Amazon AWS

AWS Certified DevOps Engineer – Professional

DOP-C02
Popular

The AWS Certified DevOps Engineer – Professional (DOP-C02) exam validates your skills in automating the testing and deployment of AWS applications. It is ideal for those looking to advance their DevOps career.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 151–160 of 483

Q151

Which service provides automated serverless event-driven compute?

  • A AWS Lambda
  • B Amazon EC2
  • C Amazon ECS
  • D AWS Elastic Beanstalk
Explanation AWS Lambda is designed for serverless event-driven functions, while the others are not serverless solutions.
Q152

A company needs to run a Blue/Green deployment with minimal downtime. What is a key benefit of using Elastic Load Balancing in this scenario?

  • A Reduces infrastructure costs
  • B Automates instance backups
  • C Facilitates traffic shifting
  • D Enforces compliance policies
Explanation Elastic Load Balancing simplifies traffic switching between application versions during deployment.
Q153

You are configuring IAM policies and need to ensure that an S3 bucket's access is limited only to specified AWS accounts. What condition type should you use in your policy?

  • A StringEquals
  • B StringLike
  • C Null
  • D NumericEquals
Explanation The StringEquals condition allows you to specify exact matching, suitable for account IDs.
Q154

Which AWS service helps optimize cost by tracking resource usage?

  • A AWS Cost Explorer
  • B AWS CloudFormation
  • C AWS CodeDeploy
  • D AWS CloudTrail
Explanation AWS Cost Explorer allows users to visualize and manage AWS costs, while the others serve different purposes like deployment and resource management.
Q155

A company needs to deploy applications in multiple regions for disaster recovery. What AWS service can automatically replicate resources?

  • A AWS Lambda
  • B AWS CloudFormation
  • C AWS Backup
  • D AWS Global Accelerator
Explanation AWS Backup automates backups across regions, while the others do not focus on cross-region replication.
Q156

You are configuring an EC2 instance with an IAM role. What happens when the EC2 instance accesses an S3 bucket?

  • A No access if IAM role is missing.
  • B Access will always be denied.
  • C Access depends on the IAM bucket policy.
  • D Instance access is based on security groups.
Explanation Access depends on both IAM role permissions and S3 bucket policies, while the other options misunderstand the access methods.
Q157

Which service can automate security assessments of applications?

  • A AWS Inspector
  • B Amazon CloudFront
  • C AWS Lambda
  • D Amazon RDS
Explanation AWS Inspector automates security assessments, ensuring vulnerabilities are identified effectively. Options B, C, and D do not focus on security assessments.
Q158

A company needs to migrate a large amount of data to AWS. Which approach is the most efficient?

  • A AWS Snowball
  • B Direct Connect
  • C S3 Transfer Acceleration
  • D EC2 File Storage
Explanation AWS Snowball is ideal for transferring large data sets efficiently. The other options do not provide the same physical data transfer capability.
Q159

You are configuring a VPC with a NAT gateway. What happens if the NAT gateway goes down?

  • A No internet access for private subnets
  • B All resources still have internet access
  • C VPC automatically recreates the gateway
  • D Public subnets lose connectivity
Explanation If the NAT gateway goes down, instances in private subnets lose internet access. Options B, C, and D misrepresent NAT gateway functionality during downtimes.
Q160

Which service is best for orchestration of microservices?

  • A Amazon ECS
  • B AWS Lambda
  • C Amazon S3
  • D AWS Direct Connect
Explanation Amazon ECS is specifically designed for container orchestration, unlike the others which serve different purposes.