Amazon AWS

AWS Certified DevOps Engineer – Professional

DOP-C02
Popular

The AWS Certified DevOps Engineer – Professional (DOP-C02) exam validates your skills in automating the testing and deployment of AWS applications. It is ideal for those looking to advance their DevOps career.

483 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 421–430 of 483

Q421

Which service would you use to automate deployment for serverless applications?

  • A AWS CloudFormation
  • B AWS CodePipeline
  • C AWS SAM
  • D AWS Lambda
Explanation AWS SAM specifically tailors to serverless application deployments, while others provide broader templates or CI/CD functions.
Q422

A company needs to manage bucket access for multiple applications. What should you do?

  • A Use IAM Policies
  • B Create multiple S3 buckets
  • C Utilize bucket ACLs
  • D Apply security groups
Explanation IAM Policies provide centralized management of permissions, while others are less scalable or appropriate for fine-grained access management.
Q423

What happens when an Auto Scaling policy triggers scaling down the instance count?

  • A Health check failures occur.
  • B Traffic routing stops.
  • C Instances terminate as per policy.
  • D Application becomes unresponsive.
Explanation Instances will terminate based on the defined scaling policy, while others do not accurately describe the scaling behavior.
Q424

Which AWS service is primarily used for event-driven serverless computing?

  • A AWS Lambda
  • B AWS Batch
  • C Amazon ECS
  • D Amazon EC2
Explanation AWS Lambda enables execution of code in response to events, while others are for different use cases.
Q425

A company needs to store sensitive data and comply with regulations. Which storage option should they choose for encryption at rest?

  • A S3 Standard
  • B S3 Glacier
  • C EBS with AES-256
  • D EFS without encryption
Explanation EBS supports encryption at rest using AES-256, ensuring compliance with regulations.
Q426

You are configuring an IAM policy. What happens if a user is denied access in one policy and permitted in another for the same action?

  • A Access is granted by the allow policy
  • B Access rights combine to grant access
  • C Access is denied; explicit deny overrides
  • D Access is granted only if roles are assumed
Explanation Explicit deny overrides any allow policies in AWS IAM, ensuring security.
Q427

A company needs to ensure that its EC2 instances automatically restart in case of system crashes. Which service helps achieve this?

  • A Auto Scaling Groups
  • B CloudTrail
  • C Elastic Load Balancer
  • D AWS Inspector
Explanation Auto Scaling Groups can automatically replace unhealthy instances, while the others do not provide auto-restart capabilities.
Q428

What happens when you delete a DynamoDB table that is being used by your application?

  • A Data is instantly available
  • B Data is permanently lost
  • C It continues to function normally
  • D AWS archives the data for later use
Explanation Deleting a DynamoDB table permanently removes all data; the other options do not reflect its consequences accurately.
Q429

You are configuring a pipeline in AWS CodePipeline. To trigger the pipeline when code is pushed to a Git repository, which additional configuration must be done?

  • A Set environment variables
  • B Create a build stage
  • C Add webhooks to trigger
  • D Configure IAM roles
Explanation Webhooks are needed for external Git repositories but are not necessary for other configurations listed.
Q430

Which service allows for AWS resource management across accounts?

  • A AWS Organizations
  • B AWS CloudFormation
  • C AWS Lambda
  • D Amazon Inspector
Explanation AWS Organizations enables resource management across multiple accounts, whereas the others focus on infrastructure as code or security analysis.