Amazon AWS

AWS Certified DevOps Engineer – Professional

DOP-C02
Popular

The AWS Certified DevOps Engineer – Professional (DOP-C02) exam validates your skills in automating the testing and deployment of AWS applications. It is ideal for those looking to advance their DevOps career.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 251–260 of 483

Q251

A company needs to manage access to AWS resources securely using roles. What should they use?

  • A IAM Policies
  • B AWS Organizations
  • C Service Control Policies
  • D IAM Roles
Explanation IAM Roles allow secure delegation of permissions; IAM Policies work but do not directly provide delegation.
Q252

What happens when the maximum concurrency is set too low for a Lambda function?

  • A More invocations are ignored.
  • B Function executions are throttled.
  • C All invocations succeed.
  • D Invocations fail with errors.
Explanation Throttling occurs when the max concurrency is exceeded; others misstate outcomes of concurrency settings.
Q253

Which service provides Infrastructure as Code for AWS resources?

  • A AWS CloudFormation
  • B AWS CodeDeploy
  • C AWS CodePipeline
  • D AWS Lambda
Explanation AWS CloudFormation automates infrastructure setup, while others focus on deployment and continuous integration.
Q254

A company needs to monitor application performance in real-time. Which service should they use?

  • A Amazon CloudWatch
  • B AWS CloudTrail
  • C AWS Config
  • D Amazon S3
Explanation Amazon CloudWatch monitors performance metrics, unlike the other options focused on logging or storage.
Q255

You are configuring AWS Elastic Beanstalk with a Multi-Container Docker environment. What happens when you use a Docker Compose file without a version specified?

  • A It defaults to the latest version.
  • B A validation error occurs.
  • C Docker will not run containers.
  • D It uses the Docker CLI default.
Explanation Omitting the version in a Docker Compose file results in a validation error, as the version is required for configuration.
Q256

Which service provides a fully managed Kubernetes cluster?

  • A Amazon EKS
  • B AWS Fargate
  • C AWS Lambda
  • D Amazon EC2
Explanation Amazon EKS is the managed Kubernetes service; others are not Kubernetes solutions.
Q257

A company needs to apply security updates automatically during instance startup. What should they implement?

  • A User Data scripts
  • B CloudFormation templates
  • C IAM Roles
  • D NAT Gateways
Explanation User Data scripts run commands at startup, applying updates; the others do not handle startup commands directly.
Q258

What happens when an IAM user attempts to access a resource without the required permissions?

  • A Access granted with warning
  • B Access denied and logged
  • C Temporary access is provided
  • D Access is prompted for approval
Explanation Access is denied when permissions are not present, and it may be logged, while others suggest incorrect procedures.
Q259

Which service helps you automatically scale your application?

  • A Amazon EC2
  • B AWS Auto Scaling
  • C Amazon S3
  • D AWS Lambda
Explanation AWS Auto Scaling automatically adjusts the capacity, while EC2, S3, and Lambda don't directly handle scaling.
Q260

A company needs to monitor application performance in real time. Which service is best suited for this?

  • A AWS CloudTrail
  • B Amazon CloudWatch
  • C AWS X-Ray
  • D AWS Config
Explanation Amazon CloudWatch provides real-time monitoring, while CloudTrail tracks API calls and the others serve different purposes.