A company's CISO has asked a Solutions Architect to re-engineer the company's current CI/…

Question

A company's CISO has asked a Solutions Architect to re-engineer the company's current CI/CD practices to make sure patch deployments to its applications can happen as quickly as possible with minimal downtime if vulnerabilities are discovered. The company must also be able to quickly roll back a change in case of errors.
The web application is deployed in a fleet of Amazon EC2 instances behind an Application Load Balancer. The company is currently using GitHub to host the application source code, and has configured an AWS CodeBuild project to build the application. The company also intends to use AWS CodePipeline to trigger builds from GitHub commits using the existing CodeBuild project.
What CI/CD configuration meets all of the requirements?

Accepted Answer

Correct answer: B. B. Configure CodePipeline with a deploy stage using AWS CodeDeploy configured for blue/green deployments. Monitor the newly deployed code, and, if there are any issues, trigger a manual rollback using CodeDeploy. — The correct answer is B because blue/green deployments allow for a seamless switch between the old and new application versions, minimizing downtime and enabling quick rollbacks if issues are detected. Option A's in-place deployment does not ensure minimal downtime, as it can affect the availability of the application during updates. Option C's use of AWS CloudFormation is not focused on deployment strategies that allow for quick rollbacks, and Option D's use of AWS OpsWorks lacks the rollback and monitoring capabilities provided by CodeDeploy.

AWS Certified Solutions Architect – Professional — Question 217

Answer options

Correct answer: B

Explanation