient manner?

  • A. Configure a delegated administrator account for the organization. Create an AWS CloudFormation template that contains the Lambda function. Use CloudFormation StackSets to deploy the CloudFormation template from the delegated administrator account to all the member accounts in the organization. Create an Amazon EventBridge event bus in the delegated administrator account to invoke the Lambda function in each member account every 30 minutes.
  • B. Create a cross-account IAM role in the organization's member accounts. Attach the AWSLambda_FullAccess policy and the AWSCloudFormationFullAccess policy to the role. Create an AWS CloudFormation template that contains the Lambda function and an Amazon EventBridge scheduled rule to invoke the Lambda function every 30 minutes. Create a custom script in the organization’s management account that assumes the role and deploys the CloudFormation template to the member accounts.
  • C. Configure a delegated administrator account for the organization. Create an AWS CloudFormation template that contains the Lambda function and an Amazon EventBridge scheduled rule to invoke the Lambda function every 30 minutes. Use CloudFormation StackSets to deploy the CloudFormation template from the delegated administrator account to all the member accounts in the organization
  • D. Create a cross-account IAM role in the organization's member accounts. Attach the AmazonS3FullAccess policy and the AWSCodeDeployDeployerAccess policy to the role. Use AWS CodeDeploy to assume the role to deploy the Lambda function from the organization's management account. Configure an Amazon EventBridge scheduled rule in the member accounts to invoke the Lambda function every 30 minutes.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by vandergun at Nov. 23, 2023, 9:27 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
thanhnv142
Highly Voted 9 months, 2 weeks ago
C is correct: <The Lambda function must run every 30 minutes to tag all the EBS volumes>: we should use a combination of eventbridge and Lambda A: <. Create an Amazon EventBridge event bus in the delegated administrator account to invoke the Lambda function>: event bridge should be in each member account to monitor event, not in the delegated admin's account B and D: These options create an IAM role in every member account, which is incorrect
upvoted 5 times
...
DanShone
Most Recent 8 months, 1 week ago
Selected Answer: C
C make the most sense
upvoted 3 times
...
a54b16f
10 months, 1 week ago
Selected Answer: C
NOT A: you don't want to run it for every user accounts
upvoted 3 times
...
yuliaqwerty
10 months, 2 weeks ago
Selected Answer: C
Agree with C
upvoted 3 times
...
davdan99
10 months, 2 weeks ago
Why no A?
upvoted 2 times
...
zain1258
11 months, 4 weeks ago
Selected Answer: C
C is correct
upvoted 3 times
...
tom_cat
12 months ago
Selected Answer: C
C makes sense
upvoted 2 times
...
vandergun
12 months ago
Selected Answer: C
I vote C
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago