Cisco 300-910 DEVOPS Exam Questions Instant Access

Question 1

How long analysis systems such as Elasticsearch, Logstash, and Kibana Stack handle ingesting unstructured logs from different devices in various formats?

AAll devices that generate syslogs must use agents that process the local logs and transmit them in a specific format to the ELK Stack.

BAll logs are stored in their unstructured text format, and the ELK Stack performs data analysis by intelligently parsing the logs using machine learning algorithms.

CAll different message formats are parsed separately using custom filters, and the resulting structured data is stored for later analysis.

DA single, comprehensive log format is defined on the ELK Stack. All incoming logs, regardless of format, are transformed to match the comprehensive format, and only applicable fields are populated.

Answer : C

The ELK Stack (Elasticsearch, Logstash, and Kibana) can handle ingesting unstructured logs from various devices in different formats by running custom filters on the logs. The filters are designed to parse the log data and extract the relevant, structured information from it, which is then stored for later analysis. This allows for faster and more accurate analysis of the data, and enables more sophisticated insights to be drawn from it.

Question 2

A developer is nearing the end of a software development cycle and is ready to deploy the software. The customer wants to continue using a secure software development lifecycle methodology and must plan for postproduction components. Which two areas should be the developer address? (Choose two.)

Aperforming code reviews

Brequirement gathering

Cchange management process

Dnew code scanning

Erollback plans

Answer : A, D

Question 3

Which type of security testing should be performed as a part of a CI/CD pipeline by analyzing the source code itself without compiling the code into a running executable?

ADynamic Application Security Testing

BRuntime Application Health-Protection

CContinuous Application Security Testing

DStatic Analysis Security Testing

Answer : D

Question 4

A DevOps engineering wants to build an application implementation based on the CI/CD pipeline model. Which service should be used to provide hosted continuous service for open and private projects?

AAnsible

BpyATS

CGenie CLI

DTravis CI

Answer : D

Question 5

Which two practices help make the security of an application a more integral part of the software development lifecycle? (Choose two.)

AAdd a step to the CI/CD pipeline that runs a dynamic code analysis tool during the pipeline execution.

BAdd a step to the CI/CD pipeline that runs a static code analysis tool during the pipeline execution.

CUse only software modules that are written by the internal team.

DAdd a step to the CI/CD pipeline to modify the release plan so that updated versions of the software are made available more often.

EEnsure that the code repository server has enabled drive encryption and stores the keys on a Trusted Platform Module or Hardware Security Module.

Answer : A, B

Adding a step to the CI/CD pipeline that runs a dynamic code analysis tool and a static code analysis tool during the pipeline execution helps make the security of an application a more integral part of the software development lifecycle. Dynamic code analysis tools search for coding errors and vulnerabilities while the application is running, while static code analysis tools scan the source code for potential errors and vulnerabilities. This ensures that any security issues are identified and addressed before the application is deployed. Additionally, using automated tools helps to reduce the amount of manual effort required for security testing and can reduce the risk of security flaws being introduced.

Question 6

Which Kubernetes object is used to create a ClusterIP or NodePort?

Aservice

Bpod

Cdeployment

Dloadbalancer

Answer : A

Question 7

Which method is a safe way to provide a username/password combination to an application running as a service in a Docker container?

Aencode the value with base64 in a secure DNS CTEXT entry

Bas an environment variable in the Dockerfile

CDocker environment variable

DDocker secrets

Answer : D

a docker secret is a blob of data, such as a password, SSH private key, SSL certificate, or another piece of data that should not be transmitted over a network or stored unencrypted in a Dockerfile or in your application's source code

Cisco Implementing DevOps Solutions and Practices using Cisco Platforms 300-910 DEVOPS Exam Questions