Examtopics

AWS Certified DevOps Engineer - Professional

  • Topic 1 Question 110

    A company uses AWS CodeArtifact to centrally store Python packages. The CodeArtifact repository is configured with the following repository policy:

    A development team is building a new project in an account that is in an organization in AWS Organizations. The development team wants to use a Python library that has already been stored in the CodeArtifact repository in the organization. The development team uses AWS CodePipeline and AWS CodeBuild to build the new application. The CodeBuild job that the development team uses to build the application is configured to run in a VPC. Because of compliance requirements, the VPC has no internet connectivity.

    The development team creates the VPC endpoints for CodeArtifact and updates the CodeBuild buildspec.yaml file. However, the development team cannot download the Python library from the repository.

    Which combination of steps should a DevOps engineer take so that the development team can use CodeArtifact?

    2 つ選択

    • Create an Amazon S3 gateway endpoint. Update the route tables for the subnets that are running the CodeBuild job.

    • Update the repository policy’s Principal statement to include the ARN of the role that the CodeBuild project uses.

    • Share the CodeArtifact repository with the organization by using AWS Resource Access Manager (AWS RAM).

    • Update the role that the CodeBuild project uses so that the role has sufficient permissions to use the CodeArtifact repository.

    • Specify the account that hosts the repository as the delegated administrator for CodeArtifact in the organization.

    シャッフルモード