ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified DevOps Engineer - Professional DOP-C02 All Questions

View all questions & answers for the AWS Certified DevOps Engineer - Professional DOP-C02 exam
Go to Exam

Exam AWS Certified DevOps Engineer - Professional DOP-C02 topic 1 question 350 discussion

Exam question from Amazon's AWS Certified DevOps Engineer - Professional DOP-C02
Question #: 350
Topic #: 1
[All AWS Certified DevOps Engineer - Professional DOP-C02 Questions]

A video platform company is migrating its video catalog to AWS. The company will host MP4 videos files in an Amazon S3 bucket. The company will use Amazon CloudFront and Amazon EC2 instances to serve the video files.

Users first connect to a frontend application that redirects to a video URL. The video URL contains an authorization token in CloudFront. The cache is activated on the CloudFront distribution. Authorization token check activity needs to be logged in Amazon CloudWatch.

The company wants to prevent direct access to video files on CloudFront and Amazon S3 and wants to implement checks of the authorization token that the frontend application provides. The company also wants to perform regular rolling updates of the code that checks the authorization token signature.

Which solution will meet these requirements with the LEAST operational effort?

  • A. Implement an authorization token check in Lambda@Edge as a trigger on the CloudFront distribution. Enable CloudWatch logging for the Lambda@Edge function. Attach the Lambda@Edge function to the CloudFront distribution. Implement CloudFront continuous deployment to perform updates.
  • B. Implement an authorization token check in CloudFront Functions. Enable CloudWatch logging for the CloudFront function. Attach the CloudFront function to the CloudFront distribution. Implement CloudFront continuous deployment to perform updates.
  • C. Implement an authorization token check in the application code that is installed on the EC2 instances. Install the CloudWatch agent on the EC2 instances. Configure the application to log to the CloudWatch agent. Implement a second CloudFront distribution. Migrate the traffic from the first CloudFront distribution by using Amazon Route 53 weighted routing.
  • D. Implement an authorization token check in CloudFront Functions. Enable CloudWatch logging for the CloudFront function. Attach the CloudFront function to the CloudFront distribution. Implement a second CloudFront distribution. Migrate the traffic from the first CloudFront distribution by using Amazon Route 53 weighted routing.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by uncledana at Nov. 19, 2024, 11:35 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
GripZA
5 days, 14 hours ago
Selected Answer: B
CloudFront Functions over Lambda@Edge here since its integrated directly with CloudFront and CloudFront continuous deployment.
upvoted 1 times
...
Srikantha
3 weeks ago
Selected Answer: B
Option B is the most efficient and operationally effective solution. It uses CloudFront Functions to check the authorization token directly at the edge, minimizing latency, and integrates seamlessly with CloudWatch for logging. Additionally, CloudFront continuous deployment simplifies updates, making it the optimal solution for the company’s requirements.
upvoted 1 times
...
matt200
3 months, 4 weeks ago
Selected Answer: A
Option A is correct. Here's why: Lambda@Edge: Perfect for token authorization checks Supports CloudWatch logging Can handle complex validation logic Built for CloudFront integration Rolling updates via continuous deployment
upvoted 1 times
...
f4b18ba
5 months ago
Selected Answer: B
CloudFront Functions is a lightweight JavaScript-based environment that runs at the edge and is designed for high performance with low latency. It's ideal for simple tasks like authorization checks. Enabling CloudWatch logging for CloudFront Functions ensures that the authorization token check activities are logged, providing visibility into the process. Implementing CloudFront continuous deployment simplifies the process of rolling updates for the function, ensuring that new code can be deployed quickly and seamlessly.
upvoted 3 times
...
uncledana
5 months, 1 week ago
Selected Answer: B
Option B provides the most efficient solution with the least operational overhead. It uses CloudFront Functions for token validation, enables CloudWatch logging, and supports continuous deployment for easy updates, meeting the company’s requirements in a scalable and cost-effective manner.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago