ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified DevOps Engineer - Professional DOP-C02 All Questions

View all questions & answers for the AWS Certified DevOps Engineer - Professional DOP-C02 exam
Go to Exam

Exam AWS Certified DevOps Engineer - Professional DOP-C02 topic 1 question 333 discussion

Exam question from Amazon's AWS Certified DevOps Engineer - Professional DOP-C02
Question #: 333
Topic #: 1
[All AWS Certified DevOps Engineer - Professional DOP-C02 Questions]

A company that uses electronic patient health records runs a fleet of Amazon EC2 instances with an Amazon Linux operating system. The company must continuously ensure that the EC2 instances are running operating system patches and application patches that are in compliance with current privacy regulations. The company uses a custom repository to store application patches.

A DevOps engineer needs to automate the deployment of operating system patches and application patches. The DevOps engineer wants to use both the default operating system patch repository and the custom patch repository.

Which solution will meet these requirements with the LEAST effort?

  • A. Use AWS Systems Manager to create a new custom patch baseline that includes the default operating system repository and the custom repository. Run the AWS-RunPatchBaseline document by using the Run command to verify and install patches. Use the BaselineOverride API to configure the new custom patch baseline.
  • B. Use AWS Direct Connect to integrate the custom repository with the EC2 instances. Use Amazon EventBridge events to deploy the patches.
  • C. Use the yum-config-manager command to add the custom repository to the /etc/yum.repos.d configuration. Run the yum-config-manager-enable command to activate the new repository.
  • D. Use AWS Systems Manager to create a patch baseline for the default operating system repository and a second patch baseline for the custom repository. Run the AWS-RunPatchBaseline document by using the Run command to verify and install patches. Use the BaselineOverride API to configure the default patch baseline and the custom patch baseline.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by phu0298 at Nov. 22, 2024, 9:50 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
phu0298
Highly Voted 5 months, 1 week ago
A Why Not Option D? Two Separate Patch Baselines: Creating and managing two separate patch baselines (one for OS patches and one for the custom repository) increases complexity. Running AWS-RunPatchBaseline twice (once for each baseline) adds unnecessary operational overhead.
upvoted 6 times
...
Srikantha
Most Recent 3 weeks, 6 days ago
Selected Answer: A
D. Systems Manager does not support using two separate patch baselines at once. You must define a single patch baseline that includes all patch sources.
upvoted 2 times
...
Srikantha
3 weeks, 6 days ago
Selected Answer: A
To automate patching while using both the default OS patch repo and a custom app patch repo, the most efficient and scalable solution is to: Use AWS Systems Manager Patch Manager, which supports: Custom patch baselines Combining default repositories with custom ones Centralized, automated patch management Create a custom patch baseline that: Includes the Amazon Linux OS patching rules Defines custom sources (your custom app patch repository) Use AWS-RunPatchBaseline SSM document to apply patches. Optionally, use the BaselineOverride parameter if you want to temporarily apply a different baseline (e.g., for testing).
upvoted 2 times
...
f4b18ba
5 months, 1 week ago
Selected Answer: A
AWS Systems Manager allows you to create a custom patch baseline that includes both the default operating system repository and the custom repository. This centralizes the management of patch baselines. The AWS-RunPatchBaseline document can be run using the Systems Manager Run Command to automate the verification and installation of patches, ensuring compliance with current privacy regulations. Using the BaselineOverride API provides flexibility to override the default settings with a custom patch baseline, streamlining the patching process across all EC2 instances.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago