Multiple Choice
A new zero-day vulnerability was found in OpenSSL requiring the immediate patching of a production web fleet running on Amazon Linux. Currently, OS updates are performed manually on a monthly basis and deployed using updates to the production Auto Scaling Group's launch configuration. Which method should a DevOps Engineer use to update packages in-place without downtime?
A) Use AWS CodePipline and AWS CodeBuild to generate new copies of these packages, and update the Auto Scaling group's launch configuration.
B) Use AWS Inspector to run "yum upgrade" on all running production instances, and manually update the AMI for the next maintenance window.
C) Use Amazon EC2 Run Command to issue a package update command to all running production instances, and update the AMI for future deployments.
D) Define a new AWS OpsWorks layer to match the running production instances, and use a recipe to issue a package update command to all running production instances.
Correct Answer:
Verified
Correct Answer:
Verified
Q272: You have an asynchronous processing application using
Q273: You have a web application that is
Q274: A company updated the AWS CloudFormation template
Q275: When thinking of AWS Elastic Beanstalk, the
Q276: A company used AWS CloudFormation to deploy
Q278: A company is setting up a centralized
Q279: A DevOps Engineer is researching the least-expensive
Q280: Which tool will Ansible not use, even
Q281: A company uses a complex system that
Q282: Your company develops a variety of web