DOP-C02 Exam Dumps : AWS Certified DevOps Engineer - Professional

For a specified stack that is in the UPDATE_ROLLBACK_FAILED state, continues rolling it back to the UPDATE_ROLLBACK_COMPLETE state. Depending on the cause of the failure, you can manually fix the error and continue the rollback. By continuing the rollback, you can return your stack to a working state (the UPDATE_ROLLBACK_COMPLETE state), and then try to update the stack again.

AWS CodeArtifact is a fully managed artifact repository service that supports popular package formats and can proxy downstream public repositories securely. It integrates seamlessly with both AWS Cloud and on-premises environments and stores artifacts in highly durable object storage (Amazon S3). CodeArtifact encrypts data at rest and in transit by default.

Because there is currently no routing between the on-premises data center and AWS, establishing a third-party software VPN appliance for connectivity provides secure communication without requiring complex AWS Direct Connect or multiple VPN setups.

This solution can be deployed quickly (within two weeks), is highly available, and meets encryption requirements. Using CodeArtifact eliminates the need to maintain third-party artifact servers, reducing operational overhead and improving reliability.

Options B, C, and D introduce higher complexity with AWS Direct Connect or multiple VPN connections and third-party software that increases deployment time and operational burden, which is against the requirement for rapid deployment and high operational efficiency.

Reference from AWS Official Documentation:

AWS CodeArtifact Overview: " CodeArtifact is a fully managed artifact repository service that makes it easy for organizations to securely store, publish, and share software packages used in their software development process. " (AWS CodeArtifact Documentation)

Encryption in AWS CodeArtifact: " CodeArtifact encrypts data at rest and in transit by default. " (AWS CodeArtifact Security)

VPN Appliance Deployment: " Software VPN appliances are commonly used for secure, encrypted connectivity between on-premises data centers and AWS. " (AWS VPN Options)

Step 1: Understanding the Deletion FailureThe most likely reason why the CloudFormation stack failed to delete is that the S3 bucket was not empty. AWS CloudFormation cannot delete an S3 bucket that contains objects, so if the website files are still in the bucket, the deletion will fail.

Issue: The S3 bucket is not empty during deletion, preventing the stack from being deleted.

Step 2: Modifying the Custom Resource to Handle DeletionTo mitigate this issue, you can modify the Lambda function associated with the custom resource to automatically empty the S3 bucket when the stack is being deleted. By adding logic to handle the RequestType: Delete event, the function can recursively delete all objects in the bucket before allowing the stack to be deleted.

Action: Modify the Lambda function to recursively delete the objects in the S3 bucket when RequestType is set to Delete.

Why: This ensures that the S3 bucket is empty before CloudFormation tries to delete it, preventing the stack deletion failure.