Amazon AWS

AWS Certified DevOps Engineer – Professional

DOP-C02
Popular

The AWS Certified DevOps Engineer – Professional (DOP-C02) exam validates your skills in automating the testing and deployment of AWS applications. It is ideal for those looking to advance their DevOps career.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 341–350 of 483

Q341

A company needs its CI/CD pipeline to automatically deploy to an Amazon ECS service. What should they use?

  • A AWS CodePipeline
  • B AWS CloudFormation
  • C AWS Lambda
  • D Amazon S3
Explanation AWS CodePipeline orchestrates the CI/CD process including ECS deployments. CloudFormation manages infrastructure, not CI/CD pipelines.
Q342

You are configuring IAM policies using the principle of least privilege. What should you avoid doing?

  • A Granting full access to resources
  • B Restricting permissions by actions
  • C Reviewing policies regularly
  • D Using resource conditions
Explanation Granting full access contradicts the principle of least privilege. The other options support restricting access appropriately.
Q343

Which service provides automated provisioning for infrastructure?

  • A AWS CloudFormation
  • B Amazon S3
  • C AWS CodeCommit
  • D Amazon RDS
Explanation AWS CloudFormation automates infrastructure provisioning; others do not.
Q344

A company needs high-availability for their web application, which AWS service would best facilitate this?

  • A Amazon EC2 Auto Scaling
  • B AWS Lambda
  • C Amazon S3
  • D AWS CloudTrail
Explanation Amazon EC2 Auto Scaling ensures high-availability; others do not provide this feature.
Q345

What happens when you terminate an EC2 instance that’s part of an Auto Scaling group?

  • A Instance is recreated automatically
  • B Instance is permanently deleted
  • C Health checks will fail
  • D Scaling policies become disabled
Explanation It's automatically recreated to maintain desired capacity; others are incorrect behaviors.
Q346

Which service can automate the deployment of applications across multiple cloud environments?

  • A AWS CodeDeploy
  • B AWS Inspector
  • C AWS X-Ray
  • D AWS CloudFormation
Explanation AWS CodeDeploy automates application deployments, while others serve different purposes.
Q347

A company needs to monitor its AWS resources for changes and compliance. Which service should they use?

  • A AWS CloudTrail
  • B AWS Config
  • C AWS CloudWatch
  • D AWS Systems Manager
Explanation AWS Config monitors and assesses compliance of AWS resources; others provide different monitoring functionalities.
Q348

You are configuring an EC2 instance with an IAM role. What happens if you attach a policy that grants full S3 access?

  • A Instance gains access to all S3 buckets
  • B Instance cannot access any S3 bucket
  • C Instance has limited access to S3 buckets
  • D Instance uses only public S3 buckets
Explanation The instance gains full access as per the role's policy, while others are incorrect because they misinterpret role permissions.
Q349

Which service allows you to run code in response to events without provisioning servers?

  • A AWS Lambda
  • B Amazon EC2
  • C AWS Elastic Beanstalk
  • D AWS Fargate
Explanation AWS Lambda is a serverless compute service that runs code in response to events, unlike the others that require managing infrastructure.
Q350

A company needs a way to version its application configuration stored in S3 while preventing access to deleted objects. Which feature meets these requirements?

  • A Versioning and MFA Delete
  • B S3 Cross-Region Replication
  • C Lifecycle Policy
  • D S3 Transfer Acceleration
Explanation Versioning allows object recovery, and MFA Delete prevents accidental deletions, making it fit both requirements unlike the others.