Amazon AWS

AWS Certified DevOps Engineer – Professional

DOP-C02
Popular

The AWS Certified DevOps Engineer – Professional (DOP-C02) exam validates your skills in automating the testing and deployment of AWS applications. It is ideal for those looking to advance their DevOps career.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 11–20 of 483

Q11

A company needs to deploy containers and manage their scaling and availability. Which AWS service should they use?

  • A AWS Elastic Beanstalk
  • B Amazon EC2
  • C Amazon EKS
  • D AWS Lambda
Explanation Amazon EKS is focused on Kubernetes workloads, while the others may not manage container scaling and orchestration as effectively.
Q12

What happens when an IAM user tries to access a resource they do not have permissions for?

  • A Access is granted by default
  • B Access is denied
  • C Access is logged
  • D User is notified via email
Explanation IAM follows a deny-by-default security model, so access is denied unless expressly permitted.
Q13

Which AWS service is used for continuous integration and continuous delivery (CI/CD)?

  • A AWS CodePipeline
  • B AWS Batch
  • C AWS Glue
  • D AWS EC2
Explanation AWS CodePipeline is specifically designed for CI/CD workflows, while the others serve different purposes.
Q14

A company needs to automate the deployment of its applications across multiple AWS accounts. Which service should it use?

  • A AWS OpsWorks
  • B AWS Organizations
  • C AWS CloudFormation
  • D AWS Config
Explanation AWS CloudFormation allows you to automate deployments across multiple accounts using templates, while others do not support this functionality.
Q15

You are configuring a target group for an Application Load Balancer. What happens if you add an instance in an unhealthy state to the target group?

  • A Traffic will be redirected to it.
  • B It automatically becomes healthy.
  • C It will not receive traffic.
  • D It triggers a health check failure.
Explanation Instances in an unhealthy state do not receive traffic until their health improves, while other options misrepresent ALB behavior.
Q16

Which service allows for automated infrastructure provisioning in AWS?

  • A AWS CloudFormation
  • B AWS Lambda
  • C Amazon EC2
  • D Amazon S3
Explanation AWS CloudFormation is designed for automated infrastructure provisioning, while the others serve different purposes.
Q17

A company needs to manage incoming application traffic effectively. Which service should they use?

  • A AWS Elastic Load Balancing
  • B Amazon CloudFront
  • C AWS Direct Connect
  • D AWS AppSync
Explanation AWS Elastic Load Balancing manages application traffic, while the others serve different networking purposes.
Q18

You are configuring IAM policies. What happens when a policy denies a specific action?

  • A Action is always blocked.
  • B Action is allowed if another policy permits.
  • C Action is allowed against all principals.
  • D Action will be logged only.
Explanation An explicit deny in IAM policies overrides any allows, while the other options incorrectly depict IAM behavior.
Q19

Which service allows you to automate AWS resource deployments?

  • A AWS CloudFormation
  • B AWS Service Catalog
  • C AWS Config
  • D AWS CloudTrail
Explanation AWS CloudFormation enables automated and repeatable infrastructure deployments, while others focus on governance or monitoring.
Q20

A company needs to improve CI/CD pipeline security. What should they implement to control access to pipelines?

  • A AWS IAM Roles
  • B AWS WAF
  • C AWS CloudWatch
  • D AWS CodeCommit
Explanation AWS IAM Roles are specifically designed to manage secure access, while others do not directly manage access controls.