ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified DevOps Engineer - Professional DOP-C02 All Questions

View all questions & answers for the AWS Certified DevOps Engineer - Professional DOP-C02 exam
Go to Exam

Exam AWS Certified DevOps Engineer - Professional DOP-C02 topic 1 question 181 discussion

Exam question from Amazon's AWS Certified DevOps Engineer - Professional DOP-C02
Question #: 181
Topic #: 1
[All AWS Certified DevOps Engineer - Professional DOP-C02 Questions]

A company requires its internal business teams to launch resources through pre-approved AWS CloudFormation templates only. The security team requires automated monitoring when resources drift from their expected state.

Which strategy should be used to meet these requirements?

  • A. Allow users to deploy CloudFormation stacks using a CloudFormation service role only. Use CloudFormation drift detection to detect when resources have drifted from their expected state.
  • B. Allow users to deploy CloudFormation stacks using a CloudFormation service role only. Use AWS Config rules to detect when resources have drifted from their expected state.
  • C. Allow users to deploy CloudFormation stacks using AWS Service Catalog only. Enforce the use of a launch constraint. Use AWS Config rules to detect when resources have drifted from their expected state.
  • D. Allow users to deploy CloudFormation stacks using AWS Service Catalog only. Enforce the use of a template constraint. Use Amazon EventBridge notifications to detect when resources have drifted from their expected state.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by csG13 at Dec. 29, 2023, 7:57 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Jordarlu
6 months, 3 weeks ago
Selected Answer: C
In the Option A, Drift detection must be run manually or scheduled, which doesn't fully meet the requirement for "automated monitoring."
upvoted 2 times
...
jamesf
9 months ago
Selected Answer: C
Keypoint: AWS Config for drift detection
upvoted 1 times
...
c3518fc
1 year ago
Selected Answer: C
Checks if the actual configuration of a AWS CloudFormation (AWS CloudFormation) stack differs, or has drifted, from the expected configuration. A stack is considered to have drifted if one or more of its resources differ from their expected configuration. https://docs.aws.amazon.com/config/latest/developerguide/cloudformation-stack-drift-detection-check.html
upvoted 3 times
...
dkp
1 year ago
Selected Answer: C
anwer c
upvoted 2 times
...
DanShone
1 year, 1 month ago
Selected Answer: C
C - Service Catalog + AWS Config
upvoted 3 times
...
thanhnv142
1 year, 2 months ago
Selected Answer: C
C is correct: <pre-approved AWS CloudFormation templates only> means we need service catalog A and B: < Allow users to deploy CloudFormation stacks using a CloudFormation service role only>: With service role, users can modify anything in the template D: Eventbridge cannot detect drift
upvoted 3 times
...
twogyt
1 year, 3 months ago
Selected Answer: C
Use config for drift detection
upvoted 2 times
...
a54b16f
1 year, 3 months ago
Selected Answer: C
Config for drift detection
upvoted 3 times
...
d262e67
1 year, 3 months ago
Selected Answer: C
You can use AWS Managed Config cloudformation-stack-drift-detection-check rule to evaluate drift in CloudFormation stacks. https://docs.aws.amazon.com/config/latest/developerguide/cloudformation-stack-drift-detection-check.html
upvoted 4 times
...
PrasannaBalaji
1 year, 3 months ago
Selected Answer: C
C is correct
upvoted 1 times
...
csG13
1 year, 4 months ago
Selected Answer: C
it's C
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago